Proactive Recovery in a Byzantine-Fault-Tolerant System
This paper describes an asynchronous state-machine replication system that tolerates Byzantine faults, which can be caused by malicious attacks or software errors.
IO-Lite: A Unified I/O Buffering and Caching System
Are your systems and network functioning correctly? Can you be sure at this moment? Every administrator has some need to be able to answer these or similar questions on an ongoing basis.
Understanding Data Lifetime via Whole System Simulation
Strictly limiting the lifetime (i.e. propagation and duration of exposure) of sensitive data (e.g. passwords) is an important and well accepted practice in secure software development. Unfortunately, there are no current methods available for easily analyzing data lifetime, and very little information available on the quality of today's software with respect to data lifetime
Fairplay�A Secure Two-Party Computation System
Advances in modern cryptography coupled with rapid growth in processing and communication speeds make secure two-party computation a realistic paradigm. Yet, thus far, interest in this paradigm has remained mostly theoretical.
Listen and Whisper: Security Mechanisms for BGP
The Internet is a collection of autonomous systems (AS's), numbering more than 14,000 in a recent count. The inter-domain routing protocol, BGP, knits these autonomous systems together into a coherent whole
Cryptographic Device Support for FreeBSD
FreeBSD recently adopted the OpenBSD Cryptographic Framework [Keromytis et al, 2003]. In doing so it was necessary to convert the core framework to function correctly in a fully-preemptive/multiprocessor operating system environment.
Remote Timing Attacks Are Practical
Timing attacks enable an attacker to extract secrets maintained in a security system by observing the time it takes the system to respond to various queries
Security in Plan 9
The security architecture of the Plan 9(tm) operating system has recently been redesigned to address some technical shortcomings. This redesign provided an opportunity also to make the system more convenient to use securely. Plan 9 has thus improved in two ways not usually seen together: it has become more secure and easier to use.
CPCMS: A Configuration Management System Based on Cryptographic Names
Online Free
The Dos and Don'ts of Client Authentication on the Web
We provide a description of the limitations, requirements, and security models specific to Web client authentication. This includes the introduction of the interrogative adversary, a surprisingly powerful adversary that can adaptively query a Web site.
Security Analysis of a Cryptographically-Enabled RFID Device - Free eBook Security Analysis of a Cryptographically-Enabled RFID Device - Download ebook Security Analysis of a Cryptographically-Enabled RFID Device free
|