diff --git a/Chapter_Makefile b/Chapter_Makefile index 0e211bb..a50e829 100644 --- a/Chapter_Makefile +++ b/Chapter_Makefile @@ -24,7 +24,7 @@ all: clean chapter.pdf .PHONY: preview preview: biber --input-directory=.. chapter || true - pdflatex -shell-escape -jobname chapter ../chapter-template.tex + pdflatex -shell-escape -jobname chapter '\def\thesispreviewmode{}\input{chapter-template.tex}' version.tex: chapter.tex echo "${VERSION_STRING}" > $@ diff --git a/Makefile b/Makefile index 33cfe0d..ba18b35 100644 --- a/Makefile +++ b/Makefile @@ -23,7 +23,7 @@ all: clean thesis.pdf .PHONY: preview preview: biber --input-directory=.. chapter || true - pdflatex -shell-escape thesis.tex + pdflatex -shell-escape -jobname thesis '\def\thesispreviewmode{}\input{thesis.tex}' version.tex: thesis.tex $(addsuffix /chapter.tex,${CHAPTERS}) echo "${VERSION_STRING}" > $@ diff --git a/chapter-introduction/Makefile b/chapter-introduction/Makefile new file mode 120000 index 0000000..3322dc4 --- /dev/null +++ b/chapter-introduction/Makefile @@ -0,0 +1 @@ +../Chapter_Makefile \ No newline at end of file diff --git a/chapter-introduction/chapter.tex b/chapter-introduction/chapter.tex index be889d5..77c99e5 100644 --- a/chapter-introduction/chapter.tex +++ b/chapter-introduction/chapter.tex @@ -1 +1,9 @@ + +\chapterquote{Meredith Whittaker\cite{greenbergSignalMoreEncrypted2024}}{ + It’s not for lack of ideas or possibilities. It’s that we actually have to start taking seriously the shifts that + are going to be required to do this thing—to build tech that rejects surveillance and centralized control—whose + necessity is now obvious to everyone. +} \chaptertitle{Introduction} + +\section{Test} diff --git a/chapter-template.tex b/chapter-template.tex index 80097a7..2e76808 100644 --- a/chapter-template.tex +++ b/chapter-template.tex @@ -7,19 +7,23 @@ \graphicspath{{\figurepath}} \newcommand{\chaptertitle}[1]{ -\faketableofcontents -\chapter{#1} -\ifdefined\thesispreviewmode -{\Large \textbf{Draft build}, git revision \texttt{\input{version}}} -\fi -\setstretch{1} -\minitoc -\newpage -\setstretch{1.3} + \chapter{#1} + \ifdefined\thesispreviewmode + \vspace*{-1cm} + {\Large \textbf{Draft build}, git revision \texttt{\input{version}}} + \vspace*{1cm} + \fi + \printchapterquote + \setstretch{1} + \minitoc + \newpage + \setstretch{1.3} } \begin{document} +\faketableofcontents + \input{chapter} \chapterbibliography diff --git a/common-defs.tex b/common-defs.tex index 9fda573..066e697 100644 --- a/common-defs.tex +++ b/common-defs.tex @@ -73,6 +73,20 @@ \addtolength{\headwidth}{\marginparwidth} \addtolength{\headwidth}{-1cm} +\newcommand{\chapterquote}[2]{\def\chapterquoteattribution{#1}\def\chapterquotecontent{#2}} +\newcommand{\printchapterquote}{ + \ifdefined\chapterquoteattribution + \begin{quote} + \chapterquotecontent + \begin{flushright} + \textit{-- \chapterquoteattribution} + \end{flushright} + \end{quote} + \let\chapterquotecontent\undefined + \let\chapterquoteattribution\undefined + \fi +} + \newcommand{\todo}[1]{ \ifdefined\thesispreviewmode \marginpar{ diff --git a/main.bib b/main.bib index 232335a..349267e 100644 --- a/main.bib +++ b/main.bib @@ -10,6 +10,42 @@ pagetotal = {1} } +@article{abelsonKeysDoormats2015, + title = {Keys under Doormats}, + author = {Abelson, Harold and Anderson, Ross and Bellovin, Steven M. and Benaloh, Josh and Blaze, Matt and Diffie, Whitfield "Whit" and Gilmore, John and Green, Matthew and Landau, Susan and Neumann, Peter G. and Rivest, Ronald L. and Schiller, Jeffrey I. and Schneier, Bruce and Specter, Michael A. and Weitzner, Daniel J.}, + date = {2015-09-28}, + journaltitle = {Commun. ACM}, + volume = {58}, + number = {10}, + pages = {24--26}, + issn = {0001-0782}, + doi = {10.1145/2814825}, + url = {https://dl.acm.org/doi/10.1145/2814825}, + urldate = {2025-05-26}, + abstract = {Mandating insecurity by requiring government access to all data and communications.}, + file = {/home/jaseg/Sync/Research/Zotero/2015_Abelson et al_Keys under doormats.pdf} +} + +@article{abelsonRisksKeyRecovery1997, + title = {The Risks of Key Recovery, Key Escrow, and Trusted Third-Party Encryption}, + author = {Abelson, Hal and Anderson, Ross and Bellovin, Steven M. and Benalob, Josh and Blaze, Matt and Diffie, Whitfield and Gilmore, John and Neumann, Peter G. and Rivest, Ronald L. and Schiller, Jeffrey I. and Schneier, Bruce}, + date = {1997-06-01}, + journaltitle = {World Wide Web J.}, + volume = {2}, + number = {3}, + pages = {241--257}, + issn = {1085-2301} +} + +@report{adc2019, + title = {Choose the Right Accelerometer for Predictive Maintenance}, + author = {Campagnie, Bertrand}, + date = {2019}, + institution = {Analog Devices}, + url = {https://www.analog.com/media/en/technical-documentation/tech-articles/Choose-the-Right-Accelerometer-for-Predictive-Maintenance.pdf}, + urldate = {2021-04-01} +} + @online{adhikariDonLookUbiquitous2022, title = {Don't {{Look Up}}: {{Ubiquitous Data Exfiltration Pathways}} in {{Commercial Spaces}}}, shorttitle = {Don't {{Look Up}}}, @@ -47,6 +83,18 @@ file = {/home/jaseg/Sync/Research/Zotero/2019_Agnesi et al_All-fiber self-compensating polarization encoder for quantum key distribution.pdf} } +@article{albartus2020, + title = {{{DANA}} Universal Dataflow Analysis for Gate-Level Netlist Reverse Engineering}, + author = {Albartus, Nils and Hoffmann, Max and Temme, Sebastian and Azriel, Leonid and Paar, Christof}, + date = {2020}, + journaltitle = {IACR Transactions on Cryptographic Hardware and Embedded Systems}, + volume = {2020}, + number = {4}, + pages = {309--336}, + doi = {10.13154/tches.v2020.i4.309-336}, + bibsource = {dblp computer science bibliography, https://dblp.org} +} + @article{albertiniHowAbuseFix, title = {How to {{Abuse}} and {{Fix Authenticated Encryption Without Key Commitment}}}, author = {Albertini, Ange and Duong, Thai and Gueron, Shay and Kölbl, Stefan and Luykx, Atul and Schmieg, Sophie}, @@ -151,6 +199,14 @@ file = {/home/jaseg/Sync/Research/Zotero/2020_Amitonova et al_Quantum key establishment via a multimode fiber.pdf} } +@www{anandtech2015, + title = {Top Tier {{CPU}} Air Coolers {{Q3}} 2015: 9-Way Roundup Review}, + author = {Fylladitakis, Emmanouil D.}, + publisher = {AnandTech}, + url = {https://www.anandtech.com/show/9415/top-tier-cpu-air-coolers-9way-roundup-review/12}, + urldate = {2021-07-08} +} + @inproceedings{anderson1996tamper, title = {Tamper Resistance-a Cautionary Note}, booktitle = {Proceedings of the Second {{Usenix}} Workshop on Electronic Commerce}, @@ -160,6 +216,13 @@ pages = {1--11} } +@book{anderson2020, + title = {Security Engineering}, + author = {Anderson, Ross}, + date = {2020-09-16}, + isbn = {978-1-119-64281-7} +} + @article{andersonCryptographicProcessorsASurvey2006, title = {Cryptographic {{Processors-A Survey}}}, author = {Anderson, R. and Bond, M. and Clulow, J. and Skorobogatov, S.}, @@ -215,7 +278,7 @@ isbn = {978-1-4503-4139-4} } -@inproceedings{arpPrivacyThreatsUltrasonic2017, +@inproceedings{arpPrivacyThreatsUltrasonic2017a, title = {Privacy {{Threats}} through {{Ultrasonic Side Channels}} on {{Mobile Devices}}}, booktitle = {2017 {{IEEE European Symposium}} on {{Security}} and {{Privacy}} ({{EuroS}}\&{{P}})}, author = {Arp, Daniel and Quiring, Erwin and Wressnegger, Christian and Rieck, Konrad}, @@ -373,6 +436,19 @@ file = {/home/jaseg/Sync/Research/Zotero/Barooti et al_2023_Public-Key Encryption with Quantum Keys.pdf} } +@online{barrettUSSuspectsHackers2015, + title = {U.{{S}}. {{Suspects Hackers}} in {{China Breached About}} 4 {{Million People}}’s {{Records}}, {{Officials Say}}}, + author = {Barrett, Devlin and Yadron, Danny and Paletta, Damian}, + date = {2015-06-04T21:04:00Z}, + url = {http://www.wsj.com/articles/u-s-suspects-hackers-in-china-behind-government-data-breach-sources-say-1433451888}, + urldate = {2025-05-15}, + abstract = {The Federal Bureau of Investigation is probing an apparently far-reaching penetration of data held by the Office of Personnel Management, in which the records of approximately four million individuals were compromised.}, + langid = {american}, + organization = {Wall Street Journal}, + keywords = {Asia,Asia Pacific,BRICS Countries,C&E Executive News Filter,China,Content Types,courts,crime,Crime/Courts,cybercrime,Cybercrime/Hacking,Developing Economies,Eastern Asia,Emerging Market Countries,Factiva Filters,general news,Greater China,hacking,North America,OASN,OCHN,political,Political/General News,SYND,United States,US News}, + file = {/home/jaseg/Zotero/storage/86GYMVME/u-s-suspects-hackers-in-china-behind-government-data-breach-sources-say-1433451888.html} +} + @online{bartusekCryptographyCertifiedDeletion2023, title = {Cryptography with {{Certified Deletion}}}, author = {Bartusek, James and Khurana, Dakshita}, @@ -426,6 +502,14 @@ file = {/home/jaseg/Zotero/storage/BDZCDH85/Baum et al. - 2022 - Moz$$mathbb Z _ 2^k $$arella Efficient Vector-O.pdf} } +@book{beards1996, + title = {Structural Vibration: {{Analysis}} and Damping}, + author = {Beards, C. F.}, + date = {1996}, + publisher = {Wiley}, + isbn = {0-340-64580-6} +} + @inproceedings{beckFuzzyMessageDetection2021, title = {Fuzzy {{Message Detection}}}, booktitle = {Proceedings of the 2021 {{ACM SIGSAC Conference}} on {{Computer}} and {{Communications Security}}}, @@ -604,6 +688,16 @@ isbn = {978-1-4503-5084-6} } +@misc{boak1973, + title = {A History of {{U}}.{{S}}. Communications Security, Volumes {{I}} and {{II}}}, + author = {Boak, David G.}, + date = {1973}, + url = {https://www.governmentattic.org/18docs/Hist_US_COMSEC_Boak_NSA_1973u.pdf}, + urldate = {2021-09-24}, + howpublished = {Lecture Notes}, + organization = {US National Security Agency (NSA)} +} + @incollection{boyleEfficientPseudorandomCorrelation2019, title = {Efficient {{Pseudorandom Correlation Generators}}: {{Silent OT Extension}} and {{More}}}, shorttitle = {Efficient {{Pseudorandom Correlation Generators}}}, @@ -1200,7 +1294,7 @@ file = {/home/jaseg/Sync/Research/Zotero/Couteau et al_2021_Silver.pdf} } -@article{cuellarStaticFatigueLifetime1987a, +@article{cuellarStaticFatigueLifetime1987, title = {Static Fatigue Lifetime of Optical Fibers in Bending}, author = {Cuellar, E. and Roberts, D. and Middleman, L.}, date = {1987-01-01}, @@ -1351,6 +1445,14 @@ file = {/home/jaseg/Zotero/storage/8ACFQAKY/de Souza et al. - 2008 - Audit and backup procedures for hardware security .pdf} } +@www{dexter2015, + title = {Shopshifting: {{The}} Potential for Payment System Abuse}, + author = {Nohl, Karsten and Bräunlein, Fabian and {dexter}}, + date = {2015-12-27}, + publisher = {32C3 Chaos Communication Congress}, + url = {https://media.ccc.de/v/32c3-7368-shopshifting#t=2452} +} + @article{diamantiPracticalChallengesQuantum2016, title = {Practical Challenges in Quantum Key Distribution}, author = {Diamanti, Eleni and Lo, Hoi-Kwong and Qi, Bing and Yuan, Zhiliang}, @@ -1406,6 +1508,14 @@ file = {/home/jaseg/Zotero/storage/VE42VHUT/Dittmer et al. - 2022 - Authenticated Garbling from Simple Correlations.pdf} } +@book{dixon2007, + title = {The Shock Absorber Handbook}, + author = {Dixon, John C.}, + date = {2007}, + publisher = {Wiley}, + isbn = {978-0-470-51020-9} +} + @misc{dorseyHighSpeedDataTransmission2010, title = {High-{{Speed Data Transmission}} and {{Rotary Platforms}}: {{Slip Rings}}, {{Fiber Optic Rotary Joints}}, and {{Multiplexers}}}, author = {Dorsey, Glenn}, @@ -1415,6 +1525,16 @@ organization = {Moog, Inc.} } +@inproceedings{drimer2008, + title = {Thinking inside the Box: System-Level Failures of Tamper Proofing}, + booktitle = {2008 {{IEEE}} Symposium on Security and Privacy (Sp 2008)}, + author = {Drimer, Saar and Murdoch, Steven J and Anderson, Ross}, + date = {2008}, + pages = {281--295}, + publisher = {IEEE}, + x-fetchedfrom = {Google Scholar} +} + @incollection{dulekSecureMultipartyQuantum2020, title = {Secure {{Multi-party Quantum Computation}} with a {{Dishonest Majority}}}, author = {Dulek, Yfke and Grilo, Alex B. and Jeffery, Stacey and Majenz, Christian and Schaffner, Christian}, @@ -1491,6 +1611,16 @@ file = {/home/jaseg/Sync/Research/Zotero/Dür et al_2017_Towards a quantum internet.pdf} } +@thesis{e2013, + type = {phdthesis}, + title = {On-Shaft Vibration Measurement Using a {{MEMS}} Accelerometer for Faults Diagnosis in Rotating Machines}, + author = {Elnady, Maged Elsaid}, + date = {2013}, + institution = {University of Manchester}, + url = {https://www.research.manchester.ac.uk/portal/files/54530535/FULL_TEXT.PDF}, + urldate = {2021-04-01} +} + @incollection{eppenAnforderungenEinzelteileRundfunkempfanger1927, title = {Anforderungen an Die {{Einzelteile}} Der {{Rundfunkempfänger}}; {{Gesichtspunkte}} Für Den {{Bau}} Der {{Geräte}}}, booktitle = {Die Wissenschaftlichen {{Grundlagen}} Des {{Rundfunkempfangs}}}, @@ -1538,6 +1668,15 @@ file = {/home/jaseg/Zotero/storage/4EH2UCP5/Evans et al. - A Pragmatic Introduction to Secure Multi-Party Com.pdf} } +@www{faa2018, + title = {Pack Safe: {{Batteries}}, Lithium}, + author = {Administration, US Federal Aviation}, + date = {2018-05-31}, + publisher = {US Federal Aviation Administration}, + url = {https://www.faa.gov/hazmat/packsafe/more_info/?hazmat=7}, + urldate = {2021-07-12} +} + @article{fanSimultaneousWirelessPower2024, title = {A {{Simultaneous Wireless Power}} and {{Coil Inductance Insensitive Data Transfer System}} for {{Rotary Structures}}}, author = {Fan, Yuanshuang and Hu, Hongsheng and Sun, Yue and Hu, Han and Wu, Sihan}, @@ -1594,6 +1733,17 @@ keywords = {twisted-inductors} } +@report{fischlinKryptographischeAnalyseSpezifikation2021, + title = {Kryptographische Analyse Spezifikation Schlüsselgenerierungsdienst ePA}, + author = {Fischlin, Marc}, + date = {2021-12}, + institution = {Technische Universität Darmstadt}, + url = {https://www.gematik.de/media/erezept/SGD_Analyse_2021.pdf}, + urldate = {2025-05-15}, + langid = {german}, + file = {/home/jaseg/Zotero/storage/E6VVYUK5/SGD_Analyse_2021.pdf} +} + @book{flemingPrinciplesElectricWave1910, title = {The {{Principles}} of {{Electric Wave Telegraphy}} and {{Telephony}}}, author = {Fleming, J. A.}, @@ -1603,6 +1753,26 @@ keywords = {twisted-inductor} } +@online{fraunhofersitAbschlussberichtSicherheitsanalyseGesamtsystems2024, + title = {Abschlussbericht {{Sicherheitsanalyse}} Des {{Gesamtsystems ePA}} Für Alle}, + author = {{Fraunhofer SIT}}, + date = {2024-08-09}, + url = {https://www.sit.fraunhofer.de/fileadmin/dokumente/studien_und_technical_reports/Abschlussbericht_Sicherheitsanalyse_ePA_fuer_alle_Fraunhofer_SIT.pdf}, + urldate = {2025-05-16}, + file = {/home/jaseg/Zotero/storage/AD5MS92X/Abschlussbericht_Sicherheitsanalyse_ePA_fuer_alle_Fraunhofer_SIT.pdf} +} + +@article{frazelle2019, + title = {Securing the {{Boot Process}}: {{The}} Hardware Root of Trust}, + author = {Frazelle, Jessie}, + date = {2019-12-01}, + journaltitle = {ACM queue : tomorrow's computing today}, + shortjournal = {ACM Queue}, + doi = {10.1145/3380774.3382016}, + url = {https://dl.acm.org/doi/fullHtml/10.1145/3380774.3382016}, + urldate = {2020-10-22} +} + @online{fs1M12FSC, title = {1M 12F SC/APC Singlemode Farbcodiertes LWL-Pigtail - FS.com Deutschland}, author = {FS}, @@ -1693,6 +1863,44 @@ file = {/home/jaseg/Zotero/storage/68BWJ8CR/Garb et al. - 2022 - The Wiretap Channel for Capacitive PUF-Based Secur.pdf} } +@online{gematikSpezifikationAktensystemEPA2025, + title = {Spezifikation Aktensystem ePA für alle v1.4.1}, + author = {{gematik}}, + date = {2025-05-09}, + url = {https://gemspec.gematik.de/docs/gemSpec/gemSpec_Aktensystem_ePAfueralle/latest/}, + urldate = {2025-05-16}, + langid = {ngerman}, + file = {/home/jaseg/Zotero/storage/7UYIC2N4/latest.html} +} + +@online{gematikSpezifikationSchluesselgenerierungsdienstEPA2023, + title = {Spezifikation Schlüsselgenerierungsdienst ePA v1.6.0}, + author = {{gematik}}, + date = {2023-03-31}, + url = {https://gemspec.gematik.de/downloads/gemSpec/gemSpec_SGD_ePA/gemSpec_SGD_ePA_V1.6.0.pdf}, + urldate = {2025-05-26}, + langid = {ngerman}, + file = {/home/jaseg/Zotero/storage/79DUVAQG/Spezifikation Schlüsselgenerierungsdienst ePA.pdf} +} + +@online{gematikUbergreifendeSpezifikationVerwendung2024, + title = {Übergreifende {{Spezifikation Verwendung}} Kryptographischer {{Algorithmen}} in Der {{Telematikinfrastruktur}} v2.28.1}, + author = {{gematik}}, + date = {2024-02-23}, + url = {https://gemspec.gematik.de/downloads/gemSpec/gemSpec_Krypt/gemSpec_Krypt_V2.28.1.html}, + urldate = {2025-05-16}, + file = {/home/jaseg/Zotero/storage/4G4DKG53/gemSpec_Krypt_V2.28.1.html} +} + +@online{gematikUebergreifendeSpezifikationVerwendung2025, + title = {Übergreifende Spezifikation Verwendung kryptographischer Algorithmen in der Telematikinfrastruktur v2.40.0}, + author = {{gematik}}, + date = {2025-03-28}, + url = {https://gemspec.gematik.de/downloads/gemSpec/gemSpec_Krypt/gemSpec_Krypt_V2.40.0.pdf}, + langid = {ngerman}, + file = {/home/jaseg/Zotero/storage/PTWL3X45/Übergreifende Spezifikation Verwendung kryptograph.pdf} +} + @software{GerbonaraToolsHandle, title = {Gerbonara: {{Tools}} to Handle {{Gerber}} and {{Excellon}} Files in {{Python}}}, shorttitle = {Gerbonara}, @@ -1703,6 +1911,17 @@ file = {/home/jaseg/Zotero/storage/9XQ63WGV/gerbonara.html} } +@inproceedings{german2007, + title = {Event Data Recorders in the Analysis of Frontal Impacts}, + booktitle = {Annual Proceedings of the Association for the Advancement of Automotive Medicine}, + author = {German, A. and Comeau, J-L. and K.J. McClafferty, M.J. Shkrum and Tiessen, P.F.}, + date = {2007}, + number = {51}, + pages = {225--243}, + url = {https://www.ncbi.nlm.nih.gov/pmc/articles/PMC3217513/}, + urldate = {2021-07-12} +} + @article{geuzaineGmsh3DFinite2009, title = {Gmsh: {{A}} 3‐{{D}} Finite Element Mesh Generator with Built‐in Pre‐ and Post‐processing Facilities}, shorttitle = {Gmsh}, @@ -1781,6 +2000,13 @@ file = {/home/jaseg/Zotero/storage/IUACRFKT/Girault et al. - 1988 - A Generalized Birthday Attack.pdf} } +@online{GithubRepositoryERPFD, + title = {Github Repository: {{eRP-FD}}/Vau-Hsm}, + url = {https://github.com/eRP-FD/vau-hsm/tree/master}, + urldate = {2025-05-16}, + file = {/home/jaseg/Zotero/storage/33V8YQTK/master.html} +} + @inproceedings{goldbergPlanarFabricationMesoscale2014, title = {Planar Fabrication of a Mesoscale Voice Coil Actuator}, booktitle = {2014 {{IEEE International Conference}} on {{Robotics}} and {{Automation}} ({{ICRA}})}, @@ -1882,6 +2108,16 @@ file = {/home/jaseg/Sync/Research/Zotero/2022_Götte_Scheuermann_Can’t Touch This.pdf} } +@online{greenbergSignalMoreEncrypted2024, + title = {Signal {{Is More Than Encrypted Messaging}}. {{Under Meredith Whittaker}}, {{It}}’s {{Out}} to {{Prove Surveillance Capitalism Wrong}}}, + author = {Greenberg, Andy}, + date = {2024-08-28}, + url = {https://www.wired.com/story/meredith-whittaker-signal/}, + urldate = {2025-06-13}, + organization = {WIRED Magazine}, + annotation = {Archive URL: https://archive.is/J1ZlG} +} + @inproceedings{griloObliviousTransferMiniQCrypt2021, title = {Oblivious {{Transfer Is}} in {{MiniQCrypt}}}, booktitle = {Advances in {{Cryptology}} – {{EUROCRYPT}} 2021}, @@ -1906,6 +2142,14 @@ file = {/home/jaseg/Zotero/storage/PSGQDYRQ/Grisafi et al. - PISTIS Trusted Computing Architecture for Low-end.pdf} } +@standard{GrobkonzeptEPAFuer2023, + title = {Grobkonzept ePA für alle}, + date = {2023-12-13}, + langid = {ngerman}, + version = {1.0.0}, + file = {/home/jaseg/Zotero/storage/XRXV6BY6/Grobkonzept ePA für alle.pdf} +} + @article{grunenfelderFastSinglephotonDetectors2023, title = {Fast Single-Photon Detectors and Real-Time Key Distillation Enable High Secret-Key-Rate Quantum Key Distribution Systems}, author = {Grünenfelder, Fadri and Boaron, Alberto and Resta, Giovanni V. and Perrenoud, Matthieu and Rusca, Davide and Barreiro, Claudio and Houlmann, Raphaël and Sax, Rebecka and Stasi, Lorenzo and El-Khoury, Sylvain and Hänggi, Esther and Bosshard, Nico and Bussières, Félix and Zbinden, Hugo}, @@ -1942,6 +2186,15 @@ file = {/home/jaseg/Sync/Research/Zotero/Grünenfelder et al_2021_The limits of multiplexing quantum and classical channels.pdf;/home/jaseg/Zotero/storage/R7X3RFMF/40314.html} } +@report{gs21, + title = {Tech Report: {{Inerial}} Hsms Thwart Advanced Physical Attacks}, + author = {{Jan Sebastian Götte and Björn Scheuermann}}, + date = {2021-01-14}, + institution = {Alexander von Humboldt Institut für Internet und Gesellschaft}, + url = {https://eprint.iacr.org/2021/055}, + urldate = {2021-04-13} +} + @article{guazziNoncontactMeasurementOxygen2015, title = {Non-Contact Measurement of Oxygen Saturation with an {{RGB}} Camera}, author = {Guazzi, Alessandro R. and Villarroel, Mauricio and Jorge, João and Daly, Jonathan and Frise, Matthew C. and Robbins, Peter A. and Tarassenko, Lionel}, @@ -1984,6 +2237,24 @@ file = {/home/jaseg/Zotero/storage/LUWQNB8Q/Guri et al. - Fansmitter Acoustic Data Exfiltration from (Speak.pdf} } +@article{guriFansmitterAcousticData2020, + title = {Fansmitter: {{Acoustic}} Data Exfiltration from Air-{{Gapped}} Computers via Fans Noise}, + shorttitle = {Fansmitter}, + author = {Guri, Mordechai and Solewicz, Yosef and Elovici, Yuval}, + date = {2020-04-01}, + journaltitle = {Computers \& Security}, + shortjournal = {Computers \& Security}, + volume = {91}, + pages = {101721}, + issn = {0167-4048}, + doi = {10.1016/j.cose.2020.101721}, + url = {https://www.sciencedirect.com/science/article/pii/S0167404820300080}, + urldate = {2025-05-27}, + abstract = {Computers that contain sensitive information are often maintained in air-gapped isolation. In this defensive measure, a computer is disconnected from the Internet - logically and physically - preventing accidental or intentional leakage of sensitive information outward. In recent years it has been shown that malware can leak data over an air-gap by transmitting sonic and ultrasonic signals from a computer speaker. In order to eliminate such acoustic covert channels, current best practice recommends the elimination of speakers in secured computers, thereby creating a so-called ‘audio-gapped’ system. In this paper, we present ‘Fansmitter,’ a malware that can acoustically exfiltrate data from air-gapped computers, even when audio hardware and speakers are not present. Our method utilizes the noise emitted from the CPU, GPU, and chassis fans. We show that a software can regulate the internal fans’ rotation speed in order to control their acoustic signal, known as blade pass frequency (BPF). Binary data can be modulated and transmitted over these audio signals to a remote microphone (e.g., a nearby smartphone). We present design considerations, including acoustic waveform analysis, data modulation and demodulation, and data transmission and reception. We evaluate the acoustic covert channel with various fans at different distances and present the results. We also discuss issues such as stealth, interference, and countermeasures. Using our method we successfully transmitted data from audio-less, air-gapped computers, to a mobile phone in the same room. We demonstrated an effective transmission at distances of 1–8~m, with a maximum bit rate of 60 bit/min per fan.}, + keywords = {Air gaps,Computer viruses,Network security}, + file = {/home/jaseg/Zotero/storage/G4337H6G/S0167404820300080.html} +} + @inproceedings{guriMOSQUITOCovertUltrasonic2018, title = {{{MOSQUITO}}: {{Covert Ultrasonic Transmissions Between Two Air-Gapped Computers Using Speaker-to-Speaker Communication}}}, shorttitle = {{{MOSQUITO}}}, @@ -2031,6 +2302,15 @@ abstract = {Contact discovery allows users of mobile messengers to conveniently connect with people in their address book. In this work, we demonstrate that severe privacy issues exist in currently deployed contact discovery methods and propose suitable mitigations.Our study of three popular messengers\ (WhatsApp, Signal, and Telegram) shows that large-scale crawling attacks are\ (still) possible. Using an accurate database of mobile phone number prefixes and very few resources, we queried\ 10 \% of\ US mobile phone numbers for\ WhatsApp and\ 100 \% for\ Signal. For\ Telegram, we find that its\ API exposes a wide range of sensitive information, even about numbers not registered with the service. We present interesting\ (cross-messenger) usage statistics, which also reveal that very few users change the default privacy settings.Furthermore, we demonstrate that currently deployed hashing-based contact discovery protocols are severely broken by comparing three methods for efficient hash reversal. Most notably, we show that with the password cracking tool\ “JTR,” we can iterate through the entire worldwide mobile phone number space in\ \< 150 s on a consumer-grade\ GPU. We also propose a significantly improved rainbow table construction for non-uniformly distributed input domains that is of independent interest.Regarding mitigations, we most notably propose two novel rate-limiting schemes: our\ incremental contact discovery for services without server-side contact storage strictly improves over\ Signal’s current approach while being compatible with private set intersection, whereas our\ differential scheme allows even stricter rate limits at the overhead for service providers to store a small constant-size state that does not reveal any contact information.} } +@www{haines2006, + title = {{{US}} Outfit Patents 'invisible' {{UAV}}: {{Stealth}} through Persistence of Vision}, + author = {Haines, Lester}, + editor = {Register, The}, + date = {2006-09-25}, + url = {https://www.theregister.com/2006/09/25/phantom_sentinel/}, + urldate = {2020-09-17} +} + @inproceedings{hanScalingHardwareSecurity2019, title = {Toward Scaling Hardware Security Module for Emerging Cloud Services}, booktitle = {Proceedings of the 4th {{Workshop}} on {{System Software}} for {{Trusted Execution}}}, @@ -2113,6 +2393,22 @@ file = {/home/jaseg/Sync/Research/Zotero/Heath et al_GRAM with O(log2 n) Overhead.pdf} } +@www{heise2020t2jailbreak, + title = {Jailbreaker Nehmen {{T2-sicherheitschip}} von Macs Ins Visier}, + author = {Becker, Leo}, + date = {2020-03-11}, + publisher = {Heise Online / Heise Online}, + url = {https://www.heise.de/mac-and-i/meldung/Jailbreaker-nehmen-T2-Sicherheitschip-von-Macs-ins-Visier-4681131.html} +} + +@www{heise2021ovh, + title = {Cloud-{{Dienstleister OVH}}: {{Feuer}} Zerstört {{Rechenzentrum}}, Ein Weiteres Beschädigt}, + author = {Holland, Martin}, + date = {2021-03-10}, + publisher = {Heise Online / Heise Online}, + url = {https://www.heise.de/news/OVH-Feuer-zerstoert-Rechenzentrum-in-Strassburg-ein-weiteres-beschaedigt-5076320.html} +} + @article{helfinstineOpticalFibreStrength1982, title = {Optical Fibre Strength/Fatigue Experiments}, author = {Helfinstine, J. D. and Quan, F.}, @@ -2278,6 +2574,26 @@ file = {/home/jaseg/Sync/Research/Zotero/Huttner et al_2022_Long-range QKD without trusted nodes is not possible with current technology.pdf} } +@book{iaea2011, + title = {Safeguards, Techniques and Equipment}, + author = {{International Atomic Energy Agency}}, + date = {2011}, + series = {International Nuclear Verification Series}, + volume = {1}, + url = {https://www-pub.iaea.org/MTCD/Publications/PDF/nvs1_web.pdf}, + urldate = {2021-04-01}, + isbn = {978-92-0-118910-3} +} + +@www{iana21, + title = {Root Zone {{KSK}} Operator Key Management Procedure}, + author = {{Root Zone KSK Operator Policy Management Authority}}, + date = {2021-09-22}, + url = {https://www.iana.org/dnssec/procedures/ksk-operator/KSK_Key_Management_Procedure_v3.4.pdf}, + urldate = {2021-10-07}, + version = {Version 3.4} +} + @online{IEEEXploreFullText, title = {{{IEEE Xplore Full-Text PDF}}:}, url = {https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=514853}, @@ -2286,17 +2602,37 @@ } @online{IEEEXploreFullTexta, + title = {{{IEEE Xplore Full-Text PDF}}:}, + url = {https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=6520632}, + urldate = {2024-09-10}, + file = {/home/jaseg/Zotero/storage/PQYCW7K7/stamp.html} +} + +@online{IEEEXploreFullTextb, title = {{{IEEE Xplore Full-Text PDF}}:}, url = {https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=8558378}, urldate = {2024-09-10}, file = {/home/jaseg/Zotero/storage/HJJK32NF/stamp.html} } -@online{IEEEXploreFullTextb, - title = {{{IEEE Xplore Full-Text PDF}}:}, - url = {https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=6520632}, - urldate = {2024-09-10}, - file = {/home/jaseg/Zotero/storage/PQYCW7K7/stamp.html} +@www{ika2002, + title = {A Test Procedure for Airbags}, + date = {2002}, + series = {{{CITA Research}} Study Programme on {{Electronically}} Controlled Systems on Vehicles}, + publisher = {International Motor Vehicle Inspection Commitee / Rheinisch-Westfälischen Technischen Hochschule (RWTH) Aachen, Institut für Kraftfahrwesen Aachen (IKA)} +} + +@article{immler2019, + title = {Secure Physical Enclosures from Covers with Tamper-Resistance}, + author = {Immler, Vincent and Obermaier, Johannes and Ng, Kuan Kuan and Ke, Fei Xiang and Lee, Jin Yu and Lim, Yak Peng and Oh, Wei Koon and Wee, Keng Hoong and Sigl, Georg}, + date = {2019}, + journaltitle = {IACR transactions on cryptographic hardware and embedded systems.}, + shortjournal = {IACR Transactions on Cryptographic Hardware and Embedded Systems}, + publisher = {IACR}, + issn = {2569-2925}, + doi = {10.13154/tches.v2019.i1.51-96}, + url = {https://tches.iacr.org/index.php/TCHES/article/view/7334/6506}, + urldate = {2020-09-16} } @inproceedings{immlerBTREPIDBatterylessTamperresistant2018, @@ -2359,6 +2695,34 @@ file = {/home/jaseg/Zotero/storage/K9YRK595/Implementation Security of Quantum Cryptography - .pdf} } +@inproceedings{irikura2012, + title = {High Acceleration Motions Generated from the 2011 Pacific Coast off Tohoku, Japan Earthquake}, + booktitle = {Proceedings of the 15th World Conference on Earthquake Engineering}, + author = {Irikura, K and Kurahashi, S}, + date = {2012}, + pages = {24--28} +} + +@report{isaacs2013, + title = {Tamper Proof, Tamper Evident Encryption Technology}, + author = {Isaacs, Phil and Morris Jr, Thomas and Fisher, Michael J and Cuthbert, Keith}, + date = {2013}, + journaltitle = {Pan pacific microelectronics symposium}, + institution = {Surface Mount Technology Association / Surface Mount Technology Association}, + x-fetchedfrom = {Google Scholar} +} + +@online{ISOIEC19790, + title = {{{ISO}}/{{IEC}} 19790:2025}, + shorttitle = {{{ISO}}/{{IEC}} 19790}, + url = {https://www.iso.org/standard/82423.html}, + urldate = {2025-05-15}, + abstract = {Information security, cybersecurity and privacy protection — Security requirements for cryptographic modules}, + langid = {english}, + organization = {ISO}, + file = {/home/jaseg/Zotero/storage/CVBBSX3N/82423.html} +} + @online{ISOIEC24759, title = {{{ISO}}/{{IEC}} 24759:2025}, shorttitle = {{{ISO}}/{{IEC}} 24759}, @@ -2429,6 +2793,15 @@ langid = {english} } +@inproceedings{johnson2018, + title = {Titan: Enabling a Transparent Silicon Root of Trust for {{Cloud}}}, + booktitle = {Hot Chips: A Symposium on High Performance Chips}, + author = {Johnson, Scott and Rizzo, Dominic and Ranganathan, Parthasarathy and McCune, Jon and Ho, Richard}, + date = {2018}, + url = {https://www.hotchips.org/hc30/1conf/1.14_Google_Titan_GoogleFinalTitanHotChips2018.pdf}, + x-fetchedfrom = {Google Scholar} +} + @online{JUNOSubmarineNetworks, title = {{{JUNO}} - {{Submarine Networks}}}, url = {https://www.submarinenetworks.com/en/systems/trans-pacific/juno}, @@ -2526,6 +2899,16 @@ file = {/home/jaseg/Zotero/storage/M6LSM6ML/Keller et al. - 2017 - Faster Secure Multi-party Computation of AES and D.pdf} } +@book{kelly1993, + title = {Fundamentals of Mechanical Vibrations}, + author = {Kelly, S. Graham}, + date = {1993}, + series = {{{McGraw-hill}} Series in Mechanical Engineering}, + edition = {2}, + publisher = {McGraw-Hill}, + isbn = {0-07-230092-2} +} + @online{KiCadEDA, title = {{{KiCad EDA}}}, url = {https://www.kicad.org/}, @@ -2535,6 +2918,17 @@ file = {/home/jaseg/Zotero/storage/IYJUIHPL/www.kicad.org.html} } +@article{kim2018, + title = {Intelligent Intrusion Detection System Featuring a Virtual Fence, Active Intruder Detection, Classification, Tracking, and Action Recognition}, + author = {Kim, Seung Hyun and Lim, Su Chang and others}, + date = {2018}, + journaltitle = {Annals of Nuclear Energy}, + volume = {112}, + pages = {845--855}, + publisher = {Elsevier}, + x-fetchedfrom = {Google Scholar} +} + @article{kimAdvancementFlexibleRobot2022, title = {Advancement of {{Flexible Robot Technologies}} for {{Endoluminal Surgeries}}}, author = {Kim, Joonhwan and family=Mathelin, given=Michel, prefix=de, useprefix=true and Ikuta, Koji and Kwon, Dong-Soo}, @@ -2622,6 +3016,18 @@ file = {/home/jaseg/Zotero/storage/4NYR9495/Koblah et al. - 2022 - Hardware Moving Target Defenses against Physical A.pdf} } +@online{kochMoreMoreExperts2025, + title = {More and More Experts Warn against Electronic Patient Records}, + author = {Koch, Marie-Claire}, + date = {2025-01-10}, + url = {https://www.heise.de/en/news/More-and-more-experts-warn-against-electronic-patient-records-10235907.html}, + urldate = {2025-05-26}, + abstract = {The electronic patient file is due to be launched in a few days, but more and more experts are advising against it or do not consider it advisable.}, + langid = {english}, + organization = {heise online}, + file = {/home/jaseg/Zotero/storage/XQRRKELL/More-and-more-experts-warn-against-electronic-patient-records-10235907.html} +} + @inproceedings{kodwaniSecurityKeyDerivation2021, title = {On {{Security}} of {{Key Derivation Functions}} in {{Password-based Cryptography}}}, booktitle = {2021 {{IEEE International Conference}} on {{Cyber Security}} and {{Resilience}} ({{CSR}})}, @@ -2697,6 +3103,14 @@ file = {/home/jaseg/Sync/Research/Zotero/Kolesnikov_2005_Gate Evaluation Secret Sharing and Secure One-Round Two-Party Computation.pdf} } +@book{kordyban1998, + title = {Hot Air Rises and Heat Sinks: {{Everything}} You Know about Cooling Electronics Is Wrong}, + author = {Kordyban, Tony}, + date = {1998}, + publisher = {ASME}, + isbn = {978-0-7918-0074-4} +} + @inproceedings{kozlowskiLargeScaleQuantumNetworks2019, title = {Towards {{Large-Scale Quantum Networks}}}, booktitle = {Proceedings of the {{Sixth Annual ACM International Conference}} on {{Nanoscale Computing}} and {{Communication}}}, @@ -2787,6 +3201,14 @@ file = {/home/jaseg/Sync/Research/Zotero/2023_Krachenfels et al_Trojan awakener.pdf} } +@article{kreft2012, + title = {Cocoon-{{PUF}}, a Novel Mechatronic Secure Element Technology}, + author = {Kreft, Heinz and Adi, Wael}, + date = {2012}, + journaltitle = {2012 NASA/ESA Conference on Adaptive Hardware and Systems (AHS)}, + doi = {10.1109/ahs.2012.6268655} +} + @inproceedings{kryjakFPGAImplementationCamera2012, title = {{{FPGA}} Implementation of Camera Tamper Detection in Real-Time}, booktitle = {Proceedings of the 2012 {{Conference}} on {{Design}} and {{Architectures}} for {{Signal}} and {{Image Processing}}}, @@ -2801,6 +3223,15 @@ file = {/home/jaseg/Sync/Research/Zotero/2012_Kryjak et al_FPGA implementation of camera tamper detection in real-time.pdf} } +@article{kvk2019, + title = {Internet of Things Based Monitoring of Large Rotor Vibration with a Microelectromechanical Systems Accelerometer}, + author = {Koene, Ivar and Viitala, Raine and Kuosmanen, Petri}, + date = {2019}, + journaltitle = {IEEE access : practical innovations, open solutions}, + shortjournal = {IEEE Access}, + doi = {10.1109/ACCESS.2019.2927793} +} + @article{kwekChipbasedQuantumKey2021, title = {Chip-Based Quantum Key Distribution}, author = {Kwek, Leong-Chuan and Cao, Lin and Luo, Wei and Wang, Yunxiang and Sun, Shihai and Wang, Xiangbin and Liu, Ai Qun}, @@ -2849,11 +3280,11 @@ issn = {2511-9044, 2511-9044}, doi = {10.1002/qute.201800011}, url = {http://arxiv.org/abs/1703.09278}, - urldate = {2024-05-02}, + urldate = {2024-05-27}, abstract = {Quantum key distribution using weak coherent states and homodyne detection is a promising candidate for practical quantum-cryptographic implementations due to its compatibility with existing telecom equipment and high detection efficiencies. However, despite the actual simplicity of the protocol, the security analysis of this method is rather involved compared to discrete-variable QKD. In this article we review the theoretical foundations of continuous-variable quantum key distribution (CV-QKD) with Gaussian modulation and rederive the essential relations from scratch in a pedagogical way. The aim of this paper is to be as comprehensive and self-contained as possible in order to be well intelligible even for readers with little pre-knowledge on the subject. Although the present article is a theoretical discussion of CV-QKD, its focus lies on practical implementations, taking into account various kinds of hardware imperfections and suggesting practical methods to perform the security analysis subsequent to the key exchange. Apart from a review of well known results, this manuscript presents a set of new original noise models which are helpful to get an estimate of how well a given set of hardware will perform in practice.}, langid = {english}, keywords = {Quantum Physics}, - file = {/home/jaseg/Zotero/storage/A2BQHUUW/Laudenbach et al. - 2018 - Continuous-Variable Quantum Key Distribution with .pdf} + file = {/home/jaseg/Zotero/storage/I7UL2SKX/Laudenbach et al. - 2018 - Continuous-Variable Quantum Key Distribution with .pdf} } @article{laudenbachContinuousVariableQuantumKey2018a, @@ -2871,11 +3302,11 @@ issn = {2511-9044, 2511-9044}, doi = {10.1002/qute.201800011}, url = {http://arxiv.org/abs/1703.09278}, - urldate = {2024-05-27}, + urldate = {2024-05-02}, abstract = {Quantum key distribution using weak coherent states and homodyne detection is a promising candidate for practical quantum-cryptographic implementations due to its compatibility with existing telecom equipment and high detection efficiencies. However, despite the actual simplicity of the protocol, the security analysis of this method is rather involved compared to discrete-variable QKD. In this article we review the theoretical foundations of continuous-variable quantum key distribution (CV-QKD) with Gaussian modulation and rederive the essential relations from scratch in a pedagogical way. The aim of this paper is to be as comprehensive and self-contained as possible in order to be well intelligible even for readers with little pre-knowledge on the subject. Although the present article is a theoretical discussion of CV-QKD, its focus lies on practical implementations, taking into account various kinds of hardware imperfections and suggesting practical methods to perform the security analysis subsequent to the key exchange. Apart from a review of well known results, this manuscript presents a set of new original noise models which are helpful to get an estimate of how well a given set of hardware will perform in practice.}, langid = {english}, keywords = {Quantum Physics}, - file = {/home/jaseg/Zotero/storage/I7UL2SKX/Laudenbach et al. - 2018 - Continuous-Variable Quantum Key Distribution with .pdf} + file = {/home/jaseg/Zotero/storage/A2BQHUUW/Laudenbach et al. - 2018 - Continuous-Variable Quantum Key Distribution with .pdf} } @article{laudenbachContinuousVariableQuantumKey2018b, @@ -2921,6 +3352,15 @@ file = {/home/jaseg/Zotero/storage/SPNJ8KBL/Launchbury et al. - 2014 - Application-Scale Secure Multiparty Computation.pdf} } +@inproceedings{ledger2019, + title = {Everybody Be Cool, This Is a Robbery!}, + booktitle = {Symposium Sur La Sécurité Des Technologies de l'information et Des Communications 2019}, + author = {Bédrune, Jean-Baptiste and Campana, Gabriel}, + date = {2019}, + url = {https://www.sstic.org/media/SSTIC2019/SSTIC-actes/hsm/SSTIC2019-Article-hsm-campana_bedrune_neNSDyL.pdf}, + urldate = {2021-09-24} +} + @inproceedings{lee16psresolutionRandomEquivalent2003, title = {A 16ps-Resolution {{Random Equivalent Sampling}} Circuit for {{TDR}} Utilizing a {{Vernier}} Time Delay Generation}, booktitle = {2003 {{IEEE Nuclear Science Symposium}}. {{Conference Record}} ({{IEEE Cat}}. {{No}}.{{03CH37515}})}, @@ -2950,7 +3390,7 @@ file = {/home/jaseg/Zotero/storage/QSDA9K48/Hall - (72) Inventors Alan Henry Leek, Frisco, TX (US);.pdf} } -@article{leePrintedSpiralWinding2011, +@article{leePrintedSpiralWinding2011a, title = {Printed {{Spiral Winding Inductor With Wide Frequency Bandwidth}}}, author = {Lee, Chi Kwan and Su, Y. P. and Ron Hui, S. Y.}, date = {2011-10}, @@ -3152,7 +3592,7 @@ file = {/home/jaseg/Zotero/storage/WBSKAYAN/Long et al. - 2024 - EM Eye Characterizing Electromagnetic Side-channe.pdf} } -@article{lopeFirstSelfresonantFrequency2021, +@article{lopeFirstSelfResonant2021, title = {First Self‐resonant Frequency of Power Inductors Based on Approximated Corrected Stray Capacitances}, author = {Lope, Ignacio and Carretero, Claudio and Acero, Jesus}, date = {2021-02}, @@ -3460,6 +3900,26 @@ file = {/home/jaseg/Zotero/storage/TMI3LX3I/Melara et al. - CONIKS Bringing Key Transparency to End Users.pdf} } +@online{mennChineseGovernmentHackers2024, + title = {Chinese Government Hackers Penetrate {{U}}.{{S}}. Internet Providers to Spy}, + author = {Menn, Joseph}, + date = {2024-08-27}, + url = {https://www.washingtonpost.com/technology/2024/08/27/chinese-government-hackers-penetrate-us-internet-providers-spy/}, + urldate = {2025-05-15}, + abstract = {Beijing’s hacking effort has “dramatically stepped up from where it used to be,” says former top U.S cybersecurity official.}, + langid = {american}, + organization = {The Washington Post}, + file = {/home/jaseg/Zotero/storage/4FLHNCC6/chinese-government-hackers-penetrate-us-internet-providers-spy.html} +} + +@www{mgchemicals2017, + title = {{{MG}} Chemicals Specialty Adhesives Catalog}, + author = {{MG Chemicals}}, + date = {2019}, + url = {https://www.mgchemicals.com/downloads/catalogs/Specialty%20Adhesives%20Catalogue%20Web.pdf}, + urldate = {2021-07-08} +} + @video{mikeselectricstuffNeopostPostalFranking2023, entrysubtype = {video}, title = {Neopost {{Postal Franking Machines}}}, @@ -3892,6 +4352,14 @@ langid = {english} } +@www{newman2020, + title = {Apple's {{T2}} Security Chip Has an Unfixable Flaw}, + author = {Newman, Lily Hay}, + date = {2020-10-06}, + publisher = {Wired Magazine}, + url = {https://www.wired.com/story/apple-t2-chip-unfixable-flaw-jailbreak-mac/} +} + @article{nguyenReviewComparisonSolid2020, title = {A {{Review}} and {{Comparison}} of {{Solid}}, {{Multi-Strands}} and {{Litz Style PCB Winding}}}, author = {Nguyen, Minh Huy and Fortin Blanchette, Handy}, @@ -4067,6 +4535,25 @@ annotation = {2015 re-declassified version contains more material} } +@article{obermaier2018, + title = {The Past, Present, and Future of Physical Security Enclosures: {{From}} Battery-Backed Monitoring to {{PUF-based}} Inherent Security and Beyond}, + author = {Obermaier, Johannes and Immler, Vincent}, + date = {2018}, + journaltitle = {Journal of Hardware and Systems Security}, + volume = {2}, + pages = {289--296}, + issn = {2509-3428}, + doi = {10.1007/s41635-018-0045-2} +} + +@www{obermaier2019, + title = {Physical Unclonable Functions: {{The}} Future Technology for Physical Security Enclosures?}, + author = {Obermaier, Johannes}, + date = {2019-08-24}, + publisher = {Chaos Computer Club e.V.}, + doi = {10.5446/43265} +} + @article{obermaierBreakingRestoringEmbedded, title = {Breaking and {{Restoring Embedded System Security}} - {{From Practical Attacks}} to {{Novel PUF-Based Physical Security Enclosures}}}, author = {Obermaier, Johannes}, @@ -4114,6 +4601,18 @@ isbn = {978-1-5386-9210-3} } +@inproceedings{ongaro2019, + title = {In Search of an Understandable Consensus Algorithm}, + booktitle = {2014 {{USENIX}} Annual Technical Conference ({{USENIX ATC}} 14)}, + author = {Ongaro, Diego and Ousterhout, John}, + date = {2014-06}, + pages = {305--319}, + publisher = {USENIX Association}, + location = {Philadelphia, PA}, + url = {https://www.usenix.org/conference/atc14/technical-sessions/presentation/ongaro}, + isbn = {978-1-931971-10-2} +} + @article{orlandiOptimizationShieldedPCB2011, title = {Optimization of {{Shielded PCB Air-Core Toroids}} for {{High-Efficiency DC}}–{{DC Converters}}}, author = {Orlandi, Stefano and Allongue, Bruno Andre and Blanchot, Georges and Buso, Simone and Faccio, Federico and Fuentes, Cristian Alejandro and Kayal, Maher and Michelis, Stefano and Spiazzi, Giorgio}, @@ -4220,7 +4719,24 @@ file = {/home/jaseg/Zotero/storage/RLBAU32H/Patra et al. - ABY2.0 Improved Mixed-Protocol Secure Two-Party C.pdf} } -@misc{pcisecuritystandardscouncilPaymentCardIndustry2021, +@article{PavingWayFull, + title = {Paving the {{Way}} to {{Full Security}} in {{eHealth}} – {{Ensuring}} Complete Security for Digital Data, Connected Environments and Devices in {{eHealth}}}, + langid = {english}, + file = {/home/jaseg/Zotero/storage/CCJFZZ34/Paving the Way to Full Security in eHealth – Ensur.pdf} +} + +@standard{pcisecuritystandardscouncilPaymentCardIndustry2021, + title = {Payment {{Card Industry PIN Transaction Security Hardware Security Module Modular Security Requirements}}}, + author = {{PCI Security Standards Council}}, + date = {2021-12}, + url = {https://docs-prv.pcisecuritystandards.org/PTS/Standard/PCI_HSM_Security_Requirements_v4.pdf}, + urldate = {2025-04-08}, + abstract = {HSMs (Hardware Security Modules) play a critical role in helping to ensure the confidentiality and/or data integrity of financial transactions. Therefore, to help engender trust in the legitimacy of the financial transactions being supported, it is imperative that HSMs are appropriately secure during their entire lifecycle. This includes manufacturing, shipment, use, and decommissioning. The purpose of this document is to provide guidance and direction for appropriately designing HSMs to meet the security needs of the financial payments industry, and for protecting those HSMs up to the point of initial deployment. Other security requirements apply at the point of deployment for the management of HSMs involved with financial payments industry. This document provides vendors with a list of all the security requirements against which their products will be evaluated in order to obtain Payment Card Industry (PCI) PIN Transaction Security (PTS) Hardware Security Module (HSM) device approval. HSMs may support a variety of payment-processing and cardholder-authentication applications and processes. The processes relevant to the full set of requirements outlined in this document are: ▪ PIN processing ▪ 3-D Secure ▪ Card verification ▪ Card production and personalization ▪ EFTPOS ▪ ATM interchange ▪ Cash-card reloading ▪ Data integrity ▪ Chip-card transaction processing ▪ Key generation ▪ Key injection There are many other applications and processes that may utilize general-purpose HSMs, and which may necessitate the adoption of all or a subset of the requirements listed in this document. However, this document does not aim to develop a standard for general-purpose HSMs for use outside of applications such as those listed above that are in support of a variety of payment-processing and cardholder- authentication applications and processes for the financial payments industry.}, + version = {4.0}, + file = {/home/jaseg/Zotero/storage/CZF34DDM/PCI_HSM_Security_Requirements_v4.pdf} +} + +@misc{pcisecuritystandardscouncilPaymentCardIndustry2021a, title = {Payment {{Card Industry PIN Transaction Security Hardware Security Module Modular Derived Test Requirements}}}, author = {{PCI Security Standards Council}}, date = {2021-12}, @@ -4236,6 +4752,15 @@ file = {/home/jaseg/Zotero/storage/QDJV4ERT/Perrig et al. - The TESLA Broadcast Authentication Protocol.pdf} } +@www{perrin2018, + title = {The Noise Protocol Framework}, + author = {Perrin, Trevor}, + date = {2018-07-11}, + url = {http://noiseprotocol.org/noise.html}, + urldate = {2021-07-13}, + version = {Revision 34} +} + @incollection{pinkasPSIPaXoSFast2020, title = {{{PSI}} from {{PaXoS}}: {{Fast}}, {{Malicious Private Set Intersection}}}, shorttitle = {{{PSI}} from {{PaXoS}}}, @@ -4373,6 +4898,24 @@ file = {/home/jaseg/Zotero/storage/WTJ3HBFT/o0485.html} } +@inproceedings{putzAcousticIntegrityCodes2020, + title = {Acoustic Integrity Codes: Secure Device Pairing Using Short-Range Acoustic Communication}, + shorttitle = {Acoustic Integrity Codes}, + booktitle = {Proceedings of the 13th {{ACM Conference}} on {{Security}} and {{Privacy}} in {{Wireless}} and {{Mobile Networks}}}, + author = {Putz, Florentin and Álvarez, Flor and Classen, Jiska}, + date = {2020-07-21}, + series = {{{WiSec}} '20}, + pages = {31--41}, + publisher = {Association for Computing Machinery}, + location = {New York, NY, USA}, + doi = {10.1145/3395351.3399420}, + url = {https://dl.acm.org/doi/10.1145/3395351.3399420}, + urldate = {2025-05-28}, + abstract = {Secure Device Pairing (SDP) relies on an out-of-band channel to authenticate devices. This requires a common hardware interface, which limits the use of existing SDP systems. We propose to use short-range acoustic communication for the initial pairing. Audio hardware is commonly available on existing off-the-shelf devices and can be accessed from user space without requiring firmware or hardware modifications.We improve upon previous approaches by designing Acoustic Integrity Codes (AICs): a modulation scheme that provides message authentication on the acoustic physical layer. We analyze their security and demonstrate that we can defend against signal cancellation attacks by designing signals with low autocorrelation. Our system can detect overshadowing attacks using a ternary decision function with a threshold. In our evaluation of this SDP scheme's security and robustness, we achieve a bit error ratio below 0.1\% for a net bit rate of 100 bps with a signal-to-noise ratio (SNR) of 14 dB. Using our open-source proof-of-concept implementation on Android smartphones, we demonstrate pairing between different smartphone models.}, + isbn = {978-1-4503-8006-5}, + file = {/home/jaseg/Sync/Research/Zotero/Putz et al_2020_Acoustic integrity codes.pdf} +} + @book{querfurthCoilWindingDescription1954, title = {Coil {{Winding}}: {{A Description}} of {{Coil Winding Procedures}}, {{Winding Machines}} and {{Associated Equipment}}}, author = {Querfurth, William}, @@ -4401,6 +4944,14 @@ file = {/home/jaseg/Sync/Research/Zotero/Quisquater_Samyde_2001_ElectroMagnetic Analysis (EMA).pdf} } +@patent{rahman1988, + type = {patentus}, + title = {Optical Fiber Cable with Tampering Detecting Means}, + author = {Rahman, Mujib}, + date = {1988-03-10}, + number = {Patent US4859024A} +} + @article{rahmanComprehensiveSurveyHardwareSoftware, title = {A {{Comprehensive Survey}} on {{Hardware-Software}} Co-{{Protection}} against {{Invasive}}, {{Non-Invasive}} and {{Interactive Security Threats}}}, author = {Rahman, Habibur}, @@ -4423,6 +4974,16 @@ file = {/home/jaseg/Sync/Research/Zotero/2020_Razaghi_Hill_Tamper detection system.pdf} } +@online{RefusingTechFascism, + title = {Refusing {{Tech Fascism}} — {{Error}} 406 {{Tech Fascism Not Acceptable}}}, + url = {https://error417.expectation.fail/406/tech-fascism-not-acceptable/essay-refusing-tech-fascism-by-tante}, + urldate = {2025-05-16}, + abstract = {An essay on Refusing Tech Fascism by Jürgen Geuter aka @tante}, + langid = {english}, + organization = {Error 417 Expectation Failed}, + file = {/home/jaseg/Zotero/storage/I6AG4WCP/essay-refusing-tech-fascism-by-tante.html} +} + @misc{renesaselectronicscorporationApplicationNoteAN2242019, title = {Application {{Note AN-224}}: {{ALVC}}/{{LVC Logic Characteristics}} and {{Applications}}}, author = {{Renesas Electronics Corporation}}, @@ -4814,6 +5375,26 @@ file = {/home/jaseg/Sync/Research/Zotero/Seol et al_2016_A Trusted IaaS Environment with Hardware Security Module.pdf;/home/jaseg/Zotero/storage/ZFNE2NAZ/7010017.html} } +@article{sh2016, + title = {Application of {{MEMS}} Accelerometer for Detection and Diagnosis of Multiple Faults in the Roller Element Bearings of Three Phase Induction Motor}, + author = {S., Maruthi G. and Hegde, Vishwanath}, + date = {2016}, + journaltitle = {IEEE Sensors Journal}, + volume = {16}, + number = {1}, + issn = {1558-1748}, + doi = {10.1109/JSEN.2015.2476561}, + url = {https://www.researchgate.net/profile/Vishwanath-Hegde-2/publication/282389149_Application_of_MEMS_Accelerometer_for_Detection_and_Diagnosis_of_Multiple_Faults_in_the_Roller_Element_Bearings_of_Three_Phase_Induction_Motor/links/568bace808aebccc4e1c01fa/Application-of-MEMS-Accelerometer-for-Detection-and-Diagnosis-of-Multiple-Faults-in-the-Roller-Element-Bearings-of-Three-Phase-Induction-Motor.pdf} +} + +@book{shabany2009, + title = {Heat Transfer: {{Thermal}} Management of Electronics}, + author = {Shabany, Younes}, + date = {2009}, + publisher = {CRC Press}, + isbn = {978-1-4398-1468-0} +} + @article{shenDAENetMakingStrong2022, title = {{{DAENet}}: {{Making Strong Anonymity Scale}} in a {{Fully Decentralized Network}}}, shorttitle = {{{DAENet}}}, @@ -4901,6 +5482,15 @@ file = {/home/jaseg/Zotero/storage/S2TLFNT7/Sifferman et al. - 2023 - Unlocking the Performance of Proximity Sensors by .pdf} } +@www{signal2019, + title = {Technology {{Preview}} for Secure Value Recovery}, + author = {Lund, Joshua}, + date = {2019-12-19}, + publisher = {signal.org / signal.org}, + url = {https://signal.org/blog/secure-value-recovery/}, + urldate = {2021-07-12} +} + @article{skorobogatovHardwareSecurityImplications2018, title = {Hardware {{Security Implications}} of {{Reliability}}, {{Remanence}}, and {{Recovery}} in {{Embedded Memory}}}, author = {Skorobogatov, Sergei}, @@ -4920,6 +5510,40 @@ file = {/home/jaseg/Sync/Research/Zotero/2018_Skorobogatov_Hardware Security Implications of Reliability, Remanence, and Recovery in.pdf} } +@online{slanySicherheitsanalyseZurSicherheit2020, + title = {Sicherheitsanalyse zur Sicherheit der kritischen Komponenten der elektronischen Patientenakte nach §291a SGB V}, + author = {Slany, Wolfgang}, + date = {2020-03}, + url = {https://www.gematik.de/media/gematik/Medien/Newsroom/Presse/Dokumente/Sicherheitsanalyse_TU_Graz_zur_ePA_mit_Vorwort_der_gematik.pdf}, + urldate = {2025-05-15}, + langid = {german}, + file = {/home/jaseg/Zotero/storage/SVMJG2SZ/Sicherheitsanalyse_TU_Graz_zur_ePA_mit_Vorwort_der_gematik.pdf} +} + +@online{SmaugDracheUnd, + title = {Smaug, der Drache, und die ePA: Ein zentraler Schlüsselgenerierungsdienst, ein zentrales Risiko}, + shorttitle = {Smaug, der Drache, und die ePA}, + url = {https://de.linkedin.com/pulse/smaug-der-drache-und-die-epa-ein-zentraler-zentrales-risiko-block-vh3ue}, + urldate = {2025-05-10}, + abstract = {Stell Dir vor, wir befinden uns in Tolkiens Welt von Der Hobbit: Smaug, der mächtige Drache, liegt auf einem Berg aus Gold, überzeugt davon, dass er unbesiegbar ist. Doch in seiner scheinbar uneinnehmbaren Festung gibt es eine winzige Schwachstelle – eine kleine Stelle in seinem Panzer.}, + langid = {ngerman}, + annotation = {Archive 1: https://archive.is/PVJO8\\ +Archive 2: https://web.archive.org/web/20250510104017/https://de.linkedin.com/pulse/smaug-der-drache-und-die-epa-ein-zentraler-zentrales-risiko-block-vh3ue}, + file = {/home/jaseg/Zotero/storage/FIPZSEGC/smaug-der-drache-und-die-epa-ein-zentraler-zentrales-risiko-block-vh3ue.html} +} + +@article{smith1998, + title = {Building a High-Performance, Programmable Secure Coprocessor}, + author = {Smith, Sean and Weingart, Steve}, + date = {1999}, + journaltitle = {Computer Networks}, + volume = {31}, + number = {8}, + publisher = {IBM T.J. Watson Research Center}, + url = {ftp://www6.software.ibm.com/software/cryptocards/rc21102.pdf}, + urldate = {2020-09-16} +} + @article{smithDesignOptimizationVoice2015, title = {Design and {{Optimization}} of a {{Voice Coil Motor With}} a {{Rotary Actuator}} for an {{Ultrasound Scanner}}}, author = {Smith, Kristopher J. and Graham, David J. and Neasham, Jeffrey A.}, @@ -5014,6 +5638,14 @@ file = {/home/jaseg/Sync/Research/Zotero/2021_Sozio et al_Patchable Hardware Security Module (PHaSM) for Extending FPGA Root-of-Trust.pdf;/home/jaseg/Zotero/storage/D5BLNRV7/9707698.html} } +@standard{SpezifikationFachmodulEPA2023, + title = {Spezifikation Fachmodul ePA}, + date = {2023-04-03}, + langid = {ngerman}, + version = {1.53.0}, + file = {/home/jaseg/Zotero/storage/J79W78KS/Spezifikation Fachmodul ePA.pdf} +} + @article{sproHighVoltageInsulationDesign2021, title = {High-{{Voltage Insulation Design}} of {{Coreless}}, {{Planar PCB Transformers}} for {{Multi-MHz Power Supplies}}}, author = {Spro, Ole Christian and Mauseth, Frank and Peftitsis, Dimosthenis}, @@ -5136,7 +5768,7 @@ file = {/home/jaseg/Zotero/storage/XURXLX9C/Takeoka et al. - 2014 - Fundamental rate-loss tradeoff for optical quantum.pdf} } -@incollection{TamperResistance2020, +@incollection{TamperResistance2020a, title = {Tamper {{Resistance}}}, booktitle = {Security {{Engineering}}}, date = {2020}, @@ -5247,6 +5879,41 @@ file = {/home/jaseg/Zotero/storage/SXP7TBFQ/070-1128-01_1987.pdf} } +@www{terdiman2013, + title = {Aboard {{America}}'s {{Doomsday}} Command and Control Plane}, + author = {Terdiman, Daniel}, + year = {2013-07-23, 2013-07}, + publisher = {CNET / cnet.com}, + url = {https://www.cnet.com/news/aboard-americas-doomsday-command-and-control-plane} +} + +@www{thales2015hsmha, + title = {{{SafeNet PCI-e HSM}} 6.2 Product Documentation: {{High}} Availability ({{HA}}) Overview}, + author = {NV, Gemalto}, + date = {2015-12-18}, + publisher = {Gemalto NV}, + url = {https://thalesdocs.com/gphsm/luna/6.2/docs/pci/Content/administration/ha/ha_overview.htm}, + urldate = {2021-07-12} +} + +@www{thales2021, + title = {Thales Luna {{HSM}} Product Family Overview Page}, + author = {Group, Thales}, + date = {2021}, + publisher = {Thales Group}, + url = {https://cpl.thalesgroup.com/encryption/hardware-security-modules/network-hsms}, + urldate = {2021-07-08} +} + +@article{tobisch2020, + title = {Electromagnetic Enclosure {{PUF}} for Tamper Proofing Commodity Hardware and Other Applications}, + author = {Tobisch, Johannes and Zenger, Christian and Paar, Christof}, + date = {2020-03-13}, + journaltitle = {TRUDEVICE 2020: 9th Workshop on Trustworthy Manufacturing and Utilization of Secure Devices}, + url = {https://www.emsec.ruhr-uni-bochum.de/media/crypto/veroeffentlichungen/2020/05/13/trudevice_submission_enclosure_puf.pdf}, + urldate = {2020-09-17} +} + @article{tobischPhysicalSystemsIntegrity, title = {Physical Systems for Integrity Protection and Authentication}, author = {Tobisch, Johannes}, @@ -5277,6 +5944,49 @@ file = {/home/jaseg/Zotero/storage/ZCJLJ7JB/6484979.html} } +@inproceedings{trippel2017, + title = {{{WALNUT}}: {{Waging}} Doubt on the Integrity of {{MEMS}} Accelerometers with Acoustic Injection Attacks}, + booktitle = {2017 {{IEEE European}} Symposium on Security and Privacy}, + author = {Trippel, Timothy and Weisse, Ofir and Xu, Wenyuan and Honeyman, Peter and Fu, Kevin}, + date = {2017}, + pages = {3--18}, + publisher = {IEEE}, + x-fetchedfrom = {Google Scholar} +} + +@online{tschirsichHackerHinOder0100, + title = {"{{Hacker}} Hin Oder Her": {{Die}} Elektronische {{Patientenakte}} Kommt!}, + shorttitle = {"{{Hacker}} Hin Oder Her"}, + author = {Tschirsich, Martin and Brodowski, cbro-Dr med Christian and Zilch, Dr André}, + year = {01:00:00 +0100}, + url = {https://media.ccc.de/v/36c3-10595-hacker_hin_oder_her_die_elektronische_patientenakte_kommt}, + urldate = {2025-05-15}, + abstract = {Herzstück der digitalen Gesundheitsversorgung für 73 Millionen Versicherte ist die hochsichere, kritische Telematik-Infrastruktur mit ber...}, + langid = {english}, + file = {/home/jaseg/Zotero/storage/XVJB3U43/36c3-10595-hacker_hin_oder_her_die_elektronische_patientenakte_kommt.html} +} + +@online{tschirsichKonnteBisherNoch0100, + title = {„{{Konnte}} Bisher Noch Nie Gehackt Werden“: {{Die}} Elektronische {{Patientenakte}} Kommt - Jetzt Für Alle!}, + shorttitle = {„{{Konnte}} Bisher Noch Nie Gehackt Werden“}, + author = {Tschirsich, Martin and Kastl, Bianca}, + year = {00:00:00 +0100}, + url = {https://media.ccc.de/v/38c3-konnte-bisher-noch-nie-gehackt-werden-die-elektronische-patientenakte-kommt-jetzt-fr-alle}, + urldate = {2025-05-15}, + abstract = {In wenigen Wochen werden die Gesundheitsdaten von rund 73 Millionen in Deutschland Krankenversicherten ohne deren Zutun über Praxis- und ...}, + langid = {english}, + file = {/home/jaseg/Zotero/storage/FYNQN7QX/38c3-konnte-bisher-noch-nie-gehackt-werden-die-elektronische-patientenakte-kommt-jetzt-fr-alle.html} +} + +@inproceedings{tschofenig2015, + title = {Performance of State-of-the-Art Cryptography on {{ARM-based}} Microprocessors}, + booktitle = {{{NIST}} Lightweight Cryptography Workshop 2015}, + author = {Tschofenig, Hannes and Pegourie-Gonnard, Manuel and Vincent, Hugo}, + date = {2015-07-21}, + url = {https://csrc.nist.gov/csrc/media/events/lightweight-cryptography-workshop-2015/documents/presentations/session7-vincent.pdf}, + urldate = {2021-07-13} +} + @article{tyagiOrcaBlocklistingSenderAnonymous, title = {Orca: {{Blocklisting}} in {{Sender-Anonymous Messaging}}}, author = {Tyagi, Nirvan and Len, Julia and Miers, Ian and Ristenpart, Thomas}, @@ -5299,6 +6009,20 @@ file = {/home/jaseg/Sync/Research/Zotero/2002_Technology_Security Requirements for Cryptographic Modules.pdf} } +@report{usnationalinstituteofstandardsandtechnologySecurityRequirementsCryptographic2019, + title = {Security {{Requirements}} for {{Cryptographic Modules}}}, + author = {{(US) National Institute of Standards and Technology}}, + date = {2019-03-22}, + number = {Federal Information Processing Standard (FIPS) 140-3}, + institution = {U.S. Department of Commerce}, + doi = {10.6028/NIST.FIPS.140-3}, + url = {https://csrc.nist.gov/pubs/fips/140-3/final}, + urldate = {2025-05-15}, + abstract = {The selective application of technological and related procedural safeguards is an important responsibility of every federal organization in providing adequate security in its computer and telecommunication systems.~ ~This standard is applicable to all federal agencies that use cryptographic-based security systems to protect sensitive information in computer and telecommunication systems (including voice systems) as defined in Section 5131 of the Information Technology Management Reform Act of 1996, Public Law 104-106 and the Federal Information Security Management Act of 2002, Public Law 107-347.~ This standard shall be used in designing and implementing cryptographic modules that federal departments and agencies operate or are operated for them under contract.~ The standard provides four increasing, qualitative levels of security intended to cover a wide range of potential applications and environments.~ The security requirements cover areas related to the secure design,...}, + langid = {english}, + file = {/home/jaseg/Sync/Research/Zotero/2019_Technology_Security Requirements for Cryptographic Modules.pdf} +} + @inproceedings{uzunCryptographicKeyDerivation2021, title = {Cryptographic {{Key Derivation}} from {{Biometric Inferences}} for {{Remote Authentication}}}, booktitle = {Proceedings of the 2021 {{ACM Asia Conference}} on {{Computer}} and {{Communications Security}}}, @@ -5441,6 +6165,15 @@ file = {/home/jaseg/Zotero/storage/EGDJZN37/Voloshynovskiy et al. - 2006 - Information-theoretic analysis of electronic and p.pdf} } +@thesis{vrijaldenhoven2004, + type = {mathesis}, + title = {Acoustical Physical Uncloneable Functions}, + author = {Vrijaldenhoven, Serge}, + date = {2004-10-01}, + institution = {Technische Universiteit Eindhoven}, + url = {https://pure.tue.nl/ws/files/46971492/600055-1.pdf} +} + @article{vuDesignPerformanceRelayAssisted2020, title = {Design and {{Performance}} of {{Relay-Assisted Satellite Free-Space Optical Quantum Key Distribution Systems}}}, author = {Vu, Minh Quang and Pham, Thanh V. and Dang, Ngoc T. and Pham, Anh T.}, @@ -5994,6 +6727,19 @@ file = {/home/jaseg/Zotero/storage/CJXHEBEI/9390130.html} } +@article{yoshimitsu1990, + title = {A New Attenuation Relation for Peak Horizontal Acceleration of Strong Earthquake Ground Motion in {{Japan}}}, + author = {Fukushima, Yoshimitsu and Tanaka, Teiji}, + date = {1990}, + journaltitle = {Bulletin of the Seismological Society of America}, + volume = {80}, + number = {4}, + pages = {757--783}, + issn = {0037-1106}, + url = {https://pubs.geoscienceworld.org/ssa/bssa/article-abstract/80/4/757/102395/A-new-attenuation-relation-for-peak-horizontal}, + urldate = {2021-07-07} +} + @article{yuSecretKeyProvisioningCollaborative2022, title = {Secret-{{Key Provisioning With Collaborative Routing}} in {{Partially-Trusted-Relay-based Quantum-Key-Distribution-Secured Optical Networks}}}, author = {Yu, Xiaosong and Liu, Yuhang and Zou, Xingyu and Cao, Yuan and Zhao, Yongli and Nag, Avishek and Zhang, Jie}, @@ -6236,6 +6982,23 @@ file = {/home/jaseg/Zotero/storage/ZAQTS252/Zhao et al. - 2023 - Design and Optimization of Litz-Wire Planar Spiral.pdf} } +@article{zhouHiddenVoiceCommands2019, + title = {Hidden {{Voice Commands}}: {{Attacks}} and {{Defenses}} on the {{VCS}} of {{Autonomous Driving Cars}}}, + shorttitle = {Hidden {{Voice Commands}}}, + author = {Zhou, Man and Qin, Zhan and Lin, Xiu and Hu, Shengshan and Wang, Qian and Ren, Kui}, + date = {2019-10}, + journaltitle = {IEEE Wireless Communications}, + volume = {26}, + number = {5}, + pages = {128--133}, + issn = {1558-0687}, + doi = {10.1109/MWC.2019.1800477}, + url = {https://ieeexplore.ieee.org/abstract/document/8694199}, + urldate = {2025-05-28}, + abstract = {Autonomous driving is becoming one of the most popular applications of AI. Meanwhile, the advances in deep learning have promoted the rapid development of the voice controllable systems (VCSs), which have almost reached the maturity stage. Before autonomous driving cars reach the highest level of automation, intelligent voice interaction remains the primary approach for human-vehicle interaction. Recent works show that such intelligent systems are vulnerable to hidden voice commands that are unnoticed or unintelligible to humans. In particular, an adversary utilizing hidden voice commands is able to control autonomous driving cars. For example, malicious voice commands embedded into the sound of online shared videos can stealthily control the vehicle when people watch the videos in the car. In this article, we investigate the potential perniciousness of hidden voice commands on the VCS of autonomous driving cars, and then discuss feasible defense strategies. We finally propose a pop-noisebased general defense strategy that can resist various kinds of attacks.}, + keywords = {Automobiles,Autonomous vehicles,Machine learning,Microphones,Speech recognition,Ultrasonic imaging,Videos} +} + @inproceedings{zhouPPMLACHighPerformance2022, title = {{{PPMLAC}}: High Performance Chipset Architecture for Secure Multi-Party Computation}, shorttitle = {{{PPMLAC}}}, diff --git a/thesis.tex b/thesis.tex index 1e70c6f..71600cc 100644 --- a/thesis.tex +++ b/thesis.tex @@ -6,11 +6,12 @@ \newcommand{\figurepath}{} \newcommand{\chaptertitle}[1]{ -\chapter{#1} -\setstretch{1} -\minitoc -\newpage -\setstretch{1.3} + \chapter{#1} + \setstretch{1} + \chapterquote + \minitoc + \newpage + \setstretch{1.3} } \newcommand{\dochapter}[1]{