About

SREC (Security Research) is a research group for computer systems security and privacy. We are located in Cyprus and we are part of the Computer Science department of the University of Cyprus. Our research is focused on how systems can be exploited and defended against modern attacks.

People


Antreas Dionysiou
PhD Student

Pantelina Ioannou
PhD Student

Michalis Papaevripides
PhD Student

Publications

Unicode Evil: Evading NLP Systems Using Visual Similarities of Text Characters
Antreas Dionysiou and Elias Athanasopoulos. In Proceedings of the 14th ACM Workshop on Artificial Intelligence and Security (AISEC). Virtual, November, 2021.
webFuzz: Grey-box Fuzzing for Web Applications
Orpheas van Rooij, Marcos Charalambous, Demetris Kaizer, Michalis Papaevripides, and Elias Athanasopoulos. In Proceedings of the 26th European Symposium on Research in Computer Security (ESORICS). Darmstadt, Germany (virtual), October 2021.
Hard edges: Hardware-based Control-Flow Integrity for Embedded Devices
George Christou, Giorgos Vasiliadis, Elias Athanasopoulos and Sotiris Ioannidis. In Proceedings of the 21st International Conference on Embedded Computer Systems: Architectures, Modeling and Simulation (SAMOS). Virtual, July 2021.
HoneyGen: Generating Honeywords Using Representation Learning
Antreas Dionysiou, Vassilis Vassiliades, and Elias Athanasopoulos. In Proceedings of the 16th ACM Asia Conference on Computer and Communications Security (AsiaCCS). Hong Kong, China (virtual), June 2021.
Exploiting Mixed Binaries
Michalis Papaevripides and Elias Athanasopoulos. In Proceedings of the ACM Transactions on Security and Privacy (TOPS). Article No.: 7, pp 1-29, January 2021.
Evaluation of the Adoption and Privacy Risks of Google Prompts
Christos Avraam and Elias Athanasopoulos. In Proceedings of the 1st Workshop on Security in Mobile Technologies (co-located with ACNS). Rome, Italy (virtual), October 2020.
SecurePay: Strengthening Two-Factor Authentication for Arbitrary Transactions
Radhesh K. Konoth, Björn Fischer, Wan Fokkink, Elias Athanasopoulos, Kaveh Razavi, Herbert Bos. In Proceedings of the 5th IEEE European Symposium on Security and Privacy 2020. Genova, Italy (virtual), September 2020.
🤙 Best Paper Award!
auth.js: Advanced Authentication for the Web
Neophytos Christou and Elias Athanasopoulos. In Proceedings of the 3rd International Workshop on Emerging Technologies for Authorization and Authentication (co-located with ESORICS). Guildford, UK (virtual), September 2020.
SoK: Machine vs. Machine - A Systematic Classification of Automated Machine Learning-based CAPTCHA Solvers
Antreas Dionysiou and Elias Athanasopoulos. In Proceedings of the Computers & Security 97, 101947. July 2020.
Practical Password Hardening based on TLS
Constantinos Diomedous and Elias Athanasopoulos. In Proceedings of the 16th Conference on Detection of Intrusions and Malware and Vulnerability Assessment (DIMVA). Gothenburg, Sweden, June 2019.
KAuth: A Strong Single Sign-On Service based on PKI
Panayiotis Charalambous, Marios Karapetris, and Elias Athanasopoulos. In Proceedings of the International Conference on Security and Cryptography (SECRYPT). Porto, Portugal, July 2018.
Throwhammer: Rowhammer Attacks over the Network and Defenses
Andrei Tatar, Radhesh Krishnan, Elias Athanasopoulos, Cristiano Giuffrida, Herbert Bos, Kaveh Razavi. In Proceedings of the Annual Usenix Technical Conference (ATC). Boston, MA, US, June 2018.
🤙  Check the Ars Technica article.
Where's Wally? How to Privately Discover your Friends on the Internet (short paper)
Panagiotis Papadopoulos, Antonios A. Chariton, Elias Athanasopoulos, Evangelos P. Markatos. In Proceedings of the 13th ACM Asia Conference on Computer and Communications Security (AsiaCCS). Songdo, Incheon, South Korea, June 2018.
0pass: Zero-storage Password Management Based on Password Reminders
Giannis Tzagarakis, Panagiotis Papadopoulos, Antonios A. Chariton, Elias Athanasopoulos, Evangelos P. Markatos. In Proceedings of the 11th European Workshop on Systems Security (EuroSec). Porto, Portugal, April 2018.
A Large-scale Analysis of Content Modification by Open HTTP Proxies
Georgios Tsirantonakis, Panagiotis Ilia, Sotiris Ioannidis, Elias Athanasopoulos, and Michalis Polychronakis. In Proceedings of the 24th Network and Distributed System Security Symposium (NDSS). San Diego, CA, US, February 2018.
PROV2R: Practical Provenance Analysis of Unstructured Processes
Manolis Stamatogiannakis, Elias Athanasopoulos, Herbert Bos, and Paul Groth. In Proceedings of the ACM Transactions on Internet Technology. August 2017.
No Need to Hide: Protecting Safe Regions on Commodity Hardware
Koen Koning, Xi Chen, Herbert Bos, Cristiano Giuffrida, and Elias Athanasopoulos. In Proceedings of the European Conference on Computer Systems (EuroSys). Belgrade, Serbia, April 2017.
MARX: Uncovering Class Hierarchies in C++ Programs
Andre Pawloski, Moritz Contag, Thorsten Holz, Victor van der Veen, Chris Ouwehand, Herbert Bos, Elias Athanasopoulos, and Cristiano Giuffrida. In Proceedings of the 24th Network and Distributed System Security Symposium (NDSS). San Diego, CA, US, February 2017.
VTPin: Practical VTable Hijacking Protection for Binaries
Pawel Sarbinowski, Vasileios P. Kemerlis, Cristiano Giuffrida, and Elias Athanasopoulos. In Proceedings of the 32nd Annual Computer Security Applications Conference (ACSAC). Los Angeles, CA, US, December 2016.