English
Related papers

Related papers: SIGDROP: Signature-based ROP Detection using Hardw…

200 papers

New hardware primitives such as Intel SGX secure a user-level process in presence of an untrusted or compromised OS. Such "enclaved execution" systems are vulnerable to several side-channels, one of which is the page fault channel. In this…

Cryptography and Security · Computer Science 2016-01-13 Shweta Shinde , Zheng Leong Chua , Viswesh Narayanan , Prateek Saxena

CPU registers are small discrete storage units, used to hold temporary data and instructions within the CPU. Registers are not addressable in the same way memory is, which makes them immune from memory attacks and manipulation by other…

Cryptography and Security · Computer Science 2021-10-22 Munir Geden , Kasper Rasmussen

Security remains a critical challenge in modern web applications, where threats such as unauthorized access, data breaches, and injection attacks continue to undermine trust and reliability. Traditional Object-Oriented Programming (OOP)…

Software Engineering · Computer Science 2025-09-10 Mterorga Ukor

Position sensors, such as the gyroscope, the magnetometer and the accelerometer, are found in a staggering variety of devices, from smartphones and UAVs to autonomous robots. Several works have shown how adversaries can mount spoofing…

Cryptography and Security · Computer Science 2019-05-14 Kevin Sam Tharayil , Benyamin Farshteindiker , Shaked Eyal , Nir Hasidim , Roy Hershkovitz , Shani Houri , Ilia Yoffe , Michal Oren , Yossi Oren

Many Large Language Models (LLMs) and LLM-powered apps deployed today use some form of prompt filter or alignment to protect their integrity. However, these measures aren't foolproof. This paper introduces KROP, a prompt injection technique…

Cryptography and Security · Computer Science 2024-06-19 Jason Martin , Kenneth Yeung

This paper investigates an emerging cache side channel attack defense approach involving the use of hardware performance counters (HPCs). These counters monitor microarchitectural events and analyze statistical deviations to differentiate…

Cryptography and Security · Computer Science 2023-12-18 William Kosasih

The security goals of cloud providers and users include memory confidentiality and integrity, which requires implementing Replay-Attack protection (RAP). RAP can be achieved using integrity trees or mutually authenticated channels.…

Cryptography and Security · Computer Science 2023-10-31 Ali Fakhrzadehgan , Prakash Ramrakhyani , Moinuddin K. Qureshi , Mattan Erez

Security protocols are concurrent processes that communicate using cryptography with the aim of achieving various security properties. Recent work on their formal verification has brought procedures and tools for deciding trace equivalence…

Cryptography and Security · Computer Science 2015-09-08 David Baelde , Stéphanie Delaune , Lucca Hirschi

Despite the deployment of preventive security mechanisms to protect the assets and computing platforms of users, intrusions eventually occur. We propose a novel intrusion survivability approach to withstand ongoing intrusions. Our approach…

Cryptography and Security · Computer Science 2019-12-17 Ronny Chevalier , David Plaquin , Chris Dalton , Guillaume Hiet

Plenty of in-process vulnerabilities are blamed on various out of bound memory accesses. Previous prevention methods are mainly based on software checking associated with performance overhead, while traditional hardware protection…

Cryptography and Security · Computer Science 2018-04-11 Xiaojing Zhu , Mingyu Chen , Yangyang Zhao , Zonghui Hong , Yunge Guo

This paper presents DAEDALUS, a software diversity-based framework designed to resist ROP attacks on Linux-based IoT devices. DAEDALUS generates unique, semantically equivalent but syntactically different rewrites of IoT firmware,…

Cryptography and Security · Computer Science 2024-01-30 Islam Obaidat , Meera Sridhar , Fatemeh Tavakoli

Embedded, smart, and IoT devices are increasingly popular in numerous everyday settings. Since lower-end devices have the most strict cost constraints, they tend to have few, if any, security features. This makes them attractive targets for…

Cryptography and Security · Computer Science 2023-09-21 Sashidhar Jakkamsetti , Youngil Kim , Andrew Searles , Gene Tsudik

In most PUF-based authentication schemes, a central server is usually engaged to verify the response of the device's PUF to challenge bit-streams. However, the server availability may be intermittent in practice. To tackle such an issue,…

Cryptography and Security · Computer Science 2022-06-15 Mohammad Ebrahimabadi , Mohamed Younis , Wassila Lalouani , Naghmeh Karimi

Profile-Guided Optimization (PGO) is an excellent means to improve the performance of a compiled program. Indeed, the execution path data it provides helps the compiler to generate better code and better cacheline packing. At the time of…

Programming Languages · Computer Science 2014-11-25 Baptiste Wicht , Roberto A. Vitillo , Dehao Chen , David Levinthal

Despite the increasing popularity of Decentralized Applications (DApps), they are suffering from various vulnerabilities that can be exploited by adversaries for profits. Among such vulnerabilities, Read-Only Reentrancy (called ROR in this…

Software Engineering · Computer Science 2024-12-10 Jingwen Zhang , Zibin Zheng , Yuhong Nan , Mingxi Ye , Kaiwen Ning , Yu Zhang , Weizhe Zhang

Highly privileged software, such as firmware, is an attractive target for attackers. Thus, BIOS vendors use cryptographic signatures to ensure firmware integrity at boot time. Nevertheless, such protection does not prevent an attacker from…

Cryptography and Security · Computer Science 2018-03-08 Ronny Chevalier , Maugan Villatel , David Plaquin , Guillaume Hiet

Systems-on-chip (SoCs) are becoming heterogeneous: they combine general-purpose processor cores with application-specific hardware components, also known as accelerators, to improve performance and energy efficiency. The advantages of…

Distributed, Parallel, and Cluster Computing · Computer Science 2019-03-19 Luca Piccolboni , Giuseppe Di Guglielmo , Luca Carloni

Largely known for attack scenarios, code reuse techniques at a closer look reveal properties that are appealing also for program obfuscation. We explore the popular return-oriented programming paradigm under this light, transforming program…

Cryptography and Security · Computer Science 2021-08-12 Pietro Borrello , Emilio Coppa , Daniele Cono D'Elia

Physical side-channel attacks can compromise the security of integrated circuits. Most physical side-channel attacks (e.g., power or electromagnetic) exploit the dynamic behavior of a chip, typically manifesting as changes in current…

Cryptography and Security · Computer Science 2024-09-02 Saleh Khalaj Monfared , Domenic Forte , Shahin Tajik

Memory errors continue to be a critical concern for programs written in low-level programming languages such as C and C++. Many different memory error defenses have been proposed, each with varying trade-offs in terms of overhead,…

Cryptography and Security · Computer Science 2025-05-27 Sai Dhawal Phaye , Gregory J. Duck , Roland H. C. Yap , Trevor E. Carlson