Method of resource-limited device and device class identification using system and function call tracing techniques, performance, and statistical analysis
Abstract
Methods for cyber physical systems device classification are provided. A method can include receiving system and function calls and parameters and a device performance index from an unknown CPS device and a device performance index of similar class of CPS devices, calculating an autocorrelation value between different realizations of the system and function calls and parameters of the known CPS device, determining whether the autocorrelation value is greater than a threshold amount, and storing the system and function calls and parameters and the device performance characteristics of the known CPS device in the database. A method can also include calculating a correlation between system and function calls and parameters of an unknown CPS device and known CPS devices classes included in the database, as well as determining whether the maximum correlation is also greater than a threshold amount.
- Inventors:
- Issue Date:
- Research Org.:
- Florida International Univ. (FIU), Miami, FL (United States)
- Sponsoring Org.:
- USDOE
- OSTI Identifier:
- 1568120
- Patent Number(s):
- 10242193
- Application Number:
- 15/862,044
- Assignee:
- The Florida International University Board of Trustees (Miami, FL)
- Patent Classifications (CPCs):
-
G - PHYSICS G06 - COMPUTING G06F - ELECTRIC DIGITAL DATA PROCESSING
H - ELECTRICITY H04 - ELECTRIC COMMUNICATION TECHNIQUE H04L - TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- DOE Contract Number:
- OE0000779
- Resource Type:
- Patent
- Resource Relation:
- Patent File Date: 01/04/2018
- Country of Publication:
- United States
- Language:
- English
- Subject:
- 45 MILITARY TECHNOLOGY, WEAPONRY, AND NATIONAL DEFENSE
Citation Formats
Babun, Leonardo, Aksu, Hidayet, and Uluagac, A. Selcuk. Method of resource-limited device and device class identification using system and function call tracing techniques, performance, and statistical analysis. United States: N. p., 2019.
Web.
Babun, Leonardo, Aksu, Hidayet, & Uluagac, A. Selcuk. Method of resource-limited device and device class identification using system and function call tracing techniques, performance, and statistical analysis. United States.
Babun, Leonardo, Aksu, Hidayet, and Uluagac, A. Selcuk. Tue .
"Method of resource-limited device and device class identification using system and function call tracing techniques, performance, and statistical analysis". United States. https://www.osti.gov/servlets/purl/1568120.
@article{osti_1568120,
title = {Method of resource-limited device and device class identification using system and function call tracing techniques, performance, and statistical analysis},
author = {Babun, Leonardo and Aksu, Hidayet and Uluagac, A. Selcuk},
abstractNote = {Methods for cyber physical systems device classification are provided. A method can include receiving system and function calls and parameters and a device performance index from an unknown CPS device and a device performance index of similar class of CPS devices, calculating an autocorrelation value between different realizations of the system and function calls and parameters of the known CPS device, determining whether the autocorrelation value is greater than a threshold amount, and storing the system and function calls and parameters and the device performance characteristics of the known CPS device in the database. A method can also include calculating a correlation between system and function calls and parameters of an unknown CPS device and known CPS devices classes included in the database, as well as determining whether the maximum correlation is also greater than a threshold amount.},
doi = {},
journal = {},
number = ,
volume = ,
place = {United States},
year = {Tue Mar 26 00:00:00 EDT 2019},
month = {Tue Mar 26 00:00:00 EDT 2019}
}
Works referenced in this record:
Production Process Knowledge-based Intrusion Detection for Industrial Control Systems
patent-application, September 2017
- Wei, Dong; Pfleger de Aguiar, Leandro; Martinez Canedo, Arquimedes
- US Patent Application 15/066289; 20170264629
Systems and methods for classification of internet devices as hostile or benign
patent, October 2017
- Gutzmann, Kurt
- US Patent Document 9,807,092
Detecting and preventing malcode execution
patent, June 2011
- Kc, Gaurav S.; Aho, Alfred V.
- US Patent Document 7,971,255
Methods And Systems For Encoding Computer Processes For Malware Detection
patent-application, June 2016
- Mainieri, Ronnie; Hastings, Curtis A.
- US Patent Application 14/960066; 20160164901
Identifying device state changes using power data and network data
patent, July 2017
- Petri, Jonah Wyman; Micali, Christopher M.; Phillips, Michael S.
- US Patent Document 9,699,529
Call trace on a packet switched network
patent, August 2005
- Egan, Brian B.; Vodsedalek, Milos
- US Patent Document 6,937,572