Slowfuzz: Automated domain-independent detection of algorithmic complexity vulnerabilities
Algorithmic complexity vulnerabilities occur when the worst-case time/space complexity of
an application is significantly higher than the respective average case for particular user …
an application is significantly higher than the respective average case for particular user …
Sok: Introspections on trust and the semantic gap
An essential goal of Virtual Machine Introspection (VMI) is assuring security policy
enforcement and overall functionality in the presence of an untrustworthy OS. A fundamental …
enforcement and overall functionality in the presence of an untrustworthy OS. A fundamental …
Attacking the brain: Races in the {SDN} control plane
Software-Defined Networking (SDN) has significantly enriched network functionalities by
decoupling programmable network controllers from the network hardware. Because SDN …
decoupling programmable network controllers from the network hardware. Because SDN …
Performance modeling and analysis of network firewalls
Network firewalls act as the first line of defense against unwanted and malicious traffic
targeting Internet servers. Predicting the overall firewall performance is crucial to network …
targeting Internet servers. Predicting the overall firewall performance is crucial to network …
How {Double-Fetch} situations turn into {Double-Fetch} vulnerabilities: A study of double fetches in the linux kernel
We present the first static approach that systematically detects potential double-fetch
vulnerabilities in the Linux kernel. Using a pattern-based analysis, we identified 90 double …
vulnerabilities in the Linux kernel. Using a pattern-based analysis, we identified 90 double …
Operating system transactions
DE Porter, OS Hofmann, CJ Rossbach, A Benn… - Proceedings of the …, 2009 - dl.acm.org
Applications must be able to synchronize accesses to operating system resources in order to
ensure correctness in the face of concurrency and system failures. System transactions …
ensure correctness in the face of concurrency and system failures. System transactions …
A study of modern linux api usage and compatibility: What to support when you're supporting
This paper presents a study of Linux API usage across all applications and libraries in the
Ubuntu Linux 15.04 distribution. We propose metrics for reasoning about the importance of …
Ubuntu Linux 15.04 distribution. We propose metrics for reasoning about the importance of …
Automated detection, exploitation, and elimination of double-fetch bugs using modern cpu features
Double-fetch bugs are a special type of race condition, where an unprivileged execution
thread is able to change a memory location between the time-of-check and time-of-use of a …
thread is able to change a memory location between the time-of-check and time-of-use of a …
Bloom filters, adaptivity, and the dictionary problem
MA Bender, M Farach-Colton… - 2018 IEEE 59th …, 2018 - ieeexplore.ieee.org
An approximate membership query data structure (AMQ)-such as a Bloom, quotient, or
cuckoo filter-maintains a compact, probabilistic representation of a set S of keys from a …
cuckoo filter-maintains a compact, probabilistic representation of a set S of keys from a …
Singularity: Pattern fuzzing for worst case complexity
We describe a new blackbox complexity testing technique for determining the worst-case
asymptotic complexity of a given application. The key idea is to look for an input pattern …
asymptotic complexity of a given application. The key idea is to look for an input pattern …