IoT systems have been broadly adopted, and we are now seeing increasing deployment in both home and commercial environments. However, with this broad distribution of new technology, there has been an introduction of n...
详细信息
IoT systems have been broadly adopted, and we are now seeing increasing deployment in both home and commercial environments. However, with this broad distribution of new technology, there has been an introduction of new classes of attacks, specifically targeting IoT networks and *** to the constrained natures of IoT devices, as well as the opacity of IoT framework, standard intrusion detection systems cannot be applied *** this paper, we introduce Sentinel, a new framework aimed at facilitating the conception of novel detection *** leveraging common features of IoT frameworks, we expose, collect and centralize low-level system information of each smart device in a *** demonstrate that the data collected contains some strong signal, by designing a proof of concept intrusion detector that reaches a 95.7% accuracy. We also perform a power consumption analysis to prove that Sentinel is compatible with the power requirements of battery-operated devices, by increasing the power usage by less than 1%.We believe that this framework can be used to design highly performant, specialized IoT intrusion detection systems.
The current de facto standard for inter networking is the TCP/IP protocol suite to transmit data over Local Area Networks (LANs), Wide Area Networks (WANs) and the Internet. As network speed rises to Gigabit Ethernet ...
详细信息
ISBN:
(纸本)9780889866133
The current de facto standard for inter networking is the TCP/IP protocol suite to transmit data over Local Area Networks (LANs), Wide Area Networks (WANs) and the Internet. As network speed rises to Gigabit Ethernet and 10 Gigabit Ethernet, host CPU can become severe bottleneck in high speed computing as TCP/IP processing places a heavy burden on host CPU. It has been known that CPU horsepower in today's server is just sufficient enough to handle TCP/IP processing, leaving no CPU cycles for critical business applications. Recently TCP/IP Offload Engine (TOE) technology, which processes TCP/IP on a network adapter instead of host CPU, has become an important approach to this problem. In this paper, we present linux kernel module suite with dual support for TOE and general NIC. Limix. kernelmodule suite is a 2-tier design architecture having TOE Switch module (TSM) and TOE Protocol module (TPM). The TOE adapter along with TOE based linux kernel module suite offloads the processing of TCP/IP protocol from host & enhances the network data transmission i.e. increases the throughput and lowers client response time. Experimental results also show that the TOE linux kernel module suite imposes fewer loads on the host CPU.
Tato práce se v prvé řadě zaměřuje na návrh a implementaci šifrovacího filtru pro Redirecting Filesystem Framework (dále jen RedirFS) v podobě modulu linuxového jádra. Zpočát...
详细信息
Tato práce se v prvé řadě zaměřuje na návrh a implementaci šifrovacího filtru pro Redirecting Filesystem Framework (dále jen RedirFS) v podobě modulu linuxového jádra. Zpočátku se věnuje problematice kryptografie a šifrování. Dále rozebírá hlavní části RedirFS a možnosti jejich rozšíření. Potom co je čtenář seznámen s důležitými pojmy, následuje hlavní část práce. Nejdříve je nastíněn samotný návrh filtru, zvolené postupy - jejich výhody a omezení. Poslední kapitola je plně věnována cipherflt: vzorové implementaci šifrovacího filtru.
暂无评论