@inproceedings{04dd7e88db4b4dd5a9ffc64faf681f3a,
title = "Window-based statistical analysis of timing subcomponents for efficient detection of malware in life-critical systems",
abstract = "Securing life-critical embedded systems, particularly medical devices, requires both proactive security measures that prevent intrusions and reactive measures that detect intrusions. This paper presents a novel model for specifying the normal timing for operations in software applications using cumulative distribution functions of timing subcomponent within sliding execution windows. We present a probabilistic formulation for estimating the presence of malware for individual operations by monitoring the internal timing of the different components of the system, and we define thresholds to minimize false positives based on training data.",
keywords = "Anomaly detection, Embedded system security, Non-intrusive hardware, Timing-based threat detection",
author = "Nadir Carreon and Allison Gilbreath and Roman Lysecky",
note = "Publisher Copyright: {\textcopyright} 2019 Society for Modeling & Simulation International (SCS).; 2019 Modeling and Simulation in Medicine, MSM 2019, Part of the 2019 Spring Simulation Multi-Conference, SpringSim 2019 ; Conference date: 29-04-2019 Through 02-05-2019",
year = "2019",
doi = "10.23919/SpringSim.2019.8732899",
language = "English (US)",
series = "Simulation Series",
publisher = "The Society for Modeling and Simulation International",
number = "5",
booktitle = "Simulation Series",
edition = "5",
}