Jos Wetzels scite author profile

Jos Wetzels

4Publications

42Citation Statements Received

99Citation Statements Given

How they've been cited

How they cite others

Affiliations

NetScout (United States), Eindhoven University of Technology, University of Twente

Publications

Order By: Most citations

Challenges in Designing Exploit Mitigations for Deeply Embedded Systems

Abbasi

Wetzels

Holz

et al. 2019

View full text Add to dashboard Cite

Memory corruption vulnerabilities have been around for decades and rank among the most prevalent vulnerabilities in embedded systems. Yet this constrained environment poses unique design and implementation challenges that significantly complicate the adoption of common hardening techniques. Combined with the irregular and involved nature of embedded patch management, this results in prolonged vulnerability exposure windows and vulnerabilities that are relatively easy to exploit. Considering the sensitive and critical nature of many embedded systems, this situation merits significant improvement. In this work, we present the first quantitative study of exploit mitigation adoption in 42 embedded operating systems, showing the embedded world to significantly lag behind the generalpurpose world. To improve the security of deeply embedded systems, we subsequently present µArmor, an approach to address some of the key gaps identified in our quantitative analysis. µArmor raises the bar for exploitation of embedded memory corruption vulnerabilities, while being adoptable on the short term without incurring prohibitive extra performance or storage costs.

show abstract

On Emulation-Based Network Intrusion Detection Systems

Abbasi

Wetzels

Bokslag

et al. 2014

View full text Add to dashboard Cite

Abstract. Emulation-based network intrusion detection systems have been devised to detect the presence of shellcode in network traffic by trying to execute (portions of) the network packet payloads in an instrumented environment and checking the execution traces for signs of shellcode activity. Emulation-based network intrusion detection systems are regarded as a significant step forward with regards to traditional signature-based systems, as they allow detecting polymorphic (i.e., encrypted) shellcode. In this paper we investigate and test the actual effectiveness of emulation-based detection and show that the detection can be circumvented by employing a wide range of evasion techniques, exploiting weakness that are present at all three levels in the detection process. We draw the conclusion that current emulation-based systems have limitations that allow attackers to craft generic shellcode encoders able to circumvent their detection mechanisms.

show abstract

Open Sesame: The Password Hashing Competition and Argon2

Wetzels¹

2016

Preprint

View full text Add to dashboard Cite

$$\mu $$ Shield

Abbasi¹,

Wetzels

Bokslag

et al. 2017

View full text Add to dashboard Cite

Embedded devices are playing a major role in our way of life. Similar to other computer systems embedded devices are vulnerable to code-reuse attacks. Compromising these devices in a critical environment constitute a significant security and safety risk. In this paper, we present µShield, a memory corruption exploitation mitigation system for embedded COTS binaries with configurable protection policies that do not rely on any hardware-specific feature. Our evaluation shows that µShield provides its protection with a limited performance overhead.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Jos Wetzels

Challenges in Designing Exploit Mitigations for Deeply Embedded Systems

On Emulation-Based Network Intrusion Detection Systems

Open Sesame: The Password Hashing Competition and Argon2

$$\mu $$ Shield

Contact Info

Product

Resources

About