Projects
Project Summary RIG Universities rig_hfilter partner_university_hfilter SpotOS – a distributed cloud-based operating system over unreliable resources The aim of this project is to devise and implement a distributed … Tel Aviv Technion tel-aviv technion Does efficient, private, agnostic learning imply efficient, agnostic online learning? Users of online services today must trust platforms with their personal data. Platforms can choose … Greater Boston Boston University greater-boston boston-university Are Adversarial Attacks a Viable Solution to Individual Privacy? Users of online services today must trust platforms with their personal data. Platforms can choose … Greater Boston Boston University greater-boston boston-university Secured API in Hybrid Cloud Recently we see many companies that are moving their data from local data centers to public-managed clouds. But with these movements, some questions raise up. Tel Aviv Ariel University tel-aviv ariel-university Side-channel attacks on embedded devices and smartcards This project focuses on several aspects of side-channel attacks on embedded devices and smartcards, utilizing … Brno Masaryk University brno masaryk-university Big Data Stack EU Project: An European Open Source Initiative The Big Data Stack EU research project aims at providing a complete infrastructure management system, which bases the management and deployment decisions on data from current and past application and infrastructure deployments. It focuses on: Tel Aviv tel-aviv Mining issued Common Criteria and FIPS140-2 certificates The security certification reports might be long but is also a trove of publicly available … Brno Masaryk University brno masaryk-university Kubernetes Optimized Service Discovery Across Clusters The Submariner project provides an ability to connect multiple Kubernetes clusters into a secure shared network which allows various services to communicate with each other. Tel Aviv IDC Herzliya tel-aviv idc-herzliya Smart Commute Because an individual’s driving style has an impact of ~25/30% on the CO2 emissions and … Domestic Violence Tracker An issue with COVID-19 is the lack of financial ability to escape domestic violence. This … OpenVolunteerPlatform The OpenVolunteerPlatform provides community support by improving food security and access to resources amongst vulnerable … Building the next generation of programmable networking – powered by Linux The project seeks to explore areas related to programmable networking, with a particular focus on the eXpress Data Path (XDP) technology in the Linux kernel. Karlstad University karlstad-university Verifying constant-time cryptographic algorithm implementations The aim of this project is to verify the timing side-channel resistance of cryptographic implementations. The project focuses on the constant time (and constant memory access) generic cryptographic implementations of selected cryptographic algorithms. T Brno Masaryk University brno masaryk-university Trusted Computing Ecosystem The project aims to study the TPM ecosystem as currently exists in deployed devices and software applications using it, establish the types of chips and their properties one can encounter, investigate the state of patching of known vulnerabilities like ROCA against Infineon’s TPM (CVE-2017-15361) or TPMFail against Intel’s fTPM (CVE-2019-11090) … Brno Masaryk University brno masaryk-university Improving Full Disk Encryption The primary focus of this project is also data integrity protection, either in combination with encryption (authentication encryption) or standalone using dm-integrity and dm-verity kernel driver. Brno Masaryk University brno masaryk-university Accelerating Microarchitectural Security Research We are working on processes and tooling to lower the barrier to entry into the field and accelerate attack research and mitigation across academia and industry. Brno Graz University of Technology brno tu-graz Authentication in public open-source repositories This project focuses on user authentication in public repositories containing open-source projects, which are then used by commercial companies (e.g. Red Hat) as a source for their internally maintained repositories. Brno Masaryk University brno masaryk-university LART – LLVM Abstraction and Refinement Tool The goal of this tool is to provide LLVM-to-LLVM transformations that implement various program abstractions. Brno Masaryk University brno masaryk-university Adaptive Learning of Programming The mission of Adaptive Learning of Programming is to make learning more efficient and engaging by personalizing educational systems using artificial intelligence techniques. Brno Masaryk University brno masaryk-university Workflow-Centric Tracing for Cloud Applications Workflow-centric tracing allows traces (i.e., graphs) of requests’ workflows to be constructed by stitching together trace points with the same request context. Three collaboratory projects focus on improving the observability and diagnosability of Red Hat products using this technique. Greater Boston Boston University, Northeastern University greater-boston boston-university northeastern-university Hybrid Cloud Caching A fundamental goal of the Hybrid Cloud Cache project is to allow simplified integration into existing data lakes, to enable caching to be transparently introduced into hybrid cloud computation, to support efficient caching of objects widely shared across clusters deployed by different organizations, and to avoid the complexity of managing … Greater Boston Boston University, Northeastern University greater-boston boston-university northeastern-university Volume Storage Over Object Storage This project creates a hybrid storage system composed of a high-speed local device (e.g. Optane) to store short term data, along with a write-once object store (e.g, Ceph RGW) to store data blocks permanently. Greater Boston Boston University, Northeastern University greater-boston boston-university northeastern-university Kariz Cache Prefetching and Management Kariz is a caching system that works closely with analytic frameworks scheduler to find the best caching policy for the current running application. Greater Boston Boston University, Northeastern University greater-boston boston-university northeastern-university PACT: Private Automated Contact Tracing Greater Boston Boston University greater-boston boston-university OpenInfra Labs OpenInfra Labs is an OpenStack Foundation project connecting open source projects to production to advance … Boston University, Northeastern University, UMass Amherst boston-university northeastern-university umass-amherst Elastic Secure Infrastructure This project encompasses work in several areas to design, build and evaluate secure bare-metal elastic infrastructure for data centers. Greater Boston Boston University greater-boston boston-university Open Cloud Testbed The Open Cloud Testbed project will build and support a testbed for research and experimentation into new cloud platforms – the underlying software which provides cloud services to applications. Testbeds such as OCT are critical for enabling research into new cloud technologies – research that requires experiments which potentially change … Greater Boston Boston University, Northeastern University, UMass Amherst greater-boston boston-university northeastern-university umass-amherst Ceph Storage This research project is investigating how Ceph compression and erasure coded pools could optimize Prometheus tsdb storage. Greater Boston UMass Lowell greater-boston umass-lowell Implementing Secure Multi-Party Computing Secure Multiparty Computation (MPC) is a cryptographic primitive that allows several parties to jointly and privately compute desired functions over secret data. Building and deploying practical MPC applications faces several obstacles, including performance overhead, complicated deployment and setup procedures, and adoption of MPC protocols into modern software stacks. MPC applications … Greater Boston Boston University greater-boston boston-university Outfitting QEMU/KVM with Partitioning Hypervisor Functionality This project extends the virtualization capabilities of QEMU and KVM by adding partitioning hypervisor functionality. With this implementation, hardware resources can be exclusively assigned to specific tasks and VMs. Current work supports KVM Isolation IOCTLs to query CPUs to find isolated CPUs. Greater Boston Boston University greater-boston boston-university An Optimizing Operating System: Accelerating Execution With Speculation To optimize performance, Automatically Scalable Computation (ASC), a Harvard/BU collaboration attempts to auto-parallelize single threaded workloads, reducing any new effort required from programmers to achieve wall clock speedup. SEUSS takes a different approach by splicing a custom operating system into the backend of a high throughput distributed serverless platform, Apache … Greater Boston Boston University greater-boston boston-university Open CEP – An Advanced Open Source Complex Event Processing Engine The aim of this project is to create a scalable open-source complex event processing (CEP) framework. Tel Aviv Technion tel-aviv technion Ceph: Wire-Level Compression-Efficient Object Storage Daemon Communication for the Cloud The project’s purpose is to reduce storage network traffic (object, block, etc.) for the following cases: between the failure domains in cost-sensitive environments such as public clouds, and between nodes in cases where the network bandwidth is the bottleneck of the node performance. Tel Aviv IDC Herzliya tel-aviv idc-herzliya Innovation Scorecard: Controlling framework for innovation projects in IT Innovation Scorecard is a conceptual performance measurement and management control framework specifically designed for work activities that relate to innovation. Its origin lies in the outcomes of a primary research project that was supported by the Czech Scientific Foundation during 2013-2015. This project’s objective was to ascertain whether organizations in … Brno Brno University of Technology brno brno-university-of-technology Kernel Techniques to Optimize Memory Bandwidth with Predictable Latency Recent processors have started introducing the first mechanism to monitor and control memory bandwidth. Can we use these mechanisms to enable machines to be fully used while ensuring that primary workloads have deterministic performance? This project presents early results from using Intel’s Resource Director Technology and some insight into this … Greater Boston Boston University greater-boston boston-university Unikernel Linux This project aims to turn the Linux kernel into a unikernel with the following characteristics: 1) are easily compiled for any application, 2) use battle-tested, production Linux and glibc code, 3) allow the entire upstream Linux developer community to maintain and develop the code, and 4) provide applications normally running … Greater Boston Boston University greater-boston boston-university Code2Vec: Learning code representations This project analyzed semantic similarities of learned code embeddings parsed from open source python libraries such as numpy, pandas and sklearn. Still in progress is another analysis that learns code embeddings in a supervised manner with the C++ codebase for performance measurement of program execution in CPU with performance counters … Greater Boston Boston University greater-boston boston-university Perun: Lightweight Performance Version System Perun is an open source light-weight Performance Version System, which works as a wrapper over existing Version Control Systems and in parallel manages performance profiles corresponding to different versions of projects. Moreover, it offers a tool suite suitable for automation of the performance regression test runs, postprocessing of existing profiles … Brno Brno University of Technology brno brno-university-of-technology DiffKemp: Automatic analysis of semantic differences in kernel options The project aims at creating a tool for automatic analysis of differences in the code between versions of the Linux kernel. The goal is to determine whether the semantics (the effect) of some kernel option, function, or parameter, changed between two kernel versions Brno Brno University of Technology brno brno-university-of-technology Symbiotic Symbiotic is an open-source framework for program analysis integrating instrumentation, static program slicing and various program analysis tools. Brno Masaryk University brno masaryk-university Vega Project The Vega Project team at Red Hat came up with an idea to harness the power of Kubernetes to provide the next-generation open-source tool for high-performance computing. The project is way past the design phase, and the team is already working on the proof-of-concept implementation using Red Hat OpenShift Container … Brno Masaryk University brno masaryk-university Quality Assurance System for Internet of Things Technology The main goal is to design, implement and verify a framework for quality assurance of products based on the Internet of Things concept. The aim of the framework is to help individual IoT projects to establish an efficient testing and verification strategy of the infrastructure. The proposed framework is based … Brno Czech Technical University brno czech-technical-university AUFOVER – The Automation of Formal Verification The goal of the Automation of Formal Verification (AUFOVER) project is to develop automated formal verification tools and integrate them for industrial use. The tools to be developed or improved within the projects are Verification Server, Verification Server Client Application, csmock plug-ins, DIVINE, Symbiotic and Testos. The purpose of the … Brno Brno University of Technology, Masaryk University brno brno-university-of-technology masaryk-university Usable Security for Developers This project focuses on the cryptographic APIs with respect to their developer usability. Such APIs are notoriously complex and prone to usage errors – our goal is to analyze their (in)correct usage and propose precautions and guidelines to achieve better usability and security. Brno Masaryk University brno masaryk-university Fuzzing Device Emulation in QEMU Hypervisors—the software that allows a computer to simulate multiple virtual computers—form the backbone of cloud computing. Because they are both ubiquitous and essential, they are security-critical applications that make attractive targets for potential attackers. Greater Boston Boston University greater-boston boston-university D3N: A Multi-Layer Cache for Data Centers This project designs and develops D3N, a novel multi-layer cooperative caching architecture that mitigates network imbalances by caching data on the access side of each layer of hierarchical network topology. A prototype implementation, which incorporates a two-layer cache, is highly-performant (can read cached data at 5GB/s, the maximum speed of … Greater Boston Boston University, Northeastern University greater-boston boston-university northeastern-university Practical programming of FPGAs in the data center and on the edge FPGAs are now essential components in the data center and on the edge with millions deployed. FPGAs are found in a wide variety of system elements and provide such critical functions as SDN, encryption/decryption, and compression. Yet for nearly all system providers, much less system users, programming these FPGAs is … Greater Boston Boston University greater-boston boston-university Automatic Configuration of Complex Hardware In this project, we pursue three goals towards this understanding: 1) identify, via a set of microbenchmarks, application characteristics that will illuminate mappings between hardware register values and their corresponding microbenchmark performance impact, 2) use these mappings to frame NIC configuration as a set of learning problems such that an … Greater Boston Boston University greater-boston boston-university Quest-V, a Partitioning Hypervisor for Latency-Sensitive Workloads Quest-V is a separation kernel that partitions services of different criticality levels across separate virtual machines, or sandboxes. Each sandbox encapsulates a subset of machine physical resources that it manages without requiring intervention from a hypervisor. In Quest-V, a hypervisor is only needed to bootstrap the system, recover from certain … Greater Boston Boston University greater-boston boston-university Avocado Project The goal of the Avocado project, as a generic test automation framework, is to provide a solid foundation for software projects to build their testing needs on. With Avocado, common testing problems are solved at the framework level, and developers can spend more of their time writing tests that, by … Brno Czech Technical University, Karlstad University brno czech-technical-university karlstad-university Performance Management for Serverless Computing Serverless computing provides developers the freedom to build and deploy applications without worrying about infrastructure. … Greater Boston Boston University greater-boston boston-university