More Like this

1. MineSweeper: An In-depth Look into Drive-by Cryptocurrency Mining and Its Defense

   https://doi.org/10.1145/3243734.3243858  

   Konoth, Radhesh Krishnan ; Vineti, Emanuele ; Moonsamy, Veelasha ; Lindorfer, Martina ; Kruegel, Christopher ; Bos, Herbert ; Vigna, Giovanni ( October 2018 , 2018 ACM SIGSAC Conference on Computer and Communications Security)

   A wave of alternative coins that can be effectively mined without specialized hardware, and a surge in cryptocurrencies' market value has led to the development of cryptocurrency mining ( cryptomining ) services, such as Coinhive, which can be easily integrated into websites to monetize the computational power of their visitors. While legitimate website operators are exploring these services as an alternative to advertisements, they have also drawn the attention of cybercriminals: drive-by mining (also known as cryptojacking ) is a new web-based attack, in which an infected website secretly executes JavaScript code and/or a WebAssembly module in the user's browser to mine cryptocurrencies without her consent. In this paper, we perform a comprehensive analysis on Alexa's Top 1 Million websites to shed light on the prevalence and profitability of this attack. We study the websites affected by drive-by mining to understand the techniques being used to evade detection, and the latest web technologies being exploited to efficiently mine cryptocurrency. As a result of our study, which covers 28 Coinhive-like services that are widely being used by drive-by mining websites, we identified 20 active cryptomining campaigns. Motivated by our findings, we investigate possible countermeasures against this type of attack. We discuss how current blacklisting approaches and heuristics based on CPU usage are insufficient, and present MineSweeper, a novel detection technique that is based on the intrinsic characteristics of cryptomining code, and, thus, is resilient to obfuscation. Our approach could be integrated into browsers to warn users about silent cryptomining when visiting websites that do not ask for their consent. 

   more » « less
2. Interactive hydrological modelling and simulation on client-side web systems: an educational case study

   https://doi.org/10.2166/hydro.2022.061  

   Ewing, Gregory ; Mantilla, Ricardo ; Krajewski, Witold ; Demir, Ibrahim ( November 2022 , Journal of Hydroinformatics)

   Computational hydrological models and simulations are fundamental pieces of the workflow of contemporary hydroscience research, education, and professional engineering activities. In support of hydrological modelling efforts, web-enabled tools for data processing, storage, computation, and visualization have proliferated. Most of these efforts rely on server resources for computation and data tasks and client-side resources for visualization. However, continued advancements of in-browser, client-side compute performance present an opportunity to further leverage client-side resources. Towards this end, we present an operational rainfall-runoff model and simulation engine running entirely on the client side using the JavaScript programming language. To demonstrate potential uses, we also present an easy-to-use in-browser interface designed for hydroscience education. Although the use case presented here is self-contained, the core technologies can extend to leverage multi-core processing on single machines and parallelization capabilities of multiple clients or JavaScript-enabled servers. These possibilities suggest that client-side hydrological simulation can play a central role in a dynamic, interconnected ecosystem of web-ready hydrological tools.

    

   more » « less
3. Topology Optimization of Permanent Magnets for Generators Using Level Set Methods

   Tian, Jiawei ; Zhuang, Ran ; Cilia, Juan Pablo ; Rangarajan, Arvind ; Luo, Fang ; Longtin, Jon ; Chen, Shikui ( January 2022 , ASME Design Engineering Technical Conferences)

   Generators are considered as the core application of electromagnetic machines, which require high-cost rare-earth-based permanent magnets. The development of generators is moving toward high efficiency and increased environmental friendliness. Minimizing the use of rare earth materials such as magnetic materials under the premise of machine performance emerges as a challenging task. Topology optimization has been promisingly applied to many application areas as a powerful generative design tool. It can identify the optimal distribution of magnetic material in the defined design space. This paper employs the level-set-based topology optimization method to design the permanent magnet for generators. The machine under study is a simplified 2D outer rotor direct-drive wind power generator. The dynamic and static models of this generator are studied, and the magnetostatic system is adopted to conduct the topology optimization. The optimization goals in this study mainly focused on two aspects, namely the maximization of the system magnetic energy and the generation of a target magnetic field in the region of the air gap. The continuum shape sensitivity analysis is derived by using the material time derivative, the Lagrange multiplier method, and the adjoint variable method. Two numerical examples are investigated, and the effectiveness of the proposed design framework is validated by comparing the performance of the original design against the optimized design. 

   more » « less
4. adPerf: Characterizing the Performance of Third-party Ads

   https://doi.org/10.1145/3447381  

   Pourghassemi, Behnam ; Bonecutter, Jordan ; Li, Zhou ; Chandramowlishwaran, Aparna ( February 2021 , Proceedings of the ACM on Measurement and Analysis of Computing Systems)

   null (Ed.)

   Monetizing websites and web apps through online advertising is widespread in the web ecosystem, creating a billion-dollar market. This has led to the emergence of a vast network of tertiary ad providers and ad syndication to facilitate this growing market. Nowadays, the online advertising ecosystem forces publishers to integrate ads from these third-party domains. On the one hand, this raises several privacy and security concerns that are actively being studied in recent years. On the other hand, the ability of today's browsers to load dynamic web pages with complex animations and Javascript has also transformed online advertising. This can have a significant impact on webpage performance. The latter is a critical metric for optimization since it ultimately impacts user satisfaction. Unfortunately, there are limited literature studies on understanding the performance impacts of online advertising which we argue is as important as privacy and security. In this paper, we apply an in-depth and first-of-a-kind performance evaluation of web ads. Unlike prior efforts that rely primarily on adblockers, we perform a fine-grained analysis on the web browser's page loading process to demystify the performance cost of web ads. We aim to characterize the cost by every component of an ad, so the publisher, ad syndicate, and advertiser can improve the ad's performance with detailed guidance. For this purpose, we develop a tool, adPerf, for the Chrome browser that classifies page loading workloads into ad-related and main-content at the granularity of browser activities. Our evaluations show that online advertising entails more than 15% of browser page loading workload and approximately 88% of that is spent on JavaScript. On smartphones, this additional cost of ads is 7% lower since mobile pages include fewer and well-optimized ads. We also track the sources and delivery chain of web ads and analyze performance considering the origin of the ad contents. We observe that 2 of the well-known third-party ad domains contribute to 35% of the ads performance cost and surprisingly, top news websites implicitly include unknown third-party ads which in some cases build up to more than 37% of the ads performance cost. 

   more » « less
5. Topology optimization of shape memory polymer structures with programmable morphology

   https://doi.org/10.1007/s00158-020-02784-0  

   Bhattacharyya, Anurag ; James, Kai A. ( February 2021 , Structural and Multidisciplinary Optimization)

   null (Ed.)

   We present a novel optimization framework for optimal design of structures exhibiting memory characteristics by incorporating shape memory polymers (SMPs). SMPs are a class of memory materials capable of undergoing and recovering applied deformations. A finite-element analysis incorporating the additive decomposition of small strain is implemented to analyze and predict temperature-dependent memory characteristics of SMPs. The finite element method consists of a viscoelastic material modelling combined with a temperature-dependent strain storage mechanism, giving SMPs their characteristic property. The thermo-mechanical characteristics of SMPs are exploited to actuate structural deflection to enable morphing toward a target shape. A time-dependent adjoint sensitivity formulation implemented through a recursive algorithm is used to calculate the gradients required for the topology optimization algorithm. Multimaterial topology optimization combined with the thermo-mechanical programming cycle is used to optimally distribute the active and passive SMP materials within the design domain. This allows us to tailor the response of the structures to design them with specific target displacements, by exploiting the difference in the glass-transition temperatures of the two SMP materials. Forward analysis and sensitivity calculations are combined in a PETSc-based optimization framework to enable efficient multi-functional, multimaterial structural design with controlled deformations. 

   more » « less