Fuzzing Device Emulation in QEMU

A Greater Boston RIG project

Virtual devices are the most common site for security bugs in hypervisors. In our evaluation, we found new bugs in devices such as serial and virtio-net, ranging from memory corruptions to denial-of-service vulnerabilities. By combining well known coverage guidance techniques with domain-specific feedback, we found promising fuzzer performance, even for complex targets such as hypervisors.

AI/ML

No longer the realm of supercomputing labs and theoretical research, AI/ML is just beginning to expand its practical applications. The combination of academic approaches and industry use cases promises to accelerate its adoption. Our research spans the gamut of algorithm development, data hygiene, AI methods, and attacking old challenges with AI approaches.

Projects

ProjectSummaryResearch AreaRIGUniversitiesrig_hfilterpartner_university_hfilter
PHYSICS: oPtimized HYbrid Space-time servIce Continuum in faaSPHYSICS is a high technology European research project with total funding of about 5ML€ proceeding …, , brno tel-aviv
Adaptive Learning of ProgrammingThe mission of Adaptive Learning of Programming is to make learning more efficient and engaging by personalizing educational systems using artificial intelligence techniques.brnomasaryk-university
OpenInfra LabsOpenInfra Labs is an OpenStack Foundation project connecting open source projects to production to advance …, , , , , , boston-university northeastern-university umass-amherst
Open Cloud TestbedThe Open Cloud Testbed project will build and support a testbed for research and experimentation into new cloud platforms – the underlying software which provides cloud services to applications. Testbeds such as OCT are critical for enabling research into new cloud technologies – research that requires experiments which potentially change …, , , , , , greater-bostonboston-university northeastern-university umass-amherst
Open CEP – An Advanced Open Source Complex Event Processing EngineThe aim of this project is to create a scalable open-source complex event processing (CEP) framework.tel-avivtechnion
Ceph: Wire-Level Compression-Efficient Object Storage Daemon Communication for the CloudThe project’s purpose is to reduce storage network traffic (object, block, etc.) for the following cases: between the failure domains in cost-sensitive environments such as public clouds, and between nodes in cases where the network bandwidth is the bottleneck of the node performance.tel-avividc-herzliya
Code2Vec: Learning code representationsThis project analyzed semantic similarities of learned code embeddings parsed from open source python libraries such as numpy, pandas and sklearn. Still in progress is another analysis that learns code embeddings in a supervised manner with the C++ codebase for performance measurement of program execution in CPU with performance counters …greater-bostonboston-university
Practical programming of FPGAs in the data center and on the edgeFPGAs are now essential components in the data center and on the edge with millions deployed. FPGAs are found in a wide variety of system elements and provide such critical functions as SDN, encryption/decryption, and compression. Yet for nearly all system providers, much less system users, programming these FPGAs is …, , greater-bostonboston-university