| Tenth Language-theoretic Security (LangSec) IEEE Security & Privacy Workshop | |
Preliminary Program (All times are in US Pacific time) |
|
| 8:30-8:40am | Opening Words from the Organizers |
| 8:40-9:40am | Keynote (Session chair: Sergey Bratus): Towards Language-Theoretic Security for Dynamic Documents. Will Crichton and Shriram Krishnamurthi (Brown University) |
| 9:40-10:00am | ARPA-H Invited Talk: Medical Data Expression: Unlocking the Next Generation of Healthcare AI. Andrew Carney (ARPA-H) |
| 10:00-10:20am | Break |
| 10:20am-12:00pm | First Session: Research Papers (Session chair: Julien Vanegue) |
| Vulnerability Flow Type Systems. Mohsen Lesani (UC Santa Cruz) | |
| Weird Machines in Package Mangers: A Case Study of Input Language Complexity and Emergent Execution in Software Systems. Sameed Ali, Sean Smith (Dartmouth College) and Michael E. Locasto (NARF Industries) | |
| Robust Verification of PEG Parser Interpreters. Zephyr Lucas (Dartmouth College) and Natarajan Shankar (SRI) | |
| Research Report: An Optim(l) Approach to Parsing Random-Access Formats. Mark Tullsen, Sam Cowger, Mike Dodds (Galois, Inc.) and Peter Wyatt (PDF Association) | |
| 12:00-1:30pm | Lunch |
| 1:30-2:30pm | Keynote (Session chair: TBA): Beyond LogoFAIL: The Stubborn Security Challenge of Parser Vulnerabilities. Alex Matrosov (Binarly.io) |
| 2:30-2:40pm | Short Break |
| 2:40-3.30pm | Second Session: Invited Talks (Session chair: TBD) |
| ParDiff: Practical Static Differential Analysis of Network Protocol Parsers. Mingwei Zheng & Xiangyu Zhang (Purdue Univerity) | |
| Security Challenges of Parsing Differentials on the Web. Bahruz Jabiyev (Dartmouth College) | |
| 3:30-3:50pm | Afternoon Break |
| 3:50-5:00pm | Third Session: Research Reports (15 mins) and Work-in-Progress (10 mins) (Session chair: Sergey Bratus) |
| Research Report: Not All Specifications Are Created Equal. Meng Xu (University of Waterloo) | |
| Parsing, Performance, and Pareto in Data Stream Security. J Peter Brady and Sean W Smith (Dartmouth College) | |
| Research Report: Enhanced eBPF Verification and eBPF-based Runtime Safety Protection. Guang Jin, Jason Li and Greg Briskin (Trusted Science & Technology) | |
| Research Report: Testing and Evaluating Artificial Intelligence Applications. Paul Lintilhac, Joshua Ackerman and George Cybenko (Dartmouth College() | |
| Work-in-progress Presentations: | |
| On the Idea of Risk And Input Complexity: Embracing Insecurity Using Weird Machines Theory to Measure Attack Surfaces. Froylan Maldonado and Matthew Levy (NIWC) | |
| Real-World Threats From In-Use “Blind Random” Block Corruption. Rodrigo Branco and Shay Gueron | |
| 5:00-5:05pm | Closing words from organizers |