Abstract

An operating system is an essential piece of software that manages hardware and software resources. Thus, attacks on an operating system kernel using kernel rootkits pose a particularly serious threat. Detecting an attack is difficult when the operating system kernel is infected with a kernel rootkit. For this reason, handling an attack will be delayed causing an increase in the amount of damage done to a computer system. In this paper, we propose Kernel Rootkits Guard (KRGuard), which is a new method to detect kernel rootkits that monitors branch records in the kernel space. Since many kernel rootkits make branches that differ from the usual branches in the kernel space, KRGuard can detect these differences by using the hardware features of commodity processors. Our evaluation shows that KRGuard can detect kernel rootkits that involve new branches in the system call handler processing with small overhead.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
KRGuard: Kernel Rootkits Detection Method by Monitoring Branches Using Hardware Features
Yohei Akao ... Toshihiro Yamauchi
-
Yohei Akao, et. al.Yohei Akao ... Toshihiro Yamauchi
01 Dec 2016
Prevention of Kernel Rootkit in Cloud Computing
S Suresh Kumar ... A Ponni Valavan
-
S Suresh Kumar, et. al.S Suresh Kumar ... A Ponni Valavan
17 May 2023
Proposal of Kernel Rootkits Detection Method by Monitoring Branches Using Hardware Features
Yohei Akao ... Toshihiro Yamauchi
-
Yohei Akao, et. al.Yohei Akao ... Toshihiro Yamauchi
01 Jul 2015
Enabling an OS kernel for large data with a SIMD Unit
Shogo Saito ... Shuichi Oikawa
-
Shogo Saito, et. al.Shogo Saito ... Shuichi Oikawa
01 Oct 2012
View more papers

More From: IEICE Transactions on Information and Systems

Paper Title
Journal
Date
Author
Neural End-To-End Speech Translation Leveraged by ASR Posterior Distribution
Yuka Ko ... Katsuhito Sudoh
IEICE Transactions on Information and Systems | VOL. E107.D
Yuka Ko, et. al.Yuka Ko ... Katsuhito Sudoh
01 Oct 2024
TDEM: Table Data Extraction Model Based on Cell Segmentation
Zhe Wang ... Yang-Ming Zheng
IEICE Transactions on Information and Systems | VOL. E107.D
Zhe Wang, et. al.Zhe Wang ... Yang-Ming Zheng
01 Oct 2024
Reliable Image Matching Using Optimal Combination of Color and Intensity Information Based on Relationship with Surrounding Objects
Rina Tagami ... Shuichi Akizuki
IEICE Transactions on Information and Systems | VOL. E107.D
Rina Tagami, et. al.Rina Tagami ... Shuichi Akizuki
01 Oct 2024
Differential-Neural Cryptanalysis on AES
Liu Zhang ... Zilong Wang
IEICE Transactions on Information and Systems | VOL. E107.D
Liu Zhang, et. al.Liu Zhang ... Zilong Wang
01 Oct 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.