Current standard security practices do not provide substantial assurance that the end-to-end
behavior of a computing system satisfies important security policies such as confidentiality …

Differential power analysis (DPA) is a side-channel attack in which an adversary retrieves
cryptographic material by measuring and analyzing the power consumption of the device on …

Proceedings of the 13th USENIX Security Symposium Page 1 USENIX Association
Proceedings of the 13th USENIX Security Symposium San Diego, CA, USA August 9–13 …

The computer systems security arms race between attackers and defenders has largely
taken place in the domain of software systems, but as hardware complexity and design …

We propose a low-overhead sampling infrastructure for gathering information from the
executions experienced by a program's user community. Several example applications …

Polyglot is an extensible compiler framework that supports the easy creation of compilers for
languages similar to Java, while avoiding code duplication. The Polyglot framework is useful …

Software misconfigurations are time-consuming and enormously frustrating to troubleshoot.
In this paper, we show that dynamic information flow analysis helps solve these problems by …

ABSTRACT Recent operating systems [12, 21, 26] have shown that decentralized
information flow control (DIFC) can secure applications built from mostly untrusted code …

Software vulnerabilities and bugs persist, and so exploits continue to cause significant
damage, particularly by divulging users' sensitive data to miscreants. Yet the vast majority of …

Modern extensible web platforms like Facebook and Yammer depend on third-party
software to offer a rich experience to their users. Unfortunately, users running a third-party …