{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,22]],"date-time":"2026-01-22T00:40:43Z","timestamp":1769042443101,"version":"3.49.0"},"publisher-location":"New York, NY, USA","reference-count":28,"publisher":"ACM","license":[{"start":{"date-parts":[[2023,7,10]],"date-time":"2023-07-10T00:00:00Z","timestamp":1688947200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"DOI":"10.13039\/501100000780","name":"European Commission","doi-asserted-by":"publisher","award":["101070141"],"award-info":[{"award-number":["101070141"]}],"id":[{"id":"10.13039\/501100000780","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2023,7,10]]},"DOI":"10.1145\/3579856.3592831","type":"proceedings-article","created":{"date-parts":[[2023,7,5]],"date-time":"2023-07-05T14:52:13Z","timestamp":1688568733000},"page":"1028-1030","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":10,"title":["POSTER: Leveraging eBPF to enhance sandboxing of WebAssembly runtimes"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-7115-1867","authenticated-orcid":false,"given":"Marco","family":"Abbadini","sequence":"first","affiliation":[{"name":"Universit\u00e0 degli Studi di Bergamo, Italy"}]},{"ORCID":"https:\/\/orcid.org\/0009-0003-4026-8589","authenticated-orcid":false,"given":"Michele","family":"Beretta","sequence":"additional","affiliation":[{"name":"Universit\u00e0 degli Studi di Bergamo, Italy"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-7534-6055","authenticated-orcid":false,"given":"Dario","family":"Facchinetti","sequence":"additional","affiliation":[{"name":"Universit\u00e0 degli Studi di Bergamo, Italy"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-5717-7101","authenticated-orcid":false,"given":"Gianluca","family":"Oldani","sequence":"additional","affiliation":[{"name":"Universit\u00e0 degli Studi di Bergamo, Italy"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-6459-0810","authenticated-orcid":false,"given":"Matthew","family":"Rossi","sequence":"additional","affiliation":[{"name":"Universit\u00e0 degli Studi di Bergamo, Italy"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0399-1738","authenticated-orcid":false,"given":"Stefano","family":"Paraboschi","sequence":"additional","affiliation":[{"name":"Universit\u00e0 degli Studi di Bergamo, Italy"}]}],"member":"320","published-online":{"date-parts":[[2023,7,10]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"2023. CLI Options - Wasmtime. https:\/\/docs.wasmtime.dev\/cli-options.html 2023. CLI Options - Wasmtime. https:\/\/docs.wasmtime.dev\/cli-options.html"},{"key":"e_1_3_2_1_2_1","unstructured":"2023. wasmedgec AOT Compiler - WasmEdge. https:\/\/wasmedge.org\/book\/en\/cli\/wasmedgec.html 2023. wasmedgec AOT Compiler - WasmEdge. https:\/\/wasmedge.org\/book\/en\/cli\/wasmedgec.html"},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"crossref","unstructured":"M. Abbadini D. Facchinetti G. Oldani M. Rossi and S. Paraboschi. 2023. Cage4Deno: A Fine-Grained Sandbox for Deno Subprocesses. In ASIACCS. M. Abbadini D. Facchinetti G. Oldani M. Rossi and S. Paraboschi. 2023. Cage4Deno: A Fine-Grained Sandbox for Deno Subprocesses. In ASIACCS.","DOI":"10.1145\/3579856.3595799"},{"key":"e_1_3_2_1_4_1","unstructured":"The\u00a0Cilium Authors. 2023. Cilium. https:\/\/cilium.io The\u00a0Cilium Authors. 2023. Cilium. https:\/\/cilium.io"},{"key":"e_1_3_2_1_5_1","unstructured":"The\u00a0Falco Authors. 2022. Falco. https:\/\/falco.org The\u00a0Falco Authors. 2022. Falco. https:\/\/falco.org"},{"key":"e_1_3_2_1_6_1","unstructured":"D. Bakker. 2023. wasi-sockets. https:\/\/github.com\/WebAssembly\/wasi-sockets D. Bakker. 2023. wasi-sockets. https:\/\/github.com\/WebAssembly\/wasi-sockets"},{"key":"e_1_3_2_1_7_1","unstructured":"J. Bosamiya W.\u00a0S. Lim and B. Parno. 2022. Provably-Safe Multilingual Software Sandboxing using WebAssembly. In USENIX Security. J. Bosamiya W.\u00a0S. Lim and B. Parno. 2022. Provably-Safe Multilingual Software Sandboxing using WebAssembly. In USENIX Security."},{"key":"e_1_3_2_1_8_1","unstructured":"B. Coenen. 2021. feat(wasi): add rename for a directory + fix remove_dir. https:\/\/github.com\/wasmerio\/wasmer\/commit\/e0e12f9d9ff41a512e44bd497324e B. Coenen. 2021. feat(wasi): add rename for a directory + fix remove_dir. https:\/\/github.com\/wasmerio\/wasmer\/commit\/e0e12f9d9ff41a512e44bd497324e"},{"key":"e_1_3_2_1_9_1","unstructured":"The coreutils Authors. 2023. uutils coreutils. https:\/\/github.com\/uutils\/coreutils The coreutils Authors. 2023. uutils coreutils. https:\/\/github.com\/uutils\/coreutils"},{"key":"e_1_3_2_1_10_1","unstructured":"P. David. 2023. hyperfine. https:\/\/github.com\/sharkdp\/hyperfine P. David. 2023. hyperfine. https:\/\/github.com\/sharkdp\/hyperfine"},{"key":"e_1_3_2_1_11_1","unstructured":"A. Ene M. Kolny and A. Brown. 2023. wasi-threads. https:\/\/github.com\/WebAssembly\/wasi-threads A. Ene M. Kolny and A. Brown. 2023. wasi-threads. https:\/\/github.com\/WebAssembly\/wasi-threads"},{"key":"e_1_3_2_1_12_1","unstructured":"W. Findlay D. Barrera and A. Somayaji. 2021. BPFContain: Fixing the Soft Underbelly of Container Security. arXiv (2021). W. Findlay D. Barrera and A. Somayaji. 2021. BPFContain: Fixing the Soft Underbelly of Container Security. arXiv (2021)."},{"key":"e_1_3_2_1_13_1","volume-title":"Cloud Computing Security Workshop.","author":"Findlay W.","unstructured":"W. Findlay , A. Somayaji , and D. Barrera . 2020. bpfbox: Simple Precise Process Confinement with eBPF . In Cloud Computing Security Workshop. W. Findlay, A. Somayaji, and D. Barrera. 2020. bpfbox: Simple Precise Process Confinement with eBPF. In Cloud Computing Security Workshop."},{"key":"e_1_3_2_1_14_1","volume-title":"Light-Weight Wasm Runtime for the Edge. In International Middleware Conference.","author":"Gadepalli K.","unstructured":"P.\u00a0 K. Gadepalli , S. McBride , G. Peach , L. Cherkasova , and G. Parmer . 2020. Sledge: A Serverless-First , Light-Weight Wasm Runtime for the Edge. In International Middleware Conference. P.\u00a0K. Gadepalli, S. McBride, G. Peach, L. Cherkasova, and G. Parmer. 2020. Sledge: A Serverless-First, Light-Weight Wasm Runtime for the Edge. In International Middleware Conference."},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"crossref","unstructured":"A. Haas A. Rossberg D.\u00a0L. Schuff B.\u00a0L. Titzer M. Holman D. Gohman L. Wagner A. Zakai and JF Bastien. 2017. Bringing the web up to speed with WebAssembly. In Programming Language Design and Implementation. A. Haas A. Rossberg D.\u00a0L. Schuff B.\u00a0L. Titzer M. Holman D. Gohman L. Wagner A. Zakai and JF Bastien. 2017. Bringing the web up to speed with WebAssembly. In Programming Language Design and Implementation.","DOI":"10.1145\/3062341.3062363"},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"crossref","unstructured":"E. Johnson E. Laufer Z. Zhao D. Gohman S. Narayan S. Savage D. Stefan and F. Brown. 2022. WaVe: A Verifiably Secure WebAssembly Sandboxing Runtime. In IEEE Security and Privacy. E. Johnson E. Laufer Z. Zhao D. Gohman S. Narayan S. Savage D. Stefan and F. Brown. 2022. WaVe: A Verifiably Secure WebAssembly Sandboxing Runtime. In IEEE Security and Privacy.","DOI":"10.1109\/SP46215.2023.10179357"},{"key":"e_1_3_2_1_17_1","volume-title":"eBPF: The Next Power Tool of SREs","author":"Kehoe M.","unstructured":"M. Kehoe . 2022. eBPF: The Next Power Tool of SREs . USENIX Association . M. Kehoe. 2022. eBPF: The Next Power Tool of SREs. USENIX Association."},{"key":"e_1_3_2_1_18_1","unstructured":"D. Lehmann J. Kinder and M. Pradel. 2020. Everything old is new again: Binary security of webassembly. In USENIX Security. D. Lehmann J. Kinder and M. Pradel. 2020. Everything old is new again: Binary security of webassembly. In USENIX Security."},{"key":"e_1_3_2_1_19_1","unstructured":"M. McCaskey. 2019. Prevent parent directory from being opened without being preopened wasi. https:\/\/github.com\/wasmerio\/wasmer\/pull\/463 M. McCaskey. 2019. Prevent parent directory from being opened without being preopened wasi. https:\/\/github.com\/wasmerio\/wasmer\/pull\/463"},{"key":"e_1_3_2_1_20_1","unstructured":"Microsoft. 2023. eBPF for Windows. https:\/\/microsoft.github.io\/ebpf-for-windows\/ Microsoft. 2023. eBPF for Windows. https:\/\/microsoft.github.io\/ebpf-for-windows\/"},{"key":"e_1_3_2_1_21_1","unstructured":"MUSEC. 2023. libpreopen. https:\/\/github.com\/musec\/libpreopen MUSEC. 2023. libpreopen. https:\/\/github.com\/musec\/libpreopen"},{"key":"e_1_3_2_1_22_1","unstructured":"A. Nakryiko. 2021. BPF CO-RE. https:\/\/nakryiko.com\/posts\/bpf-core-reference-guide\/ A. Nakryiko. 2021. BPF CO-RE. https:\/\/nakryiko.com\/posts\/bpf-core-reference-guide\/"},{"key":"e_1_3_2_1_23_1","unstructured":"S. Narayan C. Disselkoen T. Garfinkel N. Froyd E. Rahm S. Lerner H. Shacham and D. Stefan. 2020. Retrofitting Fine Grain Isolation in the Firefox Renderer. In USENIX Security. S. Narayan C. Disselkoen T. Garfinkel N. Froyd E. Rahm S. Lerner H. Shacham and D. Stefan. 2020. Retrofitting Fine Grain Isolation in the Firefox Renderer. In USENIX Security."},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"crossref","unstructured":"G. Peach R. Pan Z. Wu G. Parmer C. Haster and L. Cherkasova. 2020. eWASM: Practical Software Fault Isolation for Reliable Embedded Devices. IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems (2020). G. Peach R. Pan Z. Wu G. Parmer C. Haster and L. Cherkasova. 2020. eWASM: Practical Software Fault Isolation for Reliable Embedded Devices. IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems (2020).","DOI":"10.1109\/TCAD.2020.3012647"},{"key":"e_1_3_2_1_25_1","unstructured":"M. Rossi D. Facchinetti E. Bacis M. Rosa and S. Paraboschi. 2021. SEApp: Bringing Mandatory Access Control to Android Apps. In USENIX Security. M. Rossi D. Facchinetti E. Bacis M. Rosa and S. Paraboschi. 2021. SEApp: Bringing Mandatory Access Control to Android Apps. In USENIX Security."},{"key":"e_1_3_2_1_26_1","unstructured":"The kernel development community. 2023. LSM eBPF Programs. https:\/\/docs.kernel.org\/bpf\/prog_lsm.html The kernel development community. 2023. LSM eBPF Programs. https:\/\/docs.kernel.org\/bpf\/prog_lsm.html"},{"key":"e_1_3_2_1_27_1","unstructured":"WebAssembly. 2023. WASI Libc. https:\/\/github.com\/WebAssembly\/wasi-libc WebAssembly. 2023. WASI Libc. https:\/\/github.com\/WebAssembly\/wasi-libc"},{"key":"e_1_3_2_1_28_1","unstructured":"WebAssembly. 2023. The WebAssembly System Interface. https:\/\/wasi.dev WebAssembly. 2023. The WebAssembly System Interface. https:\/\/wasi.dev"}],"event":{"name":"ASIA CCS '23: ACM ASIA Conference on Computer and Communications Security","location":"Melbourne VIC Australia","acronym":"ASIA CCS '23","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"]},"container-title":["Proceedings of the ACM Asia Conference on Computer and Communications Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3579856.3592831","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T18:08:16Z","timestamp":1750183696000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3579856.3592831"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,7,10]]},"references-count":28,"alternative-id":["10.1145\/3579856.3592831","10.1145\/3579856"],"URL":"https:\/\/doi.org\/10.1145\/3579856.3592831","relation":{},"subject":[],"published":{"date-parts":[[2023,7,10]]},"assertion":[{"value":"2023-07-10","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}