Search results

  1. X-Force: Force-Executing Binary Programs for Security Applications

    paper introduces X-Force, a novel binary analysis engine. Given a potentially malicious binary ...

    arnold - January 10, 2022 - 1:13 pm

  2. Size Does Matter: Why Using Gadget-Chain Length to Prevent Code-Reuse Attacks is Hard

    In this paper, we evaluate the implications. What is “too many” and how short is “short”? Getting the ... thresholds wrong has serious consequences. In this paper, we show by means of an attack on Internet Explorer ...

    arnold - December 22, 2021 - 4:22 pm

  3. Optimizing Seed Selection for Fuzzing

    properly. In this paper, we focus on how to mathematically formulate and reason about one critical aspect in ...

    arnold - January 10, 2022 - 1:09 pm

  4. BareCloud: Bare-metal Analysis-based Evasive Malware Detection

    in which the malware is analyzed without the use of any detectable component. In this paper, we ...

    arnold - January 10, 2022 - 2:34 pm

  5. BYTEWEIGHT: Learning to Recognize Functions in Binary Code

    functions in stripped binaries remains a challenge. In this paper, we propose BYTEWEIGHT, a new automatic ...

    arnold - December 22, 2021 - 3:31 pm

  6. On the Practical Exploitability of Dual EC in TLS Implementations

    California, San Diego This paper analyzes the actual cost of attacking TLS implementations that use NIST’s ... paper investigates OpenSSL-FIPS, Windows’ SChannel, and the C/C++ and Java versions of the RSA BSAFE ... library. This paper shows that Dual EC exploitability is fragile, and in particular is stopped by an ...

    arnold - December 22, 2021 - 3:44 pm

  7. Reorganizing Workflow Evolution Provenance

    most compact or intuitive. This paper presents algorithms to update and transform workflow ...

    arnold - December 13, 2021 - 11:52 pm

  8. Influence Factor: Extending the PROV Model With a Quantitative Measure of Influence

    language for provenance representation. In this paper we suggest that given the PROV model as it stands, ... influencer affected an influencee beyond a simple wasInfluencedBy relation. In the paper, we define influence ...

    arnold - December 13, 2021 - 11:52 pm

  9. Model-based Abstraction of Data Provenance

    Christian W. Probst, Technical University of Denmark;  Rene Rydhof Hansenm, Aalborg University Identifying provenance of data provides insights to the origin of data and intermediate results, and has recently gained increased interest due to data-centric ...

    arnold - December 13, 2021 - 11:52 pm

  10. Approximated Provenance for Complex Applications

    Eleanor Ainy, Tel Aviv University; Susan B. Davidson, University of Pennsylvania; Daniel Deutch and Tova Milo,  Tel Aviv University Many applications now involve the collection of large amounts of data from multiple users, and then aggregating and manipul ...

    arnold - December 13, 2021 - 11:52 pm

  11. RDataTracker: Collecting Provenance in an Interactive Scripting Environment

    Barbara Lerner, Mount Holyoke College;  Emery Boose, Harvard University Barbara Lerner, Mount Holyoke College Emery Boose, Harvard University BibTeX @inproceedings {184659, author = {Barbara Lerner and Emery Boose}, title = {{RDataTracker}: Collecting Pro ...

    arnold - December 13, 2021 - 11:52 pm

  12. Provenance Capture Disparities Highlighted through Datasets

    Blake Coe,  The MITRE Corporation;  R. Christopher Doty,  Georgia Institute of Technology;  M. David Allen and Adriane Chapman,  The MITRE Corporation Provenance information is inherently affected by the method of its capture. Different capture mechanisms ...

    arnold - December 13, 2021 - 11:52 pm

  13. UP & DOWN: Improving Provenance Precision by Combining Workflow- and Trace-Level Information

    Saumen Dey, University of California, Davis; Khalid Belhajjame, Université Paris-Dauphine; David Koop, New York University; Tianhong Song, University of California, Davis; Paolo Missier, Newcastle University; Bertram Ludäscher, University of California, D ...

    arnold - December 13, 2021 - 11:52 pm

  14. Immutably Answering Why-Not Questions for Equivalent Conjunctive Queries

    Nicole Bidoit, Melanie Herschel and Katerina Tzompanaki, Université Paris-Sud Answering Why-Not questions consists in explaining to developers of complex data transformations or manipulations why their data transformation did not produce some specific res ...

    arnold - December 13, 2021 - 11:52 pm

  15. Towards Constraint Provenance Games

    derivations, resulting in a domain dependent formalism. In this paper, we propose constraint provenance games ...

    arnold - December 14, 2021 - 12:52 am

  16. Regular Expressions for Provenance

    Michael Luttenberger and Maximilian Schlund, Technische Universität München As noted by Green et al. several provenance analyses can be considered a special case of the general problem of computing formal polynomials resp. power-series as solutions of an ...

    arnold - December 14, 2021 - 12:52 am

  17. Provenance-Only Integration

    Ashish Gehani and Dawood Tariq, SRI International As provenance records are collected from an increasingly diverse set of sources, the need to integrate them grows. The alternative approach of reconciling semantics scales when the records are queried infr ...

    arnold - December 14, 2021 - 12:52 am

  18. A Generic Provenance Middleware for Queries, Updates, and Transactions

    Bahareh Arab, Illinois Institute of Technology;  Dieter Gawlick and Venkatesh Radhakrishnan, Oracle Corporation;  Hao Guo and Boris Glavic,  Illinois Institute of Technology We present an architecture and prototype implementation for a generic provenance ...

    arnold - December 14, 2021 - 12:52 am

  19. Start Smart and Finish Wise: The Kiel Marine Science Provenance-Aware Data Management Approach

    Peer C. Brauer, Kiel University; Andreas Czerniak, GEOMAR Helmholtz Centre for Ocean Research Kiel; Wilhelm Hasselbring, Kiel University While creating or processing scientific data, it is very important to capture and to archive the corresponding provena ...

    arnold - December 14, 2021 - 12:52 am

  20. Report From the CoalFace: Lessons Learnt Building A General-Purpose Always-On Provenance System

    user-space. In this paper we present some important lessons for anyone hoping to implement a general purpose ...

    arnold - December 14, 2021 - 12:52 am

  21. Security Analysis of a Full-Body Scanner

    Tuesday, July 22, 2014- 3:00pm Keaton Mowery, University of California, San Diego; Eric Wustrow, University of Michigan; Tom Wypych, Corey Singleton, Chris Comfort, and Eric Rescorla, University of California, San Diego; Stephen Checkoway, Johns Hopkins U ...

    arnold - December 13, 2021 - 9:52 am

  22. TESTREX: a Testbed for Repeatable Exploits

    new vulnerabilities, we need to have a reliable testbed. In this paper, we present TESTREX, a testbed ...

    michele - December 12, 2021 - 11:31 pm

  23. Safe and Automated Live Malware Experimentation on Public Testbeds

    Institute In this paper, we advocate for publicly accessible live malware experimentation testbeds. We ...

    michele - December 12, 2021 - 11:31 pm

  24. Large-Scale Evaluation of a Vulnerability Analysis Framework

    test suite with real-world test programs up to 200+KLOC. This paper presents three main contributions. ...

    michele - December 12, 2021 - 11:31 pm

  25. Simulating Malicious Insiders in Real Host-Monitored User Data

    Kurt Wallnau, Brian Lindauer, and Michael Theis, Carnegie Mellon University; Robert Durst, Terrance Champion, Eric Renouf, and Christian Petersen, Skaion Corp. Our task is to produce test data for a research program developing a new generation of insider ...

    michele - December 12, 2021 - 11:31 pm

Pages