English
Related papers

Related papers: TCP SYN Cookie Vulnerability

200 papers

We introduce a Semantic Identification Attack, in which an adversary uses semantic signals about the pages visited in one browsing session to identify other browsing sessions launched by the same user. This attack allows an adver- sary to…

Cryptography and Security · Computer Science 2016-11-01 Neel Guha

In recent years, Session Initiation Protocol (SIP) has become widely used in current internet protocols. It is a text-based protocol much like Hyper Text Transport Protocol (HTTP) and Simple Mail Transport Protocol (SMTP). SIP is a strong…

Networking and Internet Architecture · Computer Science 2012-05-03 Hassan Keshavarz , Mohammad Reza Jabbarpour Sattari , Rafidah Md Noor

In this paper we introduced countermeasures against side-channel attacks in the shared memory of TrustZone. We proposed zero-contention cache memory or policy between REE and TEE to prevent from TruSpy attacks in TrustZone. And we suggested…

Cryptography and Security · Computer Science 2020-11-20 Na-Young Ahn , Dong Hoon Lee

In response to the ePrivacy Directive and the consent requirements introduced by the GDPR, websites began deploying consent banners to obtain user permission for data collection and processing. However, due to shared third-party services…

Networking and Internet Architecture · Computer Science 2025-07-21 Ali Rasaii , Ha Dao , Anja Feldmann , Mohammadmahdi Javid , Oliver Gasser , Devashish Gosain

The benefits of the ubiquitous caching in ICN are profound, such features make ICN promising for content distribution, but it also introduces a challenge to content protection against the unauthorized access. The protection of a content…

Networking and Internet Architecture · Computer Science 2020-06-11 Muhammad Bilal , Sangheon Pack

The level of trust accorded to certification authorities has been decreasing over the last few years as several cases of misbehavior and compromise have been observed. Log-based approaches, such as Certificate Transparency, ensure that…

Cryptography and Security · Computer Science 2016-01-06 Laurent Chuat , Pawel Szalachowski , Adrian Perrig , Ben Laurie , Eran Messeri

The threats of caching poisoning attacks largely stimulate the deployment of DNSSEC. Being a strong but demanding cryptographical defense, DNSSEC has its universal adoption predicted to go through a lengthy transition. Thus the DNSSEC…

Cryptography and Security · Computer Science 2016-02-29 Zheng Wang

Recent studies have shown that a significant number of mobile applications, often handling sensitive data such as bank accounts and login credentials, suffers from SSL vulnerabilities. Most of the time, these vulnerabilities are due to…

Cryptography and Security · Computer Science 2013-07-01 Mauro Conti , Nicola Dragoni , Sebastiano Gottardo

Trusted Computing is a security base technology that will perhaps be ubiquitous in a few years in personal computers and mobile devices alike. Despite its neutrality with respect to applications, it has raised some privacy concerns. We show…

Cryptography and Security · Computer Science 2007-05-23 Nicolai Kuntze , Andreas U. Schmidt

Privacy regulations have led to many websites showing cookie banners to their users. Usually, cookie banners present the user with the option to "accept" or "reject" cookies. Recently, a new form of paywall-like cookie banner has taken hold…

Networking and Internet Architecture · Computer Science 2023-10-03 Ali Rasaii , Devashish Gosain , Oliver Gasser

The greatest threat in the new generation network which is called ngn is unsafe authentication. Communication between new servers in ngn world is done based on Session Initiation Protocol. SIP is an application layer control operating on…

Cryptography and Security · Computer Science 2012-09-06 Maisam Mohammadian

This paper presents new attacks against TKIP within IEEE 802.11 based networks. Using the known Beck-Tews attack, we define schemas to con- tinuously generate new keystreams, which allow more and longer arbitrary packets to be injected into…

Cryptography and Security · Computer Science 2014-10-24 Martin Beck

The secure distribution of protected content requires consumer authentication and involves the conventional method of end-to-end encryption. However, in information-centric networking (ICN) the end-to-end encryption makes the content…

Cryptography and Security · Computer Science 2019-08-27 Muhammad Bilal , Shin-Gak Kang , Sangheon Pack

This paper presents a measurement study of information leakage and SSL vulnerabilities in popular Android apps. We perform static and dynamic analysis on 100 apps, downloaded at least 10M times, that request full network access. Our…

Cryptography and Security · Computer Science 2015-05-05 Lucky Onwuzurike , Emiliano De Cristofaro

Phishing is a prevalent cyberattack that uses look-alike websites to deceive users into revealing sensitive information. Numerous efforts have been made by the Internet community and security organizations to detect, prevent, or train users…

Cryptography and Security · Computer Science 2025-07-15 Gaurav Varshney , Akanksha Raj , Divya Sangwan , Sharif Abuadbba , Rina Mishra , Yansong Gao

The use of TLS proxies to intercept encrypted traffic is controversial since the same mechanism can be used for both benevolent purposes, such as protecting against malware, and for malicious purposes, such as identity theft or warrantless…

Cryptography and Security · Computer Science 2015-05-29 Mark O'Neill , Scott Ruoti , Kent Seamons , Daniel Zappala

QUIC is a performance-optimized secure transport protocol and a building block of the upcoming HTTP/3 standard. To protect against denial-of-service attacks, QUIC servers need to validate the IP addresses claimed by their clients. So far,…

Cryptography and Security · Computer Science 2019-03-25 Erik Sy

Online privacy has become increasingly important in recent years. While third-party cookies have been widely used for years, they have also been criticized for their potential impact on user privacy. They can be used by advertisers to track…

Cryptography and Security · Computer Science 2024-05-16 Ismael Castell-Uroz , Pere Barlet-Ros

HTTP client hints are a set of standardized HTTP request headers designed to modernize and potentially replace the traditional user agent string. While the user agent string exposes a wide range of information about the client's browser and…

Cryptography and Security · Computer Science 2024-05-24 Stephan Wiefling , Marian Hönscheid , Luigi Lo Iacono

With the development of e-commerce, ssl protocol is more and more widely applied to various network services. It is one of key technologies to keep user's data in secure transmission via internet. This document majorly focuses on "SSLStrip"…

Cryptography and Security · Computer Science 2012-09-18 Fenil Kavathia , Ajay Modi