Energy Delivery Systems with Verifiable Trustworthiness (Final Report)
- Oak Ridge National Laboratory (ORNL), Oak Ridge, TN (United States)
Energy Delivery Systems (EDS) must be verified to be free from intrusive and malicious software. One way of verifying this software is to perform device scans to detect malicious code. Because it is possible to have “fileless” malware that exists only in device (volatile) memory, offline scanning and even many forms of online scanning is insufficient for detection. This project (“Verify”) addresses this need by performing direct sampling of memory during device operation to detect unexpected or modified software while not interfering with device operation. The Verify project provides a proof-of-concept of detection by random sampling combined with remote software- and timing-based attestation methods for robust detection of in-memory threats. An external review of Verify was performed by our partner, General Electric (GE), and a summary of their findings is provided.
- Research Organization:
- Oak Ridge National Laboratory (ORNL), Oak Ridge, TN (United States)
- Sponsoring Organization:
- USDOE
- DOE Contract Number:
- AC05-00OR22725
- OSTI ID:
- 2305802
- Report Number(s):
- ORNL/SPR--2024/3222
- Country of Publication:
- United States
- Language:
- English
Similar Records
Companion Assisted Software Based Remote Attestation in SCADA Networks
The Evolution of Volatile Memory Forensics
Malware analysis and recovery
Conference
·
Sun Jan 31 23:00:00 EST 2021
·
OSTI ID:1831692
The Evolution of Volatile Memory Forensics
Journal Article
·
Tue Jul 19 20:00:00 EDT 2022
· Journal of Cybersecurity and Privacy
·
OSTI ID:1876935
Malware analysis and recovery
Patent
·
Mon Feb 22 23:00:00 EST 2021
·
OSTI ID:1805551