Filters








654 Hits in 4.7 sec

Securing Legacy Code with the TRACER Platform

Kostantinos Stroggylos, Dimitris Mitropoulos, Zacharias Tzermias, Panagiotis Papadopoulos, Fotios Rafailidis, Diomidis Spinellis, Sotiris Ioannidis, Panagiotis Katsaros
<span title="">2014</span> <i title="ACM Press"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/irsanpnhqfcdxbfnp56e7uq3ny" style="color: black;">Proceedings of the 18th Panhellenic Conference on Informatics - PCI &#39;14</a> </i> &nbsp;
In this paper we present tracer, a software framework and platform to support the development of more secure applications by constantly monitoring software projects for vulnerabilities.  ...  By simplifying the process of running a variety of vulnerability detectors and collecting their results in an efficient, automated manner during development, the task of tracking security defects throughout  ...  Reference Framework (nsrf)-Research Funding Program: Thalis-Athens University of Economics and Business-Software Engineering Research Platform.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/2645791.2645796">doi:10.1145/2645791.2645796</a> <a target="_blank" rel="external noopener" href="https://dblp.org/rec/conf/pci/StroggylosMTPRSIK14.html">dblp:conf/pci/StroggylosMTPRSIK14</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/vvctqvpowje27cbrvdnq3jwfty">fatcat:vvctqvpowje27cbrvdnq3jwfty</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20170921205908/http://delab.csd.auth.gr/~katsaros/PCI_14.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/c0/67/c06761fc3a62dba245d9bb09f0fe19c1d107c4ee.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/2645791.2645796"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> acm.org </button> </a>

TRACER: A Platform for Securing Legacy Code [chapter]

Kostantinos Stroggylos, Dimitris Mitropoulos, Zacharias Tzermias, Panagiotis Papadopoulos, Fotios Rafailidis, Diomidis Spinellis, Sotiris Ioannidis, Panagiotis Katsaros
<span title="">2014</span> <i title="Springer International Publishing"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/2w3awgokqne6te4nvlofavy5a4" style="color: black;">Lecture Notes in Computer Science</a> </i> &nbsp;
In this paper we present tracer, a framework to support the development of secure applications by constantly monitoring software projects for vulnerabilities. tracer simplifies the integration of existing  ...  Instead of designing and implementing tracer from the ground up, we built it on top of the open source Alitheia Core [2] platform, which is designed for facilitating large scale quantitative software engineering  ...  While Alitheia Core aims for efficient estimation of the quality of software projects, tracer was designed with a focus on software security.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1007/978-3-319-08593-7_20">doi:10.1007/978-3-319-08593-7_20</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/cklnuijjtngbbixrqb62i3xi3u">fatcat:cklnuijjtngbbixrqb62i3xi3u</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20170808132622/http://delab.csd.auth.gr/~katsaros/TRUST14.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/54/34/54344f5780430fd0eae501fa41e59d4c22f1c786.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1007/978-3-319-08593-7_20"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> springer.com </button> </a>

Distributed virtual machines

Emin Gün Sirer, Robert Grimm, Brian N. Bershad, Arthur J. Gregory, Sean McDirmid
<span title="">1998</span> <i title="ACM Press"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/5mp2dg67onhjhm7g25cydvve2y" style="color: black;">Proceedings of the 8th ACM SIGOPS European workshop on Support for composing distributed applications - EW 8</a> </i> &nbsp;
The services operate by intercepting application code and modifying it on the fly to provide additional service functionality.  ...  Modern virtual machines, such as Java and Inferno, are emerging as network computing platforms.  ...  internals of their systems with us.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/319195.319198">doi:10.1145/319195.319198</a> <a target="_blank" rel="external noopener" href="https://dblp.org/rec/conf/sigopsE/SirerGBGM98.html">dblp:conf/sigopsE/SirerGBGM98</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/6chop26mwrezdkonirjrjbfl24">fatcat:6chop26mwrezdkonirjrjbfl24</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20040901064430/http://www.cs.cornell.edu:80/people/egs/papers/kimera-tr98-09-01.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/87/db/87db93667d870777e8ea8858a33e74b43e3e3a02.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/319195.319198"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> acm.org </button> </a>

Design and Simulation of IoT Systems Using the Cisco Packet Tracer

Norman Gwangwava, Tinashe B. Mubvirwi
<span title="">2021</span> <i title="Scientific Research Publishing, Inc."> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/uewc4xkr75h6pbv5m5oxbk52d4" style="color: black;">Advances in Internet of Things</a> </i> &nbsp;
Design and implementation of Internet of Things (IoT) systems require platforms with smart things and components.  ...  Through the Cisco packet tracer platform, a use case, physical layout, network layout, IoT layout, configuration, and simulation interface were developed.  ...  Conflicts of Interest Authors declare no conflict of interest regarding the publication of this paper.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.4236/ait.2021.112005">doi:10.4236/ait.2021.112005</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/dpceihkh4zfhznxq2m2fpkp73a">fatcat:dpceihkh4zfhznxq2m2fpkp73a</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20210419194236/https://www.scirp.org/pdf/ait_2021041614510152.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/3f/27/3f27ec2eb899d55986986ec3c41eabbadd0bd634.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.4236/ait.2021.112005"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="unlock alternate icon" style="background-color: #fb971f;"></i> Publisher / doi.org </button> </a>

Secure Edge Computing with Lightweight Control-Flow Property-based Attestation

Nikos Koutroumpouchos, Christoforos Ntantogian, Sofia-Anna Menesidou, Kaitai Liang, Panagiotis Gouvas, Christos Xenakis, Thanassis Giannetsos
<span title="">2019</span> <i title="IEEE"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/wem7gsbe7rh5hdvk376bnrenl4" style="color: black;">2019 IEEE Conference on Network Softwarization (NetSoft)</a> </i> &nbsp;
Our goal is to enhance run-time software integrity and trustworthiness with a scalable and decentralized solution eliminating the need for federated infrastructure trust.  ...  The Internet of Things (IoT) is rapidly evolving, while introducing several new challenges regarding security, resilience and operational assurance.  ...  the security-and safety-critical code widgets to be verified from the untrusted code of the commodity platform or the cloud service provider?  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1109/netsoft.2019.8806658">doi:10.1109/netsoft.2019.8806658</a> <a target="_blank" rel="external noopener" href="https://dblp.org/rec/conf/netsoft/Koutroumpouchos19.html">dblp:conf/netsoft/Koutroumpouchos19</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/fqxbdi4m5jdwfaf5srmlllhy3u">fatcat:fqxbdi4m5jdwfaf5srmlllhy3u</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20200509203742/https://backend.orbit.dtu.dk/ws/files/186847740/1570532703.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/88/ae/88aebabe034d27c4d830cbd64b979ccc802a1cf6.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1109/netsoft.2019.8806658"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> ieee.com </button> </a>

C-FLAT

Tigist Abera, N. Asokan, Lucas Davi, Jan-Erik Ekberg, Thomas Nyman, Andrew Paverd, Ahmad-Reza Sadeghi, Gene Tsudik
<span title="">2016</span> <i title="ACM Press"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/rau5643b7ncwvh74y6p64hntle" style="color: black;">Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security - CCS&#39;16</a> </i> &nbsp;
control-flow path, without requiring the source code.  ...  Remote attestation is a crucial security service particularly relevant to increasingly popular IoT (and other embedded) devices.  ...  At UC Irvine, this research was supported by funding from the National Security Agency (H98230-15-1-0276) and the Department of Homeland Security (under subcontract from the HRL Laboratories).  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/2976749.2978358">doi:10.1145/2976749.2978358</a> <a target="_blank" rel="external noopener" href="https://dblp.org/rec/conf/ccs/AberaADENPST16.html">dblp:conf/ccs/AberaADENPST16</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/sw2boz73ynfu7aqwuihe3xjtsq">fatcat:sw2boz73ynfu7aqwuihe3xjtsq</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20190218130235/https://static.aminer.org/pdf/20170130/pdfs/ccs/n7psewsf03gmixbvi1cwvonzrabdjtgf.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/8e/de/8eded569108f4dd0ac0b9188530fca0a68064c0a.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/2976749.2978358"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> acm.org </button> </a>

C-FLAT: Control-FLow ATtestation for Embedded Systems Software [article]

Tigist Abera, N. Asokan, Lucas Davi, Jan-Erik Ekberg, Thomas Nyman, Andrew Paverd, Ahmad-Reza Sadeghi, Gene Tsudik
<span title="2016-08-17">2016</span> <i > arXiv </i> &nbsp; <span class="release-stage" >pre-print</span>
control-flow path, without requiring the source code.  ...  Remote attestation is a crucial security service particularly relevant to increasingly popular IoT (and other embedded) devices.  ...  On platforms equipped with a full-featured TEE, the context switch into the Secure World is expensive.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/1605.07763v2">arXiv:1605.07763v2</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/xy7sd3p2qvawzn4hhrrtdlci4u">fatcat:xy7sd3p2qvawzn4hhrrtdlci4u</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20200829105307/https://arxiv.org/pdf/1605.07763v2.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/10/0e/100ebdc07a14c85b5986d3adffa34b047b5be7a4.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/1605.07763v2" title="arxiv.org access"> <button class="ui compact blue labeled icon button serp-button"> <i class="file alternate outline icon"></i> arxiv.org </button> </a>

A generic e-learning multiparadigm programming language system

J. E. Labra Gayo, J. M. Morales Gil, A. M. Fernández Álvarez, H. Sagastegui Chigne
<span title="2003-01-11">2003</span> <i title="Association for Computing Machinery (ACM)"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/qzoq6upx4ndyrd7qaolzbaeuca" style="color: black;">ACM SIGCSE Bulletin</a> </i> &nbsp;
The architecture of the system is based on the use of XML and web services to facilitate the integration and independence between the different development platforms and systems.  ...  The main goal of the system is to provide a minimal set of capabilities for a generic interpreter that will be instantiated for different programming languages and paradigms.  ...  Although there are some standards for encoding security credentials in SOAP messages, they are not yet widely accepted. Another issue related with security is the quality of service.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/792548.612015">doi:10.1145/792548.612015</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/j567pj62bzbbjgqahybpz5k7w4">fatcat:j567pj62bzbbjgqahybpz5k7w4</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20170809111327/http://di002.edv.uniovi.es/~labra/FTP/Papers/sigcse03.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/70/b5/70b5476a3331e96097b6236a5b43ac3d1b06eb78.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/792548.612015"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> acm.org </button> </a>

A generic e-learning multiparadigm programming language system

J. E. Labra Gayo, J. M. Morales Gil, A. M. Fernández Álvarez, H. Sagastegui Chigne
<span title="">2003</span> <i title="ACM Press"> Proceedings of the 34th SIGCSE technical symposium on Computer science education - SIGCSE &#39;03 </i> &nbsp;
The architecture of the system is based on the use of XML and web services to facilitate the integration and independence between the different development platforms and systems.  ...  The main goal of the system is to provide a minimal set of capabilities for a generic interpreter that will be instantiated for different programming languages and paradigms.  ...  Although there are some standards for encoding security credentials in SOAP messages, they are not yet widely accepted. Another issue related with security is the quality of service.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/612013.612015">doi:10.1145/612013.612015</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/qrlkobznfjfhxdwpplfx7e7qiq">fatcat:qrlkobznfjfhxdwpplfx7e7qiq</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20170809111327/http://di002.edv.uniovi.es/~labra/FTP/Papers/sigcse03.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/70/b5/70b5476a3331e96097b6236a5b43ac3d1b06eb78.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/612013.612015"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> acm.org </button> </a>

A generic e-learning multiparadigm programming language system

J. E. Labra Gayo, J. M. Morales Gil, A. M. Fernández Álvarez, H. Sagastegui Chigne
<span title="">2003</span> <i title="ACM Press"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/42mrbbmjbfdtbbepad2fzixmum" style="color: black;">Proceedings of the 34th SIGCSE technical symposium on Computer science education - SIGCSE &#39;03</a> </i> &nbsp;
The architecture of the system is based on the use of XML and web services to facilitate the integration and independence between the different development platforms and systems.  ...  The main goal of the system is to provide a minimal set of capabilities for a generic interpreter that will be instantiated for different programming languages and paradigms.  ...  Although there are some standards for encoding security credentials in SOAP messages, they are not yet widely accepted. Another issue related with security is the quality of service.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/611892.612015">doi:10.1145/611892.612015</a> <a target="_blank" rel="external noopener" href="https://dblp.org/rec/conf/sigcse/GayoGAC03.html">dblp:conf/sigcse/GayoGAC03</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/sxdxkh3755gpnd5kvux2pyrida">fatcat:sxdxkh3755gpnd5kvux2pyrida</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20170809111327/http://di002.edv.uniovi.es/~labra/FTP/Papers/sigcse03.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/70/b5/70b5476a3331e96097b6236a5b43ac3d1b06eb78.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/611892.612015"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> acm.org </button> </a>

Composing OS extensions safely and efficiently with Bascule

Andrew Baumann, Dongyoon Lee, Pedro Fonseca, Lisa Glendenning, Jacob R. Lorch, Barry Bond, Reuben Olinsky, Galen C. Hunt
<span title="">2013</span> <i title="ACM Press"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/m52bwee6j5hgxdqcfnxtfxy5we" style="color: black;">Proceedings of the 8th ACM European Conference on Computer Systems - EuroSys &#39;13</a> </i> &nbsp;
Recent work with Drawbridge [29] showed that an existing commodity OS (Windows 7) could be refactored to produce a LibOS while retaining application compatibility.  ...  This approach is appealing for many reasons, not least the ability to extend or customise the LibOS.  ...  Acknowledgments We would like to thank the anonymous reviewers, Jon Howell, and particularly our shepherd, Frans Kaashoek, for their constructive feedback that significantly improved this paper.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/2465351.2465375">doi:10.1145/2465351.2465375</a> <a target="_blank" rel="external noopener" href="https://dblp.org/rec/conf/eurosys/BaumannLFGLBOH13.html">dblp:conf/eurosys/BaumannLFGLBOH13</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/gl67m7hzgfbarmenqwmghgqkqm">fatcat:gl67m7hzgfbarmenqwmghgqkqm</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20140513203834/http://www.mpi-sws.org:80/~pfonseca/papers/eurosys2013-bascule.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/ee/3e/ee3ea6b241570803c4e3db50588cdfd776ac6e40.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/2465351.2465375"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> acm.org </button> </a>

SoftTRR: Protect Page Tables Against RowHammer Attacks using Software-only Target Row Refresh [article]

Zhi Zhang, Yueqiang Cheng, Minghua Wang, Wei He, Wenhao Wang, Nepal Surya, Yansong Gao, Kang Li, Zhe Wang, Chenggang Wu
<span title="2021-12-12">2021</span> <i > arXiv </i> &nbsp; <span class="release-stage" >pre-print</span>
Rowhammer attacks that corrupt level-1 page tables to gain kernel privilege are the most detrimental to system security and hard to mitigate.  ...  The key idea of SoftTRR is to refresh the rows occupied by page tables when a suspicious rowhammer activity is detected.  ...  If page faults with the error code of RSVD occur, the tracer captures them and stores the faulting addresses' PTE information into a dedicated ring buffer (i.e., pte_ringbuf).  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2102.10269v2">arXiv:2102.10269v2</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/c7ov3eqzlnbfxbnfyiuyxdvcta">fatcat:c7ov3eqzlnbfxbnfyiuyxdvcta</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20211215005631/https://arxiv.org/pdf/2102.10269v2.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/85/af/85af0c029ff1f0b661d76fb5d55060fe01f4b62a.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2102.10269v2" title="arxiv.org access"> <button class="ui compact blue labeled icon button serp-button"> <i class="file alternate outline icon"></i> arxiv.org </button> </a>

Inlined monitors for security policy enforcement in web applications

Fotios Rafailidis, Ioannis Panagos, Panagiotis Katsaros, Alexandros Arvanitidis
<span title="">2013</span> <i title="ACM Press"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/irsanpnhqfcdxbfnp56e7uq3ny" style="color: black;">Proceedings of the 17th Panhellenic Conference on Informatics - PCI &#39;13</a> </i> &nbsp;
Also, when legacy code is incorporated that was not originally written for the Web, its security hardening is costly and error-prone.  ...  Our monitors enforce high-level security policies for taint propagation control, by weaving checks and repair actions into the untrusted code.  ...  If the application incorporates legacy code that was not originally written for the Web, then ad hoc security hardening by the developer cannot be avoided.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/2491845.2491861">doi:10.1145/2491845.2491861</a> <a target="_blank" rel="external noopener" href="https://dblp.org/rec/conf/pci/RafailidisPKA13.html">dblp:conf/pci/RafailidisPKA13</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/54kyzefgprg7pde7imrovgf4v4">fatcat:54kyzefgprg7pde7imrovgf4v4</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20170808132210/http://delab.csd.auth.gr/~katsaros/PCI_13.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/61/bc/61bc2aaf6fc834d690848a79e54f15c1277ecb55.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/2491845.2491861"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> acm.org </button> </a>

Ad hoc extensibility and access control

Úlfar Erlingsson, John MacCormick
<span title="2006-07-01">2006</span> <i title="Association for Computing Machinery (ACM)"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/i24hgue5erh4haqtfyyjvfijdu" style="color: black;">ACM SIGOPS Operating Systems Review</a> </i> &nbsp;
Subsequently, we propose the enforcement of novel access-control policies for reconciling ad hoc extensibility with security and reliability.  ...  Unfortunately, such use of internal platform implementation details is fundamentally incompatible with security and reliability.  ...  In the case of hand-written assembly language, and legacy C code, the required names can be automatically extracted from compiler output such as the symbol files used by debuggers.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/1151374.1151393">doi:10.1145/1151374.1151393</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/pgu2dmz5kreg5frrsjdqainrvu">fatcat:pgu2dmz5kreg5frrsjdqainrvu</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20090625190022/http://users.dickinson.edu/~jmac/publications/extensibility-acmosr2006.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/5b/44/5b44d04eaf095265c44ff3902da98bce8bd502d8.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/1151374.1151393"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> acm.org </button> </a>

Combining Object-Oriented Design and SOA with Remote Objects over Web Services

Marvin Ferber, Thomas Rauber, Sascha Hunold
<span title="">2010</span> <i title="IEEE"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/tqjcb5e2mzezdhivpe4qc6jmxe" style="color: black;">2010 Eighth IEEE European Conference on Web Services</a> </i> &nbsp;
The set of Web services associated with a class define a Remote Object over Web Service (ROWS).  ...  A ROWS object can be used to facilitate the simultaneous use of the concepts of Service Oriented Architectures (SOA) and Distributed Object Architectures (DOA).  ...  Other approaches of legacy software modernization propose methods for adapting a legacy application to a SOA by reengineering the source code to use legacy program modules in a SOA environment [21] .  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1109/ecows.2010.19">doi:10.1109/ecows.2010.19</a> <a target="_blank" rel="external noopener" href="https://dblp.org/rec/conf/ecows/FerberRH10.html">dblp:conf/ecows/FerberRH10</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/cojm2rjmf5hlngrgmgkmy537i4">fatcat:cojm2rjmf5hlngrgmgkmy537i4</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20170809092919/http://www.icsi.berkeley.edu/pubs/arch/combiningobject10.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/8d/82/8d826bb40a0c5b03ad22ceb9bf82544e3fdc3146.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1109/ecows.2010.19"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> ieee.com </button> </a>
&laquo; Previous Showing results 1 &mdash; 15 out of 654 results