Write a Blog >>
Tue 11 Oct 2022 15:30 - 16:00 at Ballroom A - Poster Session

Embedded systems are widely used for implementing diverse Internet-of-Things (IoT) applications. These applications often deal with secret/sensitive data and encryption keys which can potentially be leaked through timing side-channel analysis. Runtime-based timing side-channel attacks are performed by measuring the time a code takes to execute and using that information to extract sensitive data. Effectively detecting such vulnerabilities with high precision and low false positives is a challenging task due to the runtime dependence of software code on the underlying hardware. Effectively fixing such vulnerabilities with low overhead is also non-trivial due to the diverse nature of embedded systems. In this article, we propose an automatic runtime side channel vulnerability detection and mitigation framework that not only considers the software code but also use the underlying hardware architecture information to tune the framework for more accurate vulnerability detection and system-specific tailored mitigation.

Tue 11 Oct

Displayed time zone: Eastern Time (US & Canada) change

15:30 - 16:00
15:30
30m
Poster
ASTOR: An Approach to Identify Security Code Reviews
Student Research Competition
Rajshakhar Paul Wayne State University
15:30
30m
Poster
‘Who built this crap?’ Developing a Software Engineering Domain Specific Toxicity Detector
Student Research Competition
Jaydeb Sarker Department of Computer Science, Wayne State University
Pre-print
15:30
30m
Poster
Automatically Fixing Breaking Changes of Data Science Libraries
Student Research Competition
Hailie Mitchell Carnegie Mellon University
15:30
30m
Poster
Execution Path Detection through Dynamic Analysis in Black-Box Testing Environments
Student Research Competition
Frank Whitworth Wake Forest University
15:30
30m
Poster
Automatic Software Timing Attack Evaluation & Mitigation on Clear Hardware Assumption
Student Research Competition
Prabuddha Chakraborty University of Florida
15:30
30m
Poster
Automatically Tagging the “AAA" Pattern in Unit Test Cases Using Machine Learning Models
Student Research Competition
Chenhao Wei Stevens Institute of Technology, Lu Xiao Stevens Institute of Technology, Tingting Yu University of Cincinnati, Xinyu Chen HSBC Software Development (Guangdong) Limited, Xiao Wang Stevens Institute of Technology, Sunny Wong Envestnet, Abigail Clune AGI
15:30
30m
Poster
A Unified Specification Mining Framework for Smart Contracts
Student Research Competition
Ye Liu Nanyang Technological University
15:30
30m
Poster
Identifying Sexism and Misogyny in Pull Request Comments
Student Research Competition
Sayma Sultana Wayne State University
15:30
30m
Poster
Detecting Inconsistencies in If-Condition-Raise Statements
Student Research Competition
Islem BOUZENIA Software Lab, University of Stuttgart
15:30
30m
Poster
Software Evolution Management with Differential Facts
Student Research Competition
Xiuheng Wu Nanyang Technological University, Singapore
15:30
30m
Poster
RESTCluster: Automated Crash Clustering for RESTful API
Student Research Competition
Yi Liu Nanyang Technological University