<?xml version="1.0" encoding="UTF-8"?>        <rss version="2.0"
             xmlns:atom="http://www.w3.org/2005/Atom"
             xmlns:dc="http://purl.org/dc/elements/1.1/"
             xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
             xmlns:admin="http://webns.net/mvcb/"
             xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"
             xmlns:content="http://purl.org/rss/1.0/modules/content/">
        <channel>
            <title>
									MMLAB Forum - 최근 주제들				            </title>
            <link>https://mmlab.snu.ac.kr/community/</link>
            <description>MMLAB Discussion Board</description>
            <language>ko-KR</language>
            <lastBuildDate>Fri, 10 Jul 2026 22:04:52 +0000</lastBuildDate>
            <generator>wpForo</generator>
            <ttl>60</ttl>
							                    <item>
                        <title> PathProb: Probabilistic Inference and Path Scoring for Enhanced and Flexible BGP Route Leak Detection</title>
                        <link>https://mmlab.snu.ac.kr/community/seminar/2026-07-07-pathprob-probabilistic-inference-and-path-scoring-for-enhanced-and-flexible-bgp-route-leak-detection/</link>
                        <pubDate>Mon, 06 Jul 2026 23:28:19 +0000</pubDate>
                        <description><![CDATA[AbstractThe Border Gateway Protocol (BGP) lacks inherent security, leaving the Internet vulnerable to severe threats like route leaks. Existing detection methods suffer from limitations such...]]></description>
                        <content:encoded><![CDATA[<p>Abstract<br /><br /><span>The Border Gateway Protocol (BGP) lacks inherent security, leaving the Internet vulnerable to severe threats like route leaks. Existing detection methods suffer from limitations such as rigid binary classification, high false positives, and sparse authoritative AS relationship data. To address these challenges, this paper proposes PathProb—a novel paradigm that flexibly identifies route leaks by calculating topology-aware probability distributions for AS links and computing legitimacy scores for AS paths. Our approach integrates Monte Carlo methods with an Integer Linear Programming formulation of routing policies to derive these solutions efficiently.</span><br /><span>We comprehensively evaluate PathProb using real-world BGP routing traces and route leak incidents. Results show our inference model outperforms state-of-the-art approaches with a high-confidence validation dataset. PathProb detects real-world route leaks with 98.45% recall while simultaneously reducing false positives by 4.29 ∼ 20.08 percentage points over </span><span>state-of-the-art</span><span> alternatives. Additionally, PathProb’s path legitimacy scoring enables network administrators to dynamically adjust route leak detection thresholds—tailoring security posture to their specific false alarm tolerance and security needs. Finally, PathProb offers seamless compatibility with emerging route leak mitigation mechanisms, such as Autonomous System Provider Authorization (ASPA), enabling flexible integration to enhance leak detection capabilities.</span><br /><br />논문링크: https://www.ndss-symposium.org/ndss-paper/pathprob-probabilistic-inference-and-path-scoring-for-enhanced-and-flexible-bgp-route-leak-detection/</p>
<div class="gs">
<div class="   ">
<div id=":17x" class="ii gt">
<div id=":17w" class="a3s aiL ">
<div id="avWBGd-18">
<div class="adL"> </div>
</div>
</div>
</div>
<div id="avWBGd-19" class="WhmR8e" data-hash="0"> </div>
</div>
</div>
<div id="wpfa-18097" class="wpforo-attached-file"><a class="wpforo-default-attachment" title="260707_PathProb_Probabilistic_Inference_and_Path_Scoring_for_Enhanced_and_Flexible_BGP_Route_Leak_Detection.pdf" href="//mmlab.snu.ac.kr/wp-content/uploads/wpforo/default_attachments/1783380499-260707_PathProb_Probabilistic_Inference_and_Path_Scoring_for_Enhanced_and_Flexible_BGP_Route_Leak_Detection.pdf" target="_blank" rel="noopener"><i class="fas fa-paperclip"></i> 260707_PathProb_Probabilistic_Inference_and_Path_Scoring_for_Enhanced_and_Flexible_BGP_Route_Leak_Detection.pdf</a></div>
<div id="wpfa-18099" class="wpforo-attached-file"><a class="wpforo-default-attachment" href="//mmlab.snu.ac.kr/wp-content/uploads/wpforo/default_attachments/1783407294-260707_PathProb_Probabilistic_Inference_and_Path_Scoring_for_Enhanced_and_Flexible_BGP_Route_Leak_Detection.pptx" target="_blank" title="260707_PathProb_Probabilistic_Inference_and_Path_Scoring_for_Enhanced_and_Flexible_BGP_Route_Leak_Detection.pptx"><i class="fas fa-paperclip"></i>&nbsp;260707_PathProb_Probabilistic_Inference_and_Path_Scoring_for_Enhanced_and_Flexible_BGP_Route_Leak_Detection.pptx</a></div>]]></content:encoded>
						                            <category domain="https://mmlab.snu.ac.kr/community/"></category>                        <dc:creator>박홍근</dc:creator>
                        <guid isPermaLink="true">https://mmlab.snu.ac.kr/community/seminar/2026-07-07-pathprob-probabilistic-inference-and-path-scoring-for-enhanced-and-flexible-bgp-route-leak-detection/</guid>
                    </item>
				                    <item>
                        <title> Inside Job: Defending Kubernetes Clusters Against Network Misconfigurations</title>
                        <link>https://mmlab.snu.ac.kr/community/seminar/2026-06-30-inside-job-defending-kubernetes-clusters-against-network-misconfigurations/</link>
                        <pubDate>Mon, 29 Jun 2026 20:40:59 +0000</pubDate>
                        <description><![CDATA[Abstract:
Kubernetes has emerged as the de facto standard for container orchestration. Unfortunately, its increasing popularity has also made it an attractive target for malicious actors. D...]]></description>
                        <content:encoded><![CDATA[<p>Abstract:</p>
<p>Kubernetes has emerged as the de facto standard for container orchestration. Unfortunately, its increasing popularity has also made it an attractive target for malicious actors. Despite extensive research on securing Kubernetes, little attention has been paid to the impact of network configuration on the security of application deployments. This paper addresses this gap by conducting a comprehensive analysis of network misconfigurations in a Kubernetes cluster with specific reference to lateral movement. Accordingly, we carried out an extensive evaluation of 287 open-source applications belonging to six different organizations, ranging from IT companies and public entities to non-profits. As a result, we identified 634 misconfigurations, well beyond what could be found by solutions in the state of the art. We responsibly disclosed our findings to the concerned organizations and engaged in a discussion to assess their severity. As of now, misconfigurations affecting more than thirty applications have been fixed with the mitigations we proposed.</p>
<div id="wpfa-18063" class="wpforo-attached-file"><a class="wpforo-default-attachment" title="20260630_inside-job_huko_vfin.pptx" href="//mmlab.snu.ac.kr/wp-content/uploads/wpforo/default_attachments/1782765659-20260630_inside-job_huko_vfin.pptx" target="_blank" rel="noopener"><i class="fas fa-paperclip"></i> 20260630_inside-job_huko_vfin.pptx</a></div>
<div id="wpfa-18064" class="wpforo-attached-file"><a class="wpforo-default-attachment" title="20260630_inside-job_huko_vfin.pdf" href="//mmlab.snu.ac.kr/wp-content/uploads/wpforo/default_attachments/1782765685-20260630_inside-job_huko_vfin.pdf" target="_blank" rel="noopener"><i class="fas fa-paperclip"></i> 20260630_inside-job_huko_vfin.pdf</a></div>
<div id="wpfa-18065" class="wpforo-attached-file"><a class="wpforo-default-attachment" href="//mmlab.snu.ac.kr/wp-content/uploads/wpforo/default_attachments/1782765753-Bufalino-et-al-2025-Inside-Job-Defending-Kubernetes-Clusters-Against-Network-Misconfigurations.pdf" target="_blank" title="Bufalino-et-al.-2025-Inside-Job-Defending-Kubernetes-Clusters-Against-Network-Misconfigurations.pdf"><i class="fas fa-paperclip"></i>&nbsp;Bufalino-et-al.-2025-Inside-Job-Defending-Kubernetes-Clusters-Against-Network-Misconfigurations.pdf</a></div>]]></content:encoded>
						                            <category domain="https://mmlab.snu.ac.kr/community/"></category>                        <dc:creator>고형욱</dc:creator>
                        <guid isPermaLink="true">https://mmlab.snu.ac.kr/community/seminar/2026-06-30-inside-job-defending-kubernetes-clusters-against-network-misconfigurations/</guid>
                    </item>
				                    <item>
                        <title> CAMP: Compositional Amplification Attacks against DNS</title>
                        <link>https://mmlab.snu.ac.kr/community/seminar/2026-06-23-camp-compositional-amplification-attacks-against-dns/</link>
                        <pubDate>Tue, 23 Jun 2026 03:40:30 +0000</pubDate>
                        <description><![CDATA[While DNS is often exploited by reflective DoS attacks, it can also be weaponized as a powerful amplifier to overload itself, as evidenced by a stream of recently discovered application-laye...]]></description>
                        <content:encoded><![CDATA[<p>While DNS is often exploited by reflective DoS attacks, it can also be weaponized as a powerful amplifier to overload itself, as evidenced by a stream of recently discovered application-layer amplification attacks. Given the importance of DNS, the question arises of what the fundamental traits are for such attacks. To answer this question, we perform a systematic investigation by establishing a taxonomy of amplification primitives intrinsic to DNS and a framework to analyze their composability. This approach leads to the discovery of a large family of compositional amplification (Camp) vulnerabilities, which can produce multiplicative effects with message amplification factors of hundreds to thousands. Our measurements with popular DNS implementations and open resolvers indicate the ubiquity and severity of Camp vulnerabilities and the serious threats they pose to the Internet’s crucial naming infrastructure.</p>
<div id="wpfa-18053" class="wpforo-attached-file"><a class="wpforo-default-attachment" title="usenixsecurity24-duan.pdf" href="//mmlab.snu.ac.kr/wp-content/uploads/wpforo/default_attachments/1782186030-usenixsecurity24-duan.pdf" target="_blank" rel="noopener"><i class="fas fa-paperclip"></i> usenixsecurity24-duan.pdf</a></div>
<div id="wpfa-18054" class="wpforo-attached-file"><a class="wpforo-default-attachment" href="//mmlab.snu.ac.kr/wp-content/uploads/wpforo/default_attachments/1782186133-MMLAB__23Jun2026_v10.pdf" target="_blank" title="MMLAB_메인세미나_23Jun2026_v1.0.pdf"><i class="fas fa-paperclip"></i>&nbsp;MMLAB_메인세미나_23Jun2026_v1.0.pdf</a></div>]]></content:encoded>
						                            <category domain="https://mmlab.snu.ac.kr/community/"></category>                        <dc:creator>황은비</dc:creator>
                        <guid isPermaLink="true">https://mmlab.snu.ac.kr/community/seminar/2026-06-23-camp-compositional-amplification-attacks-against-dns/</guid>
                    </item>
				                    <item>
                        <title> Looma: A Low-Latency PQTLS Authentication Architecture for Cloud Applications</title>
                        <link>https://mmlab.snu.ac.kr/community/seminar/2026-06-11-looma-a-low-latency-pqtls-authentication-architecture-for-cloud-applications/</link>
                        <pubDate>Tue, 09 Jun 2026 05:03:38 +0000</pubDate>
                        <description><![CDATA[안녕하세요. 메인 세미나 자료입니다.
 260604_메인세미나_Looma-A-Low-Latency-PQTLS-Authentication-Architecture-for-Cloud-Applications_제출용.pdf
&nbsp;260604_메인세미나_Looma-A-Low-Latency-PQTLS-Authentication-Architec...]]></description>
                        <content:encoded><![CDATA[<p>안녕하세요. 메인 세미나 자료입니다.</p>
<div id="wpfa-18013" class="wpforo-attached-file"><a class="wpforo-default-attachment" title="260604_메인세미나_Looma-A-Low-Latency-PQTLS-Authentication-Architecture-for-Cloud-Applications_제출용.pdf" href="//mmlab.snu.ac.kr/wp-content/uploads/wpforo/default_attachments/1780981418-260604__Looma-A-Low-Latency-PQTLS-Authentication-Architecture-for-Cloud-Applications_.pdf" target="_blank" rel="noopener"><i class="fas fa-paperclip"></i> 260604_메인세미나_Looma-A-Low-Latency-PQTLS-Authentication-Architecture-for-Cloud-Applications_제출용.pdf</a></div>
<div id="wpfa-18014" class="wpforo-attached-file"><a class="wpforo-default-attachment" href="//mmlab.snu.ac.kr/wp-content/uploads/wpforo/default_attachments/1780981450-260604__Looma-A-Low-Latency-PQTLS-Authentication-Architecture-for-Cloud-Applications_.pptx" target="_blank" title="260604_메인세미나_Looma-A-Low-Latency-PQTLS-Authentication-Architecture-for-Cloud-Applications_제출용.pptx"><i class="fas fa-paperclip"></i>&nbsp;260604_메인세미나_Looma-A-Low-Latency-PQTLS-Authentication-Architecture-for-Cloud-Applications_제출용.pptx</a></div>]]></content:encoded>
						                            <category domain="https://mmlab.snu.ac.kr/community/"></category>                        <dc:creator>정경헌</dc:creator>
                        <guid isPermaLink="true">https://mmlab.snu.ac.kr/community/seminar/2026-06-11-looma-a-low-latency-pqtls-authentication-architecture-for-cloud-applications/</guid>
                    </item>
				                    <item>
                        <title> A Framework to Evaluate MPIC Security using Real-World BGP Announcements</title>
                        <link>https://mmlab.snu.ac.kr/community/seminar/2026-05-21-a-framework-to-evaluate-mpic-security-using-real-world-bgp-announcements/</link>
                        <pubDate>Thu, 21 May 2026 04:53:30 +0000</pubDate>
                        <description><![CDATA[Abstract
Multiple Perspective Issuance Corroboration (MPIC) is a defense that strengthens the Domain Control Validation protocol run by Certificate Authorities (CAs) against network attacks...]]></description>
                        <content:encoded><![CDATA[<p>Abstract</p>
<p>Multiple Perspective Issuance Corroboration (MPIC) is a defense that strengthens the Domain Control Validation protocol run by Certificate Authorities (CAs) against network attacks (e.g., routing hijacks). Despite its recent adoption as a requirement by the CA/Browser Forum, the quantitative security benefits of MPIC in light of real-world routing behaviors are not well understood. We seek to address this challenge by creating a framework to test the effects of real-world BGP hijacks on millions of potential MPIC perspective deployments. Our framework launches around 1500 ethical BGP hijacks on IP prefixes we own and analyzes how potential MPIC perspectives route under these attacks. We consider over 100 global MPIC perspective locations spread across 3 major cloud providers. We find that optimal MPIC deployments can prevent certificate misissuance for over 87% of our evaluated real-world BGP hijacks. We further show that different routing behaviors by cloud providers, such as cold potato routing, have a substantial effect on MPIC's ability to limit the impact of BGP attacks. Finally, our framework computes optimized sets of MPIC perspective locations for CAs to use given their preference of cloud provider and perspective count. Our recommendations have already impacted the MPIC deployment at Google Trust Services, and have been adopted as the default recommendation by the Open MPIC project.</p>
<p>For more information, see:<br />paper: <a href="https://dl.acm.org/doi/10.1145/3730567.3764495" target="_blank" rel="noopener nofollow" data-saferedirecturl="https://www.google.com/url?q=https://dl.acm.org/doi/10.1145/3730567.3764495&amp;source=gmail&amp;ust=1779425579019000&amp;usg=AOvVaw2DcQUlYkf5vTFu5m4y_qmY">https://dl.acm.org/doi/10.<wbr />1145/3730567.3764495</a><br />website: <a href="https://mpiclabs.org/marcopolo" target="_blank" rel="noopener nofollow" data-saferedirecturl="https://www.google.com/url?q=https://mpiclabs.org/marcopolo&amp;source=gmail&amp;ust=1779425579019000&amp;usg=AOvVaw38Z1xWUKWPkzT81ChuiLyV">https://mpiclabs.org/marcopolo</a></p>
<p>&nbsp;</p>
<p>&nbsp;</p>
<div id="wpfa-17976" class="wpforo-attached-file"><a class="wpforo-default-attachment" title="260521_imc25-birgelee_jhnam.pptx" href="//mmlab.snu.ac.kr/wp-content/uploads/wpforo/default_attachments/1779339210-260521_imc25-birgelee_jhnam.pptx" target="_blank" rel="noopener"><i class="fas fa-paperclip"></i> 260521_imc25-birgelee_jhnam.pptx</a></div>
<div id="wpfa-17977" class="wpforo-attached-file"><a class="wpforo-default-attachment" href="//mmlab.snu.ac.kr/wp-content/uploads/wpforo/default_attachments/1779339238-260521_imc25-birgelee_jhnam.pdf" target="_blank" title="260521_imc25-birgelee_jhnam.pdf"><i class="fas fa-paperclip"></i>&nbsp;260521_imc25-birgelee_jhnam.pdf</a></div>]]></content:encoded>
						                            <category domain="https://mmlab.snu.ac.kr/community/"></category>                        <dc:creator>남재호</dc:creator>
                        <guid isPermaLink="true">https://mmlab.snu.ac.kr/community/seminar/2026-05-21-a-framework-to-evaluate-mpic-security-using-real-world-bgp-announcements/</guid>
                    </item>
				                    <item>
                        <title> One Email, Many Faces: A Deep Dive into Identity Confusion in Email Aliases</title>
                        <link>https://mmlab.snu.ac.kr/community/seminar/2026-05-07-one-email-many-faces-a-deep-dive-into-identity-confusion-in-email-aliases/</link>
                        <pubDate>Thu, 07 May 2026 04:22:15 +0000</pubDate>
                        <description><![CDATA[
Email addresses serve as a universal identifier for online account management, however, their aliasing mechanisms introduce significant identity confusion between email providers...]]></description>
                        <content:encoded><![CDATA[<p></p>
<p>Email addresses serve as a universal identifier for online account management, however, their aliasing mechanisms introduce significant identity confusion between email providers and external platforms. This paper presents the first systematic analysis of the inconsistencies arising from email aliasing, where providers view alias addresses (<em>e.g.,<span> </span>ALICE@example.com,<span> </span>alice+work@example.com</em>) as additional entrances of the base email (<em>alice@example.com</em>), while platforms often treat them as distinct identities.</p>
<p>Through empirical evaluations the alias mechanisms of 28 email providers and 18 online platforms, we reveal critical gaps: (1) Only Gmail fully documents its aliasing rules, while 11 providers silently support undocumented alias behaviors; (2) Due to lack of standardization documentation and de facto implementation, platforms either failed to distinguish alias addresses or over aggressive excluded all emails containing specific symbol. Real-world abuse cases demonstrate attackers exploiting aliases to create up to 139 accounts from a single base email in npm for spam campaigns. Our user study further highlights security risks, showing 31.65% of participants with alias knowledge mistake phishing emails as legitimate emails alias due to inconsistent provider implementations. Users who believe they understand email aliasing, especially those highly educated, male, and technical participants, are more susceptible to being phished. Our findings underscore the urgent need for standardization and transparency in email aliasing. We contribute the OriginMail tool to help platforms resolve alias confusion and disclose vulnerabilities to affected stakeholders.</p>
<div id="wpfa-17917" class="wpforo-attached-file"><a class="wpforo-default-attachment" title="MainSeminar260507_OneEmailManyFaces_sykim.pptx" href="//mmlab.snu.ac.kr/wp-content/uploads/wpforo/default_attachments/1778127735-MainSeminar260507_OneEmailManyFaces_sykim.pptx" target="_blank" rel="noopener"><i class="fas fa-paperclip"></i> MainSeminar260507_OneEmailManyFaces_sykim.pptx</a></div>
<div id="wpfa-17918" class="wpforo-attached-file"><a class="wpforo-default-attachment" href="//mmlab.snu.ac.kr/wp-content/uploads/wpforo/default_attachments/1778127796-2026-s148-paper.pdf" target="_blank" title="2026-s148-paper.pdf"><i class="fas fa-paperclip"></i>&nbsp;2026-s148-paper.pdf</a></div>]]></content:encoded>
						                            <category domain="https://mmlab.snu.ac.kr/community/"></category>                        <dc:creator>sykim</dc:creator>
                        <guid isPermaLink="true">https://mmlab.snu.ac.kr/community/seminar/2026-05-07-one-email-many-faces-a-deep-dive-into-identity-confusion-in-email-aliases/</guid>
                    </item>
							        </channel>
        </rss>
		