EE515/IS523

Topic: Usable Security and Software Failures
Assignment: Reading Report, Project Preproposal
Reading List:
- Yongdae Kim A. Whitten and J. D. Tygar, "Why Johnny can't encrypt: a usability evaluation of PGP 5.0", USENIX Sec'99 (slide)
- R1 Seokbin Yun Guoming Zhang, Chen Yan, Xiaoyu Ji, Tianchen Zhang, Taimin Zhang, Wenyuan Xu, "Dolphin Attack: Inaudible Voice Commands", ACM CCS'17 (slide)
- R2 Jinseob Jeong A. Feldman, J. Halderman, and E. Felten, "Security Analysis of the Diebold AccuVote-TS Voting Machine", EVT'07 (slide)

Topic: Automotive Security
Assignment: Reading Report
Reading List:
- Hyunki Kim S. Checkoway, D. McCoy, B. Kantor, D. Anderson, H. Shacham, S. Savage, K. Koscher, A. Czeskis, F. Roesner, and T. Kohno, "Comprehensive Experimental Analyses of Automotive Attack Surfaces", USENIX Sec'11 (slide)
- R1 Shuxuan Zhou Kyong-Tak Cho and Kang G. Shin., "Error Handling of In-vehicle Networks Makes Them Vulnerable", CCS'16 (slide)
- R2 Byungkyu Lee M. Contag and G. Li and A. Pawlowski and F. Domke and K. Levchenko and T. Holz and S. Savage, "How They Did It: An Analysis of Emission Defeat Devices in Modern Automobiles", IEEE SP'17 (slide)

Topic: Network Security
Assignment: Reading Report
Reading List:
- R1 Mingjung Kim E. Chan-Tin, P. Wang, J. Tyra, T. Malchow, D. Foo Kune, N. Hopper, and Y. Kim, "Attacking the Kad Network - Real World Evaluation and High Fidelity Simulation using DVN", Wiley Security and Communication Networks 2009 (slide)
- R2 Yongdae Kim M. Schuchard, E. Y. Vasserman, A. Mohaisen, D. Foo Kune, N. Hopper, and Y. Kim, "Losing control of the Internet: Using the data plane to attack the control plane", NDSS'11 (slide)
- R1 Seunghan Hong H. Birge-Lee, Y. Sun, A. Edmundson, J. Rexford, and P. Mittal, "Bamboozling Certificate Authorities with BGP", Usenix Security'18 (slide)

Topic: Cellular Security #1
Assignment: Reading Report, Project Proposal
Reading List:
- R2 Hongil Kim@SysSec H. Kim, D. Kim, M. Kwon, H. Han, Y. Jang, D. Han, T. Kim, and Y. Kim, "Breaking and Fixing VoLTE: Exploiting Hidden Data Channels and Mis-implementations", ACM CCS'15
- R1 Yongdae Kim B. Hong, S. Bae, and Y. Kim "GUTI Reallocation Demystified: Cellular Location Tracking with Changing Temporary Identifier", NDSS'18 (slide)
- R2 Geonha Park Y. Go, J. Won, D. F. Kune, E. Y. Jeong, Y. Kim, and K. S. Park, "Gaining Control of Cellular Traffic Accounting by Spurious TCP Retransmission", NDSS'14 (slide)

Topic: Cellular Security #2
Assignment: Reading Report
Reading List:
- R1 Suhrobjon Bozorov W Enck, P Traynor, P McDaniel, T La Porta, "Exploiting open functionality in SMS-capable cellular networks", ACM CCS'05 (slide)
- R2 David Ha D. Rupprecht, K. Kohls, T. Holz, and C. Pöpper, "Breaking LTE on Layer Two", IEEE S&P'19 (slide)
- R1 Hyuntae Kim R. Weinmann, "Baseband Attacks: Remote Exploitation of Memory Corruptions in Cellular Protocol Stacks", USENIX WOOT'12 (slide)

Topic: Breaking Cryptography & Critical Systems
Assignment: Reading Report
Reading List:
- R2 Sunggwang Kim N. Heninger, Z. Durumeric, E. Wustrow, and J. A. Halderman, "Mining Your Ps and Qs: Detection of Widespread Weak Keys in Network Devices", USENIX Sec'12 (slide)
- R1 Seungeon Lee C. Brubaker, S. Jana, B. Ray, S. Khurshid, and V. Shmatikov, "Using Frankencerts for Automated Adversarial Testing of Certificate Validation in SSL/TLS Implementations", IEEE SP'14 (slide)
- R2 Seeun Kim A. Bolshev, J. Larsen, and M. Krotofil, "A Rising Tide: Design Exploits in Industrial Control Systems", USENIX WOOT'16 (slide)

Topic: Medical Devices
Assignment: Reading Report, Project Midterm Report
Reading List:
- R1 Changkyoon Kim D. Halperin, T. Heydt-Benjamin, B. Ransford, S. Clark, B. Defend, W. Morgan, K. Fu, T. Kohno, and W.Maisel, "Pacemakers and Implantable Cardiac Defibrillators: Software Radio Attacks and Zero-Power Defenses", IEEE SP'08 (slide)
- R2 Yeongmin Lee I. Martinovic, D. Davies, M. Frank, D. Perito, T. Ros, and D. Song, "On the Feasibility of Side-Channel Attacks with Brain-Computer Interfaces", USENIX Sec'12 (slide)
- R1 Nabi Lee Y. Park, Y. Son, H. Shin, D. Kim, and Y. Kim, "This Ain't Your Dose: Sensor Spoofing Attack on Medical Infusion Pump", USENIX WOOT'16 (slide)

Topic: Sensor Security
Assignment: Reading Report
Reading List:
- R2 Jaehoon Kim D. Foo Kune, J. Backes, S. Clark, D. Kramer, M. Reynolds, K. Fu, Y. Kim, and W. Xu, "Ghost Talk: Mitigating EMI Signal Injection Attacks against Analog Sensors", IEEE SP'13 (slide)
- R1 Seunggeun Baek C Bolton, S Rampazzi, C Li, A Kwong, W Xu, K Fu, "Blue Note: How Intentional Acoustic Interference Damages Availability and Integrity in Hard Disk Drives and Operating Systems", IEEE S&P'18 (slide)
- R2 Yongdae Kim Hocheol Shin, Dohyun Kim, Yujin Kwon, and Yongdae Kim, "Illusion and Dazzle: Adversarial Optical Channel Exploits against Lidars for Automotive Applications ", CHES'17 (slide)

Topic: Low Level Attacks
Assignment: Reading Report
Reading List:
- R1 Hwigyeom Kim N. O. Tippenhauer, C. Popper, K. B. Rasmussen, and S. Capkun, "On the Requirements for Successful GPS Spoofing Attacks", ACM CCS'11
- R2 Hyunjin Choo J. Alex Halderman, Seth D. Schoen, Nadia Heninger, William Clarkson, William Paul, Joseph A. Calandrino, Ariel J. Feldman, Jacob Appelbaum, and Edward W. Felten, "Lest We Remember: Cold Boot Attacks on Encryption Keys", USENIX Sec'08
- R1 Sangsup Lee M. Seaborn and T. Dullien, "Exploiting the DRAM rowhammer bug to gain kernel privileges , Blackhat'15

Topic: Blockchain
Assignment: Reading Report
Reading List:
- R2 Benjamin Castellan Maria Apostolaki, Aviv Zohar, Laurent Vanbever, "Hijacking Bitcoin: Routing Attacks on Cryptocurrencies", IEEE SP'17
- R1 Yujin Kwon@SysSec Yujin Kwon, Dohyun Kim, Yunmok Son, Eugene Vasserman, and Yongdae Kim, "Be Selfish and Avoid Dilemmas: Fork After Withholding (FAW) Attacks on Bitcoin", ACM CCS'17
- R2 Mingyu Jeong Johannes Krupp and Christian Rossow, "teEther: Gnawing at Ethereum to Automatically Exploit Smart Contracts", ACM CCS'17

EE515/IS523: Security 101: Think Like an Adversary