Computer security encompasses concepts and methods for protecting sensitive resources in
computer systems. Computer security starts from the policies that regulate access to …

In recent years, huge increase in attacks and data breaches is noticed. Most of the attacks
are performed and focused on the vulnerabilities related to web applications. Hence …

Current software attacks often build on exploits that subvert machine-code execution. The
enforcement of a basic safety property, control-flow integrity (CFI), can prevent such attacks …

Abstract Intel's Software Guard Extensions (SGX) provide a new hardware-based trusted
execution environment on Intel CPUs using secure enclaves that are resilient to accesses by …

Current system loggers have two problems: they depend on the integrity of the operating
system being logged, and they do not save sufficient information to replay and analyze …

A malware detector is a system that attempts to determine whether a program has malicious
intent. In order to evade detection, malware writers (hackers) frequently use obfuscation to …

A major obstacle to finding program errors in a real system is knowing what correctness
rules the system must obey. These rules are often undocumented or specified in an ad hoc …

Malicious code detection is a crucial component of any defense mechanism. In this paper,
we present a unique viewpoint on malicious code detection. We regard malicious code …

We present a study of operating system errors found by automatic, static, compiler analysis
applied to the Linux and OpenBSD kernels. Our approach differs from previous studies that …

All software projects are guaranteed to have one artifact in common $ source code. Together
with architectural risk analysis, code review for security ranks very high on the list of software …