English
Related papers

Related papers: Automatic detection of access control vulnerabilit…

200 papers

This paper is an introductory discussion on the cause of open source software vulnerabilities, their importance in the cybersecurity ecosystem, and a selection of detection methods. A recent application security report showed 44% of…

Cryptography and Security · Computer Science 2022-03-31 Stuart Millar

RESTful APIs are central in developing interoperable, modular, and maintainable software systems in enterprises today. Also, it is essential to support system evolution, service interoperability, and governance across organizational…

Software Engineering · Computer Science 2025-11-25 Edwin Sundberg , Thea Ekmark , Workneh Yilma Ayele

The possibility of programming the control and data planes, enabled by the Software-Defined Networking (SDN) paradigm, represents a fertile ground on top of which novel operation and management mechanisms can be fully explored, being…

Networking and Internet Architecture · Computer Science 2020-09-24 Sebastián Gómez Macías , Luciano Paschoal Gaspary , Juan Felipe Botero

BrowserID is a complex, real-world Single Sign-On (SSO) System for web applications recently developed by Mozilla. It employs new HTML5 features (such as web messaging and web storage) and cryptographic assertions to provide decentralized…

Cryptography and Security · Computer Science 2019-01-31 Daniel Fett , Ralf Kuesters , Guido Schmitz

Autonomous vehicles rely on LiDAR based perception to support safety critical control functions such as adaptive cruise control and automatic emergency braking. While previous research has shown that LiDAR perception can be manipulated…

Software Engineering · Computer Science 2025-12-30 Daniyal Ganiuly , Nurzhau Bolatbek , Assel Smaiyl

We present Anadroid, a static malware analysis framework for Android apps. Anadroid exploits two techniques to soundly raise precision: (1) it uses a pushdown system to precisely model dynamically dispatched interprocedural and…

Programming Languages · Computer Science 2013-11-19 Shuying Liang , Andrew W. Keep , Matthew Might , Steven Lyde , Thomas Gilray , Petey Aldous , David Van Horn

The Internet of Things, also known as the IoT, refers to the billions of devices around the world that are now connected to the Internet, collecting and sharing data. The amount of data collected through IoT sensors must be completely…

Cryptography and Security · Computer Science 2021-04-01 Reza Fotohi , Hossein Pakdel

Indicators of Compromise (IOCs) are artifacts observed on a network or in an operating system that can be utilized to indicate a computer intrusion and detect cyber-attacks in an early stage. Thus, they exert an important role in the field…

Computation and Language · Computer Science 2019-09-30 Zi Long , Lianzhi Tan , Shengping Zhou , Chaoyang He , Xin Liu

Deep learning architectures (DLA) have shown impressive performance in computer vision, natural language processing and so on. Many DLA make use of cloud computing to achieve classification due to the high computation and memory…

Cryptography and Security · Computer Science 2021-01-28 Tolulope A. Odetola , Hawzhin Raoof Mohammed , Syed Rafay Hasan

Given that security threats and privacy breaches are com- monplace today, it is an important problem for one to know whether their device(s) are in a "good state of security", or is there a set of high- risk vulnerabilities that need to be…

Cryptography and Security · Computer Science 2017-04-12 Ashish Kundu , Chinmay Kundu , Karan K. Budhraja

Observation Resilient Authentication Schemes (ORAS) are a class of shared secret challenge-response identification schemes where a user mentally computes the response via a cognitive function to authenticate herself such that eavesdroppers…

Cryptography and Security · Computer Science 2020-07-23 Benjamin Zi Hao Zhao , Hassan Jameel Asghar , Mohamed Ali Kaafar , Francesca Trevisan , Haiyue Yuan

Preventing vulnerability exploits is a critical software maintenance task, and software engineers often rely on Common Vulnerability and Exposure (CVEs) reports for information about vulnerable systems and libraries. These reports include…

Software Engineering · Computer Science 2019-10-01 Danielle Gonzalez , Holly Hastings , Mehdi Mirakhorli

Low-Rank Adaptation (LoRA) has emerged as an efficient method for fine-tuning large language models (LLMs) and is widely adopted within the open-source community. However, the decentralized dissemination of LoRA adapters through platforms…

Cryptography and Security · Computer Science 2025-12-23 Linzhi Chen , Yang Sun , Hongru Wei , Yuqi Chen

Correctness constraints provide a foundation for automated debugging within object-oriented systems. This paper discusses a new approach to incorporating correctness constraints into Java development environments. Our approach uses the…

Software Engineering · Computer Science 2007-05-23 David J. Murray , Dale E. Parson

3D deep learning has been increasingly more popular for a variety of tasks including many safety-critical applications. However, recently several works raise the security issues of 3D deep models. Although most of them consider adversarial…

Machine Learning · Computer Science 2025-05-09 Xinke Li , Zhirui Chen , Yue Zhao , Zekun Tong , Yabang Zhao , Andrew Lim , Joey Tianyi Zhou

A Software Reference Architecture (SRA) is a useful tool for standardising existing architectures in a specific domain and facilitating concrete architecture design, development and evaluation by instantiating SRA and using SRA as a…

Cryptography and Security · Computer Science 2024-08-27 Muhammad Aufeef Chauhan , Muhammad Ali Babar , Fethi Rabhi

Intrusion detection is an arms race; attackers evade intrusion detection systems by developing new attack vectors to sidestep known defense mechanisms. Provenance provides a detailed, structured history of the interactions of digital…

Cryptography and Security · Computer Science 2018-06-05 Xueyuan Han , Thomas Pasquier , Margo Seltzer

The integration of Large Language Models (LLMs) with external sources is becoming increasingly common, with Retrieval-Augmented Generation (RAG) being a prominent example. However, this integration introduces vulnerabilities of Indirect…

Cryptography and Security · Computer Science 2026-01-07 Tongyu Wen , Chenglong Wang , Xiyuan Yang , Haoyu Tang , Yueqi Xie , Lingjuan Lyu , Zhicheng Dou , Fangzhao Wu

Access control (AC) is the core of every architectural solution for information security. Indeed, no effective protection scheme can abstract from the careful design of access control policies, and infrastructures underlying modern…

Cryptography and Security · Computer Science 2017-10-11 Manuel Cheminod , Luca Durante , Lucia Seno , Fulvio Valenza , Adriano Valenzano

Recent research has explored that LLM agents are vulnerable to indirect prompt injection (IPI) attacks, where malicious tasks embedded in tool-retrieved information can redirect the agent to take unauthorized actions. Existing defenses…

Cryptography and Security · Computer Science 2025-06-12 Kaijie Zhu , Xianjun Yang , Jindong Wang , Wenbo Guo , William Yang Wang
‹ Prev 1 4 5 6 7 8 10 Next ›