针对物联网内存损坏攻击的轻量级入侵检测系统

2023 26th International Symposium on Design and Diagnostics of Electronic Circuits and Systems (DDECS) Pub Date : 2023-05-03 DOI:10.1109/DDECS57882.2023.10139718

Mohamed El Bouazzati, R. Tessier, P. Tanguy, G. Gogniat

{"title":"针对物联网内存损坏攻击的轻量级入侵检测系统","authors":"Mohamed El Bouazzati, R. Tessier, P. Tanguy, G. Gogniat","doi":"10.1109/DDECS57882.2023.10139718","DOIUrl":null,"url":null,"abstract":"Attacks against internet-of-things (IoT) end-devices represent a significant threat since their wireless communication capabilities provide a potential attack entry point. To address this threat, we demonstrate the use of hardware performance counters (HPCs) in a host-based intrusion detection system (HIDS). The counter-based monitors are customized to support IoT end-devices which use low data rate GHz and sub-GHz protocols. Our solution implements a hardware unit that performs data tracing for a 32-bit RISC-V based wireless connectivity unit. The unit can detect ongoing remote attacks in real time. We demonstrate the effectiveness of our system by detecting a packet injection exploit. Our FPGA implementation of HIDS has a logic overhead of about 6% and design frequency penalty of less than 1% for a RISC-V processor.","PeriodicalId":220690,"journal":{"name":"2023 26th International Symposium on Design and Diagnostics of Electronic Circuits and Systems (DDECS)","volume":"9 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-05-03","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"A Lightweight Intrusion Detection System against IoT Memory Corruption Attacks\",\"authors\":\"Mohamed El Bouazzati, R. Tessier, P. Tanguy, G. Gogniat\",\"doi\":\"10.1109/DDECS57882.2023.10139718\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Attacks against internet-of-things (IoT) end-devices represent a significant threat since their wireless communication capabilities provide a potential attack entry point. To address this threat, we demonstrate the use of hardware performance counters (HPCs) in a host-based intrusion detection system (HIDS). The counter-based monitors are customized to support IoT end-devices which use low data rate GHz and sub-GHz protocols. Our solution implements a hardware unit that performs data tracing for a 32-bit RISC-V based wireless connectivity unit. The unit can detect ongoing remote attacks in real time. We demonstrate the effectiveness of our system by detecting a packet injection exploit. Our FPGA implementation of HIDS has a logic overhead of about 6% and design frequency penalty of less than 1% for a RISC-V processor.\",\"PeriodicalId\":220690,\"journal\":{\"name\":\"2023 26th International Symposium on Design and Diagnostics of Electronic Circuits and Systems (DDECS)\",\"volume\":\"9 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2023-05-03\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2023 26th International Symposium on Design and Diagnostics of Electronic Circuits and Systems (DDECS)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/DDECS57882.2023.10139718\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2023 26th International Symposium on Design and Diagnostics of Electronic Circuits and Systems (DDECS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/DDECS57882.2023.10139718","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

摘要

针对物联网(IoT)终端设备的攻击是一个重大威胁，因为它们的无线通信功能提供了潜在的攻击入口。为了解决这一威胁，我们演示了在基于主机的入侵检测系统(HIDS)中使用硬件性能计数器(hpc)。基于计数器的监视器是定制的，以支持使用低数据速率GHz和sub-GHz协议的物联网终端设备。我们的解决方案实现了一个硬件单元，为基于32位RISC-V的无线连接单元执行数据跟踪。该单元可以实时检测正在进行的远程攻击。我们通过检测数据包注入漏洞来证明我们系统的有效性。对于RISC-V处理器，我们的HIDS FPGA实现的逻辑开销约为6%，设计频率损失小于1%。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

A Lightweight Intrusion Detection System against IoT Memory Corruption Attacks

Attacks against internet-of-things (IoT) end-devices represent a significant threat since their wireless communication capabilities provide a potential attack entry point. To address this threat, we demonstrate the use of hardware performance counters (HPCs) in a host-based intrusion detection system (HIDS). The counter-based monitors are customized to support IoT end-devices which use low data rate GHz and sub-GHz protocols. Our solution implements a hardware unit that performs data tracing for a 32-bit RISC-V based wireless connectivity unit. The unit can detect ongoing remote attacks in real time. We demonstrate the effectiveness of our system by detecting a packet injection exploit. Our FPGA implementation of HIDS has a logic overhead of about 6% and design frequency penalty of less than 1% for a RISC-V processor.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2023 26th International Symposium on Design and Diagnostics of Electronic Circuits and Systems (DDECS)

自引率

0.00%

发文量