{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,12,8]],"date-time":"2025-12-08T21:31:59Z","timestamp":1765229519139,"version":"3.46.0"},"publisher-location":"New York, NY, USA","reference-count":162,"publisher":"ACM","content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2025,12,15]]},"DOI":"10.1145\/3721462.3770772","type":"proceedings-article","created":{"date-parts":[[2025,12,8]],"date-time":"2025-12-08T19:56:49Z","timestamp":1765223809000},"page":"241-255","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":0,"title":["Clair Obscur: The Light and Shadow of System Call Interposition \u2013 From Pitfalls to Solutions with K23"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0009-0009-2624-7814","authenticated-orcid":false,"given":"Jes\u00fas Mar\u00eda","family":"G\u00f3mez Moreno","sequence":"first","affiliation":[{"name":"TU Delft, Delft, Netherlands"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0000-9904-8829","authenticated-orcid":false,"given":"Vissarion","family":"Moutafis","sequence":"additional","affiliation":[{"name":"TU Delft, Delft, Netherlands"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-6517-8462","authenticated-orcid":false,"given":"Antreas","family":"Dionysiou","sequence":"additional","affiliation":[{"name":"TU Delft, Delft, Netherlands"},{"name":"Frederick University, Nicosia, Cyprus"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-6686-8350","authenticated-orcid":false,"given":"Fernando","family":"Kuipers","sequence":"additional","affiliation":[{"name":"TU Delft, Delft, Netherlands"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4127-3617","authenticated-orcid":false,"given":"Georgios","family":"Smaragdakis","sequence":"additional","affiliation":[{"name":"TU Delft, Delft, Netherlands"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-7628-9264","authenticated-orcid":false,"given":"Bart","family":"Coppens","sequence":"additional","affiliation":[{"name":"Ghent University, Ghent, Belgium"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-6985-8684","authenticated-orcid":false,"given":"Alexios","family":"Voulimeneas","sequence":"additional","affiliation":[{"name":"TU Delft, Delft, Netherlands"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2025,12,14]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"2025. Intel. Intel 64 and IA-32 Architectures Software Developer Manuals."},{"key":"e_1_3_2_1_2_1","unstructured":"Last accessed 2025. ab - Apache HTTP server benchmarking tool. https:\/\/httpd.apache.org\/docs\/current\/programs\/ab.html"},{"key":"e_1_3_2_1_3_1","unstructured":"Last accessed 2025. A C++ implementation of a fast hash map and hash set using robin hood hashing. https:\/\/github.com\/Tessil\/robin-map"},{"key":"e_1_3_2_1_4_1","unstructured":"Last accessed 2025. dlclose dlopen dlmopen - open and close a shared object. https:\/\/man7.org\/linux\/man-pages\/man3\/dlopen.3.html"},{"key":"e_1_3_2_1_5_1","unstructured":"Last accessed 2025. dlmopen. https:\/\/man7.org\/linux\/man-pages\/man3\/dlmopen.3.htmll"},{"key":"e_1_3_2_1_6_1","unstructured":"Last accessed 2025. environ execl execv execle execve execlp execvp - execute a file. https:\/\/linux.die.net\/man\/3\/execve"},{"key":"e_1_3_2_1_7_1","unstructured":"Last accessed 2025. execve - execute program. https:\/\/man7.org\/linux\/man-pages\/man2\/execve.2.html"},{"key":"e_1_3_2_1_8_1","unstructured":"Last accessed 2025. falco. https:\/\/falco.org\/"},{"key":"e_1_3_2_1_9_1","unstructured":"Last accessed 2025. gdb - The GNU Debugger. https:\/\/man7.org\/linux\/man-pages\/man1\/gdb.1.html"},{"key":"e_1_3_2_1_10_1","unstructured":"Last accessed 2025. GNU Binutils. https:\/\/www.gnu.org\/software\/binutils\/"},{"key":"e_1_3_2_1_11_1","unstructured":"Last accessed 2025. lazypoline. https:\/\/github.com\/lazypoline\/lazypoline"},{"key":"e_1_3_2_1_12_1","unstructured":"Last accessed 2025. lazypoline - commit bb098e8ca. https:\/\/github.com\/lazypoline\/lazypoline"},{"key":"e_1_3_2_1_13_1","unstructured":"Last accessed 2025. ld.so ld-linux.so - dynamic linker\/loader. https:\/\/man7.org\/linux\/man-pages\/man8\/ld.so.8.html"},{"key":"e_1_3_2_1_14_1","unstructured":"Last accessed 2025. lighttpd. https:\/\/www.lighttpd.net\/"},{"key":"e_1_3_2_1_15_1","unstructured":"Last accessed 2025. ltrace - A library call tracer. https:\/\/man7.org\/linux\/man-pages\/man1\/ltrace.1.html"},{"key":"e_1_3_2_1_16_1","unstructured":"Last accessed 2025. nginx. https:\/\/nginx.org\/"},{"key":"e_1_3_2_1_17_1","unstructured":"Last accessed 2025. open openat creat - open and possibly create a file. https:\/\/man7.org\/linux\/man-pages\/man2\/open.2.html"},{"key":"e_1_3_2_1_18_1","unstructured":"Last accessed 2025. prctl - operations on a process or thread. https:\/\/man7.org\/linux\/man-pages\/man2\/prctl.2.html"},{"key":"e_1_3_2_1_19_1","unstructured":"Last accessed 2025. process_vm_readv process_vm_writev - transfer data between process address spaces. https:\/\/man7.org\/linux\/man-pages\/man2\/process_vm_readv.2.html"},{"key":"e_1_3_2_1_20_1","unstructured":"Last accessed 2025. \/proc\/pid\/maps - mapped memory regions. https:\/\/man7.org\/linux\/man-pages\/man5\/proc_pid_maps.5.html"},{"key":"e_1_3_2_1_21_1","unstructured":"Last accessed 2025. ptrace - process trace. http:\/\/man7.org\/linux\/man-pages\/man2\/ptrace.2.html"},{"key":"e_1_3_2_1_22_1","unstructured":"Last accessed 2025. redis. https:\/\/redis.io\/"},{"key":"e_1_3_2_1_23_1","unstructured":"Last accessed 2025. rr. https:\/\/github.com\/rr-debugger\/rr"},{"key":"e_1_3_2_1_24_1","unstructured":"Last accessed 2025. seccomp - operate on Secure Computing state of the process. https:\/\/man7.org\/linux\/man-pages\/man2\/seccomp.2.html"},{"key":"e_1_3_2_1_25_1","unstructured":"Last accessed 2025. sigreturn rt_sigreturn - return from signal handler and cleanup stack frame. https:\/\/man7.org\/linux\/man-pages\/man2\/sigreturn.2.html"},{"key":"e_1_3_2_1_26_1","unstructured":"Last accessed 2025. sqlite. https:\/\/sqlite.org\/"},{"key":"e_1_3_2_1_27_1","unstructured":"Last accessed 2025. Steam. https:\/\/store.steampowered.com\/"},{"key":"e_1_3_2_1_28_1","unstructured":"Last accessed 2025. Steven M. Bellovin's retirement talk. https:\/\/www.cs.columbia.edu\/~smb\/talks\/farewell.mp4"},{"key":"e_1_3_2_1_29_1","unstructured":"Last accessed 2025. strace - trace system calls and signals. https:\/\/man7.org\/linux\/man-pages\/man1\/strace.1.html"},{"key":"e_1_3_2_1_30_1","unstructured":"Last accessed 2025. Syscall User Dispatch. https:\/\/www.kernel.org\/doc\/html\/latest\/admin-guide\/syscall-user-dispatch.html"},{"key":"e_1_3_2_1_31_1","unstructured":"Last accessed 2025. syscall_intercept. https:\/\/github.com\/pmem\/syscall_intercept"},{"key":"e_1_3_2_1_32_1","unstructured":"Last accessed 2025. Tigress JitDynamic. https:\/\/tigress.wtf\/jitDynamic.html"},{"key":"e_1_3_2_1_33_1","unstructured":"Last accessed 2025. Tigress Jitter. https:\/\/tigress.wtf\/jitter.html"},{"key":"e_1_3_2_1_34_1","unstructured":"Last accessed 2025. unsetenv \u2014 remove an environment variable. https:\/\/man7.org\/linux\/man-pages\/man3\/unsetenv.3p.html"},{"key":"e_1_3_2_1_35_1","unstructured":"Last accessed 2025. UPX - the Ultimate Packer for eXecutables. https:\/\/upx.github.io\/"},{"key":"e_1_3_2_1_36_1","unstructured":"Last accessed 2025. V8 JavaScript engine. https:\/\/v8.dev\/"},{"key":"e_1_3_2_1_37_1","unstructured":"Last accessed 2025. vdso - overview of the virtual ELF dynamic shared object. https:\/\/man7.org\/linux\/man-pages\/man7\/vdso.7.html"},{"key":"e_1_3_2_1_38_1","unstructured":"Last accessed 2025. Wine. https:\/\/www.winehq.org\/"},{"key":"e_1_3_2_1_39_1","unstructured":"Last accessed 2025. wrk - a HTTP benchmarking tool. https:\/\/github.com\/wg\/wrk"},{"key":"e_1_3_2_1_40_1","unstructured":"Last accessed 2025. zpoline. https:\/\/github.com\/yasukata\/zpoline"},{"key":"e_1_3_2_1_41_1","unstructured":"Last accessed 2025. zpoline - commit 56aec8797. https:\/\/github.com\/yasukata\/zpoline"},{"key":"e_1_3_2_1_42_1","volume-title":"Control-Flow Integrity. In ACM Conference on Computer and Communications Security (CCS).","author":"Abadi Mart\u00edn","year":"2005","unstructured":"Mart\u00edn Abadi, Mihai Budiu, Ulfar Erlingsson, and Jay Ligatti. 2005. Control-Flow Integrity. In ACM Conference on Computer and Communications Security (CCS)."},{"key":"e_1_3_2_1_43_1","doi-asserted-by":"publisher","DOI":"10.1016\/J.COSE.2025.104655"},{"key":"e_1_3_2_1_44_1","volume-title":"USENIX Security Symposium.","author":"Andriesse Dennis","unstructured":"Dennis Andriesse, Xi Chen, Victor van der Veen, Asia Slowinska, and Herbert Bos. 2016. An In-Depth Analysis of Disassembly on Full-Scale x86\/x64 Binaries. In USENIX Security Symposium."},{"key":"e_1_3_2_1_45_1","volume-title":"International Journal on Software Tools for Technology Transfer","author":"Arras Paul-Antoine","year":"2022","unstructured":"Paul-Antoine Arras, Anastasios Andronidis, Luis Pina, Karolis Mituzas, Qianyi Shu, Daniel Grumberg, and Cristian Cadar. 2022. SaBRe: Load-time Selective Binary Rewriting. International Journal on Software Tools for Technology Transfer (2022)."},{"key":"e_1_3_2_1_46_1","volume-title":"USENIX Symposium on Operating Systems Design and Implementation (OSDI).","author":"Belay Adam","year":"2012","unstructured":"Adam Belay, Andrea Bittau, Ali Mashtizadeh, David Terei, David Mazi\u00e8res, and Christos Kozyrakis. 2012. Dune: Safe User-level Access to Privileged CPU Features. In USENIX Symposium on Operating Systems Design and Implementation (OSDI)."},{"key":"e_1_3_2_1_47_1","volume-title":"ACM SIGPLAN Conference on Programming Language Design and Implementation (PLDI).","author":"Emery","unstructured":"Emery D. Berger and Benjamin G. Zorn. 2006. DieHard: probabilistic memory safety for unsafe languages. In ACM SIGPLAN Conference on Programming Language Design and Implementation (PLDI)."},{"key":"e_1_3_2_1_48_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10009"},{"key":"e_1_3_2_1_49_1","volume-title":"MPKAlloc: Efficient Heap Meta-data Integrity Through Hardware Memory Protection Keys. In Conference on Detection of Intrusions and Malware, and Vulnerability Assessment (DIMVA).","author":"Blair William","year":"2022","unstructured":"William Blair, William Robertson, and Manuel Egele. 2022. MPKAlloc: Efficient Heap Meta-data Integrity Through Hardware Memory Protection Keys. In Conference on Detection of Intrusions and Malware, and Vulnerability Assessment (DIMVA)."},{"key":"e_1_3_2_1_50_1","volume-title":"ThreadLock: Native Principal Isolation Through Memory Protection Keys. In ACM Asia Conference on Computer and Communications Security (ASIA CCS).","author":"Blair William","year":"2023","unstructured":"William Blair, William Robertson, and Manuel Egele. 2023. ThreadLock: Native Principal Isolation Through Memory Protection Keys. In ACM Asia Conference on Computer and Communications Security (ASIA CCS)."},{"key":"e_1_3_2_1_51_1","volume-title":"Diversified process replic\u00e6 for defeating memory error exploits","author":"Bruschi Danilo","unstructured":"Danilo Bruschi, Lorenzo Cavallaro, and Andrea Lanzi. 2007. Diversified process replic\u00e6 for defeating memory error exploits. In IEEE Performance, Computing, and Communications Conference (IPCCC)."},{"key":"e_1_3_2_1_52_1","volume-title":"Efficient Storage Integrity in Adversarial Settings. IEEE Symposium on Security and Privacy (S&P)","author":"Burke Quinn","year":"2025","unstructured":"Quinn Burke, Ryan Sheatsley, Yohan Beugin, Eric Pauley, Owen Hines, Michael Swift, and Patrick McDaniel. 2025. Efficient Storage Integrity in Adversarial Settings. IEEE Symposium on Security and Privacy (S&P) (2025)."},{"key":"e_1_3_2_1_53_1","first-page":"16","article-title":"Control-flow integrity: Precision, security, and performance","volume":"50","author":"Burow Nathan","year":"2017","unstructured":"Nathan Burow, Scott A Carr, Joseph Nash, Per Larsen, Michael Franz, Stefan Brunthaler, and Mathias Payer. 2017. Control-flow integrity: Precision, security, and performance. ACM Computing Surveys (CSUR) 50, 1 (2017), 16.","journal-title":"ACM Computing Surveys (CSUR)"},{"key":"e_1_3_2_1_54_1","volume-title":"Cloud Computing Security Workshop (CCSW).","author":"Canella Claudio","year":"2021","unstructured":"Claudio Canella, Mario Werner, Daniel Gruss, and Michael Schwarz. 2021. Automating seccomp filter generation for linux applications. In Cloud Computing Security Workshop (CCSW)."},{"key":"e_1_3_2_1_55_1","volume-title":"ACM SIGPLAN Conference on Programming Language Design and Implementation (PLDI).","author":"Chamith Buddhika","unstructured":"Buddhika Chamith, Bo Joel Svensson, Luke Dalessandro, and Ryan R. Newton. 2017. Instruction Punning: Lightweight Instrumentation for X86\u201364. In ACM SIGPLAN Conference on Programming Language Design and Implementation (PLDI)."},{"key":"e_1_3_2_1_56_1","volume-title":"IEEE Symposium on Security and Privacy (S&P).","author":"Cheng Zijun","year":"2024","unstructured":"Zijun Cheng, Qiujian Lv, Jinyuan Liang, Yan Wang, Degang Sun, Thomas Pasquier, and Xueyuan Han. 2024. Kairos: Practical intrusion detection and investigation using whole-system provenance. In IEEE Symposium on Security and Privacy (S&P)."},{"key":"e_1_3_2_1_57_1","volume-title":"PKU Pitfalls: Attacks on PKU-based Memory Isolation Systems. In USENIX Security Symposium.","author":"Connor Emma","year":"2020","unstructured":"Emma Connor, Tyler McDaniel, Jared M. Smith, and Max Schuchard. 2020. PKU Pitfalls: Attacks on PKU-based Memory Isolation Systems. In USENIX Security Symposium."},{"key":"e_1_3_2_1_58_1","volume-title":"IEEE Symposium on Security and Privacy (S&P).","author":"Crane Stephen","year":"2015","unstructured":"Stephen Crane, Christopher Liebchen, Andrei Homescu, Lucas Davi, Per Larsen, Ahmad-Reza Sadeghi, Stefan Brunthaler, and Michael Franz. 2015. Readactor: Practical Code Randomization Resilient to Memory Disclosure. In IEEE Symposium on Security and Privacy (S&P)."},{"key":"e_1_3_2_1_59_1","volume-title":"ACM Conference on Computer and Communications Security (CCS).","author":"Crane Stephen J.","year":"2015","unstructured":"Stephen J. Crane, Stijn Volckaert, Felix Schuster, Christopher Liebchen, Per Larsen, Lucas Davi, Ahmad-Reza Sadeghi, Thorsten Holz, Bjorn De Sutter, and Michael Franz. 2015. It's a TRaP: Table Randomization and Protection against Function-Reuse Attacks. In ACM Conference on Computer and Communications Security (CCS)."},{"key":"e_1_3_2_1_60_1","volume-title":"International Symposium on Research in Attacks, Intrusions and Defenses (RAID).","author":"DeMarinis Nicholas","unstructured":"Nicholas DeMarinis, Kent Williams-King, Di Jin, Rodrigo Fonseca, and Vasileios P. Kemerlis. 2020. sysfilter: Automated System Call Filtering for Commodity Software. In International Symposium on Research in Attacks, Intrusions and Defenses (RAID)."},{"key":"e_1_3_2_1_61_1","volume-title":"User-Mode Linux. In Annual Linux Showcase & Conference (ALS).","author":"Dike Jeff","year":"2001","unstructured":"Jeff Dike. 2001. User-Mode Linux. In Annual Linux Showcase & Conference (ALS)."},{"key":"e_1_3_2_1_62_1","volume-title":"Capacity: Cryptographically-Enforced In-Process Capabilities for Modern ARM Architectures. In ACM Conference on Computer and Communications Security (CCS).","author":"Duy Kha Dinh","year":"2023","unstructured":"Kha Dinh Duy, Kyuwon Cho, Taehyun Noh, and Hojoon Lee. 2023. Capacity: Cryptographically-Enforced In-Process Capabilities for Modern ARM Architectures. In ACM Conference on Computer and Communications Security (CCS)."},{"key":"e_1_3_2_1_63_1","volume-title":"REPLICAWATCHER: Training-less Anomaly Detection in Containerized Microservices. In Symposium on Network and Distributed System Security (NDSS).","author":"Khairi Asbat El","year":"2024","unstructured":"Asbat El Khairi, Marco Caselli, Andreas Peter, and Andrea Continella. 2024. REPLICAWATCHER: Training-less Anomaly Detection in Containerized Microservices. In Symposium on Network and Distributed System Security (NDSS)."},{"key":"e_1_3_2_1_64_1","volume-title":"SysXCHG: Refining Privilege with Adaptive System Call Filters. In ACM Conference on Computer and Communications Security (CCS).","author":"Gaidis Alexander J.","unstructured":"Alexander J. Gaidis, Vaggelis Atlidakis, and Vasileios P. Kemerlis. 2023. SysXCHG: Refining Privilege with Adaptive System Call Filters. In ACM Conference on Computer and Communications Security (CCS)."},{"key":"e_1_3_2_1_65_1","volume-title":"Symposium on Network and Distributed System Security (NDSS).","author":"Garfinkel Tal","year":"2003","unstructured":"Tal Garfinkel. 2003. Traps and pitfalls: Practical problems in system call interposition based security tools. In Symposium on Network and Distributed System Security (NDSS)."},{"key":"e_1_3_2_1_66_1","volume-title":"Symposium on Network and Distributed System Security (NDSS).","author":"Ge Xinyang","year":"2017","unstructured":"Xinyang Ge, Mathias Payer, and Trent Jaeger. 2017. An Evil Copy: How the Loader Betrays You.. In Symposium on Network and Distributed System Security (NDSS)."},{"key":"e_1_3_2_1_67_1","volume-title":"International Symposium on Research in Attacks, Intrusions and Defenses (RAID).","author":"Ghavamnia Seyedhamed","year":"2020","unstructured":"Seyedhamed Ghavamnia, Tapti Palit, Azzedine Benameur, and Michalis Polychronakis. 2020. Confine: Automated system call policy generation for container attack surface reduction. In International Symposium on Research in Attacks, Intrusions and Defenses (RAID)."},{"key":"e_1_3_2_1_68_1","volume-title":"ACM Conference on Computer and Communications Security (CCS).","author":"Ghavamnia Seyedhamed","year":"2022","unstructured":"Seyedhamed Ghavamnia, Tapti Palit, and Michalis Polychronakis. 2022. C2C: Fine-grained configuration-driven system call filtering. In ACM Conference on Computer and Communications Security (CCS)."},{"key":"e_1_3_2_1_69_1","volume-title":"Enclosure: Language-Based Restriction of Untrusted Libraries. In International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS).","author":"Ghosn Adrien","year":"2021","unstructured":"Adrien Ghosn, Marios Kogias, Mathias Payer, James R. Larus, and Edouard Bugnion. 2021. Enclosure: Language-Based Restriction of Untrusted Libraries. In International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS)."},{"key":"e_1_3_2_1_70_1","volume-title":"International Symposium on Research in Attacks, Intrusions and Defenses (RAID).","author":"Gravani Spyridoula","unstructured":"Spyridoula Gravani, Mohammad Hedayati, John Criswell, and Michael L. Scott. 2021. IskiOS: Intra-kernel Isolation and Security using Memory Protection Keys. In International Symposium on Research in Attacks, Intrusions and Defenses (RAID)."},{"key":"e_1_3_2_1_71_1","volume-title":"Last accessed","author":"Gregg Brendan","year":"2025","unstructured":"Brendan Gregg. Last accessed 2025. Linux Extended BPF (eBPF) Tracing Tools. https:\/\/www.brendangregg.com\/ebpf.html"},{"key":"e_1_3_2_1_72_1","volume-title":"Hodor: Intra-Process Isolation for High-Throughput Data Plane Libraries. In USENIX Annual Technical Conference.","author":"Hedayati Mohammad","year":"2019","unstructured":"Mohammad Hedayati, Spyridoula Gravani, Ethan Johnson, John Criswell, Michael L. Scott, Kai Shen, and Mike Marty. 2019. Hodor: Intra-Process Isolation for High-Throughput Data Plane Libraries. In USENIX Annual Technical Conference."},{"key":"e_1_3_2_1_73_1","volume-title":"NanoHook: An Efficient System Call Hooking Technique with One-Byte Invasive. In International Symposium on Dependable Software Engineering: Theories, Tools, and Applications. Springer, 363\u2013381","author":"Hong Quan","year":"2024","unstructured":"Quan Hong, Jiaqi Li, Wen Zhang, and Lidong Zhai. 2024. NanoHook: An Efficient System Call Hooking Technique with One-Byte Invasive. In International Symposium on Dependable Software Engineering: Theories, Tools, and Applications. Springer, 363\u2013381."},{"key":"e_1_3_2_1_74_1","first-page":"10","volume-title":"Proc. ACM Softw. Eng. 2, ISSTA (June","author":"Hong Quan","year":"2025","unstructured":"Quan Hong, Jiaqi Li, Wen Zhang, and Lidong Zhai. 2025. DataHook: An Efficient and Lightweight System Call Hooking Technique without Instruction Modification. Proc. ACM Softw. Eng. 2, ISSTA (June 2025), 21 pages. 10.1145\/3728874"},{"key":"e_1_3_2_1_75_1","volume-title":"International Conference on Software Engineering (ICSE).","author":"Hosek Petr","year":"2013","unstructured":"Petr Hosek and Cristian Cadar. 2013. Safe software updates via multi-version execution. In International Conference on Software Engineering (ICSE)."},{"key":"e_1_3_2_1_76_1","volume-title":"International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS).","author":"Hosek Petr","year":"2015","unstructured":"Petr Hosek and Cristian Cadar. 2015. Varan the unbelievable: An efficient n-version execution framework. In International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS)."},{"key":"e_1_3_2_1_77_1","volume-title":"System Call Interposition Without Compromise. In IEEE\/IFIP Conference on Dependable Systems and Networks (DSN).","author":"Jacobs Adriaan","year":"2024","unstructured":"Adriaan Jacobs, Merve G\u00fclmez, Alicia Andries, Stijn Volckaert, and Alexios Voulimeneas. 2024. System Call Interposition Without Compromise. In IEEE\/IFIP Conference on Dependable Systems and Networks (DSN)."},{"key":"e_1_3_2_1_78_1","volume-title":"Co-opting Linux Processes for High-Performance Network Simulation. In USENIX Annual Technical Conference.","author":"Jansen Rob","year":"2022","unstructured":"Rob Jansen, Jim Newsome, and Ryan Wails. 2022. Co-opting Linux Processes for High-Performance Network Simulation. In USENIX Annual Technical Conference."},{"key":"e_1_3_2_1_79_1","volume-title":"EPF: Evil Packet Filter. In USENIX Annual Technical Conference.","author":"Jin Di","unstructured":"Di Jin, Vaggelis Atlidakis, and Vasileios P. Kemerlis. 2023. EPF: Evil Packet Filter. In USENIX Annual Technical Conference."},{"key":"e_1_3_2_1_80_1","volume-title":"Symposium on Network and Distributed System Security (NDSS).","author":"Jung Joonkyo","year":"2025","unstructured":"Joonkyo Jung, Jisoo Jang, Yongwan Jo, Jonas Vinck, Alexios Voulimeneas, Stijn Volckaert, and Dokyung Song. 2025. Moneta: Ex-Vivo GPU Driver Fuzzing by Recalling In-Vivo Execution States. In Symposium on Network and Distributed System Security (NDSS)."},{"key":"e_1_3_2_1_81_1","volume-title":"ACM Conference on Computer and Communications Security (CCS).","author":"Kim Juhee","year":"2024","unstructured":"Juhee Kim, Jinbum Park, Yoochan Lee, Chengyu Song, Taesoo Kim, and Byoungyoung Lee. 2024. PeTAL: Ensuring Access Control Integrity against Data-only Attacks on Linux. In ACM Conference on Computer and Communications Security (CCS)."},{"key":"e_1_3_2_1_82_1","volume-title":"USENIX Annual Technical Conference.","author":"Kim Taesoo","year":"2013","unstructured":"Taesoo Kim and Nickolai Zeldovich. 2013. Practical and effective sandboxing for non-root users. In USENIX Annual Technical Conference."},{"key":"e_1_3_2_1_83_1","volume-title":"European Conference on Computer Systems (EuroSys).","author":"Kirth Paul","year":"2022","unstructured":"Paul Kirth, Mitchel Dickerson, Stephen Crane, Per Larsen, Adrian Dabrowski, David Gens, Yeoul Na, Stijn Volckaert, and Michael Franz. 2022. PKRU-safe: automatically locking down the heap between safe and unsafe languages. In European Conference on Computer Systems (EuroSys)."},{"key":"e_1_3_2_1_84_1","volume-title":"IEEE\/IFIP Conference on Dependable Systems and Networks (DSN).","author":"Koning Koen","year":"2016","unstructured":"Koen Koning, Herbert Bos, and Cristiano Giuffrida. 2016. Secure and efficient multi-variant execution using hardware-assisted process virtualization. In IEEE\/IFIP Conference on Dependable Systems and Networks (DSN)."},{"key":"e_1_3_2_1_85_1","volume-title":"European Conference on Computer Systems (EuroSys).","author":"Koning Koen","year":"2017","unstructured":"Koen Koning, Xi Chen, Herbert Bos, Cristiano Giuffrida, and Elias Athanasopoulos. 2017. No Need to Hide: Protecting Safe Regions on Commodity Hardware. In European Conference on Computer Systems (EuroSys)."},{"key":"e_1_3_2_1_86_1","volume-title":"European Conference on Computer Systems (EuroSys).","author":"Kuo Hsuan-Chi","year":"2020","unstructured":"Hsuan-Chi Kuo, Dan Williams, Ricardo Koller, and Sibin Mohan. 2020. A Linux in Unikernel Clothing. In European Conference on Computer Systems (EuroSys)."},{"key":"e_1_3_2_1_87_1","volume-title":"USENIX Security Symposium.","author":"Kwon Donghyun","year":"2019","unstructured":"Donghyun Kwon, Jangseop Shin, Giyeol Kim, Byoungyoung Lee, Yeongpil Cho, and Yunheung Paek. 2019. uXOM: Efficient eXecute-Only Memory on ARM Cortex-M. In USENIX Security Symposium."},{"key":"e_1_3_2_1_88_1","volume-title":"SoK: Automated Software Diversity. In IEEE Symposium on Security and Privacy (S&P).","author":"Larsen Per","year":"2014","unstructured":"Per Larsen, Andrei Homescu, Stefan Brunthaler, and Michael Franz. 2014. SoK: Automated Software Diversity. In IEEE Symposium on Security and Privacy (S&P)."},{"key":"e_1_3_2_1_89_1","volume-title":"ACM Conference on Computer and Communications Security (CCS).","author":"Lee Hojoon","year":"2018","unstructured":"Hojoon Lee, Chihyun Song, and Brent Byunghoon Kang. 2018. Lord of the x86 Rings: A Portable User Mode Privilege Separation Architecture on x86. In ACM Conference on Computer and Communications Security (CCS)."},{"key":"e_1_3_2_1_90_1","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2022.3192524"},{"key":"e_1_3_2_1_91_1","volume-title":"Proceedings of the 39th ACM\/SIGAPP Symposium on Applied Computing.","author":"Lee Seongman","year":"2024","unstructured":"Seongman Lee, Seoye Kim, Chihyun Song, Byeongsu Woo, Eunyeong Ahn, Junsu Lee, Yeongjin Jang, Jinsoo Jang, Hojoon Lee, and Brent Byunghoon Kang. 2024. GENESIS: A Generalizable, Efficient, and Secure Intra-kernel Privilege Separation. In Proceedings of the 39th ACM\/SIGAPP Symposium on Applied Computing."},{"key":"e_1_3_2_1_92_1","volume-title":"FlexOS: Towards Flexible OS Isolation. In International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS).","author":"Lefeuvre Hugo","year":"2022","unstructured":"Hugo Lefeuvre, Vlad-Andrei B\u0103doiu, Alexander Jung, Stefan Teodorescu, Sebastian Rauch, Felipe Huici, Costin Raiciu, and Pierre Olivier. 2022. FlexOS: Towards Flexible OS Isolation. In International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS)."},{"key":"e_1_3_2_1_93_1","volume-title":"SoK: Software Compartmentalization. In IEEE Symposium on Security and Privacy (S&P).","author":"Lefeuvre Hugo","year":"2025","unstructured":"Hugo Lefeuvre, Nathan Dautenhahn, David Chisnall, and Pierre Olivier. 2025. SoK: Software Compartmentalization. In IEEE Symposium on Security and Privacy (S&P)."},{"key":"e_1_3_2_1_94_1","volume-title":"Loupe: Driving the Development of OS Compatibility Layers. In International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS).","author":"Lefeuvre Hugo","year":"2024","unstructured":"Hugo Lefeuvre, Gaulthier Gain, Vlad-Andrei B\u0103doiu, Daniel Dinca, Vlad-Radu Schiller, Costin Raiciu, Felipe Huici, and Pierre Olivier. 2024. Loupe: Driving the Development of OS Compatibility Layers. In International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS)."},{"key":"e_1_3_2_1_95_1","volume-title":"Last accessed","author":"Liber Matan","year":"2025","unstructured":"Matan Liber. Last accessed 2025. The good, bad and compromisable aspects of linux ebpf. https:\/\/pentera.io\/wp-content\/uploads\/2022\/07\/penteralabs-the-good-bad-and-compromisable-aspects-of-linux-ebpf.pd"},{"key":"e_1_3_2_1_96_1","volume-title":"European Symposium on Research in Computer Security (ESORICS).","author":"Liu Qirui","year":"2024","unstructured":"Qirui Liu, Wenbo Shen, Jinmeng Zhou, Zhuoruo Zhang, Jiayi Hu, Shukai Ni, Kangjie Lu, and Rui Chang. 2024. Interp-flow Hijacking: Launching Non-control Data Attack via Hijacking eBPF Interpretation Flow. In European Symposium on Research in Computer Security (ESORICS)."},{"key":"e_1_3_2_1_97_1","volume-title":"Thwarting Memory Disclosure with Efficient Hypervisor-Enforced Intra-Domain Isolation. In ACM Conference on Computer and Communications Security (CCS).","author":"Liu Yutao","year":"2015","unstructured":"Yutao Liu, Tianyu Zhou, Kexin Chen, Haibo Chen, and Yubin Xia. 2015. Thwarting Memory Disclosure with Efficient Hypervisor-Enforced Intra-Domain Isolation. In ACM Conference on Computer and Communications Security (CCS)."},{"key":"e_1_3_2_1_98_1","volume-title":"Stopping Memory Disclosures via Diversification and Replicated Execution","author":"Lu Kangjie","year":"2018","unstructured":"Kangjie Lu, Meng Xu, Chengyu Song, Taesoo Kim, and Wenke Lee. 2018. Stopping Memory Disclosures via Diversification and Replicated Execution. IEEE Transactions on Dependable and Secure Computing (TDSC) (2018)."},{"key":"e_1_3_2_1_99_1","volume-title":"Symposium on Network and Distributed System Security (NDSS).","author":"Luo Chenke","year":"2025","unstructured":"Chenke Luo, Jiang Ming, Mengfei Xie, Guojun Peng, and Jianming Fu. 2025. Retrofitting XoM for Stripped Binaries without Embedded Data Relocation. In Symposium on Network and Distributed System Security (NDSS)."},{"key":"e_1_3_2_1_100_1","volume-title":"USENIX Security Symposium.","author":"Maurer Matthew","year":"2012","unstructured":"Matthew Maurer and David Brumley. 2012. TACHYON: tandem execution for efficient live patch testing. In USENIX Security Symposium."},{"key":"e_1_3_2_1_101_1","volume-title":"The BSD Packet Filter: A New Architecture for User-level Packet Capture. In Usenix Winter Conference.","author":"McCanne Steven","year":"1993","unstructured":"Steven McCanne and Van Jacobson. 1993. The BSD Packet Filter: A New Architecture for User-level Packet Capture. In Usenix Winter Conference."},{"key":"e_1_3_2_1_102_1","volume-title":"Symposium on Network and Distributed System Security (NDSS).","author":"McKee Derrick Paul","year":"2022","unstructured":"Derrick Paul McKee, Yianni Giannaris, Carolina Ortega, Howard E Shrobe, Mathias Payer, Hamed Okhravi, and Nathan Burow. 2022. Preventing Kernel Hacks with HAKCs.. In Symposium on Network and Distributed System Security (NDSS)."},{"key":"e_1_3_2_1_103_1","doi-asserted-by":"publisher","DOI":"10.1007\/s44196"},{"key":"e_1_3_2_1_104_1","unstructured":"Daiping liu Mingwei Zhang Ravi Sahita. 2018. eXecutable-Only-Memory-Switch (XOM-Switch). In Black Hat Asia Briefings (Black Hat Asia)."},{"key":"e_1_3_2_1_105_1","volume-title":"VirtuOS: An Operating System with Kernel Virtualization. In ACM Symposium on Operating Systems Principles (SOSP).","author":"Nikolaev Ruslan","year":"2013","unstructured":"Ruslan Nikolaev and Godmar Back. 2013. VirtuOS: An Operating System with Kernel Virtualization. In ACM Symposium on Operating Systems Principles (SOSP)."},{"key":"e_1_3_2_1_106_1","volume-title":"Lost in the Loader:The Many Faces of the Windows PE File Format. In International Symposium on Research in Attacks, Intrusions and Defenses (RAID).","author":"Nisi Dario","year":"2021","unstructured":"Dario Nisi, Mariano Graziano, Yanick Fratantonio, and Davide Balzarotti. 2021. Lost in the Loader:The Many Faces of the Windows PE File Format. In International Symposium on Research in Attacks, Intrusions and Defenses (RAID)."},{"key":"e_1_3_2_1_107_1","volume-title":"DieHarder: Securing the Heap. In ACM Conference on Computer and Communications Security (CCS).","author":"Novark Gene","year":"2010","unstructured":"Gene Novark and Emery Berger. 2010. DieHarder: Securing the Heap. In ACM Conference on Computer and Communications Security (CCS)."},{"key":"e_1_3_2_1_108_1","volume-title":"Conference on Virtual Execution Environments (VEE).","author":"Olivier Pierre","year":"2019","unstructured":"Pierre Olivier, Daniel Chiba, Stefan Lankes, Changwoo Min, and Binoy Ravindran. 2019. A Binary-Compatible Unikernel. In Conference on Virtual Execution Environments (VEE)."},{"key":"e_1_3_2_1_109_1","volume-title":"IEEE Symposium on Security and Privacy (S&P).","author":"Pang Chengbin","year":"2021","unstructured":"Chengbin Pang, Ruotong Yu, Yaohui Chen, Eric Koskinen, Georgios Portokalidis, Bing Mao, and Jun Xu. 2021. SoK: All You Ever Wanted to Know About x86\/x64 Binary Disassembly But Were Afraid to Ask. In IEEE Symposium on Security and Privacy (S&P)."},{"key":"e_1_3_2_1_110_1","volume-title":"USENIX Security Symposium.","author":"Pang Chengbin","year":"2022","unstructured":"Chengbin Pang, Tiantai Zhang, Ruotong Yu, Bing Mao, and Jun Xu. 2022. Ground truth for binary disassembly is not easy. In USENIX Security Symposium."},{"key":"e_1_3_2_1_111_1","volume-title":"USENIX Annual Technical Conference.","author":"Park Soyeon","year":"2019","unstructured":"Soyeon Park, Sangho Lee, Wen Xu, Hyungon Moon, and Taesoo Kim. 2019. Libmpk: software abstraction for intel memory protection keys (intel MPK). In USENIX Annual Technical Conference."},{"key":"e_1_3_2_1_112_1","volume-title":"Symposium on Network and Distributed System Security (NDSS).","author":"Park Taemin","year":"2020","unstructured":"Taemin Park, Karel Dhondt, David Gens, Yeoul Na, Stijn Volckaert, and Michael Franz. 2020. Nojitsu: Locking down javascript engines. In Symposium on Network and Distributed System Security (NDSS)."},{"key":"e_1_3_2_1_113_1","volume-title":"IEEE Symposium on Security and Privacy (S&P).","author":"Peng Dinglan","year":"2023","unstructured":"Dinglan Peng, Congyu Liu, Tapti Palit, Tapti Fonseca, Anjo Vahldiek-Oberwagner, and Mona Vij. 2023. uSwitch: Fast Kernel Context Isolation with Implicit Context Switches. In IEEE Symposium on Security and Privacy (S&P)."},{"key":"e_1_3_2_1_114_1","volume-title":"International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS).","author":"Pina Lu\u00eds","year":"2019","unstructured":"Lu\u00eds Pina, Anastasios Andronidis, Michael Hicks, and Cristian Cadar. 2019. MVEDSUa: Higher Availability Dynamic Software Updates via Multi-Version Execution. In International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS)."},{"key":"e_1_3_2_1_115_1","volume-title":"USENIX Annual Technical Conference.","author":"Pina Lu\u00eds","year":"2017","unstructured":"Lu\u00eds Pina, Daniel Grumberg, Anastasios Andronidis, and Cristian Cadar. 2017. A DSL approach to reconcile equivalent divergent program executions. In USENIX Annual Technical Conference."},{"key":"e_1_3_2_1_116_1","volume-title":"IEEE Symposium on Security and Privacy (S&P).","author":"Proskurin Sergej","year":"2020","unstructured":"Sergej Proskurin, Marius Momeu, Seyedhamed Ghavamnia, Vasileios P. Kemerlis, and Michalis Polychronakis. 2020. xMP: Selective Memory Protection for Kernel and User Space. In IEEE Symposium on Security and Privacy (S&P)."},{"key":"e_1_3_2_1_117_1","volume-title":"IEEE International Conference on Cloud Computing (CLOUD).","author":"Qin Kailun","year":"2024","unstructured":"Kailun Qin and Dawu Gu. 2024. One System Call Hook to Rule All TEE OSes in the Cloud. In IEEE International Conference on Cloud Computing (CLOUD)."},{"key":"e_1_3_2_1_118_1","volume-title":"SYSPART: Automated Temporal System Call Filtering for Binaries. In ACM Conference on Computer and Communications Security (CCS).","author":"Rajagopalan Vidya Lakshmi","year":"2023","unstructured":"Vidya Lakshmi Rajagopalan, Konstantinos Kleftogiorgos, Enes G\u00f6kta\u015f, Jun Xu, and Georgios Portokalidis. 2023. SYSPART: Automated Temporal System Call Filtering for Binaries. In ACM Conference on Computer and Communications Security (CCS)."},{"key":"e_1_3_2_1_119_1","volume-title":"European Conference on Computer Systems (EuroSys).","author":"Raza Ali","year":"2023","unstructured":"Ali Raza, Thomas Unger, Matthew Boyd, Eric B Munson, Parul Sohal, Ulrich Drepper, Richard Jones, Daniel Bristot De Oliveira, Larry Woodman, Renato Mancuso, Jonathan Appavoo, and Orran Krieger. 2023. Unikernel Linux (UKL). In European Conference on Computer Systems (EuroSys)."},{"key":"e_1_3_2_1_120_1","volume-title":"Last accessed","author":"Robinson Branden","year":"2025","unstructured":"Branden Robinson, David MacKenzie, and Jim Meyering. Last accessed 2025. GNU Coreutils: File, Shell and Text Manipulation Utilities. Free Software Foundation. https:\/\/www.gnu.org\/software\/coreutils\/"},{"key":"e_1_3_2_1_121_1","volume-title":"Annual Computer Security Applications Conference (ACSAC). IEEE.","author":"R\u00f6sti Andr\u00e9","year":"2024","unstructured":"Andr\u00e9 R\u00f6sti, Stijn Volckaert, Michael Franz, and Alexios Voulimeneas. 2024. I'll Be There for You! Perpetual Availability in the A 8 MVX System. In Annual Computer Security Applications Conference (ACSAC). IEEE."},{"key":"e_1_3_2_1_122_1","doi-asserted-by":"publisher","DOI":"10.1109\/MSEC.2024.3407648"},{"key":"e_1_3_2_1_123_1","volume-title":"European Conference on Computer Systems (EuroSys).","author":"Salamat Babak","year":"2009","unstructured":"Babak Salamat, Todd Jackson, Andreas Gal, and Michael Franz. 2009. Orchestra: intrusion detection using parallel execution and monitoring of program variants in user-space. In European Conference on Computer Systems (EuroSys)."},{"key":"e_1_3_2_1_124_1","volume-title":"CubicleOS: A Library OS with Software Componentisation for Practical Isolation. In International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS).","author":"Sartakov Vasily A.","year":"2021","unstructured":"Vasily A. Sartakov, Llu\u00eds Vilanova, and Peter Pietzuch. 2021. CubicleOS: A Library OS with Software Componentisation for Practical Isolation. In International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS)."},{"key":"e_1_3_2_1_125_1","volume-title":"Jenny: Securing Syscalls for PKU-based Memory Isolation Systems. In USENIX Security Symposium.","author":"Schrammel David","year":"2022","unstructured":"David Schrammel, Samuel Weiser, Richard Sadek, and Stefan Mangard. 2022. Jenny: Securing Syscalls for PKU-based Memory Isolation Systems. In USENIX Security Symposium."},{"key":"e_1_3_2_1_126_1","volume-title":"USENIX Security Symposium.","author":"Schrammel David","year":"2020","unstructured":"David Schrammel, Samuel Weiser, Stefan Steinegger, Martin Schwarzl, Michael Schwarz, Stefan Mangard, and Daniel Gruss. 2020. Donky: Domain Keys - Efficient In-Process Isolation for RISC-V and x86. In USENIX Security Symposium."},{"key":"e_1_3_2_1_127_1","volume-title":"USENIX Symposium on Operating Systems Design and Implementation (OSDI).","author":"Schuermann Leon","year":"2025","unstructured":"Leon Schuermann, Jack Toubes, Tyler Potyondy, Pat Pannuto, Mae Milano, and Amit Levy. 2025. Building bridges: safe interactions with foreign languages through Omniglot. In USENIX Symposium on Operating Systems Design and Implementation (OSDI)."},{"key":"e_1_3_2_1_128_1","volume-title":"ACM Conference on Computer and Communications Security (CCS).","author":"Shacham Hovav","year":"2004","unstructured":"Hovav Shacham, Matthew Page, Ben Pfaff, Eu-Jin Goh, Nagendra Modadugu, and Dan Boneh. 2004. On the effectiveness of address-space randomization. In ACM Conference on Computer and Communications Security (CCS)."},{"key":"e_1_3_2_1_129_1","volume-title":"ASC-Hook: fast and transparent system call hook for Arm. arXiv preprint arXiv:2412.05784","author":"Shen Yang","year":"2024","unstructured":"Yang Shen, Min Xie, Wenzhe Zhang, and Tao Wu. 2024. ASC-Hook: fast and transparent system call hook for Arm. arXiv preprint arXiv:2412.05784 (2024)."},{"key":"e_1_3_2_1_130_1","volume-title":"International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS).","author":"Shen Zhiming","year":"2019","unstructured":"Zhiming Shen, Zhen Sun, Gur-Eyal Sela, Eugene Bagdasaryan, Christina Delimitrou, Robbert Van Renesse, and Hakim Weatherspoon. 2019. X-containers: Breaking down barriers to improve performance and isolation of cloud-native containers. In International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS)."},{"key":"e_1_3_2_1_131_1","volume-title":"USENIX Symposium on Operating Systems Design and Implementation (OSDI).","author":"Soares Livio","year":"2010","unstructured":"Livio Soares and Michael Stumm. 2010. {FlexSC}: Flexible system call scheduling with {Exception-Less} system calls. In USENIX Symposium on Operating Systems Design and Implementation (OSDI)."},{"key":"e_1_3_2_1_132_1","volume-title":"European Conference on Computer Systems (EuroSys).","author":"Sun Hao","year":"2024","unstructured":"Hao Sun, Yiru Xu, Jianzhong Liu, Yuheng Shen, Nan Guan, and Yu Jiang. 2024. Finding correctness bugs in ebpf verifier with structured and sanitized program. In European Conference on Computer Systems (EuroSys)."},{"key":"e_1_3_2_1_133_1","volume-title":"\u03bcTiles: Efficient Intra-Process Privilege Enforcement of Memory Regions. arXiv preprint arXiv:2108.03705","author":"Tarkhani Zahra","year":"2020","unstructured":"Zahra Tarkhani and Anil Madhavapeddy. 2020. \u03bcTiles: Efficient Intra-Process Privilege Enforcement of Memory Regions. arXiv preprint arXiv:2108.03705 (2020)."},{"key":"e_1_3_2_1_134_1","doi-asserted-by":"crossref","unstructured":"Martin Unterguggenberger Lukas Lamster David Schrammel Martin Schwarzl and Stefan Mangard. 2024. TME-Box: Scalable In-Process Isolation through Intel TME-MK Memory Encryption. arXiv preprint arXiv:2407.10740v2.","DOI":"10.14722\/ndss.2025.240277"},{"key":"e_1_3_2_1_135_1","volume-title":"Efficient In-process Isolation with Memory Protection Keys. In USENIX Security Symposium.","author":"Vahldiek-Oberwagner Anjo","year":"2019","unstructured":"Anjo Vahldiek-Oberwagner, Eslam Elnikety, Nuno O Duarte, Peter Druschel, and Deepak Garg. 2019. ERIM: Secure, Efficient In-process Isolation with Memory Protection Keys. In USENIX Security Symposium."},{"key":"e_1_3_2_1_136_1","volume-title":"European Conference on Computer Systems (EuroSys).","author":"Vinck Jonas","year":"2022","unstructured":"Jonas Vinck, Bert Abrath, Bart Coppens, Alexios Voulimeneas, Bjorn De Sutter, and Stijn Volckaert. 2022. Sharing is Caring: Secure and Efficient Shared Memory Support for MVEEs. In European Conference on Computer Systems (EuroSys)."},{"key":"e_1_3_2_1_137_1","volume-title":"Divide and Conquer: Introducing Partial Multi-Variant Execution. In IEEE European Symposium on Security and Privacy (EuroS&P).","author":"Vinck Jonas","year":"2025","unstructured":"Jonas Vinck, Adriaan Jacobs, Alexios Voulimeneas, and Stijn Volckaert. 2025. Divide and Conquer: Introducing Partial Multi-Variant Execution. In IEEE European Symposium on Security and Privacy (EuroS&P)."},{"key":"e_1_3_2_1_138_1","volume-title":"Cloning your gadgets: Complete ROP attack immunity with multi-variant execution","author":"Volckaert Stijn","year":"2016","unstructured":"Stijn Volckaert, Bart Coppens, and Bjorn De Sutter. 2016. Cloning your gadgets: Complete ROP attack immunity with multi-variant execution. IEEE Transactions on Dependable and Secure Computing (TDSC) (2016)."},{"key":"e_1_3_2_1_139_1","volume-title":"European Conference on Computer Systems (EuroSys).","author":"Volckaert Stijn","year":"2017","unstructured":"Stijn Volckaert, Bart Coppens, Bjorn De Sutter, Koen De Bosschere, Per Larsen, and Michael Franz. 2017. Taming parallelism in a multi-variant execution environment. In European Conference on Computer Systems (EuroSys)."},{"key":"e_1_3_2_1_140_1","volume-title":"Secure and Efficient Application Monitoring and Replication. In USENIX Annual Technical Conference.","author":"Volckaert Stijn","year":"2016","unstructured":"Stijn Volckaert, Bart Coppens, Alexios Voulimeneas, Andrei Homescu, Per Larsen, Bjorn De Sutter, and Michael Franz. 2016. Secure and Efficient Application Monitoring and Replication. In USENIX Annual Technical Conference."},{"key":"e_1_3_2_1_141_1","volume-title":"International Symposium on Foundations and Practice of Security (FPS).","author":"Volckaert Stijn","year":"2012","unstructured":"Stijn Volckaert, Bjorn De Sutter, Tim De Baets, and Koen De Bosschere. 2012. GHUMVEE: efficient, effective, and flexible replication. In International Symposium on Foundations and Practice of Security (FPS)."},{"key":"e_1_3_2_1_142_1","volume-title":"European Workshop on System Security (EuroSec).","author":"Voulimeneas Alexios","year":"2021","unstructured":"Alexios Voulimeneas, Dokyung Song, Per Larsen, Michael Franz, and Stijn Volckaert. 2021. dMVX: Secure and Efficient Multi-Variant Execution in a Distributed Setting. In European Workshop on System Security (EuroSec)."},{"key":"e_1_3_2_1_143_1","volume-title":"Conference on Detection of Intrusions and Malware, and Vulnerability Assessment (DIMVA).","author":"Voulimeneas Alexios","year":"2020","unstructured":"Alexios Voulimeneas, Dokyung Song, Fabian Parzefall, Yeoul Na, Per Larsen, Michael Franz, and Stijn Volckaert. 2020. Distributed heterogeneous N-variant execution. In Conference on Detection of Intrusions and Malware, and Vulnerability Assessment (DIMVA)."},{"key":"e_1_3_2_1_144_1","volume-title":"European Conference on Computer Systems (EuroSys).","author":"Voulimeneas Alexios","year":"2022","unstructured":"Alexios Voulimeneas, Jonas Vinck, Ruben Mechelinck, and Stijn Volckaert. 2022. You shall not (by) pass! practical, secure, and fast PKU-based sandboxing. In European Conference on Computer Systems (EuroSys)."},{"key":"e_1_3_2_1_145_1","volume-title":"Symposium on Network and Distributed System Security (NDSS).","author":"Wang Qi","year":"2020","unstructured":"Qi Wang, Wajih Ul Hassan, Ding Li, Kangkook Jee, Xiao Yu, Kexuan Zou, Junghwan Rhee, Zhengzhang Chen, Wei Cheng, Carl A Gunter, et al. 2020. You are what you do: Hunting stealthy malware via data provenance analysis.. In Symposium on Network and Distributed System Security (NDSS)."},{"key":"e_1_3_2_1_146_1","volume-title":"IEEE Symposium on Security and Privacy (S&P).","author":"Wang Ruihua","year":"2023","unstructured":"Ruihua Wang, Yihao Peng, Yilun Sun, Xuancheng Zhang, Hai Wan, and Xibin Zhao. 2023. Tesec: Accurate server-side attack investigation for web applications. In IEEE Symposium on Security and Privacy (S&P)."},{"key":"e_1_3_2_1_147_1","volume-title":"International Symposium on Research in Attacks, Intrusions and Defenses (RAID).","author":"Wang Xiaoguang","year":"2020","unstructured":"Xiaoguang Wang, SengMing Yeoh, Robert Lyerly, Pierre Olivier, Sang-Hoon Kim, and Binoy Ravindran. 2020. A Framework for Software Diversification with ISA Heterogeneity. In International Symposium on Research in Attacks, Intrusions and Defenses (RAID)."},{"key":"e_1_3_2_1_148_1","volume-title":"Secure and Efficient In-Process Monitor (and Library) Protection with Intel MPK. In European Workshop on System Security (EuroSec).","author":"Wang Xiaoguang","year":"2020","unstructured":"Xiaoguang Wang, SengMing Yeoh, Pierre Olivier, and Binoy Ravindran. 2020. Secure and Efficient In-Process Monitor (and Library) Protection with Intel MPK. In European Workshop on System Security (EuroSec)."},{"key":"e_1_3_2_1_149_1","volume-title":"SEIMI: Efficient and Secure SMAP-Enabled Intra-process Memory Isolation. In IEEE Symposium on Security and Privacy (S&P).","author":"Wang Zhe","year":"2020","unstructured":"Zhe Wang, Chenggang Wu, Mengyao Xie, Yinqian Zhang, Kangjie Lu, Xiaofeng Zhang, Yuanming Lai, Yan Kang, and Min Yang. 2020. SEIMI: Efficient and Secure SMAP-Enabled Intra-process Memory Isolation. In IEEE Symposium on Security and Privacy (S&P)."},{"key":"e_1_3_2_1_150_1","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2022.3168089"},{"key":"e_1_3_2_1_151_1","volume-title":"CETIS: Retrofitting Intel CET for Generic and Efficient Intra-process Memory Isolation. In ACM Conference on Computer and Communications Security (CCS).","author":"Xie Mengyao","year":"2022","unstructured":"Mengyao Xie, Chenggang Wu, Yinqian Zhang, Jiali Xu, Yuanming Lai, Yan Kang, Wei Wang, and Zhe Wang. 2022. CETIS: Retrofitting Intel CET for Generic and Efficient Intra-process Memory Isolation. In ACM Conference on Computer and Communications Security (CCS)."},{"key":"e_1_3_2_1_152_1","volume-title":"PANIC: PAN-assisted Intra-process Memory Isolation on ARM. In ACM Conference on Computer and Communications Security (CCS).","author":"Xu Jiali","year":"2023","unstructured":"Jiali Xu, Mengyao Xie, Chenggang Wu, Yinqian Zhang, Qijing Li, Xuan Huang, Yuanming Lai, Yan Kang, Wei Wang, Qiang Wei, and Zhe Wang. 2023. PANIC: PAN-assisted Intra-process Memory Isolation on ARM. In ACM Conference on Computer and Communications Security (CCS)."},{"key":"e_1_3_2_1_153_1","volume-title":"USENIX Annual Technical Conference.","author":"Xu Meng","year":"2017","unstructured":"Meng Xu, Kangjie Lu, Taesoo Kim, and Wenke Lee. 2017. Bunshin: compositing security mechanisms through diversification. In USENIX Annual Technical Conference."},{"key":"e_1_3_2_1_154_1","volume-title":"USENIX Security Symposium.","author":"Xu Xiaoyang","year":"2019","unstructured":"Xiaoyang Xu, Masoud Ghaffarinia, Wenhao Wang, Kevin W Hamlen, and Zhiqiang Lin. 2019. CONFIRM: Evaluating compatibility and relevance of control-flow integrity protections for modern software. In USENIX Security Symposium."},{"key":"e_1_3_2_1_155_1","volume-title":"Orbital Shield: Rethinking Satellite Security in the Commercial Off-the-Shelf Era","author":"Yadav Nikita","year":"2024","unstructured":"Nikita Yadav, Franziska Vollmer, Ahmad-Reza Sadeghi, Georgios Smaragdakis, and Alexios Voulimeneas. 2024. Orbital Shield: Rethinking Satellite Security in the Commercial Off-the-Shelf Era. In IEEE Security for Space Systems (3S)."},{"key":"e_1_3_2_1_156_1","volume-title":"Endokernel: A Thread Safe Monitor for Lightweight Subprocess Isolation. In USENIX Security Symposium.","author":"Yang Fangfei","year":"2024","unstructured":"Fangfei Yang, Bumjin Im, Weijie Huang, Kelly Kaoudis, Anjo Vahldiek-Oberwagner, Chia che Tsai, and Nathan Dautenhahn. 2024. Endokernel: A Thread Safe Monitor for Lightweight Subprocess Isolation. In USENIX Security Symposium."},{"key":"e_1_3_2_1_157_1","volume-title":"USENIX Annual Technical Conference.","author":"Yasukata Kenichi","year":"2023","unstructured":"Kenichi Yasukata, Hajime Tazaki, Pierre-Louis Aublin, and Kenta Ishiguro. 2023. zpoline: a system call hook mechanism based on binary rewriting. In USENIX Annual Technical Conference."},{"key":"e_1_3_2_1_158_1","volume-title":"Symposium on Network and Distributed System Security (NDSS).","author":"Ye Hengkai","year":"2025","unstructured":"Hengkai Ye and Hong Hu. 2025. Too Subtle to Notice: Investigating Executable Stack Issues in Linux Systems. In Symposium on Network and Distributed System Security (NDSS)."},{"key":"e_1_3_2_1_159_1","volume-title":"ACM\/IFIP International Middleware Conference (Middleware).","author":"Yeoh Sengming","year":"2024","unstructured":"Sengming Yeoh, Xiaoguang Wang, Jae-Won Jang, and Binoy Ravindran. 2024. sMVX: Multi-Variant Execution on Selected Code Paths. In ACM\/IFIP International Middleware Conference (Middleware)."},{"key":"e_1_3_2_1_160_1","doi-asserted-by":"crossref","first-page":"108980","DOI":"10.1016\/j.compeleceng.2023.108980","article-title":"SAFTE: A self-injection based anti-fuzzing technique","volume":"111","author":"Zhang Jianyi","year":"2023","unstructured":"Jianyi Zhang, Zhenkui Li, Yudong Liu, Zezheng Sun, and Zhiqiang Wang. 2023. SAFTE: A self-injection based anti-fuzzing technique. Computers and Electrical Engineering 111 (2023), 108980.","journal-title":"Computers and Electrical Engineering"},{"key":"e_1_3_2_1_161_1","volume-title":"Symposium on Network and Distributed System Security (NDSS).","author":"Zhou Qihang","year":"2025","unstructured":"Qihang Zhou, Wenzhuo Cao, Xiaoqi Jia, Peng Liu, Shengzhi Zhang, Jiayun Chen, Shaowen Xu, and Zhenyu Song. 2025. RContainer: A Secure Container Architecture through Extending ARM CCA Hardware Primitives. In Symposium on Network and Distributed System Security (NDSS)."},{"key":"e_1_3_2_1_162_1","volume-title":"International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS).","author":"\u00d6sterlund Sebastian","year":"2019","unstructured":"Sebastian \u00d6sterlund, Koen Koning, Pierre Olivier, Antonio Barbalace, Herbert Bos, and Cristiano Giuffrida. 2019. kMVX: Detecting Kernel Information Leaks with Multi-variant Execution. In International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS)."}],"event":{"name":"MIDDLEWARE '25: 26th International Middleware Conference","location":"Vanderbilt University Nashville TN USA","acronym":"MIDDLEWARE '25","sponsor":["IFIP","Usenix"]},"container-title":["Proceedings of the 26th International Middleware Conference"],"original-title":[],"deposited":{"date-parts":[[2025,12,8]],"date-time":"2025-12-08T20:01:54Z","timestamp":1765224114000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3721462.3770772"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,12,14]]},"references-count":162,"alternative-id":["10.1145\/3721462.3770772","10.1145\/3721462"],"URL":"https:\/\/doi.org\/10.1145\/3721462.3770772","relation":{},"subject":[],"published":{"date-parts":[[2025,12,14]]},"assertion":[{"value":"2025-12-14","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}