检索结果-内蒙古大学图书馆

Metalenses phase characterization by multidistance phase retrieval

Light(Science & Applications) 2024年第9期13卷 1898-1907页

作者： Bowen Liu Jialuo Cheng Maoxiong Zhao Jin Yao Xiaoyuan Liu Shaohu Chen Lei Shi Din Ping Tsai Zihan Geng Mu Ku Chen State Key Laboratory of Surface Physics Key Laboratory of Micro-and Nano-Photonic Structures(Ministry of Education)and Department of PhysicsFudan University200433 ShanghaiChina Department of Electrical Engineering City University of Hong KongKowloonHong Kong SARChina State Key Laboratory of Terahertz and Millimeter Waves City University of Hong KongKowloonHong Kong SARChina Institute for Nanoelectronic Devices and Quantum Computing Fudan University200438 ShanghaiChina Collaborative Innovation Center of Advanced Microstructures Nanjing University210093 NanjingJiangsuChina Shanghai Research Center for Quantum Sciences 201315 ShanghaiChina Centre for Biosystems Neuroscienceand NanotechnologyCity University of Hong KongKowloonHong Kong SARChina Institute of Data and Information Tsinghua Shenzhen International Graduate SchoolTsinghua University518071 ShenzhenGuangdongChina

Metalens,characterized by their unique functions and distinctive physical properties,have gained significant attention for their potential *** further optimize the performance of metalens,it is necessary to characterize the phase modulation of the *** this study,we present a multi-distance phase retrieval system based on optical field scanning and discuss its convergence and *** findings indicate that the system is capable of retrieving the phase distribution of the metalens as long as the measurement noise is low and the total length of the scanned light field is sufficiently *** system enables the analysis of focal length and aberration by utilizing the computed phase *** extend our investigation to measure the phase distribution of the metalens operating in the near-infrared(NIR)spectrum and identify the impact of defects in the sample on the ***,we conduct a comparative analysis of the phase distribution of the metalens in air and ethanol and observe the variations in the phase modulation of the metalens in different working *** system provides a straightforward method for the phase characterization of metalens,aiding in optimizing the metalens design and functionality.

关键词： phase system distribution

来源：评论

学校读者我要写书评

暂无评论

DRTaint: A Dynamic Taint Analysis Framework Supporting Correlation Analysis between Data Regions

DRTaint: A Dynamic Taint Analysis Framework Supporting Corre...

引用

2021 International Conference on Computer Network Security and Software engineering, CNSSE 2021

作者： Yang, Pan Kang, Fei Zhao, Yuntian Shu, Hui State Key Laboratory of Mathematical Engineering and Advanced Computing Zhengzhou Henan450001 China

Taint analysis is a common technology for software analysis, which is widely used in the region of information security. Aiming at the problem that the existing binary program dynamic taint analysis framework does not support "replay"analysis and the analysis efficiency is low, a taint analysis framework called DRTaint is proposed. DRTaint is a universal taint analysis framework that supports correlation analysis between data regions. Experiments show that DRTaint shows good performance advantages when performing taint analysis many times on one program. On the basis of DRTaint, this paper studies the malicious code behavior extraction method based on taint analysis, and the research finds that DRTaint can provide better support for malicious code behavior extraction. © Published under licence by IOP Publishing Ltd.

关键词： Malware

来源：评论

学校读者我要写书评

暂无评论

A Regional Network Topology Construction Algorithm Based on Sampling Measurement 5

A Regional Network Topology Construction Algorithm Based on ...

引用

2021 5th International Workshop on advanced Algorithms and Control engineering, IWAACE 2021

作者： Tao, Zhiyuan Liu, Yan State Key Laboratory of Mathematical Engineering and Advanced Computing Zhengzhou Henan450001 China

Network topology construction is one of the basic means to study the target network. Whether it is the discovery of vital nodes, IP location or network characteristics mining, a complete and accurate network topology is needed. In this paper, a regional network topology construction algorithm based on sampling measurement is proposed to solve the problem of high time cost and resource waste of existing algorithms. Firstly, multiple vantage points located inside and outside the target area are selected to form a probing set. Then the IPes of the target area is extracted based on sampling to form the target IP set. Finally, the probing set is used to probe the target IP set periodically. The network topology of the target region was constructed based on the results of a 40-day internet measurement and compared with the existing database. The experimental results show that the coverage rate of routing nodes in the target area is improved by more than 90% compared with the measured data provided by CAIDA (Center for Applied Internet Data Analysis) and by more than 10% compared with the measured data provided by IPIP. © Published under licence by IOP Publishing Ltd.

关键词： Network topology

来源：评论

学校读者我要写书评

暂无评论

A software upgrade security analysis method based on program analysis

A software upgrade security analysis method based on program...

引用

2021 IEEE International Conference on Computer Science, Electronic Information engineering and Intelligent Control Technology, CEI 2021

作者： Lv, Xiaoshao Shu, Hui Kang, Fei Huang, Yuyao State Key Laboratory of Mathematical Engineering and Advanced Computing Henan Zhengzhou450001 China

ISBN: (纸本)9780738146492

Security of online software upgrade has become one of the most important evaluation criteria of cyber security. It is too inefficient to evaluate the security of software upgrade by manual reverse analysis method, which requires high-level cryptography knowledge and reverse analysis ability of researchers. The universality of software upgrade vulnerability puts forward high requirements for efficient and automatic analysis methods. In this paper, we propose a program analysis method combining dynamic analysis and static analysis to automatically evaluate software upgrade security. By parsing the process of software online upgrade deeply, we establish the upgrade vulnerability models, and utilize the program analysis method to evaluate the upgrade security. The experimental result has shown that this method can evaluate the security of software upgrade accurately and quickly. © 2021 IEEE.

关键词： Cryptography

来源：评论

学校读者我要写书评

暂无评论

A survey of offensive security research on PLCs

A survey of offensive security research on PLCs

引用

2021 International Conference on Computer, Communication, Control, Automation and Robotics, CCCAR 2021

作者： Ma, Rongkuan Wei, Qiang Wang, Qingxian State Key Laboratory of Mathematical Engineering and Advanced Computing Henan Zhengzhou450001 China

Industrial Control Systems (ICSs) are widely deployed in critical infrastructures, such as electric power, water filtration and distribution. Programmable Logic Controllers (PLCs) work as the core components of an ICS. The offensive security technology of PLCs has attracted the popular interests of both attackers and researchers. In this paper, we firstly abstract a 4-layers model of PLC's implementation, and then summarize and classify attacks against PLCs into 5 types. Further, we point out the features and trends of the related attack studies, which is helpful to promote the research in the ICS security community and provide vital suggestions for defenders. © Published under licence by IOP Publishing Ltd.

关键词： Programmable logic controllers

来源：评论

学校读者我要写书评

暂无评论

FirmVulSeeker—BERT and Siamese Network-Based Vulnerability Search for Embedded Device Firmware Images

引用

Journal on Internet of Things 2022年第1期4卷 1-20页

作者： Yingchao Yu Shuitao Gan Xiaojun Qin State Key Laboratory of Mathematical Engineering and Advanced Computing WuxiJiangsu214083China

In recent years,with the development of the natural language processing(NLP)technologies,security analyst began to use NLP directly on assembly codes which were disassembled from binary executables in order to examine binary similarity,achieved great ***,we found that the existing frameworks often ignored the complex internal structure of instructions and didn’t fully consider the long-term dependencies of *** this paper,we propose firmVulSeeker—a vulnerability search tool for embedded firmware images,based on BERT and Siamese *** first builds a BERT MLM task to observe and learn the semantics of different instructions in their context in a very large unlabeled binary ***,a finetune mode based on Siamese network is constructed to guide training and matching semantically similar functions using the knowledge learned from the first ***,it will use a function embedding generated from the fine-tuned model to search in the targeted corpus and find the most similar function which will be confirmed whether it’s a real vulnerability *** evaluate the accuracy,robustness,scalability and vulnerability search capability of *** show that it can greatly improve the accuracy of matching semantically similar functions,and can successfully find more real vulnerabilities in real-world firmware than other tools.

关键词： Embedded device firmware vulnerability search BERT siamese network

来源：评论

学校读者我要写书评

暂无评论

Research on IoT malware based on the ATT&CK model 11

Research on IoT malware based on the ATT&CK model

引用

2021 11th International Workshop on Computer Science and engineering, WCSE 2021

作者： Hao, Bo Kang, Fei Yang, Ju Xiong, Xiaobing State Key Laboratory of Mathematical Engineering and Advanced Computing Henan Zhengzhou450001 China

ISBN: (纸本)9789811817915

The security of the IoT has become a hot research area in cyberspace security, among which the malware is a major threat. Based on the ATT&CK model, this paper studies the composition and behavior of IoT malware, constructs a malicious behavior model of IoT malware, and analyzes the technical implementation of each tactic in the malicious behavior model of IoT malware from three aspects: operating system related, target environment related and specific tools related. Based on this, we finally propose the evolution direction of IoT malware, which will be conducive to a more comprehensive grasp of the characteristics of IoT malware, and be supportive for maintaining the security of IoT. © 2021 11th International Workshop on Computer Science and engineering, WCSE 2021. All Rights Reserved.

关键词： Malware

来源：评论

学校读者我要写书评

暂无评论

Fw-fuzz: A code coverage-guided fuzzing framework for network protocols on firmware

Fw-fuzz: A code coverage-guided fuzzing framework for networ...

引用

作者： Gao, Zicong Dong, Weiyu Chang, Rui Wang, Yisen Cyberspace Security Department State Key Laboratory of Mathematical Engineering and Advanced Computing Zhengzhou China College of Computer Science and Technology Zhejiang University Hangzhou China

Fuzzing is an effective approach to detect software vulnerabilities utilizing changeable generated inputs. However, fuzzing the network protocol on the firmware of IoT devices is limited by inefficiency of test case generation, cross-architecture instrumentation, and fault detection. In this article, we propose the Fw-fuzz, a coverage-guided and crossplatform framework for fuzzing network services running in the context of firmware on embedded architectures, which can generate more valuable test cases by introspecting program runtime information and using a genetic algorithm model. Specifically, we propose novel dynamic instrumentation in Fw-fuzz to collect the running state of the firmware program. Then Fw-fuzz adopts a genetic algorithm model to guide the generation of inputs with high code coverage. We fully implement the prototype system of Fw-fuzz and conduct evaluations on network service programs of various architectures in MIPS, ARM, and PPC. By comparing with the protocol fuzzers Boofuzz and Peach in metrics of edge coverage, our prototype system achieves an average growth of 33.7% and 38.4%, respectively. We further verify six known vulnerabilities and discover 5 0-day vulnerabilities with the Fw-fuzz, which prove the validity and utility of our framework. The overhead of our system expressed as an additional 5% of memory growth. © 2020 John Wiley & Sons, Ltd.

关键词： Firmware

来源：评论

学校读者我要写书评

暂无评论

Adversarial Example Soups: Improving Transferability and Stealthiness for Free

arXiv

引用

arXiv 2024年

作者： Yang, Bo Zhang, Hengwei Wang, Jindong Yang, Yulong Lin, Chenhao Shen, Chao Zhao, Zhengyu State Key Laboratory of Mathematical Engineering and Advanced Computing Zhengzhou China School of Cyber Science and Engineering Xi’an Jiaotong University Xi’an China

Transferable adversarial examples cause practical security risks since they can mislead a target model without knowing its internal knowledge. A conventional recipe for maximizing transferability is to keep only the optimal adversarial example from all those obtained in the optimization pipeline. In this paper, for the first time, we question this convention and demonstrate that those discarded, sub-optimal adversarial examples can be reused to boost transferability. Specifically, we propose "Adversarial Example Soups" (AES), with AES-tune for averaging discarded adversarial examples in hyperparameter tuning and AES-rand for stability testing. In addition, our AES is inspired by "model soups", which averages weights of multiple fine-tuned models for improved accuracy without increasing inference time. Extensive experiments validate the global effectiveness of our AES, boosting 10 state-of-the-art transfer attacks and their combinations by up to 13% against 10 diverse (defensive) target models. We also show the possibility of generalizing AES to other types, e.g., directly averaging multiple in-the-wild adversarial examples that yield comparable success. A promising byproduct of AES is the improved stealthiness of adversarial examples since the perturbation variances are naturally reduced. Copyright © 2024, The Authors. All rights reserved.

关键词：

来源：评论

学校读者我要写书评

暂无评论

The Causal Reasoning Ability of Open Large Language Model: A Comprehensive and Exemplary Functional Testing

The Causal Reasoning Ability of Open Large Language Model: A...

引用

IEEE International Conference on Software Quality, Reliability and Security (QRS)

作者： Shun-Hang Li Gang Zhou Zhi-Bo Li Ji-Cang Lu Ning-Bo Huang State Key Laboratory of Mathematical Engineering and Advanced Computing Zhengzhou China Information Engineering University Zhengzhou China

As the intelligent software, the development and application of large language models are extremely hot topics recently, bringing tremendous changes to general AI and software industry. Nonetheless, large language models, especially open source ones, incontrollably suffer from some potential software quality issues such as instability, inaccuracy, and insecurity, making software testing necessary. In this paper, we propose the first solution for functional testing of open large language models to check full-scene availability and conclude empirical principles for better steering large language models, particularly considering their black box and intelligence properties. Specifically, we focus on the model’s causal reasoning ability, which is the core of artificial intelligence but almost ignored by most previous work. First, for comprehensive evaluation, we deconstruct the causal reasoning capability into five dimensions and summary the forms of causal reasoning task as causality identification and causality matching. Then, rich datasets are introduced and further modified to generate test cases along with different ability dimensions and task forms to improve the testing integrity. Moreover, we explore the ability boundary of open large language models in two usage modes: prompting and lightweight fine-tuning. Our work conducts comprehensive functional testing on the causal reasoning ability of open large language models, establishes benchmarks, and derives empirical insights for practical usage. The proposed testing solution can be transferred to other similar evaluation tasks as a general framework for large language models or their derivations.

关键词：

来源：评论

学校读者我要写书评

暂无评论

建议与咨询留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

时间限定

文献类型

馆藏选择

核心期刊

语言

文献类型

帮助

文字说明：

检索规则说明：

检索范例：

分类表

所选分类

限定检索结果

文献类型

馆藏范围

日期分布

学科分类号

主题

机构

作者

语言

请选择保存的检索档案：

请选择收藏分类：

通借通还

建议与咨询 留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

时间限定

文献类型

馆藏选择

核心期刊

语言

文献类型

帮助

文字说明：

检索规则说明：

检索范例：

分类表

所选分类

限定检索结果

文献类型

馆藏范围

日期分布

学科分类号

主题

机构

作者

语言

请选择保存的检索档案： 新增检索档案 确定 取消

请选择收藏分类： 新增自定义分类 确定 取消

通借通还

建议与咨询留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

请选择保存的检索档案：

请选择收藏分类：