Papers

Search results

1. Effective Entropy: Security-Centric Metric for Memory Randomization Techniques

   William Herlands, Thomas Hobson, and Paula J. Donovan, MIT Lincoln Laboratory User space memory randomization techniques are an emerging field of cyber defensive technology which attempts to protect computing systems by randomizing the layout of memory. Q ...

   michele - December 12, 2021 - 11:31 pm

2. DACSA: A Decoupled Architecture for Cloud Security Analysis

   Jason Gionta, North Carolina State University; Ahmed Azab, Samsung Electronics Co., Ltd.; William Enck and Peng Ning, North Carolina State University; Xiaolan Zhang, Google Inc. Monitoring virtual machine execution from the hypervisor provides new opportu ...

   michele - December 12, 2021 - 11:31 pm

3. A Metric for the Evaluation and Comparison of Keylogger Performance

   typing speeds, user input styles and many metrics more as documented in this paper. The authors of this ... a framework to assess the performance of a keylogger. This paper provides the documentation on how such ...

   michele - December 13, 2021 - 12:06 am

4. Computer Security Clinical Trials: Lessons Learned from a 4-month Pilot Study

   product. In this paper, we present the study we performed and provide lessons learned and recommendations ...

   michele - December 13, 2021 - 12:06 am

5. EDURange: Meeting the Pedagogical Challenges of Student Participation in Cybertraining Environments

   Locasto, University of Calgary; Jens Mache and Erik Nilsen, Lewis and Clark College This paper reflects on ...

   michele - December 13, 2021 - 12:06 am

6. Four-Week Summer Program in Cyber Security for High School Students: Practice and Experience Report

   Melissa Danforth and Charles Lam, California State University, Bakersfield Cyber security education and outreach is a national priority. It is critical to encourage high school students to pursue studies in cyber security and related fields. High school o ...

   michele - December 13, 2021 - 12:06 am

7. Learning Obstacles in the Capture The Flag Model

   competition and describe how effective they are at catalyzing learning and assessing skill. In this paper, we ...

   arnold - December 21, 2021 - 11:26 am

8. Elevation of Privilege: Drawing Developers into Threat Modeling

   Wednesday, July 23, 2014- 3:30pm Adam Shostack,  Microsoft This paper presents Elevation of ... paper shares the objectives and design of the game, as well as tradeoffs made and lessons learned while ...

   arnold - December 21, 2021 - 11:35 am

9. ReClaim: a Privacy-Preserving Decentralized Social Network

   associated with the popularity of online social networks have given rise to numerous research papers which ...

   michele - December 21, 2021 - 11:46 am

10. TRIST: Circumventing Censorship with Transcoding-Resistant Image Steganography

    Christopher Connolly, Patrick Lincoln, Ian Mason, and Vinod Yegneswaran, SRI International We explore the viability of extending state-of-the-art image steganography techniques for bypassing censorship. Our quest for a scalable steganographic technique, w ...

    michele - December 21, 2021 - 11:37 am

11. Facade: High-Throughput, Deniable Censorship Circumvention Using Web Search

    would. In this paper, we design a new encoding technique that uses web search terms to encode hidden ...

    michele - December 21, 2021 - 11:44 am

12. Catching Bandits and Only Bandits: Privacy-Preserving Intersection Warrants for Lawful Surveillance

    Aaron Segal, Bryan Ford, and Joan Feigenbaum, Yale University Motivated in part by the Snowden revelations, we address the question of whether intelligence and lawenforcement agencies can gather actionable, relevant information about unknown electronic ta ...

    michele - December 21, 2021 - 11:38 am

13. Symmetric Disclosure: a Fresh Look at k-anonymity

    EJ Infeld, Dartmouth College We analyze how the sparsity of a typical aggregate social relation impacts the network overhead of online communication systems designed to provide k-anonymity. Once users are grouped in anonymity sets there will likely be few ...

    michele - December 21, 2021 - 11:43 am

14. An Internet with BRICS Characteristics: Data Sovereignty and the Balkanisation of the Internet

    paper will examine BRICS-country approaches to data sovereignty, both by individual countries and as ...

    michele - December 21, 2021 - 11:45 am

15. Global Network Interference Detection Over the RIPE Atlas Network

    Collin Anderson, University of Pennsylvania; Philipp Winter, Karlstad University;  Roya, Independent Researcher Existing censorship measurement platforms frequently suffer from poor adoption, insufficient geographic coverage, and scalability problems. In ...

    michele - December 21, 2021 - 11:40 am

16. Towards a Comprehensive Picture of the Great Firewall’s DNS Censorship

    Anonymous China's Great Firewall passively inspects network traffic and disrupts unwanted communication by injecting forged DNS replies or TCP resets. We attempted to comprehensively examine the structure of the DNS injector, using queries from both ...

    michele - December 21, 2021 - 11:41 am

17. Counting Packets Sent Between Arbitrary Internet Hosts

    Jeffrey Knockel and Jedidiah R. Crandall, University of New Mexico In this paper we demonstrate ...

    michele - December 21, 2021 - 11:45 am

18. Security Audit of Safeplug "Tor in a Box"

    Friday, July 25, 2014- 9:30am Anne Edmundson, Anna Kornfeld Simpson, Joshua A. Kroll, and Edward W. Felten, Princeton University We present the first public third-party security audit of Pogoplug’s Safeplug device, which markets “complete security and ano ...

    michele - December 21, 2021 - 11:39 am

19. Clickjacking Revisited: A Perceptual View of UI Security

    Monday, August 4, 2014- 11:00am Devdatta Akhawe, Warren He, Zhiwei Li, Reza Moazzezi, and Dawn Song, University of California, Berkeley Clickjacking is a powerful attack against modern web applications. While browser primitives like X-Frame-Options provid ...

    michele - December 21, 2021 - 12:13 pm

20. Tick Tock: Building Browser Red Pills from Timing Side Channels

    this paper we study the possibility of browser-based red pills, namely red pills implemented as ...

    michele - December 21, 2021 - 12:22 pm

21. The End is Nigh: Generic Solving of Text-based CAPTCHAs

    anti-segmentation technique used by most prominent real world captcha schemes. This paper introduces a novel ...

    michele - December 21, 2021 - 12:15 pm

22. Hell of a Handshake: Abusing TCP for Reflective Amplification DDoS Attacks

    vulnerable to such attacks, despite the three-way-handshake mechanism. In this paper, we continue this line ...

    michele - December 21, 2021 - 12:24 pm

23. IPv6 Security: Attacks and Countermeasures in a Nutshell

    them, a vast amount of updates have been introduced. In this paper, we discuss security and privacy ...

    michele - December 21, 2021 - 12:26 pm

24. Through the Looking-Glass, and What Eve Found There

    to escalate from a web attack to a remote command execution on backbone routers. This paper ...

    michele - December 21, 2021 - 12:17 pm

25. Green Lights Forever: Analyzing the Security of Traffic Infrastructure

    Monday, July 28, 2014- 3:45pm Branden Ghena, William Beyer, Allen Hillaker, Jonathan Pevarnek, and J. Alex Halderman, University of Michigan The safety critical nature of traffic infrastructure requires that it be secure against computer-based attacks, bu ...

    michele - December 21, 2021 - 12:21 pm

Pages