Abstract

Cyber-attacks vary greatly in their goals, methods, and complexity, but they all communicate with their operators. Existing methods that attempt to prevent unauthorized communication are either inadequate or are vulnerable to kernel-mode attacks. We demonstrate the viability of stealthy network transmission on various network interface cards, using only data-writes to physical pages. For some cards, a code-reuse attack is used to issue IO instructions. Finally, the paper describes a virtualization-based method that prevents unauthorized communication. The analysis of its impact on the network bandwidth and the overall system performance shows that the average performance degradation is 0.6% on an idle system and 1.7% with a 10 MB/s outgoing traffic. The bandwidth degrades by 15% on average.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Virtual Machine Coscheduling: A Game Theoretic Approach
Jaspal Singh Dhillon ... Sanidhya Kashyap
-
Jaspal Singh Dhillon, et. al.Jaspal Singh Dhillon ... Sanidhya Kashyap
01 Dec 2013
Putting it on the NIC: A case study on application offloading to a network interface card (NIC)
Y Weinsberg ... Y Amir
-
Y Weinsberg, et. al.Y Weinsberg ... Y Amir
13 Feb 2006
I/O Scheduling by Using Multi-network Interfaces of Virtualization System
Xia Xie ... Pingpeng Yuan
-
Xia Xie, et. al.Xia Xie ... Pingpeng Yuan
01 Nov 2011
Performance of IP-forwarding of Linux hosts with multiple network interfaces
K Salah ... M Hamawi
Journal of Network and Computer Applications | VOL. 36
K Salah, et. al.K Salah ... M Hamawi
07 May 2012
View more papers

More From: Journal of Information Security and Applications

Paper Title
Journal
Date
Author
MinCloud: Trusted and transferable MinHash-based framework for unknown malware detection for Linux cloud environments
Tomer Panker ... Nir Nissim
Journal of Information Security and Applications | VOL. 87
Tomer Panker, et. al.Tomer Panker ... Nir Nissim
06 Nov 2024
Cryptanalysis of Cancelable Biometrics Vault
Patrick Lacharme ... Kevin Thiry-Atighehchi
Journal of Information Security and Applications | VOL. 86
Patrick Lacharme, et. al.Patrick Lacharme ... Kevin Thiry-Atighehchi
01 Nov 2024
Editorial Board
-
Journal of Information Security and Applications | VOL. 86
--
01 Nov 2024
Editorial: Special issue on software protection and attacks
Michele Ianni
Journal of Information Security and Applications | VOL. 86
Michele IanniMichele Ianni
01 Nov 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.