English
Related papers

Related papers: IFDS Taint Analysis with Access Paths

200 papers

Provenance-based Intrusion Detection Systems (PIDSes) have been widely used to detect Advanced Persistent Threats (APTs). Although many studies achieve high performance in the evaluations of their original papers, their performance in…

Cryptography and Security · Computer Science 2026-03-25 Yue Xiao , Ling Jiang , Sen Nie , Ding Li , Shi Wu , Ke Xu , Qi Li

The rapidly evolving Node$.$js ecosystem currently includes millions of packages and is a critical part of modern software supply chains, making vulnerability detection of Node$.$js packages increasingly important. However, traditional…

Cryptography and Security · Computer Science 2026-04-23 Ronghao Ni , Mihai Christodorescu , Limin Jia

Taint analysis is a security analysis technique used to track the flow of potentially dangerous data through an application and its dependent libraries. Investigating why certain unexpected flows appear and why expected flows are missing is…

Software Engineering · Computer Science 2025-12-05 Burak Yetiştiren , Hong Jin Kang , Miryung Kim

The network security analyzers use intrusion detection systems (IDSes) to distinguish malicious traffic from benign ones. The deep learning-based IDSes are proposed to auto-extract high-level features and eliminate the time-consuming and…

Cryptography and Security · Computer Science 2023-03-07 Mahdi Soltani , Khashayar Khajavi , Mahdi Jafari Siavoshani , Amir Hossein Jahangir

Fault detection is crucial in industrial systems to prevent failures and optimize performance by distinguishing abnormal from normal operating conditions. Data-driven methods have been gaining popularity for fault detection tasks as the…

Machine Learning · Computer Science 2024-06-12 Han Sun , Kevin Ammann , Stylianos Giannoulakis , Olga Fink

Just like other software, spreadsheets can contain significant faults. Static analysis is an accepted and well-established technique in software engineering known for its capability to discover faults. In recent years, a growing number of…

Software Engineering · Computer Science 2014-01-30 Daniel Kulesz , Jan-Peter Ostberg

Due to its crucial role in identity and access management in modern enterprise networks, Active Directory (AD) is a top target of Advanced Persistence Threat (APT) actors. Conventional intrusion detection systems (IDS) excel at identifying…

Cryptography and Security · Computer Science 2026-05-01 Qi Liu , Kaibin Bao , Wajih Ul Hassan , Veit Hagenmeyer

Web applications are distributed applications, they are programs that run on more than one computer and communicate through a network or server. This very distributed nature of web applications, combined with the scale and sheer complexity…

Cryptography and Security · Computer Science 2022-10-17 Akash Nagaraj , Bishesh Sinha , Mukund Sood , Yash Mathur , Sanchika Gupta , Dinkar Sitaram

This paper investigates a flow- and path-sensitive static information flow analysis. Compared with security type systems with fixed labels, it has been shown that flow-sensitive type systems accept more secure programs. We show that an…

Programming Languages · Computer Science 2017-06-22 Peixuan Li , Danfeng Zhang

Advanced Persistent Threats (APTs) represent a significant challenge in cybersecurity due to their sophisticated and stealthy nature. Traditional Intrusion Detection Systems (IDS) often fall short in detecting these multi-stage attacks.…

Cryptography and Security · Computer Science 2025-01-08 Atmane Ayoub Mansour Bahar , Kamel Soaid Ferrahi , Mohamed-Lamine Messai , Hamida Seba , Karima Amrouche

Prevention of cyber attacks on the critical network resources has become an important issue as the traditional Intrusion Detection Systems (IDSs) are no longer effective due to the high volume of network traffic and the deceptive patterns…

Cryptography and Security · Computer Science 2020-07-22 Tanmoy Kanti Das , S. Gangopadhyay , Jianying Zhou

The objective of this is to develop a Fuzzy aided Application layer Semantic Intrusion Detection System (FASIDS) which works in the application layer of the network stack. FASIDS consist of semantic IDS and Fuzzy based IDS. Rule based IDS…

Cryptography and Security · Computer Science 2010-07-15 S. Sangeetha , V. Vaidehi

Intrusion detection systems (IDS) reinforce cyber defense by autonomously monitoring various data sources for traces of attacks. However, IDSs are also infamous for frequently raising false positives and alerts that are difficult to…

Cryptography and Security · Computer Science 2024-09-04 Max Landauer , Florian Skopik , Markus Wurzenberger

Network-based intrusion detection system (NIDS) monitors network traffic for malicious activities, forming the frontline defense against increasing attacks over information infrastructures. Although promising, our quantitative analysis…

Cryptography and Security · Computer Science 2025-05-08 Chenyang Qiu , Yingsheng Geng , Junrui Lu , Kaida Chen , Shitong Zhu , Ya Su , Guoshun Nan , Can Zhang , Junsong Fu , Qimei Cui , Xiaofeng Tao

WebAssembly (wasm) has recently emerged as a promisingly portable, size-efficient, fast, and safe binary format for the web. As WebAssembly can interact freely with JavaScript libraries, this gives rise to a potential for undesirable…

Cryptography and Security · Computer Science 2018-02-06 William Fu , Raymond Lin , Daniel Inge

Static Application Security Testing (SAST) enables organizations to detect vulnerabilities in code early; however, major SAST platforms do not include visual aids and present little insight on correlations between tainted data chains. We…

Cryptography and Security · Computer Science 2025-05-23 Naeem Budhwani , Mohammad Faghani , Hayden Richard

Android applications collecting data from users must protect it according to the current legal frameworks. Such data protection has become even more important since the European Union rolled out the General Data Protection Regulation…

Software Engineering · Computer Science 2024-02-13 Mugdha Khedkar , Eric Bodden

Security concerns for IoT applications have been alarming because of their widespread use in different enterprise systems. The potential threats to these applications are constantly emerging and changing, and therefore, sophisticated and…

Cryptography and Security · Computer Science 2022-04-12 Sk. Tanzir Mehedi , Adnan Anwar , Ziaur Rahman , Kawsar Ahmed , Rafiqul Islam

Intrusion detection system (IDS) is an important part of enterprise security system architecture. In particular, anomaly-based IDS has been widely applied to detect abnormal process behaviors that deviate from the majority. However, such…

Cryptography and Security · Computer Science 2016-08-10 Boxiang Dong , Zhengzhang Chen , Hui Wang , Lu-An Tang , Kai Zhang , Ying Lin , Haifeng Chen , Guofei Jiang

Advanced Persistent Threats (APTs) are stealthy customized attacks by intelligent adversaries. This paper deals with the detection of APTs that infiltrate cyber systems and compromise specifically targeted data and/or infrastructures.…

Computer Science and Game Theory · Computer Science 2021-06-29 Shana Moothedath , Dinuka Sahabandu , Joey Allen , Andrew Clark , Linda Bushnell , Wenke Lee , Radha Poovendran