English
Related papers

Related papers: Compatible and Usable Mandatory Access Control for…

200 papers

AI safety systems face the dual-use dilemma. It is unclear whether to answer dual-use requests, since the same query could be either harmless or harmful depending on who made it and why. To make better decisions, such systems would need to…

Artificial Intelligence · Computer Science 2025-11-26 Evžen Wybitul

Computer Use Agents (CUAs), autonomous systems that interact with software interfaces via browsers or virtual machines, are rapidly being deployed in consumer and enterprise environments. These agents introduce novel attack surfaces and…

Security mandates today are often in the form of checklists and are generally inflexible and slow to adapt to changing threats. This paper introduces an alternate approach called open mandates, which mandate that vendors must dedicate some…

Cryptography and Security · Computer Science 2022-03-11 Adam Hastings , Ryan Piersma , Simha Sethumadhavan

This paper proposes a more comprehensive evaluation methodology to measure the usability and user experience qualities of accessible synchronous computer-mediated communication applications. The methodology goes beyond current practices by…

Human-Computer Interaction · Computer Science 2011-02-17 Fernando G. Lobo , Marielba Zacarias , Paulo A. Condado , Teresa Romão , Rui Godinho , Manuel Moreno

Recent data protection and data governance regulations have intensified the demand for interoperable, decentralized data ecosystems that can support not only access control but also legally-aligned governance over data use. Existing…

Emerging Technologies · Computer Science 2026-01-27 Wout Slabbinck , Wouter Termont , Ruben Dedecker , Beatriz Esteves

FreeBSD was one of the first widely deployed free operating systems to provide mandatory access control. It supports a number of classic MAC models. This tutorial paper addresses exploiting this implementation to enforce typical enterprise…

Cryptography and Security · Computer Science 2007-06-13 Kirill Bolshakov , Elena Reshetova

This paper proposes Concurrent-Access Obfuscated Store (CAOS), a construction for remote data storage that provides access-pattern obfuscation in a honest-but-curious adversarial model, while allowing for low bandwidth overhead and client…

Cryptography and Security · Computer Science 2019-06-04 Mihai Ordean , Mark Ryan , David Galindo

Data collection and processing in advanced health monitoring systems are experiencing revolutionary change. In-Sensor Computing (ISC) systems emerge as a promising alternative to save energy on massive data transmission, analog-to-digital…

Cryptography and Security · Computer Science 2025-02-10 Mashrafi Kajol , Qiaoyan Yu

In today's rapidly evolving digital landscape, organisations face escalating cyber threats that can disrupt operations, compromise sensitive data, and inflict financial and reputational harm. A key reason for this lies in the organisations'…

Cryptography and Security · Computer Science 2025-04-08 Lasini Liyanage , Nalin Arachchilage , Giovanni Russello

Calibration plays an important role in ensuring device accuracy within safety-critical IoT deployments. The process of calibration involves a number of parties which must collaborate to support calibration. Calibration checks often precede…

Cryptography and Security · Computer Science 2020-10-02 Ryan Shah , Shishir Nagaraja

Compartmentalization is good security-engineering practice. By breaking a large software system into mutually distrustful components that run with minimal privileges, restricting their interactions to conform to well-defined interfaces, we…

Cryptography and Security · Computer Science 2017-04-18 Yannis Juglaret , Catalin Hritcu , Arthur Azevedo de Amorim , Boris Eng , Benjamin C. Pierce

Access-control misconfigurations are among the main causes of today's data breaches in web applications. However, few techniques are available to support automatic and systematic testing for access-control changes and detecting risky…

Cryptography and Security · Computer Science 2025-05-20 Chengcheng Xiang , Li Zhong , Eric Mugnier , Nathaniel Nguyen , Yuanyuan Zhou , Tianyin Xu

Broken access control is one of the most common security vulnerabilities in web applications. These vulnerabilities are the major cause of many data breach incidents, which result in privacy concern and revenue loss. However, preventing and…

Cryptography and Security · Computer Science 2023-04-24 Li Zhong

Fitting geometric models onto outlier contaminated data is provably intractable. Many computer vision systems rely on random sampling heuristics to solve robust fitting, which do not provide optimality guarantees and error bounds. It is…

Computer Vision and Pattern Recognition · Computer Science 2022-06-28 Anh-Dzung Doan , Michele Sasdelli , David Suter , Tat-Jun Chin

Safety alignment in large language models (LLMs) is commonly implemented as a single static policy embedded in model parameters. However, real-world deployments often require context-dependent safety rules that vary across users, regions,…

Artificial Intelligence · Computer Science 2026-03-18 Jingyu Peng , Hongyu Chen , Jiancheng Dong , Maolin Wang , Wenxi Li , Yuchen Li , Kai Zhang , Xiangyu Zhao

Techniques for verifying or invalidating the security of computer systems have come a long way in recent years. Extremely sophisticated tools are available to specify and formally verify the behavior of a system and, at the same time,…

Cryptography and Security · Computer Science 2024-04-16 Matteo Busi , Riccardo Focardi , Flaminia Luccio

Almost all modern hardware, from phone SoCs to high-end servers with accelerators, contain memory translation and protection hardware like IOMMUs, firewalls, and lookup tables which make it impossible to reason about, and enforce protection…

Operating Systems · Computer Science 2020-09-08 Reto Achermann , Nora Hossle , Lukas Humbel , Daniel Schwyn , David Cock , Timothy Roscoe

Malicious peripherals designed to attack their host computers are a growing problem. Inexpensive and powerful peripherals that attach to plug-and-play buses have made such attacks easy to mount. Making matters worse, commodity operating…

Operating Systems · Computer Science 2016-08-19 Sebastian Angel , Riad S. Wahby , Max Howald , Joshua B. Leners , Michael Spilo , Zhen Sun , Andrew J. Blumberg , Michael Walfish

Delegating difficult computations to remote large computation facilities, with appropriate security guarantees, is a possible solution for the ever-growing needs of personal computing power. For delegated computation protocols to be usable…

Quantum Physics · Physics 2015-08-24 Vedran Dunjko , Joseph F. Fitzsimons , Christopher Portmann , Renato Renner

Undefined behavior in C often causes devastating security vulnerabilities. One practical mitigation is compartmentalization, which allows developers to structure large programs into mutually distrustful compartments with clearly specified…