Fuzzing Device Emulation in QEMU

A Greater Boston RIG project

Virtual devices are the most common site for security bugs in hypervisors. In our evaluation, we found new bugs in devices such as serial and virtio-net, ranging from memory corruptions to denial-of-service vulnerabilities. By combining well known coverage guidance techniques with domain-specific feedback, we found promising fuzzer performance, even for complex targets such as hypervisors.


For a user, the cloud is a streamlined experience that hides an extreme degree of complexity. Computer scientists and engineers, however, cannot ignore the enhancements that still need to be made to networking, infrastructure, the ability to support massive scale, which in its turn needs self-awareness, self-healing, and automation to keep it manageable and secure. These are just some of the aspects that our research projects look to address and their “lab” is very successful public-cloud alternatives that host other scientific and academic research projects.


ProjectSummaryResearch AreaRIGUniversitiesrig_hfilterpartner_university_hfilter
PHYSICS: oPtimized HYbrid Space-time servIce Continuum in faaSPHYSICS is a high technology European research project with total funding of about 5ML€ proceeding …, , brno tel-aviv
SpotOS – a distributed cloud-based operating system over unreliable resourcesThe aim of this project is to devise and implement a distributed cloud-based operating system …tel-avivtechnion
Kubernetes Optimized Service Discovery Across ClustersThe Submariner project provides an ability to connect multiple Kubernetes clusters into a secure shared network which allows various services to communicate with each other.tel-avividc-herzliya
Workflow-Centric Tracing for Cloud ApplicationsWorkflow-centric tracing allows traces (i.e., graphs) of requests’ workflows to be constructed by stitching together trace points with the same request context. Three collaboratory projects focus on improving the observability and diagnosability of Red Hat products using this technique., greater-bostonboston-university northeastern-university
Volume Storage Over Object StorageThis project creates a hybrid storage system composed of a high-speed local device (e.g. Optane) to store short term data, along with a write-once object store (e.g, Ceph RGW) to store data blocks permanently., greater-bostonboston-university northeastern-university
Kariz Cache Prefetching and ManagementKariz is a caching system that works closely with analytic frameworks scheduler to find the best caching policy for the current running application., greater-bostonboston-university northeastern-university
OpenInfra LabsOpenInfra Labs is an OpenStack Foundation project connecting open source projects to production to advance …, , , , , , boston-university northeastern-university umass-amherst
Elastic Secure InfrastructureThis project encompasses work in several areas to design, build and evaluate secure bare-metal elastic infrastructure for data centers., , greater-bostonboston-university
Open Cloud TestbedThe Open Cloud Testbed project will build and support a testbed for research and experimentation into new cloud platforms – the underlying software which provides cloud services to applications. Testbeds such as OCT are critical for enabling research into new cloud technologies – research that requires experiments which potentially change …, , , , , , greater-bostonboston-university northeastern-university umass-amherst
Ceph StorageThis research project is investigating how Ceph compression and erasure coded pools could optimize Prometheus tsdb storage.greater-bostonumass-lowell
Implementing Secure Multi-Party ComputingSecure Multiparty Computation (MPC) is a cryptographic primitive that allows several parties to jointly and privately compute desired functions over secret data. Building and deploying practical MPC applications faces several obstacles, including performance overhead, complicated deployment and setup procedures, and adoption of MPC protocols into modern software stacks. MPC applications …, greater-bostonboston-university
An Optimizing Operating System: Accelerating Execution With SpeculationTo optimize performance, Automatically Scalable Computation (ASC), a Harvard/BU collaboration attempts to auto-parallelize single threaded workloads, reducing any new effort required from programmers to achieve wall clock speedup. SEUSS takes a different approach by splicing a custom operating system into the backend of a high throughput distributed serverless platform, Apache …, greater-bostonboston-university
D3N: A Multi-Layer Cache for Data CentersThis project designs and develops D3N, a novel multi-layer cooperative caching architecture that mitigates network imbalances by caching data on the access side of each layer of hierarchical network topology. A prototype implementation, which incorporates a two-layer cache, is highly-performant (can read cached data at 5GB/s, the maximum speed of …, greater-bostonboston-university northeastern-university
Practical programming of FPGAs in the data center and on the edgeFPGAs are now essential components in the data center and on the edge with millions deployed. FPGAs are found in a wide variety of system elements and provide such critical functions as SDN, encryption/decryption, and compression. Yet for nearly all system providers, much less system users, programming these FPGAs is …, , greater-bostonboston-university
Performance Management for Serverless ComputingServerless computing provides developers the freedom to build and deploy applications without worrying about infrastructure. …greater-bostonboston-university