Computer Security - ESORICS 2019 -

Biographie:
Fast Open) vs. QUIC.- Attacks.- Where to Look for What You See Is What You Sign? User Confusion in Transaction Security.- On the Security and Applicability of Fragile Camera Fingerprints.- Attacking Speaker Recognition Systems with Phoneme Morphing.- Practical Bayesian Poisoning Attacks on Challenge-based Collaborative Intrusion Detection Networks.- A Framework for Evaluating Security in the Presence of Signal Injection Attacks.- Secure Protocols.- Formalizing and Proving Privacy Properties of Voting Protocols using Alpha-Beta Privacy.- ProCSA: Protecting Privacy in Crowdsourced Spectrum Allocation.- Breaking Unlinkability of the ICAO 9303 Standard for e-Passports using Bisimilarity.- Symmetric-key Corruption Detection : When XOR-MACs Meet Combinatorial Group Testing.- Useful Tools.- Finding Flaws from Password Authentication Code in Android Apps.- Identifying Privilege Separation Vulnerabilities in IoT Firmware with Symbolic Execution.- iCAT: An Interactive Customizable Anonymization Tool.- Monitoring the GDPR.- Blockchain and Smart Contracts.- Incentives for Harvesting Attack in Proof of Work mining pools.- A Lattice-Based Linkable Ring Signature Supporting Stealth Addresses.- Annotary: A Concolic Execution System for Developing Secure Smart Contracts.- PDFS: Practical Data Feed Service for Smart Contracts.- Towards a Marketplace for Secure Outsourced Computations....

Sommaire:
Machine Learning.- Privacy-Enhanced Machine Learning with Functional Encryption.- Towards Secure and Efficient Outsourcing of Machine Learning Classification.- Confidential Boosting with Random Linear Classifiers for Outsourced User-generated Data.- BDPL: A Boundary Differentially Private Layer Against Machine Learning Model Extraction Attacks.- Information Leakage.- The Leakage-Resilience Dilemma.- A Taxonomy of Attacks using BGP Blackholing.- Local Obfuscation Mechanisms for Hiding Probability Distributions.- A First Look into Privacy Leakage in 3D Mixed Reality Data.- Signatures and Re-encryption.- Flexible Signatures: Making Authentication Suitable for Real-Time Environments.- A Dynamic & Revocable Group Merkle Signature.- Puncturable Proxy Re-Encryption supporting to Group Messaging Service.- Generic Traceable Proxy Re-Encryption and Accountable Extension in Consensus Network.- Side Channels.- Side-Channel Aware Fuzzing.- NetSpectre: Read Arbitrary Memory over Network.- maskVerif:Automated Verification of Higher-Order Masking in Presence of Physical Defaults.- Automated Formal Analysis of Side-Channel Attacks on Probabilistic Systems.- Formal Modelling and Verification.- A Formal Model for Checking Cryptographic API Usage in JavaScript.- Contingent Payments on a Public Ledger: Models and Reductions for Automated Verification.- Symbolic Analysis of Terrorist Fraud Resistance.- Secure Communication Channel Establishment: TLS 1.3 (over TCP Fast Open) vs. QUIC.- Attacks.- Where to Look for What You See Is What You Sign? User Confusion in Transaction Security.- On the Security and Applicability of Fragile Camera Fingerprints.- Attacking Speaker Recognition Systems with Phoneme Morphing.- Practical Bayesian Poisoning Attacks on Challenge-based Collaborative Intrusion Detection Networks.- A Framework for Evaluating Security in the Presence of Signal Injection Attacks.- Secure Protocols.- Formalizing and Proving Privacy Properties of Voting Protocols using Alpha-Beta Privacy.- ProCSA: Protecting Privacy in Crowdsourced Spectrum Allocation.- Breaking Unlinkability of the ICAO 9303 Standard for e-Passports using Bisimilarity.- Symmetric-key Corruption Detection : When XOR-MACs Meet Combinatorial Group Testing.- Useful Tools.- Finding Flaws from Password Authentication Code in Android Apps.- Identifying Privilege Separation Vulnerabilities in IoT Firmware with Symbolic Execution.- iCAT: An Interactive Customizable Anonymization Tool.- Monitoring the GDPR.- Blockchain and Smart Contracts.- Incentives for Harvesting Attack in Proof of Work mining pools.- A Lattice-Based Linkable Ring Signature Supporting Stealth Addresses.- Annotary: A Concolic Execution System for Developing Secure Smart Contracts.- PDFS: Practical Data Feed Service for Smart Contracts.- Towards a Marketplace for Secure Outsourced Computations....