English
Related papers

Related papers: A TOCTOU Attack on DICE Attestation

200 papers

Available purely software based code attestation protocols have recently been shown to be cheatable. In this work we propose to upload compressed instruction code to make the code attestation protocol robust against a so called compresssion…

Cryptography and Security · Computer Science 2011-02-28 Benjamin Vetter , Dirk Westhoff

Diagnosability is a system theoretical property characterizing whether fault occurrences in a system can always be detected within a finite time. In this paper, we investigate the verification of diagnosability for cyber-physical systems…

Systems and Control · Electrical Eng. & Systems 2024-08-14 Bingzhuo Zhong , Weijie Dong , Xiang Yin , Majid Zamani

IoT repackaging refers to an attack devoted to tampering with a legitimate firmware package by modifying its content (e.g., injecting some malicious code) and re-distributing it in the wild. In such a scenario, the firmware delivery and…

Cryptography and Security · Computer Science 2023-07-11 Luca Verderame , Antonio Ruggia , Alessio Merlo

Internet of Things means connecting different devices through the Internet. The Internet of things enables humans to remotely manage and control the objects they use with the Internet infrastructure. After the advent of the Internet of…

Cryptography and Security · Computer Science 2025-10-10 Maryam Ataei Nezhad , Hamid Barati , Ali Barati

Systems-on-chip (SoCs) are becoming heterogeneous: they combine general-purpose processor cores with application-specific hardware components, also known as accelerators, to improve performance and energy efficiency. The advantages of…

Distributed, Parallel, and Cluster Computing · Computer Science 2019-03-19 Luca Piccolboni , Giuseppe Di Guglielmo , Luca Carloni

Confidential services running in hardware-protected Trusted Execution Environments (TEEs) can provide higher security assurance, but this requires custom clients and protocols to distribute, update, and verify their attestation evidence.…

Cryptography and Security · Computer Science 2025-03-20 Antoine Delignat-Lavaud , Cédric Fournet , Kapil Vaswani , Manuel Costa , Sylvan Clebsch , Christoph M. Wintersteiger

In this paper, we propose an effective and easily deployable approach to detect the presence of stealthy sensor attacks in industrial control systems, where (legacy) control devices critically rely on accurate (and usually non-encrypted)…

Cryptography and Security · Computer Science 2022-03-24 Suman Sourav , Binbin Chen

The exponential growth of the Internet of Things (IoT) ecosystem has amplified concerns regarding device reliability, interoperability, and security assurance. Despite the proliferation of IoT security guidelines, a unified and quantitative…

Cryptography and Security · Computer Science 2025-11-25 Shreyansh Swami , Ishwardeep Singh , Chinmay Prawah Pant

The Internet of things (IoT) is still in its infancy and has attracted much interest in many industrial sectors including medical fields, logistics tracking, smart cities and automobiles. However as a paradigm, it is susceptible to a range…

Neural and Evolutionary Computing · Computer Science 2017-04-10 Elike Hodo , Xavier Bellekens , Andrew Hamilton , Pierre-louis Dubouilh , Ephraim Iorkyase , Christos Tachtatzis , Robert Atkinson

The Mirai Distributed Denial-of-Service (DDoS) attack exploited security vulnerabilities of Internet-of-Things (IoT) devices and thereby clearly signalled that attackers have IoT on their radar. Securing IoT is therefore imperative, but in…

Networking and Internet Architecture · Computer Science 2018-07-12 Meng Wang , Javier Santillan , Fernando Kuipers

Modern RISC-V platforms control and monitor security-critical systems such as industrial controllers and autonomous vehicles. While these platforms feature a Root-of-Trust (RoT) to store authentication secrets and enable secure boot…

Cryptography and Security · Computer Science 2024-01-08 Emanuele Parisi , Alberto Musa , Simone Manoni , Maicol Ciani , Davide Rossi , Francesco Barchi , Andrea Bartolini , Andrea Acquaviva

In recent years, malware detection has become an active research topic in the area of Internet of Things (IoT) security. The principle is to exploit knowledge from large quantities of continuously generated malware. Existing algorithms…

Cryptography and Security · Computer Science 2022-04-19 Marjan Golmaryami , Rahim Taheri , Zahra Pooranian , Mohammad Shojafar , Pei Xiao

As the Internet of Things (IoT) industry advances, the imperative to secure IoT devices has become increasingly critical. Current practices in both industry and academia advocate for the enhancement of device security through key…

Cryptography and Security · Computer Science 2024-12-17 Qian Zhang , Yi He , Yue Xiao , Xiaoli Zhang , Chunhua Song

The current amount of IoT devices and their limitations has come to serve as a motivation for malicious entities to take advantage of such devices and use them for their own gain. To protect against cyberattacks in IoT devices, Machine…

Distributed, Parallel, and Cluster Computing · Computer Science 2023-07-03 Vitalina Holubenko , Paulo Silva , Carlos Bento

Due to their rapid growth and deployment, Internet of things (IoT) devices have become a central aspect of our daily lives. However, they tend to have many vulnerabilities which can be exploited by an attacker. Unsupervised techniques, such…

Computers and Society · Computer Science 2018-04-11 Tomer Golomb , Yisroel Mirsky , Yuval Elovici

Trusted Execution Environments (TEEs) embedded in IoT devices provide a deployable solution to secure IoT applications at the hardware level. By design, in TEEs, the Trusted Operating System (Trusted OS) is the primary component. It enables…

Cryptography and Security · Computer Science 2023-09-27 Qinying Wang , Boyu Chang , Shouling Ji , Yuan Tian , Xuhong Zhang , Binbin Zhao , Gaoning Pan , Chenyang Lyu , Mathias Payer , Wenhai Wang , Raheem Beyah

Embedded devices face an ever-expanding threat landscape: vulnerabilities in application software, operating system kernels, and peripherals threaten the embedded device integrity. Existing computer-architectural defenses fully consider at…

Cryptography and Security · Computer Science 2026-03-10 Eric Ackermann , Sven Bugiel

Enterprise software supply chains are increasingly vulnerable to infrastructure attacks, resulting in financial and reputational damage. Ensuring the integrity and provenance of software artifacts remains a significant challenge, where…

Cryptography and Security · Computer Science 2026-05-21 Fernando Castillo , Eduardo Brito , Pille Pullonen-Raudvere , Sebastian Werner , Stefan Tai

Internet of Things (IoT) devices have become ubiquitous and are spread across many application domains including the industry, transportation, healthcare, and households. However, the proliferation of the IoT devices has raised the concerns…

Cryptography and Security · Computer Science 2019-05-06 Dominik Breitenbacher , Ivan Homoliak , Yan Lin Aung , Nils Ole Tippenhauer , Yuval Elovici

Root of Trust Identification (RTI) refers to determining whether a given security service or task is being performed by the particular root of trust (e.g., a TEE) within a specific physical device. Despite its importance, this problem has…

Cryptography and Security · Computer Science 2020-10-28 Ivan De Oliveira Nunes , Xuhua Ding , Gene Tsudik