SoK: Computer-aided cryptography
Computer-aided cryptography is an active area of research that develops and applies
formal, machine-checkable approaches to the design, analysis, and implementation of …
formal, machine-checkable approaches to the design, analysis, and implementation of …
Cryptoguard: High precision detection of cryptographic vulnerabilities in massive-sized java projects
Cryptographic API misuses, such as exposed secrets, predictable random numbers, and
vulnerable certificate verification, seriously threaten software security. The vision of …
vulnerable certificate verification, seriously threaten software security. The vision of …
[图书][B] SCION: a secure Internet architecture
The SCION project started in Summer 2009 at Carnegie Mellon University (CMU), when we
began meeting weekly with Haowen Chan, Hsu-Chun Hsiao, and Xin Zhang to consider …
began meeting weekly with Haowen Chan, Hsu-Chun Hsiao, and Xin Zhang to consider …
{LZR}: Identifying unexpected internet services
Internet-wide scanning is a commonly used research technique that has helped uncover
real-world attacks, find cryptographic weaknesses, and understand both operator and …
real-world attacks, find cryptographic weaknesses, and understand both operator and …
The 9 lives of Bleichenbacher's CAT: New cache attacks on TLS implementations
At CRYPTO'98, Bleichenbacher published his seminal paper which described a padding
oracle attack against RSA implementations that follow the PKCS# 1 v1. 5 standard. Over the …
oracle attack against RSA implementations that follow the PKCS# 1 v1. 5 standard. Over the …
Verified correctness and security of mbedTLS HMAC-DRBG
We have formalized the functional specification of HMAC-DRBG (NIST 800-90A), and we
have proved its cryptographic security-that its output is pseudorandom--using a hybrid game …
have proved its cryptographic security-that its output is pseudorandom--using a hybrid game …
Pseudorandom black swans: Cache attacks on CTR_DRBG
Modern cryptography requires the ability to securely generate pseudorandom numbers.
However, despite decades of work on side-channel attacks, there is little discussion of their …
However, despite decades of work on side-channel attacks, there is little discussion of their …
Taking control of sdn-based cloud systems via the data plane
Virtual switches are a crucial component of SDN-based cloud systems, enabling the
interconnection of virtual machines in a flexible and" software-defined" manner. This paper …
interconnection of virtual machines in a flexible and" software-defined" manner. This paper …
Self-guarding cryptographic protocols against algorithm substitution attacks
M Fischlin, S Mazaheri - 2018 IEEE 31st Computer Security …, 2018 - ieeexplore.ieee.org
We put forward the notion of self-guarding cryptographic protocols as a countermeasure to
algorithm substitution attacks. Such self-guarding protocols can prevent undesirable …
algorithm substitution attacks. Such self-guarding protocols can prevent undesirable …
The Dangers of Key Reuse: Practical Attacks on {IPsec}{IKE}
IPsec enables cryptographic protection of IP packets. It is commonly used to build VPNs
(Virtual Private Networks). For key establishment, the IKE (Internet Key Exchange) protocol …
(Virtual Private Networks). For key establishment, the IKE (Internet Key Exchange) protocol …