English
Related papers

Related papers: A TOCTOU Attack on DICE Attestation

200 papers

Intrusion detection systems (IDSs) play a critical role in protecting billions of IoT devices from malicious attacks. However, the IDSs for IoT devices face inherent challenges of IoT systems, including the heterogeneity of IoT…

Machine Learning · Computer Science 2023-12-06 Phai Vu Dinh , Quang Uy Nguyen , Dinh Thai Hoang , Diep N. Nguyen , Son Pham Bao , Eryk Dutkiewicz

A Kubernetes cluster typically consists of trusted nodes, running within the confines of a physically secure datacenter. With recent advances in edge orchestration, this is no longer the case. This poses a new challenge: how can we trust a…

Cryptography and Security · Computer Science 2024-05-17 Jordi Thijsman , Merlijn Sebrechts , Filip De Turck , Bruno Volckaert

The Internet of Things (IoT) has revolutionized connectivity by linking billions of devices worldwide. However, this rapid expansion has also introduced severe security vulnerabilities, making IoT devices attractive targets for malware such…

Cryptography and Security · Computer Science 2026-02-10 Sahar Zargarzadeh , Mohammad Islam

With the rising number of IoT devices, the security of such devices becomes increasingly important. Remote attestation (RA) is a distinct security service that allows a remote verifer to reason about the state of an untrusted remote prover…

Cryptography and Security · Computer Science 2021-05-13 Alexander Sprogø Banks , Marek Kisiel , Philip Korsholm

Attacks targeting software on embedded systems are becoming increasingly prevalent. Remote attestation is a mechanism that allows establishing trust in embedded devices. However, existing attestation schemes are either static and cannot…

Cryptography and Security · Computer Science 2018-10-04 Ghada Dessouky , Shaza Zeitouni , Thomas Nyman , Andrew Paverd , Lucas Davi , Patrick Koeberl , N. Asokan , Ahmad-Reza Sadeghi

A trusted execution environment (TEE) such as Intel Software Guard Extension (SGX) runs a remote attestation to prove to a data owner the integrity of the initial state of an enclave, including the program to operate on her data. For this…

Cryptography and Security · Computer Science 2020-07-22 Weijie Liu , Wenhao Wang , Xiaofeng Wang , Xiaozhu Meng , Yaosong Lu , Hongbo Chen , Xinyu Wang , Qingtao Shen , Kai Chen , Haixu Tang , Yi Chen , Luyi Xing

Industrial control systems (ICSs) increasingly rely on digital technologies vulnerable to cyber attacks. Cyber attackers can infiltrate ICSs and execute malicious actions. Individually, each action seems innocuous. But taken together, they…

Cryptography and Security · Computer Science 2024-12-20 Arthur Amorim , Trevor Kann , Max Taylor , Lance Joneckis

Process attestation systems verify that a continuous physical process, such as human authorship, actually occurred, rather than merely checking system state. These systems face a fundamental dependability challenge: the evidence collection…

Cryptography and Security · Computer Science 2026-05-26 David Condrey

The wide adoption of IoT gadgets and Cyber-Physical Systems (CPS) makes embedded devices increasingly important. While some of these devices perform mission-critical tasks, they are usually implemented using Micro-Controller Units (MCUs)…

Cryptography and Security · Computer Science 2023-03-08 Antonio Joia Neto , Ivan de Oliveira Nunes

Context: The IoT system infrastructure platform facility vulnerability attack has become the main battlefield of network security attacks. Most of the traditional vulnerability mining methods rely on vulnerability detection tools to realize…

Cryptography and Security · Computer Science 2022-12-06 Wen Zhou

In this paper, we propose Device Authentication Code (DAC), a novel method for authenticating IoT devices with wireless interface by exploiting their radio frequency (RF) signatures. The proposed DAC is based on RF fingerprinting,…

Signal Processing · Electrical Eng. & Systems 2020-04-21 Joshua Bassey , Xiangfang Li , Lijun Qian

Embedded devices are specialised devices designed for one or only a few purposes. They are often part of a larger system, through wired or wireless connection. Those embedded devices that are connected to other computers or embedded systems…

Artificial Intelligence · Computer Science 2023-11-21 Gergely Hevesi

Malware and cheat developers use fileless execution techniques to evade traditional, signature-based security products. These methods include various types of manual mapping, module stomping, and threadless injection which work entirely…

Cryptography and Security · Computer Science 2025-08-07 Arjun Juneja

Low-end embedded devices are increasingly used in various smart applications and spaces. They are implemented under strict cost and energy budgets, using microcontroller units (MCUs) that lack security features available in general-purpose…

Cryptography and Security · Computer Science 2023-10-20 Adam Caulfield , Norrathep Rattanavipanon , Ivan De Oliveira Nunes

Trusted Execution Environments (TEEs) allow the secure execution of code on remote systems without the need to trust their operators. They use static attestation as a central mechanism for establishing trust, allowing remote parties to…

Cryptography and Security · Computer Science 2026-04-01 Claudius Pott , Luca Wilke , Jan Wichelmann , Thomas Eisenbarth

Internet of Things (IoT) is a distributed communication technology system that offers the possibility for physical devices (e.g. vehicles home appliances sensors actuators etc.) known as Things to connect and exchange data more importantly…

Cryptography and Security · Computer Science 2022-10-04 Ali Abdullah S. AlQahtani , Hosam Alamleh , Baker Al Smadi

Mirai is botnet which targets out-of-date Internet-of-Things (IoT) devices. The disruptive Distributed Denial of Service (DDoS) attack last year has hit major Internet companies, causing intermittent service for millions of Internet users.…

Cryptography and Security · Computer Science 2017-06-20 Chen Cao , Le Guan , Peng Liu , Neng Gao , Jingqiang Lin , Ji Xiang

With the increasing number of connected devices and complex networks involved, current domain-specific security techniques become inadequate for diverse large-scale Internet of Things (IoT) systems applications. While cross-domain…

Networking and Internet Architecture · Computer Science 2025-01-08 Xiaoyu Ma , Fang Fang , Xianbin Wang

The growing presence of IoT devices in academic environments has increased operational complexity and exposed security weaknesses, especially in academic institutions without unified policies for registration, monitoring, and incident…

Cryptography and Security · Computer Science 2025-12-12 Joner Assolin , Diego Kreutz , Leandro Bertholdo

The authentication field is evolving towards mechanisms able to keep users continuously authenticated without the necessity of remembering or possessing authentication credentials. While existing continuous authentication systems have…