Academic Publications

generated by

• Group by
  • Year
  • Author
  • Type
  • Keyword
  • Downloads
• • Expand/Collapse All
  • Download BibTeX
  • RSS Feed

Excellent! Next you can create a new website with this list, or embed it in an existing web page by copying & pasting any of the following snippets.

JavaScript (easiest)

<script src="https://bibbase.org/show?bib=https%3A%2F%2Fhomepage.ruhr-uni-bochum.de%2Fali.abbasi-i4q%2Falipub.bib&jsonp=1&fullnames=1&jsonp=1"></script>

PHP

<?php $contents = file_get_contents("https://bibbase.org/show?bib=https%3A%2F%2Fhomepage.ruhr-uni-bochum.de%2Fali.abbasi-i4q%2Falipub.bib&jsonp=1&fullnames=1"); print_r($contents); ?>

iFrame (not recommended)

<iframe src="https://bibbase.org/show?bib=https%3A%2F%2Fhomepage.ruhr-uni-bochum.de%2Fali.abbasi-i4q%2Falipub.bib&jsonp=1&fullnames=1"></iframe>

For more details see the documention.

This is a preview! To use this list on your own web site or create a new web site from it, create a free account. The file will be added and you will be able to edit it in the File Manager. We will show you instructions once you've created your account.

To the site owner:

Action required! Mendeley is changing its API. In order to keep using Mendeley with BibBase past April 14th, you need to:

1. renew the authorization for BibBase on Mendeley, and
2. update the BibBase URL in your page the same way you did when you initially set up this page.

Fix it now

  2020 (3)

HYPER-CUBE: High-Dimensional Hypervisor Fuzzing. Sergej Schumilo; Cornelius Aschermann; Ali Abbasi; Simon Wörner; and Thorsten Holz. In Network and Distributed System Security Symposium (NDSS), 2020.
link   bibtex   1 download  

@inproceedings{schumilo2020hyper,
  title={HYPER-CUBE: High-Dimensional Hypervisor Fuzzing},
  author={Schumilo, Sergej and Aschermann, Cornelius and Abbasi, Ali and W{\"o}rner, Simon and Holz, Thorsten},
  booktitle={Network and Distributed System Security Symposium (NDSS)},
  year={2020}
}

IJON: Exploring Deep State Spaces via Fuzzing. Cornelius Aschermann; Sergej Schumilo; Ali Abbasi; and Thorsten Holz. In IEEE Symposium on Security and Privacy (Oakland), 2020.
link   bibtex  

@inproceedings{aschermann2020ijon,
  title={IJON: Exploring Deep State Spaces via Fuzzing},
  author={Aschermann, Cornelius and Schumilo, Sergej and Abbasi, Ali and Holz, Thorsten},
  booktitle={IEEE Symposium on Security and Privacy (Oakland)},
  year={2020}
}

AURORA: Statistical Crash Analysis for Automated Root Cause Explanation. Tim Blazytko; Moritz Schlögel; Cornelius Aschermann; Ali Abbasi; Joel Frank; Simon Wörner; and Thorsten Holz. In 29th USENIX Security Symposium, 2020.
link   bibtex  

@inproceedings{blazytko2020aurora,
  title={AURORA: Statistical Crash Analysis for Automated Root Cause Explanation},
  author={Blazytko, Tim and Schl{\"o}gel, Moritz and Aschermann, Cornelius and Abbasi, Ali and Frank, Joel and W{\"o}rner, Simon and Holz, Thorsten},
  booktitle={29th USENIX Security Symposium},
  year={2020}
}

  2019 (3)

Challenges in designing exploit mitigations for deeply embedded systems. Ali Abbasi; Jos Wetzels; Thorsten Holz; and Sandro Etalle. In 2019 IEEE European Symposium on Security and Privacy (EuroS&P), pages 31–46, 2019. IEEE
link   bibtex   1 download  

@inproceedings{abbasi2019challenges,
  title={Challenges in designing exploit mitigations for deeply embedded systems},
  author={Abbasi, Ali and Wetzels, Jos and Holz, Thorsten and Etalle, Sandro},
  booktitle={2019 IEEE European Symposium on Security and Privacy (EuroS\&P)},
  pages={31--46},
  year={2019},
  organization={IEEE}
}

ANTIFUZZ: impeding fuzzing audits of binary executables. Emre Güler; Cornelius Aschermann; Ali Abbasi; and Thorsten Holz. In 28th USENIX Security Symposium (USENIX Security 19), pages 1931–1947, 2019.
link   bibtex   196 downloads  

@inproceedings{guler2019antifuzz,
  title={ANTIFUZZ: impeding fuzzing audits of binary executables},
  author={G{\"u}ler, Emre and Aschermann, Cornelius and Abbasi, Ali and Holz, Thorsten},
  booktitle={28th USENIX Security Symposium (USENIX Security 19)},
  pages={1931--1947},
  year={2019}
}

GRIMOIRE: Synthesizing Structure while Fuzzing. Tim Blazytko; Matt Bishop; Cornelius Aschermann; Justin Cappos; Moritz Schlögel; Nadia Korshun; Ali Abbasi; Marco Schweighauser; Sebastian Schinzel; Sergej Schumilo; and others. In 28th USENIX Security Symposium (USENIX Security 19), pages 1985–2002, 2019.
link   bibtex  

@inproceedings{blazytko2019grimoire,
  title={GRIMOIRE: Synthesizing Structure while Fuzzing},
  author={Blazytko, Tim and Bishop, Matt and Aschermann, Cornelius and Cappos, Justin and Schl{\"o}gel, Moritz and Korshun, Nadia and Abbasi, Ali and Schweighauser, Marco and Schinzel, Sebastian and Schumilo, Sergej and others},
  booktitle={28th USENIX Security Symposium (USENIX Security 19)},
  pages={1985--2002},
  year={2019}
}

  2018 (2)

Race to the bottom: embedded control systems binary security: an industrial control system protection approach. Ali Abbasi. Ph.D. Thesis, 2018.
link   bibtex  

@phdthesis{abbasi2018race,
  title={Race to the bottom: embedded control systems binary security: an industrial control system protection approach},
  type = {phdthesis},
  author={Abbasi, Ali},
  year={2018},
  institution = {Eindhoven University of Technology},

}

Dissecting QNX. Jos Wetzels; and Ali Abbasi. 2018.
link   bibtex  

@misc{wetzels2018dissecting,
  title={Dissecting QNX},
  author={Wetzels, Jos and Abbasi, Ali},
  year={2018}
}

  2017 (4)

On the significance of process comprehension for conducting targeted ICS attacks. Benjamin Green; Marina Krotofil; and Ali Abbasi. In Proceedings of the 2017 Workshop on Cyber-Physical Systems Security and PrivaCy, pages 57–67, 2017.
link   bibtex  

@inproceedings{green2017significance,
  title={On the significance of process comprehension for conducting targeted ICS attacks},
  author={Green, Benjamin and Krotofil, Marina and Abbasi, Ali},
  booktitle={Proceedings of the 2017 Workshop on Cyber-Physical Systems Security and PrivaCy},
  pages={57--67},
  year={2017}
}

Ghost in the PLC vs GhostBuster: on the feasibility of detecting pin control attack in Programmable Logic Controllers. Ali Abbasi; and Andrea Genuise. In Ghost in the PLC vs GhostBuster: On the Feasibility of Detecting Pin Control Attack in Programmable Logic Controllers. 2017.
link   bibtex  

@incollection{abbasi2017ghost,
  title={Ghost in the PLC vs GhostBuster: on the feasibility of detecting pin control attack in Programmable Logic Controllers},
  author={Abbasi, Ali and Genuise, Andrea},
  booktitle={Ghost in the PLC vs GhostBuster: On the Feasibility of Detecting Pin Control Attack in Programmable Logic Controllers},
  year={2017}
}

ECFI: Asynchronous control flow integrity for programmable logic controllers. Ali Abbasi; Thorsten Holz; Emmanuele Zambon; and Sandro Etalle. In Proceedings of the 33rd Annual Computer Security Applications Conference, pages 437–448, 2017.
link   bibtex  

@inproceedings{abbasi2017ecfi,
  title={ECFI: Asynchronous control flow integrity for programmable logic controllers},
  author={Abbasi, Ali and Holz, Thorsten and Zambon, Emmanuele and Etalle, Sandro},
  booktitle={Proceedings of the 33rd Annual Computer Security Applications Conference},
  pages={437--448},
  year={2017}
}

µShield: Configurable Code-Reuse Attacks Mitigation For Embedded Systems. Ali Abbasi; Jos Wetzels; Wouter Bokslag; Emmanuele Zambon; and Sandro Etalle. In International Conference on Network and System Security, pages 694–709, 2017. Springer
link   bibtex  

@inproceedings{abbasi2017mu,
  title={µShield: Configurable Code-Reuse Attacks Mitigation For
Embedded Systems},
  author={Abbasi, Ali and Wetzels, Jos and Bokslag, Wouter and Zambon, Emmanuele and Etalle, Sandro},
  booktitle={International Conference on Network and System Security},
  pages={694--709},
  year={2017},
  organization={Springer}
}

  2016 (3)

Stealth low-level manipulation of programmable logic controllers I/O by pin control exploitation. Ali Abbasi; Majid Hashemi; Emmanuele Zambon; and Sandro Etalle. In International Conference on Critical Information Infrastructures Security, pages 1–12, 2016. Springer
link   bibtex   3 downloads  

@inproceedings{abbasi2016stealth,
  title={Stealth low-level manipulation of programmable logic controllers I/O by pin control exploitation},
  author={Abbasi, Ali and Hashemi, Majid and Zambon, Emmanuele and Etalle, Sandro},
  booktitle={International Conference on Critical Information Infrastructures Security},
  pages={1--12},
  year={2016},
  organization={Springer}
}

Ghost in the PLC: Designing an Undetectable Programmable Logic Controller Rootkit via Pin Control Attack. Ali Abbasi; and Majid Hashemi. Black Hat Europe,1–35. 2016.
link   bibtex  

@article{abbasi2016ghost,
  title={Ghost in the PLC: Designing an Undetectable Programmable Logic Controller Rootkit via Pin Control Attack},
  author={Abbasi, Ali and Hashemi, Majid},
  journal={Black Hat Europe},
  pages={1--35},
  year={2016},
  publisher={Black Hat}
}

Ghost in the PLC: stealth on-the-fly manipulation of programmable logic controllers’ I/O. Ali Abbasi. CTIT Technical Report Series, (TR-CTIT-16-02). 2016.
link   bibtex  

@article{abbasi2016ghost,
  title={Ghost in the PLC: stealth on-the-fly manipulation of programmable logic controllers’ I/O},
  author={Abbasi, Ali},
  journal={CTIT Technical Report Series},
  number={TR-CTIT-16-02},
  year={2016},
  publisher={Centre for Telematics and Information Technology (CTIT)}
}

  2014 (2)

On emulation-based network intrusion detection systems. Ali Abbasi; Jos Wetzels; Wouter Bokslag; Emmanuele Zambon; and Sandro Etalle. In International Conference on Recent Advances in Intrusion Detection, pages 384–404, 2014. Springer, Cham
link   bibtex  

@inproceedings{abbasi2014emulation,
  title={On emulation-based network intrusion detection systems},
  author={Abbasi, Ali and Wetzels, Jos and Bokslag, Wouter and Zambon, Emmanuele and Etalle, Sandro},
  booktitle={International Conference on Recent Advances in Intrusion Detection},
  pages={384--404},
  year={2014},
  organization={Springer, Cham}
}

APTs way: evading Your EBNIDS. Ali Abbasi; and Jos Wetzel. Presented at Black Hat Europe 2014. 2014.
link   bibtex  

@article{abbasi2014apts,
  title={APTs way: evading Your EBNIDS},
  author={Abbasi, Ali and Wetzel, Jos},
  journal={Presented at Black Hat Europe 2014},
  year={2014}
}

  2013 (1)

Project IRUS: multifaceted approach to attacking and defending ICS. Dilloni Beresford; and Ali Beresford Abbasi. In SCADA Security Scientific Symposium (S4), 2013.
link   bibtex  

@inproceedings{beresford2013project,
  title={Project IRUS: multifaceted approach to attacking and defending ICS},
  author={Beresford, Dilloni and Abbasi, Ali Beresford},
  booktitle={SCADA Security Scientific Symposium (S4)},
  year={2013}
}

  2012 (1)

Research on HTML5 Security. Sun Songbai; Ali Abbasi; Zhuge Jianwei; and Duan Haixin. In CNCC CCF China National Computer Congress (CNCC201200118), 2012. Dalian, China
link   bibtex  

@inproceedings{songbai2012research,
  title={Research on HTML5 Security},
  author={Songbai, Sun and Abbasi, Ali and Jianwei, Zhuge and Haixin, Duan},
  booktitle={CNCC CCF China National Computer Congress (CNCC201200118)},
  year={2012},
  organization={Dalian, China}
}

  2011 (1)

A gray-box DPDA-based intrusion detection technique using system-call monitoring. Jafar Haadi Jafarian; Ali Abbasi; and Siavash Safaei Sheikhabadi. In Proceedings of the 8th Annual Collaboration, Electronic messaging, Anti-Abuse and Spam Conference, pages 1–12, 2011.
link   bibtex  

@inproceedings{jafarian2011gray,
  title={A gray-box DPDA-based intrusion detection technique using system-call monitoring},
  author={Jafarian, Jafar Haadi and Abbasi, Ali and Sheikhabadi, Siavash Safaei},
  booktitle={Proceedings of the 8th Annual Collaboration, Electronic messaging, Anti-Abuse and Spam Conference},
  pages={1--12},
  year={2011}
}

Technical Conferences

• A Deep Dive Into Unconstrained Code Execution on Siemens S7 PLCs, Ali Abbasi, Tobias Scharnowski, Chaos Communication Congress (36C3), December 2019, Leipzig, Germany.
• Doors of Durin: The Veiled Gate to Siemens S7 Silicon, Ali Abbasi, Tobias Scharnowski, Thorsten Holz, Black Hat Europe, December 2019, London, United Kingdom (Presentation Available).
• Embedded Control Systems Binary Security: An Industrial Control System Protection Approach, Ali Abbasi, Black Hat Sessions, Jun 2019, Nieuwegein, The Netherlands.
• TRITON: A Hammer into the Head of Safety Instrumented Systems, Ali Abbasi, Jos Wetzeks, National Cyber Security Center (NCSC), March 2018, The Hague, The Netherlands.
• Analyzing & Breaking Exploit Mitigations and PRNGs on QNX For Automotive, Industrial, Medical and Other Embedded Systems, Ali Abbasi, Jos Wetzels, BlackHat Asia, March 2018, Singapore.
• Dissecting QNX - Analyzing & Breaking QNX Exploit Mitigations and Secure Random Number Generators, Ali Abbasi, Jos Wetzels, REcon Brussels (REconBRX), February 2018, Brussels, Belgium.
• Code-Reuse Attack Mitigation for COTS Programmable Logic Controller Binaries, Ali Abbasi, Stockholm International Summit on Cyber Security in SCADA and Industrial Control Systems (CS3STHLM), October 2017, Stockholm, Sweden.
• Embedded Security from Software to Hardware, Ali Abbasi, International NCSC One Conference, National Cyber Security Centrum, April 2017, Hague, The Netherlands.
• Security Controls & Vulnerabilities in Embedded System OS, Ali Abbasi, S4xEurope, Jun 2017, Vienna, Austria.
• Ghost in the Machine: Challenges in Embedded Binary Security, Jos Wetzels, Ali Abbasi, USENIX Enigma, January 2017, Oakland, CA, USA.
• Do as I Say not as I Do: Stealth Modification of Programmable Logic Controllers I/O by Pin Control Attack, Ali Abbasi, Majid Hashemi, Chaos Communication Congress (33C3), December 2016, Hamburg, Germany.
• Wheel of Fortune: Analyzing Embedded OS Random Number Generators, Jos Wetzels, Ali Abbasi, Chaos Communication Congress (33C3), December 2016, Hamburg, Germany.
• Defeating Pin Control in Programmable Logic Controllers, Ali Abbasi, Majid Hashemi, ZeroNights, November 2016, Moscow, Russia.
• Ghost in the PLC: Designing an Undetectable Programmable Logic Controller Rootkit, Ali Abbasi, Majid Hashemi, Black Hat Europe, November 2016, London, United Kingdom (Video Available).
• APTs Way, Evading your EBNIDS, Ali Abbasi, Jos Wetzels, Black Hat Europe, October 2014, Amsterdam, The Netherlands (Video Available).
• Project IRUS: A Multifaceted Approach to Attacking and Defending ICS, Ali Abbasi, Dillon Beresford, Digital Bond’s SCADA Security Scientific Symposium (S4), Jan 2013, Miami, USA
• Critical Infrastructure Vulnerability Assessment and Protection from Protocol Layer to Hardware Layer, Ali Abbasi, Master thesis, Tsinghua University, Jun 2013, Beijing, China.