English
Related papers

Related papers: ferify: A Virtual Machine File Protection System a…

200 papers

In typical software, many comparisons and subsequent branch operations are highly critical in terms of security. Examples include password checks, signature checks, secure boot, and user privilege checks. For embedded devices, these…

Cryptography and Security · Computer Science 2018-03-23 Robert Schilling , Mario Werner , Stefan Mangard

Malicious attacks on open-source software packages are a growing concern. The discovery of the XZ Utils backdoor intensified these concerns because of the potential widespread impact. This study, therefore, explores the challenges of…

Cryptography and Security · Computer Science 2025-07-22 Duc-Ly Vu , Trevor Dunlap , Karla Obermeier-Velazquez , Thanh-Cong Nguyen , Paul Gibert , John Speed Meyers , Santiago Torres-Arias

Universal Serial Bus (USB)-based attacks have increased in complexity in recent years. Modern attacks incorporate a wide range of attack vectors, from social engineering to signal injection. The security community is addressing these…

Cryptography and Security · Computer Science 2025-07-04 Chun-Yi Wang , Fu-Hau Hsu

Cloud-assisted Cognitive Internet of Things has powerful data analytics abilities based on the computing and data storage capabilities of cloud virtual machines, which makes protecting virtual machine filesystem very important for the whole…

Cryptography and Security · Computer Science 2018-04-06 Dongyang Zhan , Lin Ye , Hongli Zhang , Binxing Fang , Huhua Li , Yang Liu , Xiaojiang Du , Mohsen Guizani

This work presents a formal model that is part of our effort to construct a verified file system for Flash memory. To modularize the verification we factor out generic aspects into a common component that is inspired by the Linux Virtual…

Logic in Computer Science · Computer Science 2012-11-28 Gidon Ernst , Gerhard Schellhorn , Dominik Haneberg , Jörg Pfähler , Wolfgang Reif

According to experts, one third of all IT vulnerabilities today are due to inadequate software verification. Internal program processes are not sufficiently secured against manipulation by attackers, especially if access has been gained.…

Cryptography and Security · Computer Science 2022-11-22 Erik Heiland , Peter Hillmann

EMFI has become a popular fault injection (FI) technique due to its ability to inject faults precisely considering timing and location. Recently, ARM, RISC-V, and even x86 processing units in different packages were shown to be vulnerable…

Cryptography and Security · Computer Science 2022-09-21 Niclas Kühnapfel , Robert Buhren , Hans Niklas Jacob , Thilo Krachenfels , Christian Werling , Jean-Pierre Seifert

In cloud computing, network Denial of Service (DoS) attacks are well studied and defenses have been implemented, but severe DoS attacks on a victim's working memory by a single hostile VM are not well understood. Memory DoS attacks are…

Distributed, Parallel, and Cluster Computing · Computer Science 2017-10-05 Tianwei Zhang , Yinqian Zhang , Ruby B. Lee

Protecting data in memory from attackers continues to be a concern in computing systems. CHERI is a promising approach to achieve such protection, by providing and enforcing fine-grained memory protection directly in the hardware. Creating…

In this work we present the Secure Machine, SeM for short, a CPU architecture extension for secure computing. SeM uses a small amount of in-chip additional hardware that monitors key communication channels inside the CPU chip, and only acts…

Cryptography and Security · Computer Science 2018-03-13 Ofir Shwartz , Yitzhak Birk

Traditional techniques to prevent damage from ransomware attacks are to detect and block attacks by monitoring the known behaviors such as frequent name changes, recurring access to cryptographic libraries and exchange keys with remote…

Cryptography and Security · Computer Science 2019-04-11 Jinwoo Ahn , Donggyu Park , Chang-Gyu Lee , Donghyun Min , Junghee Lee , Sungyong Park , Qian Chen , Youngjae Kim

With the increasing popularity of AArch64 processors in general-purpose computing, securing software running on AArch64 systems against control-flow hijacking attacks has become a critical part toward secure computation. Shadow stacks keep…

Cryptography and Security · Computer Science 2023-07-20 Zhuojia Shen , John Criswell

The kernels of operating systems such as Windows, Linux, and MacOS are vulnerable to control-flow hijacking. Defenses exist, but many require efficient intra-address-space isolation. Execute-only memory, for example, requires read…

Cryptography and Security · Computer Science 2021-08-04 Spyridoula Gravani , Mohammad Hedayati , John Criswell , Michael L. Scott

A container is a group of processes isolated from other groups via distinct kernel namespaces and resource allocation quota. Attacks against containers often leverage kernel exploits through system call interface. In this paper, we present…

Cryptography and Security · Computer Science 2017-12-18 Zhiyuan Wan , David Lo , Xin Xia , Liang Cai , Shanping Li

Non-volatile memories (NVMs) have the potential to reshape next-generation memory systems because of their promising properties of near-zero leakage power consumption, high density and non-volatility. However, NVMs also face critical…

Emerging Technologies · Computer Science 2023-06-06 Yixin Xu , Yi Xiao , Zijian Zhao , Franz Müller , Alptekin Vardar , Xiao Gong , Sumitha George , Thomas Kämpfe , Vijaykrishnan Narayanan , Kai Ni

Vision transformers have contributed greatly to advancements in the computer vision domain, demonstrating state-of-the-art performance in diverse tasks (e.g., image classification, object detection). However, their high computational…

Computer Vision and Pattern Recognition · Computer Science 2024-11-05 Oryan Yehezkel , Alon Zolfi , Amit Baras , Yuval Elovici , Asaf Shabtai

Memory corruption vulnerabilities often enable attackers to take control of a target system by overwriting control-flow relevant data (such as return addresses and function pointers), which are potentially stored in close proximity of…

Cryptography and Security · Computer Science 2019-09-10 Marie-Therese Walter , David Pfaff , Stefan Nürnberger , Michael Backes

Though vertical federated learning (VFL) is generally considered to be privacy-preserving, recent studies have shown that VFL system is vulnerable to label inference attacks originating from various attack surfaces. Among these attacks, the…

Cryptography and Security · Computer Science 2026-01-23 Juntao Tan , Lan Zhang , Zhonghao Hu , Kai Yang , Peng Ran , Bo Li

Website fingerprinting attacks enable an adversary to infer which website a victim is visiting, even if the victim uses an encrypting proxy, such as Tor. Previous work has shown that all proposed defenses against website fingerprinting…

Cryptography and Security · Computer Science 2014-01-24 Xiang Cai , Rishab Nithyanand , Rob Johnson

This paper presents an in-kernel, hardware-based control-flow integrity (CFI) protection, called PAL, that utilizes ARM's Pointer Authentication (PA). It provides three important benefits over commercial, state-of-the-art PA-based CFIs like…

Cryptography and Security · Computer Science 2021-12-15 Sungbae Yoo , Jinbum Park , Seolheui Kim , Yeji Kim , Taesoo Kim