English
Related papers

Related papers: TCP SYN Cookie Vulnerability

200 papers

Shared Web Hosting service enables hosting multitude of websites on a single powerful server. It is a well-known solution as many people share the overall cost of server maintenance and also, website owners do not need to deal with…

Cryptography and Security · Computer Science 2018-11-05 Seyed Ali Mirheidari , Sajjad Arshad , Saeidreza Khoshkdahan , Rasool Jalili

Blocklisting is a common technique for preventing the use of known malicious content. However, conventional blocklisting infrastructures require either the blocklist to be public or clients to reveal their queries to the blocklist server.…

Cryptography and Security · Computer Science 2026-04-20 Xinyuan Zhang , Anrin Chakraborti , Michael K. Reiter

The congestion control algorithm of TCP relies on correct feedback from the receiver to determine the rate at which packets should be sent into the network. Hence, correct receiver feedback (in the form of TCP acknowledgements) is essential…

Cryptography and Security · Computer Science 2021-09-21 Aldar C-F. Chan

Side-channel attacks on memory (SCAM) exploit unintended data leaks from memory subsystems to infer sensitive information, posing significant threats to system security. These attacks exploit vulnerabilities in memory access patterns, cache…

Cryptography and Security · Computer Science 2025-05-09 MD Mahady Hassan , Shanto Roy , Reza Rahaeimehr

In this paper we investigate the feasibility of denial-of-service (DoS) attacks on shared caches in multicore platforms. With carefully engineered attacker tasks, we are able to cause more than 300X execution time increases on a victim task…

Hardware Architecture · Computer Science 2019-03-05 Michael G Bechtel , Heechul Yun

The robustness principle, written by Jon Postel in an early version of TCP implementation, states that the communicating entities should be liberal while accepting the data. Several entities on the Internet do follow this principle. For…

Cryptography and Security · Computer Science 2022-04-01 Nikhil Tripathi

The SSH protocol provides secure access to network services, particularly remote terminal login and file transfer within organizational networks and to over 15 million servers on the open internet. SSH uses an authenticated key exchange to…

Cryptography and Security · Computer Science 2024-05-08 Fabian Bäumer , Marcus Brinkmann , Jörg Schwenk

Low-rate application layer distributed denial of service (LDDoS) attacks are both powerful and stealthy. They force vulnerable webservers to open all available connections to the adversary, denying resources to real users. Mitigation advice…

Networking and Internet Architecture · Computer Science 2019-04-03 Michael Siracusano , Stavros Shiaeles , Bogdan Ghita

A cookie banner pops up when a user visits a website for the first time, requesting consent to the use of cookies and other trackers for a variety of purposes. Unlike prior work that has focused on evaluating the user interface (UI) design…

Human-Computer Interaction · Computer Science 2021-10-08 Cristiana Santos , Arianna Rossi , Lorena Sánchez Chamorro , Kerstin Bongard-Blanchy , Ruba Abu-Salma

Web browsers provide the security foundation for our online experiences. Significant research has been done into the security of browsers themselves, but relatively little investigation has been done into how they interact with the…

Cryptography and Security · Computer Science 2025-04-25 Dolière Francis Somé , Moaz Airan , Zakir Durumeric , Cristian-Alexandru Staicu

Anonymous communication systems are subject to selective denial-of-service (DoS) attacks. Selective DoS attacks lower anonymity as they force paths to be rebuilt multiple times to ensure delivery which increases the opportunity for more…

Cryptography and Security · Computer Science 2015-03-19 Anupam Das , Nikita Borisov

The Web public key infrastructure is essential to providing secure communication on the Internet today, and certificate authorities play a crucial role in this ecosystem by issuing certificates. These authorities may misissue certificates…

Cryptography and Security · Computer Science 2022-03-04 Sarah Meiklejohn , Joe DeBlasio , Devon O'Brien , Chris Thompson , Kevin Yeo , Emily Stark

Software Defined Networking (SDN) is a network architecture that aims at providing high flexibility through the separation of the network logic from the forwarding functions. The industry has already widely adopted SDN and researchers…

Cryptography and Security · Computer Science 2016-08-18 Mauro Conti , Fabio De Gaspari , Luigi V. Mancini

We present the first micro-architectural side-channel attack which runs entirely in the browser. In contrast to other works in this genre, this attack does not require the attacker to install any software on the victim's machine -- to…

Cryptography and Security · Computer Science 2015-03-03 Yossef Oren , Vasileios P. Kemerlis , Simha Sethumadhavan , Angelos D. Keromytis

Since the use of applications and communication tools has increased, one of the concerns of the responsible for network security has been to protect information and information systems, as well as to provide trust to end users for the use…

Cryptography and Security · Computer Science 2019-09-06 Jorge Buzzio García , Victor Salazar Vilchez , Jeffrey Zavala Castro , Jose L. Quiroz Arroyo

Security situational awareness refers to identifying, mitigating, and preventing digital cyber threats by gathering information to understand the current situation. With awareness, the basis for decisions is present, particularly in complex…

Cryptography and Security · Computer Science 2025-03-07 Daniela Pöhn , Heiner Lüken

In this paper, we uncover a new off-path TCP hijacking attack that can be used to terminate victim TCP connections or inject forged data into victim TCP connections by manipulating the new mixed IPID assignment method, which is widely used…

Cryptography and Security · Computer Science 2020-09-01 Xuewei Feng , Chuanpu Fu , Qi Li , Kun Sun , Ke Xu

This article provides a quantitative analysis of privacy-compromising mechanisms on 1 million popular websites. Findings indicate that nearly 9 in 10 websites leak user data to parties of which the user is likely unaware; more than 6 in 10…

Cryptography and Security · Computer Science 2015-11-03 Timothy Libert

Small TCP flows make up the majority of web flows. For them, the TCP three-way handshake induces significant delay overhead. The TCP Fast Open (TFO) protocol can significantly decrease this delay via zero round-trip time (0-RTT) handshakes…

Cryptography and Security · Computer Science 2019-11-13 Erik Sy , Tobias Mueller , Christian Burkert , Hannes Federrath , Mathias Fischer

Most TLS clients such as modern web browsers enforce coarse-grained TLS security configurations. They support legacy versions of the protocol that have known design weaknesses, and weak ciphersuites that provide fewer security guarantees…

Cryptography and Security · Computer Science 2018-09-18 Eman Salem Alashwali , Pawel Szalachowski