Timing attacks are among the most devastating side-channel attacks, allowing remote
attackers to retrieve secret material, including cryptographic keys, with relative ease. In …

To protect cryptographic implementations from side-channel vulnerabilities, developers must
adopt constant-time programming practices. As these can be error-prone, many side …

Since ZMap's debut in 2013, networking and security researchers have used the open-
source scanner to write hundreds of research papers that study Internet behavior. In …

Certificates are the foundation of secure communication over the internet. However, not all
certificates are created and managed in a consistent manner and the certificate authorities …

In this article, we investigate a fundamental question regarding software security: Is the
security of SW releases increasing over time? We approach this question with a detailed …

Protocols for password-based authenticated key exchange (PAKE) allow two users sharing
only a short, low-entropy password to establish a secure session with a cryptographically …

Flawed TLS certificates are not uncommon on the Internet. While they signal a potential
issue, in most cases they have benign causes (eg, misconfiguration or even deliberate …

There have been many studies exposing poor usability of security software for the common
end user. However, only a few inspect the usability challenges faced by more …

MQTT-SN a pub/sub application layer protocol is a well-established protocol in the Internet
of Things (IoT) paradigm. MQTT-SN gateway application is available as an open-source …

We initiate the study of Private Certifier Intersection (PCI), which allows mutually distrusting
parties to establish a trust basis for cross-validation of claims if they have one or more trust …