all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Bilingual Problems: Studying the Security Risks Incurred by Native Extensions in Scripting Languages. (arXiv:2111.11169v2 [cs.CR] UPDATED)

Add to bookmarks
Feb. 6, 2023, 2:10 a.m. | Cristian-Alexandru Staicu, Sazzadur Rahaman, Ágnes Kiss, Michael Backes

cs.CR updates on arXiv.org arxiv.org

Scripting languages are continuously gaining popularity due to their ease of
use and the flourishing software ecosystems that surround them. These languages
offer crash and memory safety by design, thus, developers do not need to
understand and prevent low-level security issues like the ones plaguing the C
code. However, scripting languages often allow native extensions, which are a
way for custom C/C++ code to be invoked directly from the high-level language.
While this feature promises several benefits such as increased …

code crash design developers ecosystems extensions languages low memory memory safety offer problems risks safety scripting security security issues security risks software understand

Visit resource

More from arxiv.org / cs.CR updates on arXiv.org

Shake to Leak: Fine-tuning Diffusion Models Can Amplify the Generative Privacy Risk 14 hours ago | arxiv.org
amplify arxiv can cs.cr +8
Delocate: Detection and Localization for Deepfake Videos with Randomly-Located Tampered Traces 14 hours ago | arxiv.org
address arxiv cs.cr cs.cv +12
Artwork Protection Against Neural Style Transfer Using Locally Adaptive Adversarial Color Attack 14 hours ago | arxiv.org
adversarial artwork arxiv attack +17
Difficulties in Dynamic Analysis of Drone Firmware and Its Solutions 14 hours ago | arxiv.org
advancement analysis applications arxiv +22
Circuit complexity and functionality: a thermodynamic perspective 14 hours ago | arxiv.org
arxiv complexity computation computational +14
On the Two-sided Permutation Inversion Problem 14 hours ago | arxiv.org
access arxiv challenge complexity +10
Versatile Backdoor Attack with Visible, Semantic, Sample-Specific, and Compatible Triggers 14 hours ago | arxiv.org
arxiv attack attacks backdoor +19
Interpretation of Neural Networks is Susceptible to Universal Adversarial Perturbations 14 hours ago | arxiv.org
adversarial algorithms application arxiv +19
Quantum copy-protection of compute-and-compare programs in the quantum random oracle model 14 hours ago | arxiv.org
arxiv can ccc compute +13

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Engineer II, Offensive Security Penetration Testing

@ Amazon.com | US, TX, Virtual Location - Texas
View on infosec-jobs.com

Cybersecurity Specialist (Security Engineering)

@ Triton AI Pte Ltd | Singapore, Singapore, Singapore
View on infosec-jobs.com

Information Systems Security Officer (ISSO)

@ ARA | Arlington, Virginia, United States
View on infosec-jobs.com

Lead - IT Risk compliance & Info Security

@ First Advantage | Bengaluru-560042, Karnataka
View on infosec-jobs.com

Embedded VSOC Analyst

@ Sibylline Ltd | Australia, Australia
View on infosec-jobs.com
View more jobs