Perrig's Team Develops Software to Detect Viruses

 

March 30, 2005

New types of insidious programs are burrowing into a variety of embedded systems in cars and cell phones, wreaking all sorts of problems. Here's what Carnegie Mellon University Electrical and Computer Engineering researchers are doing to combat them:

A research team led by Adrian Perrig has developed a new software designed to detect remote malicious attacks, such as worms and viruses. Other researchers on the team include graduate student Arvind Seshadri, College of Engineering Dean Pradeep Khosla and IBM researcher Leendert van Doorn.

Dubbed SWATT, short for SoftWare-based ATTestation, this new cyber-cop can root out the worst offenders by alerting users that their cell phone or car computer has been invaded by an unwanted rogue virus, said Perrig, an assistant professor of electrical and computer engineering, engineering and public policy, and computer science.

"We have designed a special mechanism that can verify the code running on any given remotely embedded system," Perrig said. "We can detect the presence of any virus: simple viruses can be detected through their altered memory contents, while more advanced viruses will attempt to hide, but we can detect them since hiding will slow down our code verification."

In fact, some viruses can slow a computer's performance to a crawl by hogging its memory.

But the Carnegie Mellon SWATT software is programmed to seek out and find even the most finicky virus no matter how elaborate the virus defenses are. Industry analysts say this new software has enormous implications since there are hundreds of new Internet viruses cropping up daily. Even worse, hackers are setting up camp in millions of computers across the country. Some of this new computer spyware can even carry orders to snatch passwords and run other online scams. These include "keyloggers" that record every tap on the keyboard and "dialers" that direct computer modems to dial premium-rate numbers, running up phone bill charges for unwitting computer or cell phone users.

"This new software will have tremendous impact for industry and consumers as we can find viruses that infect cars, cell phones and other networked devices," Perrig said.

About Carnegie Mellon:

Carnegie Mellon is a private research university with a distinctive mix of programs in engineering, computer science, the sciences, business, public policy, fine arts and the humanities. More than 8,000 undergraduate and graduate students receive an education characterized by its focus on creating and implementing solutions to solve real problems, interdisciplinary collaboration and innovation. A small student-to-faculty ratio provides an opportunity for close interaction between students and professors. While technology is pervasive on its 110-acre campus, Carnegie Mellon also is distinctive among leading research universities because of conservatory-like programs in its College of Fine Arts.

Headshot of Adrian Perrig

Related People:

Pradeep Khosla

Adrian Perrig

Related Groups:

CyLab