Detection of counterfeit and compromised devices using system and function call tracing techniques

Title: Detection of counterfeit and compromised devices using system and function call tracing techniques

Full Record
Other Related Research

Abstract

Frameworks, methods, and systems for securing a smart grid are provided. A framework can include data collection, call tracing techniques, and preparing call lists to detect counterfeit or compromised devices. The call tracing techniques can include call tracing and compiling all system and function calls over a time interval. The framework can further include data processing, in which a genuine device is identified and compared to unknown devices. A first statistical correlation can be used for resource-rich systems, and a second statistical correlation can be used for resource-limited systems. Threats of information leakage, measurement poisoning and store-and-send-later can be considered.

Inventors:: Babun, Leonardo; Aksu, Hidayet; Uluagac, A. Selcuk

Issue Date:: 2018-07-17

Research Org.:: The Florida International University Board of Trustees, Miami, FL (United States)

Sponsoring Org.:: USDOE

OSTI Identifier:: 1463864

Patent Number(s):: 10027697

Application Number:: 15/581,453

Assignee:: The Florida International University Board of Trustees (Miami, FL)

Patent Classifications (CPCs):: Y - NEW / CROSS SECTIONAL TECHNOLOGIES Y04 - INFORMATION OR COMMUNICATION TECHNOLOGIES HAVING AN IMPACT ON OTHER TECHNOLOGY AREAS Y04S - SYSTEMS INTEGRATING TECHNOLOGIES RELATED TO POWER NETWORK OPERATION, COMMUNICATION OR INFORMATION TECHNOLOGIES FOR IMPROVING THE ELECTRICAL POWER GENERATION, TRANSMISSION, DISTRIBUTION, MANAGEMENT OR USAGE, i.e. SMART GRIDS

H - ELECTRICITY H04 - ELECTRIC COMMUNICATION TECHNIQUE H04L - TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION

Show more

Y - NEW / CROSS SECTIONAL TECHNOLOGIES Y04 - INFORMATION OR COMMUNICATION TECHNOLOGIES HAVING AN IMPACT ON OTHER TECHNOLOGY AREAS Y04S - SYSTEMS INTEGRATING TECHNOLOGIES RELATED TO POWER NETWORK OPERATION, COMMUNICATION OR INFORMATION TECHNOLOGIES FOR IMPROVING THE ELECTRICAL POWER GENERATION, TRANSMISSION, DISTRIBUTION, MANAGEMENT OR USAGE, i.e. SMART GRIDS
Y04S40/20 - Information technology specific aspects

H - ELECTRICITY H04 - ELECTRIC COMMUNICATION TECHNIQUE H04L - TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
H04L63/1425 - {Traffic logging, e.g. anomaly detection}

Show less

DOE Contract Number:: OE0000779

Resource Type:: Patent

Resource Relation:: Patent File Date: 2017 Apr 28

Country of Publication:: United States

Language:: English

Citation Formats


                    Babun, Leonardo, Aksu, Hidayet, and Uluagac, A. Selcuk. Detection of counterfeit and compromised devices using system and function call tracing techniques.  United States: N. p., 2018. 
        Web.

Copy to clipboard


                    Babun, Leonardo, Aksu, Hidayet, & Uluagac, A. Selcuk. Detection of counterfeit and compromised devices using system and function call tracing techniques.  United States.

Copy to clipboard


                    Babun, Leonardo, Aksu, Hidayet, and Uluagac, A. Selcuk. Tue .  
        "Detection of counterfeit and compromised devices using system and function call tracing techniques".  United States.  https://www.osti.gov/servlets/purl/1463864.

Copy to clipboard


                    
@article{osti_1463864,

  title        = {Detection of counterfeit and compromised devices using system and function call tracing techniques},

  author       = {Babun, Leonardo and Aksu, Hidayet and Uluagac, A. Selcuk},

  abstractNote = {Frameworks, methods, and systems for securing a smart grid are provided. A framework can include data collection, call tracing techniques, and preparing call lists to detect counterfeit or compromised devices. The call tracing techniques can include call tracing and compiling all system and function calls over a time interval. The framework can further include data processing, in which a genuine device is identified and compared to unknown devices. A first statistical correlation can be used for resource-rich systems, and a second statistical correlation can be used for resource-limited systems. Threats of information leakage, measurement poisoning and store-and-send-later can be considered.},

  doi          = {},

  journal      = {},
number       = ,

  volume       = ,

  place        = {United States},

  year         = {2018},

  month        = {7}

}

Copy to clipboard

Patent:

View Patent

Save / Share:

Export Metadata

Save to My Library

Similar Records in DOE Patents and OSTI.GOV collections:

Method of resource-limited device and device class identification using system and function call tracing techniques, performance, and statistical analysis

Patent Babun, Leonardo; Aksu, Hidayet; Uluagac, A. Selcuk

Methods for cyber physical systems device classification are provided. A method can include receiving system and function calls and parameters and a device performance index from an unknown CPS device and a device performance index of similar class of CPS devices, calculating an autocorrelation value between different realizations of the system and function calls and parameters of the known CPS device, determining whether the autocorrelation value is greater than a threshold amount, and storing the system and function calls and parameters and the device performance characteristics of the known CPS device in the database. A method can also include calculatingmore »« less
Full Text Available
Deterrence of device counterfeiting, cloning, and subversion by substitution using hardware fingerprinting

Patent Hamlet, Jason R; Bauer, Todd M; Pierson, Lyndon G

Deterrence of device subversion by substitution may be achieved by including a cryptographic fingerprint unit within a computing device for authenticating a hardware platform of the computing device. The cryptographic fingerprint unit includes a physically unclonable function ("PUF") circuit disposed in or on the hardware platform. The PUF circuit is used to generate a PUF value. A key generator is coupled to generate a private key and a public key based on the PUF value while a decryptor is coupled to receive an authentication challenge posed to the computing device and encrypted with the public key and coupled to outputmore »« less
Full Text Available
Dispatching function calls across accelerator devices

Patent Jacob, Arpith C.; Sallenave, Olivier H.

In one embodiment, a computer-implemented method for dispatching a function call includes receiving, at a supervisor processing element (PE) and from an origin PE, an identifier of a target device, a stack frame of the origin PE, and an address of a function called from the origin PE. The supervisor PE allocates a target PE of the target device. The supervisor PE copies the stack frame of the origin PE to a new stack frame on a call stack of the target PE. The supervisor PE instructs the target PE to execute the function. The supervisor PE receives a notificationmore »« less
Full Text Available
Dispatching function calls across accelerator devices

Patent Jacob, Arpith C.; Sallenave, Olivier H.

In one embodiment, a computer-implemented method for dispatching a function call includes receiving, at a supervisor processing element (PE) and from an origin PE, an identifier of a target device, a stack frame of the origin PE, and an address of a function called from the origin PE. The supervisor PE allocates a target PE of the target device. The supervisor PE copies the stack frame of the origin PE to a new stack frame on a call stack of the target PE. The supervisor PE instructs the target PE to execute the function. The supervisor PE receives a notificationmore »« less
Full Text Available
Trace detection of analytes using portable raman systems

Patent Alam, M. Kathleen; Hotchkiss, Peter J.; Martin, Laura E.; ...

Apparatuses and methods for in situ detection of a trace amount of an analyte are disclosed herein. In a general embodiment, the present disclosure provides a surface-enhanced Raman spectroscopy (SERS) insert including a passageway therethrough, where the passageway has a SERS surface positioned therein. The SERS surface is configured to adsorb molecules of an analyte of interest. A concentrated sample is caused to flow over the SERS surface. The SERS insert is then provided to a portable Raman spectroscopy system, where it is analyzed for the analyte of interest.
Full Text Available

Similar Records