OBFSCURO: A Commodity Obfuscation Engine on Intel SGX, Network and Distributed System Security Symposium (NDSS), Feb. 2019 > International Papers

[SW Security] OBFSCURO: A Commodity Obfuscation Engine on Intel SGX, Network and Distributed System Security Symposium (NDSS), Feb. 2019

0
0
Print
11-07

OBFSCURO: A Commodity Obfuscation Engine on Intel SGX, Network and Distributed System Security Symposium (NDSS), Feb. 2019

Adil Ahmad, Byunggill Joe, Yuan Xiao, Yinqian Zhang, Insik Shin, Byoungyoung Lee

본 논문은 Trusted Computing 환경인 SGX 위에서 이론적으로 안전한 프로그램 obfuscation 기술을 제안한다. 프로그램의 데이터플로우, 컨트롤플로우가 모두 Oblivious RAM을 통하여 동작하므로, 최근 알려진 각종 사이드체널 공격 (페이지폴트 기반, 캐쉬 기반, 브랜치 프리딕터 기반 등)에도 안전하다.

0
0

International Papers

AI Security Real-Time Anomalous Branch Behavior Detection with a GPU-inspired Engine for Machine Learning Models, DATE, Mar 2019

Application Specific Architectures Developing a custom DSP for vision based human computer interaction applications, Multimedia Tools and Applications, Nov 2018

SW Security VM-CFI : Control-Flow Integrity for Virtual Machine Kernel using Intel PT, DTS, Jul 2018

AI Security Mimicry Resilient Program Behavior Modeling with LSTM based Branch Models, DEEP LEARNING AND SECURITY WORKSHOP, May2018

SW Security Finding Kernel Race Bugs through Fuzzing, IEEE Symposium on Security and Privacy (Oakland), May 2019

HW Security Hardware Assisted Randomization of Data, International Symposium on Research in Attacks, Intrusions and Defenses (RAID), Sep 2018

SW Security Obliviate: A Data Oblivious Filesystem for Intel SGX, Network and Distributed System Security Symposium (NDSS), Feb 2018

SW Security Securing Real-Time Microcontroller Systems through Customized Memory View Switching, Network and Distributed System Security Symposium (NDSS), Feb 2018

SW Security Enhancing Memory Error Detection for Large-Scale Applications and Fuzz Testing, Network and Distributed System Security Symposium (NDSS), Feb 2018

SW Security HexType: Efficient Detection of Type Confusion Errors for C++, ACM Conference on Computer and Communications Security (CCS), Oct 2017

SW Security CAB-Fuzz: Practical Concolic Testing Techniques for COTS Operating Systems, USENIX Annual Technical Conference (ATC), Jul 2017

SW Security SGX-Shield: Enabling Address Space Layout Randomization for SGX Programs, Network and Distributed System Security Symposium (NDSS), Feb 2017

SW Security Toward Engineering a Secure Android Ecosystem: A Survey of Existing Techniques, ACM Computing Surveys (CSUR), Nov 2016

SW Security Instant OS Updates via Userspace Checkpoint-and-Restart, USENIX Annual Technical Conference (ATC), June 2016

SW Security TrackMeOrNot: Enabling Flexible Control on Web Tracking, International Conference on World Wide Web (WWW), April 2016

SW Security Enforcing Kernel Security Invariants with Data Flow Integrity, Network and Distributed System Security Symposium (NDSS), Feb 2016

SW Security ASLR-Guard: Stopping Address Space Leakage for Code Reuse Attacks, ACM Conference on Computer and Communications Security (CCS), Oct 2015

SW Security Cross-checking Semantic Correctness: The Case of Finding File System Bugs, ACM Symposium on Operating Systems Principles (SOSP), Oct 2015

SW Security Type Casting Verification: Stopping an Emerging Attack Vector, Usenix Security Symposium (Security), August 2015

SW Security Understanding Malvertising Through Ad-Injecting Browser Extensions, International Conference on World Wide Web (WWW), May 2015