NDSS
2015
IEEE
8 years 11 days ago
2015
IEEE
Abstract—Control-Flow Integrity (CFI) is an important security property that needs to be enforced to prevent controlflow hijacking attacks. Recent attacks have demonstrated that...
NDSS
2015
IEEE
8 years 11 days ago
2015
IEEE
—It is becoming a global trend for company employees equipped with mobile devices to access company’s assets. Besides enterprise apps, lots of personal apps from various untrus...
NDSS
2015
IEEE
8 years 11 days ago
2015
IEEE
Abstract—Many mechanisms have been proposed and deployed to prevent exploits against software vulnerabilities. Among them, W⊕X is one of the most effective and efficient. W⊕...
NDSS
2015
IEEE
8 years 11 days ago
2015
IEEE
Abstract—While solutions for file system encryption can prevent an adversary from determining the contents of files, in situations where a user wishes to hide the existence of ...
NDSS
2015
IEEE
8 years 11 days ago
2015
IEEE
—We have conducted the first in-depth empirical study of two important new web security features: strict transport security (HSTS) and public-key pinning. Both have been added t...
NDSS
2015
IEEE
8 years 11 days ago
2015
IEEE
Abstract—We use cryptographic techniques to study zone enumeration in DNSSEC. DNSSEC is designed to prevent attackers from tampering with domain name system (DNS) messages. The c...
NDSS
2015
IEEE
8 years 11 days ago
2015
IEEE
—Typosquatting is the act of purposefully registering a domain name that is a mistype of a popular domain name. It is a concept that has been known and studied for over 15 years,...
NDSS
2015
IEEE
8 years 11 days ago
2015
IEEE
—In cyber attack analysis, it is often highly desirable to understand the meaning of an unknown file or network message in the absence of their consumer (i.e. the program that p...
NDSS
2015
IEEE
8 years 11 days ago
2015
IEEE
—Many system components and network applications are written in languages that are prone to memory corruption vulnerabilities. There have been countless cases where simple mistak...
NDSS
2015
IEEE
8 years 11 days ago
2015
IEEE
Abstract—ARM TrustZone, which provides a Trusted Execution Environment (TEE), normally plays a role in keeping security-sensitive resources safe. However, to properly control acc...