CORE
COnnecting
REpositories

    1,407 research outputs found

    When machines can't talk: Security and privacy issues of machine-to-machine data protocols

    Author
    Publication venue
    Publication date
    Field of study
    No full text
    EURECOM Repository

    Extended Abstract: Toward Systematically Exploring Antivirus Engines

    Author
    Publication venue
    Publication date
    Field of study
    No full text
    Archivio istituzionale della ricerca - Politecnico di Milano
    Crossref

    Detecting Insecure Code Patterns in Industrial Robot Programs

    Author
    Publication venue
    Publication date
    Field of study
    No full text
    Key to modern smart manufacturing, industrial robots are complex and customizable machines that can be programmed in a variety of ways. In addition to the “teach by showing” paradigm, most vendors provide domain-specific programming languages to operate the robots with high precision. Besides movement instructions, such fully fledged programming languages provide access to low-level system resources like files and network. Although useful, these features create venues for unsafe programming patterns, which could lead to taint-style vulnerabilities or malware-like functionalities. In this paper, we analyze the programming languages of 8 leading industrial robot vendors, systematize their technical features, and discuss cases of vulnerable and malicious uses. We then describe the source-code analysis tool that we created to analyze robotic programs, and discover unsafe uses of programming primitives.We focused our proof-of-concept implementation on two popular languages (i.e., ABB’s RAPID and KUKA’s KRL), and evaluated it on a dataset of publicly available programs. Our results show that unsafe patterns are indeed found in real-world code, and that static source code analysis is an effective vetting mechanism, for example to prevent commissioning unsafe or malicious robotic programs. We conclude by discussing the remediation steps that can be adopted by developers and vendors to mitigate such issues in the medium and long term
    Archivio istituzionale della ricerca - Politecnico di Milano
    Crossref

    Detecting insecure code patterns in industrial robot programs

    Author
    Publication venue
    Publication date
    Field of study
    No full text
    EURECOM Repository

    Modelling of agro-zootechnical anaerobic co-digestion for full-scale applications

    Author
    Publication venue
    Publication date
    Field of study
    Full text link
    Archivio istituzionale della ricerca - Politecnico di Milano

    Tarnhelm: Isolated, transparent and confidential execution of arbitrary code in ARM’s TrustZone

    Author
    Publication venue
    Publication date
    Field of study
    No full text
    EURECOM Repository

    Livia Ferracchiati-Davide Dilascio-Dragana Cvejic, MISTERO BUFFO, ovvero il “massacro della quarta parete”

    Author
    Publication venue
    Publication date
    Field of study
    No full text
    I modulo: gruppo di studio su MISTERO BUFFO: Dario Fo e Paolo Rossi a confronto (Livia Ferracchiati, Davide Dilascio, Dragana Cvejic
    Almae Matris Studiorum Campus

    Correction to: When terminology hinders research: the colloquialisms of transitions of control in automated driving (Cognition, Technology & Work, (2022), 10.1007/s10111-022-00705-3)

    Author
    Publication venue
    Publication date
    Field of study
    Full text link
    In the original article, author affiliation published with error. The correct affiliations are: Davide Maggi—Institute for Transport Studies, Leeds, UK. Richard Romano—Institute for Transport Studies, Leeds, UK. Oliver Carsten—Institute for Transport Studies, Leeds, UK. Joost C. F. De Winter—Faculty of Mechanical, Maritime and Materials Engineering, Delft University of Technology, Delft, The Netherlands. The original article has been corrected.Human-Robot Interactio
    TU Delft Repository
    White Rose Research Online

    Geometria non-euclidea e quarta dimensione nello scambio intellettuale tra Charles Olson e Corrado Cagli

    Author
    Publication venue
    Publication date
    Field of study
    No full text
    La mostra Drawings in the 4th Dimension di Corrado Cagli si aprì il 15 dicembre 1949 alla Watkins Gallery dell’American University di Washington DC., con una lecture del poeta Charles Olson sul lavoro dell’artista ispirato dai solidi non-euclidei di Paul Samuel Donchian. A partire dal 1940 e ancor più negli anni del secondo dopoguerra, Olson e Cagli stabilirono una stretta amicizia fatta di continui stimoli intellettuali e discussioni su temi come i tarocchi, il primordio e gli studi matematici sulla quarta dimensione. Attraverso fonti di prima mano e d’archivio, e studi comparati delle loro ricerche all’interno del contesto artistico e letterario italiano e americano, il testo analizza le dinamiche e le influenze di reciproche suggestioni culturali attorno alla geometria proiettiva. Si è ricostruito il modo in cui i due amici hanno cercato una nuova via per comprendere la complessa struttura del mondo nella sua unità, attraverso i nuovi modelli proiettivi, relativistici e quantistici proposti dalla matematica e dalla fisica, e si è analizzato come hanno usato tali modelli astratti e scientifici in poesia e in pittura. Si tratta di una nuova concezione teorica e filosofica dello spazio-tempo che implica una forte inclinazione all’astrazione e al pensiero immaginativo, in accordo con una visione sperimentale e aperta. Per Cagli lo spazio è un “campo energetico” o “campo aperto” e determina forme e immagini; si ha un’idea di “opera aperta”, o meglio, di “opera espansa”. Olson elabora una poetica del “verso aperto” basata sul suono (respiro) e sulla percezione più che sulla sintassi e la logica; si tratta di una “composizione del campo”, dove la forma non è altro che un’estensione del contenuto, un’espansione energetica
    Archivio istituzionale della Ricerca - Università degli Studi di Parma
    AIR Universita degli studi di Milano

    GroupDroid: Automatically Grouping Mobile Malware by Extracting Code Similarities

    Author
    Publication venue
    Publication date
    Field of study
    Full text link
    As shown in previous work, malware authors often reuse portions of code in the development of their samples. Especially in the mobile scenario, there exists a phenomena, called piggybacking, that describes the act of embedding malicious code inside benign apps. In this paper, we leverage such observations to analyze mobile malware by looking at its similarities. In practice, we propose a novel approach that identifies and extracts code similarities in mobile apps. Our approach is based on static analysis and works by computing the Control Flow Graph of each method and encoding it in a feature vector used to measure similarities. We implemented our approach in a tool, GroupDroid, able to group mobile apps together according to their code similarities. Armed with GroupDroid, we then analyzed modern mobile malware samples. Our experiments show that GroupDroid is able to correctly and accurately distinguish different malware variants, and to provide useful and detailed information about the similar portions of malicious code
    Archivio istituzionale della ricerca - Politecnico di Milano
    Crossref
    Catalogo dei prodotti della ricerca Università degli Studi di Verona
    corecore