04066nam 22006975 450 991049102370332120251225180509.03-030-80825-410.1007/978-3-030-80825-9(CKB)4100000011982972(MiAaPQ)EBC6676063(Au-PeEL)EBL6676063(PPN)257358900(BIP)80861007(BIP)80525557(DE-He213)978-3-030-80825-9(EXLCZ)99410000001198297220210702d2021 u| 0engurcnu||||||||txtrdacontentcrdamediacrrdacarrierDetection of Intrusions and Malware, and Vulnerability Assessment 18th International Conference, DIMVA 2021, Virtual Event, July 14–16, 2021, Proceedings /edited by Leyla Bilge, Lorenzo Cavallaro, Giancarlo Pellegrino, Nuno Neves1st ed. 2021.Cham :Springer International Publishing :Imprint: Springer,2021.1 online resource (403 pages)Security and Cryptology,2946-1863 ;127563-030-80824-6 You’ve Got (a Reset) Mail: A Security Analysis of Email-Based Password Reset Procedures -- The Full Gamut of an Attack: An Empirical Analysis of OAuth CSRF in the Wild -- Detecting and Measuring In-The-Wild DRDoS Attacks at IXPs -- Digging Deeper: An Analysis of Domain Impersonation in the Lower DNS Hierarchy -- Help, my Signal has bad Device! - Breaking the Signal Messenger's Post-Compromise Security through a Malicious Device -- Refined Grey-Box Fuzzing with Sivo -- SCRUTINIZER: Detecting Code Reuse in Malware via Decompilation and Machine Learning -- SPECULARIZER: Uncovering Speculative Execution Attacks via Performance Tracing in Commodity Hardware -- Aion Attacks: Exposing Software Timer Problem in Trusted Execution Environment -- Third-Eye: Practical and Context-Aware Inference of Causal Relationship Violations in Commodity Kernels -- Find My Sloths: Automated Comparative Analysis of How Real Enterprise Computers Keep Up with the Software Update Races -- FP-Redemption: Studying Browser Fingerprinting Adoption for the Sake of Web Security -- Introspect Virtual Machines Like It Is the Linux Kernel! -- Calibration Done Right: Noiseless Flush+Flush Attacks -- Zero Footprint Opaque Predicates: Synthesizing Opaque Predicates From Naturally Occurring Invariants -- PetaDroid: Adaptive Android Malware Detection using Deep Learning -- Spotlight on Phishing: A Longitudinal Study on Phishing Awareness Trainings -- Extended Abstract: A First Large-scale Analysis on Usage of MTA-STS -- Centy: Scalable Server-side Web Integrity Verification System Based on Fuzzy Hashes.Chapter “SPECULARIZER: Detecting Speculative Execution Attacks via Performance Tracing” is available open access under a Creative Commons Attribution 4.0 International License via link.springer.com.Security and Cryptology,2946-1863 ;12756Data protectionComputer engineeringComputer networksComputersComputer crimesData and Information SecurityComputer Engineering and NetworksComputer Engineering and NetworksComputing MilieuxComputer CrimeData protection.Computer engineering.Computer networks.Computers.Computer crimes.Data and Information Security.Computer Engineering and Networks.Computer Engineering and Networks.Computing Milieux.Computer Crime.005.8Bilge LeylaMiAaPQMiAaPQMiAaPQBOOK9910491023703321Detection of Intrusions and Malware, and Vulnerability Assessment3395207UNINA