Towards Hardware-Based Application Fingerprinting with Microarchitectural Signals for Zero Trust Environments

Authors

Tor J. Langehaug, Air Force Institute of Technology
Scott R. Graham, Air Force Institute of Technology

Document Type

Conference Proceeding

Publication Date

Winter 1-3-2023

Abstract

The interactions between software and hardware are increasingly important to computer system security. This research collects sequences of microprocessor control signals to develop machine learning models that identify software tasks. The proposed approach considers software task identification in hardware as a general problem with attacks treated as a subset of software tasks. Two lines of effort are presented. First, a data collection approach is described to extract sequences of control signals labeled by task identity during real (i.e., non-simulated) system operation. Second, experimental design is used to select hardware and software configuration to train and evaluate machine learning models. The machine learning models significantly outperform a Naive classifier based on Euclidean distances from class means. Various configurations produce balanced accuracy scores between 26.08% and 96.89%.

Comments

Published under the Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License. (CC BY-NC-ND 4.0)

The "Link to Full Text" on this page opens or loads the PDF of the conference paper, hosted at the conference series website.

Source Publication

Hawaii International Conference on System Sciences 2023

Recommended Citation

Langehaug, T., & Graham, S. (2023, January 3). Towards Hardware-Based Application Fingerprinting with Microarchitectural Signals for Zero Trust Environments. Proceedings of the 56th Hawaii International Conference on System Sciences. https://hdl.handle.net/10125/103434