default search action
30th CCS 2023: Copenhagen, Denmark
- Weizhi Meng, Christian Damsgaard Jensen, Cas Cremers, Engin Kirda:
Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security, CCS 2023, Copenhagen, Denmark, November 26-30, 2023. ACM 2023
Session 1: Cryptography for Anonymity
- Alexander Bienstock
, Paul Rösler
ASMesh: Anonymous and Secure Messaging in Mesh Networks Using Stronger, Anonymous Double Ratchet. 1-15 - Ward Beullens
Lattice-Based Blind Signatures: Short, Efficient, and Round-Optimal. 16-29 - Omid Mir
Aggregate Signatures with Versatile Randomization and Issuer-Hiding Multi-Authority Anonymous Credentials. 30-44 - Julia Kastner
Concurrent Security of Anonymous Credentials Light, Revisited. 45-59
Session 2: Machine Learning Applications I
- Savino Dambra
Decoding the Secrets of Machine Learning in Malware Classification: A Deep Dive into Datasets, Feature Extraction, and Model Performance. 60-74 - Cong Shi
Privacy Leakage via Speech-induced Vibrations on Room Objects through Remote Sensing based on Phased-MIMO. 75-89 - Ping He
Efficient Query-Based Attack against ML-Based Android Malware Detection under Zero Knowledge Setting. 90-104 - Francesco Marchiori
Your Battery Is a Blast! Safeguarding Against Counterfeit Batteries with Authentication. 105-119
Session 3: Attacks & Threats
- Bowen He
TxPhishScope: Towards Detecting and Understanding Transaction-based Phishing on Ethereum. 120-134 - Aviv Yaish
Uncle Maker: (Time)Stamping Out The Competition in Ethereum. 135-149 - Chao Li
How Hard is Takeover in DPoS Blockchains? Understanding the Security of Coin-based Voting Governance. 150-164 - Zihao Li
Demystifying DeFi MEV Activities in Flashbots Bundle. 165-179
Session 4: Usable Privacy
- Tinhinane Medjkoune
Marketing to Children Through Online Targeted Advertising: Targeting Mechanisms and Legal Aspects. 180-194 - Maryam Mustafa
Pakistani Teens and Privacy - How Gender Disparities, Religion and Family Values Impact the Privacy Design Space. 195-209 - Bailey Kacsmar
Comprehension from Chaos: Towards Informed Consent for Private Computation. 210-224 - Emiram Kablo
Privacy in the Age of Neurotechnology: Investigating Public Attitudes towards Brain Data Collection and Use. 225-238
Session 5: Side-Channels
- Jingyang Hu
Password-Stealing without Hacking: Wi-Fi Enabled Practical Keystroke Eavesdropping. 239-252 - Tao Ni
Recovering Fingerprints from In-Display Fingerprint Sensors via Electromagnetic Side Channel. 253-267 - Ben Nassi
Optical Cryptanalysis: Recovering Cryptographic Keys from Power LED Light Fluctuations. 268-280 - Zihao Wang
The Danger of Minimum Exposures: Understanding Cross-App Information Leaks on iOS through Multi-Side-Channel Learning. 281-295
Session 6: Cryptography & DNS
- Fenglu Zhang
Silence is not Golden: Disrupting the Load Balancing of Authoritative DNS Servers. 296-310 - Wei Xu
TsuKing: Coordinating DNS Resolvers and Queries into Potent DoS Amplifiers. 311-325 - Zhenrui Zhang, Geng Hong, Xiang Li
Under the Dark: A Systematical Study of Stealthy Mining Pools (Ab)use in the Wild. 326-340 - Boyang Ma
Travelling the Hypervisor and SSD: A Tag-Based Approach Against Crypto Ransomware with Fine-Grained Data Recovery. 341-355
Session 7: Digital Signatures
- Sourav Das
Threshold Signatures from Inner Product Argument: Succinct, Weighted, and Multi-threshold. 356-370 - Sihang Pu
Post Quantum Fuzzy Stealth Signatures and Applications. 371-385 - Nils Fleischhacker
Chipmunk: Better Synchronized Multi-Signatures from Lattices. 386-400 - Seongkwang Kim
AIM: Symmetric Primitive for Shorter Signatures with Stronger Security. 401-415
Session 8: Machine Learning Applications II
- Yiling He
FINER: Enhancing State-of-the-art Classifiers with Feature Attribution to Facilitate Security Analysis. 416-430 - Jinwen He
Good-looking but Lacking Faithfulness: Understanding Local Explanation Methods through Trend-based Testing. 431-445 - Tianfang Zhang
FaceReader: Unobtrusively Mining Vital Signs and Vital Sign Embedded Sensitive Info via AR/VR Motion Sensors. 446-459 - Zhiyuan Yu
AntiFake: Using Adversarial Audio to Prevent Unauthorized Speech Synthesis. 460-474
Session 9: Consensus Protocols
- Mahimna Kelkar
Themis: Fast, Strong Order-Fairness in Byzantine Consensus. 475-489 - Dahlia Malkhi
Towards Practical Sleepy BFT. 490-503 - Xiaohai Dai
ParBFT: Faster Asynchronous BFT Consensus with a Parallel Optimistic Path. 504-518 - Erica Blum
Abraxas: Throughput-Efficient Hybrid Asynchronous Consensus. 519-533
Session 10: Language-Based Security
- Yuyang Sang
Ou: Automating the Parallelization of Zero-Knowledge Protocols. 534-548 - Benjamin Eriksson
Black Ostrich: Web Application Scanning with String Solvers. 549-563 - Théophile Wallez
Comparse: Provably Secure Formats for Cryptographic Protocols. 564-578
Session 11: Quantum & Space
- Chuanqi Xu
Exploration of Power Side-Channel Vulnerabilities in Quantum Computer Controllers. 579-593 - Chuanqi Xu
Securing NISQ Quantum Computer Reset Operations Against Higher Energy State Attacks. 594-607 - Joshua Smailes
Watch This Space: Securing Satellite Communication through Resilient Transmitter Fingerprinting. 608-621 - Kyungho Joo
Protecting HRP UWB Ranging System Against Distance Reduction Attacks. 622-635
Session 12: IoT: Attacks, Vulnerabilities, & Everything
- Daniele Antonioli
BLUFFS: Bluetooth Forward and Future Secrecy Attacks and Defenses. 636-650 - Yan He
When Free Tier Becomes Free to Enter: A Non-Intrusive Way to Identify Security Cameras with no Cloud Subscription. 651-665 - Mujtahid Akon
Formal Analysis of Access Control Mechanism of 5G Core Network. 666-680 - David Schmidt
IoTFlow: Inferring IoT Device Behavior at Scale through Static Mobile Companion App Analysis. 681-695
Session 13: Homomorphic Encryption I
- Jung Hee Cheon
Homomorphic Multiple Precision Multiplication for CKKS and Reduced Modulus Consumption. 696-710 - Sylvain Chatel
PELTA - Shielding Multiparty-FHE against Malicious Adversaries. 711-725 - Taechan Kim
Asymptotically Faster Multi-Key Homomorphic Encryption from Homomorphic Gadget Decomposition. 726-740 - Michiel Van Beirendonck
FPT: A Fixed-Point Accelerator for Torus Fully Homomorphic Encryption. 741-755
Session 14: Machine Learning Attacks I
- Yue Qin
Stolen Risks of Models with Security Properties. 756-770 - Yi Zeng
Narcissus: A Practical Clean-Label Backdoor Attack with Limited Information. 771-785 - Ryan Feng
Stateful Defenses for Machine Learning Models Are Not Yet Secure Against Black-box Attacks. 786-800 - Vibha Belavadi
Attack Some while Protecting Others: Selective Attack Strategies for Attacking and Protecting Multiple Concepts. 801-814
Session 15: Cryptographic Constructs & Models
- Sisi Duan
FIN: Practical Signature-Free Asynchronous Common Subset in Constant Time. 815-829 - Erica Blum
Analyzing the Real-World Security of the Algorand Blockchain. 830-844 - Peter Gazi
Fait Accompli Committee Selection: Improving the Size-Security Tradeoff of Stake-Based Committees. 845-858 - Erkan Tairi
LedgerLocks: A Security Framework for Blockchain Protocols Based on Adaptor Signatures. 859-873
Session 16: Defenses
- Kha Dinh Duy
Capacity: Cryptographically-Enforced In-Process Capabilities for Modern ARM Architectures. 874-888 - Martin Unterguggenberger
Cryptographically Enforced Memory Safety. 889-903 - Hanwen Lei
Put Your Memory in Order: Efficient Domain-based Memory Isolation for WASM Applications. 904-918 - Jiali Xu
PANIC: PAN-assisted Intra-process Memory Isolation on ARM. 919-933
Session 17: Secure Hardware
- Qinhan Tan
Security Verification of Low-Trust Architectures. 945-959 - Zhenkai Zhang
TunneLs for Bootlegging: Fully Reverse-Engineering GPU TLBs for Challenging Isolation Guarantees of NVIDIA MIG. 960-974 - Till Schlüter
FetchBench: Systematic Identification and Characterization of Proprietary Prefetchers. 975-989 - Jakob Feldtkeller
Combined Private Circuits - Combined Security Refurbished. 990-1004
Session 18: Traffic Analysis
- Chuanpu Fu
Point Cloud Analysis for ML-Based Malicious Traffic Detection: Reducing Majorities of False Positive Alarms. 1005-1019 - Peiyang Li
Learning from Limited Heterogeneous Training Data: Meta-Learning for Unsupervised Zero-Day Web Attack Detection across Web Domains. 1020-1034 - Alireza Bahramali
Realistic Website Fingerprinting By Augmenting Network Traces. 1035-1049 - Zhaoxin Jin
Transformer-based Model for Multi-tab Website Fingerprinting Attack. 1050-1064
Session 19: Advanced Public Key Encryption
- Noemi Glaeser
Efficient Registration-Based Encryption. 1065-1079 - Matthew Green
Efficient Set Membership Encryption and Applications. 1080-1092 - Rachit Garg
Realizing Flexible Broadcast Encryption: How to Broadcast to a Public-Key Directory. 1093-1107 - Joël Alwen
Post-Quantum Multi-Recipient Public Key Encryption. 1108-1122
Session 20: Machine Learning Attacks II
- Tejas Kannan
Prediction Privacy in Distributed Multi-Exit Neural Networks: Vulnerabilities and Solutions. 1123-1137 - Teodora Baluta
Unforgeability in Stochastic Gradient Descent. 1138-1152 - Lingshuo Meng
Devil in Disguise: Breaching Graph Neural Networks Privacy through Infiltration. 1153-1167 - Zhengyuan Jiang
Evading Watermark based Detection of AI-Generated Content. 1168-1181
Session 21: Defenses & Smart Contract Security
- Fuchen Ma
Phoenix: Detect and Locate Resilience Issues in Blockchain via Context-Sensitive Chaos. 1182-1196 - Sven Smolka
Fuzz on the Beach: Fuzzing Solana Smart Contracts. 1197-1211 - Kushal Babel
Lanturn: Measuring Economic Security of Smart Contracts Through Adaptive Learning. 1212-1226 - Nirvan Tyagi
Riggs: Decentralized Sealed-Bid Auctions. 1227-1241
Session 22: Fuzzing I
- Yinxi Liu
DSFuzz: Detecting Deep State Bugs with Dependent State Exploration. 1242-1256 - Yunhang Zhang
Profile-guided System Optimizations for Accelerated Greybox Fuzzing. 1257-1271 - Peng Deng
NestFuzz: Enhancing Fuzzing with Comprehensive Understanding of Input Processing Logic. 1272-1286 - Qingkai Shi
Lifting Network Protocol Implementation to Precise Format Specification with Security Applications. 1287-1301
Session 23: IoT & Embedded Security
- Shilin Xiao
MicPro: Microphone-based Voice Privacy Protection. 1302-1316 - Yi Zhu
TileMask: A Passive-Reflection-based Attack against mmWave Radar Object Detection in Autonomous Driving. 1317-1331 - Xi Tan
SHERLOC: Secure and Holistic Control-Flow Violation Detection on Embedded Systems. 1332-1346 - Sashidhar Jakkamsetti
Caveat (IoT) Emptor: Towards Transparency of IoT Device Presence. 1347-1361
Session 24: Formal Analysis of Cryptographic Protocols
- Faezeh Nasrabadi
CryptoBap: A Binary Analysis Platform for Cryptographic Protocols. 1362-1376 - Linard Arquint
A Generic Methodology for the Modular Verification of Security Protocol Implementations. 1377-1391 - Sergiu Bursuc
Provably Unlinkable Smart Card-based Payments. 1392-1406 - Lea Salome Brugger
CheckMate: Automated Game-Theoretic Security Reasoning. 1407-1421
Session 25: Zero Knowledge Proofs
- Alexandre Belling
Recursion over Public-Coin Interactive Proof Systems; Faster Hash Verification. 1422-1436 - David Balbás
Modular Sumcheck Proofs with Applications to Machine Learning and Image Processing. 1437-1451 - Yibin Yang
Batchman and Robin: Batched and Non-batched Branching for Interactive ZK. 1452-1466 - Diego F. Aranha
Verifiable Mix-Nets and Distributed Decryption for Voting from Lattice-Based Assumptions. 1467-1481
Session 26: Federated Learning
- Marco Arazzi
Turning Privacy-preserving Mechanisms against Federated Learning. 1482-1495 - Qi Li, Zhuotao Liu, Qi Li, Ke Xu:
martFL: Enabling Utility-Driven Data Marketplace with a Robust and Verifiable Federated Learning Architecture. 1496-1510 - Chulin Xie
Unraveling the Connections between Privacy and Certified Robustness in Federated Learning Against Poisoning Attacks. 1511-1525 - Torsten Krauß
MESAS: Poisoning Defense for Federated Learning Resilient against Adaptive Attackers. 1526-1540
Session 27: Interoperability & 2nd Layer Solutions
- Zhonghui Ge
Accio: Variable-Amount, Optimized-Unlinkable and NIZK-Free Off-Chain Payments via Hubs. 1541-1555 - Andrei Tonkikh
CryptoConcurrency: (Almost) Consensusless Asset Transfer with Shared Accounts. 1556-1570 - Peiyao Sheng, Xuechao Wang, Sreeram Kannan, Kartik Nayak, Pramod Viswanath:
TrustBoost: Boosting Trust among Interoperable Blockchains. 1571-1584 - Ertem Nusret Tas
Interchain Timestamping for Mesh Security. 1585-1599
Session 28: Fuzzing II
- Peng Chen
Hopper: Interpretative Fuzzing for Libraries. 1600-1614 - Ruijie Meng
Greybox Fuzzing of Distributed Systems. 1615-1629 - Xin Tan
SyzDirect: Directed Greybox Fuzzing for Linux Kernel. 1630-1644 - Wen Li
PyRTFuzz: Detecting Bugs in Python Runtimes via Two-Level Collaborative Fuzzing. 1645-1659
Session 29: Cryptography & Side-Channels
- Liu Liu
FITS: Matching Camera Fingerprints Subject to Software Noise Pollution. 1660-1674 - Saleh Khalaj Monfared
LeakyOhm: Secret Bits Extraction using Impedance Analysis. 1675-1689 - Antoine Geimer
A Systematic Evaluation of Automated Tools for Side-Channel Vulnerabilities Detection in Cryptographic Libraries. 1690-1704 - Daniel Lammers
A Thorough Evaluation of RAMBAM. 1705-1717
Session 30: Information Flow & Differential Privacy
- Mário S. Alvim
A Novel Analysis of Utility in Privacy Pipelines, Using Kronecker Products and Quantitative Information Flow. 1718-1731 - McKenna McCall
Tainted Secure Multi-Execution to Restrict Attacker Influence. 1732-1745 - Toby Murray
Assume but Verify: Deductive Verification of Leaked Information in Concurrent Applications. 1746-1760 - Rohit Chadha
Deciding Differential Privacy of Online Algorithms with Multiple Variables. 1761-1775
Session 31: Cryptography for Blockchains
- Aniket Kate
FlexiRand: Output Private (Distributed) VRFs and Application to Blockchains. 1776-1790 - Renas Bacho
Adaptively Secure (Aggregatable) PVSS and Application to Distributed Randomness Beacons. 1791-1804 - Francesca Falzon
Short Privacy-Preserving Proofs of Liabilities. 1805-1819 - Weijie Wang
The Locality of Memory Checking. 1820-1834
Session 32: Language Models & Verification
- Ali Naseh
Stealing the Decoding Algorithms of Language Models. 1835-1849 - Stefano Calzavara
Verifiable Learning for Robust Tree Ensembles. 1850-1864 - Jingxuan He
Large Language Models for Code: Security Hardening and Adversarial Testing. 1865-1879 - Sanjam Garg
Experimenting with Zero-Knowledge Proofs of Training. 1880-1894
Session 33: Differential Privacy
- Johan Lokna
Group and Attack: Auditing Differential Privacy. 1905-1918 - Ari Biswas
Interactive Proofs For Differentially Private Counting. 1919-1933 - Yuting Liang
Concentrated Geo-Privacy. 1934-1948 - Samuel Haney
Concurrent Composition for Interactive Differential Privacy with Adaptive Privacy-Loss Parameters. 1949-1963
Session 34: Kernel & System Calls
- Alexander J. Gaidis
SysXCHG: Refining Privilege with Adaptive System Call Filters. 1964-1978 - Vidya Lakshmi Rajagopalan
SysPart: Automated Temporal System Call Filtering for Binaries. 1979-1993 - Zhenghao Hu
Hacksaw: Hardware-Centric Kernel Debloating via Device Inventory and Dependency Analysis. 1994-2008 - Pansilu Pitigalaarachchi
KRover: A Symbolic Execution Engine for Dynamic Kernel Analysis. 2009-2023
Session 35: Speculative Execution & Information Flow
- Chongzhou Fang
Gotcha! I Know What You Are Doing on the FPGA Cloud: Fingerprinting Co-Located Cloud FPGA Accelerators via Measuring Communication Links. 2024-2037 - Jason Kim
iLeakage: Browser-based Timerless Speculative Execution Attacks on Apple Devices. 2038-2052 - Rutvik Choudhary
Declassiflow: A Static Analysis for Modeling Non-Speculative Knowledge to Relax Speculative Execution Security Measures. 2053-2067 - Drew Zagieboylo
SpecVerilog: Adapting Information Flow Control for Secure Speculation. 2068-2082
Session 36: Verified Cryptographic Implementations
- Sander Huyghebaert
Formalizing, Verifying and Applying ISA Security Guarantees as Universal Contracts. 2083-2097 - Samuel Dittmer
Boosting the Performance of High-Assurance Cryptography: Parallel Execution and Optimizing Memory Access in Formally-Verified Line-Point Zero-Knowledge. 2098-2112 - Yi Zhou
Galápagos: Developing Verified Low Level Cryptography on Heterogeneous Hardwares. 2113-2127 - Zilong Wang
Specification and Verification of Side-channel Security for Open-source Processors via Leakage Contracts. 2128-2142
Session 37: Multiparty Computation I
- Kyle Storrier
Grotto: Screaming fast (2+1)-PC or ℤ2n via (2, 2)-DPFs. 2143-2157 - Gabrielle Beck
Scalable Multiparty Garbling. 2158-2172 - S. Dov Gordon
Linear Communication in Malicious Majority MPC. 2173-2187 - Feng-Hao Liu
Efficient Multiparty Probabilistic Threshold Private Set Intersection. 2188-2201
Session 38: Network Security
- Yue Qin
Vulnerability Intelligence Alignment via Masked Graph Attention Networks. 2202-2216 - Roman Beltiukov
In Search of netUnicorn: A Data-Collection Platform to Develop Generalizable ML Models for Network Security Problems. 2217-2231 - Arezoo Rajabi
MDTD: A Multi-Domain Trojan Detector for Deep Neural Networks. 2232-2246 - Enes Altinisik
ProvG-Searcher: A Graph Representation Learning Approach for Efficient Provenance Graph Search. 2247-2261
Session 39: Privacy in Computation
- Chengkun Wei
Securely Sampling Discrete Gaussian Noise for Multi-Party Differential Privacy. 2262-2276 - Ji Guan
Detecting Violations of Differential Privacy for Quantum Algorithms. 2277-2291 - Borja Balle
Amplification by Shuffling without Shuffling. 2292-2305 - Shashank Balla
HELiKs: HE Linear Algebra Kernels for Secure Inference. 2306-2320
Session 40: Medley
- Song Liao
SkillScanner: Detecting Policy-Violating Voice Applications Through Static Analysis at the Development Phase. 2321-2335 - Zongjie Li
Protecting Intellectual Property of Large Language Model-Based Code Generation APIs via Watermarks. 2336-2350 - Jaehyung Lee
Simplifying Mixed Boolean-Arithmetic Obfuscation by Program Synthesis and Term Rewriting. 2351-2365 - Su Yang
Enhancing OSS Patch Backporting with Semantics. 2366-2380
Session 41: Measuring Security Deployments
- Dhruv Kuchhal
Evaluating the Security Posture of Real-World FIDO2 Deployments. 2381-2395 - Feng Dong
Are we there yet? An Industrial Viewpoint on Provenance-based Endpoint Detection and Response Tools. 2396-2410 - Yue Zhang
Don't Leak Your Keys: Understanding, Measuring, and Exploiting the AppSecret Leaks in Mini-Programs. 2411-2425 - Felix Fischer
The Effectiveness of Security Interventions on GitHub. 2426-2440
Session 42: Attacking the Web
- Jianjia Yu
CoCo: Efficient Browser Extension Vulnerability Detection via Coverage-guided, Concurrent Abstract Interpretation. 2441-2455 - Dominik Trevor Noß
Finding All Cross-Site Needles in the DOM Stack: A Comprehensive Methodology for the Automatic XS-Leak Detection in Web Browsers. 2456-2470 - Chao Wang
Uncovering and Exploiting Hidden APIs in Mobile Super Apps. 2471-2485 - Changqing Miao
A Good Fishman Knows All the Angles: A Critical Evaluation of Google's Phishing Page Classifier. 2486-2500
Session 43: Multiparty Computation II
- Jakob Burkhardt
Improved Distributed RSA Key Generation Using the Miller-Rabin Test. 2501-2515 - Yibin Yang
Towards Generic MPC Compilers via Variable Instruction Set Architectures (VISAs). 2516-2530 - Benjamin Levy
COMBINE: COMpilation and Backend-INdependent vEctorization for Multi-Party Computation. 2531-2545 - Amit Singh Bhati
Let's Go Eevee! A Friendly and Suitable Family of AEAD Modes for IoT-to-Cloud Secure Computation. 2546-2560
Session 44: Machine Learning, Cryptography, & Cyber-Physical Systems
- Atsuki Momose
On the Security of KZG Commitment for VSS. 2561-2575 - Suman Maiti
Targeted Attack Synthesis for Smart Grid Vulnerability Analysis. 2576-2590 - Jinwen Wang
Secure and Timely GPU Execution in Cyber-physical Systems. 2591-2605 - Cathy Yuanchen Li
SalsaPicante: A Machine Learning Attack on LWE with Binary Secrets. 2606-2620
Session 45: Privacy in Machine Learning
- Chengkun Wei
DPMLBench: Holistic Evaluation of Differentially Private Machine Learning. 2621-2635 - Hanshen Xiao
Geometry of Sensitivity: Twice Sampling and Hybrid Clipping in Differential Privacy with Optimal Gaussian Noise and Application to Deep Learning. 2636-2650 - Xiaochen Zhu
Blink: Link Local Differential Privacy in Graph Neural Networks via Bayesian Estimation. 2651-2664 - Minxin Du
DP-Forward: Fine-tuning and Inference on Language Models with Differential Privacy in Forward Pass. 2665-2679
Session 46: Program Analysis & Instrumentation
- Nikita Yadav
Whole-Program Control-Flow Path Attestation. 2680-2694 - Yufei Du
Improving Security Tasks Using Compiler Provenance Information Recovered At the Binary-Level. 2695-2709 - Yuanpeng Wang
SymGX: Detecting Cross-boundary Pointer Vulnerabilities of SGX Applications via Static Symbolic Execution. 2710-2724 - Ziyi Lin
TypeSqueezer: When Static Recovery of Function Signatures for Binary Executables Meets Dynamic Analysis. 2725-2739
Session 47: Security Professionals
- Jan H. Klemmer
"Make Them Change it Every Week!": A Qualitative Exploration of Online Developer Advice on Usable and Secure Authentication. 2740-2754 - Thomas Geras
Sharing Communities: The Good, the Bad, and the Ugly. 2755-2769 - Mathew Vermeer
Alert Alchemy: SOC Workflows and Decisions in the Management of NIDS Rules. 2770-2784 - Neil Perry
Do Users Write More Insecure Code with AI Assistants? 2785-2799
Session 48: Defending the Web
- Wenya Wang
HODOR: Shrinking Attack Surface on Node.js via System Call Limitation. 2800-2814 - Felix Linker
ADEM: An Authentic Digital EMblem. 2815-2829 - David A. Basin
Is Modeling Access Control Worth It? 2830-2844 - Zilun Wang
Fine-Grained Data-Centric Content Protection Policy for Web Applications. 2845-2859
Session 49: Cryptographic Protocols
- Hien Chu
On the Security of Rate-limited Privacy Pass. 2871-2885 - Keegan Ryan
Passive SSH Key Compromise via Lattices. 2886-2900 - Marc Fischlin
Stealth Key Exchange and Confined Access to the Record Protocol Data in TLS 1.3. 2901-2914 - Julia Len
ELEKTRA: Efficient Lightweight multi-dEvice Key TRAnsparency. 2915-2929
Session 50: Homomorphic Encryption II
- Song Bian
HE3DB: An Efficient and Elastic Encrypted Database Via Arithmetic-And-Logic Fully Homomorphic Encryption. 2930-2944 - Rasoul Akhavan Mahdavi
Level Up: Private Non-Interactive Decision Tree Evaluation using Levelled Homomorphic Encryption. 2945-2958 - Binbin Tu
Fast Unbalanced Private Set Union from Fully Homomorphic Encryption. 2959-2973 - Haiyang Xue
Efficient Multiplicative-to-Additive Function from Joye-Libert Cryptosystem and Its Application to Threshold ECDSA. 2974-2988
Session 51: Privacy in Systems
- Xueyuan Han
Splice: Efficiently Removing a User's Data from In-memory Application State. 2989-3002 - Lei Xu
Leakage-Abuse Attacks Against Forward and Backward Private Searchable Symmetric Encryption. 3003-3017 - Cláudio Correia
Using Range-Revocable Pseudonyms to Provide Backward Unlinkability in the Edge. 3018-3032 - Elia Anzuoni
Shufflecake: Plausible Deniability for Multiple Hidden Filesystems on Linux. 3033-3047
Session 52: Attacks & Malware
- Nanzi Yang
Take Over the Whole Cluster: Attacking Kubernetes via Excessive Permissions of Third-party Applications. 3048-3062 - Zhi Li
Lost along the Way: Understanding and Mitigating Path-Misresolution Threats to Container Isolation. 3063-3077 - Shijia Li
PackGenome: Automatically Generating Robust YARA Rules for Accurate Malware Packer Detection. 3078-3092 - Kyle Zeng
RetSpill: Igniting User-Controlled Data to Burn Away Linux Kernel Protections. 3093-3107
Session 53: Usable Authentication
- Suood Alroomi
Measuring Website Password Creation Policies At Scale. 3108-3122 - Collins W. Munyendo
"I just stopped using one and started using the other": Motivations, Techniques, and Challenges When Switching Password Managers. 3123-3137 - Sabrina Amft
"We've Disabled MFA for You": An Evaluation of the Security and Usability of Multi-Factor Authentication Recovery Deployments. 3138-3152 - Easwar Vivek Mangipudi
Uncovering Impact of Mental Models towards Adoption of Multi-device Crypto-Wallets. 3153-3167
Session 54: Measuring the Web
- Florian Hantke
You Call This Archaeology? Evaluating Web Archives for Reproducible Web Security Measurements. 3168-3182 - Gibran Gómez
Cybercrime Bitcoin Revenue Estimations: Quantifying the Impact of Methodology and Coverage. 3183-3197 - Jeremy Rack
Jack-in-the-box: An Empirical Study of JavaScript Bundling on the Web and its Security Implications. 3198-3212 - Geng Hong
Understanding and Detecting Abused Image Hosting Modules as Malicious Services. 3213-3227
Session 55: Security of Cryptographic Protocols & Implementations
- Diego F. Aranha
Faster Constant-time Evaluation of the Kronecker Symbol with Application to Elliptic Curve Hashing. 3228-3238 - Marc Fischlin
Verifiable Verification in Cryptographic Protocols. 3239-3253 - Sam A. Markelon
Compact Frequency Estimators in Adversarial Environments. 3254-3268 - Antonio de la Piedra
ACABELLA: Automated (Crypt)analysis of Attribute-Based Encryption Leveraging Linear Algebra. 3269-3283
Session 56: Oblivious Algorithms & Data Structures
- Lennart Braun
Ramen: Souper Fast Three-Party Computation for RAM Programs. 3284-3297 - Gilad Asharov
Secure Statistical Analysis on Multiple Datasets: Join and Group-By. 3298-3312 - Gilad Asharov
FutORAMa: A Concretely Efficient Hierarchical Oblivious RAM. 3313-3327 - Sajin Sasy
Waks-On/Waks-Off: Fast Oblivious Offline/Online Shuffling and Sorting with Waksman Networks. 3328-3342
Session 57: Privacy in the Digital World
- David Klein
General Data Protection Runtime: Enforcing Transparent GDPR Compliance for Existing Applications. 3343-3357 - Aloni Cohen
Control, Confidentiality, and the Right to be Forgotten. 3358-3372 - Anhao Xiang
PolicyChecker: Analyzing the GDPR Completeness of Mobile Apps' Privacy Policies. 3373-3387 - Kelsey Merrill
Speranza: Usable, Privacy-friendly Software Signing. 3388-3402
Session 58: Measuring Machine Learning & Software Security
- Yiting Qu
Unsafe Diffusion: On the Generation of Unsafe Images and Hateful Memes From Text-To-Image Models. 3403-3417 - Zeyang Sha
DE-FAKE: Detection and Attribution of Fake Images Generated by Text-to-Image Generation Models. 3418-3432 - Daniel Olszewski
"Get in Researchers; We're Measuring Reproducibility": A Reproducibility Study of Machine Learning Papers in Tier 1 Security Conferences. 3433-3459 - Ita Ryan
Unhelpful Assumptions in Software Security Research. 3460-3474
Session 59: Tracking the Web
- Mohammad Ghasemisharif
Read Between the Lines: Detecting Tracking JavaScript with Bytecode Classification. 3475-3489 - Shaoor Munir
CookieGraph: Understanding and Detecting First-Party Tracking Cookies. 3490-3504 - Changmin Lee
AdCPG: Classifying JavaScript Code Property Graphs with Explanations for Ad and Tracker Blocking. 3505-3518
Session 60: Poster Session
- Matías F. Gobbi
Poster: Using CodeQL to Detect Malware in npm. 3519-3521 - Mohammad M. Ahmadpanah
Poster: Data Minimization by Construction for Trigger-Action Applications. 3522-3524 - Sylvain Chatel
Poster: Verifiable Encodings for Maliciously-Secure Homomorphic Encryption Evaluation. 3525-3527 - Niklas Niere
Poster: Circumventing the GFW with TLS Record Fragmentation. 3528-3530 - Andres Molina-Markham
Poster: Generating Experiences for Autonomous Network Defense. 3531-3533 - Rudolf Siegel
Poster: From Hashes to Ashes - A Comparison of Transcription Services. 3534-3536 - Hattan Althebeiti
Poster: Mujaz: A Summarization-based Approach for Normalized Vulnerability Description. 3537-3539 - Xiaoyun Xu
Poster: Boosting Adversarial Robustness by Adversarial Pre-training. 3540-3542 - Christian van Sloun
Poster: Vulcan - Repurposing Accessibility Features for Behavior-based Intrusion Detection Dataset Generation. 3543-3545 - Dominic Gold
Poster: Computing the Persistent Homology of Encrypted Data. 3546-3548 - Arup Mondal
Poster: Attestor - Simple Proof-of-Storage-Time. 3549-3551 - Xianbo Mo
Poster: Query-efficient Black-box Attack for Image Forgery Localization via Reinforcement Learning. 3552-3554 - Depeng Chen
Poster: Membership Inference Attacks via Contrastive Learning. 3555-3557 - Kevin Li
Poster: Ethics of Computer Security and Privacy Research - Trends and Standards from a Data Perspective. 3558-3560 - Shae McFadden
Poster: RPAL-Recovering Malware Classifiers from Data Poisoning using Active Learning. 3561-3563 - Jihyeon Yu
Poster: Combining Fuzzing with Concolic Execution for IoT Firmware Testing. 3564-3566 - Ehud Aharoni
Poster: Efficient AES-GCM Decryption Under Homomorphic Encryption. 3567-3569 - Jing Xu
Poster: Multi-target & Multi-trigger Backdoor Attacks on Graph Neural Networks. 3570-3572 - Fabian Kaiser
Poster: Longitudinal Analysis of DoS Attacks. 3573-3575 - Simon Koch
Poster: The Risk of Insufficient Isolation of Database Transactions in Web Applications. 3576-3578 - Christopher Lenk
Poster: Privacy Risks from Misconfigured Android Content Providers. 3579-3581 - Johannes Lohmöller
Poster: Bridging Trust Gaps: Data Usage Transparency in Federated Data Ecosystems. 3582-3584 - Kelong Cong
Poster: Panacea - Stateless and Non-Interactive Oblivious RAM. 3585-3587 - Behrad Tajalli
Poster: Backdoor Attack on Extreme Learning Machines. 3588-3590 - Roman Matzutt
Poster: Accountable Processing of Reported Street Problems. 3591-3593 - Rex Fernando
Poster: WIP: Account ZK-Rollups from Sumcheck Arguments. 3594-3596 - Mario Yaksetig
Poster: Signer Discretion is Advised: On the Insecurity of Vitalik's Threshold Hash-based Signatures. 3597-3599 - David G. Balash
Poster: Longitudinal Measurement of the Adoption Dynamics in Apple's Privacy Label Ecosystem. 3600-3602 - Eric Burton Samuel Martin
Poster: Towards a Dataset for the Discrimination between Warranted and Unwarranted Emails. 3603-3605 - Wyatt Sweat
Poster: Cybersecurity Usage in the Wild: A look at Deployment Challenges in Intrusion Detection and Alert Handling. 3606-3608 - Wentao Dong
Poster: Towards Lightweight TEE-Assisted MPC. 3609-3611 - Maximilian Noppel
Poster: Fooling XAI with Explanation-Aware Backdoors. 3612-3614 - Peipei Jiang
Poster: Metadata-private Messaging without Coordination. 3615-3617 - Sashidhar Jakkamsetti
Poster: Control-Flow Integrity in Low-end Embedded Devices. 3618-3620 - Betül Askin Özdemir
Poster: Generic Multidimensional Linear Cryptanalysis of Feistel Ciphers. 3621-3623 - Gowri R. Chandran
Poster: Secure and Differentially Private kth Ranked Element. 3624-3626 - Matin Fallahi
Poster: Towards Practical Brainwave-based User Authentication. 3627-3629 - Wensheng Tian
Poster: A Privacy-Preserving Smart Contract Vulnerability Detection Framework for Permissioned Blockchain. 3630-3632 - Jan-Philip van Acken
Poster: The Unknown Unknown: Cybersecurity Threats of Shadow IT in Higher Education. 3633-3635 - Ziming Zhao
Poster: Detecting Adversarial Examples Hidden under Watermark Perturbation via Usable Information Theory. 3636-3638 - Gyungeun Yun
Poster: Unveiling the Impact of Patch Placement: Adversarial Patch Attacks on Monocular Depth Estimation. 3639-3641 - Ruei-Hau Hsu
Poster: Verifiable Data Valuation with Strong Fairness in Horizontal Federated Learning. 3642-3644
Session 61: Workshops
- Bart P. Knijnenburg
WPES '23: 22nd Workshop on Privacy in the Electronic Society. 3645-3647 - Magnus Almgren
CPSIoTSec'23: Fifth Workshop on CPS & IoT Security and Privacy. 3648-3650 - Michael Brenner
WAHC '23: 11th Workshop on Encrypted Computing & Applied Homomorphic Cryptography. 3651-3652 - Ning Zhang
MTD '23: 10th ACM Workshop on Moving Target Defense. 3653-3654 - Zhiqiang Lin
SaTS'23: The 1st ACM Workshop on Secure and Trustworthy Superapps. 3655-3656 - Francesco Regazzoni
CCSW '23: Cloud Computing Security Workshop. 3657-3658 - Fraser Brown
PLAS: The 18th Workshop on Programming Languages and Analysis for Security. 3659 - Kaihua Qin
DeFi '23: Workshop on Decentralized Finance and Security. 3660-3661 - Gregory Blanc
ARTMAN '23: First Workshop on Recent Advances in Resilient and Trustworthy ML Systems in Autonomous Networks. 3662-3663 - Lejla Batina
ASHES '23: Workshop on Attacks and Solutions in Hardware Security. 3664-3665 - Maura Pintor
AISec '23: 16th ACM Workshop on Artificial Intelligence and Security. 3666-3668 - Ehud Aharoni
Tutorial-HEPack4ML '23: Advanced HE Packing Methods with Applications to ML. 3669-3670 - Marcela S. Melara
SCORED '23: Workshop on Software Supply Chain Offensive Research and Ecosystem Defenses. 3671-3672
Session 62: Demos
- Yue Xu
Demo: Certified Robustness on Toolformer. 3673-3675 - Nicolas Anciaux
Demo: Data Minimization and Informed Consent in Administrative Forms. 3676-3678 - Yuechun Gu
Demo: Image Disguising for Scalable GPU-accelerated Confidential Deep Learning. 3679-3681
manage site settings
To protect your privacy, all features that rely on external API calls from your browser are turned off by default. You need to opt-in for them to become active. All settings here will be stored as cookies with your web browser. For more information see our F.A.Q.
last updated on 2024-11-04 20:30 CET by the dblp team
all metadata released as open data under CC0 1.0 license
see also: Terms of Use | Privacy Policy | Imprint
dblp was originally created in 1993 at:
since 2018, dblp has been operated and maintained by:
the dblp computer science bibliography is funded and supported by: