Search

Your search keyword '"Romano, Simon Pietro"' showing total 249 results
Start Over Author "Romano, Simon Pietro"
249 results on '"Romano, Simon Pietro"'

1. WebAssembly and Security: a review

Author

Perrone, Gaetano and Romano, Simon Pietro

Subjects
Computer Science - Cryptography and Security
Abstract

WebAssembly is revolutionizing the approach to developing modern applications. Although this technology was born to create portable and performant modules in web browsers, currently, its capabilities are extensively exploited in multiple and heterogeneous use-case scenarios. With the extensive effort of the community, new toolkits make the use of this technology more suitable for real-world applications. In this context, it is crucial to study the liaisons between the WebAssembly ecosystem and software security. Indeed, WebAssembly can be a medium for improving the security of a system, but it can also be exploited to evade detection systems or for performing cryptomining activities. In addition, programs developed in low-level languages such as C can be compiled in WebAssembly binaries, and it is interesting to evaluate the security impacts of executing programs vulnerable to attacks against memory in the WebAssembly sandboxed environment. Also, WebAssembly has been designed to provide a secure and isolated environment, but such capabilities should be assessed in order to analyze their weaknesses and propose new mechanisms for addressing them. Although some research works have provided surveys of the most relevant solutions aimed at discovering WebAssembly vulnerabilities or detecting attacks, at the time of writing, there is no comprehensive review of security-related literature in the WebAssembly ecosystem. We aim to fill this gap by proposing a comprehensive review of research works dealing with security in WebAssembly. We analyze 121 papers by identifying seven different security categories. We hope that our work will provide insights into the complex landscape of WebAssembly and guide researchers, developers, and security professionals towards novel avenues in the realm of the WebAssembly ecosystem.

Published
2024

2. Whispy: Adapting STT Whisper Models to Real-Time Environments

Author

Bevilacqua, Antonio, Saviano, Paolo, Amirante, Alessandro, and Romano, Simon Pietro

Subjects
Computer Science - Sound, Computer Science - Machine Learning, Electrical Engineering and Systems Science - Audio and Speech Processing
Abstract

Large general-purpose transformer models have recently become the mainstay in the realm of speech analysis. In particular, Whisper achieves state-of-the-art results in relevant tasks such as speech recognition, translation, language identification, and voice activity detection. However, Whisper models are not designed to be used in real-time conditions, and this limitation makes them unsuitable for a vast plethora of practical applications. In this paper, we introduce Whispy, a system intended to bring live capabilities to the Whisper pretrained models. As a result of a number of architectural optimisations, Whispy is able to consume live audio streams and generate high level, coherent voice transcriptions, while still maintaining a low computational cost. We evaluate the performance of our system on a large repository of publicly available speech datasets, investigating how the transcription mechanism introduced by Whispy impacts on the Whisper output. Experimental results show how Whispy excels in robustness, promptness, and accuracy.

Published
2024

6. GOSPF: An energy efficient implementation of the OSPF routing protocol

Author

D'Arienzo, Maurizio and Romano, Simon Pietro

Subjects
Computer Science - Networking and Internet Architecture
Abstract

Energy saving is currently one of the most challenging issues for the Internet research community. Indeed, the exponential growth of applications and services induces a remarkable increase in power consumption and hence calls for novel solutions which are capable to preserve energy of the infrastructures, at the same time maintaining the required Quality of Service guarantees. In this paper we introduce a new mechanism for saving energy through intelligent switch off of network links. The mechanism has been implemented as an extension to the Open Shortest Path First routing protocol. We first show through simulations that our solution is capable to dramatically reduce energy consumption when compared to the standard OSPF implementation. We then illustrate a real-world implementation of the proposed protocol within the Quagga routing software suite., Comment: 18 pages

Published
2022
Full Text
View/download PDF

7. UMPIRE: A Universal Moderator for the Participation in IETF Remote Events

Author

Romano, Simon Pietro

Subjects
Computer Science - Networking and Internet Architecture
Abstract

UMPIRE provides seamless meeting interaction among remote and local participants. It uses the BFCP, an IETF standard for moderation.BFCP introduces automated floor control functions to a centralized conferencing environment. This article discusses the design and implementation of the UMPIRE system and highlights the most notable solutions we devised to handle variegated requirements and constraints. We also discuss the lessons learned while experiencing in the first person how the application of research results that have eventually led to new standards still must confront a number of minor yet concrete issues that might completely undermine the overall process of wide adoption by the community., Comment: 8 pages, six figures

Published
2022
Full Text
View/download PDF

8. Dockerized Android: a container-based platform to build mobile Android scenarios for Cyber Ranges

Author

Capone, Daniele, Caturano, Francesco, Delicato, Angelo, Perrone, Gaetano, and Romano, Simon Pietro

Subjects
Computer Science - Cryptography and Security
Abstract

The best way to train people about security is through Cyber Ranges, i.e., the virtual platform used by cyber-security experts to learn new skills and attack vectors. In order to realize such virtual scenarios, container-based virtualization is commonly adopted, as it provides several benefits in terms of performance, resource usage, and portability. Unfortunately, the current generation of Cyber Ranges does not consider mobile devices, which nowadays are ubiquitous in our daily lives. Such devices do often represent the very first entry point for hackers into target networks. It is thus important to make available tools allowing to emulate mobile devices in a safe environment without incurring the risk of causing any damage in the real world. This work aims to propose Dockerized Android, i.e., a framework that addresses the problem of realizing vulnerable environments for mobile devices in the next generation of Cyber Ranges. We show the platform's design and implementation and show how it is possible to use the implemented features to realize complex virtual mobile kill-chains scenarios., Comment: 9 pages, 4 figures

Published
2022
Full Text
View/download PDF

9. ExploitWP2Docker: a Platform for Automating the Generation of Vulnerable WordPress Environments for Cyber Ranges

Author

Caturano, Francesco, d'Ambrosio, Nicola, Perrone, Gaetano, Previdente, Luigi, and Romano, Simon Pietro

Subjects
Computer Science - Cryptography and Security
Abstract

A cyber range is a realistic simulation of an organization's network infrastructure, commonly used for cyber security training purposes. It provides a safe environment to assess competencies in both offensive and defensive techniques. An important step during the realization of a cyber range is the generation of vulnerable machines. This step is challenging and requires a laborious manual configuration. Several works aim to reduce this overhead, but the current state-of-the-art focuses on generating network services without considering the effort required to build vulnerable environments for web applications. A cyber range should represent a real system, and nowadays, almost all the companies develop their company site by using WordPress, a common Content Management System (CMS), which is also one of the most critical attackers' entry points. The presented work proposes an approach to automatically create and configure vulnerable WordPress applications by using the information presented in public exploits. Our platform automatically extracts information from the most well-known publicly available exploit database in order to generate and configure vulnerable environments. The container-based virtualization is used to generate lightweight and easily deployable infrastructures. A final evaluation highlights promising results regarding the possibility of automating the generation of vulnerable environments through our approach., Comment: 7 pages, 3 figures

Published
2022
Full Text
View/download PDF

11. Chirotonia: A Scalable and Secure e-Voting Framework based on Blockchains and Linkable Ring Signatures

Author

Russo, Antonio, Anta, Antonio Fernández, Vasco, Maria Isabel González, and Romano, Simon Pietro

Subjects
Computer Science - Cryptography and Security, Computer Science - Distributed, Parallel, and Cluster Computing
Abstract

In this paper we propose a comprehensive and scalable framework to build secure-by-design e-voting systems. Decentralization, transparency, determinism, and untamperability of votes are granted by dedicated smart contracts on a blockchain, while voter authenticity and anonymity are achieved through (provable secure) linkable ring signatures. These, in combination with suitable smart contract constraints, also grant protection from double voting. Our design is presented in detail, focusing on its security guarantees and the design choices that allow it to scale to a large number of voters. Finally, we present a proof-of-concept implementation of the proposed framework, made available as open source.

Published
2021

13. Leveraging AI to optimize website structure discovery during Penetration Testing

Author

Antonelli, Diego, Cascella, Roberta, Perrone, Gaetano, Romano, Simon Pietro, and Schiano, Antonio

Subjects
Computer Science - Cryptography and Security, Computer Science - Artificial Intelligence, Computer Science - Machine Learning
Abstract

Dirbusting is a technique used to brute force directories and file names on web servers while monitoring HTTP responses, in order to enumerate server contents. Such a technique uses lists of common words to discover the hidden structure of the target website. Dirbusting typically relies on response codes as discovery conditions to find new pages. It is widely used in web application penetration testing, an activity that allows companies to detect websites vulnerabilities. Dirbusting techniques are both time and resource consuming and innovative approaches have never been explored in this field. We hence propose an advanced technique to optimize the dirbusting process by leveraging Artificial Intelligence. More specifically, we use semantic clustering techniques in order to organize wordlist items in different groups according to their semantic meaning. The created clusters are used in an ad-hoc implemented next-word intelligent strategy. This paper demonstrates that the usage of clustering techniques outperforms the commonly used brute force methods. Performance is evaluated by testing eight different web applications. Results show a performance increase that is up to 50% for each of the conducted experiments., Comment: J Comput Virol Hack Tech (2024)

Published
2021
Full Text
View/download PDF

14. LIoTS: League of IoT Sovereignties. A Scalable approach for a Transparent Privacy-safe Federation of Secured IoT Platforms

Author

Cirillo, Flavio, Capuano, Nicola, Romano, Simon Pietro, and Kovacs, Ernö

Subjects
Computer Science - Cryptography and Security, Computer Science - Social and Information Networks, C.2.4
Abstract

Internet-of-Things has entered all the fields where data are produced and processed, resulting in a plethora of IoT platforms, typically cloud-based, centralizing data and services management. This has brought to many disjoint IoT silos. Significant efforts have been devoted to integration, recurrently resulting into bigger centralized infrastructures. Such an approach often stumbles upon the reluctance of IoT system owners to loose the dominion over data. We introduce a secured and privacy-safe infrastructure where a federation overlay is distributed among parties and the data control is kept locally. This establishes a league of peers each sovereign of their IoT system and data: League of IoT Sovereignties (LIoTS). LIoTS is scalable by design, allowing iterative formation of domains levels due to the transparency of its federation. Tests show that the overhead is minimal when exchanged data is hefty, and that LIoTS performs better in large IoT deployments than centralized approaches., Comment: 4 pages, 5 figures, 1 table. Presented at the IEEE Local Networks Conference (LCN)

Published
2020
Full Text
View/download PDF

16. Cooperative Intersection Crossing over 5G

Author

Castiglione, Luca Maria, Falcone, Paolo, Petrillo, Alberto, Romano, Simon Pietro, and Santini, Stefania

Subjects
Computer Science - Networking and Internet Architecture, Electrical Engineering and Systems Science - Systems and Control
Abstract

Autonomous driving is a safety critical application of sensing and decision-making technologies. Communication technologies extend the awareness capabilities of vehicles, beyond what is achievable with the on-board systems only. Nonetheless, issues typically related to wireless networking must be taken into account when designing safe and reliable autonomous systems. The aim of this work is to present a control algorithm and a communication paradigm over 5G networks for negotiating traffic junctions in urban areas. The proposed control framework has been shown to converge in a finite time and the supporting communication software has been designed with the objective of minimising communication delays. At the same time, the underlying network guarantees reliability of the communication. The proposed framework has been successfully deployed and tested, in partnership with Ericsson AB, at the AstaZero proving ground in Goteborg, Sweden. In our experiments, three autonomous vehicles successfully drove through an intersection of 235 square meters in a urban scenario., Comment: 15 pages, 16 figures, submitted to journal

Published
2019

19. Hacking Goals: A Goal-Centric Attack Classification Framework

Author

Caturano, Francesco, Perrone, Gaetano, Romano, Simon Pietro, Goos, Gerhard, Founding Editor, Hartmanis, Juris, Founding Editor, Bertino, Elisa, Editorial Board Member, Gao, Wen, Editorial Board Member, Steffen, Bernhard, Editorial Board Member, Woeginger, Gerhard, Editorial Board Member, Yung, Moti, Editorial Board Member, Casola, Valentina, editor, De Benedictis, Alessandra, editor, and Rak, Massimiliano, editor

Published
2020
Full Text
View/download PDF

23. Thalos: Secure File Storage in Untrusted Clouds

Author

Castiglione, Luca Maria, Romano, Simon Pietro, Barbosa, Simone Diniz Junqueira, Series Editor, Filipe, Joaquim, Series Editor, Kotenko, Igor, Series Editor, Sivalingam, Krishna M., Series Editor, Washio, Takashi, Series Editor, Yuan, Junsong, Series Editor, Zhou, Lizhu, Series Editor, Doss, Robin, editor, Piramuthu, Selwyn, editor, and Zhou, Wei, editor

Published
2018
Full Text
View/download PDF

26. Effects of Cooperation on Wireless Ad Hoc Network Performance

Author

D’Arienzo, Maurizio, Romano, Simon Pietro, Akan, Ozgur, Series editor, Cao, Jiannong, Series editor, Coulson, Geoffrey, Series editor, Dressler, Falko, Series editor, Ferrari, Domenico, Series editor, Gerla, Mario, Series editor, Kobayashi, Hisashi, Series editor, Palazzo, Sergio, Series editor, Sahni, Sartaj, Series editor, Shen, Xuemin (Sherman), Series editor, Stan, Mircea, Series editor, Xiaohua, Jia, Series editor, Zomaya, Albert, Series editor, Bellavista, Paolo, Series editor, Mumtaz, Shahid, editor, Rodriguez, Jonathan, editor, Katz, Marcos, editor, Wang, Chonggang, editor, and Nascimento, Alberto, editor

Published
2015
Full Text
View/download PDF

27. The Virtual Puppet Master: Adaptive Streaming on Top of an SDN-Enabled Virtual Infrastructure

Author

Canonico, Roberto, De Maio, Enrico, Di Rienzo, Pasquale, Romano, Simon Pietro, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Weikum, Gerhard, Series editor, Hunold, Sascha, editor, Costan, Alexandru, editor, Giménez, Domingo, editor, Iosup, Alexandru, editor, Ricci, Laura, editor, Gómez Requena, María Engracia, editor, Scarano, Vittorio, editor, Varbanescu, Ana Lucia, editor, Scott, Stephen L., editor, Lankes, Stefan, editor, Weidendorfer, Josef, editor, and Alexander, Michael, editor

Published
2015
Full Text
View/download PDF

28. Protecting Critical Infrastructures from Stealth Attacks: A Closed-Loop Approach Involving Detection and Remediation : (Short Paper)

Author

Avallone, Stefano, Mazzariello, Claudio, Oliviero, Francesco, Romano, Simon Pietro, Hutchison, David, editor, Kanade, Takeo, editor, Kittler, Josef, editor, Kleinberg, Jon M., editor, Mattern, Friedemann, editor, Mitchell, John C., editor, Naor, Moni, editor, Nierstrasz, Oscar, editor, Pandu Rangan, C., editor, Steffen, Bernhard, editor, Sudan, Madhu, editor, Terzopoulos, Demetri, editor, Tygar, Doug, editor, Vardi, Moshe Y., editor, Weikum, Gerhard, editor, Bologna, Sandro, editor, Hämmerli, Bernhard, editor, Gritzalis, Dimitris, editor, and Wolthusen, Stephen, editor

Published
2013
Full Text
View/download PDF

29. On the Use of Cooperation as an Energy-Saving Incentive in Ad Hoc Wireless Networks

Author

D’Arienzo, Maurizio, Manfredi, Sabato, Oliviero, Francesco, Romano, Simon Pietro, Akan, Ozgur, Series editor, Bellavista, Paolo, Series editor, Cao, Jiannong, Series editor, Dressler, Falko, Series editor, Ferrari, Domenico, Series editor, Gerla, Mario, Series editor, Kobayashi, Hisashi, Series editor, Palazzo, Sergio, Series editor, Sahni, Sartaj, Series editor, Shen, Xuemin (Sherman), Series editor, Stan, Mircea, Series editor, Xiaohua, Jia, Series editor, Zomaya, Albert, Series editor, Coulson, Geoffrey, Series editor, Rodrigues, Joel J. P. C., editor, Zhou, Liang, editor, Chen, Min, editor, and Kailas, Aravind, editor

Published
2012
Full Text
View/download PDF

30. A SAN-Based Modeling Approach to Performance Evaluation of an IMS-Compliant Conferencing Framework

Author

Marrone, Stefano, Mazzocca, Nicola, Nardone, Roberto, Presta, Roberta, Romano, Simon Pietro, Vittorini, Valeria, Hutchison, David, editor, Kanade, Takeo, editor, Kittler, Josef, editor, Kleinberg, Jon M., editor, Mattern, Friedemann, editor, Mitchell, John C., editor, Naor, Moni, editor, Nierstrasz, Oscar, editor, Pandu Rangan, C., editor, Steffen, Bernhard, editor, Sudan, Madhu, editor, Terzopoulos, Demetri, editor, Tygar, Doug, editor, Vardi, Moshe Y., editor, Weikum, Gerhard, editor, Jensen, Kurt, editor, van der Aalst, Wil M., editor, Ajmone Marsan, Marco, editor, Franceschinis, Giuliana, editor, Kleijn, Jetty, editor, and Kristensen, Lars Michael, editor

Published
2012
Full Text
View/download PDF

31. Recording and Playout of Multimedia Conferencing Sessions: A Standard Approach

Author

Amirante, Alessandro, Castaldi, Tobia, Miniero, Lorenzo, Romano, Simon Pietro, Hutchison, David, editor, Kanade, Takeo, editor, Kittler, Josef, editor, Kleinberg, Jon M., editor, Mattern, Friedemann, editor, Mitchell, John C., editor, Naor, Moni, editor, Nierstrasz, Oscar, editor, Pandu Rangan, C., editor, Steffen, Bernhard, editor, Sudan, Madhu, editor, Terzopoulos, Demetri, editor, Tygar, Doug, editor, Vardi, Moshe Y., editor, Weikum, Gerhard, editor, Zeadally, Sherali, editor, Cerqueira, Eduardo, editor, Curado, Marília, editor, and Leszczuk, Mikołaj, editor

Published
2010
Full Text
View/download PDF

32. Meetecho: A Standard Multimedia Conferencing Architecture

Author

Amirante, Alessandro, Castaldi, Tobia, Miniero, Lorenzo, Romano, Simon Pietro, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Nierstrasz, Oscar, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Sudan, Madhu, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Vardi, Moshe Y., Series editor, Weikum, Gerhard, Series editor, Mauthe, Andreas, editor, Zeadally, Sherali, editor, Cerqueira, Eduardo, editor, and Curado, Marília, editor

Published
2009
Full Text
View/download PDF

33. A Semi-Autonomic Framework for Intrusion Tolerance in Heterogeneous Networks

Author

D’Antonio, Salvatore, Romano, Simon Pietro, Simpson, Steven, Smith, Paul, Hutchison, David, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Nierstrasz, Oscar, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Sudan, Madhu, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Vardi, Moshe Y., Series editor, Weikum, Gerhard, Series editor, Hummel, Karin Anna, editor, and Sterbenz, James P. G., editor

Published
2008
Full Text
View/download PDF

34. Separation of Responsibilities between Application Servers and Media Servers in NGNs: A Practical Approach

Author

Amirante, Alessandro, Castaldi, Tobia, Miniero, Lorenzo, Romano, Simon Pietro, Hutchison, David, editor, Kanade, Takeo, editor, Kittler, Josef, editor, Kleinberg, Jon M., editor, Mattern, Friedemann, editor, Mitchell, John C., editor, Naor, Moni, editor, Nierstrasz, Oscar, editor, Pandu Rangan, C., editor, Steffen, Bernhard, editor, Sudan, Madhu, editor, Terzopoulos, Demetri, editor, Tygar, Doug, editor, Vardi, Moshe Y., editor, Weikum, Gerhard, editor, Balandin, Sergey, editor, Moltchanov, Dmitri, editor, and Koucheryavy, Yevgeni, editor

Published
2008
Full Text
View/download PDF

37. Traffic Management

Author

Karlsson, Gunnar, Roberts, James, Stavrakakis, Ioannis, Alves, Antonio, Avallone, Stefano, Boavida, Fernando, D’Antonio, Salvatore, Esposito, Marcello, Fodor, Viktoria, Gargiulo, Mauro, Harju, Jarmo, Koucheryavy, Yevgeni, Li, Fengyi, Marsh, Ian, Ivars, Ignacio Más, Moltchanov, Dmitri, Monteiro, Edmundo, Panagakis, Antonis, Pescapè, Antonio, Quadros, Goncalo, Romano, Simon Pietro, Ventre, Giorgio, Goos, Gerhard, editor, Hartmanis, Juris, editor, van Leeuwen, Jan, editor, and Smirnov, Michael, editor

Published
2003
Full Text
View/download PDF

Catalog

Books, media, physical & digital resources
See catalog results