Title | ||
---|---|---|
Proposal Of Kernel Rootkits Detection Method By Monitoring Branches Using Hardware Features |
Abstract | ||
---|---|---|
Attacks on computer systems have become more frequent in recent years. Attacks using kernel rootkits pose a particularly serious threat. When a computer system is infected with a kernel rootkit, attack detection is difficult. Because of this, handling the attack will be delayed causing an increase in the amount of damage done to the computer system. This paper proposes a new method to detect kernel rootkits by monitoring the branch records in kernel space using hardware features of commodity processors. Our method utilizes the fact that many kernel rootkits make branches that differ from the usual branches. By introducing our method, it is possible to detect kernel rootkits immediately and, thereby, reduce damages to a minimum. |
Year | DOI | Venue |
---|---|---|
2015 | 10.1109/IIAI-AAI.2015.243 | 2015 IIAI 4TH INTERNATIONAL CONGRESS ON ADVANCED APPLIED INFORMATICS (IIAI-AAI) |
Keywords | Field | DocType |
Security, kernel rootkit, last branch record | Kernel (linear algebra),sysfs,Computer science,Rootkit,Computer hardware,Operating system,Embedded system | Conference |
Citations | PageRank | References |
1 | 0.38 | 1 |
Authors | ||
2 |
Name | Order | Citations | PageRank |
---|---|---|---|
yohei akao | 1 | 1 | 0.38 |
Toshihiro Yamauchi | 2 | 17 | 9.39 |