Your search keyword '"code gene"' showing total 3 results

1. Research on Security Detection Technology for Internet of Things Terminal Based on Firmware Code Genes

Author

Xinbing Zhu, Qingbao Li, Zhifeng Chen, Guimin Zhang, and Peng Shan

Subjects

The IoT, the~IoT terminal, firmware, code gene, gene distance, similarity, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

Internet of Things (IoT) terminals have firmware with heterogeneous, closed-source, and heavy business but light security characteristics, whereas on the edge, there are limited resources and a high code reuse rate. Once there are security risks at the firmware level, these risks are difficult to detect and discover, and the resulting impact quickly spreads over a wide range. Therefore, a similarity and homology analysis of firmware codes in an IoT terminal will be helpful for further research on firmware malicious code detection, vulnerability mining, backdoor discovery and copyright protection. Inspired by biological genes, this paper attempts to break away from the traditional feature-centered approach and focuses on code classification and the qualitative description of code features to discuss the idea of code similarity and homology analysis. Additionally, the proposed approach is information-centric, focusing on the informativeness (essentiality, stability, antivariability, and heritability) of the firmware code genes and the quantitative analysis of firmware code similarity and homology by discussing common methods and mechanisms. This paper presents security detection technology for IoT terminal firmware by measuring the gene distance between the codes. A prototype firmware security detection system (FSDS) for IoT terminals based on firmware code genes is designed and implemented. The experimental results show that this method has a good search matching effect and has certain advantages over traditional firmware security detection methods based on similarity theory.

Published

2020

2. A Firmware Code Gene Extraction Technology for IoT Terminal

Author

Xinbing Zhu, Qingbao Li, Ping Zhang, and zhifeng chen

Subjects

IoT, IoT terminal, firmware, code gene, similarity, hypothesis margin, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

With the development of the IoT technology, an unprecedented number of IoT terminals are connected to various networks. Commercial-off-the-shelf (COTS) technology is widely used in the IoT terminal firmware, which results in high code reuse rates. Such firmware is always heterogeneous and closed-source. It is so difficult to detect and investigate the security risks at the firmware level that their impacts are faster and broader. In recent years, some firmware security detection technologies based on similarity are gradually becoming a research hotspot. However, in these studies, the basic issue regarding whether these foundations comprise an essential basis for comparison and their utility as similarity measures has not been addressed theoretically. Inspired by biological genes, this paper attempts to supplement a foundation for cross-platform firmware binary code homology and similarity analysis by mining firmware code genes that can essentially identify code and exhibit stability, antivariability and heritability. The firmware code gene extract system(FCGES) is designed and implemented in this paper. FCGES first extracts the features of firmware code, then numericizes and normalizes them, and finally sublimates them to firmware code genes by the hypothesis margin. The experimental results show that the firmware code gene extracted by FCGES has essentiality, stability, antivariability and heritability on different platforms.

Published

2019

3. Research on Security Detection Technology for Internet of Things Terminal Based on Firmware Code Genes

Author

Peng Shan, Zhifeng Chen, Xinbing Zhu, Qingbao Li, and Guimin Zhang

Subjects

The IoT, General Computer Science, Computer science, business.industry, Firmware, Code reuse, General Engineering, Stability (learning theory), computer.software_genre, firmware, Terminal (electronics), code gene, Code (cryptography), General Materials Science, lcsh:Electrical engineering. Electronics. Nuclear engineering, Enhanced Data Rates for GSM Evolution, the~IoT terminal, business, gene distance, similarity, lcsh:TK1-9971, computer, Vulnerability (computing), Backdoor, Computer network

Abstract

Internet of Things (IoT) terminals have firmware with heterogeneous, closed-source, and heavy business but light security characteristics, whereas on the edge, there are limited resources and a high code reuse rate. Once there are security risks at the firmware level, these risks are difficult to detect and discover, and the resulting impact quickly spreads over a wide range. Therefore, a similarity and homology analysis of firmware codes in an IoT terminal will be helpful for further research on firmware malicious code detection, vulnerability mining, backdoor discovery and copyright protection. Inspired by biological genes, this paper attempts to break away from the traditional feature-centered approach and focuses on code classification and the qualitative description of code features to discuss the idea of code similarity and homology analysis. Additionally, the proposed approach is information-centric, focusing on the informativeness (essentiality, stability, antivariability, and heritability) of the firmware code genes and the quantitative analysis of firmware code similarity and homology by discussing common methods and mechanisms. This paper presents security detection technology for IoT terminal firmware by measuring the gene distance between the codes. A prototype firmware security detection system (FSDS) for IoT terminals based on firmware code genes is designed and implemented. The experimental results show that this method has a good search matching effect and has certain advantages over traditional firmware security detection methods based on similarity theory.

Published

2020