Results
Evaluation Results:
- 56 Artifact Available
- 46 Artifact Functional
- 37 Artifact Reproduced
| Title | Avail. | Review. | Repro. | Available At |
|---|---|---|---|---|
| The Secrets Must Not Flow: Scaling Security Verification to Large Codebases |
|
|
|
Artifact
|
| Leafblower: a Leakage Attack Against TEE-Based Encrypted Databases |
|
Artifact
|
||
| Towards Practical Zero-Knowledge Proof for PSPACE |
|
|
|
Artifact
|
| Bridge: High-Order Taint Vulnerabilities Detection in Linux-based IoT Firmware |
|
Artifact
|
||
| SeqAss: Using Sequential Associative Caches to Mitigate Conflict-Based Cache Attacks With Reduced Cache Misses and Performance Overhead |
|
|
|
Artifact
|
| Battering RAM: Low-Cost Interposer Attacks on Confidential Computing via Dynamic Memory Aliasing |
|
Artifact
|
||
| AEX-NStep: Probabilistic Interrupt Counting Attacks on Intel SGX |
|
Artifact
|
||
| Fizzle: A Framework for Deterministic and Reproduced Network Fuzzing |
|
|
|
Artifact
|
| WebCloak: Characterizing and Mitigating Threats from LLM-Driven Web Agents as Intelligent Scrapers |
|
|
|
Artifact
|
| deepSURF: Detecting Memory Safety Vulnerabilities in Rust Through Fuzzing LLM-Augmented Harnesses |
|
|
|
Artifact
|
| Transient Architectural Execution: From Weird Gates to Weird Programs |
|
|
|
Artifact
|
| Practical Covert Channel across Isolated Browser Instances via GPU Command Queue Contention |
|
|
|
Artifact
|
| VMSCAPE: Exposing and Exploiting Incomplete Branch Predictor Isolation in Cloud Environments |
|
|
|
Artifact
|
| KeyTAR: Practical Keystroke Timing Attacks and Input Reconstruction |
|
|
|
Artifact
|
| Mechanized Safety and Liveness Proofs for the Mysticeti Consensus Protocol under the LiDO-DAG Framework |
|
|
|
Artifact
|
| Cosseter: GitHub Actions Permission Reduction Using Demand-Driven Static Analysis |
|
|
Artifact
|
|
| InsPIRe: Communication-Efficient PIR with Server-side Preprocessing |
|
Artifact
|
||
| SoK: Robustness in Large Language Models against Jailbreak Attacks |
|
|
|
Artifact
|
| Phoenix: Rowhammer Attacks on DDR5 with Self-Correcting Synchronization |
|
|
|
Artifact
|
| 2FiA: Towards WiFi Sensing-Based Authentication with Unique Biometrics |
|
|
|
Artifact
|
| EnchTable: Unified Safety Alignment Transfer in Fine-tuned Large Language Models |
|
Artifact
|
||
| Practical Anonymous Two-Party Gradient Boosting Decision Tree |
|
|
|
Artifact
|
| GHost in the SHELL: A GPU-to-Host Memory Attack and Its Mitigation |
|
|
|
Artifact
|
| Artifact for "Best of Both Worlds: Effective Foreign Bridge Identification in V8 Embedders for Security Analysis" |
|
|
Artifact
|
|
| CenRL: A Framework for Performing Intelligent Censorship Measurements |
|
Artifact
|
||
| Sealing the Window: Efficient Tamper Protection for Provenance Logs |
|
Artifact
|
||
| Rain: Transiently Leaking Data from Public Clouds Using Old Vulnerabilities |
|
|
|
Artifact
|
| On the (In)Security of Loading Machine Learning Models |
|
|
|
Artifact
|
| Chorus: Secret Recovery with Ephemeral Client Committees |
|
|
|
Artifact
|
| GPUBreach: Privilege Escalation Attacks on GPUs using Rowhammer |
|
|
|
Artifact
|
| Fractal: An Operating System Designed for Microarchitecture Reverse Engineering |
|
|
|
Artifact
|
| NanoTag: Systems Support for Efficient Byte-Granular Overflow Detection on ARM MTE |
|
|
Artifact
|
|
| KeyChaser: Unveiling API Keys in Browser Extensions |
|
|
Artifact
|
|
| The Interplay of Effective Model Checking and Secure Processor Design: From Insights to Practice |
|
|
|
Artifact
|
| AESpoly: Symmetric-Key Cryptographic Designs Using Instruction-Level Parallelism between AES and Polynomial Hash |
|
|
|
Artifact
|
| xDup: Privacy-Preserving Deduplication for Humanitarian Organizations using Fuzzy PSI |
|
|
|
Artifact
|
| APEX: Accurate Parallel Expressive Homomorphic Execution for Encrypted Databases |
|
|
|
Artifact
|
| Hardware Trojans from Invisible Inversions: On the Trojanizability of Standard Cell Libraries |
|
|
|
Artifact
|
| On the Detectability of Active Gradient Inversion Attacks in Federated Learning |
|
|
Artifact
|
|
| GDDR: Greatly Disturbing DRAM Rows — Cross-Component Rowhammer Attacks from Modern GPUs |
|
|
Artifact
|
|
| Hijacking Large Audio-Language Models via Context-Agnostic and Imperceptible Auditory Prompt Injection |
|
Artifact
|
||
| Papers, Please: A First Look at Age Verification on the Web |
|
|
|
Artifact
|
| SpecAuditor: Generating Audit Specifications for LLM-Driven Bug Detection |
|
|
|
Artifact
|
| Crashing Through Defenses: Exploiting Segfaults and Chaining around Intel CET |
|
|
|
Artifact
|
| PLATYPUS: Restricting Cross-Module Transitions to Mitigate Code-Reuse Attacks |
|
|
|
Artifact
|
| Scalable Registration-Based Encryption from Lattices |
|
|
|
Artifact
|
| Acoustic Hijacking Attacks on Gimbal-Stabilized Visual Tracking Systems |
|
|
Artifact
|
|
| The Person Behind the Sound: Demystifying Audio Private Attribute Profiling via Multimodal Large Language Models |
|
Artifact
|
||
| TREVEX: A Black-Box Detection Framework For Generic Transient Execution Vulnerabilities |
|
|
|
Artifact
|
| Crucible: Retrofitting Commodity CPUs with Vulnerabilities via Transparent Software Emulation |
|
|
|
Artifact
|
| TDXRay: Microarchitectural Side-Channel Analysis of Intel TDX for Real-World Workloads |
|
|
|
Artifact
|
| RISCy Cache Coherence: Timer-Free Architectural Cache Attacks via Instruction/Data Cache Incoherence |
|
|
Artifact
|
|
| Efficient Fuzzy Private Set Intersection from Secret-shared OPRF |
|
|
|
Artifact
|
| One Tap to Hijack Them All: A Security Analysis of the Google Fast Pair Protocol |
|
|
|
Artifact
|
| Sealing the Window: Efficient Tamper Protection for Provenance Logs |
|
|
|
Artifact
|
| It's a Feature, Not a Bug: Secure and Auditable State Rollback for Confidential Cloud Applications |
|
|
Artifact
|