Abstract
We present the work towards strengthening the security of DNA-sequencing functionality of future bioinformatics systems against bio-computing attacks. Recent research has shown how using common tools, a perpetrator can synthesize biological material, which upon DNA-analysis opens a cyber-backdoor for the perpetrator to hijack control of a computational resource from the DNA-sequencing pipeline. As DNA analysis finds its way into practical everyday applications, the threat of bio-hacking increases. Our wetlab experiments establish that malicious DNA can be synthesized and inserted into E. coli, a common contaminant. Based on that, we propose a new attack, where a hacker to reach the target hides the DNA with malicious code on common surfaces (e.g., lab coat, bench, rubber glove). We demonstrated that the threat of bio-hacking can be mitigated using dedicated input control techniques similar to those used to counter conventional injection attacks. This article proposes to use genetic similarity of biological samples to identify material that has been generated for bio-hacking. We considered freely available genetic data from 506 mammary, lymphocyte and erythrocyte samples that have a bio-hacking code inserted. During the evaluation we were able to detect up to 95% of malicious DNAs confirming suitability of our method.
Similar content being viewed by others
Introduction
In recent years, the field of bioinformatics has undergone a noticeable transformation due to the advancements in both genomics and DNA-sequencing equipment. On one hand, current knowledge of DNA structures contributes immensely to a variety of biological and medical applications from disease screening1 to plant2 and animal3 breeding, to forensics4. On the other hand, radical new approaches such as DNA-based data storage5 have extended the use of DNA-related technologies. The arrival of the MinION sequencer6 and its associated technologies has also significantly increased the accessibility of DNA-analysis to the general public, and in the future will become an essential hardware for a range of industrial applications.
A recent study7 has demonstrated a new form of vulnerability that DNA-sequencing can be susceptible to. The study shows how an adversary can insert a malicious payload from a computer script into a DNA sequence of a biological sample. The inserted payload takes advantage of a specific binary vulnerability of software used in the DNA-sequencing pipeline. The pipeline assembles the DNA-structure of a sample from the output of a DNA-sequencing instrument (i.e. FASTQ files). Then, the payload creates and opens a reverse shell to a remote address and port for the adversary to seize control of computational resources hosting the affected software. Though hosted separately from the sequencing instrument, the pipeline is an essential part of the DNA-sequencing process. Control of the pipeline will allow the attacker to eavesdrop on and even sabotage future DNA analyses. This may lead to consequences including misdiagnosis of illnesses, use of wrong DNAs for criminal forensics investigations, or suboptimal animal and plant breeding. In this paper we consider (i) a new scenario of attack on DNA sequencing pipeline, and (ii) input-control for detecting the DNA with encoded malicious code that is used for hacking. The following sub-sections will provide a brief introduction to each of these contributions.
Physical Transport of Malicious DNA
In this article we consider an end-to-end execution of the attack on the DNA-sequencing pipeline, starting from generation of malicious DNA, to its delivery to the intended target and finally sequencing. The delivery takes the form of spraying the DNA containing malicious code onto different materials, such as a lab coat, glove, or a lab bench. Figure 1 presents an example of our attack scenario where the malicious DNA is injected into E. Coli plasmids, which in their raw form or injected into E. Coli bacteria are sprayed on a common surface (e.g. in a restaurant kitchen). The surface is swabbed by a third-party (e.g. during a routine health-and-safety inspection) and the swabs are sent for analysis to an external DNA-sequencing service (e.g. to detect the exact E. Coli strains present). The DNA-sequencing service is the intended target for the attack. Such scenarios will become more and more prevalent in the future. Due to advances in Cyber-Security, it will become increasingly difficult to gain control over a remote service using software-only vulnerabilities. Therefore, hackers will resort to more sophisticated approaches, such as the attacks we consider in this paper, where malicious code is delivered via DNA samples. These attacks represent a biological version of the injection practices used by hackers today.
Synthesis of DNA with encoded malicious code, physical transport of the malicious DNA to the targeted remote sequencer.
Input-Control for Detecting Bio-Hacking
Computer Science has been dealing with injection attacks for some time. Thus, Ron et al.8 present an overview of injection attacks on NoSQL data-storage systems. Similarly, Tsoutsous and Maniatakos9 review the attacks on Embedded Systems. To neutralize the threat identified in7, computer science offers a number of solutions. As demonstrated in10, certain hardware functionality (e.g. Intel Memory Protection Expansion) may be successfully used to address some of the underlying memory-access issues. However, such solutions are naturally hardware-specific and, therefore, cannot be applied across-the-board. Alternatively, memory-access can be tightened at the Operating System’s level11. While this loosens hardware-dependency of such solutions, their applicability is still limited. Finally, at the application level, injection attacks are successfully countered by the input-control techniques. For example12, uses input-control as a countermeasure to an injection-based attack on a system managing an electrical grid13. Runtime Application Self-Protection described in8 is an input-control technique proposed for NoSQL systems. Though built for a particular application, these techniques are compatible with multiple configurations of hardware, middleware, and operating systems. This property is particularly important for protecting a DNA-sequencing pipeline that may consist of a number of diverse computational resources.
In this paper, we evaluate the suitability of using input-control techniques against malicious DNA-injections (Fig. 2). As the main purpose of this article is to establish suitability of input-control, the evaluation is done only for a limited variety of samples. While this is sufficient for the problem at hand, the techniques can be readily extended to account for other samples (see the last paragraph in Section 2.2). We propose an input-control technique that tightly aligns with the typical stages of the DNA-sequencing process, namely Reading DNA-Fragments and DNA-assembly14. During the first stage a complete DNA sample is divided into multiple fragments that are sequenced individually to speed up the overall process. As the result of this step, the chemical structure of each fragment is represented as a string of the “A”, “C”, “T”, “G” letters representing DNA’s corresponding nucleic acids. During the second stage the fragments are assembled into the complete DNA-sequence that describes the structure of the entire DNA sample. The two stages present two distinct points where an injection of malicious DNA-content can be detected. The detection algorithm will stop any further processing of the malicious sample, and this is one of the contributions of this paper.
Input control to detect DNA-injections.
Methodology
Methodologically, the study presented in this article can be separated into two stages. During the first stage we demonstrate the reality of the threat of bio-hacking. We conducted a series of wetlab experiments to prove that E. coli bacteria can be successfully used as a viable carrier for malicious code that is encoded into its DNA plasmid. E. coli bacteria can be used to host, multiply and preserve the code within the environment and/or transport the code to its intended target as part of the physical transport. During the second stage we showed that insertion of malicious code into a DNA sequence reduces its genetic similarity with other organisms from the same biological specie. We used this fact to propose a screening algorithm to detect malicious code in DNA.
Biohacking as a valid threat
We conducted a series of wetlab experiments to prove the ability of E. coli bacteria to serve as malicious code carriers. Specifically, we considered the stability of E. Coli plasmid DNAs. It has been shown that certain E. Coli plasmids can be used as the media for long-term data storage (e.g. up to 20 days in Accelerated Aging Conditions with temperature of 65C15). However, E. Coli plasmids with encoded malicious code do not portray the typical characteristics seen in bacterial hosts nor has their stability been confirmed over multiple repetition studies. Furthermore, even minor sequencing errors (e.g. incorrect base-calling) have the potential to alter the malicious-code and render it non-functional (e.g. introduce spelling mistakes into the shell code). These errors may occur due to reasons stretching from exposure to UV, heat, chemicals16 to phasing effect and other sequencing problems17. Therefore, the stability of malicious payload recovery from the manipulated E. Coli plasmids requires additional confirmation. To do so we reproduced possible steps of a hacker trying to attack a DNA-sequencing service. We first produced E. Coli plasmids with malicious code integrated into their DNA. Next we evaluated the recovery of malicious DNA from various services sprayed by the hacker as part of the physical transport mechanism.
Figure 3(a) shows a high-level overview of the experimental design. We successfully inserted via ligation the code from7 as a DNA sequence into the plasmid (pEX-A128, see Fig. 3(b)) and designated the final recombinant plasmid as pMal1. This DNA sequence was synthesised by Eurofins Genomics, Germany. The plasmid DNA material was then successfully transformed into a population of E. coli cells (Novablue strain (Novagen)) as shown on Fig. 3(c). Plasmid DNA (prepared using the Monarch Plasmid MiniPrep kit (New England Biolabs)) and recombinant E. coli containing the plasmids were separately inoculated onto three surfaces: wooden lab bench, nitrile disposable glove (both non-absorbent) and cloth/labcoat (absorbent). The study aimed to establish if the malicious DNA material could be recovered through swabbing from surfaces several hours past spraying if a hacker was to transport the DNA. In doing so, we model physical malicious code delivery by either live E. coli or residual plasmids of non-viable bacteria that remained on various surfaces. Controls were carried out to ensure integrity of the wet lab experiments. Negative controls consisted of sterile ultrapure water being added to identical surfaces. That was done to ensure that only DNA material introduced during the experiments would be detectable by our methods. Standard E. Coli plasmid DNA samples were used as positive controls to confirm credibility of the DNA recovery through swabbing. During controls and core experiments of the study, samples were left on the surface for 24 hours and dried completely before swabbing.
Wetlab Experimental Setup. Gel-Lane content on subfigure (c) Lanes: 1 - NEB 1Kb DNA-ladder; 2 - Promega 100 bp DNA-ladder; 3 - pMal1, complete plasmid; 4 - malicious segment isolated.
To each surface, 500 ng of plasmid DNA or 1 µl of cell suspension @ O.D.600 = 12.5 (approximately ten million cells calculated using Agilent Genomics BioCalculator) were inoculated to a 1 cm3 area. Both dry and wet swabs (swabs pre-moistened with sterile TE buffer) were used to recover plasmid DNA and E. coli bacteria from each surface using the cross hatch swabbing technique. The swabs were resuspended in TE buffer and all DNA preparations were quantified using the Qubit3™ Fluorometer and Qubit™ dsDNA BR kit (Thermo Scientific), with cell suspensions measured using a NanoDrop ND-1000™ at an optical density of 600 nm. The isolated material was also subjected to PCR to detect the presence of the DNA material injected with malicious code i.e. pMal1. Oligonucleotides (pEX-For and pEX-Rev) were supplied by Eurofins, MWG operon, Germany. PCR conditions used to amplify Malcode 1 were as follows; each 15 μL PCR reaction mixture contained 7.5 μL Q5® High-Fidelity DNA Polymerase Master Mix (NEB), 15 pmol of each primer and 15 ng pMal1 plasmid DNA. PCR conditions include: 1 cycle of 95 °C for 5 min, 30 cycles of 95 °C for 1 min, 66 °C for 1 min, 72 °C for 30 s, 1 final extension stage of 8 minutes. PCR amplification limits were tested by adding decreasing amounts of pMal1 plasmid DNA to reactions via serial dilution of template. PCR products were analyzed by agarose gel electrophoresis. Figure 2(d) presents complete pMal1 plasmid DNA (lane 3) and PCR amplification of a segment from pMal1 DNA containing the malicious code sequence (lane 4). Sequencing of plasmid insert was carried out in triplicate using the vector-specific primers pEX-For and pEX-Rev, with all sequencing carried out by GATC Biotech, Germany.
Genetic similarity as a counter-measure
During the genetic similarity analysis we made extensive use of Genetic Signal Processing (GSP) techniques. For an organism (e.g. E. coli bacterium), GSP works with the string representation of the DNA structure. The structure is presented as a sequence of “A”, “C”, “T” and “G” symbols corresponding to the 4 DNA nucleic acids. The sequence is transformed into a continuous signal (often referred to as Genetic Signal) that is then analysed using various Signal Processing techniques. This research used the Voss transformation18 to obtain Genetic Signals from DNA strings. The transformation had previously proven efficient in multiple studies on similarities of DNA within biological types, classes and families19. Results of the Voss transformation were subjected to Discrete Fourier Transform (DFT). Results of DFT formed the features (specifically Energy Values of DFT’s Frequency Spectrums obtained for DNA Voss transform as presented in the Appendices) that we used to establish dissimilarity between the original and injected DNAs (proven technique, same as in20). See Appendix A of the Supplementary Material. The overall transformation represents an arbitrary DNA sequence (may be rather large in length) as a tuple of 20 floating-point numbers. This representation significantly reduces complexity of distance-wise comparisons between DNA sequences. Consider a distance between two DNA sequences whose lengths are m and n. Then, complexity of traditional methods such as Needleman-Wunsch (part of popular BLAST framework) estimated as O(nm), while complexity of calculating Euclidean distance in R20 (used in this article) is only O(1). This reduction is particularly important when such comparisons may consider multitude of species and their variations.
DNA Robustness to malicious injections
Similarity of Voss genetic signals was used to evaluate the effect of malicious code injection of various DNA structures. Thus, initially, the robustness of DNA from mammary, erythrocyte and lymphocyte cells of humans was considered. The three DNA-types are significantly larger in comparison to that of E. coli plasmids and, therefore, have a larger potential to camouflage the injected malicious code DNA sequences. Therefore, the ratio between the original and malicious DNA codes is lower for human cells, making it harder to identify the injected DNA sequences. This is particularly relevant as our analysis heavily relied on Fourier Spectral Energy values, which tend to overlook smaller fluctuations in signals. Subsequently, results of those analyses were confirmed for E. coli plasmids.
When investigating robustness of DNA to code injections, we first obtain string representations of real DNAs for each type that we analyze: DNA of E. coli plasmids as well as mammary, erythrocyte and lymphocyte DNAs of humans. Thus, for the human cells we used 254 mammary, 104 lymphocyte and 48 erythrocyte DNAs obtained from individuals, stored and made publicly available by NCBI database (see Appendix B of the Supplementary Material). For each of the cell-types the DNAs included equal numbers of cancerous mutations and their cancer-free counterparts. For each cell types its DNA strings were modelled with injection of malicious code, where sub-sequence of the original DNA were substituted with malicious DNA sub-sequences similar to that proposed in7. Each malicious sub-sequence was generated for a particular shell-command designed to hijack control of the DNA-sequencer. Full list of the commands can be found in the Supplementary Material, Appendix C of the article. Each command was first represented by the binary code of its characters. From the binary code the malicious DNA sub-sequence was then derived by using a simple coding technique, where ‘00’ is substituted with ‘A’, ‘01’ with ‘C’, ‘10’ with ‘T’, and ‘11’ with ‘G’. The ACTG encodings were inserted into the existing DNAs. In each of the DNA a partition of the same size as the encoding is randomly selected, the partition is substituted with the encoding. All of the original DNA and their injected counterparts were amalgamated into a single DNA-pool.
To establish robustness in identifying malicious code injections of DNAs, Case Based Reasoning (CBR), a renowned Data Mining technique was applied. CBR is a technique that mimics the decision-making process of humans such that when an individual needs to make a decision they will first intuitively try to call upon their previous similar experiences21, which is continually extended depending on the results caused by each decision. In the exact same way, CBR maintains and updates a collection of previous cases that have been put to it. For genetic similarity assessment, we considered two DNA classes: Original and Injected. For each class and each DNA-type, we randomly selected a subset of original and injected DNAs from the DNA-pool. The subset would serve as CBR’s previous experience. Euclidean closeness to one of the previous experience cases was used as the basis for classification. Performance of the CBR classification was evaluated for the available DNAs other than those used as previous experience. While this study is only concerned with suitability of input-control techniques, successful use of any classifier is sufficient. However, some of the specific features of CBR are particularly attractive in the context of classification of an arbitrary DNA. CBR does not have an explicit training stage but solely relies on its previously known cases. Therefore, introduction of additional species will only require the cases to be appended with the species’ representative samples. For detailed description of CBR and its use in this study see Appendix E.
Results and Discussion
Following the methodological stages of this research, the two subsections below present results that we obtained while validating Biohacking as a Valid Threat and using Genetic Similarity as a Counter-Measure.
Biohacking as a valid threat
To prove that E. coli may be used during physical transport of malicious DNA, 500 ng of E. coli plasmid DNA and approximately 10 million E. coli bacteria were inoculated to the three surfaces under investigation (i.e. lab bench, glove and lab coat), as described in the previous section. When using wet-swabs to recover dried plasmid DNA from non-absorbent surfaces, 97% of inoculated material was recoverable (see Fig. 3). Using dry swabs, 26% and 16% of dried plasmid DNA was recovered from the bench and glove sites, respectively. When using wet-swabs to recover dried E. coli bacteria from on-absorbent surfaces ~65% of cells were recoverable. Using dry swabs, 9% of the dried E. coli population was recovered from the lab bench and glove sites. DNA sequencing of all of the recovered material allowed correct reconstruction of the manipulated DNA. No errors were encountered during sequencing. Neither E. coli plasmid DNAs nor E. coli bacteria were recoverable from the absorbent surfaces (i.e. labcoat) to quantifiable levels, regardless of dry or wet swabbing. The detection limits using standard quantification for plasmid DNA and bacteria cells were 1 ng/µl or O.D.600 = 0.001 respectively.
While the results in Fig. 4 paint a picture of relative safety offered by absorbent surfaces, lowering the PCR detection level of the swabbing results did yield some DNA material from the injected E. coli plasmids and bacteria. Even though, in this case the level of contamination was much lower than what’s required for standard quantification, the amount of manipulated DNA allowed for error-free sequencing and was sufficient to contaminate and compromise a DNA sequencer. To prove that we used a series of E. coli plasmid dilutions, which were subjected to PCR amplification, as little as 0.1 pg of plasmid DNA as template per 15 µl PCR reaction yielded amplification. As the plasmid used in this study (pEX-A128) is 2,450 bp in size and contains a malicious insert (297 bp), it can be calculated that 0.1 pg of plasmid DNA contains 3.5 × 104 plasmid molecules. Using a conservative estimate of 200 plasmid molecules per cell, only 1,750 cells from the 10 million inoculated on surfaces are needed to yield amplifiable amounts of the malicious DNA. Therefore, it can be concluded that both E. coli plasmid DNA and E. coli bacteria possess sufficient capabilities to contaminate and compromise DNA sequencing equipment regardless of the surface type or swabbing method. The persistence, and therefore, stability of cells as a malicious DNA carrier/source of infection would be further augmented if spore-forming cells were used22.
Recovery Rates for Malicious DNA material from non-absorbent surfaces using wet and dry swabbing.
Genetic similarity as a counter-measure
Results of previous studies have shown the use of Fourier Spectrum Energy representation of Voss Transformation for DNA classification. Thus20, reports on a particular arrangement for DNA sequences of Healthy and Cancerous samples of human mammary tissue (see Appendix D Fig. 9), where all Healthy DNAs belong to a single tight cluster that all Cancerous DNAs lay strictly outside of. However, as results of20 are based on a small selection of DNAs, conclusions of20 require further validation. Figure 5(a–c) evaluate (via ROC-analysis) threshold-based separation between Healthy and Cancerous DNA using Average, Minimal or Maximal distance to the remainder of Cancerous/Healthy samples. The arrangement reported in20 results in exceptional ROC curves with AUC equal 1 (Fig. 5(a)). This does not quite hold for a larger set of DNAs obtained from the NCBI database (Fig. 5(b,c)). Both figures noticeably differ from the results of20 in cases of Average and Maximal distances. Both distances express a fairly low predictive capacity (AUC close to 0.5 due to chance), which contradicts one cluster arrangement of Healthy mammary DNAs. However, good predictive capacity of the Minimal Distance (i.e. AUC close to 1 or 0) is an indication of some cluster-like structure amongst the DNAs. This was further confirmed by sufficiently high CBR-classification accuracy obtained for the NCBI’s DNA samples (Fig. 5(d)).
DNA similarity, extended study ROC curve for threshold-classification between (a) Healthy/Cancer samples from20, (b) Healthy/Cancerous mammary and (c) lymphocyte/mammary samples from NCBI; (d) CBR cell-type classification.
The structure re-established by Fig. 5 further re-affirms the validity of CBR for identification of DNAs with malicious code injections. As cancerous mutations (which typically affect very small DNA-partitions) are sufficient to distinguish Cancerous from Healthy DNAs, much larger code injections should be detectable using the same methods. To confirm that, we first conducted a series of experiments trying to determine if the original malicious code proposed in7 could be detected via CBR. Figure 6 presents results for the malicious code injections in mammary, lymphocyte and erythrocyte DNAs. Similar to other figures, Fig. 6(a,b) evaluates the predictive capacity of the three distances. This evaluation closely aligns with the conclusions from Fig. 5. Subsequently, Fig. 6(c) shows results of the CBR classification showing the levels of correct detection increasing up to approximately 90%. While this detection rate may seem low, it is anticipated that higher detection rate will be achieved in a practical setting. The presented results were obtained for various sizes of previously known genetic material exploited by the CBR. To protect a real DNA sequencer, the most complete CBR knowledge (close to 100%) will be used. In our experiments up to 90%-complete CBR knowledge was used, as a portion of known DNAs were required to evaluate the detection itself.
DNA similarity, injection of malicious code from7: ROC curves for threshold-classification of injected DNA for (a) lymphocyte and (b) mammary, lymphocyte and erythrocyte cells; (c) CBR classification.
Figures 5(d) and 6(c) provide additional insight in relation to the impact of the set of biological species within which the malicious DNA is detected. The CBR-classification is better for the lesser specie-sets (i.e. “Mammary and Lymphocyte” set in Fig. 5(d) and “Lymphocyte” set in Fig. 6(c)) when compared to their extended versions (i.e. “Mammary, Lymphocyte and Erythrocyte” set on both figures). Due to the increased DNA-variability of the extended sets CBR knowledge of a particular size is likely to capture more of the DNA-variability of a lesser specie-set. At the same time, for any specie-set, larger CBR knowledge captures more of the DNA-variability and thus shows better detection accuracy. This can be also seen in Figs 5(d) and 6(c) where all of the detection accuracies increase with increase of knowledge size. However, as the accuracy-growth is naturally bounded, the difference in detection accuracy between lesser and extended specie-sets diminishes with the increase of CBR knowledge size. This will impact on the practical use of the proposed CBR-based detection of malicious DNAs. To ensure adequate detection-accuracy, applications dealing with heterogeneous DNA-sources will require larger CBR knowledge compared to their specialized counter-parts (e.g. Human Lymphocyte-only samples).
Figure 7 summarizes the impact of variability in the malicious code on the detection accuracy. 5 to 11 (see Supplementary Materials) different malicious code samples were injected into DNAs of lymphocyte, erythrocyte and mammary cells. The shape and values on Fig. 7 are noticeably close to those on Fig. 6, which leads us to believe that code variability had little or no impact on the CBR performance. This supports the hypothesis originated from the analysis of Fig. 5. Malicious code exceeds cancerous mutations in size and should be detectable by CBR.
CBR-based detection of diverse malicious DNA in (a) lymphocyte and (b) lymphocyte, mammary and erythrocyte cells.
Figure 8(a) investigates the use of CBR for injection classification based on DNA fragments that would be typically formed at the end of the first stage of DNA sequencing. Figure 8(a) looks at how accurate a single DNA-fragment can be identified as coming from a genuine or injected DNA. Note that depending on the DNA sequencer and associated chemistry (e.g., Sanger versus Illumina sequencing or amplicon versus genome sequencing), its user can specify or predict the size of DNA fragments (also called reads, amplicons or fragments to be sequenced) that the original DNA will be assembled into the complete sequence23. From the information-security viewpoint, detecting malicious code injections from fragments presents a stronger counter-measure for DNA hacking. Detecting a malicious injection from fragments will preclude any further analysis of the fragments, guarding DNA assembly code from its own binary vulnerabilities. However, the quality of such detection will depend on the size of the DNA fragments. On one hand, for smaller fragments the length ratio between the original and injected components is expected to be higher (compared to larger fragments or full DNA), potentially simplifying the detection. On the other hand, from the perspective of combinatorics, we know that the numbers of all possible “ACTG” string-representations is fewer for shorter fragments. This complicates the detection. This is confirmed in Fig. 8(a), where general classification accuracy increases as the fragment length (or read size) increases. Yet the increase is bounded. Even for fragments of 4 bp, the detection accuracy is higher than that of a full DNA (Figs 6–8). Therefore, the optimal read size is limited, but should not be below 24 bp.
CBR-based detection of malicious content: (a) in DNA fragments of human mammary, erythrocyte and lymphocyte DNAs; (b) in E. Coli Plasmid DNA.
Finally, we investigated the use of CBR to detect malicious code injections into the DNA plasmid material of E. coli bacteria. Figure 8(b) shows the growth of the detection accuracy with the increase of the knowledge size. As it can be seen from the figure, the growth is more rapid for E. coli rather than humans. This can be explained by the lower complexity of E. coli DNA, leading to a lesser representation required to describe the underlying structure of genuine and injected DNAs.
Conclusions
In this article we have investigated the threat of bio-hacking for modern DNA-sequencers. We have shown that simple organisms such as E. coli bacteria can be used to transport malicious DNA code to its destination. To protect against this threat, we have proposed a counter measure. We have shown that it is possible to use the existing DNA-similarity of biological species to identify the presence of malicious code within DNA of a particular sample. With the example of lymphocyte, erythrocyte and mammary DNA of humans, we have shown how Voss Transformation and CBR can be used for that identification. The accuracy of the identification increases as more DNA structure information becomes available to the CBR model. Code injections appear to be substantially different to natural mutations of DNA, and variability of the malicious code has lower impact on its identification accuracy. It is beneficial to use DNA fragments to increase the accuracy of identification, where there is an optimal fragment-length to be used. We have also demonstrated a new form of transport for the DNA with encoded malicious code, and that is through various types of materials (e.g., lab coat, glove, or lab bench). This demonstrates that hackers in the future can transport the DNA with the encoded malicious code and swab the samples once they get close to the DNA sequencer, or spread the samples in an environment that will be potentially be swabbed. Experiments have shown that recovery was achievable for materials such as glove and lab bench, but was not very good for cloth.
Data Availability
All data used during the study presented in the manuscript is freely available in the public domain. The manuscript’s Methodology (e.g. Section 2) outlines the origin of the data. Furthermore, for the convenience of the reader we provide supplementary material that (Appendixes B and C) lists the DNAs and injection codes used.
References
Sun, W. et al. Common Genetic Polymorphisms Influence Blood Biomarker Measurements in COPD. PLOS Genetics 12(8), 1–33 (2016).
Varshney, R. K. et al. Analytical and Decision Support Tools for Genomics-Assisted Breeding. Trends in Plant Science, Elsevier 21(4), 354–363 (2016).
Wallén, S. E., Lillehammer, M. & Meuwissen, T. H. E. Strategies for implementing genomic selection for feed efficiency in dairy cattle breeding schemes. Journal of Dairy Science, Elsevier 100(8), 6327–6336 (2017).
Paoletti, D. R., Krane, D. E., Raymer, M. L. & Doom, T. E. Inferring the Number of Contributors to Mixed DNA Profiles. IEEE/ACM Transactions on Computational Biology and Bioinformatics. 9(1), 113–122 (2012).
Jain, S., Farnoud Hassanzadeh, F., Schwartz, M. & Bruck, J. Duplication-Correcting Codes for Data Storage in the DNA of Living Organisms. IEEE Transactions on Information Theory 63(8), 4996–5010 (2017).
MinION DNA-sequencer, accessed online on 15.10.2018 at, https://nanoporetech.com/products/minion.
Ney, P., Koscher, K., Organick, L., Ceze, L. & Kohno, T. Computer security, privacy, and DNA sequencing: Compromising computers with synthesized DNA, privacy leaks, and more, Proceeding of the 26th USENIX Security Symposium (USENIX Security 17), USENIX Association, Vancouver, BC, pp. 765–779 (2017).
Ron, A., Shulman-Peleg, A. & Puzanov, A. Analysis and Mitigation of NoSQL Injections. IEEE Security & Privacy 14(2), 30–39 (2016).
Tsoutsos, N. G. & Maniatakos, M. Anatomy of Memory Corruption Attacks and Mitigations in Embedded Systems, in IEEE Embedded Systems Letters, 10(3), 95–98 (Sept, 2018).
Jin, H., Liu, B., Du, Y. & Zou, D. BoundShield: Comprehensive Mitigation for Memory Disclosure Attacks via Secret Region Isolation. IEEE Access 6, 36341–36353 (2018).
Ahn, D. & Lee. G. A Memory-Access Validation Scheme against Payload Injection Attacks, IEEE Transactions on Dependable and Secure Computing, 12(4), 387–399 (1 July-Aug. 2015).
Yu, J. J. Q., Hou, Y. & Li, V. O. K. Online False Data Injection Attack Detection With Wavelet Transform and Deep Neural Networks. IEEE Transactions on Industrial Informatics 14(7), 3271–3280 (2018).
Liu, X., Li, Z., Liu, X. & Li, Z. Masking Transmission Line Outages via False Data Injection Attacks. IEEE Transactions on Information Forensics and Security 11(7), 1592–1602 (2016).
Motahari, A. S., Bresler, G. & Tse, D. N. C. Information Theory of DNA Shotgun Sequencing. IEEE Transactions on Information Theory 59(10), 6273–6289 (2013).
Nguyen, H. H. et al. Long-Term Stability and Integrity of Plasmid-Based DNA Data Storage. Polymers 10(28), 1–10 (2018).
Fan, L. et al. Development of a screening system for DNA damage and repair of potential carcinogens based on dual luciferase assay in human HepG2 cell. Mutagenesis, Oxford University Press 28(5), 515–524 (2013).
Pfeiffer, F. et al. Systematic Evaluation of error rates and causes in sort samples in next-generation sequencing, Scientific Reports. Nature 8(1), 1–14 (2018).
Meng, T. et al. Wavelet Analysis in Current Cancer Genome Research: A Survey. IEEE/ACM Transactions on Computational Biology and Bioinformatics 10(6), 1442–1459 (2013).
Mendizabal-Ruiz, G., Román-Godínez, I., Torres-Ramos, S., Salido-Ruiz, R. A. & Morales, J. A. On DNA numerical representations for genomic similarity computation, Plos One, 12(3) (2017).
Ghosh, A. & Barman, S. Application of Euclidean distance measurement and principal component analysis for gene identification. Gene, Elsevier 583(2), 112–120 (2016).
Chen, Q. et al. An ontology-driven, case-based clinical decision support model for removable partial denture design. Scientific Reports, Nature 6(1), 1–8 (2016).
Willerslev, E. et al. Long-term persistence of bacterial DNA. Current Biology, Cell Press 14(1), 9–10 (2004).
Schuster, S. C. Next-generation sequencing transforms today’s biology. Nature Methods 5(1), 16–18 (2008).
Acknowledgements
This work is supported by the Finnish Academy Research Fellow programme [284531], as well as Science Foundation Ireland (SFI) via the Precision Dairy project [13/IA/1977], VistaMilk [16/RC/3835] and CONNECT [13/RC/2077] research centres.
Author information
Authors and Affiliations
Contributions
The following description outlines in detail contribution made by the individual authors of the manuscript. Mr. Mohd Siblee Islam is the primary author of the article. Mr. Islam specializes in CBR analysis and Information Security. He is the primary author, and he directly contributed to at stages of the research presented in the manuscript. Mr. Islam was the researcher who carried out the CBR-based DNA-analysis presented in this paper. Mr. Islam was responsible for collating the results from wetlab and CBR experiments, and writing the paper. Mr. Islam is the primary author of the paper, he was the primary writer of the content of the article. Dr. Stepan Ivanov directed the CBR-based analysis conducted by Mr. Islam. As part of these activities, Dr. Ivanov assisted Mr. Islam in selection of the human DNAs to be used as part of the CBR-analysis, selection of the CBR-experiments that were carried out by Mr. Islam. Input of Dr. Ivanov was vital in understanding the potential cluster-like structure of the DNA-material (e.g. similar to [20]) and linking it to the performance of the CBR method. Dr. Ivanov took part in collating results from wet-lab and CBR-analysis. Dr. Ivanov took part in writing the text of the manuscript (Sections 2.2, 3.2). Mr. Eric Robson specializes in the Area of Data Mining and Artificial Intelligence. Mr. Robson took part in understanding the cluster-like structure of the DNA-material. It was Mr. Robson’s proposition to use threshold-based analysis and Area Under the Curve metric to explore the geometry of the feature space selected to represent the DNA sequences. The suggestion and subsequent involvement and guidance from Mr. Robson proved crucial in assessing the impact of different distance-based measurements (e.g. minimum distance to the set of cancerous DNAs) on the cluster-like structure of DNA data. Ms. Trion Dooley-Cullinane and Dr. Lee Coffey specialize in bio-chemistry and were the team who conducted the wetlab and PCR experiments as part of “Relevance of Biohacking” stage of the analysis presented in the manuscript. Ms. Dooley-Cullinane and Dr. Coffey wrote sections 2.1 and 3.1 of the manuscript. Mr. Kevin Doolin has a background in the Architecture of Computer Systems. Mr. Doolin’s input was vital in understanding the practical use of the proposed detection technique from the computer systems perspective. It is Mr. Doolin who drew a parallel between the attack and the injection techniques that are commonly used against modern ICT systems. This understanding and further direction and guidance from Mr. Doolin helped identify input control as the approach to counter the attack. Subsequently, Mr. Doolin identified the use of the technique as part of a system (e.g. detection from DNA fragments rather than complete sequence). Dr. Sasitharan Balasubramaniam was the mastermind and the main scientific driver behind the experiments presented in the article. Due to his multi-disciplinary background, Dr. Balasubramaniam identified the possibility for E. Coli bacteria to be used as carriers of malicious DNA on-purposed engineered as part of an attack. In essence that was the starting point for the research presented in the article. Subsequently, Dr. Balasubramaniam directed and oversaw both wetlab and DNA experiments conducted in the presented research.
Corresponding author
Ethics declarations
Competing Interests
The authors declare no competing interests.
Additional information
Publisher’s note: Springer Nature remains neutral with regard to jurisdictional claims in published maps and institutional affiliations.
Supplementary information
Rights and permissions
Open Access This article is licensed under a Creative Commons Attribution 4.0 International License, which permits use, sharing, adaptation, distribution and reproduction in any medium or format, as long as you give appropriate credit to the original author(s) and the source, provide a link to the Creative Commons license, and indicate if changes were made. The images or other third party material in this article are included in the article’s Creative Commons license, unless indicated otherwise in a credit line to the material. If material is not included in the article’s Creative Commons license and your intended use is not permitted by statutory regulation or exceeds the permitted use, you will need to obtain permission directly from the copyright holder. To view a copy of this license, visit http://creativecommons.org/licenses/by/4.0/.
About this article
Cite this article
Islam, M.S., Ivanov, S., Robson, E. et al. Genetic similarity of biological samples to counter bio-hacking of DNA-sequencing functionality. Sci Rep 9, 8684 (2019). https://doi.org/10.1038/s41598-019-44995-6
Received:
Accepted:
Published:
DOI: https://doi.org/10.1038/s41598-019-44995-6
This article is cited by
-
Using deep learning to detect digitally encoded DNA trigger for Trojan malware in Bio-Cyber attacks
Scientific Reports (2022)
Comments
By submitting a comment you agree to abide by our Terms and Community Guidelines. If you find something abusive or that does not comply with our terms or guidelines please flag it as inappropriate.
