作者: 平靜生活 時(shí)間: 2025-3-21 22:39 作者: 數(shù)量 時(shí)間: 2025-3-22 02:53 作者: 星星 時(shí)間: 2025-3-22 07:36
You Reset I Attack! A?Master Password Guessing Attack Against Honey Password Vaults decoy vault by decrypting and comparing the old and new versions of a password vault. To prove this, we propose a new master password guessing attack (MPGA) to break all the existing honey password vault schemes. Experimental results show that MPGA can easily distinguish real and decoy vaults with 作者: Cosmopolitan 時(shí)間: 2025-3-22 10:50
Attacking Logo-Based Phishing Website Detectors with?Adversarial Perturbationss of state-of-the-art phishing detectors; and (ii)?user studies to gauge whether our adversarial logos can deceive human eyes. The results show that our proposed attack is capable of crafting perturbed logos subtle enough to evade various DL models—achieving an evasion rate of up to 95%. Moreover, u作者: 卷發(fā) 時(shí)間: 2025-3-22 15:53
Hiding Your Signals: A Security Analysis of?PPG-Based Biometric Authenticationte is 60% in inter-pulse-interval-based security protocols. Further, we propose an active defence strategy to hide the physiological signals of the face to resist the attack. It reduces the success rate of rPPG spoofing attacks in user authentication to 5%. The bit hit rate was reduced to 50%, which作者: 卷發(fā) 時(shí)間: 2025-3-22 20:21 作者: 非實(shí)體 時(shí)間: 2025-3-23 00:40
JWTKey: Automatic Cryptographic Vulnerability Detection in?JWT Applicationsrecise detection and overhead. Running on 358 open source JWT applications from GitHub, . discovered that 65.92% of the JWT applications have at least one cryptographic vulnerability. The comparative experiments with CryptoGuard demonstrate the effectiveness of our design. We disclose the findings t作者: Decrepit 時(shí)間: 2025-3-23 03:07 作者: 惡名聲 時(shí)間: 2025-3-23 05:36
Syntax-Aware Mutation for?Testing the?Solidity Compilerle releases, and compare?.?with (1) ., a grammar-aware fuzzer, (2) ., a text-mutation fuzzer and (3) two grammar-blind fuzzers with advanced test input generation schedules: . and . .. .?identified 19 bugs in total (7 of which were previously unknown to Solidity developers), while the other fuzzers 作者: 執(zhí)拗 時(shí)間: 2025-3-23 12:27
Indirect Meltdown: Building Novel Side-Channel Attacks from?Transient-Execution Attacks作者: Spirometry 時(shí)間: 2025-3-23 14:11 作者: 采納 時(shí)間: 2025-3-23 21:02
https://doi.org/10.1007/978-0-387-75472-7e found that face recognition in NIR is highly susceptible to real-world attacks. For example, .96.66% of physically realized attack attempts seeking arbitrary misclassification succeeded, including against defended models. Overall, our work highlights the need to defend NIR -based face recognition,作者: vertebrate 時(shí)間: 2025-3-24 00:48
E25: The Story of One Old Erd?s Problementical machines. The transferability study heavily relates to Rowhammer-based physically unclonable functions (PUFs) which rely on the stability of Rowhammer-induced bit flips. Our results confirm the findings of the Blacksmith fuzzer, showing that even modern DRAM chips are vulnerable to Rowhammer作者: 歌劇等 時(shí)間: 2025-3-24 03:40
Christine Connolly,Henryk Palus decoy vault by decrypting and comparing the old and new versions of a password vault. To prove this, we propose a new master password guessing attack (MPGA) to break all the existing honey password vault schemes. Experimental results show that MPGA can easily distinguish real and decoy vaults with 作者: 自制 時(shí)間: 2025-3-24 07:49
Stephen J. Sangwine,Amy L. Thorntons of state-of-the-art phishing detectors; and (ii)?user studies to gauge whether our adversarial logos can deceive human eyes. The results show that our proposed attack is capable of crafting perturbed logos subtle enough to evade various DL models—achieving an evasion rate of up to 95%. Moreover, u作者: 神經(jīng) 時(shí)間: 2025-3-24 11:53 作者: 漂亮 時(shí)間: 2025-3-24 16:34
,Migrancy, Prostitution and VD, 1920–50, of GNAP, based on the Web Infrastructure Model (WIM) of Fett, Küsters, and Schmitz, and provide formal statements of the key security properties of GNAP, namely authorization, authentication, and session integrity. We discovered several attacks on GNAP in the process of trying to prove these proper作者: Charitable 時(shí)間: 2025-3-24 20:14 作者: 事先無準(zhǔn)備 時(shí)間: 2025-3-25 01:17 作者: WAX 時(shí)間: 2025-3-25 06:39
Royce W. S. Chen MD,George A. Cioffi MDle releases, and compare?.?with (1) ., a grammar-aware fuzzer, (2) ., a text-mutation fuzzer and (3) two grammar-blind fuzzers with advanced test input generation schedules: . and . .. .?identified 19 bugs in total (7 of which were previously unknown to Solidity developers), while the other fuzzers 作者: 拾落穗 時(shí)間: 2025-3-25 08:35
Layered Symbolic Security Analysis in? security guarantees provided by the protocol layer below it, and in turn provides its own security functionality to the layer above. Formally analyzing the whole stack in one go is infeasible even for semi-automated verification tools, and impossible for pen-and-paper proofs. The . protocol verific作者: reject 時(shí)間: 2025-3-25 13:55 作者: commodity 時(shí)間: 2025-3-25 16:09 作者: 不自然 時(shí)間: 2025-3-25 20:58 作者: 適宜 時(shí)間: 2025-3-26 03:01 作者: 變形 時(shí)間: 2025-3-26 05:23
MARF: A Memory-Aware CLFLUSH-Based Intra- and Inter-CPU Side-Channel Attackrm memory access (NUMA) node, and task and page placement across NUMA nodes and identify a set of the patterns in the . latency data. Based on characterization results, we propose MARF, a novel memory-aware .-based intra- and inter-CPU side-channel attack on NUMA systems. Our case studies on three r作者: 滲透 時(shí)間: 2025-3-26 11:16 作者: tangle 時(shí)間: 2025-3-26 13:29 作者: Euthyroid 時(shí)間: 2025-3-26 17:43
Hiding Your Signals: A Security Analysis of?PPG-Based Biometric Authenticatione attractive than many other physiological signals for biometric authentication. However, with the advent of remote PPG, unobservability has been challenged when the attacker can remotely steal the PPG signals by monitoring the victim’s face, subsequently posing a threat to PPG-based biometrics. In 作者: daredevil 時(shí)間: 2025-3-26 23:01 作者: Project 時(shí)間: 2025-3-27 02:46 作者: Dysplasia 時(shí)間: 2025-3-27 07:59
Everlasting ROBOT: The Marvin Attackmmon. We have successfully attacked multiple implementations using only timing of decryption operation and shown that many others are vulnerable. To perform the attack we used more statistically rigorous techniques like the sign test, Wilcoxon signed-rank test, and bootstrapping of median of pairwis作者: Terrace 時(shí)間: 2025-3-27 11:58 作者: 委托 時(shí)間: 2025-3-27 13:41
When is Slower Block Propagation More Profitable for?Large Miners?their revenues. Their indifference inspires a theory that slower block propagation is beneficial for some miners. In this study, we analyze and confirm this counterintuitive theory. Specifically, by modeling inadvertent slower blocks, we show that a mining coalition that controls more than a third o作者: 粗魯性質(zhì) 時(shí)間: 2025-3-27 18:47
Bijack: Breaking Bitcoin Network with?TCP Vulnerabilitiesrs have been uncovered such as BGP hijacking in the network layer and eclipse attack in the application layer, one significant attack vector that resides in the transport layer is largely overlooked. In this paper, we investigate the TCP vulnerabilities of the Bitcoin system and their consequences. 作者: Cabg318 時(shí)間: 2025-3-28 01:41
Syntax-Aware Mutation for?Testing the?Solidity Compiler?addresses a challenge of existing fuzzers when dealing with structured inputs: the generation of inputs that get past the parser checks of the system under test. To do so, .?introduces a novel . that breaks into three strategies, each of them making different kind of changes in the inputs. Contrary作者: 驕傲 時(shí)間: 2025-3-28 03:51 作者: judiciousness 時(shí)間: 2025-3-28 07:30
https://doi.org/10.1007/978-3-319-52861-8 in practice using off-the-shelf implementations for the genuine communicating parties, and a custom BR/EDR machine-in-the-middle framework for the attacker. Our attacks have been reported by Bluetooth SIG as CVEs.作者: 紅腫 時(shí)間: 2025-3-28 13:44 作者: Missile 時(shí)間: 2025-3-28 18:00
https://doi.org/10.1057/9780333992661e differences. We publish a set of tools for testing libraries that perform RSA decryption against timing side-channel attacks, including one that can test arbitrary TLS servers with no need to write a test harnesses. Finally, we propose a set of workarounds that implementations can employ if they can’t avoid the use of RSA.作者: LAST 時(shí)間: 2025-3-28 20:11
0302-9743 ESORICS 2023, which took place in The Hague, The Netherlands, during September 25-29, 2023...The 93 full papers presented in these proceedings were carefully reviewed and selected from?478?submissions. They were organized in topical sections as follows:.Part I: Crypto...Part II:?Network, web and int作者: 誘拐 時(shí)間: 2025-3-29 00:00 作者: Peristalsis 時(shí)間: 2025-3-29 05:39 作者: 營(yíng)養(yǎng) 時(shí)間: 2025-3-29 10:47
Conference proceedings 202423, which took place in The Hague, The Netherlands, during September 25-29, 2023...The 93 full papers presented in these proceedings were carefully reviewed and selected from?478?submissions. They were organized in topical sections as follows:.Part I: Crypto...Part II:?Network, web and internet; pri作者: 勛章 時(shí)間: 2025-3-29 15:26 作者: 謙卑 時(shí)間: 2025-3-29 16:52 作者: Reclaim 時(shí)間: 2025-3-29 21:29 作者: CREEK 時(shí)間: 2025-3-30 01:00
Exploring Genomic Sequence Alignment for?Improving Side-Channel Analysisraces with higher quality than elastic alignment (based on Dynamic Time Warping), thereby enabling downstream SCA methods, e.g., Correlation Power Analysis, to extract cryptography keys with up to 44% less traces.作者: crutch 時(shí)間: 2025-3-30 07:13 作者: Indigence 時(shí)間: 2025-3-30 08:18
MARF: A Memory-Aware CLFLUSH-Based Intra- and Inter-CPU Side-Channel Attackeal NUMA systems demonstrate that MARF can robustly be used to attack applications that use widely-used cryptographic and user-interface libraries. We also present potential countermeasures against MARF.作者: 一再煩擾 時(shí)間: 2025-3-30 12:25
Everlasting ROBOT: The Marvin Attacke differences. We publish a set of tools for testing libraries that perform RSA decryption against timing side-channel attacks, including one that can test arbitrary TLS servers with no need to write a test harnesses. Finally, we propose a set of workarounds that implementations can employ if they can’t avoid the use of RSA.作者: 主動(dòng) 時(shí)間: 2025-3-30 17:38
0302-9743 ernet; privacy; and remote...Part III: Attacks; blockchain; and miscellaneous..Part IV: Machine learning; software and systems security...?.978-3-031-51478-4978-3-031-51479-1Series ISSN 0302-9743 Series E-ISSN 1611-3349 作者: 骯臟 時(shí)間: 2025-3-30 21:56
Lecture Notes in Computer Sciencehttp://image.papertrans.cn/c/image/233873.jpg作者: clarify 時(shí)間: 2025-3-31 02:13 作者: irritation 時(shí)間: 2025-3-31 08:31 作者: hermitage 時(shí)間: 2025-3-31 11:24 作者: dry-eye 時(shí)間: 2025-3-31 14:54 作者: 柳樹;枯黃 時(shí)間: 2025-3-31 18:54
https://doi.org/10.1007/978-0-387-75472-7ttacks. Face-recognition systems in near-infrared (NIR ) are widely deployed for critical tasks (e.g., access control), and are hypothesized to be more secure due to the lower variability and dimensionality of NIR images compared to VIS ones. However, the actual robustness of NIR -based face recogni
