| Can Systems Explain Permissions Better? Understanding Users' Misperceptions under Smartphone Runtime Permission Model | USENIX Security '21 | Bingyu Shen, Lili Wei, Chengcheng Xiang, Yudong Wu, Mingyao Shen, Yuanyuan Zhou, Xinxin Jin |
| EVMPatch: Timely and Automated Patching of Ethereum Smart Contracts | USENIX Security '21 | Michael Rodler, Wenting Li, Ghassan O. Karame, Lucas Davi |
| DOLMA: Securing Speculation with the Principle of Transient Non-Observability | USENIX Security '21 | Kevin Loughlin, Ian Neal, Jiacheng Ma, Elisa Tsai, Ofir Weisse, Satish Narayanasamy, Baris Kasikci |
| Evil Under the Sun: Understanding and Discovering Attacks on Ethereum Decentralized Applications | USENIX Security '21 | Liya Su, Xinyue Shen, Xiangyu Du, Xiaojing Liao, XiaoFeng Wang, Luyi Xing, Baoxu Liu |
| PTAuth: Temporal Memory Safety via Robust Points-to Authentication | USENIX Security '21 | Reza Mirzazade Farkhani, Mansour Ahmadi, Long Lu |
| VoltPillager: Hardware-based fault injection attacks against Intel SGX Enclaves using the SVID voltage scaling interface | USENIX Security '21 | Zitai Chen, Georgios Vasilakis, Kit Murdock, Edward Dean, David Oswald, Flavio D. Garcia |
| Identifying Harmful Media in End-to-End Encrypted Communication: Efficient Private Membership Computation | USENIX Security '21 | Anunay Kulshrestha, Jonathan Mayer |
| "Shhh...be quiet!" Reducing the Unwanted Interruptions of Notification Permission Prompts on Chrome | USENIX Security '21 | Igor Bilogrevic, Balazs Engedy, Judson L. Porter III, Nina Taft, Kamila Hasanbega, Andrew Paseltiner, Hwi Kyoung Lee, Edward Jung, Meggyn Watkins, PJ McLachlan, Jason James |
| Smart Contract Vulnerabilities: Vulnerable Does Not Imply Exploited | USENIX Security '21 | Daniel Perez, Benjamin Livshits |
| PEARL: Plausibly Deniable Flash Translation Layer using WOM coding | USENIX Security '21 | Chen Chen, Anrin Chakraborti, Radu Sion |
| CURE: A Security Architecture with CUstomizable and Resilient Enclaves | USENIX Security '21 | Raad Bahmani, Ferdinand Brasser, Ghada Dessouky, Patrick Jauernig, Matthias Klimmek, Ahmad-Reza Sadeghi, Emmanuel Stapf |
| PrivSyn: Differentially Private Data Synthesis | USENIX Security '21 | Zhikun Zhang, Tianhao Wang, Ninghui Li, Jean Honorio, Michael Backes, Shibo He, Jiming Chen, Yang Zhang |
| A Large-Scale Interview Study on Information Security in and Attacks against Small and Medium-sized Enterprises | USENIX Security '21 | Nicolas Huaman, Bennet von Skarczinski, Christian Stransky, Dominik Wermke, Yasemin Acar, Arne Dreißigacker, Sascha Fahl |
| Examining the Efficacy of Decoy-based and Psychological Cyber Deception | USENIX Security '21 | Kimberly J. Ferguson-Walter, Maxine M. Major, Chelsea K. Johnson, Daniel H. Muhleman |
| Does logic locking work with EDA tools? | USENIX Security '21 | Zhaokun Han, Muhammad Yasin, Jeyavijayan (JV) Rajendran |
| Data Poisoning Attacks to Local Differential Privacy Protocols | USENIX Security '21 | Xiaoyu Cao, Jinyuan Jia, Neil Zhenqiang Gong |
| How to Make Private Distributed Cardinality Estimation Practical, and Get Differential Privacy for Free | USENIX Security '21 | Changhui Hu, Jin Li, Zheli Liu, Xiaojie Guo, Yu Wei, Xuan Guang, Grigorios Loukides, Changyu Dong |
| Helping Users Automatically Find and Manage Sensitive, Expendable Files in Cloud Storage | USENIX Security '21 | Mohammad Taha Khan, Christopher Tran, Shubham Singh, Dimitri Vasilkov, Chris Kanich, Blase Ur, Elena Zheleva |
| Coco: Co-Design and Co-Verification of Masked Software Implementations on CPUs | USENIX Security '21 | Barbara Gigerl, Vedad Hadzic, Robert Primas, Stefan Mangard, Roderick Bloem |
| Reducing Bias in Modeling Real-world Password Strength via Deep Learning and Dynamic Dictionaries | USENIX Security '21 | Dario Pasquini, Marco Cianfriglia, Giuseppe Ateniese, Massimo Bernaschi |
| Using Amnesia to Detect Credential Database Breaches | USENIX Security '21 | Ke Coby Wang, Michael K. Reiter |
| SMASH: Synchronized Many-sided Rowhammer Attacks from JavaScript | USENIX Security '21 | Finn de Ridder, Pietro Frigo, Emanuele Vannacci, Herbert Bos, Cristiano Giuffrida, Kaveh Razavi |
| Swivel: Hardening WebAssembly against Spectre | USENIX Security '21 | Shravan Narayan, Craig Disselkoen, Daniel Moghimi, Sunjay Cauligi, Evan Johnson, Zhao Gang, Anjo Vahldiek-Oberwagner, Ravi Sahita, Hovav Shacham, Dean Tullsen, Deian Stefan |
| On the Routing-Aware Peering against Network-Eclipse Attacks in Bitcoin | USENIX Security '21 | Muoi Tran, Akshaye Shenoi, Min Suk Kang |
| MIRAGE: Mitigating Conflict-Based Cache Attacks with a Practical Fully-Associative Design | USENIX Security '21 | Gururaj Saileshwar, Moinuddin Qureshi |
