Shuaishuai L, Gergely A & Gergely B: Interdependent Privacy in Smart Homes: Hunting for Bystanders in Privacy Policies — accepted at FPS 2025.

With this paper, Liu has officially met the publication requirements for the PhD degree — congratulations!

Modeling interdependent privacy threats The rise of online social networks, user-gene-rated content, and third-party apps made data sharing an inevitable trend, driven by both user behavior and the commercial value of personal information. ...

📢 New publication!

Shuaishuai Liu & Gergely Biczók: *Modeling interdependent privacy threats* – just accepted in the **International Journal of Information Security (Springer)**.

🔗 Preprint available: [https://arxiv.org/abs/2505.18386](arxiv.org/abs/2505.18386)

CrySyS on the road
9/22 [NNHH] Buttyán: Cybersecurity Challenges
9/23 [ITBN] Pék: Cyber Competitions
10/1 [HUNOG] Ács: Security of LLMs
10/3 [Hacktivity] G. Fuchs: TLSH Attacks & Nagy: Linux Rootkits
10/25 [DSL] Koltai: AI Threats & Pék/Sándor: Binary Exploitation
10/28 [WITSEC] Koltai: AI Threats

Incentivizing Secure Software Development: The Role of Voluntary Audit and Liability Waiver | ACM Transactions on Privacy and Security Misaligned incentives in secure software development have long been a challenge in security economics. Product liability, a powerful legal framework in other industries, has been largely ineffective f...

🚨 New paper alert!
Ziyuan Huang, Gergely Biczók & Mingyan Liu: *Incentivizing Secure Software Development: The Role of Voluntary Audit and Liability Waiver* just accepted in **ACM Transactions on Privacy and Security**.

📄 [https://doi.org/10.1145/3765287](doi.org/10.1145/3765...)

Detect & Score: Privacy-Preserving Misbehavior Detection and Contribution Evaluation in Federated Learning | Proceedings of the International Workshop on Secure and Efficient Federated Learning

🚨 New paper by CrySyS!
"Detect & Score" tackles both malicious client filtering and contribution scoring of the benign clients within federated learning — all while preserving privacy.
📍 Accepted at FLAsiaCCS, the FL workshop at top-tier security conf AsiaCCS.

dl.acm.org/doi/full/10....

Targeted Attacks Against the TLSH Similarity Digest Scheme Similarity Digest Schemes are used in various applications (e.g. digital forensics, spam filtering, malware detection and malware clustering), which require them to be resistant against attacks aiming...

Our TLSH attack paper in IEEE TIFS shows binaries can be modified to cause digest collisions, questioning TLSH reliability. doi.org/10.1109/TIFS...

Our work on rootkit detection via hidden kernel modules in memory snapshots was presented at DFRWS USA 2025, Chicago.
📄 Paper: doi.org/10.1016/j.fs...
🔌 Volatility plugin: github.com/CrySyS/ModXRef
💾 Dataset: www.crysys.hu/~rnagy/datas...