English
Related papers

Related papers: Automatic Selection of Protections to Mitigate Ris…

200 papers

Evidence on the effectiveness of Man-At-The-End (MATE) software protections, such as code obfuscation, has mainly come from limited empirical research. Recently, however, an automatable method was proposed to obtain statistical models of…

Cryptography and Security · Computer Science 2026-05-18 Alessandro Sanna , Waldo Verstraete , Leonardo Regano , Davide Maiorca , Bjorn De Sutter

The last years have seen an increase in Man-at-the-End (MATE) attacks against software applications, both in number and severity. However, software protection, which aims at mitigating MATE attacks, is dominated by fuzzy concepts and…

Software Engineering · Computer Science 2023-03-28 Cataldo Basile , Bjorn De Sutter , Daniele Canavese , Leonardo Regano , Bart Coppens

The last years have seen an increase of Man-at-the-End (MATE) attacks against software applications, both in number and severity. However, MATE software protections are dominated by fuzzy concepts and techniques, with…

Software Engineering · Computer Science 2022-03-03 Daniele Canavese , Leonardo Regano , Cataldo Basile , Bart Coppens , Bjorn De Sutter

Man-at-the-end (MATE) attackers have full control over the system on which the attacked software runs, and try to break the confidentiality or integrity of assets embedded in the software. Both companies and malware authors want to prevent…

Cryptography and Security · Computer Science 2024-05-02 Bjorn De Sutter , Sebastian Schrittwieser , Bart Coppens , Patrick Kochberger

The increasing prevalence of security attacks on software-intensive systems calls for new, effective methods for detecting and responding to these attacks. As one promising approach, game theory provides analytical tools for modeling the…

Software Engineering · Computer Science 2021-12-15 Mingyue Zhang , Nianyu Li , Sridhar Adepu , Eunsuk Kang , Zhi Jin

Software protection aims at safeguarding assets embedded in software by preventing and delaying reverse engineering and tampering attacks. This paper presents an architecture and supporting tool flow to renew parts of native applications…

Cryptography and Security · Computer Science 2020-06-25 Bert Abrath , Bart Coppens , Jens Van den Broeck , Brecht Wyseur , Alessandro Cabutto , Paolo Falcarin , Bjorn De Sutter

Advanced persistent threats (APT) combine a variety of different attack forms ranging from social engineering to technical exploits. The diversity and usual stealthiness of APT turns them into a central problem of contemporary practical…

Cryptography and Security · Computer Science 2022-05-03 Stefan Rass , Sandra König , Stefan Schauer

Selecting the combination of security controls that will most effectively protect a system's assets is a difficult task. If the wrong controls are selected, the system may be left vulnerable to cyber-attacks that can impact the…

Software Engineering · Computer Science 2026-04-22 Dylan Léveillé , Jason Jaskolka

Selecting the combination of security controls that will most effectively protect a system's assets is a difficult task. If the wrong controls are selected, the system may be left vulnerable to cyber-attacks that can impact the…

Cryptography and Security · Computer Science 2024-10-31 Dylan Léveillé , Jason Jaskolka

Selective data protection is a promising technique to defend against the data leakage attack. In this paper, we revisit technical challenges that were neglected when applying this protection to real applications. These challenges include…

Cryptography and Security · Computer Science 2021-06-01 Lin Ma , Jinyan Xu , Jiadong Sun , Yajin Zhou , Xun Xie , Wenbo Shen , Rui Chang , Kui Ren

Man-At-The-End (MATE) attackers are almighty adversaries against whom there exists no silver-bullet countermeasure. To raise the bar, a wide range of protection measures were proposed in the literature each of which adds resilience against…

Cryptography and Security · Computer Science 2019-09-26 Mohsen Ahmadvand , Dennis Fischer , Sebastian Banescu

The thesis advances the field of software security by providing knowledge and automation support for software vulnerability assessment using data-driven approaches. Software vulnerability assessment provides important and multifaceted…

Software Engineering · Computer Science 2023-06-21 Triet H. M. Le

The rapid proliferation of the Internet of Things (IoT) continues to expose critical security vulnerabilities, necessitating the development of efficient and robust intrusion detection systems (IDS). Machine learning-based intrusion…

Cryptography and Security · Computer Science 2025-09-11 Jing Chen , Onat Gungor , Zhengli Shang , Tajana Rosing

We propose a model-based procedure for automatically preventing security threats using formal models. We encode system models and potential threats as satisfiability modulo theory (SMT) formulas. This model allows us to ask security…

Cryptography and Security · Computer Science 2022-10-10 Thorsten Tarrach , Masoud Ebrahimi , Sandra König , Christoph Schmittner , Roderick Bloem , Dejan Nickovic

The rapid proliferation of the Internet of Things (IoT) has introduced substantial security vulnerabilities, highlighting the need for robust Intrusion Detection Systems (IDS). Machine learning-based intrusion detection systems (ML-IDS)…

Cryptography and Security · Computer Science 2025-04-21 Jing Chen , Onat Gungor , Zhengli Shang , Elvin Li , Tajana Rosing

We develop a game theoretic model of malware protection using the state-of-the-art sandbox method, to characterize and compute optimal defense strategies for anti-malware. We model the strategic interaction between developers of malware (M)…

Computer Science and Game Theory · Computer Science 2022-03-01 Sujoy Sikdar , Sikai Ruan , Qishen Han , Paween Pitimanaaree , Jeremy Blackthorne , Bulent Yener , Lirong Xia

In the design of software and cyber-physical systems, security is often perceived as a qualitative need, but can only be attained quantitatively. Especially when distributed components are involved, it is hard to predict and confront all…

Cryptography and Security · Computer Science 2018-03-30 Roberto Vigo , Flemming Nielson , Hanne Riis Nielson

Fault attacks consist in changing the program behavior by injecting faults at run-time in order to break some expected security properties. Applications are hardened against fault attack adding countermeasures. According to the state of the…

Cryptography and Security · Computer Science 2023-03-06 Etienne Boespflug , Abderrahmane Bouguern , Laurent Mounier , Marie-Laure Potet

Spectre vulnerabilities violate our fundamental assumptions about architectural abstractions, allowing attackers to steal sensitive data despite previously state-of-the-art countermeasures. To defend against Spectre, developers of…

Cryptography and Security · Computer Science 2022-04-11 Sunjay Cauligi , Craig Disselkoen , Daniel Moghimi , Gilles Barthe , Deian Stefan

The new cyber attack pattern of advanced persistent threat (APT) has posed a serious threat to modern society. This paper addresses the APT defense problem, i.e., the problem of how to effectively defend against an APT campaign. Based on a…

Cryptography and Security · Computer Science 2017-12-29 Pengdeng Li , Lu-Xing Yang , Xiaofan Yang , Qingyu Xiong , Junhao Wen , Yuan Yan Tang
‹ Prev 1 2 3 10 Next ›