Communication protocols form the bedrock of our interconnected world, yet vulnerabilities within their implementations pose significant security threats. Recent developments have seen a surge in fuzzing-based research dedicated to uncovering these ...

Ensuring the security of vertical applications in fifth-generation (5G) mobile communication systems and previous generations is crucial. These systems must prioritize maintaining the confidentiality, integrity, and availability of services and data. ...

Interdependencies like mutual reinforcement between system safety and security concerns (e.g., requirements, countermeasures) are often ill-understood in their origins, as it is unclear which system elements cause them. To better comprehend how ...

VUOS (View based OS) is a virtual operating system that permits to give to each process a different view of the underlying system, i.e. access only some specific directories or specified system calls. This is currently obtained intercepting system ...

Cyber-physical systems such as the advanced smart grid have a dynamic interaction between security, safety, and defense. Therefore, we need risk management strategies that take all three into account. This paper introduces a novel framework that ...

Automotive companion apps are mobile apps designed to remotely connect with cars to provide features such as diagnostics, logging, navigation, and safety alerts. Specifically, onboard diagnostics (OBD) based mobile applications directly ...

Dynamic Taint Analysis (DTA) is a widely studied technique that can effectively detect various attacks and information leakage. In the context of detecting information leakage, taint is a flag added to data to indicate whether secret data can be inferred ...

EMV is the international protocol standard for smart card payments and is used in billions of payment cards worldwide. Despite the standard’s advertised security, various issues have been previously uncovered, deriving from logical flaws that are ...

In today’s online environment, platforms like Facebook and Amazon rely heavily on trust and reputation management systems to ensure their integrity and security. This paper improves the EigenTrust algorithm, a notable model in trust calculation, ...

Shoulder surfing attacks (SSAs) are a type of observation attack designed to illicitly gather sensitive data from "over the shoulder" of victims. This attack can be directed at mobile devices, desktop screens, Personal Identification Number (PIN) pads at ...

Confidential virtual machines (CVMs) are increasingly deployed to protect users' code and data in use against attackers with hypervisor privileges. Given Arm's growing adoption, various implementations have extended commodity hypervisors like KVM to ...

Container checkpointing has emerged as a new paradigm for task migration, preemptive scheduling and elastic scaling of microservices. However, as soon as a snapshot that contains raw memory is exposed through the network or shared storage, sensitive data ...

The online safety of minors is a complex issue that legislators are striving to address. Numerous initiatives aim to define policies and best practices to mitigate the risks associated with the use of technologies and applications by young individuals, ...

The vision for 6G extends beyond mere communication, incorporating sensing capabilities to facilitate a diverse array of novel applications and services. However, the advent of joint communication and sensing (JCAS) technology introduces concerns ...

Smart toys combine traditional playtime with modern technologies, integrating IoT features like communication, computation, and sensing to create interactive toys that respond to their environment, offering children new options for entertainment ...

Internet of Things (IoT) is defined as the connection between places and physical objects (i.e., things) over the internet/network via smart computing devices. IoT is a rapidly emerging paradigm that now encompasses almost every aspect of our modern life. ...

The increasing complexity and dynamic nature of software-defined networking (SDN) environments pose significant challenges for network security. We propose a methodology for enhancing the security of SDN systems through the use of a well ...

Cloud computing has become integral to modern computing infrastructure, offering scalability, flexibility, and cost-effectiveness. Trust is a critical aspect of cloud computing, influencing user decisions in selecting Cloud Service Providers (CSPs)...

Large Language Models (LLMs) have rapidly advanced and garnered increasing attention due to their remarkable capabilities across various applications. However, adversarial attacks pose a significant threat to LLMs, as prior research has ...

The digital shift in healthcare has spurred progress in medical services. However, this progress has introduced substantial security risks, necessitating a balance between data privacy and utility. This paper examines the challenges of managing ...