Not logged in.

Quick Search - Contribution

Contribution Details

Type Conference or Workshop Paper
Scope Discipline-based scholarship
Published in Proceedings Yes
Title Early Detection of Cryptojacker Malicious Behaviors on IoT Crowdsensing Devices
Organization Unit
Authors
  • Alberto Huertas Celdran
  • Jan Von der Assen
  • Konstantin Moser
  • Pedro M Sánchez Sánchez
  • Gérôme Bovet
  • Gregorio Martínez Pérez
  • Burkhard Stiller
Presentation Type paper
Item Subtype Original Work
Refereed Yes
Status Published in final form
Language
  • English
ISBN 978-1-6654-7716-1
ISSN 1542-1201
Page Range 10154392
Event Title NOMS 2023-2023 IEEE/IFIP Network Operations and Management Symposium
Event Type conference
Event Location Miami, FL, USA
Event Start Date May 8 - 2023
Event End Date May 12 - 2023
Series Name IEEE/IFIP Network Operations and Management Symposium (NOMS)
Publisher Institute of Electrical and Electronics Engineers
Abstract Text Traditionally, IoT crowdsensing devices have been outside the cryptomining domain due to their limitations in terms of computational power. In 2014, Monero (XNR) changed this situation forever. Monero is an open-source digital payment token that can be mined in resource-constrained devices like IoT and single-board computers. Despite the Monero advantages, it opened the door for cryptojackers illicitly mining cryptocurrencies by exploiting well-known vulnerabilities of IoT devices. Existing detection solutions provide good performance while detecting the mining phase of cryptojackers, but early detection is desired to avoid malware spreading and resource misuse. Thus, this work proposes a framework that combines device behavioral fingerprinting and machine learning to detect and classify preparatory phases of cryptojackers. The framework has been deployed in a crowdsensing IoT spectrum sensor, Raspberry Pi, infected by a recent cryptojacker called Linux.MulDrop.14. Promising detection results demonstrate the framework’s suitability while detecting early phases of cryptojackers.
Digital Object Identifier 10.1109/noms56928.2023.10154392
PDF File Download from ZORA
Export BibTeX
EP3 XML (ZORA)