Publications

Two's Complement: Monitoring Software Control Flow using Both Power and Electromagnetic Side Channels

PDF

Artifacts

Authors: Michael Amar, Lojenaa Navanesan, Asanka P. Sayakkara, Yossi Oren

Appeared in: 27th Euromicro Conference on Digital System Design, 2024

Figure for Two's Complement: Monitoring Software Control Flow using Both Power and Electromagnetic Side Channels

Waves of Knowledge: A Comparative Study of Electromagnetic and Power Side-Channel Monitoring in Embedded Systems

PDF

Authors: Michael Amar, Lojenaa Navanesan, Asanka P. Sayakkara, Yossi Oren

Appeared in: EAI SmartSP 2023

Figure for Waves of Knowledge: A Comparative Study of Electromagnetic and Power Side-Channel Monitoring in Embedded Systems

Pixel Thief: Exploiting SVG Filter Leakage in Firefox and Chrome

PDF

Artifacts

Authors: Sioli O'Connell, Lishay Aben Sour, Ron Magen, Daniel Genkin, Yossi Oren, Hovav Shacham, Yuval Yarom

Appeared in: 33rd USENIX Security Symposium, 2024

Figure for Pixel Thief: Exploiting SVG Filter Leakage in Firefox and Chrome

The Attack Surface of Wet Lab Automation

PDF

Authors: Naor Dalal, Yossi Oren, Yuval Dorfan, Jonathan Giron, Rami Puzis

Appeared in: Cyberbiosecurity

Figure for The Attack Surface of Wet Lab Automation

The Finger in the Power: How to Fingerprint PCs by Monitoring their Power Consumption

PDF

Artifacts

Authors: Marina Botvinnik, Tomer Laor, Thomas Rokicki, Clémentine Maurice, Yossi Oren

Appeared in: 20th Conference on Detection of Intrusions and Malware & Vulnerability Assessment, DIMVA 2023

Figure for The Finger in the Power: How to Fingerprint PCs by Monitoring their Power Consumption

Juliet-PUF: Enhancing the Security of IoT-Based SRAM-PUFs Using the Remanence Decay Effect

PDF

Authors: Amit Kama, Michael Amar, Snir Gaaton, Kang Wang, Yifan Tu, Yossi Oren

Appeared in: IEEE Internet of Things Journal Volume 10, Issue 14, July 2023

Figure for Juliet-PUF: Enhancing the Security of IoT-Based SRAM-PUFs Using the Remanence Decay Effect

Characterization and Detection of Cross-Router Covert Channels

PDF

Artifacts

Authors: Oren Shvartzman, Adar Ovadya, Kfir Zvi, Omer Shwartz, Rom Ogen, Yakov Mallah, Niv Gilboa, Yossi Oren

Appeared in: Elsevier Computers & Security, January 2023, 103125

Figure for Characterization and Detection of Cross-Router Covert Channels

HammerScope: Observing DRAM Power Consumption Using Rowhammer

PDF

Artifacts

Authors: Yaakov Cohen, Kevin Sam Tharayil, Arie Haenel, Daniel Genkin, Angelos D. Keromytis, Yossi Oren, Yuval Yarom

Appeared in: 29th ACM Conference on Computer and Communications Security (CCS), 2022

Figure for HammerScope: Observing DRAM Power Consumption Using Rowhammer

Port Contention Goes Portable: Port Contention Side Channels in Web Browsers

PDF

Artifacts

Authors: Thomas Rokicki, Clémentine Maurice, Marina Botvinnik, Yossi Oren

Appeared in: 17th ACM ASIA Conference on Computer and Communications Security, AsiaCCS 2022

Figure for Port Contention Goes Portable: Port Contention Side Channels in Web Browsers

Toward Usable and Accessible Two-Factor Authentication Based on the Piezo-Gyro Channel

PDF

Authors: Dan Arad, Yossi Oren

Appeared in: IEEE Access, Volume 10, 2022

Figure for Toward Usable and Accessible Two-Factor Authentication Based on the Piezo-Gyro Channel

Practical, Low-Cost Fault Injection Attacks on Personal Smart Devices

PDF

Authors: Shaked Delarea, Yossi Oren

Appeared in: Applied Sciences, Volume 12 Issue 1, 2022

Figure for Practical, Low-Cost Fault Injection Attacks on Personal Smart Devices

DRAWN APART : A Device Identification Technique based on Remote GPU Fingerprinting

PDF

Artifacts

Authors: Tomer Laor, Naif Mehanna, Vitaly Dyadyuk, Antonin Durey, Pierre Laperdrix, Clémentine Maurice, Yossi Oren, Romain Rouvoy, Walter Rudametkin, Yuval Yarom

Appeared in: 29th Annual Network and Distributed System Security Symposium, NDSS 2022

Figure for DRAWN APART : A Device Identification Technique based on Remote GPU Fingerprinting

Cache-based characterization: A low-infrastructure, distributed alternative to network-based traffic and application characterization

PDF

Artifacts

Authors: Anatoly Shusterman, Chen Finkelstein, Ofir Gruner, Yarin Shani, Yossi Oren

Appeared in: Elsevier Computer Networks Volume 200, December 2021

Figure for Cache-based characterization: A low-infrastructure, distributed alternative to network-based traffic and application characterization

Website Fingerprinting Through the Cache Occupancy Channel and its Real World Practicality

PDF

Artifacts

Authors: Anatoly Shusterman, Zohar Avraham, Eliezer Croitoru, Yarden Haskal, Lachlan Kang, Dvir Levi, Yosef Meltser, Prateek Mittal, Yossi Oren, Yuval Yarom

Appeared in: IEEE Transactions on Dependable and Secure Computing Volume 18, Issue 5, September 2021

Figure for Website Fingerprinting Through the Cache Occupancy Channel and its Real World Practicality

Prime+Probe 1, JavaScript 0: Overcoming Browser-based Side-Channel Defenses

PDF

Artifacts

Authors: Anatoly Shusterman, Ayush Agarwal, Sioli O’Connell, Daniel Genkin, Yossi Oren, Yuval Yarom

Appeared in: 30th USENIX Security Symposium, 2021

Figure for Prime+Probe 1, JavaScript 0: Overcoming Browser-based Side-Channel Defenses

Sensor Defense In-Software (SDI): Practical Defenses Against Spoofing Attacks on Position Sensors

PDF

Authors: Kevin Sam Tharayil, Benyamin Farshteindiker, Shaked Eyal, Nir Hasidim, Roy Hershkovitz, Shani Houri, Ilia Yoffe (Iofedov), Michal Oren, Yossi Oren

Appeared in: Engineering Applications of Artificial Intelligence Volume 95, 2020

Figure for Sensor Defense In-Software (SDI): Practical Defenses Against Spoofing Attacks on Position Sensors

Can the Operator of a Drone Be Located by Following the Drone’s Path?

PDF

Authors: Eliyahu Mashhadi, Yossi Oren, Gera Weiss

Appeared in: 4th International Symposium on Cyber Security Cryptography and Machine Learning, 2020

Figure for Can the Operator of a Drone Be Located by Following the Drone’s Path?

Cyber Security Threats in the Microbial Genomics Era: Implications for Public Health

PDF

Authors: Iliya Fayans, Yair Motro, Lior Rokach, Yossi Oren, Jacob Moran-Gilad

Appeared in: Eurosurveillance Volume 25, Issue 6, 2020

Figure for Cyber Security Threats in the Microbial Genomics Era: Implications for Public Health

Inner Conflict: How Smart Device Components Can Cause Harm

PDF

Authors: Omer Shwartz, Amir Cohen, Asaf Shabtai, Yossi Oren

Appeared in: Elsevier Computers & Security, Volume 89, February 2020, 101665

Figure for Inner Conflict: How Smart Device Components Can Cause Harm

Cross-Router Covert Channels

PDF

Authors: Adar Ovadya, Rom Ogen, Yakov Mallah, Niv Gilboa, Yossi Oren

Appeared in: 13th USENIX Workshop on Offensive Technologies (WOOT), 2019

Cyber Attack on SUUNTO Dive Computer

PDF

Authors: Sofia Dimant, Maya Kremer, Omer Shwartz, Yossi Oren

Appeared in: Technical Report

Figure for Cyber Attack on SUUNTO Dive Computer

Robust Website Fingerprinting Through the Cache Occupancy Channel

PDF

Artifacts

Authors: Anatoly Shusterman, Lachlan Kang, Yarden Haskal, Yosef Meltser, Prateek Mittal, Yossi Oren, Yuval Yarom

Appeared in: 28th USENIX Security Symposium, 2019

Figure for Robust Website Fingerprinting Through the Cache Occupancy Channel

Reverse Engineering IoT Devices: Effective Techniques and Methods

PDF

Authors: Omer Shwartz, Yael Mathov, Michael Bohadana, Yuval Elovici, Yossi Oren

Appeared in: IEEE Internet of Things Journal, Volume 5, Issue 6, 2019

Figure for Reverse Engineering IoT Devices: Effective Techniques and Methods

Sensorless, Permissionless Information Exfiltration with Wi-Fi Micro-Jamming

PDF

Authors: Rom Ogen, Omer Shwartz, Kfir Zvi, Yossi Oren

Appeared in: 12th USENIX Workshop on Offensive Technologies (WOOT), 2018

Figure for Sensorless, Permissionless Information Exfiltration with Wi-Fi Micro-Jamming

Brief Announcement: Deriving Context for Touch Events

PDF

Authors: Moran Azran, Niv Ben Shabat, Tal Shkolnik, Yossi Oren

Appeared in: Second International Symposium on Cyber Security Cryptography and Machine Learning (CSCML), 2018

Figure for Brief Announcement: Deriving Context for Touch Events

Shattered Trust: When Replacement Smartphone Components Attack

PDF

Authors: Omer Shwartz, Amir Cohen, Asaf Shabtai, Yossi Oren

Appeared in: 11th USENIX Workshop on Offensive Technologies (WOOT), 2017

Figure for Shattered Trust: When Replacement Smartphone Components Attack

Opening Pandora's Box: Effective Techniques for Reverse Engineering IoT Devices

PDF

Authors: Omer Shwartz, Yael Mathov, Michael Bohadana, Yuval Elovici, Yossi Oren

Appeared in: 17th Smart Card Research and Advanced Application Conference (CARDIS), 2017

Figure for Opening Pandora's Box: Effective Techniques for Reverse Engineering IoT Devices

From Smashed Screens to Smashed Stacks: Attacking Mobile Phones Using Malicious Aftermarket Parts

PDF

Authors: Omer Shwartz, Guy Shitrit, Asaf Shabtai, Yossi Oren

Appeared in: Workshop on Security for Embedded and Mobile Systems (SEMS), 2017

Figure for From Smashed Screens to Smashed Stacks: Attacking Mobile Phones Using Malicious Aftermarket Parts

The Curious Case of the Curious Case: Detecting touchscreen events using a smartphone protective case

PDF

Authors: Tomer Gluck, Rami Puzis, Yossi Oren, Asaf Shabtai

Appeared in: Workshop on Security for Embedded and Mobile Systems (SEMS), 2017

Figure for The Curious Case of the Curious Case: Detecting touchscreen events using a smartphone protective case

How to Phone Home with Someone Else's Phone: Information Exfiltration Using Intentional Sound Noise on Gyroscopic Sensors

PDF

Authors: Benyamin Farshteindiker, Nir Hasidim, Asaf Grosz, Yossi Oren

Appeared in: 10th USENIX Workshop on Offensive Technologies (WOOT), 2016

Figure for How to Phone Home with Someone Else's Phone: Information Exfiltration Using Intentional Sound Noise on Gyroscopic Sensors