English
Related papers

Related papers: SoK: An Essential Guide For Using Malware Sandboxe…

200 papers

Security engineering in the software lifecycle aims at protecting information and systems to guarantee confidentiality, integrity, and availability. As security engineering matures and the number of research papers grows, there is an…

Software Engineering · Computer Science 2018-01-23 Michael Felderer , Jeffrey C. Carver

As malware continues to become more complex and harder to detect, Malware Analysis needs to continue to evolve to stay one step ahead. One promising key area approach focuses on using system calls and API Calls, the core communication…

Cryptography and Security · Computer Science 2025-06-03 Bishwajit Prasad Gond , Durga Prasad Mohapatra

Producing secure software is challenging. The poor usability of security APIs makes this even harder. Many recommendations have been proposed to support developers by improving the usability of cryptography libraries and APIs; rooted in…

Cryptography and Security · Computer Science 2021-05-06 Nikhil Patnaik , Andrew C. Dwyer , Joseph Hallett , Awais Rashid

Interpretability, trustworthiness, and usability are key considerations in high-stake security applications, especially when utilizing deep learning models. While these models are known for their high accuracy, they behave as black boxes in…

Malware detection is a ubiquitous application of Machine Learning (ML) in security. In behavioral malware analysis, the detector relies on features extracted from program execution traces. The research literature has focused on detectors…

Cryptography and Security · Computer Science 2025-03-10 Yigitcan Kaya , Yizheng Chen , Marcus Botacin , Shoumik Saha , Fabio Pierazzi , Lorenzo Cavallaro , David Wagner , Tudor Dumitras

Numerous works study black-box attacks on image classifiers. However, these works make different assumptions on the adversary's knowledge and current literature lacks a cohesive organization centered around the threat model. To systematize…

Cryptography and Security · Computer Science 2024-02-15 Fnu Suya , Anshuman Suri , Tingwei Zhang , Jingtao Hong , Yuan Tian , David Evans

Background. In the realm of software engineering, there are widely accepted guidelines for reporting and creating laboratory packages. Unfortunately, the landscape differs considerably in the emerging field of quantum computing. To the best…

Software Engineering · Computer Science 2024-05-08 Enrique Moguel , José Antonio Parejo , Antonio Ruiz-Cortés , Jose Garcia-Alonso , Juan Manuel Murillo

Software debloating seeks to mitigate security risks and improve performance by eliminating unnecessary code. In recent years, a plethora of debloating tools have been developed, creating a dense and varied landscape. Several studies have…

Software Engineering · Computer Science 2024-07-17 Mohannad Alhanahnah , Yazan Boshmaf , Ashish Gehani

Expecting the shipment of 1 billion Android devices in 2017, cyber criminals have naturally extended their vicious activities towards Google's mobile operating system. With an estimated number of 700 new Android applications released every…

Cryptography and Security · Computer Science 2014-10-29 Sebastian Neuner , Victor van der Veen , Martina Lindorfer , Markus Huber , Georg Merzdovnik , Martin Mulazzani , Edgar Weippl

Machine-learning models have been recently used for detecting malicious Android applications, reporting impressive performances on benchmark datasets, even when trained only on features statically extracted from the application, such as…

Machine Learning · Computer Science 2018-10-30 Marco Melis , Davide Maiorca , Battista Biggio , Giorgio Giacinto , Fabio Roli

While large language models (LLMs) are powerful assistants in programming tasks, they may also produce malicious code. Testing LLM-generated code therefore poses significant risks to assessment infrastructure tasked with executing untrusted…

Cryptography and Security · Computer Science 2025-04-02 Rafiqul Rabin , Jesse Hostetler , Sean McGregor , Brett Weir , Nick Judd

The rising use of Large Language Models (LLMs) to create and disseminate malware poses a significant cybersecurity challenge due to their ability to generate and distribute attacks with ease. A single prompt can initiate a wide array of…

Cryptography and Security · Computer Science 2024-09-13 Jamal Al-Karaki , Muhammad Al-Zafar Khan , Marwan Omar

Companies developing and maintaining software-only products like web shops aim for establishing persistent links to their software running in the field. Monitoring data from real usage scenarios allows for a number of improvements in the…

Software Engineering · Computer Science 2016-08-25 Philip Masek , Magnus Thulin , Hugo Andrade , Christian Berger , Ola Benderius

Malware classification is a difficult problem, to which machine learning methods have been applied for decades. Yet progress has often been slow, in part due to a number of unique difficulties with the task that occur through all stages of…

Cryptography and Security · Computer Science 2020-11-17 Edward Raff , Charles Nicholas

Web browsers are integral parts of everyone's daily life. They are commonly used for security-critical and privacy sensitive tasks, like banking transactions and checking medical records. Unfortunately, modern web browsers are too complex…

Cryptography and Security · Computer Science 2022-01-03 Jungwon Lim , Yonghwi Jin , Mansour Alharthi , Xiaokuan Zhang , Jinho Jung , Rajat Gupta , Kuilin Li , Daehee Jang , Taesoo Kim

Software development industries are increasingly adopting containers to enhance the scalability and flexibility of software applications. Security in containerized projects is a critical challenge that can lead to data breaches and…

Software Engineering · Computer Science 2025-04-11 Maha Sroor , Rahul Mohanani , Ricardo Colomo-Palacios , Sandun Dasanayake , Tommi Mikkonen

We systematize software side-channel attacks with a focus on vulnerabilities and countermeasures in the cryptographic implementations. Particularly, we survey past research literature to categorize vulnerable implementations, and identify…

Cryptography and Security · Computer Science 2019-12-13 Tianwei Zhang , Jun Jiang , Yinqian Zhang

Context: To effectively defend against ever-evolving cybersecurity threats, software systems should be made as secure as possible. To achieve this, software developers should understand potential vulnerabilities and apply secure coding…

Programming Languages · Computer Science 2024-07-11 Alina Torbunova , Adnan Ashraf , Ivan Porres

Online malware scanners are one of the best weapons in the arsenal of cybersecurity companies and researchers. A fundamental part of such systems is the sandbox that provides an instrumented and isolated environment (virtualized or…

Cryptography and Security · Computer Science 2021-10-07 Antonio Nappa , Panagiotis Papadopoulos , Matteo Varvello , Daniel Aceituno Gomez , Juan Tapiador , Andrea Lanzi

Objective: To identify and classify the positive and negative impacts of using Use Cases in real-world settings. Method: We conducted a systematic mapping study. The search strategies retrieved a set of 4,431 papers out of which 47 were…

Software Engineering · Computer Science 2019-06-18 José L. Barros-Justo , Fabiane B. V. Benitti , Saurabh Tiwari