Davide BALZAROTTI
|
Davide BALZAROTTI
Eurecom - Networking and Security
Assistant-Professor
04 93 00 81 56
04 93 00 82 00
015
|
My EURECOM publications
Journal
-
3611 December 2011
Journal
Have things changed now? An empirical study on input validation vulnerabilities in web applications
"Computers and Security", 2012, ISSN: 0167-4048
-
3196 August 2010
Journal
An experience in testing the security of real-world electronic voting systems
IEEE Transactions on Software Engineering, July-August 2010, Vol 36, N°4
Conference/Book
-
3138 September 2010
Conference/Book
Abusing social networks for automated user profiling
RAID'2010, 13th International Symposium on Recent Advances in Intrusion Detection, September 15-17, 2010, Ottawa, Canada / Also published in "LNCS", Volume 6307/2010
Conference
-
3693 July 2012
Conference
Preventing input validation vulnerabilities in web applications through automated type analysis
COMPSAC 2012, 36th Annual IEEE Computer Software and Applications Conference, July 16-20, 2012, Izmir, Turkey
-
3659 May 2012
Conference
From model-checking to automated testing of security protocols: Bridging the gap
TAP 2012, 6th International Conference on Tests and Proofs, May 31-June 1, 2012, Prague, Czech Republic / To be published also in "Lecture Notes in Computer Science", 2012, Springer
-
3548 March 2012
Conference
A security analysis of amazon's elastic compute cloud service
SAC 2012, 27th ACM Symposium On Applied Computing, Security Track, March 26-30, 2012, Trento, Italy
-
3550 March 2012
Conference
An empirical analysis of input validation mechanisms in web applications and languages
SAC 2012, 27th ACM Symposium On Applied Computing (SAC), Security Track, March 26-30, 2012, Trento, Italy
-
3553 February 2012
Conference
Insights into user behavior in dealing with internet attacks
NDSS 2012, 19th Annual Network and Distributed System Security Symposium, February 5-8, 2012, San Diego, USA
-
3500 November 2011
Conference
Measurement and evaluation of a real world deployment of a challenge-response spam filter
IMC 2011, 11th ACM SIGCOMM Internet Measurement Conference, November 2-4, 2011, Berlin, Germany
-
3459 July 2011
Conference
Operating system interface obfuscation and the revealing of hidden operations
DIMVA 2011, 8th International Conference on Detection of Intrusions and Malware, and Vulnerability Assessment, July 7-8th, 2011, Amsterdam, The Netherlands / Also published in "Lecture Notes in Computer Science", Vol 6739/2011
-
3402 July 2011
Conference
Reverse social engineering attacks in online social networks
DIMVA 2011, 8th Conference on Detection of Intrusions and Malware & Vulnerability Assessment, July 7-8th, 2011 Amsterdam, The Netherlands / Also published in "Lecture Notes in Computer Science", Vol 6739/2011
-
3379 April 2011
Conference
Thwarting real-time dynamic unpacking
EUROSEC 2011, 4th ACM European Workshop on System Security, April 10th, 2011, Salzburg, Austria
-
3349 March 2011
Conference
Exposing the lack of privacy in file hosting services
LEET 2011, 4th Usenix Workshop on Large-Scale Exploits and Emergent Threats, March 29th, 2011, Boston, USA
-
3277 February 2011
Conference
Quo vadis? A study of the evolution of input validation vulnerabilities in Web applications
FC 2011, 15th International Conference on Financial Cryptography and Data Security, February 28-March 4, 2011 Bay Gardens Beach Resort, St. Lucia / Also published as "LNCS", Volume 7035/2012
-
3234 February 2011
Conference
Automated discovery of parameter pollution vulnerabilities in web applications
NDSS 2011, 18th Annual Network and Distributed System Security Symposium, 6-9 February 2011, San Diego, CA, USA
Distinguished Paper Award
-
3235 December 2010
Conference
G-Free : defeating return-oriented programming through gadget-less binaries
ACSAC'10, Annual Computer Security Applications Conference, December 6-10, 2010, Austin, Texas, USA
-
3236 October 2010
Conference
AccessMiner: using system-centric models for malware protection
CSS'10, 17th ACM Conference on Computer and Communications Security, October 4-8, 2010, Chicago, IL, USA
-
3348 September 2010
Conference
A summary of two practical attacks against social networks
ITWDC'11, 21st International Tyrrhenian Workshop on Digital Communications: Trustworthy Internet, September 6-8, 2010, Island of Ponza, Italy / Also published as chapter book 13 of "Trustworthy internet", Springer, ISBN: 978-8847018174
-
3210 April 2010
Conference
Honeybot, your man in the middle for automated social engineering
LEET'10, 3rd USENIX Workshop on Large-Scale Exploits and Emergent Threats, 27 April, 2010, San Jose, USA
-
2994 April 2010
Conference
A solution for the automated detection of clickjacking attacks
AsiaCCS 2010, 5th Symposium on Information Computer and Communications Security, April 13-16, 2010, Beijing, China
-
3022 February 2010
Conference
Efficient detection of split personalities in malware
NDSS 2010, 17th Annual Network and Distributed System Security Symposium, February 28th-March 3rd, 2010, San Diego, USA
-
3211 April 2009
Conference
A view on current malware behaviors
LEET'09, 2nd USENIX Workshop on Large-Scale Exploits and Emergent Threats, April 21st, 2009, Boston, USA
-
2778 April 2009
Conference
A view on current malware behavior
LEET'09: 2nd USENIX Workshop on Large-Scale Exploits and Emergent Threats, April 21, 2009, Boston, USA
-
2782 April 2009
Conference
All your contacts are belong to us : automated identity theft attacks on social networks
WWW'09, 18th International World Wide Web Conference, April 20-24, Madrid, Spain
-
2521 May 2008
Conference
Saner: composing static and dynamic analysis to validate sanitization in web applications
SP 2008, IEEE Symposium on Security and Privacy, May 18-21, 2008, Oakland, USA
Report
-
3042 March 2010
Report
Abusing social networks for automated user profiling
Research Report RR-10-233
