Category Archives: Research

A paper got accepted!

Posted on by

We are thrilled to announce that our paper has been accepted for presentation at the 9th IEEE European Symposium on Security and Privacy (Euro S&P 2024). Congratulations to Oyama-kun and the team!

H. Oyama, R. Iijima, T. Mori, “DeGhost: Unmasking Phantom Intrusions in Autonomous Recognition Systems,” Proceedings of Euro S&P 2024 (accepted for publication), pp. xxxx-xxxx, July 2024

This study addresses the vulnerability of autonomous systems to phantom attacks, where adversaries project deceptive illusions that are mistaken for real objects. Initial research assessed attack success rates from various distances and angles. Experiments used two setups: a black-box with DJI Mavic Air, and a white-box with Tello drone equipped with YOLOv3. To counteract these threats, the DeGhost deep learning framework was developed to distinguish between real objects and illusions, testing it across multiple surfaces and against top object detection models. DeGhost demonstrated excellent performance, achieving an AUC of 0.998, with low false negative and positive rates, and was further enhanced by an advanced Fourier technique. This study substantiates the risk of phantom attacks and presents DeGhost as an effective security measure for autonomous systems.

A paper got accepted!

Posted on by

We are pleaased to announce that our paper has been accepted for publication at the Journal of Information Processing Information Processing Society of Japan (IPSJ). Congraturations, Watanabe-kun and the team!

T. Watanabe, E. Shioji, M. Akiyama, T. Mori, “Understanding the Breakdown of Same-Origin Policies in Web Services That Rehost Websites,” Journal of Information Processing, vol. xx, no. xx., pp. xxxx-xxxxx (in press)

This paper extends our original work presented at NDSS 2020 by providing detailed insights into the countermeasures implemented by global service providers, including Google, in response to our recommendations. These enhancements are crucial for understanding the evolving landscape of web service security. We elaborate on the real-world impact of our research in collaboration with JPCERT/CC.

Presented five posters at NDSS 2024

Posted on by

This year at NDSS 2024 held in San Diego, our team had the privilege of presenting five poster presentations, all focusing on the autonomous vehicle security. Some of these works were also showcased at VehicleSec 2024, reflecting our ongoing research projects under the JST CREST. The feedback we received from attendees was invaluable. Engaging with the community allowed us to gain new insights and perspectives, which are essential for refining our research and approaches.

Additionally, we organized a Mini NDSS Japan Night, an event that gathered around 20 researchers/students from the field. This intimate gathering proved to be a productive time for all, fostering discussions and collaborations that could shape the future of security research in Japan. These experiences underscore the importance of community and dialogue in the security research community. We are grateful for the engaging conversations and look forward to contributing further to this vital field.

A paper got accepted!

Posted on by

We are pleaased to announce that our paper has been accepted for publication at the 21st Conference on Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA 2024). Congratulations to Matsuo-kun and the team!

Kazuki Matsuo, Satoshi Tanda, Yuhei Kawakoya, Kuniyasu Suzaki, and Tatsuya Mori, “SmmPack: Obfuscation for SMM Modules,” Proceedings of DIMVA 2024 (accepted for publication)

In this paper, we address the urgent need to improve computer security for System Management Mode (SMM), the most privileged operating mode in x86 and x86-64 processors. Recognizing that SMM is frequently exploited by attackers to bypass critical security measures, we developed SmmPack. The key idea is to encrypt the SMM modules, making it much harder for hackers to access and analyze. Our extensive testing has shown that SmmPack not only effectively strengthens security, but also preserves computer performance. In addition, we have demonstrated the practicality of deploying and managing SmmPack, including during BIOS updates. This breakthrough represents a significant advancement in protecting the highly privileged SMM and securing computers against advanced cyber threats.

Image generated by ChatGPT

Two short papers and two posters got accepted for VehicleSec 2024!

Posted on by

We are pleased to announce that the following two work-in-progress (WIP) papers and two poster submissions have been accepted for publication at the upcoming Symposium on Vehicle Security and Privacy (VehicleSec 2024). Congratulations to everyone involved!

R. Kobayashi, K. Nomoto, Y. Tanaka, G. Tsuruoka, T. Mori, “WIP: Shadow Hack: Adversarial Shadow Attack Against LiDAR Object Detection,” VehicleSec 2024 (to appear)

G. Tsuruoka, T. Sato, A. Chen, K. Nomoto, R. Kobayashi, Y. Tanaka, T. Mori, “WIP: Adversarial Retroreflective Patches: A Novel Stealthy Attack on Traffic Sign Recognition at Night,” VehicleSec 2024 (to appear)

Z. He, T. Mori, “Poster: Robustness of DRL-Based Autonomous Driving to Adversarial Inputs,” VehicleSec 2024 (to appear)

Y. Zhao, T. Mori, “Poster: Bypassing Physical Invariants-Based Defenses in Autonomous Vehicles,” VehicleSec 2024 (to appear)

Image generated by ChatGPT