| Tweetovi |
|
Mathias Payer
@gannimo
|
3. velj |
|
It decodes to something useful
|
||
|
|
||
|
Mathias Payer
@gannimo
|
3. velj |
|
Have you decoded the level1 and level2 messages? Hint, the encodings are not too hard (not going to spoil it as the competition is still running)
|
||
|
|
||
|
Mathias Payer
@gannimo
|
2. velj |
|
On mobile, so no links but VUsec had a neat pointer encoding scheme recently that used delta pointers and there were a couple other academic approaches that were faster. Nothing in broad use as 30% overhead is still too much for a mitigation
|
||
|
|
||
|
Mathias Payer
@gannimo
|
2. velj |
|
ASan is a sanitizer, not a mitigation. I. E. it does not detect or withstand attacker-controlled modifications. Still there are software only approaches that were faster (hint: MPX register allocation was tough and Metadata loads were expensive)
|
||
|
|
||
|
Mathias Payer
@gannimo
|
1. velj |
|
It was fun to use MPX for academic gimmicks but if the performance cost for the intended use is higher than a software only approach then something is wrong
|
||
|
|
||
|
Mathias Payer
@gannimo
|
1. velj |
|
Lots of very tiny processes, so lots of overhead for process creation/teardown and memory management 🤷♂️
|
||
|
|
||
|
Mathias Payer
@gannimo
|
1. velj |
|
a bunch of Intel Xeon E5-2680 v3 (Haswell)
|
||
|
|
||
|
Mathias Payer
@gannimo
|
1. velj |
|
Docker containers
|
||
|
|
||
|
Mathias Payer
@gannimo
|
1. velj |
|
Close, Docker
|
||
|
|
||
|
Mathias Payer
@gannimo
|
1. velj |
|
It's been a little chilly in the Lausanne region the last couple of days, we gotta do something against that! #HexHive #BurnALLTheCores pic.twitter.com/fAE23Pgtzh
|
||
|
|
||
|
Mathias Payer
@gannimo
|
29. sij |
|
Just came across the Egalito rewriting paper by @vkemerlis. Seems we had the same idea of using relocations for complete disassembly, ours published at @IEEESSP (submitted 2018), the other at #ASPLOS20 github.com/HexHive/RetroW… nebelwelt.net/publications/f… egalito.org/static/paper.p…
|
||
|
|
||
|
Mathias Payer
@gannimo
|
27. sij |
|
Least Publishable Unit. It's an interesting metric some academics specialize in
|
||
|
|
||
|
Mathias Payer
@gannimo
|
27. sij |
|
But why don't you squeeze out a couple more LPU papers? 🤷♂️🙄🤔
|
||
|
|
||
| Mathias Payer proslijedio/la je tweet | ||
|
Davide Balzarotti
@balzarot
|
23. sij |
|
The Security Circus 2019 update is now online:
s3.eurecom.fr/~balzarot/note…
|
||
|
|
||
|
Mathias Payer
@gannimo
|
25. sij |
|
The talk was unfortunately not recorded
|
||
|
|
||
|
Mathias Payer
@gannimo
|
24. sij |
|
Ahmad passed his PhD candidacy today. Congratulations! He will evaluate software testing metrics/benchmarks to improve fuzzing. I'm looking forward to more of his #HexHive 🐝🐝🐝 work @ICepfl pic.twitter.com/PQICTHvGA4
|
||
|
|
||
|
Mathias Payer
@gannimo
|
24. sij |
|
Jon Howell from VMware talking about verifying file systems and how to reuse proofs, even when development continues @ICepfl pic.twitter.com/z332hns8FZ
|
||
|
|
||
|
Mathias Payer
@gannimo
|
23. sij |
|
I think you misunderstood. Assume student 1 takes classes A, B, C. Student 2 takes classes A, D, K. These classes have lectures at different times. Students in Europe take 6-8 classes per semester. Weekly schedules are very different between student 1 and 2.
|
||
|
|
||
|
Mathias Payer
@gannimo
|
23. sij |
|
My point is that different students take different classes, i.e., their schedules differ. Due to the differing schedules midnight is fair.
|
||
|
|
||
|
Mathias Payer
@gannimo
|
22. sij |
|
No, I make the assumption that classes are between 8am and 6pm. Students take different classes, therefore midnight is a fair compromise to give all of them some time before the deadline.
|
||
|
|
||