| USENIX Security '20 | ShadowMove: A Stealthy Lateral Movement Strategy | Amirreza Niakanlahiji, Jinpeng Wei, Md Rabbi Alam, Qingyang Wang, Bei-Tseng Chu |
| USENIX Security '20 | That Was Then, This Is Now: A Security Evaluation of Password Generation, Storage, and Autofill in Browser-Based Password Managers | |
| USENIX Security '20 | Estonian Electronic Identity Card: Security Flaws in Key Management | Arnis Parsovs |
| USENIX Security '20 | SAVIOR: Securing Autonomous Vehicles with Robust Physical Invariants | Raul Quinonez, Jairo Giraldo, Luis Salazar, Erick Bauman, Alvaro Cardenas, Zhiqiang Lin |
| USENIX Security '20 | Updates-Leak: Data Set Inference and Reconstruction Attacks in Online Learning | Ahmed Salem, Apratim Bhattacharya, Michael Backes, Mario Fritz, Yang Zhang |
| USENIX Security '20 | Hybrid Batch Attacks: Finding Black-box Adversarial Examples with Limited Queries | Fnu Suya, Jianfeng Chi, David Evans, Yuan Tian |
| USENIX Security '20 | Understanding security mistakes developers make: Qualitative analysis from Build It, Break It, Fix It | Daniel Votipka, Kelsey R. Fulton, James Parker, Matthew Hou, Michelle L. Mazurek, Michael Hicks |
| USENIX Security '20 | An Observational Investigation of Reverse Engineers’ Processes | Daniel Votipka, Seth Rabin, Kristopher Micinski, Jeffrey S. Foster, Michelle L. Mazurek |
| USENIX Security '20 | Big Numbers - Big Troubles: Systematically Analyzing Nonce Leakage in (EC)DSA Implementations | Samuel Weiser, David Schrammel, Lukas Bodner, Raphael Spreitzer |
| USENIX Security '20 | Plug-N-Pwned: Comprehensive Vulnerability Analysis of OBD-II Dongles as A New Over-the-Air Attack Surface in Automotive IoT | Haohuang Wen, Qi Alfred Chen, Zhiqiang Lin |
| USENIX Security '20 | SmartVerif: Push the Limit of Automation Capability of Verifying Security Protocols by Dynamic Strategies | Yan Xiong, Cheng Su, Wenchao Huang, Fuyou Miao, Wansen Wang, Hengyi Ouyang |
| USENIX Security '20 | FuzzGuard: Filtering out Unreachable Inputs in Directed Grey-box Fuzzing through Deep Learning | Peiyuan Zong, Tao Lv, Dawei Wang, Zizhuang Deng, Ruigang Liang, Kai Chen |
| USENIX Security '20 | MVP: Detecting Vulnerabilities using Patch-Enhanced Vulnerability Signatures | Yang Xiao, Bihuan Chen, Chendong Yu, Zhengzi Xu, Zimu Yuan, Feng Li, Binghong Liu, Yang Liu, Wei Huo, Wei Zou, Wenchang Shi |
| USENIX Security '20 | The Impact of Ad-Blockers on Product Search and Purchase Behavior: A Lab Experiment | Alisa Frik, Amelia Haviland, Alessandro Acquisti |
| USENIX Security '20 | Sunrise to Sunset: Analyzing the End-to-end Life Cycle and Effectiveness of Phishing Attacks at Scale | Adam Oest, Penghui Zhang, Brad Wardman, Eric Nunes, Jakub Burgis, Ali Zand, Kurt Thomas, Adam Doupé, Gail-Joon Ahn |
| USENIX Security '20 | Cardpliance: PCI DSS Compliance of Android Applications | Samin Yaseer Mahmud, Akhil Acharya, Benjamin Andow, William Enck, Bradley Reaves |
| USENIX Security '20 | Composition Kills: A Case Study of Email Sender Authentication | Jianjun Chen, Vern Paxson, Jian Jiang |
| USENIX Security '20 | High Accuracy and High Fidelity Extraction of Neural Networks | Matthew Jagielski, Nicholas Carlini, David Berthelot, Alex Kurakin, Nicolas Papernot |
| USENIX Security '20 | 'I have too much respect for my elders': Understanding South African Mobile Users' Perceptions of Privacy and Current Behaviors on Facebook and WhatsApp | Jake Reichel, Fleming Peck, Mikako Inaba, Bisrat Moges, Brahmnoor Singh Chawla, Marshini Chetty |
| USENIX Security '20 | SpecFuzz: Bringing Spectre-type vulnerabilities to the surface | Oleksii Oleksenko, Bohdan Trach, Mark Silberstein, Christof Fetzer |
| USENIX Security '20 | APEX: A Verified Architecture for Proofs of Execution on Remote Devices under Full Software Compromise | Ivan De Oliveira Nunes, Karim Eldefrawy, Norrathep Rattanavipanon, Gene Tsudik |
| USENIX Security '20 | The Unpatchable Silicon: A Full Break of the Bitstream Encryption of Xilinx 7-Series FPGAs | Maik Ender, Amir Moradi, Christof Paar |
| USENIX Security '20 | From Needs to Actions to Secure Apps? The Effect of Requirements and Developer Practices on App Security | Charles Weir, Ben Hermann, Sascha Fahl |
| USENIX Security '20 | Datalog Disassembly | Antonio Flores-Montoya, Eric Schulte |
| USENIX Security '20 | NetWarden: Mitigating Network Covert Channels while Preserving Performance | Jiarong Xing, Qiao Kang, Ang Chen |
