ACFA: Secure Runtime Auditing & Guaranteed Device Healing via Active Control Flow Attestation

Low-end embedded devices are increasingly used in various smart applications and spaces. They are implemented under strict cost and energy budgets, using microcontroller units (MCUs) that lack security features available in general-purpose processors. In this context, Remote Attestation (RA) was proposed as an inexpensive security service to enable a verifier (Vrf) to remotely detect illegal modifications to a software binary installed on a low-end prover MCU (Prv). Since attacks that hijack the software's control flow can evade RA, Control Flow Attestation (CFA) augments RA with information about the exact order in which instructions in the binary are executed, enabling detection of control flow attacks. We observe that current CFA architectures can not guarantee that Vrf ever receives control flow reports in case of attacks. In turn, while they support exploit detection, they provide no means to pinpoint the exploit origin. Furthermore, existing CFA requires either binary instrumentation, incurring significant runtime overhead and code size increase, or relatively expensive hardware support, such as hash engines. In addition, current techniques are neither continuous (only meant to attest self-contained operations) nor active (offer no secure means to remotely remediate detected compromises). To jointly address these challenges, we propose ACFA: a hybrid (hardware/software) architecture for Active CFA. ACFA enables continuous monitoring of all control flow transfers in the MCU and does not require binary instrumentation. It also leverages the recently proposed concept of Active Roots-of-Trust to enable secure auditing of vulnerability sources and guaranteed remediation when a compromise is detected. We provide an open-source reference implementation of ACFA on top of a commodity low-end MCU (TI MSP430) and evaluate it to demonstrate its security and cost-effectiveness

DiCA: A Hardware-Software Co-Design for Differential Checkpointing in Intermittently Powered Devices

Intermittently powered devices rely on opportunistic energy-harvesting to function, leading to recurrent power interruptions. This paper introduces DiCA, a proposal for a hardware/software co-design to create differential check-points in intermittent devices. DiCA leverages an affordable hardware module that simplifies the check-pointing process, reducing the check-point generation time and energy consumption. This hardware module continuously monitors volatile memory, efficiently tracking modifications and determining optimal check-point times. To minimize energy waste, the module dynamically estimates the energy required to create and store the check-point based on tracked memory modifications, triggering the check-pointing routine optimally via a nonmaskable interrupt. Experimental results show the cost-effectiveness and energy efficiency of DiCA, enabling extended application activity cycles in intermittently powered embedded devices.Comment: 8 pages and 7 figures. To be published at IEEE/ACM International Conference on Computer-Aided Design (ICCAD) 202

X-Cipher: Achieving Data Resiliency in Homomorphic Ciphertexts

Homomorphic encryption (HE) allows for computations on encrypted data without requiring decryption. HE is commonly applied to outsource computation on private data. Due to the additional risks caused by data outsourcing, the ability to recover from losses is essential, but doing so on data encrypted under an HE scheme introduces additional challenges for recovery and usability. This work introduces X-Cipher, which aims to make HE data resilient by ensuring it is private and fault-tolerant simultaneously at all stages during data-outsourcing. X-Cipher allows for data recovery without decryption, and maintains its ability to recover and keep data private when a cluster server has been compromised. X-Cipher allows for reduced ciphertext storage overhead by introducing novel encoding and leveraging previously introduced ciphertext packing. X-Cipher\u27s capabilities were evaluated on synthetic dataset, and compared to prior work to demonstrate X-Cipher enables additional security capabilities while enabling privacy-preserving outsourced computations

Being ethically minded: Practising the scholarship of teaching and learning in an ethical manner

This article was published as Being ethically minded: Practising the scholarship of teaching and learning in an ethical manner in Teaching and Learning Inquiry, 1(2), 2013, pp. 23-32. No part of this article may be reproduced, stored in a retrieval system, transmitted, or distributed, in any form, by any means, electronic, mechanical, photographic, or otherwise, without the prior permission of Indiana University Press. For educational re-use, please contact the Copyright Clearance Center (508-744-3350). For all other permissions, please visit Indiana University Press' permissions page.The authors propose a working definition of ethical SoTL, an ethical framework for SoTL inquiry, and present a case study that illustrates the complexity of ethical issues in SoTL. The Ethical SoTL Matrix is a flexible framework designed to support SoTL practitioners, particularly in the formative stages of their inquiries. Three dominant ethical traditions form the basis of the matrix: teleological or pragmatic, external, and deontological. The key message of the paper is that SoTL practitioners should reflect on different perspectives in their efforts to do what is right in any given situation. The matrix introduces three dominant ethical traditions, but SoTL practitioners may ultimately move beyond these traditions to explore a range of ethical considerations appropriate to their projects and disciplines

Low Dose Daily Iron Supplementation Improves Iron Status and Appetite but not Anemia, Whereas Quarterly Anthelminthic Treatment Improves Growth, Appetite and Anemia in Zanzibari Preschool Children.

Iron deficiency and helminth infections are two common conditions of children in developing countries. The consequences of helminth infection in young children are not well described, and the efficacy of low dose iron supplementation is not well documented in malaria-endemic settings. A 12-mo randomized, placebo controlled, double-blind trial of 10 mg daily iron and/or mebendazole (500 mg) every 3 mo was conducted in a community-based sample of 459 Zanzibari children age 6-71 mo with hemoglobin > 70 g/L at baseline. The trial was designed to examine treatment effects on growth, anemia and appetite in two age subgroups. Iron did not affect growth retardation, hemoglobin concentration or mild or moderate anemia (hemoglobin < 110 g/L or < 90 g/L, respectively), but iron significantly improved serum ferritin and erythrocyte protoporphyrin. Mebendazole significantly reduced wasting malnutrition. but only in children <30 mo old. The adjusted odds ratios (AORs) for mebendazole in this age group were 0.38 (95% CI: 0.16, 0.90) for weight-for-height less than -1 Z-score and 0.29 (0.09, 0.91) for small arm circumference. In children <24 mo old, mebendazole also reduced moderate anemia (AOR: 0.41, 0.18, 0.94). Both iron and mebendazole improved children's appetite, according to mothers' report. In this study, iron's effect on anemia was limited, likely constrained by infection, inflammation and perhaps other nutrient deficiencies. Mebendazole treatment caused unexpected and significant reductions in wasting malnutrition and anemia in very young children with light infections. We hypothesize that incident helminth infections may stimulate inflammatory immune responses in young children, with deleterious effects on protein metabolism and erythropoiesis

The M3 muscarinic receptor Is required for optimal adaptive immunity to Helminth and bacterial infection

Innate immunity is regulated by cholinergic signalling through nicotinic acetylcholine receptors. We show here that signalling through the M3 muscarinic acetylcholine receptor (M3R) plays an important role in adaptive immunity to both Nippostrongylus brasiliensis and Salmonella enterica serovar Typhimurium, as M3R-/- mice were impaired in their ability to resolve infection with either pathogen. CD4 T cell activation and cytokine production were reduced in M3R-/- mice. Immunity to secondary infection with N. brasiliensis was severely impaired, with reduced cytokine responses in M3R-/- mice accompanied by lower numbers of mucus-producing goblet cells and alternatively activated macrophages in the lungs. Ex vivo lymphocyte stimulation of cells from intact BALB/c mice infected with N. brasiliensis and S. typhimurium with muscarinic agonists resulted in enhanced production of IL-13 and IFN-γ respectively, which was blocked by an M3R-selective antagonist. Our data therefore indicate that cholinergic signalling via the M3R is essential for optimal Th1 and Th2 adaptive immunity to infection

Protein-coding variants implicate novel genes related to lipid homeostasis contributing to body-fat distribution.

Body-fat distribution is a risk factor for adverse cardiovascular health consequences. We analyzed the association of body-fat distribution, assessed by waist-to-hip ratio adjusted for body mass index, with 228,985 predicted coding and splice site variants available on exome arrays in up to 344,369 individuals from five major ancestries (discovery) and 132,177 European-ancestry individuals (validation). We identified 15 common (minor allele frequency, MAF ≥5%) and nine low-frequency or rare (MAF &lt;5%) coding novel variants. Pathway/gene set enrichment analyses identified lipid particle, adiponectin, abnormal white adipose tissue physiology and bone development and morphology as important contributors to fat distribution, while cross-trait associations highlight cardiometabolic traits. In functional follow-up analyses, specifically in Drosophila RNAi-knockdowns, we observed a significant increase in the total body triglyceride levels for two genes (DNAH10 and PLXND1). We implicate novel genes in fat distribution, stressing the importance of interrogating low-frequency and protein-coding variants

Performance of CMS muon reconstruction in pp collision events at sqrt(s) = 7 TeV

The performance of muon reconstruction, identification, and triggering in CMS has been studied using 40 inverse picobarns of data collected in pp collisions at sqrt(s) = 7 TeV at the LHC in 2010. A few benchmark sets of selection criteria covering a wide range of physics analysis needs have been examined. For all considered selections, the efficiency to reconstruct and identify a muon with a transverse momentum pT larger than a few GeV is above 95% over the whole region of pseudorapidity covered by the CMS muon system, abs(eta) < 2.4, while the probability to misidentify a hadron as a muon is well below 1%. The efficiency to trigger on single muons with pT above a few GeV is higher than 90% over the full eta range, and typically substantially better. The overall momentum scale is measured to a precision of 0.2% with muons from Z decays. The transverse momentum resolution varies from 1% to 6% depending on pseudorapidity for muons with pT below 100 GeV and, using cosmic rays, it is shown to be better than 10% in the central region up to pT = 1 TeV. Observed distributions of all quantities are well reproduced by the Monte Carlo simulation.Comment: Replaced with published version. Added journal reference and DO

Performance of CMS muon reconstruction in pp collision events at sqrt(s) = 7 TeV

The performance of muon reconstruction, identification, and triggering in CMS has been studied using 40 inverse picobarns of data collected in pp collisions at sqrt(s) = 7 TeV at the LHC in 2010. A few benchmark sets of selection criteria covering a wide range of physics analysis needs have been examined. For all considered selections, the efficiency to reconstruct and identify a muon with a transverse momentum pT larger than a few GeV is above 95% over the whole region of pseudorapidity covered by the CMS muon system, abs(eta) < 2.4, while the probability to misidentify a hadron as a muon is well below 1%. The efficiency to trigger on single muons with pT above a few GeV is higher than 90% over the full eta range, and typically substantially better. The overall momentum scale is measured to a precision of 0.2% with muons from Z decays. The transverse momentum resolution varies from 1% to 6% depending on pseudorapidity for muons with pT below 100 GeV and, using cosmic rays, it is shown to be better than 10% in the central region up to pT = 1 TeV. Observed distributions of all quantities are well reproduced by the Monte Carlo simulation.Comment: Replaced with published version. Added journal reference and DO