Poster

Blockchain is an open, verifiable, and distributed consensus of transactions among different parties, relying on P2P technology for connectivity between nodes. However, the long time of block propagation limits inceptions of another consensus. We propose a novel method that accelerates block propagation in PoW blockchain networks by pipelining message transaction and verifications in parallel over a network with chunks of a block (PiChu). We have conducted extensive evaluations to present the significance of the network pipelining with many parallel chunk connections.

In this work, we propose an encoding/decoding algorithm for pro-gram executable steganography. Some salient features of our ap-proach is that unlike previous work it does not require the intro-duction of new instructions, which may be detectable. Furthermore, our scheme does not require storing the locations of where changes in the program executable are made.

Ryan Gabrys is a scientist at the Naval Information Warfare Center Pacific. His research interests include theoretical computers science with applications to cyber security and information storage.

The ever-changing digital landscape remains more vulnerable than ever. Cybersecurity has become increasingly important to the suc-cess of the global, digital economy and its stakeholders. With in-creasing use of models such as cloud computing, mobile computing and IoT systems, understanding how tools and methodologies for security testing have evolved is an important task[1]. In particu-lar, more sophisticated approaches to vulnerability assessment are necessary to address more complex, integrated systems.

Experience shows that even with a well-intentioned user at the keyboard, a motivated attacker can compromise a computer system at a layer below or adjacent to the shallow forms of authentica-tion that are now accepted as commonplace[3]. Therefore, rather than asking "Can we trust the person behind the keyboard", a still better question might be: "Can we trust the computer system un-derneath?". An emerging technology for gaining trust in a remote computing system is remote attestation.

This work focuses on improving the security, privacy, and usability of backup and recovery methods for apps implementing Time-based One-Time Passwords (TOTP), a widely deployed method of two-factor authentication (2FA). We propose a set of design re-quirements, explain how several prevalent apps fail to satisfy these requirements, and outline how our scheme leverages decentralized security techniques to satisfy the majority of these requirements.