English
Related papers

Related papers: SecDocker: Hardening the Continuous Integration Wo…

200 papers

Continuous Integration (CI) is a software development practice that builds and tests software frequently (e.g., at every push). One main motivator to adopt CI is the potential to deliver software functionalities more quickly than not using…

Software Engineering · Computer Science 2023-05-29 João Helis Bernardo , Daniel Alencar da Costa , Uirá Kulesza , Christoph Treude

GitHub Actions is a widely used platform to automate the build and deployment of software projects through configurable workflows. As the platform's popularity grows, it also becomes a target of choice for software supply chain attacks.…

Software Engineering · Computer Science 2026-03-18 Madjda Fares , Yogya Gamage , Benoit Baudry

Dynamic Information Flow Tracking (DIFT) is a technique to track potential security vulnerabilities in software and hardware systems at run time. The last fifteen years have seen a lot of research work on DIFT, including both hardware-based…

Cryptography and Security · Computer Science 2019-11-14 Ali Jahanshahi

Continuous Integration (CI) testing is a popular software development technique that allows developers to easily check that their code can build successfully and pass tests across various system environments. In order to use a CI platform,…

Software Engineering · Computer Science 2018-05-14 Mark Santolucito , Jialu Zhang , Ennan Zhai , Ruzica Piskac

Collaborative Intrusion Detection Systems (CIDS) are increasingly adopted to counter cyberattacks, as their collaborative nature enables them to adapt to diverse scenarios across heterogeneous environments. As distributed critical…

Cryptography and Security · Computer Science 2026-02-13 André García Gómez , Ines Rieger , Wolfgang Hotwagner , Max Landauer , Markus Wurzenberger , Florian Skopik , Edgar Weippl

High availability is no longer just a business continuity concern. Users are increasingly dependant on devices that consume and produce data in ever increasing volumes. A popular solution is to have a central repository which each device…

Cryptography and Security · Computer Science 2015-06-05 Mark Scanlon , Jason Farina , M-Tahar Kechadi

Data-driven intelligent applications in modern online services have become ubiquitous. These applications are usually hosted in the untrusted cloud computing infrastructure. This poses significant security risks since these applications…

Cryptography and Security · Computer Science 2021-01-21 Do Le Quoc , Franz Gregor , Sergei Arnautov , Roland Kunkel , Pramod Bhatotia , Christof Fetzer

The integration of security within DevOps, known as DevSecOps, has gained traction in modern software development to address security vulnerabilities while maintaining agility. Artificial Intelligence (AI) and Machine Learning (ML) have…

Cryptography and Security · Computer Science 2025-04-29 Farid Binbeshr , Muhammad Imam

The increasing prevalence of cloud-native technologies, particularly containers, has led to the widespread adoption of containerized deployments in data centers. The advancement of deep neural network models has increased the demand for…

Distributed, Parallel, and Cluster Computing · Computer Science 2024-11-22 Jinlong Hu , Zhizhe Rao , Xingchen Liu , Lihao Deng , Shoubin Dong

This work describes the setup of an advanced technical infrastructure for collaborative software development (CDE) in large, distributed projects based on GitLab. We present its customization and extension, additional features and processes…

Software Engineering · Computer Science 2023-08-10 Felix Bach , Jochen Klar , Axel Loewe , Jorge Sánchez , Gunnar Seemann , Yung-Lin Huang , Robert Ulrich

Control-flow hijacking attacks are used to perform malicious com-putations. Current solutions for assessing the attack surface afteracontrol flow integrity(CFI) policy was applied can measure onlyindirect transfer averages in the best case…

Cryptography and Security · Computer Science 2019-10-04 Paul Muntean , Matthias Neumayer , Zhiqiang Lin , Gang Tan , Jens Grossklags , Claudia Eckert

Continuous Integration (CI) is a cornerstone of modern software development. However, while widely adopted in traditional software projects, applying CI practices to Machine Learning (ML) projects presents distinctive characteristics. For…

Runtime scheduling and workflow systems are an increasingly popular algorithmic component in HPC because they allow full system utilization with relaxed synchronization requirements. There are so many special-purpose tools for task…

Distributed, Parallel, and Cluster Computing · Computer Science 2023-11-03 David M. Rogers

Decentralised workflow management systems are a new research area, where most work to-date has focused on the system's overall architecture. As little attention has been given to the security aspects in such systems, we follow a security…

Cryptography and Security · Computer Science 2010-06-09 Petteri Kaskenpalo

Containers offer an array of advantages that benefit research reproducibility and portability across groups and systems. As container tools mature, container security improves, and High-performance computing (HPC) and cloud system tools…

Distributed, Parallel, and Cluster Computing · Computer Science 2023-08-24 Tiziano Müller , Nina Mujkanovic , Juan J. Durillo , Nicolay Hammer

The purpose of this paper is to fill a gap in the general understanding -- and academic scrutiny -- of current and emerging workflows for designing and fabricating integrated circuits. The approach is to compare the IC design workflow with…

Cryptography and Security · Computer Science 2024-08-07 John C. Hoag

When dealing with node or link failures in Software Defined Networking (SDN), the network capability to establish an alternative path depends on controller reachability and on the round trip times (RTTs) between controller and involved…

Networking and Internet Architecture · Computer Science 2015-12-04 Carmelo Cascone , Luca Pollini , Davide Sanvito , Antonio Capone , Brunilde Sansò

Recent Pwn2Own competitions have demonstrated the continued effectiveness of control hijacking attacks despite deployed countermeasures including stack canaries and ASLR. A powerful defense called Control flow Integrity (CFI) offers a…

Cryptography and Security · Computer Science 2014-08-08 Ali Jose Mashtizadeh , Andrea Bittau , David Mazieres , Dan Boneh

The implementations of most hardened cryptographic libraries use defensive programming techniques for side-channel resistance. These techniques are usually specified as guidelines to developers on specific code patterns to use or avoid.…

Cryptography and Security · Computer Science 2025-09-03 Moritz Schneider , Daniele Lain , Ivan Puddu , Nicolas Dutly , Srdjan Capkun

In a new effort to make our research transparent and reproducible by others, we developed a workflow to run and share computational studies on the public cloud Microsoft Azure. It uses Docker containers to create an image of the application…

Computational Engineering, Finance, and Science · Computer Science 2020-07-24 Olivier Mesnard , Lorena A. Barba