English
Related papers

Related papers: ferify: A Virtual Machine File Protection System a…

200 papers

Virtualization, after having found widespread adoption in the server and desktop arena, is poised to change the architecture of embedded systems as well. The benefits afforded by virtualization - enhanced isolation, manageability,…

Operating Systems · Computer Science 2018-06-05 Janis Danisevskis , Michael Peter , Jan Nordholz

Data-Flow Integrity (DFI) is a well-known approach to effectively detecting a wide range of software attacks. However, its real-world application has been quite limited so far because of the prohibitive performance overhead it incurs.…

Hardware Architecture · Computer Science 2021-11-30 Lang Feng , Jiayi Huang , Jeff Huang , Jiang Hu

The security of a computer system depends on OS kernel protection. It is crucial to reveal and inspect new attacks on kernel data, as these are used by hackers. The purpose of this paper is to continue research into attacks on dynamically…

Cryptography and Security · Computer Science 2021-06-14 Igor Korkin

Effectively protecting the Windows OS is a challenging task, since most implementation details are not publicly known. Windows has always been the main target of malwares that have exploited numerous bugs and vulnerabilities. Recent trusted…

Operating Systems · Computer Science 2017-06-07 Roberto di Pietro , Federico Franzoni , Flavio Lombardi

Control-Flow Hijacking attacks are the dominant attack vector against C/C++ programs. Control-Flow Integrity (CFI) solutions mitigate these attacks on the forward edge,i.e., indirect calls through function pointers and virtual calls.…

Cryptography and Security · Computer Science 2019-11-26 Nathan Burow , Xinping Zhang , Mathias Payer

Secure containers isolate each container with its own kernel, mitigating shared-kernel attacks prevalent in traditional container systems. However, existing designs still face a fundamental isolation--performance trade-off. Nested-cloud…

Operating Systems · Computer Science 2026-05-21 Yiyang Wu , Xunjie Wang , Jinyu Gu , Haibo Chen

Malicious software is abundant in a world of innumerable computer users, who are constantly faced with these threats from various sources like the internet, local networks and portable drives. Malware is potentially low to high risk and can…

Cryptography and Security · Computer Science 2012-05-15 Priyank Singhal , Nataasha Raul

In hardware virtualization a hypervisor provides multiple Virtual Machines (VMs) on a single physical system, each executing a separate operating system instance. The hypervisor schedules execution of these VMs much as the scheduler in an…

Distributed, Parallel, and Cluster Computing · Computer Science 2011-03-04 Fangfei Zhou , Manish Goel , Peter Desnoyers , Ravi Sundaram

Cloud applications expose - besides service endpoints - also potential or actual vulnerabilities. Therefore, cloud security engineering efforts focus on hardening the fortress walls but seldom assume that attacks may be successful. At least…

Cryptography and Security · Computer Science 2024-12-20 Kennedy A. Torkura , Christoph Meinel , Nane Kratzke

Integrity and security of the data in database systems are typically maintained with access control policies and firewalls. However, insider attacks -- where someone with an intimate knowledge of the system and administrative privileges…

Databases · Computer Science 2019-02-19 Shubham S. Srivastava , Medha Atre , Shubham Sharma , Rahul Gupta , Sandeep K. Shukla

Protected user-level libraries have been proposed as a way to allow mutually distrusting applications to safely share kernel-bypass services. In this paper, we identify and solve several previously unaddressed obstacles to realizing this…

Operating Systems · Computer Science 2025-09-04 Alan Beadle , Michael L. Scott , John Criswell

Data leaks and breaches are on the rise. They result in huge losses of money for businesses like the movie industry, as well as a loss of user privacy for businesses dealing with user data like the pharmaceutical industry. Preventing data…

Cryptography and Security · Computer Science 2020-12-14 Loïc Miller , Pascal Mérindol , Antoine Gallais , Cristel Pelsser

Hardware-based Trusted execution environments (TEEs) offer an isolation granularity of virtual machine abstraction. They provide confidential VMs (CVMs) that host security-sensitive code and data. AMD SEV-SNP and Intel TDX enable CVMs and…

Cryptography and Security · Computer Science 2024-04-05 Benedict Schlüter , Supraja Sridhara , Mark Kuhne , Andrin Bertschi , Shweta Shinde

Windows OS is facing a huge rise in kernel attacks. An overview of popular techniques that result in loading kernel drivers will be presented. One of the key targets of modern threats is disabling and blinding Microsoft Defender, a default…

Cryptography and Security · Computer Science 2022-10-07 Denis Pogonin , Igor Korkin

Recent Pwn2Own competitions have demonstrated the continued effectiveness of control hijacking attacks despite deployed countermeasures including stack canaries and ASLR. A powerful defense called Control flow Integrity (CFI) offers a…

Cryptography and Security · Computer Science 2014-08-08 Ali Jose Mashtizadeh , Andrea Bittau , David Mazieres , Dan Boneh

The kernel is the most safety- and security-critical component of many computer systems, as the most severe bugs lead to complete system crash or exploit. It is thus desirable to guarantee that a kernel is free from these bugs using formal…

Cryptography and Security · Computer Science 2021-05-25 Olivier Nicole , Matthieu Lemerre , Sébastien Bardin , Xavier Rival

The Unified Extensible Firmware Interface (UEFI) is a linchpin of modern computing systems, governing secure system initialization and booting. This paper is urgently needed because of the surge in UEFI-related attacks and vulnerabilities…

Cryptography and Security · Computer Science 2023-11-08 Priyanka Prakash Surve , Oleg Brodt , Mark Yampolskiy , Yuval Elovici , Asaf Shabtai

Customers of cloud services have to trust the cloud providers, as they control the building blocks that form the cloud. This includes the hypervisor enabling the sharing of a single hardware platform among multiple tenants. AMD Secure…

Cryptography and Security · Computer Science 2019-09-04 Robert Buhren , Christian Werling , Jean-Pierre Seifert

One of scenarios in data-sharing applications is that files are managed by multiple owners, and the list of file owners may change dynamically. However, most existing solutions to this problem rely on trusted third parties and have…

Cryptography and Security · Computer Science 2023-08-02 Jing Zhao , Qianqian Su

AI agents increasingly run untrusted code on developer machines: shell commands generated by language models, third-party scripts retrieved at runtime, and tool plugins of unknown provenance. Existing isolation mechanisms impose tradeoffs…

Cryptography and Security · Computer Science 2026-05-27 Cong Wang , Yusheng Zheng
‹ Prev 1 4 5 6 7 8 10 Next ›