Search results

  1. CryptoREX: Large-scale Analysis of Cryptographic Misuse in IoT Devices

    about this issue, find the misuses and shed light on best practices. In this paper, we design and ...

    michele - November 30, 2021 - 8:35 am

  2. PAtt: Physics-based Attestation of Control Systems

    Hamid Reza Ghaeini, Singapore University of Technology and Design; Matthew Chan, Rutgers University; Raad Bahmani and Ferdinand Brasser, TU Darmstadt; Luis Garcia, University of California, Los Angeles; Jianying Zhou, Singapore University of Technology an ...

    michele - November 30, 2021 - 8:35 am

  3. COMA: Communication and Obfuscation Management Architecture

    University In this paper, we introduce a novel Communication and Obfuscation Management Architecture (COMA) ...

    michele - November 30, 2021 - 9:37 am

  4. PRO-ORAM: Practical Read-Only Oblivious RAM

    Shruti Tople, Microsoft; Yaoqi Jia, Ziliqa Research; Prateek Saxena, NUS Oblivious RAM is a well-known cryptographic primitive to hide data access patterns. However, the best known ORAM schemes require a logarithmic computation time in the general case wh ...

    michele - November 30, 2021 - 9:37 am

  5. The DUSTER Attack: Tor Onion Service Attribution Based on Flow Watermarking with Track Hiding

    the use of the onion routing paradigm, Tor is vulnerable to traffic analysis attacks. In this paper we ...

    michele - November 30, 2021 - 9:37 am

  6. TALON: An Automated Framework for Cross-Device Tracking Detection

    Konstantinos Solomos, FORTH; Panagiotis Ilia, University of Illinois at Chicago; Sotiris Ioannidis, FORTH; Nicolas Kourtellis, Telefonica Research Although digital advertising fuels much of today’s free Web, it typically does so at the cost of online user ...

    michele - November 30, 2021 - 9:37 am

  7. Analysis of Location Data Leakage in the Internet Traffic of Android-based Mobile Devices

    paper we focus specifically on location data that is exposed by Android applications via Internet ...

    michele - November 30, 2021 - 9:37 am

  8. Kindness is a Risky Business: On the Usage of the Accessibility APIs in Android

    making the security implications of deploying accessibility features not fully understood. In this paper ... millions of users are under these threats. The flaws and attack cases described in this paper have been ...

    michele - November 30, 2021 - 9:37 am

  9. Automatic Generation of Non-intrusive Updates for Third-Party Libraries in Android Applications

    and time-consuming for app developers since it usually involves code modifications. In this paper, we ...

    michele - November 30, 2021 - 9:37 am

  10. Exploiting the Inherent Limitation of L0 Adversarial Examples

    Fei Zuo, Bokai Yang, Xiaopeng Li, Lannan Luo, and Qiang Zeng, University of South Carolina Despite the great achievements made by neural networks on tasks such as image classification, they are brittle and vulnerable to adversarial example (AE) attacks, w ...

    michele - November 30, 2021 - 9:37 am

  11. NLP-EYE: Detecting Memory Corruptions via Semantic-Aware Memory Operation Function Identification

    In this paper, we propose NLP-EYE, an NLP-based memory corruption detection system. NLP-EYE is able ...

    michele - November 30, 2021 - 9:37 am

  12. Robust Optimization-Based Watermarking Scheme for Sequential Data

    Erman Ayday, Case Western Reserve University and Bilkent University; Emre Yilmaz, Case Western Reserve University; Arif Yilmaz, Bilkent University In this work, we address the liability issues that may arise due to unauthorized sharing of personal data. W ...

    michele - November 30, 2021 - 9:37 am

  13. Smart Malware that Uses Leaked Control Data of Robotic Applications: The Case of Raven-II Surgical Robots

    University of Illinois at Urbana-Champaign In this paper, we demonstrate a new type of threat that leverages ...

    michele - November 30, 2021 - 10:38 am

  14. SGXJail: Defeating Enclave Malware via Confinement

    Samuel Weiser, Luca Mayr, Michael Schwarz, and Daniel Gruss, Graz University of Technology Trusted execution environments, such as Intel SGX, allow executing enclaves shielded from the rest of the system. This fosters new application scenarios not only in ...

    michele - November 30, 2021 - 10:38 am

  15. Fluorescence: Detecting Kernel-Resident Malware in Clouds

    Richard Li, University of Utah; Min Du, University of California Berkeley; David Johnson, Robert Ricci, Jacobus Van der Merwe, and Eric Eide, University of Utah Kernel-resident malware remains a significant threat. An effective way to detect such malware ...

    michele - November 30, 2021 - 10:38 am

  16. Now You See It, Now You Don’t: A Large-scale Analysis of Early Domain Deletions

    paper, contrary to common wisdom, we report on the discovery that domain names are often deleted before ...

    michele - November 30, 2021 - 10:38 am

  17. HinDom: A Robust Malicious Domain Detection System based on Heterogeneous Information Network with Transductive Classification

    Xiaoqing Sun, Mingkai Tong, and Jiahai Yang, Institute for Network Sciences and Cyberspace, Tsinghua University, Beijing, China; Liu Xinran, National Computer Network Emergency Response Technical Team/Coordination Center of China, Beijing, China; Liu Heng ...

    michele - November 30, 2021 - 10:38 am

  18. DomainScouter: Understanding the Risks of Deceptive IDNs

    Daiki Chiba, Ayako Akiyama Hasegawa, and Takashi Koide, NTT Secure Platform Laboratories; Yuta Sawabe and Shigeki Goto, Waseda University; Mitsuaki Akiyama, NTT Secure Platform Laboratories Cyber attackers create domain names that are visually similar to ...

    michele - November 30, 2021 - 10:38 am

  19. Dynamically Finding Minimal Eviction Sets Can Be Quicker Than You Think for Side-Channel Attacks against the LLC

    can be found in linear time. This paper focuses on further improving the speed of finding minimal ... three modern processors. Using a handful of new techniques proposed in this paper, including using ...

    michele - November 30, 2021 - 10:38 am

  20. Time and Order: Towards Automatically Identifying Side-Channel Vulnerabilities in Enclave Binaries

    unexplored. In this paper, we present ANABLEPS, a tool to automate the detection of side-channel ...

    michele - November 30, 2021 - 10:38 am

  21. Application level attacks on Connected Vehicle Protocols

    Ahmed Abdo, Sakib Md Bin Malek, and Zhiyun Qian, University of California, Riverside; Qi Zhu, Northwestern University; Matthew Barth and Nael Abu-Ghazaleh, University of California, Riverside Ahmed Abdo, University of California, Riverside Sakib Md Bin Ma ...

    michele - November 30, 2021 - 10:38 am

  22. S3: A DFW-based Scalable Security State Analysis Framework for Large-Scale Data Center Networks

    Abdulhakim Sabur, Ankur Chowdhary, and Dijiang Huang, Arizona State University; Myong Kang, Anya Kim, and Alexander Velazquez, Naval Research Lab With an average network size approaching 8000 servers, data-center networks need scalable security-state moni ...

    michele - November 30, 2021 - 10:38 am

  23. Container-IMA: A privacy-preserving Integrity Measurement Architecture for Containers

    currently solutions can counter these challenges and guarantee efficiency simultaneously. In this paper, we ...

    michele - November 30, 2021 - 11:40 am

  24. Fingerprinting SDN Applications via Encrypted Control Traffic

    functionalities, they appear as black-boxes, which are invisible to network users. In this paper, we show an ...

    michele - November 30, 2021 - 11:40 am

  25. Exploring Syscall-Based Semantics Reconstruction of Android Applications

    a significant semantic gap. This paper presents the first exploration of how much it would take to bridge this ...

    michele - November 30, 2021 - 11:40 am

Pages