Sort by:

• Highly Influential Citations
• Citations
• Acceleration
• Velocity
• Recency

Learn More

Noncespaces: Using Randomization to Enforce Information Flow Tracking and Thwart Cross-Site Scripting Attacks

• Matthew Van Gundy, Hao Chen
• NDSS
• 2009

Cross-site scripting (XSS) vulnerabilities are among the most common and serious web application vulnerabilities. XSS vulnerabilities are difficult to prevent because it is difficult for web… (More)

Noncespaces: Using randomization to defeat cross-site scripting attacks

• Matthew Van Gundy, Hao Chen
• Computers & Security
• 2012

Cross-site scripting (XSS) vulnerabilities are among the most common and serious web application vulnerabilities. It is challenging to eliminate XSS vulnerabilities because it is difficult for web… (More)

Multi-party off-the-record messaging

• Ian Goldberg, Berkant Ustaoglu, Matthew Van Gundy, Hao Chen
• ACM Conference on Computer and Communications…
• 2009

Most cryptographic algorithms provide a means for secret and authentic communication. However, under many circumstances, the ability to repudiate messages or deny a conversation is no less important… (More)

Catch Me, If You Can: Evading Network Signatures with Web-based Polymorphic Worms

• Matthew Van Gundy, Davide Balzarotti, Giovanni Vigna
• WOOT
• 2007

Polymorphic worms are self-replicating malware that change their representation as they spread throughout networks in order to evade worm detection systems. A number of approaches to detect… (More)

Moving Target Defenses in the Helix Self-Regenerative Architecture

• Claire Le Goues, Anh Nguyen-Tuong, +5 authors Matthew Van Gundy
• Moving Target Defense
• 2013

In this chapter we describe the design, development and application of the Helix Metamorphic Shield (HMS). The HMS: (1) continuously shifts the program’s attack surface in both the spatial and… (More)

Feature Omission Vulnerabilities: Thwarting Signature Generation for Polymorphic Worms

• Matthew Van Gundy, Hao Chen, Zhendong Su, Giovanni Vigna
• Twenty-Third Annual Computer Security…
• 2007

To combat the rapid infection rate of today's Internet worms, signatures for novel worms must be generated soon after an outbreak. This is especially critical in the case of polymorphic worms, whose… (More)

OldBlue: Causal Broadcast In A Mutually Suspicious Environment (Working Draft)

• Matthew Van Gundy, Hao Chen
• 2012

Many protocols have been proposed to provide reliability and consistency guarantees for group-oriented communication in distributed systems. However, existing systems tolerate only benign failures or… (More)

The Security of NTP's Datagram Protocol

• Aanchal Malhotra, Matthew Van Gundy, Mayank Varia, Haydn Kennedy, Jonathan Gardner, Sharon Goldberg
• Financial Cryptography
• 2016

For decades, the Network Time Protocol (NTP) has been used to synchronize computer clocks over untrusted network paths. This work takes a new look at the security of NTP’s datagram protocol. We argue… (More)

• ‹
• 1
• ›