A traffic detection method of ROP attack based on image representation

Mengjie Zhang; Jian Wang; Kaijie Huang; Gang Yang

doi:10.1117/12.2646272

23 August 2022 A traffic detection method of ROP attack based on image representation

Mengjie Zhang, Jian Wang, Kaijie Huang, Gang Yang

Proceedings Volume 12330, International Conference on Cyber Security, Artificial Intelligence, and Digital Economy (CSAIDE 2022); 1233009 (2022) https://doi.org/10.1117/12.2646272
Event: International Conference on Cyber Security, Artificial Intelligence, and Digital Economy (CSAIDE 2022), 2022, Huzhou, China

Abstract

The use of malicious loading like ROP to carry out remote vulnerability attacks has become a severe concern to computer systems. It is critical to reliably detect ROP assaults in traffic and to successfully detect and block remote attacks before they have an impact on the attack target. Existing traffic-based detection approaches, on the other hand, rely on searching for particular bytes in the traffic, which has a low detection efficiency and a significant cost. This study proposes a lightweight ROP attacktraffic detection approach based on image representation, which can identify the ROP chain's image representation from network traffic and therefore complete the detection. We extract gadget fragments from network traffic using ROP gadgets of genuine attacks and randomly mix them with regular traffic to create a training dataset. The inputs are then fed into a Convolutional Neural Network (CNN). Our tests demonstrate that our accuracy reaches 99.7%.

Citation Download Citation

Mengjie Zhang, Jian Wang, Kaijie Huang, and Gang Yang "A traffic detection method of ROP attack based on image representation", Proc. SPIE 12330, International Conference on Cyber Security, Artificial Intelligence, and Digital Economy (CSAIDE 2022), 1233009 (23 August 2022); https://doi.org/10.1117/12.2646272

ACCESS THE FULL ARTICLE

INSTITUTIONAL
Select your institution to access the SPIE Digital Library.

SELECT YOUR INSTITUTION

PERSONAL
Sign in with your SPIE account to access your personal subscriptions or to use specific features such as save to my library, sign up for alerts, save searches, etc.

PERSONAL SIGN IN

No SPIE Account? Create one

PURCHASE THIS CONTENT

SUBSCRIBE TO DIGITAL LIBRARY

50 downloads per 1-year subscription

Members: $195

Non-members: $335 ADD TO CART

25 downloads per 1 - year subscription

Members: $145

Non-members: $250 ADD TO CART

PURCHASE SINGLE ARTICLE

Includes PDF, HTML & Video, when available

Members: $17.00

Non-members: $21.00 ADD TO CART

PROCEEDINGS
7 PAGES

DOWNLOAD PAPER SAVE TO MY LIBRARY

GET CITATION

RIGHTS & PERMISSIONS

Get copyright permission Get copyright permission on Copyright Marketplace

KEYWORDS

Data modeling

Convolution

Target detection

Network security

Quantization

RELATED CONTENT

Study on strategy and method of special vehicle priority service...
Proceedings of SPIE (September 07 2022)

TensorRT acceleration based on deep learning photoelectric target detection
Proceedings of SPIE (October 07 2022)

Model compression method combining multi factor channel pruning and knowledge...
Proceedings of SPIE (February 03 2023)

A feasibility study of watermark embedding in RNN models
Proceedings of SPIE (April 30 2022)

Unattended monitoring system based on edge computing
Proceedings of SPIE (November 10 2022)

Enhanced ResNet network for food image security recognition
Proceedings of SPIE (July 31 2023)

Customization and optimization of SSD based neural network model for...
Proceedings of SPIE (July 31 2019)

Subscribe to Digital Library

Receive Erratum Email Alert

Keywords/Phrases

Search In:

Publication Years