I am pleased to announce that our paper “Systematically Evaluating the Robustness of ML-based IoT Malware Detection Systems” authored by A. Abusnaina, A. Anwar, S. Alshamrani, A. Alabduljabbar, R. Jang, D. Nyang, D. Mohaisen is accepted (just passed the shepherding) in the 25th International Symposium on Research in Attacks, Intrusions and Defenses (RAID 2022).

This paper deals with the issue on the performance of ML-based IoT malware detectors against malware mutations. Results show that even the state-of-the-art technologies are suffering from incompetence in detecting even simple mutations like functionality-preserving operations (packing, stripping, and padding). This calls for research community to put their efforts towards testing the robustness of malware detectors.

 

Congratulations to all!

Our paper titled “WBC image classification and generative models based on convolutional neural network” is published in BMC Medical Imaging journal.This paper deals with the white blood cell classification and the synthesis of the images. Our AI model based on the simple CNN, called W-Net outperforms the famous AlexNet, VGGNet, and ResNet50/18 by far in terms of accuracy and computation complexity. We explore why this simple architecture works better than those state-of-the-art technologies for WBC classification. Also, it is well-known to be quite difficult to obtain high quality WBC images with labels even for research purporses, and thus, we release the high quality synthesized WBC images generated from real hospital WBC images to aid and expedite research in this area. Check out our paper.

Congratulations to ChangHun, Mohammed, David, KyungJa, and me!

“Minimizing Noise in HyperLogLog-Based Spread Estimation of Multiple Flows”

Congratulations to all of the authors, Nguyen, Jiyoo, Changhun, David!

Our paper on estimating the spreads of multiple flows is accepted at the 52nd Annual IEEE/IFIP International Conference on Dependable Systems and Networks(acceptance ratio=49/262). We proposed RRSE (Rank Recovery-based Spread Estimator), an algorithm on counting multiple spreaders on a programmable router, which is a multi-tenant version of the famous Hyper-LogLog. The importance of this paper is in the way to eliminate noise from HLL’s estimation when sharing a memory space with multiple flows.  RRSE shows greater noise reduction performance compared to vHLL, MCSE, state of the art algorithms.

 

Check out this presentation clip!

 

정보보호 연구실에서 프로그래밍 인턴(아르바이트) 학생을 모집합니다.

모집 인원: 서버(Python) 1명, 아이폰(Swift) 앱 1명, 안드로이드(Kotlin) 앱 1명

개발 기간: 10월부터

급여: 100만원/월

포트폴리오, 자기소개서와 함께 mizno.isrl@gmail.com로 메일 보내주세요.

https://www.theregister.com/2021/09/09/boffins_unveil_ssdinsider_promise_ransomware/

SSD-Insider (IEEE Trans on Computers) is on “The Register”, UK-based tech magazine!

You can take a look at the article titled “Boffins unveil SSD-Insider++, promise ransomware detection and recovery right in your storage” by Gareth Halfacree (Thank you Gareth!). Also, it is quite fun to read the readers’ comments in the article.

Also, ZDNet Korea interviewed me to introduce SSD-Insider, which can be found at

https://zdnet.co.kr/view/?no=20210916105104

 

“BlockTrail: A Service for Secure and Transparent Blockchain-Driven Audit Trails” by Ashar Ahmad, Muhammad Saad, Mohammed Al Ghamdi, DaeHun Nyang, David Mohaisen is accepted in IEEE Systems Journal. Congratulations to all!

In this paper, we introduce BlockTrail, a novel blockchain architecture that is prototyped on the PBFT protocol with a custom-built blockchain. BlockTrail is secure and efficient, while having low storage footprint.

“DL-FHMC: Deep Learning-based Fine-grained Hierarchical Learning Approach for Robust Malware Classification” by Ahmed Abusnaina, Mohammed Abuhamad, Hisham Alasmary, Afsah Anwar, Rhongho Jang, Saeed Salem, DaeHun Nyang, David Mohaisen is accepted for publication in IEEE Transactions on Dependable and Secure Computing. This paper deals with ML-based approach to robust malware classification under the existence of adversarial examples. Congrats to all.

A good news. “SHELLCORE: Automating Malicious IoT Software Detection by Using Shell Commands Representation” is accepted for publication in IEEE IoT Journal. This is the joint work with Hisham Alasmary, Afsah Anwar, Ahmed Abusnaina, Abdulrahman Alabduljabbar, Mohammed Abuhamad, An Wang, DaeHun Nyang, Amro Awad, and David Mohaisen.

This paper investigates shell commands abused by adversaries in IoT devices, and proposes a machine learning-based detection system. A large amount of dataset of shell commands were collected including malicious commands extracted from 2,891 IoT malware samples.

Congratulations!

“A Network-independent Tool-based Usable Authentication System for Internet of Things Devices” by Changhun, Jinchun, Rhongho, David and me is now accepted by Computers and Security. I am very pleased to see this paper has been published. This paper is about IoT authentication by a special hardware tool that makes authentication easy and fun as well as secure. Changhun designed and implemented the hardware prototype of the device.

Congratulations Changhun and all!

 Me, waiting for the award in NetSec-KR 2021 after keynote speech.

The vice-minister of science and ICT and me are pausing for photo taking.

 

The commendation certificate.

I was the awardee of Minister of Science and ICT’s commendation for best researchers.  The awarding ceremony was held in NetSec-KR 2021 at COEX today. I would like to share this honor with my colleagues and students, David, Jiyoo, Mohammed, Changhoon. Thank you for your support.