NISL
清华大学网络与信息安全实验室学术沙龙,欢迎关注~
This is the Paper Reading Seminar of Network and Information Security Lab (NISL) at Tsinghua University. Tune in for more details!
**时间:**2023年12月14日 14:00 - 16:00
**腾讯会议:**https://meeting.tencent.com/dm/D21J2wuXqQPV
**会议ID:**711-4428-4790
**会议密码:**231214
* 本次分享对外公开直播,线上参会者要求实名备注“姓名-单位”
Agenda
1.【论文分享】It’s (DOM) Clobbering Time: Attack Techniques, Prevalence, and Defenses
Presenter: 周安鹏
Conference: S&P '23
Authors: Khodayari, Soheil, and Giancarlo Pellegrino
Abstract: This paper systematically reviews HTML markup that can be used for DOM clobbering, then tests the prevalence and impact of this vulnerability on the top 5k websites in the Tranco list, and finally proposes some mitigation measures.
Link to paper: https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=10179403
2.**【论文分享****】**Dubhe: Succinct Zero-Knowledge Proofs for Standard AES and related Applications
Presenter: 李贇
Conference: Usenix Security ’23
Authors: Ding, Changchang, and Yan Huang
Abstract: The paper proposes a new succinct zero-knowledge argument of knowledge that enables linear prover, logarithmic verifier and logarithmic communication, and applies the argument system to various AES-based applications.
Link to paper: https://www.usenix.org/system/files/usenixsecurity23-ding-changchang.pdf
# 学术沙龙问卷反馈
编辑|陈龙飞 黄嘉盛
来源**|NISL实验室**