papers-we-love_papers-we-love/security

Security

• Reflections on Trusting Trust (1984)

• Internet Census via Insecure Routers (2012)

• Looking inside the (Drop) Box (2013)

• Making Programs Forget: Enforcing Lifetime For Sensitive Data (2011)

• Breach: Reviving The Crime Attack (2013)

• Why Silent Updates Boost Security (2009)

• A survey of coordinated attacks and collaborative intrusion detection (2010)

• Zanzibar: Google’s Consistent, Global Authorization System (2019)

• 📜 Macaroons: Cookies with Contextual Caveats for Decentralized Authorization in the Cloud (2014)

• 📜 Insertion, Evasion, and Denial of Service: eluding network intrusion detection (1998)

Hardware Security

• Meltdown (2018)

• Spectre Attacks: Exploiting Speculative Execution (2018)

• DRAM Row Hammer (2014)

  • Flipping Bits in Memory Without Accessing Them: An Experimental Study of DRAM Disturbance Errors

• 📜 SoK: Eternal War in Memory (2013)

  • Classifies memory attacks into a taxonomy that is usable by both black- and white-hats.
  • An excellent primer on the different memory-related vulnerabilities that exist, (more importantly) why they exist, and the ways in which various defences act to counter them.