Search results

  1. ORide: A Privacy-Preserving yet Accountable Ride-Hailing Service

    drivers. In this paper, we propose ORide (Oblivious Ride), a privacy-preserving RHS based on ...

    admin - December 6, 2021 - 10:10 pm

  2. The Loopix Anonymity System

    Ania M. Piotrowska and Jamie Hayes, University College London; Tariq Elahi, KU Leuven; Sebastian Meiser and George Danezis, University College London We present Loopix, a low-latency anonymous communication system that provides bi-directional ‘third-party ...

    admin - December 6, 2021 - 10:41 pm

  3. Exploring User Perceptions of Discrimination in Online Targeted Advertising

    Angelisa C. Plane, Elissa M. Redmiles, and Michelle L. Mazurek, University of Maryland; Michael Carl Tschantz, International Computer Science Institute Targeted online advertising now accounts for the largest share of the advertising market, beating out b ...

    admin - December 6, 2021 - 10:41 pm

  4. AuthentiCall: Efficient Identity and Content Authentication for Phone Calls

    provide end-to-end authentication between callers. In this paper, we address this problem through the ...

    admin - December 6, 2021 - 10:41 pm

  5. BootStomp: On the Security of Bootloaders in Mobile Devices

    complexity, and opacity of the code involved preclude the usage of many previous techniques. In this paper, we ...

    admin - December 6, 2021 - 10:41 pm

  6. Extension Breakdown: Security Analysis of Browsers Extension Resources Control Policies

    extensions and their resources from third party access. In this paper, we present two attacks that bypass ...

    admin - December 6, 2021 - 10:41 pm

  7. kAFL: Hardware-Assisted Feedback Fuzzing for OS Kernels

    paper, we approach the problem of coverage-guided kernel fuzzing in an OS-independent and ...

    admin - December 6, 2021 - 10:41 pm

  8. Beauty and the Burst: Remote Identification of Encrypted Video Streams

    a nearby machine. Note: This video recording for this paper was removed due to a copyright claim against ...

    admin - December 6, 2021 - 10:41 pm

  9. Same-Origin Policy: Evaluation in Modern Browsers

    Jörg Schwenk, Marcus Niemietz, and Christian Mainka, Horst Görtz Institute for IT Security, Chair for Network and Data Security, Ruhr-University Bochum The term Same-Origin Policy (SOP) is used to denote a complex set of rules which governs the interactio ...

    admin - December 6, 2021 - 10:41 pm

  10. 6thSense: A Context-aware Sensor-based Attack Detector for Smart Devices

    information from other nearby devices. In this paper, we propose 6thSense, a context-aware intrusion detection ...

    admin - December 6, 2021 - 10:41 pm

  11. Characterizing the Nature and Dynamics of Tor Exit Blocking

    Rachee Singh, University of Massachusetts – Amherst; Rishab Nithyanand, Stony Brook University; Sadia Afroz, University of California, Berkeley and International Computer Science Institute; Paul Pearce, UC Berkeley; Michael Carl Tschantz, International Co ...

    admin - December 6, 2021 - 10:41 pm

  12. Speeding up detection of SHA-1 collision attacks using unavoidable attack conditions

    than a single hash computation. In this paper we present a significant performance improvement for ...

    admin - December 6, 2021 - 11:11 pm

  13. How the Web Tangled Itself: Uncovering the History of Client-Side Web (In)Security

    Ben Stock, CISPA, Saarland University; Martin Johns, SAP SE; Marius Steffens and Michael Backes, CISPA, Saarland University While in its early days, the Web was mostly static, it has organically grown into a full-fledged technology stack. This evolution h ...

    admin - December 6, 2021 - 11:11 pm

  14. USB Snooping Made Easy: Crosstalk Leakage Attacks on USB Hubs

    Yang Su, Auto-ID Lab, The School of Computer Science, The University of Adelaide; Daniel Genkin, University of Pennsylvania and University of Maryland; Damith Ranasinghe, Auto-ID Lab, The School of Computer Science, The University of Adelaide; Yuval Yarom ...

    admin - December 6, 2021 - 11:11 pm

  15. CLKSCREW: Exposing the Perils of Security-Oblivious Energy Management

    Adrian Tang, Simha Sethumadhavan, and Salvatore Stolfo, Columbia University Distinguished Paper ...

    admin - December 6, 2021 - 11:11 pm

  16. SmartAuth: User-Centered Authorization for the Internet of Things

    Yuan Tian, Carnegie Mellon University; Nan Zhang, Indiana University, Bloomington; Yueh-Hsun Lin, Samsung; Xiaofeng Wang, Indiana University, Bloomington; Blase Ur, University of Chicago; Xianzheng Guo and Patrick Tague, Carnegie Mellon University Interne ...

    admin - December 6, 2021 - 11:11 pm

  17. Telling Your Secrets without Page Faults: Stealthy Page Table-Based Attacks on Enclaved Execution

    paper shows, however, that page table-based threats go beyond page faults. We demonstrate that an ...

    admin - December 6, 2021 - 11:11 pm

  18. Loophole: Timing Attacks on Shared Event Loops in Chrome

    Software Institute Distinguished Paper Award Winner! Event-driven programming (EDP) is the prevalent ... used by processes to store and dispatch messages received from other processes. In this paper we ...

    admin - December 6, 2021 - 11:11 pm

  19. Locally Differentially Private Protocols for Frequency Estimation

    this paper, we introduce a framework that generalizes several LDP protocols proposed in the literature. ...

    admin - December 6, 2021 - 11:11 pm

  20. How Double-Fetch Situations turn into Double-Fetch Vulnerabilities: A Study of Double Fetches in the Linux Kernel

    Pengfei Wang, National University of Defense Technology; Jens Krinke, University College London; Kai Lu and Gen Li, National University of Defense Technology; Steve Dodier-Lazaro, University College London We present the first static approach that systema ...

    admin - December 6, 2021 - 11:11 pm

  21. Walkie-Talkie: An Efficient Defense Against Passive Website Fingerprinting Attacks

    Tao Wang, Hong Kong University of Science and Technology; Ian Goldberg, University of Waterloo Website fingerprinting (WF) is a traffic analysis attack that allows an eavesdropper to determine the web activity of a client, even if the client is using priv ...

    admin - December 6, 2021 - 11:11 pm

  22. CacheD: Identifying Cache-Based Timing Channels in Production Software

    Shuai Wang, Pei Wang, Xiao Liu, Danfeng Zhang, and Dinghao Wu, The Pennsylvania State University Side-channel attacks recover secret information by analyzing the physical implementation of cryptosystems based on non-functional computational characteristic ...

    admin - December 6, 2021 - 11:42 pm

  23. Postmortem Program Analysis with Hardware-Enhanced Post-Crash Artifacts

    Jun Xu, The Pennsylvania State University; Dongliang Mu, Nanjing University; Xinyu Xing, Peng Liu, and Ping Chen, The Pennsylvania State University; Bing Mao, Nanjing University While a core dump carries a large amount of information, it barely serves as ...

    admin - December 6, 2021 - 11:42 pm

  24. PlatPal: Detecting Malicious Documents with Platform Diversity

    Meng Xu and Taesoo Kim, Georgia Institute of Technology Due to the continued exploitation of Adobe Reader, malicious document (maldoc) detection has become a pressing problem. Although many solutions have been proposed, recent works have highlighted some ...

    admin - December 6, 2021 - 11:42 pm

  25. Attacking the Brain: Races in the SDN Control Plane

    Lei Xu, Jeff Huang, and Sungmin Hong, Texas A&M University; Jialong Zhang, IBM Research; Guofei Gu, Texas A&M University Software-Defined Networking (SDN) has significantly enriched network functionalities by decoupling programmable network contro ...

    admin - December 6, 2021 - 11:42 pm

Pages