EUROSYS

We explore the challenges of implementing a privacy-preserving opportunistic data collection network for resource-constrained edge IoT devices. Opportunistic networks require no fixed infrastructure and allow edge devices to piggy-back messages through ...

Before being able to communicate with one another over the Internet, users in messaging applications need to discover each other and learn their IP addresses. Today, this User Discovery process is closely coupled with the communication provider. As a ...

Traditional embedded systems rely on custom C code deployed in a monolithic firmware image. In these systems, all code must be trusted completely, as any code can directly modify memory or hardware registers. More recently, some embedded OSes have ...

On October 5, 2018, a GitHub user announced a critical security vulnerability in event-stream, a JavaScript package meant to simplify working with data-streams. The vulnerability, was introduced by a new maintainer, by including code designed to harvest ...

Memory deduplication, an OS memory optimization technique that merges identical pages into a single Copy-on-Write (CoW) page, has been shown to be susceptible to a variety of timing side channel attacks, all of which stem from the differences between ...

With the advent of JIT compilers, code-injection attacks have seen a revival in the form of JIT spraying. JIT spraying enables an attacker to inject gadgets into executable memory, effectively sidestepping W⊕X and ASLR.

In response to JIT spraying, ...

To run services in Trusted Execution Environments and Secure Enclaves is an established approach to protect privacy-sensitive data or payment processing. The increased importance of service elasticity in e.g. cloud computing, but also between edge and ...

Memory-corruption-based return address hijacking, such as Return-oriented Programming (ROP), is a prevalent attack technique that compromises the program's control flow integrity. So far, software-based defenses against these attacks either introduce ...

A lot of research has been done over the last few years regarding decentralized authorization and access control, with existing approaches like the WAVE framework removing the need to rely on centralized parties for the management of access policies. ...