@inproceedings{9899fe6a825c4cc4bbc4c60f644f6cfa,
title = "The dragonbeam framework: Hardware-protected security modules for in-place intrusion detection",
abstract = "The sophistication of malicious adversaries is increasing every day and most defenses are often easily overcome by such attackers. Many existing defensive mechanisms often make differing assumptions about the underlying systems and use varied architectures to implement their solutions. This often leads to fragmentation among solutions and could even open up additional vulnerabilities in the system. We present the DragonBeam Framework that enables system designers to implement their own monitoring methods and analyses engines to detect intrusions in modern operating systems. It is built upon a novel hardware/software mechanism. Depending on the type of monitoring that is implemented using this framework, the impact on the monitored system is very low. This is demonstrated by the use cases presented in this paper that also showcase how the DragonBeam framework can be used to detect different types of attack.",
author = "Yoon, \{Man Ki\} and Mihai Christodorescu and Lui Sha and Sibin Mohan",
note = "Publisher Copyright: Copyright {\textcopyright} 2016 ACM.; 9th ACM International Systems and Storage Conference, SYSTOR 2016 ; Conference date: 06-06-2016 Through 08-06-2016",
year = "2016",
month = jun,
day = "6",
doi = "10.1145/2928275.2928290",
language = "English (US)",
series = "SYSTOR 2016 - Proceedings of the 9th ACM International Systems and Storage Conference",
publisher = "Association for Computing Machinery",
booktitle = "SYSTOR 2016 - Proceedings of the 9th ACM International Systems and Storage Conference",
address = "United States",
}