Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js
.
2023. Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js. 32nd USENIX Security Symposium (USENIX Security 23). :5521--5538.
Reassembly is Hard: A Reflection on Challenges and Strategies
.
2023. Reassembly is Hard: A Reflection on Challenges and Strategies. 32nd USENIX Security Symposium (USENIX Security 23). :1469--1486.
{PCAT}: Functionality and Data Stealing from Split Learning by {Pseudo-Client} Attack
.
2023. {PCAT}: Functionality and Data Stealing from Split Learning by {Pseudo-Client} Attack. 32nd USENIX Security Symposium (USENIX Security 23). :5271--5288.
{VulChecker}: Graph-based Vulnerability Localization in Source Code
.
2023. {VulChecker}: Graph-based Vulnerability Localization in Source Code. 32nd USENIX Security Symposium (USENIX Security 23). :6557--6574.
Examining Consumer Reviews to Understand Security and Privacy Issues in the Market of Smart Home Devices
.
2023. Examining Consumer Reviews to Understand Security and Privacy Issues in the Market of Smart Home Devices. 32nd USENIX Security Symposium (USENIX Security 23). :1523--1540.
Isolated and Exhausted: Attacking Operating Systems via Site Isolation in the Browser
.
2023. Isolated and Exhausted: Attacking Operating Systems via Site Isolation in the Browser. 32nd USENIX Security Symposium (USENIX Security 23). :7037--7054.
Internet Service Providers' and Individuals' Attitudes, Barriers, and Incentives to Secure {IoT}
.
2023. Internet Service Providers' and Individuals' Attitudes, Barriers, and Incentives to Secure {IoT}. 32nd USENIX Security Symposium (USENIX Security 23). :1541--1558.
Improving Logging to Reduce Permission {Over-Granting} Mistakes
.
2023. Improving Logging to Reduce Permission {Over-Granting} Mistakes. 32nd USENIX Security Symposium (USENIX Security 23). :409--426.
{V-Cloak}: Intelligibility-, Naturalness- & {Timbre-Preserving} {Real-Time} Voice Anonymization
.
2023. {V-Cloak}: Intelligibility-, Naturalness- {Real-Time} Voice Anonymization. 32nd USENIX Security Symposium (USENIX Security 23). :5181--5198.
{PatchVerif}: Discovering Faulty Patches in Robotic Vehicles
.
2023. {PatchVerif}: Discovering Faulty Patches in Robotic Vehicles. 32nd USENIX Security Symposium (USENIX Security 23). :3011--3028.