NISL
清华大学网络与信息安全实验室学术沙龙,欢迎关注~
This is the Paper Reading Seminar of Network and Information Security Lab (NISL) at Tsinghua University. Tune in for more details!
时间:2023年11月16日13:30 - 16:00
(本次邀请到嘉宾分享,提前开始)
腾讯会议:https://meeting.tencent.com/dm/D21J2wuXqQPV
会议ID:711-4428-4790
会议密码:231116
* 本次分享对外公开直播,线上参会者要求实名备注“姓名-单位”
Agenda
1.【嘉宾分享】You’ve Got Report: Measurement and Security Implications of DMARC Reporting
Presenter: 李纬同
Conference: Usenix Security’23
Authors: Mohammad Ishtiaq Ashiq Khan, Weitong Li, Tobias Fiebig, and Taejoong Chung
Abstract: This paper presents a large-scale and comprehensive measurement study of DMARC reporting deployment and management. This paper collected data for all second-level domains under the .com, .net, .org, and .se TLDs over 13 months to analyze deployment and management from the domain name owner’s perspective. This study reveals pervasive mismanagement and missing security considerations in DMARC reporting.
Bio: Weitong Li is a third year PhD student at Virginia Tech, advised by Taejoong Chung. His research interests include network security and privacy, centered around large-scale measurement and analysis. He is currently focusing on the management of protocols deployed on the Internet such as RPKI and DMARC. He received his bachelor degree from Zhejiang University in 2020, and has interned in industries like Cloudflare and Tencent.
Link to paper: https://www.usenix.org/conference/usenixsecurity23/presentation/ashiq
2.【论文分享】The State of the SameSite: Studying the Usage, Effectiveness, and Adequacy of SameSite Cookies
Presenter: 张家赫
Conference: S&P '22
Authors: Soheil Khodayari, Giancarlo Pellegrino
Abstract: This paper performs the first evaluation of the SameSite cookie policy in terms of deployment, impact on website functionality, security attribute defects, and support of browsers and web frameworks, pointing out that there is still room for improvement of the SameSite mechanism before effectively defending XS attacks.
Link to paper: https://publications.cispa.saarland/3504/1/samesite.pdf
3.【论文分享】Connecting Large Language Models with Evolutionary Algorithms Yields Powerful Prompt Optimizers
Presenter: 王佳明
Authors: Guo Q, Wang R, Guo J, et al.
Abstract: A novel framework uses evolutionary algorithms to automate and optimize discrete prompt creation for Large Language Models,significantly outperforming existing methods in various language tasks.
Link to paper: https://arxiv.org/abs/2309.08532
# 学术沙龙问卷反馈
编辑|陈龙飞 黄嘉盛
来源|NISL实验室