Battery-Based Intrusion Detection: A Focus on Power for Security Assurance 2004-01-3169
An intrusion detection system (IDS) for mobile devices is at odds with itself: IDS should run continuously and remain transparent to the system and the user(s); however, the IDS should use as little system resources as possible to detect and prevent intrusions. This paper proposes an efficacious early warning system via a mobile host-based form of intrusion detection that can alert security administrators to protect their corporate network(s). This innovative technique operates through the implementation of battery-based intrusion detection (B-bid) on mobile devices by correlating attacks with their impact on device power consumption using a rules-based host intrusion detection engine (HIDE). HIDE monitors power behavior to detect potential intrusions by noting irregularities of power consumption and works in conjunction with a scan port intrusion engine (SPIE) and a host analysis signature trace engine (HASTE) to provide protection to both mobile hosts and, by extension, their affiliated network(s).