Filter by type:

Inscription: Thwarting ActionScript Web Attacks from Within

Conference paper
Meera Sridhar, Abhinav Mohanty, Fadi Yilmaz, Vasant Tendulkar, and Kevin W. Hamlen
In Proceedings of the 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom), July 2018.
Publication year: 2018

Control Hijacking Vulnerabilities in IoT Firmware: A Brief Survey

Workshop paper
Abhinav Mohanty, Islam Obaidat, Fadi Yilmaz and Meera Sridhar
IEEE International Workshop on Security and Privacy for the Internet-of-Things(IoTSec), April 2018.
Publication year: 2018

Poster: HybridGuard: A Principal-based Permission and Fine-Grained Policy Enforcement Framework for Web-based Mobile Applications

Poster
Phu H. Phung, Abhinav Mohanty, Rahul Rachapalli, and Meera Sridhar.
Poster presented at the Network and Distributed System Security Symposium (NDSS), February 2018.
Publication year: 2018

Flash in the Dark: Illuminating the Landscape of ActionScript Web Security Trends and Threats

Journal paper
Meera Sridhar, Mounica Chirva, Benjamin Ferrell, Kevin W. Hamlen, and Dhiraj V. Karamchandani
Journal of Information System Security (JISSec), 13(2): 59—95. Dec 2017.
Publication year: 2017

HybridGuard: A Principal-based Permission and Fine-Grained Policy Enforcement Framework for Web-based Mobile Applications

Workshop paper
Phu H. Phung, Abhinav Mohanty, Rahul Rachapalli, and Meera Sridhar
IEEE Workshop on Mobile Security Technologies (MoST), May 2017.
Publication year: 2017

Functional eXtraction for Precise Java Malware Detection.

Poster
Mounica Chirva, Meera Sridhar, Vasant Tendulkar, Phu H. Phung, and Mark G. Pleszkoch
Poster presented at the 9th International Symposium on Research in Attacks, Intrusions and Defenses (RAID)
Publication year: 2016

FlashJaX: A Framework for Securing Mixed JavaScript/ActionScript Multi-party Web Content

Poster
Phu H. Phung, Maliheh Monshizadeh, Meera Sridhar, Kevin W. Hamlen, and V.N. Venkatakrishnan
Poster presented at the USENIX Security Symposium, August 2016.
Publication year: 2016

Between Worlds: Securing Mixed JavaScript/ActionScript Multiparty Web Content

Journal paper
Phu H. Phung, Maliheh Monshizadeh, Meera Sridhar, Kevin W. Hamlen, and V.N. Venkatakrishnan
IEEE Transactions on Dependable and Secure Computing (TDSC), 12(4):443—457. July-Aug 2015.
Publication year: 2015

Hippocratic Binary Instrumentation: First Do No Harm

Journal paper
Meera Sridhar, Richard Wartell and Kevin W. Hamlen
Science of Computer Programming (SCP), Special Issue on Invariant Generation, 93(B):110—124, November 2014.
Publication year: 2014

Aspect-oriented Runtime Monitor Certification

Conference paper
Kevin W. Hamlen, Micah M. Jones, and Meera Sridhar
In Proceedings of the 18th International Conference on Tools and Algorithms for the Construction and Analysis of Systems (TACAS), pp. 126—140, March-April 2012
Publication year: 2012

Flexible In-lined Reference Monitor Certification: Challenges and Future Directions

Workshop paper
Meera Sridhar and Kevin W. Hamlen
In Proceedings of the 5th ACM SIGPLAN Workshop on Programming Languages meets Program Verification (PLPV), pp. 55—60, January 2011.
Publication year: 2011

ActionScript In-lined Reference Monitoring in Prolog

Conference paper
Meera Sridhar and Kevin W. Hamlen
In Proceedings of the 12th International Symposium on Practical Aspects of Declarative Languages (PADL), pp. 149—151, January 2010.
Publication year: 2010

Model-Checking In-Lined Reference Monitors

Conference paper
Meera Sridhar and Kevin W. Hamlen
In Proceedings of the 11th International Conference on Verification, Model Checking, & Abstract Interpretation (VMCAI), pp. 312—327, January 2010.
Publication year: 2010

ActionScript Bytecode Verification With Co-Logic Programming

Workshop paper
Brian W. DeVries, Gopal Gupta, Kevin W. Hamlen, Scott Moore, and Meera Sridhar
In Proceedings of the 4th ACM SIGPLAN Workshop on Programming Languages and Analysis for Security (PLAS), pp. 9—15, June 2009.
Publication year: 2009