Hardware-Based Workload Forensics and Malware Detection in Modern Microprocessors
dc.contributor.advisor | Makris, Yiorgos | |
dc.creator | Zhou, Liwei | |
dc.date.accessioned | 2020-04-01T12:28:40Z | |
dc.date.available | 2020-04-01T12:28:40Z | |
dc.date.created | 2018-12 | |
dc.date.issued | 2018-12 | |
dc.date.submitted | December 2018 | |
dc.date.updated | 2020-04-01T12:28:41Z | |
dc.description.abstract | Traditional computer forensics and/or malware detection methods are generally implemented at the operating system (OS) or the hypervisor level, which benefits from abundant software semantics and implementation flexibility. Nevertheless, the data logging and monitoring systems involved in these methods are vulnerable to spoofing attacks at the same level, which undermine their effectiveness. In this dissertation, the hardware-based methodologies are proposed to perform workload forensics and/or malware detection in microprocessors. In contrast to the software-based counterparts, a hardware-based implementation ensures the immunity to software tampering. Specifically, a generic architecture is introduced which a hardware-based forensic analysis or a malware detection method needs to follow, as well as the various architecture-level information which could potentially be harnessed to ensure system security and/or integrity. To illustrate the proposed concept, two incarnations, i.e., hardware-based workload forensics and hardware-based rootkit detection are present. Experimental results corroborate that even a low-cost hardware implementation can facilitate highly successful forensics analysis and/or malware detection, while taking advantage of its innate immunity to software-based attacks. | |
dc.format.mimetype | application/pdf | |
dc.identifier.uri | https://hdl.handle.net/10735.1/7737 | |
dc.language.iso | en | |
dc.rights | ©2018 Liwei Zhou. All Rights Reserved. | |
dc.subject | Digital forensic science | |
dc.subject | Malware (Computer software) | |
dc.subject | Computer security | |
dc.subject | Computer input-output equipment | |
dc.subject | Machine learning | |
dc.subject | Microprocessors | |
dc.title | Hardware-Based Workload Forensics and Malware Detection in Modern Microprocessors | |
dc.type | Dissertation | |
dc.type.material | text | |
thesis.degree.department | Electrical Engineering | |
thesis.degree.grantor | The University of Texas at Dallas | |
thesis.degree.level | Doctoral | |
thesis.degree.name | PHD |
Files
Original bundle
1 - 1 of 1
Loading...
- Name:
- ETD-5608-013D-261118.17.pdf
- Size:
- 5.44 MB
- Format:
- Adobe Portable Document Format
- Description:
- Dissertation