SlowFuzz: Automated Domain-Independent Detection of Algorithmic Complexity Vulnerabilities

Algorithmic complexity vulnerabilities occur when the worst-case time/space complexity of an application is significantly higher than the respective average case for particular user-controlled inputs. When such conditions are met, an attacker can launch Denial-of-Service attacks against a vulnerable application by providing inputs that trigger the worst-case behavior. Such attacks have been known to have serious effects on production systems, take down entire websites, or lead to bypasses of Web Application Firewalls. Unfortunately, existing detection mechanisms for algorithmic complexity vulnerabilities are domain-specific and often require significant manual effort. In this paper, we design, implement, and evaluate SlowFuzz, a domain-independent framework for automatically finding algorithmic complexity vulnerabilities. SlowFuzz automatically finds inputs that trigger worst-case algorithmic behavior in the tested binary. SlowFuzz uses resource-usage-guided evolutionary search techniques to automatically find inputs that maximize computational resource utilization for a given application.Comment: ACM CCS '17, October 30-November 3, 2017, Dallas, TX, US

Leveling the playing field for Visually Impaired using Transport Assistant

Visually impaired people face numerous challenges when it comes to transportation. Not only must they circumvent obstacles while navigating, but they also need access to essential information related to available public transport, up-to-date weather forecast, and convenient method for booking private taxis. In this paper we introduce Transport Assistant - a voice based assistive technology prototype, built with a goal of leveling the playing field for the visually impaired to solve these problems that they face in their day to day life. Being voice enabled makes it seamlessly integrate into the environment, and can be invoked by saying a hotword - hello assistant. The paper explores this research question, followed by investigating existing technologies, explains the methodology and design, then concludes by presenting the prototype and results.Comment: 8 pages, 7 figures, ubiquitous computin

A New Correlation Between GRB X-Ray Flares And The Prompt Emission

From a sample of GRBs detected by the $Fermi$ and $Swift$ missions, we have extracted the minimum variability time scales for temporal structures in the light curves associated with the prompt emission and X-ray flares. A comparison of this variability time scale with pulse parameters such as rise times,determined via pulse-fitting procedures, and spectral lags, extracted via the cross-correlation function (CCF), indicate a tight correlation between these temporal features for both the X-ray flares and the prompt emission. These correlations suggests a common origin for the production of X-ray flares and the prompt emission in GRBs.Comment: 5 pages, 3 figures, Accepted for publication in ApJ

Gamma-Ray Bursts: Temporal Scales and the Bulk Lorentz Factor

For a sample of Swift and Fermi GRBs, we show that the minimum variability timescale and the spectral lag of the prompt emission is related to the bulk Lorentz factor in a complex manner: For small $\Gamma$'s, the variability timescale exhibits a shallow (plateau) region. For large $\Gamma$'s, the variability timescale declines steeply as a function of $\Gamma$ ($\delta T\propto\Gamma^{-4.05\pm0.64}$). Evidence is also presented for an intriguing correlation between the peak times, t$_p$, of the afterglow emission and the prompt emission variability timescale.Comment: Accepted for publication in Ap

Indications of superconductivity in doped highly oriented pyrolytic graphite

We have observed possible superconductivity using standard resistance vs. temperature techniques in phosphorous ion implanted Highly Oriented Pyrolytic Graphite. The onset appears to be above 100 K and quenching by an applied magnetic field has been observed. The four initial boron implanted samples showed no signs of becoming superconductive whereas all four initial and eight subsequent samples that were implanted with phosphorous showed at least some sign of the existence of small amounts of the possibly superconducting phases. The observed onset temperature is dependent on both the number of electron donors present and the amount of damage done to the graphene sub-layers in the Highly Oriented Pyrolytic Graphite samples. As a result the data appears to suggest that the potential for far higher onset temperatures in un-damaged doped graphite exists.Comment: 7 pages, 1 table, 5 figures, 11 references, Acknowledgments section was correcte

Dynamic of a non homogeneously coarse grained system

To study materials phenomena simultaneously at various length scales, descriptions in which matter can be coarse grained to arbitrary levels, are necessary. Attempts to do this in the static regime (i.e. zero temperature) have already been developed. In this letter, we present an approach that leads to a dynamics for such coarse-grained models. This allows us to obtain temperature-dependent and transport properties. Renormalization group theory is used to create new local potentials model between nodes, within the approximation of local thermodynamical equilibrium. Assuming that these potentials give an averaged description of node dynamics, we calculate thermal and mechanical properties. If this method can be sufficiently generalized it may form the basis of a Molecular Dynamics method with time and spatial coarse-graining.Comment: 4 pages, 4 figure

Comparison of Mixing Characteristics for Several Fuel Injectors at Mach 8, 12, and 15 Hypervelocity Flow Conditions

CFD analysis is presented of the mixing characteristics and performance of three fuel injectors at flight Mach numbers of 8, 12, and 15. The Reynolds-averaged simulations (RAS) were carried out using the VULCAN-CFD solver. The high Mach number flow conditions match those of the experiments conducted as a part of the Enhanced Injection and Mixing Project (EIMP) at the NASA Langley Research Center. The EIMP aims to investigate scramjet fuel injection and mixing physics, improve the understanding of underlying physical processes, and develop enhancement strategies relevant to flight Mach numbers greater than 8. The injectors include a fuel placement device, a strut, and a fluidic vortical mixer, a ramp. These fuel injectors accomplish the necessary task of distributing and mixing fuel into the supersonic cross-flow, albeit via different strategies. For comparison, a flush-wall injector is also included. This type of injector generally represents the simplest method of introducing fuel into a scramjet combustor. The three injectors represent the baseline configurations of the EIMP experiments. The mixing parameters of interest, such as mixing efficiency and total pressure recovery, are computed from the RAS and compared for the three flight conditions and injector configurations. In addition to mixing efficiency and total pressure recovery, the combustion efficiency and thrust potential are also computed for the reacting simulations. Plotting the total pressure recovery and thrust potential as a function of mixing efficiency provides added insight into critical aspects of combustor performance as the flight condition and injector type are varied

Condensation of vortices in the X-Y model in 3d: a disorder parameter

A disorder parameter is constructed which signals the condensation of vortices. The construction is tested by numerical simulations.Comment: 9 pages, 5 postscript figures, typset using REVTE