English
Related papers

Related papers: Secure Namespaced Kernel Audit for Containers

200 papers

Research on backdoor attacks in Federated Learning (FL) has accelerated in recent years, with new attacks and defenses continually proposed in an escalating arms race. However, the evaluation of these methods remains neither standardized…

Cryptography and Security · Computer Science 2025-11-26 Thinh Dao , Dung Thuy Nguyen , Khoa D Doan , Kok-Seng Wong

We describe SAFIUS, a secure accountable file system that resides over an untrusted storage. SAFIUS provides strong security guarantees like confidentiality, integrity, prevention from rollback attacks, and accountability. SAFIUS also…

Operating Systems · Computer Science 2016-11-18 V Sriram , Ganesh Narayan , K Gopinath

The paper reviews the comparative study of security measures, challenges, and best practices with a view to enhancing cyber safety in containerized platforms. This review is intended to give insight into the enhanced security posture of…

Cryptography and Security · Computer Science 2024-04-30 Sohome Adhikari , Sabur Baidya

The cloud changed the way we manage and store data. Today, cloud storage services offer clients an infrastructure that allows them a convenient source to store, replicate, and secure data online. However, with these new capabilities also…

External audits of AI systems are increasingly recognized as a key mechanism for AI governance. The effectiveness of an audit, however, depends on the degree of access granted to auditors. Recent audits of state-of-the-art AI systems have…

Verifiable ledger databases protect data history against malicious tampering. Existing systems, such as blockchains and certificate transparency, are based on transparency logs -- a simple abstraction allowing users to verify that a log…

Databases · Computer Science 2023-02-21 Cong Yue , Tien Tuan Anh Dinh , Zhongle Xie , Meihui Zhang , Gang Chen , Beng Chin Ooi , Xiaokui Xiao

The Encrypted File System (EFS) pushes encryption services into the file system itself. EFS supports secure storage at the system level through a standard UNIX file system interface to encrypted files. User can associate a cryptographic key…

Cryptography and Security · Computer Science 2009-08-06 Dr. Shishir Kumar , U. S. Rawat , Sameer Kumar Jasra , Akshay Kumar Jain

This paper presents a condensed system architecture for a file transfer solution that leverages post quantum cryptography and blockchain to secure data against quantum threats. The architecture integrates NIST standardized algorithms…

Cryptography and Security · Computer Science 2025-04-11 Ernesto Sola-Thomas , Masudul H Imtiaz

Micro-Controller Units (MCUs) are widely used in safety-critical systems, making them attractive targets for attacks. This calls for lightweight defenses that remain effective despite software compromise. Control Flow Auditing (CFAud) is…

Cryptography and Security · Computer Science 2026-03-03 Alexandra Lengert , Adam Ilyas Caulfield , Ivan De Oliveira Nunes

Achieving high availability and robust security in Kubernetes requires more than reactive scaling and standard perimeter firewalls. Traditional autoscalers, such as HPA, often fail to react quickly to traffic spikes and cannot distinguish…

Cryptography and Security · Computer Science 2026-03-31 Zhijun Jiang , Amin Milani Fard

In parallel with big data processing and analysis dominating the usage of distributed and cloud infrastructures, the demand for distributed metadata access and transfer has increased. In many application domains, the volume of data…

Distributed, Parallel, and Cluster Computing · Computer Science 2021-06-01 Bing Zhang , Tevfik Kosar

Low-end embedded devices are increasingly used in various smart applications and spaces. They are implemented under strict cost and energy budgets, using microcontroller units (MCUs) that lack security features available in general-purpose…

Cryptography and Security · Computer Science 2023-10-20 Adam Caulfield , Norrathep Rattanavipanon , Ivan De Oliveira Nunes

Protected user-level libraries have been proposed as a way to allow mutually distrusting applications to safely share kernel-bypass services. In this paper, we identify and solve several previously unaddressed obstacles to realizing this…

Operating Systems · Computer Science 2025-09-04 Alan Beadle , Michael L. Scott , John Criswell

With emerging non-volatile memories entering the mainstream market, several operating systems start to incorporate new changes and optimizations. One major OS support is the direct-access for files, which enables efficient access for files…

Hardware Architecture · Computer Science 2021-04-22 Mao Ye

Counterfeit products pose significant risks to public health and safety through infiltrating untrusted supply chains. Among numerous anti-counterfeiting techniques, leveraging inherent, unclonable microscopic irregularities of paper…

Cryptography and Security · Computer Science 2025-12-11 Anirudh Nakra , Nayeeb Rashid , Chau-Wai Wong , Min Wu

Working set size estimation (WSS) is of great significance to improve the efficiency of program executing and memory arrangement in modern operating systems. Previous work proposed several methods to estimate WSS, including self-balloning,…

Performance · Computer Science 2023-03-13 Zhilu Lian , Yangzi Li , Zhixiang Chen , Shiwen Shan , Baoxin Han , Yuxin Su

Misconfiguration, excessive privilege, and fragmented controls remain major causes of cloud-infrastructure incidents. This paper proposes an open-source framework that contributes a cross-platform identity-resource graph for Kubernetes and…

Cryptography and Security · Computer Science 2026-04-29 Wanru Shao

Covert channels can be utilized to secretly deliver information from high privileged processes to low privileged processes in the context of a high-assurance computing system. In this case study, we investigate the possibility of covert…

Cryptography and Security · Computer Science 2015-08-24 Wolfgang Schmidt , Michael Hanspach , Jörg Keller

Confidential Computing enhances privacy of data in-use through hardware-based Trusted Execution Environments (TEEs) that use attestation to verify their integrity, authenticity, and certain runtime properties, along with those of the…

Cryptography and Security · Computer Science 2024-12-09 Ceren Kocaoğullar , Tina Marjanov , Ivan Petrov , Ben Laurie , Al Cutter , Christoph Kern , Alice Hutchings , Alastair R. Beresford

The widespread prevalence of data breaches amplifies the importance of auditing storage systems. In this work, we initiate the study of auditable storage emulations, which provide the capability for an auditor to report the previously…

Distributed, Parallel, and Cluster Computing · Computer Science 2020-05-19 Vinicius V. Cogo , Alysson Bessani