BZPEERReading, trust and collaboration for research
Menu

Discover

GraphFollow connections around a paper, topic or saved view.

Workspaces

HomePick up where your research flow left off.InboxHandle requests, replies and notifications from one place.CollectionsCurate reading lists, evidence sets and shareable dossiers.ResearchSee your private provenance graph, trail and imports.CollaborationMove from discovery into focused discussion rooms.PublishDraft, preview and publish full-text research articles.

Network

ExpertsFind specialists worth following or asking for help.CommunitiesJoin research circles organized around shared work.PartnersSee external organizations active around the same topics.

Opportunities

ListingsBrowse roles, calls and collaborations with clearer fit signals.

Account

Log inReturn to your reading and collaboration workspace.Create accountStart saving work, following people and joining teams.
Log inCreate account

Researcher profile

Nuno Santos

Nuno Santos contributes to research discovery and scholarly infrastructure.

ResearcherAffiliation not importedOpen to collaborate
astro-ph.EPastro-ph.IMCryptography and Securityastro-ph.SR

Trust snapshot

Quick read

Trust 21 - EmergingVerification L1Unclaimed author
7works
0followers
4topics
4close collaborators

Actions

Decide how to stay connected

Follow researcher0

Identity and collaboration

How to connect with this researcher

Claiming links this public author record to a researcher profile and unlocks direct collaboration workflows.

Log in to claim

Direct collaboration

Open a focused conversation when the fit is right

Claim this author entity first to unlock direct invitations.

Research graph

See the researcher in context

Open full explorer

Inspect adjacent work, topics, institutions and collaborators without jumping out to a separate graph page.

Building this graph slice

BZPEER is loading the nearby papers, people, topics and institutions for this page.

Published work

7 published item(s)

preprint2022arXiv

ReZone: Disarming TrustZone with TEE Privilege Reduction

In TrustZone-assisted TEEs, the trusted OS has unrestricted access to both secure and normal world memory. Unfortunately, this architectural limitation has opened an aisle of exploration for attackers, which have demonstrated how to leverage a chain of exploits to hijack the trusted OS and gain full control of the system, targeting (i) the rich execution environment (REE), (ii) all trusted applications (TAs), and (iii) the secure monitor. In this paper, we propose ReZone. The main novelty behind ReZone design relies on leveraging TrustZone-agnostic hardware primitives available on commercially off-the-shelf (COTS) platforms to restrict the privileges of the trusted OS. With ReZone, a monolithic TEE is restructured and partitioned into multiple sandboxed domains named zones, which have only access to private resources. We have fully implemented ReZone for the i.MX 8MQuad EVK and integrated it with Android OS and OP-TEE. We extensively evaluated ReZone using microbenchmarks and real-world applications. ReZone can sustain popular applications like DRM-protected video encoding with acceptable performance overheads. We have surveyed 80 CVE vulnerability reports and estimate that ReZone could mitigate 86.84% of them.

0 citations0 reviewsNo code linkedOpen access
preprint2022arXiv

Uncovering the true periods of the young sub-Neptunes orbiting TOI-2076

Context: TOI-2076 is a transiting three-planet system of sub-Neptunes orbiting a bright (G = 8.9 mag), young ($340\pm80$ Myr) K-type star. Although a validated planetary system, the orbits of the two outer planets were unconstrained as only two non-consecutive transits were seen in TESS photometry. This left 11 and 7 possible period aliases for each. Aims: To reveal the true orbits of these two long-period planets, precise photometry targeted on the highest-probability period aliases is required. Long-term monitoring of transits in multi-planet systems can also help constrain planetary masses through TTV measurements. Methods: We used the MonoTools package to determine which aliases to follow, and then performed space-based and ground-based photometric follow-up of TOI-2076 c and d with CHEOPS, SAINT-EX, and LCO telescopes. Results: CHEOPS observations revealed a clear detection for TOI-2076 c at $P=21.01538^{+0.00084}_{-0.00074}$ d, and allowed us to rule out three of the most likely period aliases for TOI-2076 d. Ground-based photometry further enabled us to rule out remaining aliases and confirm the $P=35.12537\pm0.00067$ d alias. These observations also improved the radius precision of all three sub-Neptunes to $2.518\pm0.036$, $3.497\pm0.043$, and $3.232\pm0.063$ $R_\oplus$. Our observations also revealed a clear anti-correlated TTV signal between planets b and c likely caused by their proximity to the 2:1 resonance, while planets c and d appear close to a 5:3 period commensurability, although model degeneracy meant we were unable to retrieve robust TTV masses. Their inflated radii, likely due to extended H-He atmospheres, combined with low insolation makes all three planets excellent candidates for future comparative transmission spectroscopy with JWST.

0 citations0 reviewsNo code linkedOpen access
preprint2022arXiv

Wasmati: An Efficient Static Vulnerability Scanner for WebAssembly

WebAssembly is a new binary instruction format that allows targeted compiled code written in high-level languages to be executed with near-native speed by the browser's JavaScript engine. However, given that WebAssembly binaries can be compiled from unsafe languages like C/C++, classical code vulnerabilities such as buffer overflows or format strings can be transferred over from the original programs down to the cross-compiled binaries. As a result, this possibility of incorporating vulnerabilities in WebAssembly modules has widened the attack surface of modern web applications. This paper presents Wasmati, a static analysis tool for finding security vulnerabilities in WebAssembly binaries. It is based on the generation of a code property graph (CPG), a program representation previously adopted for detecting vulnerabilities in various languages but hitherto unapplied to WebAssembly. We formalize the definition of CPG for WebAssembly, introduce techniques to generate CPG for complex WebAssembly, and present four different query specification languages for finding vulnerabilities by traversing a program's CPG. We implemented ten queries capturing different vulnerability types and extensively tested Wasmati on four heterogeneous datasets. We show that Wasmati can scale the generation of CPGs for large real-world applications and can efficiently find vulnerabilities for all our query types. We have also tested our tool on WebAssembly binaries collected in the wild and identified several potential vulnerabilities, some of which we have manually confirmed to exist unless the enclosing application properly sanitizes the interaction with such affected binaries.

0 citations0 reviewsNo code linkedOpen access
preprint2020arXiv

ARCHI: pipeline for light curve extraction of CHEOPS background star

High precision time series photometry from space is being used for a number of scientific cases. In this context, the recently launched CHEOPS (ESA) mission promises to bring 20 ppm precision over an exposure time of 6 hours, when targeting nearby bright stars, having in mind the detailed characterization of exoplanetary systems through transit measurements. However, the official CHEOPS (ESA) mission pipeline only provides photometry for the main target (the central star in the field). In order to explore the potential of CHEOPS photometry for all stars in the field, in this paper we present archi, an additional open-source pipeline module†to analyse the background stars present in the image. As archi uses the official Data Reduction Pipeline data as input, it is not meant to be used as independent tool to process raw CHEOPS data but, instead, to be used as an add-on to the official pipeline. We test archi using CHEOPS simulated images, and show that photometry of background stars in CHEOPS images is only slightly degraded (by a factor of 2 to 3) with respect to the main target. This opens a potential for the use of CHEOPS to produce photometric time series of several close-by targets at once, as well as to use different stars in the image to calibrate systematic errors. We also show one clear scientific application where the study of the companion light curve can be important for the understanding of the contamination on the main target.

0 citations0 reviewsNo code linkedOpen access
preprint2020arXiv

Detectability of Life Using Oxygen on Pelagic Planets and Water Worlds

The search for life on exoplanets is one of the grand scientific challenges of our time. The strategy to date has been to find (e.g., through transit surveys like Kepler) Earth-like exoplanets in their stars habitable zone, then use transmission spectroscopy to measure biosignature gases, especially oxygen, in the planets atmospheres (e.g., using JWST, the James Webb Space Telescope). Already there are more such planets than can be observed by JWST, and missions like the Transiting Exoplanet Survey Satellite and others will find more. A better understanding of the geochemical cycles relevant to biosignature gases is needed, to prioritize targets for costly follow-up observations and to help design future missions. We define a Detectability Index to quantify the likelihood that a biosignature gas could be assigned a biological vs. non-biological origin. We apply this index to the case of oxygen gas, O2, on Earth-like planets with varying water contents. We demonstrate that on Earth-like exoplanets with 0.2 weight percent (wt%) water (i.e., no exposed continents) a reduced flux of bioessential phosphorus limits the export of photosynthetically produced atmospheric O2 to levels indistinguishable from geophysical production by photolysis of water plus hydrogen escape. Higher water contents >1wt% that lead to high-pressure ice mantles further slow phosphorus cycling. Paradoxically, the maximum water content allowing use of O2 as a biosignature, 0.2wt%, is consistent with no water based on mass and radius. Thus, the utility of an O2 biosignature likely requires the direct detection of both water and land on a planet.

0 citations0 reviewsNo code linkedOpen access
preprint2019arXiv

The impact of atmospheric dispersion in the performance of high-resolution spectrographs

Differential atmospheric dispersion is a wavelength-dependent effect introduced by the atmosphere. It is one of the instrumental errors that can affect the position of the target as perceived on the sky and its flux distribution. This effect will affect the results of astronomical observations if not corrected by an atmospheric dispersion corrector (ADC). In high-resolution spectrographs, in order to reach a radial velocity (RV) precision of 10 cm/s, an ADC is expected to return residuals at only a few tens of milli-arcseconds (mas). In fact, current state-of-the-art spectrographs conservatively require this level of residuals, although no work has been done to quantify the impact of atmospheric dispersion. In this work we test the effect of atmospheric dispersion on astronomical observations in general, and in particular on RV precision degradation and flux losses. Our scientific objective was to quantify the amount of residuals needed to fulfill the requirements set on an ADC during the design phase. We found that up to a dispersion of 100 mas, the effect on the RV is negligible. However, on the flux losses, such a dispersion can create a loss of ~2% at 380 nm, a significant value when efficiency is critical. The requirements set on ADC residuals should take into consideration the atmospheric conditions where the ADC will function, and also all the aspects related with not only the RV precision requirements but also the guiding camera used, the tolerances on the flux loss, and the different melt data of the chosen glasses.

0 citations0 reviewsNo code linkedOpen access
preprint2013arXiv

Spectroscopic direct detection of reflected light from extra-solar planets

At optical wavelengths, an exoplanet's signature is essentially reflected light from the host star - several orders of magnitude fainter. Since it is superimposed on the star spectrum its detection has been a difficult observational challenge. However, the development of a new generation of instruments like ESPRESSO and next generation telescopes like the E-ELT put us in a privileged position to detect these planets' reflected light as we will have access to extremely high signal-to-noise ratio spectra. With this work, we propose an alternative approach for the direct detection of the reflected light of an exoplanet. We simulated observations with ESPRESSO@VLT and HIRES@E-ELT of several star+planet systems, encompassing 10h of the most favourable orbital phases. To the simulated spectra we applied the Cross Correlation Function to operate in a much higher signal-to-noise ratio domain than when compared with the spectra. The use of the Cross-Correlation Function permitted us to recover the simulated the planet signals at a level above 3 σ_{noise} significance on several prototypical (e.g., Neptune type planet with a 2 days orbit with the VLT at 4.4 σ_{noise} significance) and real planetary systems (e.g., 55 Cnc e with the E-ELT at 4.9 σ_{noise} significance). Even by using a more pessimistic approach to the noise level estimation, where systematics in the spectra increase the noise 2-3 times, the detection of the reflected light from large close-orbit planets is possible. We have also shown that this kind of study is currently within reach of current instruments and telescopes (e.g., 51 Peg b with the VLT at 5.2 σ_{noise} significance), although at the limit of their capabilities.

0 citations0 reviewsNo code linkedOpen access