242 research outputs found

    2023-2024 Catalog

    Get PDF
    The 2023-2024 Governors State University Undergraduate and Graduate Catalog is a comprehensive listing of current information regarding:Degree RequirementsCourse OfferingsUndergraduate and Graduate Rules and Regulation

    Jornadas Nacionales de Investigación en Ciberseguridad: actas de las VIII Jornadas Nacionales de Investigación en ciberseguridad: Vigo, 21 a 23 de junio de 2023

    Get PDF
    Jornadas Nacionales de Investigación en Ciberseguridad (8ª. 2023. Vigo)atlanTTicAMTEGA: Axencia para a modernización tecnolóxica de GaliciaINCIBE: Instituto Nacional de Cibersegurida

    19th SC@RUG 2022 proceedings 2021-2022

    Get PDF

    Protecting Systems From Exploits Using Language-Theoretic Security

    Get PDF
    Any computer program processing input from the user or network must validate the input. Input-handling vulnerabilities occur in programs when the software component responsible for filtering malicious input---the parser---does not perform validation adequately. Consequently, parsers are among the most targeted components since they defend the rest of the program from malicious input. This thesis adopts the Language-Theoretic Security (LangSec) principle to understand what tools and research are needed to prevent exploits that target parsers. LangSec proposes specifying the syntactic structure of the input format as a formal grammar. We then build a recognizer for this formal grammar to validate any input before the rest of the program acts on it. To ensure that these recognizers represent the data format, programmers often rely on parser generators or parser combinators tools to build the parsers. This thesis propels several sub-fields in LangSec by proposing new techniques to find bugs in implementations, novel categorizations of vulnerabilities, and new parsing algorithms and tools to handle practical data formats. To this end, this thesis comprises five parts that tackle various tenets of LangSec. First, I categorize various input-handling vulnerabilities and exploits using two frameworks. First, I use the mismorphisms framework to reason about vulnerabilities. This framework helps us reason about the root causes leading to various vulnerabilities. Next, we built a categorization framework using various LangSec anti-patterns, such as parser differentials and insufficient input validation. Finally, we built a catalog of more than 30 popular vulnerabilities to demonstrate the categorization frameworks. Second, I built parsers for various Internet of Things and power grid network protocols and the iccMAX file format using parser combinator libraries. The parsers I built for power grid protocols were deployed and tested on power grid substation networks as an intrusion detection tool. The parser I built for the iccMAX file format led to several corrections and modifications to the iccMAX specifications and reference implementations. Third, I present SPARTA, a novel tool I built that generates Rust code that type checks Portable Data Format (PDF) files. The type checker I helped build strictly enforces the constraints in the PDF specification to find deviations. Our checker has contributed to at least four significant clarifications and corrections to the PDF 2.0 specification and various open-source PDF tools. In addition to our checker, we also built a practical tool, PDFFixer, to dynamically patch type errors in PDF files. Fourth, I present ParseSmith, a tool to build verified parsers for real-world data formats. Most parsing tools available for data formats are insufficient to handle practical formats or have not been verified for their correctness. I built a verified parsing tool in Dafny that builds on ideas from attribute grammars, data-dependent grammars, and parsing expression grammars to tackle various constructs commonly seen in network formats. I prove that our parsers run in linear time and always terminate for well-formed grammars. Finally, I provide the earliest systematic comparison of various data description languages (DDLs) and their parser generation tools. DDLs are used to describe and parse commonly used data formats, such as image formats. Next, I conducted an expert elicitation qualitative study to derive various metrics that I use to compare the DDLs. I also systematically compare these DDLs based on sample data descriptions available with the DDLs---checking for correctness and resilience

    19th SC@RUG 2022 proceedings 2021-2022

    Get PDF

    19th SC@RUG 2022 proceedings 2021-2022

    Get PDF

    2022-2023 Catalog

    Get PDF
    The 2022-2023 Governors State University Undergraduate and Graduate Catalog is a comprehensive listing of current information regarding:Degree RequirementsCourse OfferingsUndergraduate and Graduate Rules and Regulation

    Virtual Satellite Network Simulator (VSNeS) - A novel engine to evaluate satellite networks over virtual infrastructure and networks

    Get PDF
    Space has been populated by a wide range of satellite systems from governmental and private space entities. Monolithic satellites have been ruling it by providing a custom design that accomplishes a specific mission. Nevertheless, novel user demands emerged have required global coverage, low revisit time, and ubiquitous service. The possibility to integrate in-orbit infrastructure to support current communications systems has been discussed persistently during the last years. Specifically, the concept of deploying networks composed of aircraft and spacecraft (creating the so-called Non-Terrestrial Networks), has emerged as a potential architecture to satisfy this new demand. This novel concept has enabled to investigate mobile technologies in space infrastructure. For example, this is the case of the Software-Defined Satellite, which aims at managing in-orbit infrastructure by using Software-Defined Network techniques. These novel concepts pose multiple challenges which dedicated developments shall address. Likewise, specific equipment and simulation environments shall support them. Currently, open source satellite network emulators have certain limitations or are not easily accessible. This project aims at presenting the Virtual Satellite Network Simulator, a novel simulation engine capable to represent satellites as well as ground nodes in virtual machines and deploy a virtual network that depicts the channel effects and dynamics. VSNeS has been generated from different modules, that thanks to the joint work is able to generate the virtualization. First of all, a Python3 program has been developed, which works as a manager and is responsible for running the rest of the modules according to the virtualized scenario. Furthermore, Kernel-based Virtual Machine has been implemented for the execution of the virtual machines. The channel management is done with the NetEm emulator. Finally, a graphical user interface is delivered by Cesium. This dissertation presents formally a preliminary design with the essential steps to select each technology. Then, the networking design is also discussed. Different tests are also shown in order to verify the correct functioning of the tool. In addition, tests about the performance of the final release have been performed. The program has been tested with the following protocols in different realistic scenarios: TCP, UDP, and ICMP. This allowed us to verify the correct operation of the program, checking the delays and channel losses. Moreover, it is empirically demonstrated that some protocols are not functional for geostationary satellites, due to the long latency caused by the large distances

    19th SC@RUG 2022 proceedings 2021-2022

    Get PDF

    19th SC@RUG 2022 proceedings 2021-2022

    Get PDF
    corecore