Tamper-resistant cryptographic processors are becoming the standard way to enforce data-
usage policies. Their origins lie with military cipher machines and PIN processing in banking …

Automatic exploit generation Page 1 contributed articles 74 CoMMuniCations of the aCM |
feBRuARy 2014 | voL. 57 | No. 2 aTTacKers commonLy eXpLoIT buggy programs to break into …

Prior work has shown that return oriented programming (ROP) can be used to bypass W⊕
X, a software defense that stops shellcode, by reusing instructions from large libraries such …

Developers often build software on top of third-party libraries (Libs) to improve programmer
productivity and software quality. The libraries may contain vulnerabilities exploitable by …

Security-critical applications constantly face threats from exploits in lower computing layers
such as the operating system, virtual machine monitors, or even attacks from malicious …

Since 2002, over 10% of total cyber vulnerabilities were SQL injection vulnerabilities
(SQLIVs). This paper presents an algorithm of prepared statement replacement for removing …

Predicting software vulnerability discovery trends can help improve secure deployment of
software applications and facilitate backup provisioning, disaster recovery, diversity …

Given the growing importance of cyberspace to nearly all aspects of national life, a secure
cyberspace is vitally important to the nation, but cyberspace is far from secure today. The …

In this work we present a model-based framework for security vulnerabilities testing. Security
vulnerabilities are not only related to security functionalities at the application level but are …

Personal identification number (PIN) blocks are 64-bit strings that encode a PIN ready for
encryption and secure transmission in banking networks. These networks employ tamper …