Search

Your search keyword '"Neuhaus, Stephan"' showing total 47 results
Start Over Author "Neuhaus, Stephan"
47 results on '"Neuhaus, Stephan"'

1. Security and Privacy Implications of Middlebox Cooperation Protocols

Author

Fossati, Thomas, Muentener, Roman, Neuhaus, Stephan, and Trammell, Brian

Subjects
Computer Science - Networking and Internet Architecture
Abstract

This white paper presents an analysis done by the MAMI project of the privacy and security concerns surrounding middlebox cooperation protocols (MCPs), based on our experimental experience with the Path Layer UDP Substrate (PLUS) proposal. Our key finding is that adding explicit signaling meant for on-path devices presents no significant new attack surface as compared to the status quo in the Internet architecture. While middlebox cooperation can make a passive adversary's job easier, it does not enable entirely new attacks.

Published
2018

2. BREAKING: Password Entry Is Fine

Author

Pidel, Catlin, Neuhaus, Stephan, Hutchison, David, Editorial Board Member, Kanade, Takeo, Editorial Board Member, Kittler, Josef, Editorial Board Member, Kleinberg, Jon M., Editorial Board Member, Mattern, Friedemann, Editorial Board Member, Mitchell, John C., Editorial Board Member, Naor, Moni, Editorial Board Member, Pandu Rangan, C., Editorial Board Member, Steffen, Bernhard, Editorial Board Member, Terzopoulos, Demetri, Editorial Board Member, Tygar, Doug, Editorial Board Member, Goos, Gerhard, Founding Editor, Hartmanis, Juris, Founding Editor, and Moallem, Abbas, editor

Published
2019
Full Text
View/download PDF

6. Towards securing hard real-time networked embedded devices and systems : a cBPF implementation for an FPGA

Author

Doran, Hans Dermot, Schneider, Sven, Leibundgut, Prosper, Neuhaus, Stephan, Eberli, Stefan, Doran, Hans Dermot, Schneider, Sven, Leibundgut, Prosper, Neuhaus, Stephan, and Eberli, Stefan

Abstract

In this body of work we describe preliminary work implementing a Berkely Packet Filter, in its original conception, in an FPGA. The purpose is packet filtering and ingress traffic shaping in security-relevant applications in distributed embedded nodes. We specifically target PROFINET nodes in hard real-time applications where network security is an open issue. We describe the motivation, implementation and verification including performance characteristics. We conclude that such a filter can be used to not only for protection against simple denial-of-service attacks but also for ingress protocol management and potentially for the implementation of system-wide security policies.

Published
2023

8. After-Life Vulnerabilities: A Study on Firefox Evolution, Its Vulnerabilities, and Fixes

Author

Massacci, Fabio, Neuhaus, Stephan, Nguyen, Viet Hung, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Nierstrasz, Oscar, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Sudan, Madhu, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Vardi, Moshe Y., Series editor, Weikum, Gerhard, Series editor, Erlingsson, Úlfar, editor, Wieringa, Roel, editor, and Zannone, Nicola, editor

Published
2011
Full Text
View/download PDF

10. Satisfaction of Control Objectives by Control Processes

Author

Marino, Daniela, Massacci, Fabio, Micheletti, Andrea, Rassadko, Nataliya, Neuhaus, Stephan, Hutchison, David, editor, Kanade, Takeo, editor, Kittler, Josef, editor, Kleinberg, Jon M., editor, Mattern, Friedemann, editor, Mitchell, John C., editor, Naor, Moni, editor, Nierstrasz, Oscar, editor, Pandu Rangan, C., editor, Steffen, Bernhard, editor, Sudan, Madhu, editor, Terzopoulos, Demetri, editor, Tygar, Doug, editor, Vardi, Moshe Y., editor, Weikum, Gerhard, editor, Baresi, Luciano, editor, Chi, Chi-Hung, editor, and Suzuki, Jun, editor

Published
2009
Full Text
View/download PDF

15. Downright : a framework and toolchain for privilege handling

Author

Neuhaus, Stephan, Schweizer, Remo, Neuhaus, Stephan, and Schweizer, Remo

Abstract

© 2019 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works., We propose Downright, a novel framework based on Seccomp, Berkeley Packet Filter, and PTrace, that makes it possible to equip new and existing C applications with a request broker architecture. An extensive configuration language allows AppArmor-like configuration that supports programmers in building rules for system call parameter validation and result sanitization. Access to these privileged function calls can be restricted both within Linux kernel and user spaces. Downright's main strength compared to related approaches is that it implements a complete mediation request broker architecture, in which all system calls are vetted before execution, either by the kernel or by a request broker, which runs as another process. This isolates the main program from many failures due to programming bugs and attacks, which would have to pass not only the attacked program, but the request broker also. We argue that this makes acquiring and releasing elevated privileges easier and safer. Downright eliminates the need to write Seccomp programs, instead allowing policies to be expressed declaratively through a rich policy language. We demonstrate the viability of this approach by instrumenting nginx, an industrial-strength web server and reverse proxy. While this instrumentation takes only a single line of code, we argue that even this effort can be avoided by suitable C runtime code. We show that Downright's overhead is substantial, halving nginx's perfomance, but propose measures for optimisation.

Published
2019

16. Breaking : password entry is fine

Author

Pidel, Catie Jo, Neuhaus, Stephan, Pidel, Catie Jo, and Neuhaus, Stephan

Abstract

In our digital world, we have become well acquainted with the login form – username shown as plaintext, password shown as asterisks or dots. This design dates back to the early days of terminal computing, and despite huge changes in nearly every other area, the humble login form remains largely untouched. When coupled with the ubiquity of smartphones, this means we often find ourselves entering complex passwords on a tiny touchscreen keyboard with little or no visual feedback on what has been typed. This paper explores how password masking on mobile devices affects the error rate for password entry. We created an app where users entered selected passwords into masked and unmasked password fields, measuring things like typing speed, error rate, and number of backspaces. We then did an exploratory data analysis for the data, and our findings show that, perhaps unexpectedly, there is no significant difference between masked and unmasked passwords for any of these metrics.

Published
2019

18. Towards an observatory for network transparency research

Author

Neuhaus, Stephan, Müntener, Roman, Edeline, Korian, Donnet, Benoit, Gubser, Elio, Neuhaus, Stephan, Müntener, Roman, Edeline, Korian, Donnet, Benoit, and Gubser, Elio

Abstract

The Internet is full of middleboxes that change packets and flows. In fact, there is probably no IP or TCP header that is not affected by at least one middlebox. Obviously, middleboxes impede path transparency, i.e., the idea that an exchange of messages results in more or less the same packets, no matter what path the packets takes. But no one seems to have a truly global view of what middleboxes do to packets on what Internet paths, which would however be an essential knowledge for new transport protocols to be successfully deployed. We address these concerns in the MAMI project by building an observatory of path transparency measurements. The project hosts an extensive set of path transparency measurements – we believe it to be the first dataset to deal specifically with middlebox involvement. In this paper, we describe that Observatory and a number of questions that we want to address with the data in that Observatory. Eventually, the project will provide public access to that Observatory so that researchers and the interested public can ask their own questions about path transparency issues and middlebox involvement.

Published
2018

19. Four different ways to build a chatbot about movies

Author

Graf, Hans Daniel, Koc, Yusuf, Panighetti, Sandro, Togni, Matteo, von Grünigen, Dirk, Weilenmann, Martin, Xhoxhaj, Erland, Zürrer, Daniel, Benites de Azevedo e Souza, Fernando, Deriu, Jan Milan, Neureiter, Nico, von Däniken, Pius, Cieliebak, Mark, Eich, Walter, Neuhaus, Stephan, Stockinger, Kurt, Graf, Hans Daniel, Koc, Yusuf, Panighetti, Sandro, Togni, Matteo, von Grünigen, Dirk, Weilenmann, Martin, Xhoxhaj, Erland, Zürrer, Daniel, Benites de Azevedo e Souza, Fernando, Deriu, Jan Milan, Neureiter, Nico, von Däniken, Pius, Cieliebak, Mark, Eich, Walter, Neuhaus, Stephan, and Stockinger, Kurt

Published
2018

20. Four different ways to build a chatbot about movies

Author

Graf, Hans Daniel, Koc, Yusuf, Panighetti, Sandro, Togni, Matteo, von Grünigen, Dirk, Weilenmann, Martin, Xhoxhaj, Erland, Zürrer, Daniel, Benites de Azevedo e Souza, Fernando, Deriu, Jan Milan, Neureiter, Nico, von Däniken, Pius, Cieliebak, Mark, Eich, Walter, Neuhaus, Stephan, and Stockinger, Kurt

Subjects
006: Spezielle Computerverfahren
Published
2017

21. Author profiling with bidirectional RNNs using attention with GRUs : notebook for PAN at CLEF 2017

Author

Kodiyan, Don, Hardegger, Florin, Neuhaus, Stephan, and Cieliebak, Mark

Subjects
0103 physical sciences, 0202 electrical engineering, electronic engineering, information engineering, Author Profiling, 020201 artificial intelligence & image processing, Gender Classification, 02 engineering and technology, 006: Spezielle Computerverfahren, 010306 general physics, 01 natural sciences
Abstract

This paper describes our approach for the Author Profiling Shared Task at PAN 2017. The goal was to classify the gender and language variety of a Twitter user solely by their tweets. Author Profiling can be applied in various fields like marketing, security and forensics. Twitter already uses similar techniques to deliver personalized advertisement for their users. PAN 2017 provided a corpus for this purpose in the languages: English, Spanish, Portuguese and Arabic. To solve the problem we used a deep learning approach, which has shown recent success in Natural Language Processing. Our submitted model consists of a bidirectional Recurrent Neural Network implemented with a Gated Recurrent Unit (GRU) combined with an Attention Mechanism. We achieved an average accuracy over all languages of 75,31% in gender classification and 85,22% in language variety classification.

Published
2017
Full Text
View/download PDF

22. Towards an observatory for network transparency research

Author

Neuhaus, Stephan, Müntener, Roman, Edeline, Korian, Donnet, Benoit, and Gubser, Elio

Subjects
Physics, Network transparency, Computer network, business.industry, Transmission Control Protocol, Network packet, ComputerSystemsOrganization_COMPUTER-COMMUNICATIONNETWORKS, Middlebox, 020206 networking & telecommunications, 02 engineering and technology, Network measurement, Observatory, Transparency (graphic), 0202 electrical engineering, electronic engineering, information engineering, 004: Informatik, 020201 artificial intelligence & image processing, The Internet, business, Telecommunications, PATH (variable)
Abstract

The Internet is full of middleboxes that change packets and flows. In fact, there is probably no IP or TCP header that is not affected by at least one middlebox. Obviously, middleboxes impede path transparency, i.e., the idea that an exchange of messages results in more or less the same packets, no matter what path the packets takes. But no one seems to have a truly global view of what middleboxes do to packets on what Internet paths, which would however be an essential knowledge for new transport protocols to be successfully deployed. We address these concerns in the MAMI project by building an observatory of path transparency measurements. The project hosts an extensive set of path transparency measurements – we believe it to be the first dataset to deal specifically with middlebox involvement. In this paper, we describe that Observatory and a number of questions that we want to address with the data in that Observatory. Eventually, the project will provide public access to that Observatory so that researchers and the interested public can ask their own questions about path transparency issues and middlebox involvement.

Published
2016

25. A path layer for the internet : enabling network operations on encrypted protocols

Author

Kühlewind, Mirja, Bühler, Tobias, Trammell, Brian, Neuhaus, Stephan, Müntener, Roman, Fairhurst, Gorry, Kühlewind, Mirja, Bühler, Tobias, Trammell, Brian, Neuhaus, Stephan, Müntener, Roman, and Fairhurst, Gorry

Abstract

The deployment of encrypted transport protocols imposes new challenges for network operations. Key in-network functions such as those implemented by firewalls and passive measurement devices currently rely on information exposed by the transport layer. Encryption, in addition to improving privacy, helps to address ossification of network protocols caused by middleboxes that assume certain information to be present in the clear. However, “encrypting it all” risks diminishing the utility of these middleboxes for the traffic management tasks for which they were designed. A middlebox cannot use what it cannot see. We propose an architectural solution to this issue, by introducing a new “path layer” for transport-independent, in-band signaling between Internet endpoints and network elements on the paths between them, and using this layer to reinforce the boundary between the hop-by-hop network layer and the end-to- end transport layer. We define a path layer header on top of UDP to provide a common wire image for new, encrypted transports. This path layer header provides information to a transport- independent on-path state machine that replaces stateful handling currently based on exposed header flags and fields in TCP; it enables explicit measurability of transport layer performance; and offers extensibility by sender-to-path and path-to-receiver communications for diagnostics and management. This provides not only a replacement for signals that are not available with encrypted traffic, but also allows integrity-protected, enhanced signaling under endpoint control. We present an implementation of this wire image integrated with the QUIC protocol, as well as a basic stateful middlebox built on Vector Packet Processing (VPP) provided by FD.io.

Published
2017

27. The Beauty and the Beast: Vulnerabilities in Red Hat’s Packages

Author

Neuhaus, Stephan and Zimmermann, Thomas

Subjects
QA076 Computer software
Abstract

We show in an empirical study of 3241 Red Hat packages that software vulnerabilities correlate with dependencies between packages. With formal concept analysis and statistical hypothesis testing, we identify dependencies that decrease the risk of vulnerabilities (beauties) or increase the risk (beasts). Using support vector machines on dependency data, our prediction models successfully and consistently catch about two thirds of vulnerable packages (median recall of 0.65). When our models predict a package as vulnerable, it is correct more than eight out of ten times (median precision of 0.83). Our findings help developers to choose new dependencies wisely and make them aware of risky dependencies.

Published
2009

28. Repeating the past experimental and empirical methods in system and software security

Author

Neuhaus, Stephan and Wilhelm, Reinhard

Subjects
Laufzeit, Experiment, software security, Computersicherheit, ddc:004, ddc:620, Analyse
Abstract

I propose a new method of analyzing intrusions: instead of analyzing evidence and deducing what must have happened, I find the intrusion-causing circumstances by a series of automatic experiments. I first capture process';s system calls, and when an intrusion has been detected, I use these system calls to replay some of the captured processes in order to find the intrusion-causing processes—the cause-effect chain that led to the intrusion. I extend this approach to find also the inputs to those processes that cause the intrusion—the attack signature. Intrusion analysis is a minimization problem—how to find a minimal set of circumstances that makes the intrusion happen. I develop several efficient minimization algorithms and show their theoretical properties, such as worst-case running times, as well as empirical evidence for a comparison of average running times. Our evaluations show that the approach is correct and practical; it finds the 3 processes out of 32 that are responsible for a proof-of-concept attack in about 5 minutes, and it finds the 72 out of 168 processes in a large, complicated, and difficult to detect multi-stage attack involving Apache and suidperl in about 2.5 hours. I also extract attack signatures in proof-of-concept attacks in reasonable time. I have also considered the problem of predicting before deployment which components in a software system are most likely to contain vulnerabilities. I present empirical evidence that vulnerabilities are connected to a component';s imports. In a case study on Mozilla, I correctly predicted one half of all vulnerable components, while more than two thirds of our predictions were correct. Ich stelle eine neue Methode der Einbruchsanalyse vor: Anstatt Spuren zu analysieren und daraus den Ereignisverlauf zu erschließen, finde ich die einbruchsverursachenden Umstände durch automatische Experimente. Zunächst zeichne ich die Systemaufrufe von Prozessen auf. Nachdem ein Einbruch entdeckt wird, benutze ich diese Systemaufrufe, um Prozesse teilweise wieder einzuspielen, so dass ich herausfinden kann, welche Prozesse den Einbruch verursacht haben —die Ursache-Wirkungs-Kette. Ich erweitere diesen Ansatz, um auch die einbruchsverursachenden Eingaben dieser Prozesse zu finden — die Angriffs-Signatur. Einbruchsanalyse ist ein Minimierungsproblem — wie findet man eine minimale Menge von Umständen, die den Einbruch passieren lassen? Ich entwickle einige effiziente Algorithmen und gebe sowohl theroretische Eigenschaften an, wie z.B. die Laufzeit im ungünstigsten Fall, als auch empirische Ergebnisse, die das mittlere Laufzeitverhalen beleuchten. Meine Evaluierung zeigt, dass unser Ansatz korrekt und praktikabel ist; er findet die 3 aus 32 Prozessen, die für einen konstruierten Angriff verantwortlich sind, in etwa 5 Minuten, und er findet die 72 von 168 Prozessen, die für einen echten, komplizierten, mehrstufigen und schwer zu analysierenden Angriff auf Apache und suidperl verantwortlich sind, in 2,5 Stunden. Ich kann ebenfalls Angriffs-Signaturen eines konstruierten Angriffs in vernünftiger Zeit erstellen. Ich habe mich auch mit dem Problem beschäftigt, vor der Auslieferung von Software diejenigen Komponenten vorherzusagen, die besonders anfällig für Schwachstellen sind. Ich bringe empirische Anhaltspunkte, dass Schwachstellen mit Importen korrelieren. In einer Fallstudie über Mozilla konnte ich die Hälfte aller fehlerhaften Komponenten korrekt vorhersagen, wobei etwa zwei Drittel aller Vorhersagen richtig war.

Published
2007
Full Text
View/download PDF

29. Isolating Intrusions by Automatic Experiments

Author

Neuhaus, Stephan

Subjects
000 Computer science, knowledge, general works, Computer Science
Abstract

When dealing with malware infections, one of the first tasks is to find the processes that were involved in the attack. We introduce Malfor, a system that isolates those processes automatically. In contrast to other methods that help analyze attacks, Malfor works by experiments: first, we record the interaction of the system under attack; after the intrusion has been detected, we replay the recorded events in slightly different configurations to see which processes were relevant for the intrusion. This approach has three advantages over deductive approaches: first, the processes that are thus found have been experimentally shown to be relevant for the attack; second, the amount of evidence that must then be analyzed to find the attack vector is greatly reduced; and third, Malfor itself cannot make wrong deductions. In a first experiment, Malfor was able to extract the three processes responsible for an attack from 32 candidates in about six minutes.

Published
2006
Full Text
View/download PDF

41. GoCoMM

Author

Gheorghe, Gabriela, primary, Massacci, Fabio, additional, Neuhaus, Stephan, additional, and Pretschner, Alexander, additional

Published
2009
Full Text
View/download PDF

43. A Description of the Standardized Measurement Procedures and Recommended Threshold Limit Values for Biological Hazards in Germany.

Author

Rieger, Monika A., Neuhaus, Stephan, Diefenbach, Heiko, Hofmann, Friedrich, Lohmeyer, Michael, and Nübling, Matthias

Subjects
AIRBORNE infection, INDUSTRIAL toxicology, AEROSOLS, AGRICULTURE, FARM buildings
Abstract

Describes policies and practices in Germany for measurement of airborne bioaerosols and for interpretation of measurements relative to the standards. Methods and results of measurements in agriculture; Suitability of the standardized measurement procedures for use in livestock buildings; High concentrations of airborne biological hazards in agriculture.

Published
2005
Full Text
View/download PDF

44. The Beauty and the Beast: Vulnerabilities in Red Hat’s Packages

Author

Neuhaus, Stephan, Zimmermann, Thomas, Neuhaus, Stephan, and Zimmermann, Thomas

Abstract

We show in an empirical study of 3241 Red Hat packages that software vulnerabilities correlate with dependencies between packages. With formal concept analysis and statistical hypothesis testing, we identify dependencies that decrease the risk of vulnerabilities (beauties) or increase the risk (beasts). Using support vector machines on dependency data, our prediction models successfully and consistently catch about two thirds of vulnerable packages (median recall of 0.65). When our models predict a package as vulnerable, it is correct more than eight out of ten times (median precision of 0.83). Our findings help developers to choose new dependencies wisely and make them aware of risky dependencies.

45. Security Trend Analysis with CVE Topic Models

Author

Neuhaus, Stephan, Zimmermann, Thomas, Neuhaus, Stephan, and Zimmermann, Thomas

Abstract

We study the vulnerability reports in the Common Vulnerability and Exposures (CVE) database by using topic models on their description texts to find prevalent vulnerability types and new trends semi-automatically. In our study of the 39,393 unique CVEs until the end of 2009, we identify the following trends, given here in the form of a weather forecast: PHP: declining, with occasional SQL injection. Buffer Overflows: flattening out after decline. Format Strings: in steep decline. SQL Injection and XSS: remaining strong, and rising. Cross-Site Request Forgery: a sleeping giant perhaps, stirring. Application Servers: rising steeply.

46. Security Trend Analysis with CVE Topic Models

Author

Neuhaus, Stephan, Zimmermann, Thomas, Neuhaus, Stephan, and Zimmermann, Thomas

Abstract

We study the vulnerability reports in the Common Vulnerability and Exposures (CVE) database by using topic models on their description texts to find prevalent vulnerability types and new trends semi-automatically. In our study of the 39,393 unique CVEs until the end of 2009, we identify the following trends, given here in the form of a weather forecast: PHP: declining, with occasional SQL injection. Buffer Overflows: flattening out after decline. Format Strings: in steep decline. SQL Injection and XSS: remaining strong, and rising. Cross-Site Request Forgery: a sleeping giant perhaps, stirring. Application Servers: rising steeply.

47. The Beauty and the Beast: Vulnerabilities in Red Hat’s Packages

Author

Neuhaus, Stephan, Zimmermann, Thomas, Neuhaus, Stephan, and Zimmermann, Thomas

Abstract

We show in an empirical study of 3241 Red Hat packages that software vulnerabilities correlate with dependencies between packages. With formal concept analysis and statistical hypothesis testing, we identify dependencies that decrease the risk of vulnerabilities (beauties) or increase the risk (beasts). Using support vector machines on dependency data, our prediction models successfully and consistently catch about two thirds of vulnerable packages (median recall of 0.65). When our models predict a package as vulnerable, it is correct more than eight out of ten times (median precision of 0.83). Our findings help developers to choose new dependencies wisely and make them aware of risky dependencies.

Catalog

Books, media, physical & digital resources
See catalog results