Unveiling the mystery of internet packet forwarding: A survey of network path validation
Validating the network paths taken by packets is critical in constructing a secure Internet
architecture. Any feasible solution must both enforce packet forwarding along end-host …
architecture. Any feasible solution must both enforce packet forwarding along end-host …
Design, implementation and verification of an extensible and modular hypervisor framework
We present the design, implementation, and verification of XMHF-an eXtensible and
Modular Hypervisor Framework. XMHF is designed to achieve three goals--modular …
Modular Hypervisor Framework. XMHF is designed to achieve three goals--modular …
Assumptions and guarantees for compositional noninterference
The idea of building secure systems by plugging together" secure''components is appealing,
but this requires a definition of security which, in addition to taking care of top-level security …
but this requires a definition of security which, in addition to taking care of top-level security …
Reasoning about object capabilities with logical relations and effect parametricity
D Devriese, L Birkedal… - 2016 IEEE European …, 2016 - ieeexplore.ieee.org
Object capabilities are a technique for fine-grained privilege separation in programming
languages and systems, with important applications in security. However, current formal …
languages and systems, with important applications in security. However, current formal …
Higher-order probabilistic adversarial computations: categorical semantics and program logics
Adversarial computations are a widely studied class of computations where resource-
bounded probabilistic adversaries have access to oracles, ie, probabilistic procedures with …
bounded probabilistic adversaries have access to oracles, ie, probabilistic procedures with …
Continuous tamper-proof logging using tpm 2.0
Auditing system logs is an important means of ensuring systems' security in situations where
run-time security mechanisms are not sufficient to completely prevent potentially malicious …
run-time security mechanisms are not sufficient to completely prevent potentially malicious …
Test-based security certification of composite services
The diffusion of service-based and cloud-based systems has created a scenario where
software is often made available as services, offered as commodities over corporate …
software is often made available as services, offered as commodities over corporate …
What's (not) validating network paths: A survey
Validating network paths taken by packets is critical for a secure Internet architecture. Any
feasible solution must both enforce packet forwarding along endhost-specified paths and …
feasible solution must both enforce packet forwarding along endhost-specified paths and …
Mechanized network origin and path authenticity proofs
A secure routing infrastructure is vital for secure and reliable Internet services. Source
authentication and path validation are two fundamental primitives for building a more secure …
authentication and path validation are two fundamental primitives for building a more secure …
On adversary models and compositional security
A unified view of a wide range of adversary classes and composition principles for
reasoning about security properties of systems are cornerstones of a science of security …
reasoning about security properties of systems are cornerstones of a science of security …