English
Related papers

Related papers: Prime+Probe 1, JavaScript 0: Overcoming Browser-ba…

200 papers

With web applications becoming a preferred method of presenting graphical user interfaces to users, software vulnerabilities affecting web applications are becoming more and more prevalent and devastating. Some of these vulnerabilities,…

Cryptography and Security · Computer Science 2019-08-14 Michael Flanders

The side-channel attack is an attack method based on the information gained about implementations of computer systems, rather than weaknesses in algorithms. Information about system characteristics such as power consumption, electromagnetic…

Cryptography and Security · Computer Science 2020-08-04 Guanlin Li , Chang Liu , Han Yu , Yanhong Fan , Libang Zhang , Zongyue Wang , Meiqin Wang

In this paper we show that cryptographic backdoors in a neural network (NN) can be highly effective in two directions, namely mounting the attacks as well as in presenting the defenses as well. On the attack side, a carefully planted…

Cryptography and Security · Computer Science 2025-09-26 Anh Tu Ngo , Anupam Chattopadhyay , Subhamoy Maitra

This paper presents a novel defense strategy against static power side-channel attacks (PSCAs), a critical threat to cryptographic security. Our method is based on (1) carefully tuning high-Vth versus low-Vth cell selection during…

Cryptography and Security · Computer Science 2024-07-23 Jitendra Bhandari , Mohammed Nabeel , Likhitha Mankali , Ozgur Sinanoglu , Ramesh Karri , Johann Knechtel

The widespread use of publicly available pre-trained encoders from self-supervised learning (SSL) has exposed a critical vulnerability: their susceptibility to downstream-agnostic adversarial examples (DAEs), which are crafted without…

Machine Learning · Computer Science 2026-02-13 Zhuxin Lei , Ziyuan Yang , Yi Zhang

This work provides the community with a timely comprehensive review of backdoor attacks and countermeasures on deep learning. According to the attacker's capability and affected stage of the machine learning pipeline, the attack surfaces…

Cryptography and Security · Computer Science 2020-08-04 Yansong Gao , Bao Gia Doan , Zhi Zhang , Siqi Ma , Jiliang Zhang , Anmin Fu , Surya Nepal , Hyoungshick Kim

Recent model inversion attack algorithms permit adversaries to reconstruct a neural network's private and potentially sensitive training data by repeatedly querying the network. In this work, we develop a novel network architecture that…

Computer Vision and Pattern Recognition · Computer Science 2024-08-27 Sayanton V. Dibbo , Adam Breuer , Juston Moore , Michael Teti

Content filtering in web browsers is a tedious process for most of the people, because of several reasons. By blocking JavaScript, Cookies and Popups, end users can ensure maximum protection from browser based attacks and vulnerabilities.…

Cryptography and Security · Computer Science 2014-07-16 Bofin Babu , Mohan Kumar

This paper presents a practical side-channel attack that identifies the social web service account of a visitor to an attacker's website. Our attack leverages the widely adopted user-blocking mechanism, abusing its inherent property that…

Cryptography and Security · Computer Science 2018-05-15 Takuya Watanabe , Eitaro Shioji , Mitsuaki Akiyama , Keito Sasaoka , Takeshi Yagi , Tatsuya Mori

The World Wide Web's connectivity is greatly attributed to the HTTP protocol, with HTTP messages offering informative header fields that appeal to disciplines like web security and privacy, especially concerning web tracking. Despite…

Cryptography and Security · Computer Science 2025-02-28 Wolf Rieder , Philip Raschke , Thomas Cory

Our increasing reliance on digital technology for personal, economic, and government affairs has made it essential to secure the communications and devices of private citizens, businesses, and governments. This has led to pervasive use of…

Large Language Models (LLMs) rely on optimizations like Automatic Prefix Caching (APC) to accelerate inference. APC works by reusing previously computed states for the beginning part of a request (prefix), when another request starts with…

Cryptography and Security · Computer Science 2026-05-21 Panagiotis Georgios Pennas , Konstantinos Papaioannou , Marco Guarnieri , Thaleia Dimitra Doudali

We present a study of how local frames (i.e., iframes loading content like "about:blank") are mishandled by a wide range of popular Web security and privacy tools. As a result, users of these tools remain vulnerable to the very attack…

Cryptography and Security · Computer Science 2025-07-03 Alisha Ukani , Hamed Haddadi , Alex C. Snoeren , Peter Snyder

Cache timing attacks use shared caches in multi-core processors as side channels to extract information from victim processes. These attacks are particularly dangerous in cloud infrastructures, in which the deployed countermeasures cause…

Cryptography and Security · Computer Science 2019-04-26 Iván Prada , Francisco D. Igual , Katzalin Olcoz

Side-channel attacks, which are capable of breaking secrecy via side-channel information, pose a growing threat to the implementation of cryptographic algorithms. Masking is an effective countermeasure against side-channel attacks by…

Cryptography and Security · Computer Science 2020-06-17 Pengfei Gao , Hongyi Xie , Fu Song , Taolue Chen

In cache-based side channel attacks, an attacker infers information about the victim based on the presence, or lack thereof, of one or more cachelines. Determining a cacheline's presence, which we refer to as "reading the signal", typically…

Cryptography and Security · Computer Science 2023-03-02 David A. Kaplan

Operating Systems enforce logical isolation using abstractions such as processes, containers, and isolation technologies to protect a system from malicious or buggy code. In this paper, we show new types of side channels through the file…

Cryptography and Security · Computer Science 2025-04-29 Cheng Gu , Yicheng Zhang , Nael Abu-Ghazaleh

Website Fingerprinting attacks enable a passive eavesdropper to recover the user's otherwise anonymized web browsing activity by matching the observed traffic with prerecorded web traffic templates. The defenses that have been proposed to…

Cryptography and Security · Computer Science 2016-07-20 Marc Juarez , Mohsen Imani , Mike Perry , Claudia Diaz , Matthew Wright

Browser extensions have been established as a common feature present in modern browsers. However, some extension systems risk exposing APIs which are too permissive and cohesive with the browser's internal structure, thus leaving a hole for…

Cryptography and Security · Computer Science 2017-09-28 Raffaello Perrotta , Feng Hao

Browser fingerprinting is a relatively new method of uniquely identifying browsers that can be used to track web users. In some ways it is more privacy-threatening than tracking via cookies, as users have no direct control over it. A number…

Cryptography and Security · Computer Science 2019-05-24 Nasser Mohammed Al-Fannah , Wanpeng Li , Chris J Mitchell