Showing total 639 results

1. (Short Paper) Towards More Reliable Bitcoin Timestamps

Author

Pawel Szalachowski

Subjects

FOS: Computer and information sciences, Computer Science - Cryptography and Security, business.industry, Computer science, Reliability (computer networking), 05 social sciences, Timestamping, 02 engineering and technology, Synchronization, Backward compatibility, Server, 0202 electrical engineering, electronic engineering, information engineering, 020201 artificial intelligence & image processing, Timestamp, 0509 other social sciences, 050904 information & library sciences, business, Cryptography and Security (cs.CR), Protocol (object-oriented programming), Computer network, Block (data storage)

Abstract

Bitcoin provides freshness properties by forming a blockchain where each block is associated with its timestamp and the previous block. Due to these properties, the Bitcoin protocol is being used as a decentralized, trusted, and secure timestamping service. Although Bitcoin participants which create new blocks cannot modify their order, they can manipulate timestamps almost undetected. This undermines the Bitcoin protocol as a reliable timestamping service. In particular, a newcomer that synchronizes the entire blockchain has a little guarantee about timestamps of all blocks. In this paper, we present a simple yet powerful mechanism that increases the reliability of Bitcoin timestamps. Our protocol can provide evidence that a block was created within a certain time range. The protocol is efficient, backward compatible, and surprisingly, currently deployed SSL/TLS servers can act as reference time sources. The protocol has many applications and can be used for detecting various attacks against the Bitcoin protocol., Comment: In Proceedings of Crypto Valley Conference on Blockchain Technology (CVCBT), 2018

Published

2018

2. Bluff: Interactively Deciphering Adversarial Attacks on Deep Neural Networks

Author

Zijie J. Wang, Duen Horng Chau, Nilaksh Das, Haekyu Park, Fred Hohman, Robert Firstman, and Emily Rogers

Subjects

FOS: Computer and information sciences, Computer Science - Machine Learning, Web browser, Computer Science - Cryptography and Security, Artificial neural network, business.industry, Computer science, 020207 software engineering, 02 engineering and technology, Computer security, computer.software_genre, Machine Learning (cs.LG), Data modeling, Adversarial system, Harm, Data visualization, Bluff, 0202 electrical engineering, electronic engineering, information engineering, Deep neural networks, 020201 artificial intelligence & image processing, business, Cryptography and Security (cs.CR), computer

Abstract

Deep neural networks (DNNs) are now commonly used in many domains. However, they are vulnerable to adversarial attacks: carefully crafted perturbations on data inputs that can fool a model into making incorrect predictions. Despite significant research on developing DNN attack and defense techniques, people still lack an understanding of how such attacks penetrate a model's internals. We present Bluff, an interactive system for visualizing, characterizing, and deciphering adversarial attacks on vision-based neural networks. Bluff allows people to flexibly visualize and compare the activation pathways for benign and attacked images, revealing mechanisms that adversarial attacks employ to inflict harm on a model. Bluff is open-sourced and runs in modern web browsers., This paper is accepted at IEEE VIS'20 Short Paper

Published

2020

3. Resynthesis-based Attacks Against Logic Locking

Author

Almeida, F., Aksoy, L., Nguyen, Q-L., Dupuis, S., Flottes, M-L., and Pagliarini, S.

Subjects

FOS: Computer and information sciences, Computer Science - Cryptography and Security, Cryptography and Security (cs.CR)

Abstract

Logic locking has been a promising solution to many hardware security threats, such as intellectual property infringement and overproduction. Due to the increased attention that threats have received, many efficient specialized attacks against logic locking have been introduced over the years. However, the ability of an adversary to manipulate a locked netlist prior to mounting an attack has not been investigated thoroughly. This paper introduces a resynthesis-based strategy that utilizes the strength of a commercial electronic design automation (EDA) tool to reveal the vulnerabilities of a locked circuit. To do so, in a pre-attack step, a locked netlist is resynthesized using different synthesis parameters in a systematic way, leading to a large number of functionally equivalent but structurally different locked circuits. Then, under the oracle-less threat model, where it is assumed that the adversary only possesses the locked circuit, not the original circuit to query, a prominent attack is applied to these generated netlists collectively, from which a large number of key bits are deciphered. Nevertheless, this paper also describes how the proposed oracle-less attack can be integrated with an oracle-guided attack. The feasibility of the proposed approach is demonstrated for several benchmarks, including remarkable results for breaking a recently proposed provably secure logic locking method and deciphering values of a large number of key bits of the CSAW'19 circuits with very high accuracy., 8 pages, 7 figures, conference

Published

2023

4. Digital Twins for Dynamic Management of Blockchain Systems

Author

Diamantopoulos, Georgios, Tziritas, Nikos, Bahsoon, Rami, and Theodoropoulos, Georgios

Subjects

FOS: Computer and information sciences, Artificial Intelligence (cs.AI), Computer Science - Cryptography and Security, Computer Science - Distributed, Parallel, and Cluster Computing, Computer Science - Artificial Intelligence, Distributed, Parallel, and Cluster Computing (cs.DC), Cryptography and Security (cs.CR)

Abstract

Blockchain systems are challenged by the so-called Trilemma tradeoff: decentralization, scalability and security. Infrastructure and node configuration, choice of the Consensus Protocol and complexity of the application transactions are cited amongst the factors that affect the tradeoffs balance. Given that Blockchains are complex, dynamic dynamic systems, a dynamic approach to their management and reconfiguration at runtime is deemed necessary to reflect the changes in the state of the infrastructure and application. This paper introduces the utilisation of Digital Twins for this purpose. The novel contribution of the paper is design of a framework and conceptual architecture of a Digital Twin that can assist in maintaining the Trilemma tradeoffs of time critical systems. The proposed Digital Twin is illustrated via an innovative approach to dynamic selection of Consensus Protocols. Simulations results show that the proposed framework can effectively support the dynamic adaptation and management of the Blockchain, 12 pages, 5 figures, submitted to Winter Simulation Conference 2022

Published

2022

5. Label Flipping Data Poisoning Attack Against Wearable Human Activity Recognition System

Author

Shahid, Abdur R., Imteaj, Ahmed, Wu, Peter Y., Igoche, Diane A., and Alam, Tauhidul

Subjects

Signal Processing (eess.SP), FOS: Computer and information sciences, Computer Science - Machine Learning, Computer Science - Cryptography and Security, FOS: Electrical engineering, electronic engineering, information engineering, Computer Science - Human-Computer Interaction, Electrical Engineering and Systems Science - Signal Processing, Cryptography and Security (cs.CR), Human-Computer Interaction (cs.HC), Machine Learning (cs.LG)

Abstract

Human Activity Recognition (HAR) is a problem of interpreting sensor data to human movement using an efficient machine learning (ML) approach. The HAR systems rely on data from untrusted users, making them susceptible to data poisoning attacks. In a poisoning attack, attackers manipulate the sensor readings to contaminate the training set, misleading the HAR to produce erroneous outcomes. This paper presents the design of a label flipping data poisoning attack for a HAR system, where the label of a sensor reading is maliciously changed in the data collection phase. Due to high noise and uncertainty in the sensing environment, such an attack poses a severe threat to the recognition system. Besides, vulnerability to label flipping attacks is dangerous when activity recognition models are deployed in safety-critical applications. This paper shades light on how to carry out the attack in practice through smartphone-based sensor data collection applications. This is an earlier research work, to our knowledge, that explores attacking the HAR models via label flipping poisoning. We implement the proposed attack and test it on activity recognition models based on the following machine learning algorithms: multi-layer perceptron, decision tree, random forest, and XGBoost. Finally, we evaluate the effectiveness of K-nearest neighbors (KNN)-based defense mechanism against the proposed attack., Submitted to IEEE SSCI 2022 Conference

Published

2022

6. MalGrid: Visualization of Binary Features in Large Malware Corpora

Author

Mohammed, Tajuddin Manhar, Nataraj, Lakshmanan, Chikkagoudar, Satish, Chandrasekaran, Shivkumar, and Manjunath, B. S.

Subjects

Signal Processing (eess.SP), FOS: Computer and information sciences, Computer Science - Machine Learning, Computer Science - Cryptography and Security, Computer Vision and Pattern Recognition (cs.CV), Image and Video Processing (eess.IV), Computer Science - Computer Vision and Pattern Recognition, Computer Science - Human-Computer Interaction, Electrical Engineering and Systems Science - Image and Video Processing, Human-Computer Interaction (cs.HC), Machine Learning (cs.LG), FOS: Electrical engineering, electronic engineering, information engineering, Electrical Engineering and Systems Science - Signal Processing, Cryptography and Security (cs.CR)

Abstract

The number of malware is constantly on the rise. Though most new malware are modifications of existing ones, their sheer number is quite overwhelming. In this paper, we present a novel system to visualize and map millions of malware to points in a 2-dimensional (2D) spatial grid. This enables visualizing relationships within large malware datasets that can be used to develop triage solutions to screen different malware rapidly and provide situational awareness. Our approach links two visualizations within an interactive display. Our first view is a spatial point-based visualization of similarity among the samples based on a reduced dimensional projection of binary feature representations of malware. Our second spatial grid-based view provides a better insight into similarities and differences between selected malware samples in terms of the binary-based visual representations they share. We also provide a case study where the effect of packing on the malware data is correlated with the complexity of the packing algorithm., Comment: Submitted version - MILCOM 2022 IEEE Military Communications Conference. The high-quality images in this paper can be found on Github (https://github.com/Mayachitra-Inc/MalGrid)

Published

2022

7. Detecting Malicious Domains Using Statistical Internationalized Domain Name Features in Top Level Domains

Author

Almarzooqi, Alshaima, Mahmoud, Jawahir, Alzaabi, Bayena, Ghebremichael, Arsiema, and Aldwairi, Monther

Subjects

FOS: Computer and information sciences, Computer Science - Cryptography and Security, Cryptography and Security (cs.CR)

Abstract

The Domain Name System (DNS) is a core Internet service that translates domain names into IP addresses. It is a distributed database and protocol with many known weaknesses that subject to countless attacks including spoofing attacks, botnets, and domain name registrations. Still, the debate between security and privacy is continuing, that is DNS over TLS or HTTP, and the lack of adoption of DNS security extensions, put users at risk. Consequently, the security of domain names and characterizing malicious websites is becoming a priority. This paper analyzes the difference between the malicious and the normal domain names and uses Python to extract various malicious DNS identifying characteristics. In addition, the paper contributes two categories of features that suppers Internationalized Domain Names and scans domain system using five tools to give it a rating. The overall accuracy of the Random Forest Classifier was 95.6%.

Published

2022

8. Cryptocurrency Giveaway Scam with YouTube Live Stream

Author

Iman Vakilinia

Subjects

FOS: Computer and information sciences, Computer Science - Cryptography and Security, Cryptography and Security (cs.CR)

Abstract

This paper investigates the cryptocurrency giveaway scam with the YouTube live stream carried out on 5/15/2022 and 5/16/2022. In this scam scheme, the scammer plays a recorded video of a famous person in a YouTube live stream annotated with a cryptocurrency giveaway announcement. In the annotated announcement, the victims are directed to the scammer's webpage. The scammer's webpage is designed intelligently to deceive victims such that they believe the legitimacy of the giveaway. The scammer claims that whatever donation the victim sends to a cryptocurrency wallet address, the giveaway scheme will double the donated amount and immediately send it back to the victim. By analyzing the scammers' wallet addresses, it can be seen that scammers could steal a significant amount of money in a short time. After analyzing the attackers' techniques, tactics, and procedures, this paper discusses the countermeasures that can be applied to mitigate such a fraudulent activity in the future.

Published

2022

9. Logic and Reduction Operation based Hardware Trojans in Digital Design

Author

Das, Mayukhmali, Dutta, Sounak, and Chatterjee, Sayan

Subjects

FOS: Computer and information sciences, Computer Science - Cryptography and Security, Hardware Architecture (cs.AR), Computer Science - Hardware Architecture, Cryptography and Security (cs.CR)

Abstract

In this paper, we will demonstrate Hardware Trojan Attacks on four different digital designs implemented on FPGA. The hardware trojan is activated based on special logical and reduction-based operations on vectors which makes the trojan-activity as silent and effective as possible. In this paper, we have introduced 5 novel trojan attack methodologies., 2 pages, 2 figures, accepted in ISOCC 2022

Published

2022

10. What are the Practices for Secret Management in Software Artifacts?

Author

Basak, Setu Kumar, Neil, Lorenzo, Reaves, Bradley, and Williams, Laurie

Subjects

Software Engineering (cs.SE), FOS: Computer and information sciences, Computer Science - Software Engineering, Computer Science - Cryptography and Security, 68-01, Cryptography and Security (cs.CR)

Abstract

Throughout 2021, GitGuardian's monitoring of public GitHub repositories revealed a two-fold increase in the number of secrets (database credentials, API keys, and other credentials) exposed compared to 2020, accumulating more than six million secrets. A systematic derivation of practices for managing secrets can help practitioners in secure development. The goal of our paper is to aid practitioners in avoiding the exposure of secrets by identifying secret management practices in software artifacts through a systematic derivation of practices disseminated in Internet artifacts. We conduct a grey literature review of Internet artifacts, such as blog articles and question and answer posts. We identify 24 practices grouped in six categories comprised of developer and organizational practices. Our findings indicate that using local environment variables and external secret management services are the most recommended practices to move secrets out of source code and to securely store secrets. We also observe that using version control system scanning tools and employing short-lived secrets are the most recommended practices to avoid accidentally committing secrets and limit secret exposure, respectively., 8 pages, 2 figures. This paper is to be published in IEEE Secure Development Conference, 2022

Published

2022

11. Unauthorized Drone Detection: Experiments and Prototypes

Author

Khan, Muhammad Asif, Menouar, Hamid, Khalid, Osama Muhammad, and Abu-Dayya, Adnan

Subjects

FOS: Computer and information sciences, Computer Science - Machine Learning, Computer Science - Cryptography and Security, Computer Vision and Pattern Recognition (cs.CV), Computer Science - Computer Vision and Pattern Recognition, Cryptography and Security (cs.CR), Machine Learning (cs.LG)

Abstract

The increase in the number of unmanned aerial vehicles a.k.a. drones pose several threats to public privacy, critical infrastructure and cyber security. Hence, detecting unauthorized drones is a significant problem which received attention in the last few years. In this paper, we present our experimental work on three drone detection methods (i.e., acoustic detection, radio frequency (RF) detection, and visual detection) to evaluate their efficacy in both indoor and outdoor environments. Owing to the limitations of these schemes, we present a novel encryption-based drone detection scheme that uses a two-stage verification of the drone's received signal strength indicator (RSSI) and the encryption key generated from the drone's position coordinates to reliably detect an unauthorized drone in the presence of authorized drones., Comment: This paper has been accepted for presentation in 23rd IEEE International Conference on Industrial Technology (ICIT22), 22 - 25 August, 2022, Shanghai, China

Published

2022

12. Calibration with Privacy in Peer Review

Author

Ding, Wenxin, Kamath, Gautam, Wang, Weina, and Shah, Nihar B.

Subjects

FOS: Computer and information sciences, Computer Science - Cryptography and Security, Information Theory (cs.IT), Computer Science - Information Theory, Cryptography and Security (cs.CR)

Abstract

Reviewers in peer review are often miscalibrated: they may be strict, lenient, extreme, moderate, etc. A number of algorithms have previously been proposed to calibrate reviews. Such attempts of calibration can however leak sensitive information about which reviewer reviewed which paper. In this paper, we identify this problem of calibration with privacy, and provide a foundational building block to address it. Specifically, we present a theoretical study of this problem under a simplified-yet-challenging model involving two reviewers, two papers, and an MAP-computing adversary. Our main results establish the Pareto frontier of the tradeoff between privacy (preventing the adversary from inferring reviewer identity) and utility (accepting better papers), and design explicit computationally-efficient algorithms that we prove are Pareto optimal., 31 pages, 6 figures

Published

2022

13. A Novel Attack to the Permuted Kernel Problem

Author

Santini, Paolo, Baldi, Marco, and Chiaraluce, Franco

Subjects

FOS: Computer and information sciences, Computer Science - Cryptography and Security, Cryptography and Security (cs.CR)

Abstract

The Permuted Kernel Problem (PKP) asks to find a permutation of a given vector belonging to the kernel of a given matrix. The PKP is at the basis of PKP-DSS, a post-quantum signature scheme deriving from the identification scheme proposed by Shamir in 1989. The most efficient solver for PKP is due to a recent paper by Koussa et al. In this paper we propose an improvement of such an algorithm, which we achieve by considering an additional collision search step applied on kernel equations involving a small number of coordinates. We study the conditions for such equations to exist from a coding theory perspective, and we describe how to efficiently find them with methods borrowed from coding theory, such as information set decoding. We assess the complexity of the resulting algorithm and show that it outperforms previous approaches in several cases. We also show that, taking the new solver into account, the security level of some instances of PKP-DSS turns out to be slightly overestimated.

Published

2022

14. Factors Impacting Resilience of Internet of Things Systems in Critical Infrastructure

Author

Miroslav Bures, Pavel Blazek, Jiri Nema, and Hynek Schvach

Subjects

FOS: Computer and information sciences, Computer Science - Cryptography and Security, Cryptography and Security (cs.CR)

Abstract

Internet of Things (IoT) systems are recently being employed in various types of critical infrastructure, including integrated rescue systems, healthcare, defence, energy and other fields. Recently, the security and safety of IoT systems, in general, has been questioned by a number of studies. Raised concerns do not relate to the IoT technology in principle but to poor engineering practices that are mostly preventable. In critical infrastructure, demand for safety and security is strongly present and justifies a discussion about the general resilience of IoT systems. In this context, resilience includes system resistance to cyberattacks and its stability to operating conditions and system reliability and safety in terms of present flaws. In this paper, we discuss relevant factors impacting the resilience of IoT systems in the critical infrastructure and suggest possible countermeasures and actions mitigate the potential effects of these factors. Contrary to the previous work, an unique critical system Model-based Testing viewpoint is taken in this analysis., Comment: Paper accepted at IEEE AIIoT 2022, Seattle, USA, 6-9 June 2022

Published

2022

15. Exploring Optimal Deep Learning Models for Image-based Malware Variant Classification

Author

Rikima Mitsuhashi and Takahiro Shinagawa

Subjects

FOS: Computer and information sciences, ComputingMilieux_MANAGEMENTOFCOMPUTINGANDINFORMATIONSYSTEMS, Computer Science - Machine Learning, Software_OPERATINGSYSTEMS, ComputingMethodologies_PATTERNRECOGNITION, Computer Science - Cryptography and Security, Cryptography and Security (cs.CR), Machine Learning (cs.LG)

Abstract

Analyzing a huge amount of malware is a major burden for security analysts. Since emerging malware is often a variant of existing malware, automatically classifying malware into known families greatly reduces a part of their burden. Image-based malware classification with deep learning is an attractive approach for its simplicity, versatility, and affinity with the latest technologies. However, the impact of differences in deep learning models and the degree of transfer learning on the classification accuracy of malware variants has not been fully studied. In this paper, we conducted an exhaustive survey of deep learning models using 24 ImageNet pre-trained models and five fine-tuning parameters, totaling 120 combinations, on two platforms. As a result, we found that the highest classification accuracy was obtained by fine-tuning one of the latest deep learning models with a relatively low degree of transfer learning, and we achieved the highest classification accuracy ever in cross-validation on the Malimg and Drebin datasets. We also confirmed that this trend holds true for the recent malware variants using the VirusTotal 2020 Windows and Android datasets. The experimental results suggest that it is effective to periodically explore optimal deep learning models with the latest models and malware datasets by gradually reducing the degree of transfer learning from half., 11 pages with 10figures. This is the accepted version of the paper published in IEEE COMPSAC 2022. The published version is available at http://dx.doi.org/10.1109/COMPSAC54236.2022.00128

Published

2022

16. Use of a non-peer reviewed sources in cyber-security scientific research

Author

Gernhardt, Dalibor and Gro��, Stjepan

Subjects

FOS: Computer and information sciences, Computer Science - Cryptography and Security, cybersecurity news, cybersecurity blogs, Cryptography and Security (cs.CR)

Abstract

Most publicly available data on cyber incidents comes from private companies and non-academic sources. Common sources of information include various security bulletins, white papers, reports, court cases, and blog posts describing specific events, often from a single point of view, followed by occasional academic sources, usually conference proceedings. The main characteristics of the available data sources are: lack of peer review and unavailability of confidential data. In this paper, we use an indirect approach to identify trusted sources used in scientific work. We analyze how top-rated peer reviewed literature relies on the use of non-peer reviewed sources on cybersecurity incidents. To identify current non-peer reviewed sources on cybersecurity we analyze references in top rated peer reviewed computer security conferences. We also analyze how non-peer reviewed sources are used, to motivate or support research. We examined 808 articles from top conferences in field of computer security. The result of this work are list of the most commonly used non-peer reviewed data sources and information about the context in which this data is used. Since these sources are accepted in top conferences, other researchers can consider them in their future research. To the best of our knowledge, analysis on how non-peer reviewed sources are used in cyber-security scientific research has not been done before., 9 pages, 6 tables

Published

2022

17. Generative Adversarial Network-Driven Detection of Adversarial Tasks in Mobile Crowdsensing

Author

Chen, Zhiyan and Kantarci, Burak

Subjects

FOS: Computer and information sciences, Computer Science - Machine Learning, Computer Science - Cryptography and Security, Artificial Intelligence (cs.AI), Computer Science - Artificial Intelligence, Cryptography and Security (cs.CR), Machine Learning (cs.LG)

Abstract

Mobile Crowdsensing systems are vulnerable to various attacks as they build on non-dedicated and ubiquitous properties. Machine learning (ML)-based approaches are widely investigated to build attack detection systems and ensure MCS systems security. However, adversaries that aim to clog the sensing front-end and MCS back-end leverage intelligent techniques, which are challenging for MCS platform and service providers to develop appropriate detection frameworks against these attacks. Generative Adversarial Networks (GANs) have been applied to generate synthetic samples, that are extremely similar to the real ones, deceiving classifiers such that the synthetic samples are indistinguishable from the originals. Previous works suggest that GAN-based attacks exhibit more crucial devastation than empirically designed attack samples, and result in low detection rate at the MCS platform. With this in mind, this paper aims to detect intelligently designed illegitimate sensing service requests by integrating a GAN-based model. To this end, we propose a two-level cascading classifier that combines the GAN discriminator with a binary classifier to prevent adversarial fake tasks. Through simulations, we compare our results to a single-level binary classifier, and the numeric results show that proposed approach raises Adversarial Attack Detection Rate (AADR), from $0\%$ to $97.5\%$ by KNN/NB, from $45.9\%$ to $100\%$ by Decision Tree. Meanwhile, with two-levels classifiers, Original Attack Detection Rate (OADR) improves for the three binary classifiers, with comparison, such as NB from $26.1\%$ to $61.5\%$., Comment: This paper contains pages, 4 figures which is accepted by IEEE ICC 2022

Published

2022

18. FedRecAttack: Model Poisoning Attack to Federated Recommendation

Author

Dazhong Rong, Shuai Ye, Ruoyan Zhao, Hon Ning Yuen, Jianhai Chen, and Qinming He

Subjects

FOS: Computer and information sciences, Computer Science - Machine Learning, Computer Science - Cryptography and Security, Cryptography and Security (cs.CR), Machine Learning (cs.LG)

Abstract

Federated Recommendation (FR) has received considerable popularity and attention in the past few years. In FR, for each user, its feature vector and interaction data are kept locally on its own client thus are private to others. Without the access to above information, most existing poisoning attacks against recommender systems or federated learning lose validity. Benifiting from this characteristic, FR is commonly considered fairly secured. However, we argue that there is still possible and necessary security improvement could be made in FR. To prove our opinion, in this paper we present FedRecAttack, a model poisoning attack to FR aiming to raise the exposure ratio of target items. In most recommendation scenarios, apart from private user-item interactions (e.g., clicks, watches and purchases), some interactions are public (e.g., likes, follows and comments). Motivated by this point, in FedRecAttack we make use of the public interactions to approximate users' feature vectors, thereby attacker can generate poisoned gradients accordingly and control malicious users to upload the poisoned gradients in a well-designed way. To evaluate the effectiveness and side effects of FedRecAttack, we conduct extensive experiments on three real-world datasets of different sizes from two completely different scenarios. Experimental results demonstrate that our proposed FedRecAttack achieves the state-of-the-art effectiveness while its side effects are negligible. Moreover, even with small proportion (3%) of malicious users and small proportion (1%) of public interactions, FedRecAttack remains highly effective, which reveals that FR is more vulnerable to attack than people commonly considered., This paper has been accepted by IEEE International Conference on Data Engineering 2022 (Second Research Round)

Published

2022

19. Utility Analysis and Enhancement of LDP Mechanisms in High-Dimensional Space

Author

Duan, Jiawei, Ye, Qingqing, and Hu, Haibo

Subjects

FOS: Computer and information sciences, Computer Science - Cryptography and Security, Computer Science - Databases, Databases (cs.DB), Cryptography and Security (cs.CR)

Abstract

Local differential privacy (LDP), which perturbs the data of each user locally and only sends the noisy version of her information to the aggregator, is a popular privacy-preserving data collection mechanism. In LDP, the data collector could obtain accurate statistics without access to original data, thus guaranteeing privacy. However, a primary drawback of LDP is its disappointing utility in high-dimensional space. Although various LDP schemes have been proposed to reduce perturbation, they share the same and naive aggregation mechanism at the side of the collector. In this paper, we first bring forward an analytical framework to generally measure the utilities of LDP mechanisms in high-dimensional space, which can benchmark existing and future LDP mechanisms without conducting any experiment. Based on this, the framework further reveals that the naive aggregation is sub-optimal in high-dimensional space, and there is much room for improvement. Motivated by this, we present a re-calibration protocol HDR4ME for high-dimensional mean estimation, which improves the utilities of existing LDP mechanisms without making any change to them. Both theoretical analysis and extensive experiments confirm the generality and effectiveness of our framework and protocol., This paper is accepted and will appear in ICDE 2022 as a regular research paper

Published

2022

20. Locally Differentially Private Sparse Vector Aggregation

Author

Zhou, Mingxun, Wang, Tianhao, Chan, T-H. Hubert, Fanti, Giulia, and Shi, Elaine

Subjects

FOS: Computer and information sciences, Computer Science - Cryptography and Security, Cryptography and Security (cs.CR)

Abstract

Vector mean estimation is a central primitive in federated analytics. In vector mean estimation, each user $i \in [n]$ holds a real-valued vector $v_i\in [-1, 1]^d$, and a server wants to estimate the mean of all $n$ vectors. Not only so, we would like to protect each individual user's privacy. In this paper, we consider the $k$-sparse version of the vector mean estimation problem, that is, suppose that each user's vector has at most $k$ non-zero coordinates in its $d$-dimensional vector, and moreover, $k \ll d$. In practice, since the universe size $d$ can be very large (e.g., the space of all possible URLs), we would like the per-user communication to be succinct, i.e., independent of or (poly-)logarithmic in the universe size. In this paper, we are the first to show matching upper- and lower-bounds for the $k$-sparse vector mean estimation problem under local differential privacy. Specifically, we construct new mechanisms that achieve asymptotically optimal error as well as succinct communication, either under user-level-LDP or event-level-LDP. We implement our algorithms and evaluate them on synthetic as well as real-world datasets. Our experiments show that we can often achieve one or two orders of magnitude reduction in error in comparison with prior works under typical choices of parameters, while incurring insignificant communication cost.

Published

2022

21. Are We There Yet? Timing and Floating-Point Attacks on Differential Privacy Systems

Author

Jiankai Jin, Eleanor McMurtry, Benjamin I. P. Rubinstein, and Olga Ohrimenko

Subjects

FOS: Computer and information sciences, Computer Science - Cryptography and Security, Cryptography and Security (cs.CR)

Abstract

Differential privacy is a de facto privacy framework that has seen adoption in practice via a number of mature software platforms. Implementation of differentially private (DP) mechanisms has to be done carefully to ensure end-to-end security guarantees. In this paper we study two implementation flaws in the noise generation commonly used in DP systems. First we examine the Gaussian mechanism's susceptibility to a floating-point representation attack. The premise of this first vulnerability is similar to the one carried out by Mironov in 2011 against the Laplace mechanism. Our experiments show attack's success against DP algorithms, including deep learning models trained using differentially-private stochastic gradient descent. In the second part of the paper we study discrete counterparts of the Laplace and Gaussian mechanisms that were previously proposed to alleviate the shortcomings of floating-point representation of real numbers. We show that such implementations unfortunately suffer from another side channel: a novel timing attack. An observer that can measure the time to draw (discrete) Laplace or Gaussian noise can predict the noise magnitude, which can then be used to recover sensitive attributes. This attack invalidates differential privacy guarantees of systems implementing such mechanisms. We demonstrate that several commonly used, state-of-the-art implementations of differential privacy are susceptible to these attacks. We report success rates up to 92.56% for floating point attacks on DP-SGD, and up to 99.65% for end-to-end timing attacks on private sum protected with discrete Laplace. Finally, we evaluate and suggest partial mitigations., Comment: In Proceedings of the 43rd IEEE Symposium on Security and Privacy (IEEE S&P 2022)

Published

2022

22. From FPGAs to Obfuscated eASICs: Design and Security Trade-offs

Author

Abideen, Zain Ul, Perez, Tiago Diadami, and Pagliarini, Samuel

Subjects

FOS: Computer and information sciences, Computer Science - Cryptography and Security, Hardware Architecture (cs.AR), Hardware_INTEGRATEDCIRCUITS, Computer Science - Hardware Architecture, Cryptography and Security (cs.CR), Hardware_LOGICDESIGN

Abstract

Threats associated with the untrusted fabrication of integrated circuits (ICs) are numerous: piracy, overproduction, reverse engineering, hardware trojans, etc. The use of reconfigurable elements (i.e., look-up tables as in FPGAs) is a known obfuscation technique. In the extreme case, when the circuit is entirely implemented as an FPGA, no information is revealed to the adversary but at a high cost in area, power, and performance. In the opposite extreme, when the same circuit is implemented as an ASIC, best-in-class performance is obtained but security is compromised. This paper investigates an intermediate solution between these two. Our results are supported by a custom CAD tool that explores this FPGA-ASIC design space and enables a standard-cell based physical synthesis flow that is flexible and compatible with current design practices. Layouts are presented for obfuscated circuits in a 65nm commercial technology, demonstrating the attained obfuscation both graphically and quantitatively. Furthermore, our security analysis revealed that for truly hiding the circuit's intent (not only portions of its structure), the obfuscated design also has to chiefly resemble an FPGA: only some small amount of logic can be made static for an adversary to remain unaware of what the circuit does., The results for the paper are given on the following link: https://github.com/Centre-for-Hardware-Security/eASIC

Published

2021

23. Design of multiplicative watermarking against covert attacks

Author

Gallo, Alexander J., Anand, Sribalaji C., Teixeira, André M. H., and Ferrari, Riccardo M. G.

Subjects

FOS: Computer and information sciences, Computer Science - Cryptography and Security, FOS: Electrical engineering, electronic engineering, information engineering, Systems and Control (eess.SY), Electrical Engineering and Systems Science - Systems and Control, Cryptography and Security (cs.CR)

Abstract

This paper addresses the design of an active cyberattack detection architecture based on multiplicative watermarking, allowing for detection of covert attacks. We propose an optimal design problem, relying on the so-called output-to-output l2-gain, which characterizes the maximum gain between the residual output of a detection scheme and some performance output. Although optimal, this control problem is non-convex. Hence, we propose an algorithm to design the watermarking filters by solving the problem suboptimally via LMIs. We show that, against covert attacks, the output-to-output l2-gain is unbounded without watermarking, and we provide a sufficient condition for boundedness in the presence of watermarks., Comment: 6 page conference paper accepted to the 60th IEEE Conference on Decision and Control

Published

2021

24. A Wearables-Driven Attack on Examination Proctoring

Author

Heya, Tasnia Ashrafi, Serwadda, Abdul, Griswold-Steiner, Isaac, and Matovu, Richard

Subjects

FOS: Computer and information sciences, Computer Science - Cryptography and Security, Computer Science - Human-Computer Interaction, Cryptography and Security (cs.CR), Human-Computer Interaction (cs.HC)

Abstract

Multiple choice questions are at the heart of many standardized tests and examinations at academic institutions allover the world. In this paper, we argue that recent advancements in sensing and human-computer interaction expose these types of questions to highly effective attacks that today's proctor's are simply not equipped to detect. We design one such attack based on a protocol of carefully orchestrated wrist movements combined with haptic and visual feedback mechanisms designed for stealthiness. The attack is done through collaboration between a knowledgeable student (i.e., a mercenary) and a weak student (i.e., the beneficiary) who depends on the mercenary for solutions. Through a combination of experiments and theoretical modeling, we show the attack to be highly effective. The paper makes the case for an outright ban on all tech gadgets inside examination rooms, irrespective of whether their usage appears benign to the plain eye., Comment: Published in 2021 18th International Conference on Privacy, Security and Trust (PST)

Published

2021

25. OACAL: Finding Module-consistent Specifications to Secure Systems from Weakened User Obligations

Author

Jiang, Pengcheng and Tei, Kenji

Subjects

FOS: Computer and information sciences, Computer Science - Machine Learning, Computer Science - Cryptography and Security, Formal Languages and Automata Theory (cs.FL), Computer Science - Formal Languages and Automata Theory, Cryptography and Security (cs.CR), Machine Learning (cs.LG)

Abstract

Users interacting with a system through UI are typically obliged to perform their actions in a pre-determined order, to successfully achieve certain functional goals. However, such obligations are often not followed strictly by users, which may lead to the violation to security properties, especially in security-critical systems. To improve the security with the awareness of unexpected user behaviors, a system can be redesigned to a more robust one by changing the order of actions in its specification. Meanwhile, we anticipate that the functionalities would remain consistent following the modifications. In this paper, we propose an efficient algorithm to automatically produce specification revisions tackling the attack scenarios caused by weakened user obligations. By our algorithm, all the revisions would be generated to maintain the integrity of the functionalities using a novel recomposition approach. Then, the eligible revisions that can satisfy the security requirements would be efficiently spotted by a hybrid approach combining model checking and machine learning techniques. We evaluate our algorithm by comparing its performance with a state-of-the-art approach regarding their coverage and searching speed of the desirable revisions., Comment: 9 pages, 15 figures, 3 tables. This paper has been accepted for presentation at the 2021 IEEE Symposium Series on Computational Intelligence (SSCI) (SSCI 2021) and for publication in the conference proceedings published by IEEE

Published

2021

26. NFTCert: NFT-Based Certificates With Online Payment Gateway

Author

Zhao, Xiongfei and Si, Yain-Whar

Subjects

FOS: Computer and information sciences, Computer Science - Cryptography and Security, Cryptography and Security (cs.CR)

Abstract

Nowadays, academic certificates are still widely issued in paper format. Traditional certificate verification is a lengthy, manually intensive, and sometimes expensive process. In this paper, we propose a novel NFT-based certificate framework called NFTCert, which enables the establishment of links between a legitimate certificate and its owner through a Blockchain. In this paper, we describe the implementation of the NFTCert framework, including schema definition, minting, verification, and revocation of NFT-based certificates. We also introduce a payment gateway into the minting process, which enables NFTCert to be used by a wider audience. Therefore, participants of NFTCerts do not need to rely on cryptocurrency for transactions. All in all, the proposed framework is designed to achieve usability, authenticity, confidentiality, transparency, and availability properties when it is compared to existing Blockchain-based systems.

Published

2021

27. Adapting Membership Inference Attacks to GNN for Graph Classification: Approaches and Implications

Author

Wu, B, Yang, X, Pan, S, and Yuan, X

Subjects

FOS: Computer and information sciences, Computer Science - Machine Learning, Computer Science - Cryptography and Security, Cryptography and Security (cs.CR), Machine Learning (cs.LG)

Abstract

Graph Neural Networks (GNNs) are widely adopted to analyse non-Euclidean data, such as chemical networks, brain networks, and social networks, modelling complex relationships and interdependency between objects. Recently, Membership Inference Attack (MIA) against GNNs raises severe privacy concerns, where training data can be leaked from trained GNN models. However, prior studies focus on inferring the membership of only the components in a graph, e.g., an individual node or edge. How to infer the membership of an entire graph record is yet to be explored. In this paper, we take the first step in MIA against GNNs for graph-level classification. Our objective is to infer whether a graph sample has been used for training a GNN model. We present and implement two types of attacks, i.e., training-based attacks and threshold-based attacks from different adversarial capabilities. We perform comprehensive experiments to evaluate our attacks in seven real-world datasets using five representative GNN models. Both our attacks are shown effective and can achieve high performance, i.e., reaching over 0.7 attack F1 scores in most cases. Furthermore, we analyse the implications behind the MIA against GNNs. Our findings confirm that GNNs can be even more vulnerable to MIA than the models with non-graph structures. And unlike the node-level classifier, MIAs on graph-level classification tasks are more co-related with the overfitting level of GNNs rather than the statistic property of their training graphs., The short version of this paper has been published in the IEEE International Conference on Data Mining (ICDM) 2021

Published

2021

28. The Evolving Path of 'the Right to Be Left Alone' - When Privacy Meets Technology

Author

Iezzi, Michela

Subjects

FOS: Computer and information sciences, Computer Science - Computers and Society, Computer Science - Cryptography and Security, Computers and Society (cs.CY), Data_MISCELLANEOUS, ComputingMilieux_COMPUTERSANDSOCIETY, Cryptography and Security (cs.CR)

Abstract

This paper deals with the hot, evergreen topic of the relationship between privacy and technology. We give extensive motivation for why the privacy debate is still alive for private citizens and institutions, and we investigate the privacy concept. This paper proposes a novel vision of the privacy ecosystem, introducing privacy dimensions, the related users' expectations, the privacy violations, and the changing factors. We provide a critical assessment of the Privacy by Design paradigm, strategies, tactics, patterns, and Privacy-Enhancing Technologies, highlighting the current open issues. We believe that promising approaches to tackle the privacy challenges move in two directions: (i) identification of effective privacy metrics; and (ii) adoption of formal tools to design privacy-compliant applications., Accepted at IEEE International Conference on Trust, Privacy and Security in Intelligent Systems, and Applications 2021 (IEEE TPS-ISA 2021)

Published

2021

29. Metaverse: Security and Privacy Issues

Author

R. Di Pietro and S. Cresci

Subjects

Social and Information Networks (cs.SI), FOS: Computer and information sciences, Facebook, Computer Science - Cryptography and Security, metamedia, Computer Science - Social and Information Networks, security, privacy, singularity, multiverse, Computer Science - Computers and Society, metaverse, Computers and Society (cs.CY), Meta, Cryptography and Security (cs.CR)

Abstract

The metaverse promises a host of bright opportunities for business, economics, and society. Though, a number of critical aspects are still to be considered and the analysis of their impact is almost non-existent. In this paper, we provide several contributions. We start by analysing the foundations of the metaverse, later we focus on the novel privacy and security issues introduced by this new paradigm, and finally we broaden the scope of the contribution highlighting some of the far-reaching yet logical implications of the metaverse on a number of domains, not all of them in tech. Throughout the paper, we also discuss possible research directions. We believe that the provided holistic view on the foundations, technology, and issues related to the metaverse-with a focus on security and privacy-, other than being an interesting contribution on its own, could also pave the way for a few multidisciplinary research avenues., The 3rd IEEE International Conference on Trust, Privacy and Security in Intelligent Systems and Applications (TPS'21)

Published

2021

30. Learning to Detect: A Data-driven Approach for Network Intrusion Detection

Author

Zachary Tauscher, Yushan Jiang, Kai Zhang, Jian Wang, and Houbing Song

Subjects

FOS: Computer and information sciences, Computer Science - Machine Learning, Computer Science - Cryptography and Security, Cryptography and Security (cs.CR), Machine Learning (cs.LG)

Abstract

With massive data being generated daily and the ever-increasing interconnectivity of the world's Internet infrastructures, a machine learning based intrusion detection system (IDS) has become a vital component to protect our economic and national security. In this paper, we perform a comprehensive study on NSL-KDD, a network traffic dataset, by visualizing patterns and employing different learning-based models to detect cyber attacks. Unlike previous shallow learning and deep learning models that use the single learning model approach for intrusion detection, we adopt a hierarchy strategy, in which the intrusion and normal behavior are classified firstly, and then the specific types of attacks are classified. We demonstrate the advantage of the unsupervised representation learning model in binary intrusion detection tasks. Besides, we alleviate the data imbalance problem with SVM-SMOTE oversampling technique in 4-class classification and further demonstrate the effectiveness and the drawback of the oversampling mechanism with a deep neural network as a base model., Accepted paper in the IEEE 40th International Performance Computing and Communications Conference - IPCCC 2021

Published

2021

31. Performance Analysis of Zero-Trust multi-cloud

Author

Pat McCarthy, Simone Rodigari, Martin McCarry, Donna O'Shea, and Sean McSweeney

Subjects

FOS: Computer and information sciences, Service (systems architecture), Computer Science - Cryptography and Security, business.industry, Computer science, Cryptography, Cloud computing, Computer security model, Encryption, Workflow, Forwarding plane, Code (cryptography), business, Cryptography and Security (cs.CR), Computer network

Abstract

Zero Trust security model permits to secure cloud native applications while encrypting all network communication, authenticating, and authorizing every request. The service mesh can enable Zero Trust using a side-car proxy without changes to the application code. To the best of our knowledge, no previous work has provided a performance analysis of Zero Trust in a multi-cloud environment. This paper proposes a multi-cloud framework and a testing workflow to analyze performance of the data plane under load and the impact on the control plane, when Zero Trust is enabled. The results of preliminary tests show that Istio has reduced latency variability in responding to sequential HTTP requests. Results also reveal that the overall CPU and memory usage can increase based on service mesh configuration and the cloud environment., This paper was submitted for the IEEE CLOUD 2021 Conference and is currently being reviewed

Published

2021

32. A Tree-based Construction for Verifiable Diplomas with Issuer Transparency

Author

Rodrigo Q. Saramago, Hein Meling, Leander Jehl, and Vero Estrada-Galiñanes

Subjects

FOS: Computer and information sciences, Computer Science - Cryptography and Security, Process (engineering), business.industry, Computer science, Cryptography, Certification, Computer security, computer.software_genre, Transparency (behavior), Digital signature, Issuer, Verifiable secret sharing, business, Cryptography and Security (cs.CR), computer, Vulnerability (computing)

Abstract

Still to this day, academic credentials are primarily paper-based, and the process to verify the authenticity of such documents is costly, time-consuming, and prone to human error and fraud. Digitally signed documents facilitate a cost-effective verification process. However, vulnerability to fraud remains due to reliance on centralized authorities that lack full transparency. In this paper, we present the mechanisms we designed to create secure and machine-verifiable academic credentials. Our protocol models a diploma as an evolving set of immutable credentials. The credentials are built as a tree-based data structure with linked time-stamping, where portions of credentials are distributed over a set of smart contracts. Our design prevents fraud of diplomas and eases the detection of degree mills, while increasing the transparency and trust in the issuer's procedures. Our evaluation shows that our solution offers a certification system with strong cryptographic security and imposes a high level of transparency of the certification process. We achieve these benefits with acceptable costs compared to existing solutions that lack such transparency.

Published

2021

33. TransMIA: Membership Inference Attacks Using Transfer Shadow Training

Author

Yusuke Kawamoto, Seira Hidano, and Takao Murakami

Subjects

FOS: Computer and information sciences, Computer Science - Machine Learning, Computer Science - Cryptography and Security, Computer science, business.industry, Computer Vision and Pattern Recognition (cs.CV), Deep learning, Computer Science - Computer Vision and Pattern Recognition, Inference, Construct (python library), Adversary, Machine learning, computer.software_genre, Machine Learning (cs.LG), Transfer (computing), Shadow, Entropy (information theory), Artificial intelligence, Transfer of learning, business, Cryptography and Security (cs.CR), computer

Abstract

Transfer learning has been widely studied and gained increasing popularity to improve the accuracy of machine learning models by transferring some knowledge acquired in different training. However, no prior work has pointed out that transfer learning can strengthen privacy attacks on machine learning models. In this paper, we propose TransMIA (Transfer learning-based Membership Inference Attacks), which use transfer learning to perform membership inference attacks on the source model when the adversary is able to access the parameters of the transferred model. In particular, we propose a transfer shadow training technique, where an adversary employs the parameters of the transferred model to construct shadow models, to significantly improve the performance of membership inference when a limited amount of shadow training data is available to the adversary. We evaluate our attacks using two real datasets, and show that our attacks outperform the state-of-the-art that does not use our transfer shadow training technique. We also compare four combinations of the learning-based/entropy-based approach and the fine-tuning/freezing approach, all of which employ our transfer shadow training technique. Then we examine the performance of these four approaches based on the distributions of confidence values, and discuss possible countermeasures against our attacks., Comment: IJCNN 2021 conference paper

Published

2021

34. Open-Pub: A Transparent yet Privacy-Preserving Academic Publication System based on Blockchain

Author

Zhiguo Wan, Zhangshuang Guan, and Yan Zhou

Subjects

FOS: Computer and information sciences, Scheme (programming language), Computer Science - Cryptography and Security, Blockchain, Source code, business.industry, Process (engineering), Computer science, media_common.quotation_subject, Internet privacy, Computer Science - Digital Libraries, Group signature, Misconduct, Computer Science - Distributed, Parallel, and Cluster Computing, Digital Libraries (cs.DL), Distributed, Parallel, and Cluster Computing (cs.DC), business, Cryptography and Security (cs.CR), computer, Anonymity, computer.programming_language, TRACE (psycholinguistics), media_common

Abstract

Academic publications of latest research results are crucial to advance the development of all disciplines. However, there are several severe disadvantages in current academic publication systems. The first is the misconduct during the publication process due to the opaque paper review process. An anonymous reviewer may give biased comments to a paper without being noticed because the comments are seldom published for evaluation. Second, access to research papers is restricted to only subscribers, and even the authors cannot access their own papers. To address the above problems, we propose Open-Pub, a decentralized, transparent yet privacy-preserving academic publication scheme using the blockchain technology. In Open-Pub, we first design a threshold identity-based group signature (TIBGS) that protects identities of signers using verifiable secret sharing. Then we develop a strong double-blind mechanism to protect the identities of authors and reviewers. With this strong double-blind mechanism, authors can choose to submit papers anonymously, and validators distribute papers anonymously to reviewers on the blockchain according to their research interests. This process is publicly recorded and traceable on the blockchain so as to realize transparent peer preview. To evaluate its efficiency, we implement Open-Pub based on Ethereum and conduct comprehensive experiments to evaluate its performance, including computation cost and processing delay. The experiment results show that Open-Pub is highly efficient in computation and processing anonymous transactions., Comment: Protoytpe implemented and detailed expeirmental performance results

Published

2021

35. Toward Explainable Users: Using NLP to Enable AI to Understand Users’ Perceptions of Cyber Attacks

Author

Luis Felipe Gutierrez, Faranak Abri, Keith S. Jones, Chaitra T. Kulkarni, and Akbar Siami Namin

Subjects

FOS: Computer and information sciences, Computer Science - Cryptography and Security, Computer Science - Artificial Intelligence, business.industry, Computer science, Computer Science - Human-Computer Interaction, Context (language use), Variation (game tree), computer.software_genre, Semantics, Human-Computer Interaction (cs.HC), Comprehension, Artificial Intelligence (cs.AI), Card sorting, Cyber-attack, Artificial intelligence, business, Cryptography and Security (cs.CR), computer, Natural language processing, Natural language, Sentence

Abstract

To understand how end-users conceptualize consequences of cyber security attacks, we performed a card sorting study, a well-known technique in Cognitive Sciences, where participants were free to group the given consequences of chosen cyber attacks into as many categories as they wished using rationales they see fit. The results of the open card sorting study showed a large amount of inter-participant variation making the research team wonder how the consequences of security attacks were comprehended by the participants. As an exploration of whether it is possible to explain user's mental model and behavior through Artificial Intelligence (AI) techniques, the research team compared the card sorting data with the outputs of a number of Natural Language Processing (NLP) techniques with the goal of understanding how participants perceived and interpreted the consequences of cyber attacks written in natural languages. The results of the NLP-based exploration methods revealed an interesting observation implying that participants had mostly employed checking individual keywords in each sentence to group cyber attack consequences together and less considered the semantics behind the description of consequences of cyber attacks. The results reported in this paper are seemingly useful and important for cyber attacks comprehension from user's perspectives. To the best of our knowledge, this paper is the first introducing the use of AI techniques in explaining and modeling users' behavior and their perceptions about a context. The novel idea introduced here is about explaining users using AI., Comment: 20 pages, 3 figures, COMPSAC'21

Published

2021

36. Automated Malware Design for Cyber Physical Systems

Author

Ashraf Tantawy

Subjects

FOS: Computer and information sciences, Reverse engineering, Computer Science - Cryptography and Security, Computer science, Payload, Cyber-physical system, Physical system, Fault tolerance, Systems and Control (eess.SY), computer.software_genre, Computer security, Electrical Engineering and Systems Science - Systems and Control, FOS: Electrical engineering, electronic engineering, information engineering, Malware, Heuristics, Resilience (network), Cryptography and Security (cs.CR), computer

Abstract

The design of attacks for cyber physical systems is critical to assess CPS resilience at design time and run-time, and to generate rich datasets from testbeds for research. Attacks against cyber physical systems distinguish themselves from IT attacks in that the main objective is to harm the physical system. Therefore, both cyber and physical system knowledge are needed to design such attacks. The current practice to generate attacks either focuses on the cyber part of the system using IT cyber security existing body of knowledge, or uses heuristics to inject attacks that could potentially harm the physical process. In this paper, we present a systematic approach to automatically generate integrity attacks from the CPS safety and control specifications, without knowledge of the physical system or its dynamics. The generated attacks violate the system operational and safety requirements, hence present a genuine test for system resilience. We present an algorithm to automate the malware payload development. Several examples are given throughout the paper to illustrate the proposed approach.

Published

2021

37. Efficient Algorithms for Quantitative Attack Tree Analysis

Author

Carlos E. Budde and Mariëlle Stoelinga

Subjects

FOS: Computer and information sciences, Computer Science - Cryptography and Security, Theoretical computer science, Formal-methods, Computational complexity theory, Computer science, Attack tree, G.2.3, Attack-trees, Attack-trees, Security-metrics, BDD-algorithms, Computational-complexity, Formal-methods, BDD-algorithms, Computer Science - Data Structures and Algorithms, Software Science, Data Structures and Algorithms (cs.DS), Attribute domain, Concrete security, Computer Science::Cryptography and Security, Computational-complexity, Fault tree analysis, Directed graph, 16. Peace & justice, Directed acyclic graph, Formal methods, Security-metrics, F.2.2, F.1.0, Cryptography and Security (cs.CR)

Abstract

Numerous analysis methods for quantitative attack tree analysis have been proposed. These algorithms compute relevant security metrics, i.e. performance indicators that quantify how good the security of a system is, such as the most likely attack, the cheapest, or the most damaging one. This paper classifies attack trees in two dimensions: proper trees vs. directed acyclic graphs (i.e. with shared subtrees); and static vs. dynamic gates. For each class, we propose novel algorithms that work over a generic attribute domain, encompassing a large number of concrete security metrics defined on the attack tree semantics. We also analyse the computational complexity of our methods., Comment: Public version of CSF'21 paper, including an appendix with all proofs of lemmas and theorems

Published

2021

38. Relational Analysis of Sensor Attacks on Cyber-Physical Systems

Author

Jian Xiang, Stephen Chong, and Nathan Fulton

Subjects

FOS: Computer and information sciences, Computer Science - Cryptography and Security, Theoretical computer science, Computer science, Robustness (computer science), Cyber-physical system, Systems design, Equivalence relation, State (computer science), Formal methods, Cryptography and Security (cs.CR), Equivalence (measure theory), Grey relational analysis

Abstract

Cyber-physical systems, such as self-driving cars or autonomous aircraft, must defend against attacks that target sensor hardware. Analyzing system design can help engineers understand how a compromised sensor could impact the system's behavior; however, designing security analyses for cyber-physical systems is difficult due to their combination of discrete dynamics, continuous dynamics, and nondeterminism. This paper contributes a framework for modeling and analyzing sensor attacks on cyber-physical systems, using the formalism of hybrid programs. We formalize and analyze two relational properties of a system's robustness. These relational properties respectively express (1) whether a system's safety property can be influenced by sensor attacks, and (2) whether a system's high-integrity state can be affected by sensor attacks. We characterize these relational properties by defining an equivalence relation between a system under attack and the original unattacked system. That is, the system satisfies the robustness properties if executions of the attacked system are appropriately related to executions of the unattacked system. We present two techniques for reasoning about the equivalence relation and thus proving the relational properties for a system. One proof technique decomposes large proof obligations to smaller proof obligations. The other proof technique adapts the self-composition technique from the literature on secure information-flow, allowing us to reduce reasoning about the equivalence of two systems to reasoning about properties of a single system. This technique allows us to reuse existing tools for reasoning about properties of hybrid programs, but is challenging due to the combination of discrete dynamics, continuous dynamics, and nondeterminism. To evaluate, we present three case studies motivated by real design flaws in existing cyber-physical systems., Comment: This is an extended version of the paper with the same title that appeared in the 2021 Computer Security Foundations Symposium

Published

2021

39. An Axiomatic Approach to Detect Information Leaks in Concurrent Programs

Author

Sandip Ghosal and R. K. Shyamasundar

Subjects

FOS: Computer and information sciences, Computer Science - Programming Languages, Computer Science - Cryptography and Security, Correctness, Computer science, Programming language, Control (management), Axiomatic system, Context (language use), Security context, computer.software_genre, Timing attack, TheoryofComputation_LOGICSANDMEANINGSOFPROGRAMS, Concurrent computing, Sleep (system call), Cryptography and Security (cs.CR), computer, Programming Languages (cs.PL)

Abstract

Realizing flow security in a concurrent environment is extremely challenging, primarily due to non-deterministic nature of execution. The difficulty is further exacerbated from a security angle if sequential threads disclose control locations through publicly observable statements like print, sleep, delay, etc. Such observations lead to internal and external timing attacks. Inspired by previous works that use classical Hoare style proof systems for establishing correctness of distributed (real-time) programs, in this paper, we describe a method for finding information leaks in concurrent programs through the introduction of leaky assertions at observable program points. Specifying leaky assertions akin to classic assertions, we demonstrate how information leaks can be detected in a concurrent context. To our knowledge, this is the first such work that enables integration of different notions of non-interference used in functional and security context. While the approach is sound and relatively complete in the classic sense, it enables the use of algorithmic techniques that enable programmers to come up with leaky assertions that enable checking for information leaks in sensitive applications., 5 pages, 2 figures; accepted paper for the 43rd International Conference on Software Engineering (ICSE 2021), Track: New Ideas and Emerging Results (NIER)

Published

2021

40. Tracing Vulnerable Code Lineage

Author

Kalvin Eng, David Reid, Christopher Bogart, and Adam Tutko

Subjects

FOS: Computer and information sciences, Computer Science - Cryptography and Security, Lineage (genetic), Computer science, Code reuse, Vulnerability, Open source software, Tracing, Computer security, computer.software_genre, Software Engineering (cs.SE), Set (abstract data type), Computer Science - Software Engineering, Open source, Code (cryptography), Cryptography and Security (cs.CR), computer

Abstract

This paper presents results from the MSR 2021 Hackathon. Our team investigates files/projects that contain known security vulnerabilities and how widespread they are throughout repositories in open source software. These security vulnerabilities can potentially be propagated through code reuse even when the vulnerability is fixed in different versions of the code. We utilize the World of Code [1] infrastructure to discover file-level duplication of code from a nearly complete collection of open source software. This paper describes a method and set of tools to find all open source projects that use known vulnerable files and any previous revisions of those files.

Published

2021

41. Measuring Decentralization in Bitcoin and Ethereum using Multiple Metrics and Granularities

Author

Qinwei Lin, Xianhai Chen, Xifeng Zhao, and Chao Li

Subjects

FOS: Computer and information sciences, Measure (data warehouse), Computer Science - Cryptography and Security, 020205 medical informatics, Gini coefficient, Computer science, business.industry, Databases (cs.DB), 02 engineering and technology, computer.software_genre, Decentralization, Core (game theory), Market research, Information engineering, Computer Science - Databases, Sliding window protocol, Multiple time dimensions, 0202 electrical engineering, electronic engineering, information engineering, 020201 artificial intelligence & image processing, Data mining, business, Cryptography and Security (cs.CR), computer

Abstract

Decentralization has been widely acknowledged as a core virtue of blockchains. However, in the past, there have been few measurement studies on measuring and comparing the actual level of decentralization between existing blockchains using multiple metrics and granularities. This paper presents a new comparison study of the degree of decentralization in Bitcoin and Ethereum, the two most prominent blockchains, with various decentralization metrics and different granularities within the time dimension. Specifically, we measure the degree of decentralization in the two blockchains during 2019 by computing the distribution of mining power with three metrics (Gini coefficient, Shannon entropy, and Nakamoto coefficient) as well as three granularities (days, weeks, and months). Our measurement results with different metrics and granularities reveal the same trend that, compared with each other, the degree of decentralization in Bitcoin is higher, while the degree of decentralization in Ethereum is more stable. To obtain the cross-interval information missed in the fixed window based measurements, we propose the sliding window based measurement approach. The corresponding results demonstrate that the use of sliding windows could reveal additional cross-interval information overlooked by the fixed window based measurements, thus enhancing the effectiveness of measuring decentralization in terms of continuous trends and abnormal situations. We believe that the methodologies and findings in this paper can facilitate future studies of decentralization in blockchains.

Published

2021

42. Super-convergence and Differential Privacy: Training faster with better privacy guarantees

Author

Christian Fischer Pedersen, Christian Marius Lillelund, Friedrich Dormann, and Osvald Frisk

Subjects

FOS: Computer and information sciences, Computer Science - Machine Learning, Computer Science - Cryptography and Security, Speedup, Artificial neural network, business.industry, Computer science, Usability, Machine learning, computer.software_genre, Machine Learning (cs.LG), Robustness (computer science), Convergence (routing), Differential privacy, Data Protection Act 1998, Artificial intelligence, business, Set (psychology), Cryptography and Security (cs.CR), computer

Abstract

The combination of deep neural networks and Differential Privacy has been of increasing interest in recent years, as it offers important data protection guarantees to the individuals of the training datasets used. However, using Differential Privacy in the training of neural networks comes with a set of shortcomings, like a decrease in validation accuracy and a significant increase in the use of resources and time in training. In this paper, we examine super-convergence as a way of greatly increasing training speed of differentially private neural networks, addressing the shortcoming of high training time and resource use. Super-convergence allows for acceleration in network training using very high learning rates, and has been shown to achieve models with high utility in orders of magnitude less training iterations than conventional ways. Experiments in this paper show that this order-of-magnitude speedup can also be seen when combining it with Differential Privacy, allowing for higher validation accuracies in much fewer training iterations compared to non-private, non-super convergent baseline models. Furthermore, super-convergence is shown to improve the privacy guarantees of private models., Comment: (To be) Published and presented at the 55th Annual Conference on Information Sciences and Systems (CISS), 7 pages, 4 figures

Published

2021

43. Damaged Fingerprint Recognition by Convolutional Long Short-Term Memory Networks for Forensic Purposes

Author

Mohamed Mejri and Jaouhar Fattahi

Subjects

FOS: Computer and information sciences, Focus (computing), Computer Science - Cryptography and Security, Recall, Computer science, business.industry, Computer Vision and Pattern Recognition (cs.CV), Deep learning, Computer Science - Computer Vision and Pattern Recognition, 020207 software engineering, Pattern recognition, 02 engineering and technology, Fingerprint recognition, Long short term memory, Recurrent neural network, 0202 electrical engineering, electronic engineering, information engineering, 020201 artificial intelligence & image processing, Artificial intelligence, business, Cryptography and Security (cs.CR)

Abstract

Fingerprint recognition is often a game-changing step in establishing evidence against criminals. However, we are increasingly finding that criminals deliberately alter their fingerprints in a variety of ways to make it difficult for technicians and automatic sensors to recognize their fingerprints, making it tedious for investigators to establish strong evidence against them in a forensic procedure. In this sense, deep learning comes out as a prime candidate to assist in the recognition of damaged fingerprints. In particular, convolution algorithms. In this paper, we focus on the recognition of damaged fingerprints by Convolutional Long Short-Term Memory networks. We present the architecture of our model and demonstrate its performance which exceeds 95% accuracy, 99% precision, and approaches 95% recall and 99% AUC., Comment: This paper was accepted, on December 5, 2020, for publication and oral presentation at the 2021 IEEE 5th International Conference on Cryptography, Security and Privacy (CSP 2021) to be held in Zhuhai, China during January 8-10, 2021 and hosted by Beijing Normal University (Zhuhai)

Published

2021

44. SpaML: a Bimodal Ensemble Learning Spam Detector based on NLP Techniques

Author

Jaouhar Fattahi and Mohamed Mejri

Subjects

FOS: Computer and information sciences, Computer Science - Cryptography and Security, business.industry, Computer science, Detector, Cryptography, 02 engineering and technology, computer.software_genre, Ensemble learning, Term (time), Set (abstract data type), ComputingMethodologies_PATTERNRECOGNITION, Bag-of-words model, 020204 information systems, Classifier (linguistics), 0202 electrical engineering, electronic engineering, information engineering, 020201 artificial intelligence & image processing, Artificial intelligence, business, Cryptography and Security (cs.CR), computer, Natural language processing

Abstract

In this paper, we put forward a new tool, called SpaML, for spam detection using a set of supervised and unsupervised classifiers, and two techniques imbued with Natural Language Processing (NLP), namely Bag of Words (BoW) and Term Frequency-Inverse Document Frequency (TF-IDF). We first present the NLP techniques used. Then, we present our classifiers and their performance on each of these techniques. Then, we present our overall Ensemble Learning classifier and the strategy we are using to combine them. Finally, we present the interesting results shown by SpaML in terms of accuracy and precision., This paper was accepted, on October 13, 2020, for pulication and oral presentation at the 2021 IEEE 5th International Conference on Cryptography, Security and Privacy (CSP 2021) to be held in Zhuhai, China during January 8-10, 2021 and hosted by Beijing Normal University (Zhuhai)

Published

2021

45. Reinforcing Cybersecurity Hands-on Training With Adaptive Learning

Author

Seda, Pavel, Vykopal, Jan, Švábenský, Valdemar, and Čeleda, Pavel

Subjects

FOS: Computer and information sciences, Computer Science - Computers and Society, Computer Science - Cryptography and Security, Computers and Society (cs.CY), adaptive learning, case study, cybersecurity, evaluation, tutor model, ComputingMilieux_COMPUTERSANDEDUCATION, Cryptography and Security (cs.CR), K.3.2

Abstract

This paper presents how learning experience influences students' capability to learn and their motivation for learning. Although each student is different, standard instruction methods do not adapt to individuals. Adaptive learning reverses this practice and attempts to improve the student experience. While adaptive learning is well-established in programming, it is rarely used in cybersecurity education. This paper is one of the first works investigating adaptive learning in security training. First, we analyze the performance of 95 students in 12 training sessions to understand the limitations of the current training practice. Less than half of the students completed the training without displaying a solution, and only in two sessions, all students completed all phases. Then, we simulate how students would proceed in one of the past training sessions if it would offer more paths of various difficulty. Based on this simulation, we propose a novel tutor model for adaptive training, which considers students' proficiency before and during an ongoing training session. The proficiency is assessed using a pre-training questionnaire and various in-training metrics. Finally, we conduct a study with 24 students and new training using the proposed tutor model and adaptive training format. The results show that the adaptive training does not overwhelm students as the original static training. Adaptive training enables students to enter several alternative training phases with lower difficulty than the original training. The proposed format is not restricted to a particular training. Therefore, it can be applied to practicing any security topic or even in related fields, such as networking or operating systems. Our study indicates that adaptive learning is a promising approach for improving the student experience in security education. We also highlight implications for educational practice., Comment: IEEE FIE 2021 conference, 9 pages, 6 figures, 4 tables

Published

2021

46. Safety-Critical Online Control with Adversarial Disturbances

Author

Bhaskar Ramasubramanian, Baicen Xiao, Radha Poovendran, and Linda Bushnell

Subjects

FOS: Computer and information sciences, Computer Science - Machine Learning, 0209 industrial biotechnology, Mathematical optimization, Computer Science - Cryptography and Security, Dynamical systems theory, Computer science, 020209 energy, Time horizon, Systems and Control (eess.SY), 02 engineering and technology, Electrical Engineering and Systems Science - Systems and Control, Upper and lower bounds, Machine Learning (cs.LG), 020901 industrial engineering & automation, Control theory, FOS: Electrical engineering, electronic engineering, information engineering, FOS: Mathematics, 0202 electrical engineering, electronic engineering, information engineering, Riccati equation, Process control, Mathematics - Optimization and Control, Linear system, Regret, Kalman filter, Constraint (information theory), Optimization and Control (math.OC), Norm (mathematics), Cryptography and Security (cs.CR)

Abstract

This paper studies the control of safety-critical dynamical systems in the presence of adversarial disturbances. We seek to synthesize state-feedback controllers to minimize a cost incurred due to the disturbance, while respecting a safety constraint. The safety constraint is given by a bound on an H-inf norm, while the cost is specified as an upper bound on the H-2 norm of the system. We consider an online setting where costs at each time are revealed only after the controller at that time is chosen. We propose an iterative approach to the synthesis of the controller by solving a modified discrete-time Riccati equation. Solutions of this equation enforce the safety constraint. We compare the cost of this controller with that of the optimal controller when one has complete knowledge of disturbances and costs in hindsight. We show that the regret function, which is defined as the difference between these costs, varies logarithmically with the time horizon. We validate our approach on a process control setup that is subject to two kinds of adversarial attacks., Paper accepted to the Conference on Decision and Control (CDC), 2020

Published

2020

47. Hardware/Software Obfuscation against Timing Side-channel Attack on a GPU

Author

David Kaeli, Yunsi Fei, and Elmira Karimi

Subjects

FOS: Computer and information sciences, Computer Science - Cryptography and Security, business.industry, Computer science, 05 social sciences, 050801 communication & media studies, 0102 computer and information sciences, Encryption, 01 natural sciences, Attack model, 0508 media and communications, 010201 computation theory & mathematics, Embedded system, Hardware Architecture (cs.AR), Key (cryptography), Cache, Side channel attack, Computer Science - Hardware Architecture, business, Cryptography and Security (cs.CR), Access time, Block (data storage), Vulnerability (computing)

Abstract

GPUs are increasingly being used in security applications, especially for accelerating encryption/decryption. While GPUs are an attractive platform in terms of performance, the security of these devices raises a number of concerns. One vulnerability is the data-dependent timing information, which can be exploited by adversary to recover the encryption key. Memory system features are frequently exploited since they create detectable timing variations. In this paper, our attack model is a coalescing attack, which leverages a critical GPU microarchitectural feature -- the coalescing unit. As multiple concurrent GPU memory requests can refer to the same cache block, the coalescing unit collapses them into a single memory transaction. The access time of an encryption kernel is dependent on the number of transactions. Correlation between a guessed key value and the associated timing samples can be exploited to recover the secret key. In this paper, a series of hardware/software countermeasures are proposed to obfuscate the memory timing side channel, making the GPU more resilient without impacting performance. Our hardware-based approach attempts to randomize the width of the coalescing unit to lower the signal-to-noise ratio. We present a hierarchical Miss Status Holding Register (MSHR) design that can merge transactions across different warps. This feature boosts performance, while, at the same time, secures the execution. We also present a software-based approach to permute the organization of critical data structures, significantly changing the coalescing behavior and introducing a high degree of randomness. Equipped with our new protections, the effort to launch a successful attack is increased up to 1433X . 178X, while also improving encryption/decryption performance up to 7%., 2020 IEEE International Symposium on Hardware Oriented Security and Trust (HOST)

Published

2020

48. A survey on blockchain & cloud integration

Author

Soumik Sarker, Sadek Ferdous, and Arnob Kumar Saha

Subjects

FOS: Computer and information sciences, Service (systems architecture), Computer Science - Cryptography and Security, Blockchain, Exploit, Emerging technologies, business.industry, Computer science, Information technology, 020206 networking & telecommunications, Cloud computing, 02 engineering and technology, Data science, Domain (software engineering), cs.CR, Transparency (graphic), 0202 electrical engineering, electronic engineering, information engineering, 020201 artificial intelligence & image processing, business, Cryptography and Security (cs.CR)

Abstract

Blockchain is one of the emerging technologies with the potential to disrupt many application domains. Cloud is an on-demand service paradigm facilitating the availability of shared resources for data storage and computation. In recent years, the integration of blockchain and cloud has received significant attention for ensuring efficiency, transparency, security and even for offering better cloud services in the form of novel service models. In order to exploit the full potential of blockchain-cloud integration, it is essential to have a clear understanding on the existing works within this domain. To facilitate this, there have been several survey papers, however, none of them covers the aspect of blockchain-cloud integration from a service-oriented perspective. This paper aims to fulfil this gap by providing a service oriented review of blockchain-cloud integration. Indeed, in this survey, we explore different service models into which blockchain has been integrated. For each service model, we review the existing works and present a comparative analysis so as to offer a clear and concise view in each category., Accepted for publication in the 23rd International Conference on Computer and Information Technology (ICCIT), 2020

Published

2020

49. Dynamic Multi-level Privilege Control in Behavior-based Implicit Authentication Systems Leveraging Mobile Devices

Author

Yingyuan Yang, Jinyuan Stella Sun, Yanhui Guo, and Xueli Huang

Subjects

FOS: Computer and information sciences, Password, Scheme (programming language), 021110 strategic, defence & security studies, Authentication, Computer Science - Cryptography and Security, Computer science, business.industry, 0211 other engineering and technologies, 020207 software engineering, 02 engineering and technology, Privilege (computing), Rejection rate, Rendering (computer graphics), 0202 electrical engineering, electronic engineering, information engineering, Leverage (statistics), business, Cryptography and Security (cs.CR), Mobile device, computer, Computer network, computer.programming_language

Abstract

Implicit authentication (IA) is gaining popularity over recent years due to its use of user behavior as the main input, relieving users from explicit actions such as remembering and entering passwords. However, such convenience comes with a cost of authentication accuracy and delay which we propose to improve in this paper. Authentication accuracy deteriorates as users' behaviors change as a result of mood, age, a change of routine, etc. Current authentication systems handle failed authentication attempts by locking the users out of their mobile devices. It is unsuitable for IA whose accuracy deterioration induces a high false reject rate, rendering the IA system unusable. Furthermore, existing IA systems leverage computationally expensive machine learning, which can introduce a large authentication delay. It is challenging to improve the authentication accuracy of these systems without sacrificing authentication delay. In this paper, we propose a multi-level privilege control (MPC) scheme that dynamically adjusts users' access privilege based on their behavior change. MPC increases the system's confidence in users' legitimacy even when their behaviors deviate from historical data, thus improving authentication accuracy. It is a lightweight feature added to the existing IA schemes that helps avoid frequent and expensive retraining of machine learning models, thus improving authentication delay. We demonstrate that MPC increases authentication accuracy by 18.63\% and reduces authentication delay by 7.02 minutes on average, using a public dataset that contains comprehensive user behavior data.

Published

2020

50. Warwick Image Forensics Dataset for Device Fingerprinting in Multimedia Forensics

Author

Yujue Zhou, Li Li, Chang-Tsun Li, and Yijun Quan

Subjects

FOS: Computer and information sciences, Computer Science - Cryptography and Security, TR, Computer science, Computer Vision and Pattern Recognition (cs.CV), Digital forensics, Computer Science - Computer Vision and Pattern Recognition, ComputingMethodologies_IMAGEPROCESSINGANDCOMPUTERVISION, 0211 other engineering and technologies, 02 engineering and technology, QA76, Computational photography, HV, FOS: Electrical engineering, electronic engineering, information engineering, 0202 electrical engineering, electronic engineering, information engineering, Computer vision, High dynamic range, 021110 strategic, defence & security studies, business.industry, Image and Video Processing (eess.IV), Photography, Digital photography, Electrical Engineering and Systems Science - Image and Video Processing, Pipeline (software), Multimedia (cs.MM), 020201 artificial intelligence & image processing, Artificial intelligence, Noise (video), business, Cryptography and Security (cs.CR), Mobile device, Computer Science - Multimedia

Abstract

Device fingerprints like sensor pattern noise (SPN) are widely used for provenance analysis and image authentication. Over the past few years, the rapid advancement in digital photography has greatly reshaped the pipeline of image capturing process on consumer-level mobile devices. The flexibility of camera parameter settings and the emergence of multi-frame photography algorithms, especially high dynamic range (HDR) imaging, bring new challenges to device fingerprinting. The subsequent study on these topics requires a new purposefully built image dataset. In this paper, we present the Warwick Image Forensics Dataset, an image dataset of more than 58,600 images captured using 14 digital cameras with various exposure settings. Special attention to the exposure settings allows the images to be adopted by different multi-frame computational photography algorithms and for subsequent device fingerprinting. The dataset is released as an open-source, free for use for the digital forensic community., Comment: Paper accepted to IEEE International Conference on Multimedia and Expo 2020 (ICME 2020)

Published

2020