Control-flow integrity (CFI) is a promising technique to mitigate control-flow hijacking attacks.
In the past decade, dozens of CFI mechanisms have been proposed by researchers …

Maliciously-overwritten function pointers in C programs often lead to arbitrary code
execution. In principle, forward CFI schemes mitigate this problem by restricting indirect …

Since the end of the 20th century, it has become clear that web browsers will play a crucial
role in accessing Internet resources such as the World Wide Web. They evolved into …

Efficient cloud computing relies on in-process isolation to optimize performance by running
workloads within a single process. Without heavy-weight process isolation, memory safety …

Just-in-time (JIT) compilers make JavaScript run efficiently by replacing slow JavaScript
interpreter code with fast machine code. However, this efficiency comes at a cost: bugs in JIT …

Renew (Rewriting Newly Executable pages after Writes) unites and extends recent
advances in binary code analysis and transformation to solve a longstanding compatibility …

JIT spraying allows an attacker to subvert a Just-In-Time compiler, introducing instruction
sequences useful to the attacker into executable regions of the victim program's address …

Compilers are among the most critical components in the software development toolchain,
and their correctness is of utmost importance. A bug in a compiler might lead to a crash …

Language Virtual Machines (VMs) are the run-time environment of popular high level
managed languages. They offer portability and memory handling for the developer and are …

The use of unsafe programming languages still remains one of the major root causes of
software vulnerabilities. Although well-known defenses that detect and mitigate memory …