Insecure by Design in the Backbone of Critical Infrastructure

Autor: Wetzels, Jos, Santos, Daniel dos, Ghafari, Mohammad

We inspected 45 actively deployed Operational Technology (OT) product families from ten major vendors and found that every system suffers from at least one trivial vulnerability. We reported a total of 53 weaknesses, stemming from insecure by design

Externí odkaz: http://arxiv.org/abs/2303.12340

Challenges in Designing Exploit Mitigations for Deeply Embedded Systems

Autor: Abbasi, Ali, Wetzels, Jos, Holz, Thorsten, Etalle, Sandro

Memory corruption vulnerabilities have been around for decades and rank among the most prevalent vulnerabilities in embedded systems. Yet this constrained environment poses unique design and implementation challenges that significantly complicate the

Externí odkaz: http://arxiv.org/abs/2007.02307

Sponges and Engines: An introduction to Keccak and Keyak

Autor: Wetzels, Jos, Bokslag, Wouter

In this document we present an introductory overview of the algorithms and design components underlying the Keccac cryptographic primitive and the Keyak encryption scheme for authenticated (session-supporting) encryption. This document aims to famili

Externí odkaz: http://arxiv.org/abs/1510.02856

Hidden in snow, revealed in thaw: Cold boot attacks revisited

Autor: Wetzels, Jos

In this paper, we will provide an overview of the current state-of-the-art with regards to so-called cold boot attacks, their practical applicability and feasibility, potential counter-measures and their effectiveness.
Comment: 26 pages

Externí odkaz: http://arxiv.org/abs/1408.0725

μShield: configurable code-reuse attacks mitigation for embedded systems

Autor: Abbasi, Ali, Wetzels, Jos, Bokslag, Wouter, Zambon, Emmanuele, Etalle, Sandro, Yan, Zheng, Molva, Refik, Mazurczyk, Wojciech, Kantola, Raimo

Publikováno v: Network and System Security-11th International Conference, NSS 2017, Proceedings, 694-709
STARTPAGE=694;ENDPAGE=709;TITLE=Network and System Security-11th International Conference, NSS 2017, Proceedings
Network and System Security: 11th International Conference, NSS 2017, Helsinki, Finland, August 21–23, 2017, Proceedings, 694-709
STARTPAGE=694;ENDPAGE=709;TITLE=Network and System Security

Embedded devices are playing a major role in our way of life. Similar to other computer systems embedded devices are vulnerable to code-reuse attacks. Compromising these devices in a critical environment constitute a significant security and safety r

Externí odkaz: https://explore.openaire.eu/search/publication?articleId=dedup_wf_001::312927fb764f410029bec085af7913ac
https://research.tue.nl/nl/publications/8254aafd-7eab-4c7a-bfe4-3c0bca5f65f6