skip to main content
US FlagAn official website of the United States government
dot gov icon
Official websites use .gov
A .gov website belongs to an official government organization in the United States.
https lock icon
Secure .gov websites use HTTPS
A lock ( lock ) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Explore Research Products in the PAR
It may take a few hours for recently added research products to appear in PAR search results.


  • Home
  • Search Results
  • Page 1 of 1

Search for: All records

Award ID contains: 2141547

Note: When clicking on a Digital Object Identifier (DOI) number, you will be taken to an external site maintained by the publisher. Some full text articles may not yet be available without a charge during the embargo (administrative interval).
What is a DOI Number?

Some links on this page may take you to non-federal websites. Their policies may differ from this site.

  1. ; ; ; ; ; (, ACM Computing Surveys)
    The battle for a more secure Internet is waged on many fronts, including the most basic of networking protocols. Our focus is theIPv4 Identifier(IPID), an IPv4 header field as old as the Internet with an equally long history as an exploited side channel for scanning network properties, inferring off-path connections, and poisoning DNS caches. This article taxonomizes the 25-year history of IPID-based exploits and the corresponding changes to IPID selection methods. By mathematically analyzing these methods’ correctness and security and empirically evaluating their performance, we reveal recommendations for best practice as well as shortcomings of current operating system implementations, emphasizing the value of systematic evaluations in network security. 
    more » « less
    Free, publicly-accessible full text available November 13, 2026
  2. ; ; (, ACM)
    Free, publicly-accessible full text available October 13, 2026
  3. ; ; ; (, ACM)
    Free, publicly-accessible full text available October 13, 2026
  4. ; ; (, In the Proceedings of the Free and Open Communications on the Internet Workshop. (FOCI 2025))
    Free, publicly-accessible full text available July 14, 2026
  5. ; ; ; (, In the Proceedings of the Free and Open Communications on the Internet Workshop. (FOCI 2025))
    Free, publicly-accessible full text available February 20, 2026
  6. ; ; (, In the Proceedings of the Free and Open Communications on the Internet Workshop. (FOCI 2025))
    Free, publicly-accessible full text available February 20, 2026
  7. ; ; ; ; ; ; (, Proceedings on Privacy Enhancing Technologies)
    VPNs (Virtual Private Networks) have become an essential privacy-enhancing technology, particularly for at-risk users like dissidents, journalists, NGOs, and others vulnerable to targeted threats. While previous research investigating VPN security has focused on cryptographic strength or traffic leakages, there remains a gap in understanding how lower-level primitives fundamental to VPN operations, like connection tracking, might undermine the security and privacy that VPNs are intended to provide.In this paper, we examine the connection tracking frameworks used in common operating systems, identifying a novel exploit primitive that we refer to as the port shadow. We use the port shadow to build four attacks against VPNs that allow an attacker to intercept and redirect encrypted traffic, de-anonymize a VPN peer, or even portscan a VPN peer behind the VPN server. We build a formal model of modern connection tracking frameworks and identify that the root cause of the port shadow lies in five shared, limited resources. Through bounded model checking, we propose and verify six mitigations in terms of enforcing process isolation. We hope our work leads to more attention on the security aspects of lower-level systems and the implications of integrating them into security-critical applications. 
    more » « less
    Full Text Available 
  8. ; ; ; ; ; ; (, ACM Internet Measurement Conference)
    Full Text Available