Harm caused by cyber biology…vulnerable are DNA testing and delivery networks

Synthesis and study of DNA software It has been found out that it is fair to conclude that there is no suitable protection mechanism for defense in the pipeline. Because of this, by cyber attacks, genetic testing and disease research can be compromised or distorted. Researchers at Ben Gurion University in Israel have announced this.

In the laboratory, researchers performed proof-of-concept attacks. The main theme of the attack was ordering toxic peptides by modifying and obfuscating the DNA chain. The researchers said they used the obfuscation strategy used by malware developers at this time. In the meantime the toxic peptides ordered went through all protection equipment and control systems and went right before launch, it is said. The researchers told the business and in time canceled the order.

The explanation for the success of this experimental attack is that it is not only the business, but also the industry, attempting to detect that it is a ‘malignant DNA sequence.’ It is as if malware code first emerged and targeted enterprises one by one but the researchers clarified that it is compared to the time when this notion was not understood at all by the general public.

Rami Puzis, senior software and information security professor at Ben Gurion University, said the DNA sequencing pipeline is running at a quick rate, and agile methodologies (such as DevOps) are considered growth methodologies. Explain that in a certain manner, it continues. And DNA is treated as data, and DNA should be treated as code in practice. This means that to secure DNA, a system of code protection, not data protection, should be implemented.

This research started because, Fuzis states, DNA synthesis technology is becoming more popular. “DNA manipulation and synthesis methods, in particular, are much cheaper than before. Duration is getting shorter as well. The result of this report, meanwhile, is that a flaw was found in the pipeline. In other words, it implies that the theoretical basis of the area that will be more established in the future has to be solidified.

DNA is regarded as life’s fundamental building stone. The findings can be very fatal if the sequencing method that sequences these DNAs is corrupted or polluted. In 2017, researchers at the University of Washington have found out that via the DNA processing pipeline, malicious agents may interfere. The researchers managed to exploit the pipeline with specially engineered DNA samples at the time.

It has been studied that there are so many unsafe C runtime library function calls in current biological research programs. It seems to me that applications for DNA processing does not adhere at all to current security practices for apps.” At the time, researchers at the University of Washington pointed out in their report.”

The DNA processing pipeline, of course, is very complicated and involves experience in the DNA field, so it is impossible to claim if the DNA analysis field is at risk right now. It is never, however a defensive countermeasure to suggest that to make an attack effective, you need experience. The 2010 Stuxnet attack was also a ‘impossible attack without experience in nuclear reactors’, but it actually happened.

Ben Gurion University said The current pipeline situation is that a simple’man-in-the-browser (MITB)” attack will overwrite regular DNA sequences with malicious DNA sequences. “This situation is really serious. That could trigger it,’ he warned. “With a cyber-physical attack, you can inflict physical harm, but the damage done by the DNA pipeline is different. This is going to be an entirely different form of injury. We think this may be the beginning of an assault on ‘cyber-biology.’ Via cyber attacks it may cause permanent disease or physical injury.

‘Standard security practices’ were proposed as defense initiatives. We certify the DNA base sequence by adding digital certificates, create monitoring technology for suspicious activities or modifications, plan threat scenarios and countermeasures that may arise in DNA collection and analysis processes, and exchange business knowledge by adding digital certificates. Stuff, etc. In other terms, Fouges clarifies that the emphasis should be on increasing the attack’s complexity right now.