research
∙
02/20/2023
Programmable System Call Security with eBPF
System call filtering is a widely used security mechanism for protecting...
share
research
∙
08/03/2022
Layered Binary Templating: Efficient Detection of Compiler- and Linker-introduced Leakage
Cache template attacks demonstrated automated leakage of user input in s...
research
∙
02/28/2022
SFIP: Coarse-Grained Syscall-Flow-Integrity Protection in Modern Systems
Growing code bases of modern applications have led to a steady increase ...
research
∙
11/24/2021
Systematic Analysis of Programming Languages and Their Execution Environments for Spectre Attacks
In this paper, we analyze the security of programming languages and thei...
research
∙
11/21/2021
Domain Page-Table Isolation
Modern applications often consist of different security domains that req...
research
∙
11/16/2021
Remote Memory-Deduplication Attacks
Memory utilization can be reduced by merging identical memory blocks int...
research
∙
11/16/2021
Practical Timing Side Channel Attacks on Memory Compression
Compression algorithms are widely used as they save memory without losin...
research
∙
10/10/2021
Dynamic Process Isolation
In the quest for efficiency and performance, edge-computing providers el...
research
∙
12/04/2020
Automating Seccomp Filter Generation for Linux Applications
Software vulnerabilities in applications undermine the security of appli...
research
∙
08/05/2020
Speculative Dereferencing of Registers:Reviving Foreshadow
Since 2016, multiple microarchitectural attacks have exploited an effect...
research
∙
05/29/2019
Fallout: Reading Kernel Writes From User Space
Recently, out-of-order execution, an important performance optimization ...
research
∙
05/22/2019
ConTExT: Leakage-Free Transient Execution
Out-of-order execution and speculative execution are among the biggest c...
research
∙
05/14/2019
ZombieLoad: Cross-Privilege-Boundary Data Sampling
In early 2018, Meltdown first showed how to read arbitrary kernel memory...
research
∙
05/14/2019
Store-to-Leak Forwarding: Leaking Data on Meltdown-resistant CPUs
Meltdown and Spectre exploit microarchitectural changes the CPU makes du...
research
∙
02/08/2019
Practical Enclave Malware with Intel SGX
Modern CPU architectures offer strong isolation guarantees towards user ...
research
∙
01/04/2019
Page Cache Attacks
We present a new hardware-agnostic side-channel attack that targets one ...
research
∙
11/13/2018
A Systematic Evaluation of Transient Execution Attacks and Defenses
Modern processor optimizations such as branch prediction and out-of-orde...
research
∙
07/27/2018
NetSpectre: Read Arbitrary Memory over Network
In this paper, we present NetSpectre, a generic remote Spectre variant 1...
research
∙
05/13/2018
Nethammer: Inducing Rowhammer Faults through Network Requests
A fundamental assumption in software security is that memory contents do...
research
∙
01/03/2018
Meltdown
The security of computer systems fundamentally relies on memory isolatio...
research
∙
01/03/2018
Spectre Attacks: Exploiting Speculative Execution
Modern processors use branch prediction and speculative execution to max...
research
∙
11/03/2017