English
Related papers

Related papers: Prime+Probe 1, JavaScript 0: Overcoming Browser-ba…

200 papers

We introduce the first microarchitectural side channel attacks that leverage contention on the CPU ring interconnect. There are two challenges that make it uniquely difficult to exploit this channel. First, little is known about the ring…

Cryptography and Security · Computer Science 2021-03-08 Riccardo Paccagnella , Licheng Luo , Christopher W. Fletcher

JavaScript, a scripting language employed to augment the capabilities of web browsers within web pages or browser extensions, utilizes code segments termed JavaScript inclusions. While the security aspects of JavaScript inclusions in web…

Cryptography and Security · Computer Science 2025-05-27 Chong Guan

Modern websites heavily rely on JavaScript (JS) to implement legitimate functionality as well as privacy-invasive advertising and tracking. Browser extensions such as NoScript block any script not loaded by a trusted list of endpoints, thus…

Cryptography and Security · Computer Science 2023-03-27 Abdul Haddi Amjad , Zubair Shafiq , Muhammad Ali Gulzar

Microarchitectural optimizations are expected to play a crucial role in ensuring performance scalability in future technology nodes. However, recent attacks have demonstrated that microarchitectural optimizations, which were assumed to be…

Cryptography and Security · Computer Science 2022-12-21 Nadja Ramhöj Holtryd , Madhavan Manivannan , Per Stenström

Cyber attacks and malware are now more prevalent than ever and the trend is ever upward. There have been several approaches to attack detection including resident software applications at the root or user level, e.g., virus detection, and…

Cryptography and Security · Computer Science 2018-07-31 James Christopher Foreman

Cache timing attacks allow third-party observers to retrieve sensitive information from program executions. But, is it possible to automatically check the vulnerability of a program against cache timing attacks and then, automatically…

Software Engineering · Computer Science 2018-07-23 Sudipta Chattopadhyay , Abhik Roychoudhury

The same-origin policy is a fundamental part of the Web. Despite the restrictions imposed by the policy, embedding of third-party JavaScript code is allowed and commonly used. Nothing is guaranteed about the integrity of such code. To…

Cryptography and Security · Computer Science 2018-09-18 Jukka Ruohonen , Joonas Salovaara , Ville Leppänen

The need for secure and private Artificial Intelligence (AI) and Machine Learning (ML) on edge and mobile devices has increased the necessity of protecting the architecture of these systems from threats to both security and privacy. With an…

Cryptography and Security · Computer Science 2026-05-29 Zisis Tsiatsikas , Alexandros Fakis , Georgios Karopoulos , Vasileios Kouliaridis , Marios Anagnostopoulos

Side-channel attacks try to extract secret information from a system by analyzing different side-channel signatures, such as power consumption, electromagnetic emanation, thermal dissipation, acoustics, time, etc. Power-based side-channel…

Cryptography and Security · Computer Science 2026-01-01 Sahan Sanjaya , Aruna Jayasena , Prabhat Mishra

We formalize and analyze the trade-off between backdoor-based watermarks and adversarial defenses, framing it as an interactive protocol between a verifier and a prover. While previous works have primarily focused on this trade-off, our…

Machine Learning · Computer Science 2026-01-22 Grzegorz Głuch , Berkant Turan , Sai Ganesh Nagarajan , Sebastian Pokutta

Timing attacks have been a continuous threat to users' privacy in modern browsers. To mitigate such attacks, existing approaches, such as Tor Browser and Fermata, add jitters to the browser clock so that an attacker cannot accurately…

Cryptography and Security · Computer Science 2017-08-24 Yinzhi Cao , Zhanhao Chen , Song Li , Shujiang Wu

Compression algorithms are widely used as they save memory without losing data. However, elimination of redundant symbols and sequences in data leads to a compression side channel. So far, compression attacks have only focused on the…

Cryptography and Security · Computer Science 2021-11-17 Martin Schwarzl , Pietro Borrello , Gururaj Saileshwar , Hanna Müller , Michael Schwarz , Daniel Gruss

The Chromium open-source project has become a fundamental piece of the Web as we know it today, with multiple vendors offering browsers based on its codebase. One of its most popular features is the possibility of altering or enhancing the…

Cryptography and Security · Computer Science 2023-06-01 José Miguel Moreno , Narseo Vallina-Rodriguez , Juan Tapiador

Timing side channels have been used to extract cryptographic keys and sensitive documents, even from trusted enclaves. In this paper, we focus on cache side channels created by access to shared code or data in the memory hierarchy. This…

Cryptography and Security · Computer Science 2021-12-20 Divya Ojha , Sandhya Dwarkadas

Browser extensions are additional tools developed by third parties that integrate with web browsers to extend their functionality beyond standard capabilities. However, the browser extension platform is increasingly being exploited by…

Cryptography and Security · Computer Science 2025-10-08 Shreya Singh , Gaurav Varshney , Tarun Kumar Singh , Vidhi Mishra , Khushi Verma

Caches have become the prime method for unintended information extraction across logical isolation boundaries. Even Spectre and Meltdown rely on the cache side channel, as it provides great resolution and is widely available on all major…

Cryptography and Security · Computer Science 2019-04-15 Samira Briongos , Pedro Malagón , José M. Moya , Thomas Eisenbarth

Trusted execution environments (TEEs) offer hardware-assisted means to protect code and data. However, as shown in numerous results over the years, attackers can use side-channels to leak data access patterns and even single-step the code.…

Cryptography and Security · Computer Science 2025-09-24 Jan Wichelmann , Anja Rabich , Anna P"atschke , Thomas Eisenbarth

To defend against conflict-based cache side-channel attacks, cache partitioning or remapping techniques were proposed to prevent set conflicts between different security domains or obfuscate the locations of such conflicts. But such…

Cryptography and Security · Computer Science 2024-05-07 Fang Jiang , Fei Tong , Hongyu Wang , Xiaoyu Cheng , Zhe Zhou , Ming Ling , Yuxing Mao

Cache attacks pose a threat to any code whose execution flow or memory accesses depend on sensitive information. Especially in public clouds, where caches are shared across several tenants, cache attacks remain an unsolved problem. Cache…

Cryptography and Security · Computer Science 2017-09-07 Samira Briongos , Gorka Irazoqui , Pedro Malagón , Thomas Eisenbarth

People are becoming increasingly concerned with their online privacy, especially with how advertising companies track them across websites (a practice called cross-site tracking), as reconstructing a user's browser history can reveal…

Cryptography and Security · Computer Science 2023-11-22 Alisha Ukani
‹ Prev 1 3 4 5 6 7 10 Next ›