CIDPro: Custom Instructions for Dynamic Program Diversification

Timing side-channel attacks pose a major threat to embedded systems due to their ease of accessibility. We propose CIDPro, a framework that relies on dynamic program diversification to mitigate timing side-channel leakage. The proposed framework integrates the widely used LLVM compiler infrastructure and the increasingly popular RISC-V FPGA soft-processor. The compiler automatically generates custom instructions in the security critical segments of the program, and the instructions execute on the RISC-V custom co-processor to produce diversified timing characteristics on each execution instance. CIDPro has been implemented on the Zynq7000 XC7Z020 FPGA device to study the performance overhead and security tradeoffs. Experimental results show that our solution can achieve 80% and 86% timing side-channel capacity reduction for two benchmarks with an acceptable performance overhead compared to existing solutions. In addition, the proposed method incurs only a negligible hardware area overhead of 1% slices of the entire RISC-V system

Agri-food supply chains and sustainability-related issues: evidence from across the Scottish agri-food economy

This paper examines the influence of agri-food supply chains on the sustainability-related activities and decisions of Scottish farmers, as well as the treatment of sustainability issues by food processors and retailers themselves. It is based on 8 whole chain case studies covering some of Scotland’s major agricultural products. The cases identify differing levels of understanding and activities related to sustainability, but widespread acknowledgement that sustainability involves the development of chains within which all parties can achieve acceptable profits. Indeed, collaborative supply chains, which seek improved economic performance, frequently assist environmental and social sustainability. The main drivers of sustainability are found to be the cost of key inputs, product markets where customers increasingly seek sustainability in products, the ethos and values of the businesses and people involved, and legislation and strategies of industry bodies. At the farm level, many farmers are seeking more sustainable production systems, particularly in economic and environmental terms, but there is a need for greater guidance and assistance. The paper presents a review of several key food supply sustainability issues, the methods and concepts used in compiling and analysing the cases, as well as the principal findings and implications for agri-food supply chain and policy development.Sustainability, Food, Supply chain, Agribusiness, Food Security and Poverty,

Agri-food supply chains and sustainability-related issues: evidence from across the Scottish agri-food economy

This paper examines the influence of agri-food supply chains on the sustainability-related activities and decisions of Scottish farmers, as well as the treatment of sustainability issues by food processors and retailers themselves. It is based on 8 whole chain case studies covering some of Scotland‘s major agricultural products. The cases identify differing levels of understanding and activities related to sustainability, but widespread acknowledgement that sustainability involves the development of chains within which all parties can achieve acceptable profits. Indeed, collaborative supply chains, which seek improved economic performance, frequently assist environmental and social sustainability. The main drivers of sustainability are found to be the cost of key inputs, product markets where customers increasingly seek sustainability in products, the ethos and values of the businesses and people involved, and legislation and strategies of industry bodies. At the farm level, many farmers are seeking more sustainable production systems, particularly in economic and environmental terms, but there is a need for greater guidance and assistance. The paper presents a review of several key food supply sustainability issues, the methods and concepts used in compiling and analysing the cases, as well as the principal findings and implications for agri-food supply chain and policy development.Sustainability, Food, Supply chain, Food Consumption/Nutrition/Food Safety, Q13, Q18,

Next Generation Cloud Computing: New Trends and Research Directions

The landscape of cloud computing has significantly changed over the last decade. Not only have more providers and service offerings crowded the space, but also cloud infrastructure that was traditionally limited to single provider data centers is now evolving. In this paper, we firstly discuss the changing cloud infrastructure and consider the use of infrastructure from multiple providers and the benefit of decentralising computing away from data centers. These trends have resulted in the need for a variety of new computing architectures that will be offered by future cloud infrastructure. These architectures are anticipated to impact areas, such as connecting people and devices, data-intensive computing, the service space and self-learning systems. Finally, we lay out a roadmap of challenges that will need to be addressed for realising the potential of next generation cloud systems.Comment: Accepted to Future Generation Computer Systems, 07 September 201

Key Factors Supporting Small-Scale Coastal Fisheries Management

This synthesis was designed to provide an evidence base on the success factors in small-scale coastal fisheries management in developing countries and, in turn, to assist the Rockefeller Foundation in developing its strategy for its Oceans and Fisheries Initiative. In doing so, it identifies and describes some 20 key factors believed to influence success in small-scale coastal fisheries management. The report was completed via a rapid review of key sources of knowledge from formal published literature, institutional literature, key informants and Internet searches. The focus was on key success factors in achieving a balance of social, economic and ecological benefits from the management of small-scale coastal fisheries. A summary of these success factors can also be explored via an interactive visualization that accompanies this report

Towards a Distributed Quantum Computing Ecosystem

The Quantum Internet, by enabling quantum communications among remote quantum nodes, is a network capable of supporting functionalities with no direct counterpart in the classical world. Indeed, with the network and communications functionalities provided by the Quantum Internet, remote quantum devices can communicate and cooperate for solving challenging computational tasks by adopting a distributed computing approach. The aim of this paper is to provide the reader with an overview about the main challenges and open problems arising with the design of a Distributed Quantum Computing ecosystem. For this, we provide a survey, following a bottom-up approach, from a communications engineering perspective. We start by introducing the Quantum Internet as the fundamental underlying infrastructure of the Distributed Quantum Computing ecosystem. Then we go further, by elaborating on a high-level system abstraction of the Distributed Quantum Computing ecosystem. Such an abstraction is described through a set of logical layers. Thereby, we clarify dependencies among the aforementioned layers and, at the same time, a road-map emerges

C-FLAT: Control-FLow ATtestation for Embedded Systems Software

Remote attestation is a crucial security service particularly relevant to increasingly popular IoT (and other embedded) devices. It allows a trusted party (verifier) to learn the state of a remote, and potentially malware-infected, device (prover). Most existing approaches are static in nature and only check whether benign software is initially loaded on the prover. However, they are vulnerable to run-time attacks that hijack the application's control or data flow, e.g., via return-oriented programming or data-oriented exploits. As a concrete step towards more comprehensive run-time remote attestation, we present the design and implementation of Control- FLow ATtestation (C-FLAT) that enables remote attestation of an application's control-flow path, without requiring the source code. We describe a full prototype implementation of C-FLAT on Raspberry Pi using its ARM TrustZone hardware security extensions. We evaluate C-FLAT's performance using a real-world embedded (cyber-physical) application, and demonstrate its efficacy against control-flow hijacking attacks.Comment: Extended version of article to appear in CCS '16 Proceedings of the 23rd ACM Conference on Computer and Communications Securit

Roadmap on optical security

Postprint (author's final draft