English
Related papers

Related papers: HyperLogLog (HLL) Security: Inflating Cardinality …

200 papers

Nowadays, information and communications technology systems are fundamental assets of our social and economical model, and thus they should be properly protected against the malicious activity of cybercriminals. Defence mechanisms are…

Cryptography and Security · Computer Science 2019-08-02 Gonzalo de la Torre-Abaitua , Luis F. Lago-Fernández , David Arroyo

Carriage return (CR) and line feed (LF), also known as CRLF injection is a type of vulnerability that allows a hacker to enter special characters into a web application, altering its operation or confusing the administrator. Log poisoning…

Cryptography and Security · Computer Science 2023-09-14 MD Asibul Hasan , Md. Mijanur Rahman

Recent work has reemphasized the importance of cardinality estimates for query optimization. While new techniques have continuously improved in accuracy over time, they still generally allow for under-estimates which often lead optimizers…

Databases · Computer Science 2022-11-21 Kyle Deeds , Dan Suciu , Magda Balazinska

Logging code plays an important role in software systems by recording key events and behaviors, which are essential for debugging and monitoring. However, insecure logging practices can inadvertently expose sensitive information or enable…

Software Engineering · Computer Science 2026-04-23 He Yang Yuan , Xin Wang , Kundi Yao , An Ran Chen , Zishuo Ding , Zhenhao Li

We propose a framework by which websites can coordinate to detect credential stuffing on individual user accounts. Our detection algorithm teases apart normal login behavior (involving password reuse, entering correct passwords into the…

Cryptography and Security · Computer Science 2021-03-05 Ke Coby Wang , Michael K. Reiter

DB engines produce efficient query execution plans by relying on cost models. Practical implementations estimate cardinality of queries using heuristics, with magic numbers tuned to improve average performance on benchmarks. Empirically,…

Network security analysts gather data from diverse sources, from high-level summaries of network flow and traffic volumes to low-level details such as service logs from servers and the contents of individual packets. They validate and check…

Networking and Internet Architecture · Computer Science 2024-03-05 Michael Collins , Jyotirmoy V. Deshmukh , Dristi Dinesh , Mukund Raghothaman , Srivatsan Ravi , Yuan Xia

Multi-source logs provide a comprehensive overview of ongoing system activities, allowing for in-depth analysis to detect potential threats. A practical approach for threat detection involves explicit extraction of entity triples (subject,…

Software Engineering · Computer Science 2024-11-26 Zhuoran Tan , Christos Anagnostopoulos , Shameem P. Parambath , Jeremy Singer

Logs are critical resources that record events, activities, or messages produced by software applications, operating systems, servers, and network devices. However, consolidating the heterogeneous logs and cross-referencing them is…

Software Engineering · Computer Science 2024-12-18 Rabimba Karanjai , Yang Lu , Dana Alsagheer , Keshav Kasichainula , Lei Xu , Weidong Shi , Shou-Hsuan Stephen Huang

One reason the Web is more useful than a simple collection of documents is that the structure created by hyperlinks enables flexible navigation from one web page to another. However, hyperlinks are typically created manually and cannot…

Information Retrieval · Computer Science 2026-04-29 Dean E. Alvarez , ChengXiang Zhai

In cybersecurity, security analysts constantly face the challenge of mitigating newly discovered vulnerabilities in real-time, with over 300,000 vulnerabilities identified since 1999. The sheer volume of known vulnerabilities complicates…

Cryptography and Security · Computer Science 2026-01-26 Reza Fayyazi , Stella Hoyos Trueba , Michael Zuzak , Shanchieh Jay Yang

Geographically locating an IP address is of interest for many purposes. There are two major ways to obtain the location of an IP address: querying commercial databases or conducting latency measurements. For structural Internet nodes, such…

Networking and Internet Architecture · Computer Science 2017-06-29 Quirin Scheitle , Oliver Gasser , Patrick Sattler , Georg Carle

Recent benchmark efforts have advanced the evaluation of large language models (LLMs) in cybersecurity, including tasks such as penetration testing and vulnerability identification. However, a critical cybersecurity task, namely intrusion…

Cryptography and Security · Computer Science 2026-05-22 Danyu Sun , Jinghuai Zhang , Yuan Tian , Zhou Li

Lateral movement is a crucial component of advanced persistent threat (APT) attacks in networks. Attackers exploit security vulnerabilities in internal networks or IoT devices, expanding their control after initial infiltration to steal…

Cryptography and Security · Computer Science 2024-11-18 Jiajun Zhou , Jiacheng Yao , Xuanze Chen , Shanqing Yu , Qi Xuan , Xiaoniu Yang

Phishing websites remain a major cybersecurity threat, yet existing methods primarily focus on detection, while the recognition of underlying malicious intentions remains largely unexplored. To address this gap, we propose…

Cryptography and Security · Computer Science 2025-07-22 Wenhao Li , Selvakumar Manickam , Yung-wey Chong , Shankar Karuppayah

Logic locking (LL) has gained attention as a promising intellectual property protection measure for integrated circuits. However, recent attacks, facilitated by machine learning (ML), have shown the potential to predict the correct key in…

Cryptography and Security · Computer Science 2024-03-05 Yinghua Hu , Kaixin Yang , Subhajit Dutta Chowdhury , Pierluigi Nuzzo

When facing a very large stream of data, it is often desirable to extract most important statistics online in a short time and using small memory. For example, one may want to quickly find the most influential users generating posts online…

Data Structures and Algorithms · Computer Science 2022-03-30 Dariusz R. Kowalski , Dominik Pajak

The recent surge in hardware security is significant due to offshoring the proprietary Intellectual property (IP). One distinct dimension of the disruptive threat is malicious logic insertion, also known as Hardware Trojan (HT). HT subverts…

Cryptography and Security · Computer Science 2019-12-24 Sheikh Ariful Islam , Farha Islam Mime , S M Asaduzzaman , Farzana Islam

High-level synthesis (HLS) accelerates hardware design by enabling the automatic translation of high-level descriptions into efficient hardware implementations. However, debugging HLS code is a challenging and labor-intensive task,…

Software Engineering · Computer Science 2025-07-30 Jing Wang , Shang Liu , Yao Lu , Zhiyao Xie

Protecting system observability records (logs) from compromised OSs has gained significant traction in recent times, with several note-worthy approaches proposed. Unfortunately, none of the proposed approaches achieve high performance with…

Cryptography and Security · Computer Science 2024-09-10 Chuqi Zhang , Jun Zeng , Yiming Zhang , Adil Ahmad , Fengwei Zhang , Hai Jin , Zhenkai Liang