Search results

  1. To Pin or Not to Pin—Helping App Developers Bullet Proof Their TLS Connections

    a tradeoff between increasing security and keeping maintenance efforts at an acceptable level. In this paper ...

    michele - December 11, 2021 - 6:24 pm

  2. Trustworthy Whole-System Provenance for the Linux Kernel

    Adam Bates, Dave (Jing) Tian, and Kevin R.B. Butler, University of Florida; Thomas Moyer, MIT Lincoln Laboratory In a provenance-aware system, mechanisms gather and report metadata that describes the history of each object being processed on the system, a ...

    michele - December 11, 2021 - 6:24 pm

  3. Securing Self-Virtualizing Ethernet Devices

    Igor Smolyar, Muli Ben-Yehuda, and Dan Tsafrir, Technion—Israel Institute of Technology Single root I/O virtualization (SRIOV) is a hardware/ software interface that allows devices to “self virtualize” and thereby remove the host from the critical I/O pat ...

    michele - December 11, 2021 - 6:24 pm

  4. EASEAndroid: Automatic Policy Analysis and Refinement for Security Enhanced Android via Large-Scale Semi-Supervised Learning

    benign and malicious accesses. In this paper, we propose EASEAndroid, the first SEAndroid analytic ...

    michele - December 11, 2021 - 6:24 pm

  5. Constants Count: Practical Improvements to Oblivious RAM

    primitive that hides memory access patterns as seen by untrusted storage. This paper proposes Ring ORAM, the ...

    michele - December 11, 2021 - 6:55 pm

  6. Raccoon: Closing Digital Side-Channels through Obfuscated Execution

    address bus. This paper presents a method of defending against a broad class of side-channel attacks, ... source code level to provide the illusion that many extraneous program paths are executed. This paper ...

    michele - December 11, 2021 - 6:55 pm

  7. M2R: Enabling Stronger Privacy in MapReduce Computation

    for ensuring privacy preserving computation in the popular MapReduce framework. In this paper, we ...

    michele - December 11, 2021 - 6:55 pm

  8. Phasing: Private Set Intersection Using Permutation-based Hashing

    Benny Pinkas, Bar-Ilan University; Thomas Schneider, Technische Universität Darmstadt; Gil Segev, The  Hebrew University of Jerusalem; Michael Zohner, Technische Universität Darmstadt Private Set Intersection (PSI) allows two parties to compute the inters ...

    michele - December 11, 2021 - 6:55 pm

  9. Faster Secure Computation through Automatic Parallelization

    Niklas Buescher and Stefan Katzenbeisser, Technische Universität Darmstadt Secure two-party computation (TPC) based on Yao’s garbled circuits has seen a lot of progress over the past decade. Yet, compared with generic computation, TPC is still multiple or ...

    michele - December 11, 2021 - 6:55 pm

  10. The Pythia PRF Service

    Adam Everspaugh and Rahul Chaterjee, University of Wisconsin—Madison; Samuel Scott, University of London; Ari Juels and Thomas Ristenpart,   Cornell Tech Conventional cryptographic services such as hardware-security modules and software-based keymanagemen ...

    michele - December 11, 2021 - 6:55 pm

  11. Recognizing Functions in Binaries with Neural Networks

    software. In this paper, we propose to apply artificial neural networks to solve important yet difficult ...

    michele - December 11, 2021 - 6:55 pm

  12. Reassembleable Disassembling

    applied to. In this paper, we present UROBOROS, a tool that can disassemble executables to the extent that ...

    michele - December 11, 2021 - 6:55 pm

  13. How the ELF Ruined Christmas

    from the program is not always possible. In this paper, we present a technique that uses the dynamic ...

    michele - December 11, 2021 - 6:55 pm

  14. Finding Unknown Malice in 10 Seconds: Mass Vetting for New Threats at the Google-Play Scale

    Kai Chen, Chinese Academy of Sciences and Indiana University; Peng Wang, Yeonjoon Lee, Xiaofeng Wang, and Nan Zhang, Indiana University; Heqing Huang, The Pennsylvania State University; Wei Zou, Chinese Academy of Sciences; Peng Liu, The Pennsylvania Stat ...

    michele - December 11, 2021 - 6:55 pm

  15. You Shouldn’t Collect My Secrets: Thwarting Sensitive Keystroke Leakage in Mobile IME Apps

    IME apps, this paper first performs a systematic study and uncovers that many IME apps may ... retaining the benefits of an improved user experience, this paper then proposes I-B OX, an app-transparent ...

    michele - December 11, 2021 - 7:26 pm

  16. Boxify: Full-fledged App Sandboxing for Stock Android

    Michael Backes, Saarland University and Max Planck Institute for Software Systems (MPI-SWS); Sven Bugiel, Christian Hammer, Oliver Schranz, and  Philipp von Styp-Rekowsky, Saarland University We present the first concept for full-fledged app sandboxing on ...

    michele - December 11, 2021 - 7:26 pm - 1 comment

  17. Anatomization and Protection of Mobile Apps’ Location Privacy Threats

    modifications. Mobile operating systems (OSes) also provide users with location access controls. In this paper ...

    michele - December 11, 2021 - 7:26 pm

  18. LinkDroid: Reducing Unregulated Aggregation of App Usage Behaviors

    behaviors. In this paper, we present a fresh perspective of unregulated aggregation, focusing on monitoring, ...

    michele - December 11, 2021 - 7:26 pm

  19. PowerSpy: Location Tracking Using Mobile Device Power Analysis

    Yan Michalevsky, Aaron Schulman, Gunaa Arumugam Veerapandian, and Dan Boneh, Stanford University;  Gabi Nakibly,  National Research and Simulation Center/Rafael Ltd. Modern mobile platforms like Android enable applications to read aggregate power usage on ...

    michele - December 11, 2021 - 7:26 pm

  20. GSMem: Data Exfiltration from Air-Gapped Computers over GSM Frequencies

    years, exfiltration of data from air-gapped networks is still a challenging task. In this paper we ...

    michele - December 11, 2021 - 7:26 pm

  21. Thermal Covert Channels on Multi-core Platforms

    Ramya Jayaram Masti, Devendra Rai, Aanjhan Ranganathan, Christian Müller, Lothar Thiele, and Srdjan Capkun, ETH Zürich Side channels remain a challenge to information flow control and security in modern computing platforms. Resource partitioning technique ...

    michele - December 11, 2021 - 7:26 pm

  22. Rocking Drones with Intentional Sound Noise on Gyroscopic Sensors

    tricked by maliciously fabricated physical properties. In this paper, we investigated whether an adversary ... countermeasures are discussed at the conclusion of this paper. Yunmok Son, Korea Advanced Institute of Science and ...

    michele - December 11, 2021 - 7:26 pm

  23. Towards Discovering and Understanding Task Hijacking in Android

    mitigation techniques in this paper. Chuangang Ren, The Pennsylvania State University Yulong Zhang, FireEye, ...

    michele - December 11, 2021 - 7:26 pm

  24. Cashtags: Protecting the Input and Display of Sensitive Data

    Michael Mitchell and An-I Andy Wang, Florida State University; Peter Reiher, University of California, Los Angeles Mobile computing is the new norm. As people feel increasingly comfortable computing in public places such as coffee shops and transportation ...

    michele - December 11, 2021 - 7:26 pm

  25. SUPOR: Precise and Scalable Sensitive User Input Detection for Android Apps

    may contain a lot of sensitive information, have been mostly neglected.  In this paper, we examine the ...

    michele - December 11, 2021 - 7:57 pm

Pages