HAL will be down for maintenance from Friday, June 10 at 4pm through Monday, June 13 at 9am. More information
Skip to Main content Skip to Navigation
Conference papers

Backdoors: Definition, Deniability and Detection

Abstract : Detecting backdoors is a difficult task; automating that detection process is equally challenging. Evidence for these claims lie in both the lack of automated tooling, and the fact that the vast majority of real-world backdoors are still detected by labourious manual analysis. The term backdoor, casually used in both the literature and the media, does not have a concrete or rigorous definition. In this work we provide such a definition. Further, we present a framework for reasoning about backdoors through four key components, which allows them to be modelled succinctly and provides a means of rigorously defining the process of their detection. Moreover, we introduce the notion of deniability in regard to backdoor implementations which permits reasoning about the attribution and accountability of backdoor implementers. We show our framework is able to model eleven, diverse, real-world backdoors, and one, more complex backdoor from the literature, and, in doing so, provides a means to reason about how they can be detected and their deniability. Further, we demonstrate how our framework can be used to decompose backdoor detection methodologies, which serves as a basis for developing future backdoor detection tools, and shows how current state-of-the-art approaches consider neither a sound nor complete model.
Document type :
Conference papers
Complete list of metadata

Cited literature [23 references]  Display  Hide  Download

Contributor : Sam Thomas Connect in order to contact the contributor
Submitted on : Monday, October 8, 2018 - 11:33:07 AM
Last modification on : Wednesday, November 3, 2021 - 6:04:00 AM
Long-term archiving on: : Wednesday, January 9, 2019 - 1:27:56 PM


Files produced by the author(s)



Sam Thomas, Aurélien Francillon. Backdoors: Definition, Deniability and Detection. Proceedings of the 21st International Symposium on Research in Attacks, Intrusions, and Defenses (RAID 2018), Sep 2018, Heraklion, Crete, Greece. ⟨10.1007/978-3-030-00470-5_5⟩. ⟨hal-01889981⟩



Record views


Files downloads