Comments on a Provably Secure Three-Party Password-Based Authenticated Key Exchange Protoco

Table of ContentsModern Cryptography: Theory and PracticeBy Wenbo Mao Hewlett-Packard CompanyPublisher: Prentice Hall PTRPub Date: July 25, 2003ISBN: 0-13-066943-1Pages: 648Many cryptographic schemes and protocols, especially those based onpublic-keycryptography,have basic or so-called "textbook crypto" versions, as these versionsare usually the subjects formany textbooks on cryptography. This book takes adifferent approach to introducingcryptography: it pays much more attention tofit-for-application aspects of cryptography. Itexplains why "textbook crypto" isonly good in an ideal world where data are random and badguys behave nicely.It reveals the general unfitness of "textbook crypto" for the real world bydemonstratingnumerous attacks on such schemes, protocols and systems under variousrealworldapplication scenarios. This book chooses to introduce a set of practicalcryptographic schemes, protocols and systems, many of them standards or de factoones, studies them closely,explains their working principles, discusses their practicalusages, and examines their strong(i.e., fit-for-application) security properties, oftenwith security evidence formally established.The book also includes self-containedtheoretical background material that is the foundation formodern cryptography.Table of ContentsModern Cryptography: Theory and PracticeBy Wenbo Mao Hewlett-Packard CompanyPublisher: Prentice Hall PTRPub Date: July 25, 2003ISBN: 0-13-066943-1Pages: 648CopyrightHewlett-Packard® Professional BooksA Short Description of the BookPrefaceScopeAcknowledgementsList of FiguresList of Algorithms, Protocols and AttacksPart I: IntroductionChapter 1. Beginning with a Simple Communication GameSection 1.1. A Communication GameSection 1.2. Criteria for Desirable Cryptographic Systems and Protocols Section 1.3. Chapter SummaryExercisesChapter 2. Wrestling Between Safeguard and AttackSection 2.1. IntroductionSection 2.2. EncryptionSection 2.3. Vulnerable Environment (the Dolev-Yao Threat Model)Section 2.4. Authentication ServersSection 2.5. Security Properties for Authenticated Key Establishment Section 2.6. Protocols for Authenticated Key Establishment Using Encryption Section 2.7. Chapter SummaryExercisesPart II: Mathematical Foundations: Standard NotationChapter 3. Probability and Information TheorySection 3.1. IntroductionSection 3.2. Basic Concept of ProbabilitySection 3.3. PropertiesSection 3.4. Basic CalculationSection 3.5. Random Variables and their Probability DistributionsSection 3.6. Birthday ParadoxSection 3.7. Information TheorySection 3.8. Redundancy in Natural LanguagesSection 3.9. Chapter SummaryExercisesChapter 4. Computational ComplexitySection 4.1. IntroductionSection 4.2. Turing MachinesSection 4.3. Deterministic Polynomial TimeSection 4.4. Probabilistic Polynomial TimeSection 4.5. Non-deterministic Polynomial TimeSection 4.6. Non-Polynomial BoundsSection 4.7. Polynomial-time IndistinguishabilitySection 4.8. Theory of Computational Complexity and Modern Cryptography Section 4.9. Chapter SummaryExercisesChapter 5. Algebraic FoundationsSection 5.1. IntroductionSection 5.2. GroupsSection 5.3. Rings and FieldsSection 5.4. The Structure of Finite FieldsSection 5.5. Group Constructed Using Points on an Elliptic CurveSection 5.6. Chapter SummaryExercisesChapter 6. Number TheorySection 6.1. IntroductionSection 6.2. Congruences and Residue ClassesSection 6.3. Euler's Phi FunctionSection 6.4. The Theorems of Fermat, Euler and LagrangeSection 6.5. Quadratic ResiduesSection 6.6. Square Roots Modulo IntegerSection 6.7. Blum IntegersSection 6.8. Chapter SummaryExercisesPart III: Basic Cryptographic TechniquesChapter 7. Encryption — Symmetric TechniquesSection 7.1. IntroductionSection 7.2. DefinitionSection 7.3. Substitution CiphersSection 7.4. Transposition CiphersSection 7.5. Classical Ciphers: Usefulness and SecuritySection 7.6. The Data Encryption Standard (DES)Section 7.7. The Advanced Encryption Standard (AES)Section 7.8. Confidentiality Modes of OperationSection 7.9. Key Channel Establishment for Symmetric Cryptosystems Section 7.10. Chapter SummaryExercisesChapter 8. Encryption — Asymmetric TechniquesSection 8.1. IntroductionSection 8.2. Insecurity of "Textbook Encryption Algorithms"Section 8.3. The Diffie-Hellman Key Exchange ProtocolSection 8.4. The Diffie-Hellman Problem and the Discrete Logarithm Problem Section 8.5. The RSA Cryptosystem (Textbook Version)Section 8.6. Cryptanalysis Against Public-key CryptosystemsSection 8.7. The RSA ProblemSection 8.8. The Integer Factorization ProblemSection 8.9. Insecurity of the Textbook RSA EncryptionSection 8.10. The Rabin Cryptosystem (Textbook Version)Section 8.11. Insecurity of the Textbook Rabin EncryptionSection 8.12. The ElGamal Cryptosystem (Textbook Version)Section 8.13. Insecurity of the Textbook ElGamal EncryptionSection 8.14. Need for Stronger Security Notions for Public-key CryptosystemsSection 8.15. Combination of Asymmetric and Symmetric CryptographySection 8.16. Key Channel Establishment for Public-key CryptosystemsSection 8.17. Chapter SummaryExercisesChapter 9. In An Ideal World: Bit Security of The Basic Public-Key Cryptographic Functions Section 9.1. IntroductionSection 9.2. The RSA BitSection 9.3. The Rabin BitSection 9.4. The ElGamal BitSection 9.5. The Discrete Logarithm BitSection 9.6. Chapter SummaryExercisesChapter 10. Data Integrity TechniquesSection 10.1. IntroductionSection 10.2. DefinitionSection 10.3. Symmetric TechniquesSection 10.4. Asymmetric Techniques I: Digital SignaturesSection 10.5. Asymmetric Techniques II: Data Integrity Without Source Identification Section 10.6. Chapter SummaryExercisesPart IV: AuthenticationChapter 11. Authentication Protocols — PrinciplesSection 11.1. IntroductionSection 11.2. Authentication and Refined NotionsSection 11.3. ConventionSection 11.4. Basic Authentication TechniquesSection 11.5. Password-based AuthenticationSection 11.6. Authenticated Key Exchange Based on Asymmetric CryptographySection 11.7. Typical Attacks on Authentication ProtocolsSection 11.8. A Brief Literature NoteSection 11.9. Chapter SummaryExercisesChapter 12. Authentication Protocols — The Real WorldSection 12.1. IntroductionSection 12.2. Authentication Protocols for Internet SecuritySection 12.3. The Secure Shell (SSH) Remote Login ProtocolSection 12.4. The Kerberos Protocol and its Realization in Windows 2000Section 12.5. SSL and TLSSection 12.6. Chapter SummaryExercisesChapter 13. Authentication Framework for Public-Key CryptographySection 13.1. IntroductionSection 13.2. Directory-Based Authentication FrameworkSection 13.3. Non-Directory Based Public-key Authentication FrameworkSection 13.4. Chapter SummaryExercisesPart V: Formal Approaches to Security EstablishmentChapter 14. Formal and Strong Security Definitions for Public-Key Cryptosystems Section 14.1. IntroductionSection 14.2. A Formal Treatment for SecuritySection 14.3. Semantic Security — the Debut of Provable SecuritySection 14.4. Inadequacy of Semantic SecuritySection 14.5. Beyond Semantic SecuritySection 14.6. Chapter SummaryExercisesChapter 15. Provably Secure and Efficient Public-Key CryptosystemsSection 15.1. IntroductionSection 15.2. The Optimal Asymmetric Encryption PaddingSection 15.3. The Cramer-Shoup Public-key CryptosystemSection 15.4. An Overview of Provably Secure Hybrid CryptosystemsSection 15.5. Literature Notes on Practical and Provably Secure Public-key Cryptosystems Section 15.6. Chapter SummarySection 15.7. ExercisesChapter 16. Strong and Provable Security for Digital SignaturesSection 16.1. IntroductionSection 16.2. Strong Security Notion for Digital SignaturesSection 16.3. Strong and Provable Security for ElGamal-family SignaturesSection 16.4. Fit-for-application Ways for Signing in RSA and RabinSection 16.5. SigncryptionSection 16.6. Chapter SummarySection 16.7. ExercisesChapter 17. Formal Methods for Authentication Protocols AnalysisSection 17.1. IntroductionSection 17.2. Toward Formal Specification of Authentication ProtocolsSection 17.3. A Computational View of Correct Protocols — the Bellare-Rogaway Model Section 17.4. A Symbolic Manipulation View of Correct ProtocolsSection 17.5. Formal Analysis Techniques: State System ExplorationSection 17.6. Reconciling Two Views of Formal Techniques for SecuritySection 17.7. Chapter SummaryExercisesPart VI: Cryptographic ProtocolsChapter 18. Zero-Knowledge ProtocolsSection 18.1. IntroductionSection 18.2. Basic DefinitionsSection 18.3. Zero-knowledge PropertiesSection 18.4. Proof or Argument?Section 18.5. Protocols with Two-sided-errorSection 18.6. Round EfficiencySection 18.7. Non-interactive Zero-knowledgeSection 18.8. Chapter SummaryExercisesChapter 19. Returning to "Coin Flipping Over Telephone"Section 19.1. Blum's "Coin-Flipping-By-Telephone" ProtocolSection 19.2. Security AnalysisSection 19.3. EfficiencySection 19.4. Chapter SummaryChapter 20. AfterremarkBibliographyCopyrightLibrary of Congress Cataloging-in-Publication DataA CIP catalog record for this book can be obtained from the Library of Congress. Editorial/production supervision: Mary SudulCover design director: Jerry VottaCover design: Talar BoorujyManufacturing manager: Maura ZaldivarAcquisitions editor: Jill HarryMarketing manager: Dan DePasqualePublisher, Hewlett-Packard Books: Walter BruceA Short Description of the BookMany cryptographic schemes and protocols, especially those based on public-key cryptography,have basic or so-called "textbook crypto" versions, as these versions are usually the subjects formany textbooks on cryptography. This book takes a different approach to introducingcryptography: it pays much more attention to fit-for-application aspects of cryptography. Itexplains why "textbook crypto" is only good in an ideal world where data are random and badguys behave nicely. It reveals the general unfitness of "textbook crypto" for the real world bydemonstrating numerous attacks on such schemes, protocols and systems under various realworldapplication scenarios. This book chooses to introduce a set of practical cryptographicschemes, protocols and systems, many of them standards or de facto ones, studies them closely,explains their working principles, discusses their practical usages, and examines their strong(i.e., fit-for-application) security properties, often with security evidence formally established.The book also includes self-contained theoretical background material that is the foundation formodern cryptography.PrefaceOur society has entered an era where commerce activities, business transactions andgovernment services have been, and more and more of them will be, conducted and offered overopen computer and communications networks such as the Internet, in particular, viaWorldWideWeb-based tools. Doing things online has a great advantage of an always-onavailability to people in any corner of the world. Here are a few examples of things that havebeen, can or will be done online:Banking, bill payment, home shopping, stock trading, auctions, taxation, gambling, micropayment(e.g., pay-per-downloading), electronic identity, online access to medical records, virtual private networking, secure data archival and retrieval, certified delivery of documents, fair exchange of sensitive documents, fair signing of contracts,time-stamping,notarization, voting, advertising, licensing, ticket booking, interactive games, digitallibraries, digital rights management, pirate tracing, …And more can be imagined.Many cryptographic schemes and protocols, especially those based onpublic-keycryptography,have basic or so-called "textbook crypto" versions, as these versionsare usually the subjects formany textbooks on cryptography. This book takes adifferent approach to introducingcryptography: it pays much more attention tofit-for-application aspects of cryptography. Itexplains why "textbook crypto" isonly good in an ideal world where data are random and badguys behave nicely.It reveals the general unfitness of "textbook crypto" for the real world bydemonstratingnumerous attacks on such schemes, protocols and systems under variousrealworldapplication scenarios. This book chooses to introduce a set of practicalcryptographic schemes, protocols and systems, many of them standards or de factoones, studies them closely,explains their working principles, discusses their practicalusages, and examines their strong(i.e., fit-for-application) security properties, oftenwith security evidence formally established.The book also includes self-containedtheoretical background material that is the foundation formodern cryptography.PrefaceOur society has entered an era where commerce activities, business transactions andgovernment services have been, and more and more of them will be, conducted and offered overopen computer and communications networks such as the Internet, in particular, viaWorldWideWeb-based tools. Doing things online has a great advantage of an always-onavailability to people in any corner of the world. Here are a few examples of things that havebeen, can or will be done online:Banking, bill payment, home shopping, stock trading, auctions, taxation, gambling, micropayment(e.g., pay-per-downloading), electronic identity, online access to medical records, virtual private networking, secure data archival and retrieval, certified delivery of documents, fair exchange of sensitive documents, fair signing of contracts,time-stamping,notarization, voting, advertising, licensing, ticket booking, interactive games, digitallibraries, digital rights management, pirate tracing, …And more can be imagined.Fascinating commerce activities, transactions and services like these are only possible ifcommunications over open networks can be conducted in a secure manner. An effective solutionto securing communications over open networks is to apply cryptography. Encryption, digitalsignatures, password-based user authentication, are some of the most basic cryptographictechniques for securing communications. However, as we shall witness many times in this book,there are surprising subtleties and serious security consequences in the applicationsof even themost basic cryptographic techniques. Moreover, for many "fancier" applications, such as manylisted in the preceding paragraph, the basic cryptographic techniques are no longer adequate.With an increasingly large demand for safeguarding communications over open networks formore and more sophisticated forms of electronic commerce, business and services[a], anincreasingly large number of information security professionals will be needed for designing,developing, analyzing and maintaining information security systems and cryptographicprotocols. These professionals may range from IT systems administrators, information securityengineers and software/hardware systems developers whose products have securityrequirements, to cryptographers.[a] Gartner Group forecasts that total electronic business revenues for business to business (B2B) andbusiness to consumer (B2C) in the European Union will reach a projected US $2.6 trillion in 2004 (withprobability 0.7) which is a 28-fold increase from the level of 2000 [5]. Also, eMarketer [104] (page 41) reportsthat the cost to financial institutions (in USA) due to electronic identity theft was US $1.4 billion in 2002, andforecasts to grow by a compound annual growth rate of 29%.In the past few years, the author, a technical consultant on information security and cryptographic systems at Hewlett-Packard Laboratories in Bristol, has witnessed the phenomenon of a progressively increased demand for information security professionalsunmatched by an evident shortage of them. As a result, many engineers, who are oriented toapplication problems and may have little proper training in cryptography and informationsecurity have become "roll-up-sleeves" designers and developers for information securitysystems or cryptographic protocols. This is in spite of the fact that designing cryptographicsystems and protocols is a difficult job even for an expert cryptographer.The author's job has granted him privileged opportunities to review many information securitysystems and cryptographic protocols, some of them proposed and designed by "roll-up-sleeves"engineers and are for uses in serious applications. In several occasions, the author observed socalled"textbook crypto" features in such systems, which are the result of applications of cryptographic algorithms and schemes in ways they are usually introduced in many cryptographic textbooks. Direct encryption of a password (a secret number of a smallmagnitude) under a basic public-key encryption algorithm (e.g., "RSA") is a typical example oftextbook crypto. The appearances of textbook crypto in serious applications with a "nonnegligibleprobability" have caused a concern for the author to realize that the general danger oftextbook crypto is not widely known to many people who design and develop informationsecurity systems for serious real-world applications.Motivated by an increasing demand for information security professionals and a belief that theirknowledge in cryptography should not be limited to textbook crypto, the author has written thisbook as a textbook on non-textbook cryptography. This book endeavors to: Introduce a wide range of cryptographic algorithms, schemes and protocols with a particular emphasis on their non-textbook versions.Reveal general insecurity of textbook crypto by demonstrating a large number of attacks onand summarizing typical attacking techniques for such systems.Provide principles and guidelines for the design, analysis and implementation of cryptographic systems and protocols with a focus on standards.Study formalism techniques and methodologies for a rigorous establishment of strong andfit-for-application security notions for cryptographic systems and protocols. Include self-contained and elaborated material as theoretical foundations of modern cryptography for readers who desire a systematic understanding of the subject.ScopeModern cryptography is a vast area of study as a result of fast advances made in the past thirtyyears. This book focuses on one aspect: introducing fit-for-application cryptographic schemesand protocols with their strong security properties evidently established.The book is organized into the following six parts:Part I This part contains two chapters (1—2) and serves an elementary-level introductionfor the book and the areas of cryptography and information security. Chapter 1 begins witha demonstration on the effectiveness of cryptography in solving a subtle communicationproblem. A simple cryptographic protocol (first protocol of the book) for achieving "fair cointossing over telephone" will be presented and discussed. This chapter then carries on toconduct a cultural and "trade" introduction to the areas of study. Chapter 2 uses a series ofsimple authentication protocols to manifest an unfortunate fact in the areas: pitfalls areeverywhere.As an elementary-level introduction, this part is intended for newcomers to the areas.Part II This part contains four chapters (3—6) as a set of mathematical background knowledge, facts and basis to serve as a self-contained mathematical reference guide forthe book. Readers who only intend to "knowhow," i.e., know how to use thefit-forapplicationcrypto schemes and protocols, may skip this part yet still be able to follow most contents of the rest of the book. Readers who also want to "know-why," i.e., know whythese schemes and protocols have strong security properties, may find that this selfcontainedmathematical part is a sufficient reference material. When we present working principles of cryptographic schemes and protocols, reveal insecurity for some of them andreason about security for the rest, it will always be possible for us to refer to a precise pointin this part of the book for supporting mathematical foundations.This part can also be used to conduct a systematic background study of the theoreticalfoundations for modern cryptography.Part III This part contains four chapters (7—10) introducing the most basic cryptographicalgorithms and techniques for providing privacy and data integrity protections. Chapter 7 isfor symmetric encryption schemes, Chapter 8, asymmetric techniques. Chapter 9 considersan important security quality possessed by the basic and popular asymmetric cryptographicfunctions when they are used in an ideal world in which data are random. Finally, Chapter10 covers data integrity techniques.Since the schemes and techniques introduced here are the most basic ones, manyof themare in fact in the textbook crypto category and are consequently insecure. While the schemes are introduced, abundant attacks on many schemes will be demonstrated withwarning remarks explicitly stated. For practitioners who do not plan to proceed with an indepthstudy of fit-for-application crypto and their strong security notions, this textbook crypto part will still provide these readers with explicit early warning signals on the generalinsecurity of textbook crypto.Part IV This part contains three chapters (11—13) introducing an important notion inapplied cryptography and information security: authentication. These chapters provide awide coverage of the topic. Chapter 11 includes technical background, principles, a series ofbasic protocols and standards, common attacking tricks and prevention measures. Chapter12 is a case study for four well-known authentication protocol systems for real world applications. Chapter 13 introduces techniques which are particularly suitable for openfor-application) security properties, oftenwith security evidence formally established.The book also includes self-containedtheoretical background material that is the foundation formodern cryptography.systems which cover up-to-date and novel techniques.Practitioners, such as information security systems administration staff in an enterprise andsoftware/hardware developers whose products have security consequences may find thispart helpful.Part V This part contains four chapters (14—17) which provide formalism and rigoroustreatments for strong (i.e., fit-for-application) security notions for public-key cryptographictechniques (encryption, signature and signcryption) and formal methodologies for theanalysis of authentication protocols. Chapter 14 introduces formal definitions of strongsecurity notions. The next two chapters are fit-for-application counterparts to textbookcrypto schemes introduced in Part III, with strong security properties formally established(i.e., evidently reasoned). Finally, Chapter 17 introduces formal analysismethodologiesand techniques for the analysis of authentication protocols, which we have not been able todeal with in Part IV.Part VI This is the final part of the book. It contains two technical chapters (18—19) and ashort final remark (Chapter 20). The main technical content of this part, Chapter 18, introduces a class of cryptographic protocols called zero-knowledge protocols. Theseprotocols provide an important security service which is needed in various "fancy" electronic commerce and business applications: verification of a claimed property of secretdata (e.g., in conforming with a business requirement) while preserving a strict privacyquality for the claimant. Zero-knowledge protocols to be introduced in this part exemplifythe diversity of special security needs in various real world applications, which are beyondconfidentiality, integrity, authentication and non-repudiation. In the final technical chapterof the book (Chapter 19) we will complete our job which has been left over from the firstprotocol of the book: to realize "fair coin tossing over telephone." That final realization willachieve a protocol which has evidently-established strong security properties yet with anefficiency suitable for practical applications.Needless to say, a description for each fit-for-application crypto scheme or protocol has to beginwith a reason why the textbook crypto counterpart is unfit for application. Invariably, thesereasons are demonstrated by attacks on these schemes or protocols, which, by the nature ofattacks, often contain a certain degree of subtleties. In addition, a description of a fit-forapplicationscheme or protocol must also end at an analysis that the strong (i.e.,fit-forapplication)security properties do hold as claimed. Consequently, some parts of this book inevitably contain mathematical and logical reasonings, deductions and transformations in orderto manifest attacks and fixes.While admittedly fit-for-application cryptography is not a topic for quick mastery or that can bemastered via light reading, this book, nonetheless, is not one for in-depth researchtopics whichwill only be of interest to specialist cryptographers. The things reported and explained in it arewell-known and quite elementary to cryptographers. The author believes that they can also becomprehended by non-specialists if the introduction to the subject is provided with plenty ofexplanations and examples and is supported by self-contained mathematical background andreference material.The book is aimed at the following readers.Students who have completed, or are near to completion of, first degree courses in computer, information science or applied mathematics, and plan to pursue a career ininformation security. For them, this book may serve as an advanced course in appliedcryptography.Security engineers in high-tech companies who are responsible for the design and development of information security systems. If we say that the consequence of textbookcrypto appearing in an academic research proposal may not be too harmful since the worstcase of the consequence would be an embarrassment, then the use of textbook crypto in aninformation security product may lead to a serious loss. Therefore, knowing the unfitness oftextbook crypto for real world applications is necessary for these readers. Moreover, thesereaders should have a good understanding of the security principles behind thefit-forapplicationschemes and protocols and so they can apply the schemes and the principles correctly. The self-contained mathematical foundations material in Part II makes the book asuitable self-teaching text for these readers.Information security systems administration staff in an enterprise andsoftware/hardwaresystems developers whose products have security consequences. For these readers, Part Iis a simple and essential course for cultural and "trade" training; Parts III and IV form asuitable cut-down set of knowledge in cryptography and information security. These threeparts contain many basic crypto schemes and protocols accompanied with plenty of attacking tricks and prevention measures which should be known to and can be grasped by。

Julia:A Generic Static Analyser for the Java BytecodeFausto SpotoDipartimento di Informatica,Verona,Italyfausto.spoto@univr.itAbstract.We describe our software tool Julia for the static analysisof full Java bytecode,for optimisation as well as verification.This toolis generic since abstract domains(analyses)are not part of Julia butrather external classes that specialise its behaviour.Static analysis isperformed through a denotational or constraint-basedfixpoint calcula-tion,focused on some program points called watchpoints.These pointsspecify where the result of the analysis is useful,and can be automati-cally placed by the abstract domain or manually provided by the user.Julia can be instructed to include a given set of library Java classes inthe analysis,in order to improve its precision.Moreover,it gives abstractdomains the opportunity to approximate control and data-flow arisingfrom exceptions and subroutines.1IntroductionThis paper describes the Julia software tool that we have developed in order to apply the abstract interpretation technique[10]to the static analysis of Java bytecode[16].The motivation underlying our effort is to provide a software support for optimising,verifying and reasoning upon Java bytecode applications before they are run,and when their source code is not available or does not even exist.Forseeing the behaviour of programs,before their actual execution, becomes more and more relevant as such programs increase in complexity and get used in critical situations such as medical operations,flight control or banking cards.Being able to prove,in an automatic way,that programs do adhere to their functional specifications is a basic factor to their success.This is particularly true for applications written in Java bytecode,distributed on the Internet or used inside a smart card,and hence potentially harmful to the client.In this perspective,analyses for security are attracting more and more interest[20].But the information inferred by a static analysis can also be used for optimisation, documentation and debugging.Abstract interpretation[10]has served as a primary framework for the formal derivation of static analyses from the property of interest.It features the ability to express correctness as well as optimality of a static analysis.It consists in executing the program over a description(the abstract domain)of the actual run-time data.By saturating all possible program execution paths,we get adomain description743841775101610302659539Fig.1.The abstract domains currently implemented inside Julia.Their size is given in number of Java source code lines,comments included.provably correct picture of its run-time behaviour,which is more or less precise, depending on how much the chosen description approximates the actual data.The goal of Julia was to fulfill the following criteria:–the analyser is generic i.e.,it does not embed any specific abstract domain but allows instead the addition of new abstract domains as external classes;–the analyser allows one to specify the set of classes which must be analysed, called the application classes.They must not change from analysis-time to run-time(through dynamic loading);this would otherwise break the correct-ness of the analysis;–the abstract domain developer has his work simplified as much as possible.Namely,he must be able to apply the formal framework of abstract interpre-tation to define its abstract domain,even for the most complex bytecodes and in the presence of all the intricacies of the Java bytecode.All he needs to do is to provide implementations of the abstract operations corresponding to the concrete bytecodes,together with a bottom element and a least upper bound operator;–the analysis is localised i.e.,its cost is proportional to the number of program points where the abstract information must be computed(the watchpoints);–the analyser does not impose any constraint on the precision of the abstract ly,it allows a given abstract domain to exploit theflow of control due to exceptions and subroutines to get a more precise analysis,yet allowing another domain to disregard the sameflows and get a less precise analysis.Precision remains a domain-related issue[10];–the analyser uses efficient techniques for computing thefixpoint needed for the static analysis[10].These techniques are domain-independent,so that the abstract domain developer does not need to care about how thefixpoint is computed for its abstract domain.Julia is free software[23].It currently includes seven abstract domains, which are described in Figure1.Class analysis is used to transform some virtual calls into static calls,whenever their target is statically determined[25].Escape analysis determines which creation instructions can safely allocate objects in the activation stack instead of the heap,since those objects will never outlive themethod which creates them[7,15].Information-flow analysis approximates the flow of data in a program,permitting one to spot violations of non-interference conditions in the analysis of security[20].Static initialisation analysis determines the set of classes which are definitely initialised in a given program point,so that references to such classes do not induce a call to their static initialiser.We discuss it in Section9as a simple example of abstract domain.The paper is organised as follows.Section2describes related work.Sections3 to8show how each of the previous criteria have been attained with Julia. Section9shows an example of abstract domain which can be plugged inside Julia.Section10discusses the application of Julia to multi-threaded programs. Section11presents the cost in time for the analysis of some non-trivial Java bytecode applications.Section12concludes.2Related WorkBecause of the actual complexity of the Java bytecode,static analysers for full Java bytecode have not been developed intensively yet.A decompilation tool,such as Soot[26],is often used as the front-end of a static analyser for Java bytecode.Currently,class analyses similar to rapid type analysis are implemented inside Soot.Decompilation is problematic when the bytecode is not the result of the compilation of Java,and maybe contains some exotic features of the Java bytecode that have no direct counterpart in Java, such as overlapping or recursive exception handlers(i.e.,catching exceptions thrown by themselves),or recursive Java bytecode subroutines(which cannot be decompiled into finally clauses).The Indus tool[1]is an analyser based on Soot.It currently includes someflavour of class analysis,escape analysis and analyses targetted for concurrent programs,to be coupled with a model-checker.In[17],a set of tools and components for building language runtimes is shown.The bytecode they consider includes the Java bytecode as a special case. Such tools have been used to implement some static analyses as well.Their code preprocessing is much lighter than ours and consequently much faster.A generic analyser for a subset of Java(rather than Java bytecode)is de-scribed in[19].It has only be applied to small programs.It allows completely relational,flow and context-sensitive static analyses.In this sense it is quite close to our work.Variousflavours of rapid class analyses have been implemented in[25].The tool is not available and genericity is not mentioned.Some benchmarks are similar to ours and their analysis seems faster than ours.Escape analysis has been implemented through specialised analysers for Java source code only,rather than Java bytecode.For instance,the analysis in[7] works inside a commercial Java compiler.The construction is specific to escape analysis,and it cannot be immediately applied to other analyses.A more complex escape analysis has been implemented in[9]and it seems to perform like ours. However,it is not a generic nor localised tool.A generic analyser for the Java Card bytecode has been defined in [8].The approach is fascinating,since it is based on the automatic derivation of a correct static analyser from its same proof of correctness.However,the Java Card byte-code is simpler than the Java bytecode.Moreover,exceptions are not considered.No examples of analysis are shown.Hence,actual analysis times are unknown.jDF A [2]performs constant propagation and liveness analysis for variables,but none of the analyses we show in Figure 9.JNUKE [4]performs dynamic rather than static analysis.No sensible comparison is hence possible with Julia 3A Generic AnalyserBeing generic is a useful feature of a modern static analyser.Current program-ming languages,such as the Java bytecode,are so complex that the development of a new static analysis is hard and error-prone.However,different static analyses do share a lot.The preprocessing phase (Section 5)and the fixpoint computa-tion (Section 8)are the same for every abstract domain.And they represent by themselves most of the development effort of a static analysis.It is hence convenient to develop and debug them once and for all,and to see new abstract domains as plug-in’s which are added to the static analyser in order to specialise its behaviour.Genericity requires however to provide an interface between the code prepro-cessor and the analyser.We solved this problem by specifying all bytecodes as state transformers.For each state transformer the abstract domain provides an approximation (see for instance Section9).bytecode results Julia Fig.2.The structure of Julia .To fulfill this requirement,westructured Julia as in Figure 2.Acode preprocessor,called Romeo ,feeds the preprocessed code into a generic fixpoint engine calledJuliet .The latter uses an exter-nal module,the abstract domain,to abstract every single bytecode,but uses its own fixpoint strategies,independent from the abstract do-main.The Bcel library [12]is alow-level interface to .class files.Figure 1shows that genericityleads to small abstract domain implementations,and hence faster and simpler development.4Application ClassesThe Java Virtual Machine loads classes dynamically as they are needed during the execution of a program.Hence,we have no guarantee that the classes that will be loaded at run-time will correspond to those that were present in the systemduring the static analysis.We might think to analyse a class without assuming anything about its surrounding environment.Any reference to an external class is treated through a worst-case assumption[11]claiming that nothing is known about its outcome.This is definitely correct,but often useless in an object-oriented language,where classes are tightly coupled through virtual method invocations,field accesses and constructor chaining.This approach results in static analyses of very little precision.Instead,we follow here the solution to this problem used in the decompilation tool Soot[26],which allows one to make explicit assumptions about which classes(called application classes)are not allowed to change from analysis-time to run-time.As a consequence,we can inspect them during the analysis and gather abstract information which improves the precision of the analysis.Application classes are typically those of the application we are analysing. Libraries are not considered application classes,usually.Hence,any reference to a library class is resolved through the worst-case assumption.However,stronger hypotheses than the worst-case assumption can be made.For instance,in[25], the set of application classes is assumed to be closed wrt.subclassing.This improves the precision of the analysis.We assume that every abstract domain plugged inside Julia decides how to deal with references to non-application classes.It can use a worst-case assump-tion or other,stronger hypotheses.This must be clearly stated in its definition, so that the user of Julia can judge whether such hypotheses are realistic or not for his own analyses.For instance,our abstract domain rt for rapid type analysis assumes that application classes are downward closed,as in[25],while our domain er for escape analysis assumes that non-application classes have the same method andfield signatures as in the system used for the analysis;their implementation can however change.5Bytecode Simplification(Preprocessing)The application of abstract interpretation to a complex language such as the Java bytecode is a real challenge.This is because abstract interpretation allows us to derive a static analysis from a specification of the concrete semantics of a program given as an(operational or denotational)input/ouput map.But some Java bytecodes cannot be immediately seen as input/output maps.Examples are the control-related bytecodes such as goto or lookupswitch.Other bytecodes are input/ouput maps,but they are so complex that the application of abstract interpretation is very hard and error-prone.Examples are the four invoke byte-codes.Moreover,exceptions break the input/output behaviour of a bytecode, since for some input state there is no output state,but rather an exceptional state.We want to spare as much as possible the abstract domain developer from knowing the intricacies of the bytecode,and allow him to define correct(and potentially optimal)operations on the abstract domain corresponding to the concrete bytecodes.To this goal,we apply a light preprocessing to the Java bytecode,in the sense that most of the bytecodes,those which are already input/output maps,are not transformed.The result is a graph of basic blocks[3]of a simplified Java byte-code,which we call Juliet bytecode.Edges between basic blocks model control. Conditional jumps use newfilter bytecodes,which play exactly the same role as the assume statements used in[6].Thesefilter bytecodes can be used to improve the precision of a static analysis,as[6]shows.An example is in Section9.They can also be conservatively abstracted as no-ops.Figure3shows a bytecode and its translation into a graph of basic blocks,where the goon newfilter bytecodes select the execution path on the basis of the outcome of the ifnewκbytecode be-haves like the old newκbytecode,but it does not check for initialisation.All bytecodes in Figure4are now in-put/output maps.This compilation ofthe original new bytecode simplifies thesubsequent static analysis.An example is in Section9.In a similar way,an invoke instruction is compiled into a Juliet code which explicitly resolves the class,then resolves the method,then looks for the target method of the call (through a compiled lookup procedure),then creates the activation frame for the method,then calls the selected method andfinally moves the return value of the called method into the operand stack of the caller.The domain devel-oper does not need to know how a method is resolved and looked up by the Java Virtual Machine[16].He does not need to know about visibility modifiers, nor about the exceptions which might be thrown during the method call.Ev-erything has been compiled,he just has to abstract the resulting code.Also exception handlers are compiled into the code.xκyFig.4.The compilation of a new bytecode.Since Juliet bytecode is derived by splitting complex Java bytecodes,it is morefine-grained than Java bytecode.Hence all properties of the Java bytecode can be expressed as properties of Juliet bytecode.In particular,we claim that the resulting Juliet bytecode has the same concrete semantics as the original Java bytecode.We are confident in this result since most of the Java bytecodes are not changed during the translation.The most complex bytecodes are trans-lated by following their operational semantics in the Java Virtual Machine official documentation[16].Since a graph of basic blocks of bytecode is used,we canfit all the complex features of the Java bytecode into that formalism(see Section2).Namely,edges connecting the blocks of code let us represent exception handlers of any shape and recursive subroutines.6LocalisationThe information computed by a static analysis is typically useful in some special program points only,called watchpoints.The number and position of the watch-points depends on the way the abstract information is used to reason about the program.For instance,in the case of class analysis we want to know which virtual calls are actually determined i.e.,always lead to the same target method[25]. Hence a watchpoint must be put before the virtual calls of the program,so that we can use the abstract information collected there to spot determinism.In the case of escape analysis,we bracket,between an entry and an exit watchpoint, the methods containing a new bytecode.This allows us to spot the new byte-codes creating objects that never escape their creating method.Those objects can hence be allocated in the activation stack instead of the heap[7,15].Since,in general,watchpoints are internal program points,the denotation computed by a static analyser cannot be just an input/ouput map.A richer structure is needed.Moreover,it is desirable that the cost of the analysis scale with the number of watchpoints,in which case we say that the static analysis is focused or localised.This is important because it allows us to concentrate the typically little computational resources of time and memory on the watchpoints only,instead of the whole program.Hence larger programs can be analysed.A general framework for focused static analyses was developed in[22]for a simple high-level language.In[21]we show how it can be applied to the Java bytecode,by exploiting the same simplification of the bytecode highlighted in Section5.We have then implemented this localised analysis inside Juliet, thefixpoint engine of Julia.Our experiments confirm that the resulting static analyses outperform their unfocused versions[21].A positive property of our focused analyses is that the abstract domain de-veloper is not aware of how the focusing technique works[22,21].He develops his abstract domain as for a simple input/ouput analysis.Abstract domains for Julia put watchpoints automatically,since they are aware of the goal of the analysis they implement.We report an example in Section9.But the user can put watchpoints explicitly if he wants.Julia runs also unfocused,constraint-based analyses.Although they often perform worse than their focused versions,such analyses are often simpler to de-velop.For instance,we have developed both class and escape analysis in focused (denotational)and unfocused(constraint-based)way,which resulted in the fo-cused ps and er and in the unfocused cps and cer domains(Figure1).This does not mean that cps and cer are useless.Constraint-based static analyses can be made(completely or partially)flow-insensitive by merging(all or some) variable approximations.The same is much harder to achieve with denotational abstract domains.Hence,ifflow-sensitivity is not important,as experiments show for class and escape analysis,then constraint-based analyses provide fast static analyses.In other cases,such as static initialisation analysis and control-flow analysis,flow-sensitivity is very important,so denotational,localised static analyses should be preferred.7No Constraints on PrecisionAbstract interpretation[10]entails that the precision of a static analysis is domain-related.The precision of different domains can be formally compared without considering their implementation in the analysis.It is desirable that this situation be maintained in practice.Hence the analyser should not limit the precision of the analysis because of spurious constraints due to the way the analysis is implemented.Many static analyses compile the source program into a constraint whose solution is an approximation of the abstract behaviour of the program.This has the drawback that a given variable of the constraint is used to represent the approximation of a program variable throughout its whole existence.But a program variable can hold different values in different program points(flow sensitiveness).Hence,this technique merges all those approximations in the same variable,thus imposing a limit to the precision of the analysis.This situation improves by using variable splitting or variable indexing in or-der to multiply the variables used in the constraint to represent a given program variable.This means that the domain developer(who writes the compilation of the source program into a constraint)must be aware of the problem.Moreover,if a given method is called from different contexts,the same approximation is still used for all such calls.Method cloning[27]can be used here,which further complicates the analysis.Consequently,to the best of our knowledge,it has never been implemented for the Java bytecode.We prefer instead to stick to the traditional definition of abstract interpre-tation[10],so that static analysis works by computing a denotationalfixpoint over data-flow equations derived from the structure of the program.This results in aflow and context sensitive analysis.The abstract domain might decide not to exploit this opportunity of precision,but no constraint is imposed by the analyser itself.Similarly,the preprocessing of the Java bytecode performed by Julia(Sec-tion5)exposes theflows of control arising from the lookup procedures for virtual method invocations,from exceptions and from subroutines.Again,it is an ab-stract domain matter to decide whether thoseflows of control must be selectively chosen,in order to get a more precise analysis,or rather they must be considered as non-deterministic choices without any preference,thus getting a less precise analysis.Often,it is just a matter of trade-offbetween precision and cost of the analysis.For instance,the rt domain for rapid type analysis chooses between thoseflows non-deterministically,while the abstract domain ps for class analysis selects them in order to drive the analysis and collect more precise information. 8Fixpoint EngineComputing a globalfixpoint over data-flow equations can be computationally expensive or even prohibitive.We have used some techniques to tame this com-plexity issue.Thefirst consists in building the maximal strongly connected components of the call graph of basic blocks and methods.These components are then sorted topologically and used to build the analysis of the whole program through local fixpoints.There is a localfixpoint for each recursive component.For instance, Figure3contains three components.The static analyser works byfirst computing the analysis for component3(which does not require anyfixpoint)then the analysis for component2(which does require a localfixpoint)and,finally,the analysis for component1(without anyfixpoint).A second technique was originally developed for the static analysis of logic programs and is known as abstract compilation[14].During the abstract inter-pretation process,a given bytecode is repeatedly abstracted because of loops and recursion.It becomes hence convenient to abstract it once and for all,and com-pute thefixpoint over an abstract program i.e.,a program where each bytecode has been substituted with its abstraction into the abstract domain.For instance, the code shown in Figure3first gets abstracted into the chosen abstract domain, as Figure5shows.Then,thefixpoint mechanism is applied as before.Abstract compilation can be applied repeatedly.If the analysis a of a piece of code c is stable i.e.,it will not change anymore during the analysis,then c can be substituted with a.For instance,during the computation of the localfixpointFig.5.The abstract compilation of the program in Figure3.for component2in Figure5we compute repeatedly the sequential composition of a4and of a 6.It is hence convenient to compute these compositions once and for all,before thefixpoint mechanism starts.It must be noted that the abstract domain designer is not aware of the use of strongly connected components and abstract compilation,which are domain-independent techniques.Domain-specificfixpoint acceleration techniques will be added in the future to Julia,through widening operators[10].They are essential for using abstract domains with infinite ascending chains,such as polyhedra.9Writing Abstract Domains for JuliaNew abstract domains can be developed and plugged inside Julia.The domain developer must define the abstract counterparts of the concrete bytecodes,a bottom element,a least upper bound operator and how the watchpoints are put in the source code to perform the analysis implemented by the domain.Ab-stract domains for Julia are Java classes that extend juliet.BottomUpDomain, if localisation is used(Section6),or juliet.ConstraintDomain,otherwise.We describe here an abstract domain of thefirst kind,which is used for static initialisation analysis.This analysis collects the set of classes which are defi-nitely initialised in each given program point.This information is useful before a goon ifnotinitialised bytecode(Figure4),which might be found to be redundant.If that is the case,they can be safely re-moved from the code,so that subsequent static analyses(class,escape analysis, etc.)will run on a simplified program,and be potentially faster and more pre-cise.The set of initialised classes enlarges only when an initialiseκor a gooninitialised.From this idea,we implemented the abstract domain for static ini-tialisation shown in Figures6,7and8.In Figure6,we see that an abstract element contains the set initialised of definitely initialised classes.The init method prepares the domain for the static analysis.In our case,it puts a watchpoint in front of each goonifnotinitialised bytecodes,since they are always coupled with a goonifinitialised tests.There is also a method that computes the bottom element of the abstract domain,another that clones an abstract domain element and another that computes the least upper bound(lub)of two abstract domain elements.This last operation consists in the intersection of the two sets of initialised classes,since a class is definitely initialised after a conditional if it is definitely initialised at the end of both its branches.The compose method com-putes the sequential composition of two abstract domain elements.It computes the union of the classes which are definitely initialised in both.The analyse method computes the abstraction of a bytecode in occurring in a basic block cb (Section5).Normally,it returns an abstract domain element whose set of ini-tialised classes is empty,except for the initialiseκand goonifinitialisedκbytecode,and checks whether the set of initialised classes there includesκ.If this is the case, the corresponding test for initialisation is useless since it will always succeed.Appropriate import statements must be put at the beginning of Figure6. The actual code is in thefilestatic is needed since a keyword cannot be a package name in Java).However,the code in Figure6, 7and8is perfectly working,and able to analyse all valid Java bytecode.For instance,you can apply it to itself(i.e.,its compiled code)in library mode i.e., by assuming that all its public methods may be called from outside.The result is that11out of a total of36static initialisation tests are found to be redundant.In Figures6,7and8,they are ly,the recursive static calls inside putWatchpoints do not need any initialisation of the Static class,since it has already been initialised by thefirst static call.The StringBuffer creation inside toString does not need any initialisation of StringBuffer since it has already been initialised by the creation of a StringBuffer object in the previous line.public class Static extends BottomUpDomain{private HashSet initialised=new HashSet();//the classes initialised private static HashSet all;//all classes checked for initialisation private static int useless,total;//useless/total initialisation tests private Static(HashSet initialised){this.initialised=initialised;} public void init(Loader loader){//we put the watchpoints in each methodfor(int i=0;i<loader.program.methods.length;i++)putWatchpoints(loader.program.methods[i]);}private static void putWatchpoints(MethodCode mc){//we add the watchpoints in the instructionsfor(int i=0;i<mc.blocks.length;i++)mc.blocks[i].ins=putWatchpoints(mc,((SEQ)ins).left);((SEQ)ins).right=putWatchpoints。

2009and2010Papers:Big-4Security ConferencespvoOctober13,2010NDSS20091.Document Structure Integrity:A Robust Basis for Cross-site Scripting Defense.Y.Nadji,P.Saxena,D.Song2.An Efficient Black-box Technique for Defeating Web Application Attacks.R.Sekar3.Noncespaces:Using Randomization to Enforce Information Flow Tracking and Thwart Cross-Site Scripting Attacks.M.Van Gundy,H.Chen4.The Blind Stone Tablet:Outsourcing Durability to Untrusted Parties.P.Williams,R.Sion,D.Shasha5.Two-Party Computation Model for Privacy-Preserving Queries over Distributed Databases.S.S.M.Chow,J.-H.Lee,L.Subramanian6.SybilInfer:Detecting Sybil Nodes using Social Networks.G.Danezis,P.Mittal7.Spectrogram:A Mixture-of-Markov-Chains Model for Anomaly Detection in Web Traffic.Yingbo Song,Angelos D.Keromytis,Salvatore J.Stolfo8.Detecting Forged TCP Reset Packets.Nicholas Weaver,Robin Sommer,Vern Paxson9.Coordinated Scan Detection.Carrie Gates10.RB-Seeker:Auto-detection of Redirection Botnets.Xin Hu,Matthew Knysz,Kang G.Shin11.Scalable,Behavior-Based Malware Clustering.Ulrich Bayer,Paolo Milani Comparetti,Clemens Hlauschek,Christopher Kruegel,Engin Kirda12.K-Tracer:A System for Extracting Kernel Malware Behavior.Andrea Lanzi,Monirul I.Sharif,Wenke Lee13.RAINBOW:A Robust And Invisible Non-Blind Watermark for Network Flows.Amir Houmansadr,Negar Kiyavash,Nikita Borisov14.Traffic Morphing:An Efficient Defense Against Statistical Traffic Analysis.Charles V.Wright,Scott E.Coull,Fabian Monrose15.Recursive DNS Architectures and Vulnerability Implications.David Dagon,Manos Antonakakis,Kevin Day,Xiapu Luo,Christopher P.Lee,Wenke Lee16.Analyzing and Comparing the Protection Quality of Security Enhanced Operating Systems.Hong Chen,Ninghui Li,Ziqing Mao17.IntScope:Automatically Detecting Integer Overflow Vulnerability in X86Binary Using Symbolic Execution.Tielei Wang,Tao Wei,Zhiqiang Lin,Wei Zou18.Safe Passage for Passwords and Other Sensitive Data.Jonathan M.McCune,Adrian Perrig,Michael K.Reiter19.Conditioned-safe Ceremonies and a User Study of an Application to Web Authentication.Chris Karlof,J.Doug Tygar,David Wagner20.CSAR:A Practical and Provable Technique to Make Randomized Systems Accountable.Michael Backes,Peter Druschel,Andreas Haeberlen,Dominique UnruhOakland20091.Wirelessly Pickpocketing a Mifare Classic Card.(Best Practical Paper Award)Flavio D.Garcia,Peter van Rossum,Roel Verdult,Ronny Wichers Schreur2.Plaintext Recovery Attacks Against SSH.Martin R.Albrecht,Kenneth G.Paterson,Gaven J.Watson3.Exploiting Unix File-System Races via Algorithmic Complexity Attacks.Xiang Cai,Yuwei Gui,Rob Johnson4.Practical Mitigations for Timing-Based Side-Channel Attacks on Modern x86Processors.Bart Coppens,Ingrid Verbauwhede,Bjorn De Sutter,Koen De Bosschere5.Non-Interference for a Practical DIFC-Based Operating System.Maxwell Krohn,Eran Tromer6.Native Client:A Sandbox for Portable,Untrusted x86Native Code.(Best Paper Award)B.Yee,D.Sehr,G.Dardyk,B.Chen,R.Muth,T.Ormandy,S.Okasaka,N.Narula,N.Fullagar7.Automatic Reverse Engineering of Malware Emulators.(Best Student Paper Award)Monirul Sharif,Andrea Lanzi,Jonathon Giffin,Wenke Lee8.Prospex:Protocol Specification Extraction.Paolo Milani Comparetti,Gilbert Wondracek,Christopher Kruegel,Engin Kirda9.Quantifying Information Leaks in Outbound Web Traffic.Kevin Borders,Atul Prakash10.Automatic Discovery and Quantification of Information Leaks.Michael Backes,Boris Kopf,Andrey Rybalchenko11.CLAMP:Practical Prevention of Large-Scale Data Leaks.Bryan Parno,Jonathan M.McCune,Dan Wendlandt,David G.Andersen,Adrian Perrig12.De-anonymizing Social Networks.Arvind Narayanan,Vitaly Shmatikov13.Privacy Weaknesses in Biometric Sketches.Koen Simoens,Pim Tuyls,Bart Preneel14.The Mastermind Attack on Genomic Data.Michael T.Goodrich15.A Logic of Secure Systems and its Application to Trusted Computing.Anupam Datta,Jason Franklin,Deepak Garg,Dilsun Kaynar16.Formally Certifying the Security of Digital Signature Schemes.Santiago Zanella-Beguelin,Gilles Barthe,Benjamin Gregoire,Federico Olmedo17.An Epistemic Approach to Coercion-Resistance for Electronic Voting Protocols.Ralf Kuesters,Tomasz Truderung18.Sphinx:A Compact and Provably Secure Mix Format.George Danezis,Ian Goldberg19.DSybil:Optimal Sybil-Resistance for Recommendation Systems.Haifeng Yu,Chenwei Shi,Michael Kaminsky,Phillip B.Gibbons,Feng Xiao20.Fingerprinting Blank Paper Using Commodity Scanners.William Clarkson,Tim Weyrich,Adam Finkelstein,Nadia Heninger,Alex Halderman,Ed Felten 21.Tempest in a Teapot:Compromising Reflections Revisited.Michael Backes,Tongbo Chen,Markus Duermuth,Hendrik P.A.Lensch,Martin Welk22.Blueprint:Robust Prevention of Cross-site Scripting Attacks for Existing Browsers.Mike Ter Louw,V.N.Venkatakrishnan23.Pretty-Bad-Proxy:An Overlooked Adversary in Browsers’HTTPS Deployments.Shuo Chen,Ziqing Mao,Yi-Min Wang,Ming Zhang24.Secure Content Sniffing for Web Browsers,or How to Stop Papers from Reviewing Themselves.Adam Barth,Juan Caballero,Dawn Song25.It’s No Secret:Measuring the Security and Reliability of Authentication via’Secret’Questions.Stuart Schechter,A.J.Bernheim Brush,Serge Egelman26.Password Cracking Using Probabilistic Context-Free Grammars.Matt Weir,Sudhir Aggarwal,Bill Glodek,Breno de MedeirosUSENIX Security2009promising Electromagnetic Emanations of Wired and Wireless Keyboards.(Outstanding Student Paper)Martin Vuagnoux,Sylvain Pasini2.Peeping Tom in the Neighborhood:Keystroke Eavesdropping on Multi-User Systems.Kehuan Zhang,XiaoFeng Wang3.A Practical Congestion Attack on Tor Using Long Paths,Nathan S.Evans,Roger Dingledine,Christian Grothoff4.Baggy Bounds Checking:An Efficient and Backwards-Compatible Defense against Out-of-Bounds Errors.Periklis Akritidis,Manuel Costa,Miguel Castro,Steven Hand5.Dynamic Test Generation to Find Integer Bugs in x86Binary Linux Programs.David Molnar,Xue Cong Li,David A.Wagner6.NOZZLE:A Defense Against Heap-spraying Code Injection Attacks.Paruj Ratanaworabhan,Benjamin Livshits,Benjamin Zorn7.Detecting Spammers with SNARE:Spatio-temporal Network-level Automatic Reputation Engine.Shuang Hao,Nadeem Ahmed Syed,Nick Feamster,Alexander G.Gray,Sven Krasser8.Improving Tor using a TCP-over-DTLS Tunnel.Joel Reardon,Ian Goldberg9.Locating Prefix Hijackers using LOCK.Tongqing Qiu,Lusheng Ji,Dan Pei,Jia Wang,Jun(Jim)Xu,Hitesh Ballani10.GATEKEEPER:Mostly Static Enforcement of Security and Reliability Policies for JavaScript Code.Salvatore Guarnieri,Benjamin Livshits11.Cross-Origin JavaScript Capability Leaks:Detection,Exploitation,and Defense.Adam Barth,Joel Weinberger,Dawn Song12.Memory Safety for Low-Level Software/Hardware Interactions.John Criswell,Nicolas Geoffray,Vikram Adve13.Physical-layer Identification of RFID Devices.Boris Danev,Thomas S.Heydt-Benjamin,Srdjan CapkunCP:Secure Remote Storage for Computational RFIDs.Mastooreh Salajegheh,Shane Clark,Benjamin Ransford,Kevin Fu,Ari Juels15.Jamming-resistant Broadcast Communication without Shared Keys.Christina Popper,Mario Strasser,Srdjan Capkun16.xBook:Redesigning Privacy Control in Social Networking Platforms.Kapil Singh,Sumeer Bhola,Wenke Lee17.Nemesis:Preventing Authentication and Access Control Vulnerabilities in Web Applications.Michael Dalton,Christos Kozyrakis,Nickolai Zeldovich18.Static Enforcement of Web Application Integrity Through Strong Typing.William Robertson,Giovanni Vigna19.Vanish:Increasing Data Privacy with Self-Destructing Data.(Outstanding Student Paper)Roxana Geambasu,Tadayoshi Kohno,Amit A.Levy,Henry M.Levy20.Efficient Data Structures for Tamper-Evident Logging.Scott A.Crosby,Dan S.Wallach21.VPriv:Protecting Privacy in Location-Based Vehicular Services.Raluca Ada Popa,Hari Balakrishnan,Andrew J.Blumberg22.Effective and Efficient Malware Detection at the End Host.Clemens Kolbitsch,Paolo Milani Comparetti,Christopher Kruegel,Engin Kirda,Xiaoyong Zhou,XiaoFeng Wang 23.Protecting Confidential Data on Personal Computers with Storage Capsules.Kevin Borders,Eric Vander Weele,Billy Lau,Atul Prakash24.Return-Oriented Rootkits:Bypassing Kernel Code Integrity Protection Mechanisms.Ralf Hund,Thorsten Holz,Felix C.Freiling25.Crying Wolf:An Empirical Study of SSL Warning Effectiveness.Joshua Sunshine,Serge Egelman,Hazim Almuhimedi,Neha Atri,Lorrie Faith Cranor26.The Multi-Principal OS Construction of the Gazelle Web Browser.Helen J.Wang,Chris Grier,Alex Moshchuk,Samuel T.King,Piali Choudhury,Herman VenterACM CCS20091.Attacking cryptographic schemes based on”perturbation polynomials”.Martin Albrecht,Craig Gentry,Shai Halevi,Jonathan Katz2.Filter-resistant code injection on ARM.Yves Younan,Pieter Philippaerts,Frank Piessens,Wouter Joosen,Sven Lachmund,Thomas Walter3.False data injection attacks against state estimation in electric power grids.Yao Liu,Michael K.Reiter,Peng Ning4.EPC RFID tag security weaknesses and defenses:passport cards,enhanced drivers licenses,and beyond.Karl Koscher,Ari Juels,Vjekoslav Brajkovic,Tadayoshi Kohno5.An efficient forward private RFID protocol.Come Berbain,Olivier Billet,Jonathan Etrog,Henri Gilbert6.RFID privacy:relation between two notions,minimal condition,and efficient construction.Changshe Ma,Yingjiu Li,Robert H.Deng,Tieyan Li7.CoSP:a general framework for computational soundness proofs.Michael Backes,Dennis Hofheinz,Dominique Unruh8.Reactive noninterference.Aaron Bohannon,Benjamin C.Pierce,Vilhelm Sjoberg,Stephanie Weirich,Steve Zdancewicputational soundness for key exchange protocols with symmetric encryption.Ralf Kusters,Max Tuengerthal10.A probabilistic approach to hybrid role mining.Mario Frank,Andreas P.Streich,David A.Basin,Joachim M.Buhmann11.Efficient pseudorandom functions from the decisional linear assumption and weaker variants.Allison B.Lewko,Brent Waters12.Improving privacy and security in multi-authority attribute-based encryption.Melissa Chase,Sherman S.M.Chow13.Oblivious transfer with access control.Jan Camenisch,Maria Dubovitskaya,Gregory Neven14.NISAN:network information service for anonymization networks.Andriy Panchenko,Stefan Richter,Arne Rache15.Certificateless onion routing.Dario Catalano,Dario Fiore,Rosario Gennaro16.ShadowWalker:peer-to-peer anonymous communication using redundant structured topologies.Prateek Mittal,Nikita Borisov17.Ripley:automatically securing web2.0applications through replicated execution.K.Vikram,Abhishek Prateek,V.Benjamin Livshits18.HAIL:a high-availability and integrity layer for cloud storage.Kevin D.Bowers,Ari Juels,Alina Oprea19.Hey,you,get offof my cloud:exploring information leakage in third-party compute clouds.Thomas Ristenpart,Eran Tromer,Hovav Shacham,Stefan Savage20.Dynamic provable data possession.C.Christopher Erway,Alptekin Kupcu,Charalampos Papamanthou,Roberto Tamassia21.On cellular botnets:measuring the impact of malicious devices on a cellular network core.Patrick Traynor,Michael Lin,Machigar Ongtang,Vikhyath Rao,Trent Jaeger,Patrick Drew McDaniel,Thomas Porta 22.On lightweight mobile phone application certification.William Enck,Machigar Ongtang,Patrick Drew McDaniel23.SMILE:encounter-based trust for mobile social services.Justin Manweiler,Ryan Scudellari,Landon P.Cox24.Battle of Botcraft:fighting bots in online games with human observational proofs.Steven Gianvecchio,Zhenyu Wu,Mengjun Xie,Haining Wang25.Fides:remote anomaly-based cheat detection using client emulation.Edward C.Kaiser,Wu-chang Feng,Travis Schluessler26.Behavior based software theft detection.Xinran Wang,Yoon-chan Jhi,Sencun Zhu,Peng Liu27.The fable of the bees:incentivizing robust revocation decision making in ad hoc networks.Steffen Reidt,Mudhakar Srivatsa,Shane Balfe28.Effective implementation of the cell broadband engineTM isolation loader.Masana Murase,Kanna Shimizu,Wilfred Plouffe,Masaharu Sakamoto29.On achieving good operating points on an ROC plane using stochastic anomaly score prediction.Muhammad Qasim Ali,Hassan Khan,Ali Sajjad,Syed Ali Khayam30.On non-cooperative location privacy:a game-theoretic analysis.Julien Freudiger,Mohammad Hossein Manshaei,Jean-Pierre Hubaux,David C.Parkes31.Privacy-preserving genomic computation through program specialization.Rui Wang,XiaoFeng Wang,Zhou Li,Haixu Tang,Michael K.Reiter,Zheng Dong32.Feeling-based location privacy protection for location-based services.Toby Xu,Ying Cai33.Multi-party off-the-record messaging.Ian Goldberg,Berkant Ustaoglu,Matthew Van Gundy,Hao Chen34.The bayesian traffic analysis of mix networks.Carmela Troncoso,George Danezis35.As-awareness in Tor path selection.Matthew Edman,Paul F.Syverson36.Membership-concealing overlay networks.Eugene Y.Vasserman,Rob Jansen,James Tyra,Nicholas Hopper,Yongdae Kim37.On the difficulty of software-based attestation of embedded devices.Claude Castelluccia,Aurelien Francillon,Daniele Perito,Claudio Soriente38.Proximity-based access control for implantable medical devices.Kasper Bonne Rasmussen,Claude Castelluccia,Thomas S.Heydt-Benjamin,Srdjan Capkun39.XCS:cross channel scripting and its impact on web applications.Hristo Bojinov,Elie Bursztein,Dan Boneh40.A security-preserving compiler for distributed programs:from information-flow policies to cryptographic mechanisms.Cedric Fournet,Gurvan Le Guernic,Tamara Rezk41.Finding bugs in exceptional situations of JNI programs.Siliang Li,Gang Tan42.Secure open source collaboration:an empirical study of Linus’law.Andrew Meneely,Laurie A.Williams43.On voting machine design for verification and testability.Cynthia Sturton,Susmit Jha,Sanjit A.Seshia,David Wagner44.Secure in-VM monitoring using hardware virtualization.Monirul I.Sharif,Wenke Lee,Weidong Cui,Andrea Lanzi45.A metadata calculus for secure information sharing.Mudhakar Srivatsa,Dakshi Agrawal,Steffen Reidt46.Multiple password interference in text passwords and click-based graphical passwords.Sonia Chiasson,Alain Forget,Elizabeth Stobert,Paul C.van Oorschot,Robert Biddle47.Can they hear me now?:a security analysis of law enforcement wiretaps.Micah Sherr,Gaurav Shah,Eric Cronin,Sandy Clark,Matt Blaze48.English shellcode.Joshua Mason,Sam Small,Fabian Monrose,Greg MacManus49.Learning your identity and disease from research papers:information leaks in genome wide association study.Rui Wang,Yong Fuga Li,XiaoFeng Wang,Haixu Tang,Xiao-yong Zhou50.Countering kernel rootkits with lightweight hook protection.Zhi Wang,Xuxian Jiang,Weidong Cui,Peng Ning51.Mapping kernel objects to enable systematic integrity checking.Martim Carbone,Weidong Cui,Long Lu,Wenke Lee,Marcus Peinado,Xuxian Jiang52.Robust signatures for kernel data structures.Brendan Dolan-Gavitt,Abhinav Srivastava,Patrick Traynor,Jonathon T.Giffin53.A new cell counter based attack against tor.Zhen Ling,Junzhou Luo,Wei Yu,Xinwen Fu,Dong Xuan,Weijia Jia54.Scalable onion routing with torsk.Jon McLachlan,Andrew Tran,Nicholas Hopper,Yongdae Kim55.Anonymous credentials on a standard java card.Patrik Bichsel,Jan Camenisch,Thomas Gros,Victor Shouprge-scale malware indexing using function-call graphs.Xin Hu,Tzi-cker Chiueh,Kang G.Shin57.Dispatcher:enabling active botnet infiltration using automatic protocol reverse-engineering.Juan Caballero,Pongsin Poosankam,Christian Kreibich,Dawn Xiaodong Song58.Your botnet is my botnet:analysis of a botnet takeover.Brett Stone-Gross,Marco Cova,Lorenzo Cavallaro,Bob Gilbert,MartinSzydlowski,Richard A.Kemmerer,Christopher Kruegel,Giovanni VignaNDSS20101.Server-side Verification of Client Behavior in Online Games.Darrell Bethea,Robert Cochran and Michael Reiter2.Defeating Vanish with Low-Cost Sybil Attacks Against Large DHTs.S.Wolchok,O.S.Hofmann,N.Heninger,E.W.Felten,J.A.Halderman,C.J.Rossbach,B.Waters,E.Witchel3.Stealth DoS Attacks on Secure Channels.Amir Herzberg and Haya Shulman4.Protecting Browsers from Extension Vulnerabilities.Adam Barth,Adrienne Porter Felt,Prateek Saxena,and Aaron Boodman5.Adnostic:Privacy Preserving Targeted Advertising.Vincent Toubiana,Arvind Narayanan,Dan Boneh,Helen Nissenbaum and Solon Barocas6.FLAX:Systematic Discovery of Client-side Validation Vulnerabilities in Rich Web Applications.Prateek Saxena,Steve Hanna,Pongsin Poosankam and Dawn Song7.Effective Anomaly Detection with Scarce Training Data.William Robertson,Federico Maggi,Christopher Kruegel and Giovanni Vignarge-Scale Automatic Classification of Phishing Pages.Colin Whittaker,Brian Ryner and Marria Nazif9.A Systematic Characterization of IM Threats using Honeypots.Iasonas Polakis,Thanasis Petsas,Evangelos P.Markatos and Spiros Antonatos10.On Network-level Clusters for Spam Detection.Zhiyun Qian,Zhuoqing Mao,Yinglian Xie and Fang Yu11.Improving Spam Blacklisting Through Dynamic Thresholding and Speculative Aggregation.Sushant Sinha,Michael Bailey and Farnam Jahanian12.Botnet Judo:Fighting Spam with Itself.A.Pitsillidis,K.Levchenko,C.Kreibich,C.Kanich,G.M.Voelker,V.Paxson,N.Weaver,S.Savage13.Contractual Anonymity.Edward J.Schwartz,David Brumley and Jonathan M.McCune14.A3:An Extensible Platform for Application-Aware Anonymity.Micah Sherr,Andrew Mao,William R.Marczak,Wenchao Zhou,Boon Thau Loo,and Matt Blaze15.When Good Randomness Goes Bad:Virtual Machine Reset Vulnerabilities and Hedging Deployed Cryptography.Thomas Ristenpart and Scott Yilek16.InvisiType:Object-Oriented Security Policies.Jiwon Seo and Monica m17.A Security Evaluation of DNSSEC with NSEC3.Jason Bau and John Mitchell18.On the Safety of Enterprise Policy Deployment.Yudong Gao,Ni Pan,Xu Chen and Z.Morley Mao19.Where Do You Want to Go Today?Escalating Privileges by Pathname Manipulation.Suresh Chari,Shai Halevi and Wietse Venema20.Joe-E:A Security-Oriented Subset of Java.Adrian Mettler,David Wagner and Tyler Close21.Preventing Capability Leaks in Secure JavaScript Subsets.Matthew Finifter,Joel Weinberger and Adam Barth22.Binary Code Extraction and Interface Identification for Security Applications.Juan Caballero,Noah M.Johnson,Stephen McCamant,and Dawn Song23.Automatic Reverse Engineering of Data Structures from Binary Execution.Zhiqiang Lin,Xiangyu Zhang and Dongyan Xu24.Efficient Detection of Split Personalities in Malware.Davide Balzarotti,Marco Cova,Christoph Karlberger,Engin Kirda,Christopher Kruegel and Giovanni VignaOakland20101.Inspector Gadget:Automated Extraction of Proprietary Gadgets from Malware Binaries.Clemens Kolbitsch Thorsten Holz,Christopher Kruegel,Engin Kirda2.Synthesizing Near-Optimal Malware Specifications from Suspicious Behaviors.Matt Fredrikson,Mihai Christodorescu,Somesh Jha,Reiner Sailer,Xifeng Yan3.Identifying Dormant Functionality in Malware Programs.Paolo Milani Comparetti,Guido Salvaneschi,Clemens Kolbitsch,Engin Kirda,Christopher Kruegel,Stefano Zanero4.Reconciling Belief and Vulnerability in Information Flow.Sardaouna Hamadou,Vladimiro Sassone,Palamidessi5.Towards Static Flow-Based Declassification for Legacy and Untrusted Programs.Bruno P.S.Rocha,Sruthi Bandhakavi,Jerry I.den Hartog,William H.Winsborough,Sandro Etalle6.Non-Interference Through Secure Multi-Execution.Dominique Devriese,Frank Piessens7.Object Capabilities and Isolation of Untrusted Web Applications.Sergio Maffeis,John C.Mitchell,Ankur Taly8.TrustVisor:Efficient TCB Reduction and Attestation.Jonathan McCune,Yanlin Li,Ning Qu,Zongwei Zhou,Anupam Datta,Virgil Gligor,Adrian Perrig9.Overcoming an Untrusted Computing Base:Detecting and Removing Malicious Hardware Automatically.Matthew Hicks,Murph Finnicum,Samuel T.King,Milo M.K.Martin,Jonathan M.Smith10.Tamper Evident Microprocessors.Adam Waksman,Simha Sethumadhavan11.Side-Channel Leaks in Web Applications:a Reality Today,a Challenge Tomorrow.Shuo Chen,Rui Wang,XiaoFeng Wang Kehuan Zhang12.Investigation of Triangular Spamming:a Stealthy and Efficient Spamming Technique.Zhiyun Qian,Z.Morley Mao,Yinglian Xie,Fang Yu13.A Practical Attack to De-Anonymize Social Network Users.Gilbert Wondracek,Thorsten Holz,Engin Kirda,Christopher Kruegel14.SCiFI-A System for Secure Face Identification.(Best Paper)Margarita Osadchy,Benny Pinkas,Ayman Jarrous,Boaz Moskovich15.Round-Efficient Broadcast Authentication Protocols for Fixed Topology Classes.Haowen Chan,Adrian Perrig16.Revocation Systems with Very Small Private Keys.Allison Lewko,Amit Sahai,Brent Waters17.Authenticating Primary Users’Signals in Cognitive Radio Networks via Integrated Cryptographic and Wireless Link Signatures.Yao Liu,Peng Ning,Huaiyu Dai18.Outside the Closed World:On Using Machine Learning For Network Intrusion Detection.Robin Sommer,Vern Paxson19.All You Ever Wanted to Know about Dynamic Taint Analysis and Forward Symbolic Execution(but might have been afraid to ask).Thanassis Avgerinos,Edward Schwartz,David Brumley20.State of the Art:Automated Black-Box Web Application Vulnerability Testing.Jason Bau,Elie Bursztein,Divij Gupta,John Mitchell21.A Proof-Carrying File System.Deepak Garg,Frank Pfenning22.Scalable Parametric Verification of Secure Systems:How to Verify Ref.Monitors without Worrying about Data Structure Size.Jason Franklin,Sagar Chaki,Anupam Datta,Arvind Seshadri23.HyperSafe:A Lightweight Approach to Provide Lifetime Hypervisor Control-Flow Integrity.Zhi Wang,Xuxian Jiang24.How Good are Humans at Solving CAPTCHAs?A Large Scale Evaluation.Elie Bursztein,Steven Bethard,John C.Mitchell,Dan Jurafsky,Celine Fabry25.Bootstrapping Trust in Commodity Computers.Bryan Parno,Jonathan M.McCune,Adrian Perrig26.Chip and PIN is Broken.(Best Practical Paper)Steven J.Murdoch,Saar Drimer,Ross Anderson,Mike Bond27.Experimental Security Analysis of a Modern Automobile.K.Koscher,A.Czeskis,F.Roesner,S.Patel,T.Kohno,S.Checkoway,D.McCoy,B.Kantor,D.Anderson,H.Shacham,S.Savage 28.On the Incoherencies in Web Browser Access Control Policies.Kapil Singh,Alexander Moshchuk,Helen J.Wang,Wenke Lee29.ConScript:Specifying and Enforcing Fine-Grained Security Policies for JavaScript in the Browser.Leo Meyerovich,Benjamin Livshits30.TaintScope:A Checksum-Aware Directed Fuzzing Tool for Automatic Software Vulnerability Detection.(Best Student Paper)Tielei Wang,Tao Wei,Guofei Gu,Wei Zou31.A Symbolic Execution Framework for JavaScript.Prateek Saxena,Devdatta Akhawe,Steve Hanna,Stephen McCamant,Dawn Song,Feng MaoUSENIX Security20101.Adapting Software Fault Isolation to Contemporary CPU Architectures.David Sehr,Robert Muth,CliffBiffle,Victor Khimenko,Egor Pasko,Karl Schimpf,Bennet Yee,Brad Chen2.Making Linux Protection Mechanisms Egalitarian with UserFS.Taesoo Kim and Nickolai Zeldovich3.Capsicum:Practical Capabilities for UNIX.(Best Student Paper)Robert N.M.Watson,Jonathan Anderson,Ben Laurie,Kris Kennaway4.Structuring Protocol Implementations to Protect Sensitive Data.Petr Marchenko,Brad Karp5.PrETP:Privacy-Preserving Electronic Toll Pricing.Josep Balasch,Alfredo Rial,Carmela Troncoso,Bart Preneel,Ingrid Verbauwhede,Christophe Geuens6.An Analysis of Private Browsing Modes in Modern Browsers.Gaurav Aggarwal,Elie Bursztein,Collin Jackson,Dan Boneh7.BotGrep:Finding P2P Bots with Structured Graph Analysis.Shishir Nagaraja,Prateek Mittal,Chi-Yao Hong,Matthew Caesar,Nikita Borisov8.Fast Regular Expression Matching Using Small TCAMs for Network Intrusion Detection and Prevention Systems.Chad R.Meiners,Jignesh Patel,Eric Norige,Eric Torng,Alex X.Liu9.Searching the Searchers with SearchAudit.John P.John,Fang Yu,Yinglian Xie,Martin Abadi,Arvind Krishnamurthy10.Toward Automated Detection of Logic Vulnerabilities in Web Applications.Viktoria Felmetsger,Ludovico Cavedon,Christopher Kruegel,Giovanni Vigna11.Baaz:A System for Detecting Access Control Misconfigurations.Tathagata Das,Ranjita Bhagwan,Prasad Naldurg12.Cling:A Memory Allocator to Mitigate Dangling Pointers.Periklis Akritidis13.ZKPDL:A Language-Based System for Efficient Zero-Knowledge Proofs and Electronic Cash.Sarah Meiklejohn,C.Chris Erway,Alptekin Kupcu,Theodora Hinkle,Anna Lysyanskaya14.P4P:Practical Large-Scale Privacy-Preserving Distributed Computation Robust against Malicious Users.Yitao Duan,John Canny,Justin Zhan,15.SEPIA:Privacy-Preserving Aggregation of Multi-Domain Network Events and Statistics.Martin Burkhart,Mario Strasser,Dilip Many,Xenofontas Dimitropoulos16.Dude,Where’s That IP?Circumventing Measurement-based IP Geolocation.Phillipa Gill,Yashar Ganjali,Bernard Wong,David Lie17.Idle Port Scanning and Non-interference Analysis of Network Protocol Stacks Using Model Checking.Roya Ensafi,Jong Chun Park,Deepak Kapur,Jedidiah R.Crandall18.Building a Dynamic Reputation System for DNS.Manos Antonakakis,Roberto Perdisci,David Dagon,Wenke Lee,Nick Feamster19.Scantegrity II Municipal Election at Takoma Park:The First E2E Binding Governmental Election with Ballot Privacy.R.Carback,D.Chaum,J.Clark,J.Conway,A.Essex,P.S.Herrnson,T.Mayberry,S.Popoveniuc,R.L.Rivest,E.Shen,A.T.Sherman,P.L.Vora20.Acoustic Side-Channel Attacks on Printers.Michael Backes,Markus Durmuth,Sebastian Gerling,Manfred Pinkal,Caroline Sporleder21.Security and Privacy Vulnerabilities of In-Car Wireless Networks:A Tire Pressure Monitoring System Case Study.Ishtiaq Rouf,Rob Miller,Hossen Mustafa,Travis Taylor,Sangho Oh,Wenyuan Xu,Marco Gruteser,Wade Trappe,Ivan Seskar 22.VEX:Vetting Browser Extensions for Security Vulnerabilities.(Best Paper)Sruthi Bandhakavi,Samuel T.King,P.Madhusudan,Marianne Winslett23.Securing Script-Based Extensibility in Web Browsers.Vladan Djeric,Ashvin Goel24.AdJail:Practical Enforcement of Confidentiality and Integrity Policies on Web Advertisements.Mike Ter Louw,Karthik Thotta Ganesh,V.N.Venkatakrishnan25.Realization of RF Distance Bounding.Kasper Bonne Rasmussen,Srdjan Capkun26.The Case for Ubiquitous Transport-Level Encryption.Andrea Bittau,Michael Hamburg,Mark Handley,David Mazieres,Dan Boneh27.Automatic Generation of Remediation Procedures for Malware Infections.Roberto Paleari,Lorenzo Martignoni,Emanuele Passerini,Drew Davidson,Matt Fredrikson,Jon Giffin,Somesh Jha28.Re:CAPTCHAs-Understanding CAPTCHA-Solving Services in an Economic Context.Marti Motoyama,Kirill Levchenko,Chris Kanich,Damon McCoy,Geoffrey M.Voelker,Stefan Savage29.Chipping Away at Censorship Firewalls with User-Generated Content.Sam Burnett,Nick Feamster,Santosh Vempala30.Fighting Coercion Attacks in Key Generation using Skin Conductance.Payas Gupta,Debin GaoACM CCS20101.Security Analysis of India’s Electronic Voting Machines.Scott Wolchok,Erik Wustrow,J.Alex Halderman,Hari Prasad,Rop Gonggrijp2.Dissecting One Click Frauds.Nicolas Christin,Sally S.Yanagihara,Keisuke Kamataki3.@spam:The Underground on140Characters or Less.Chris Grier,Kurt Thomas,Vern Paxson,Michael Zhang4.HyperSentry:Enabling Stealthy In-context Measurement of Hypervisor Integrity.Ahmed M.Azab,Peng Ning,Zhi Wang,Xuxian Jiang,Xiaolan Zhang,Nathan C.Skalsky5.Trail of Bytes:Efficient Support for Forensic Analysis.Srinivas Krishnan,Kevin Z.Snow,Fabian Monrose6.Survivable Key Compromise in Software Update Systems.Justin Samuel,Nick Mathewson,Justin Cappos,Roger Dingledine7.A Methodology for Empirical Analysis of the Permission-Based Security Models and its Application to Android.David Barrera,H.Gunes Kayacik,Paul C.van Oorschot,Anil Somayaji8.Mobile Location Tracking in Metropolitan Areas:malnets and others.Nathanial Husted,Steve Myers9.On Pairing Constrained Wireless Devices Based on Secrecy of Auxiliary Channels:The Case of Acoustic Eavesdropping.Tzipora Halevi,Nitesh Saxena10.PinDr0p:Using Single-Ended Audio Features to Determine Call Provenance.Vijay A.Balasubramaniyan,Aamir Poonawalla,Mustaque Ahamad,Michael T.Hunter,Patrick Traynor11.Building Efficient Fully Collusion-Resilient Traitor Tracing and Revocation Schemes.Sanjam Garg,Abishek Kumarasubramanian,Amit Sahai,Brent Waters12.Algebraic Pseudorandom Functions with Improved Efficiency from the Augmented Cascade.Dan Boneh,Hart Montgomery,Ananth Raghunathan13.Practical Leakage-Resilient Pseudorandom Generators.Yu Yu,Francois-Xavier Standaert,Olivier Pereira,Moti Yung14.Practical Leakage-Resilient Identity-Based Encryption from Simple Assumptions.Sherman S.M.Chow,Yevgeniy Dodis,Yannis Rouselakis,Brent Waters15.Testing Metrics for Password Creation Policies by Attacking Large Sets of Revealed Passwords.Matt Weir,Sudhir Aggarwal,Michael Collins,Henry Stern16.The Security of Modern Password Expiration:An Algorithmic Framework and Empirical Analysis.Yinqian Zhang,Fabian Monrose,Michael K.Reiter17.Attacks and Design of Image Recognition CAPTCHAs.Bin Zhu,JeffYan,Chao Yang,Qiujie Li,Jiu Liu,Ning Xu,Meng Yi18.Robusta:Taming the Native Beast of the JVM.Joseph Siefers,Gang Tan,Greg Morrisett19.Retaining Sandbox Containment Despite Bugs in Privileged Memory-Safe Code.Justin Cappos,Armon Dadgar,JeffRasley,Justin Samuel,Ivan Beschastnikh,Cosmin Barsan,Arvind Krishnamurthy,Thomas Anderson20.A Control Point for Reducing Root Abuse of File-System Privileges.Glenn Wurster,Paul C.van Oorschot21.Modeling Attacks on Physical Unclonable Functions.Ulrich Ruehrmair,Frank Sehnke,Jan Soelter,Gideon Dror,Srinivas Devadas,Juergen Schmidhuber22.Dismantling SecureMemory,CryptoMemory and CryptoRF.Flavio D.Garcia,Peter van Rossum,Roel Verdult,Ronny Wichers Schreur23.Attacking and Fixing PKCS#11Security Tokens.Matteo Bortolozzo,Matteo Centenaro,Riccardo Focardi,Graham Steel24.An Empirical Study of Privacy-Violating Information Flows in JavaScript Web Applications.Dongseok Jang,Ranjit Jhala,Sorin Lerner,Hovav Shacham25.DIFC Programs by Automatic Instrumentation.William Harris,Somesh Jha,Thomas Reps26.Predictive Black-box Mitigation of Timing Channels.Aslan Askarov,Danfeng Zhang,Andrew Myers27.In Search of an Anonymous and Secure Lookup:Attacks on Structured Peer-to-peer Anonymous Communication Systems.Qiyan Wang,Prateek Mittal,Nikita Borisov28.Recruiting New Tor Relays with BRAIDS.Rob Jansen,Nicholas Hopper,Yongdae Kim29.An Improved Algorithm for Tor Circuit Scheduling.Can Tang,Ian Goldberg30.Dissent:Accountable Anonymous Group Messaging.Henry Corrigan-Gibbs,Bryan Ford31.Abstraction by Set-Membership—Verifying Security Protocols and Web Services with Databases.Sebastian Moedersheim。

外刊阅读之选词填空Passage elevenItaly blasts virus panic as it eyes new testing criteriaWith tourism tanking and panic rising, Italy tried to control the coronavirus in the realm of public perception Thursday as its outbreak grew to 650 cases and other countries took measures to limit travel to and from affected Italian regions.Foreign Minister Luigi Di Maio and Health Minister Roberto Speranza appeared before foreign journalists in Rome to (31) ______ overblown media coverage for travel advisories warning visitors to stay away, event cancellations and special border screenings for people coming from hard-hit northern Italy.“In Italy, we've gone from an epidemic (32) ______ to an ‘info-demic' of confirmed disinformation, which at this moment is hitting our flow of tourists, our business and our whole economic syst em,” Di Maio said.While the ministers (33) ______ to put Italy's explosive experience with the virus into perspective, the national caseload kept climbing Civil protection chief Angelo Borrelli reported a new total of 650, up from 400 on Wednesday evening and three a week ago, before clusters of (34) ______ emerged in the Lombardy and Veneto regions..Three more people with the virus died in 24 hours, bringing Italy's toll to 15, Borrelli said. Officials have said all of the patients were elderly, sick with other ailments or both.In neighboring France, authorities on Thursday reported twenty new cases of people infected with the new virus in the past 24 hours, bringing the total in the country to 38, including two deaths. Twelve of the new patients, including three working on a military base, are all (35) ______ to two previous cases in the Oise region, north of Paris.As more countries reported new cases that could be linked to Italy, several adopted measures (36) ______ to keep people who might be infected out. Israel is now denying entry to all non-Israelis who visited Italy in the last two weeks, and Israeli airline El Al (37) ______ all flights to and from Italy until March 14.Public health officials have said that Italy (38) ______ to fears of an epidemic in Europe with its zealousness in testing for the virus and quickly reporting the number that came back positive from local regions.A World Health Organization official advising the Italian government, Walter Ricciardi, said test results must be certified at the national level before they are (39) ______ official and publicly reported. Without confirmation from Italy's National Institutes of Health, "cases that emerge from the regions are still considered (40) ______ and unconfirme d,” Ricciardi said. （394）【参考答案】DACBH EJFIK【原文翻译】With tourism tanking and panic rising, Italy tried to control the coronavirus in the realm of public perception Thursday as its outbreak grew to 650 cases and other countries took measures to limit travel to and from affected Italian regions.随着旅游业的萧条和恐慌情绪的加剧，意大利周四试图在公众认知的范围内控制冠状病毒，因为它的爆发已增至650例，其他国家也采取措施限制来往受影响的意大利地区。

2023-2024学年上海市建平中学高一下学期期末教学质量检测英语试题1.A．For 20 minutes. B．For 25 minutes. C．For 45 minutes. D．For 65 minutes.2.A．In a bank. B．In a supermarket. C．At a touristD．At a laundry.agency.3.A．An office secretary. B．A head nurse.C．A real estate agent. D．A hotel receptionist.4.A．It’s sunny and warm.B．It’s rainy and cold.C．It’s sunny but cold.D．It’s rainy but warm.5.A．They are twins. B．They are classmates.C．They are friends. D．They are colleagues.6.A．Reasonable. B．Bright. C．Serious. D．Ridiculous. 7.D．Visit a lawyer.A．Send leaflets. B．Go sightseeing. C．Do somegardening.8.A．The library is closed on weekends. B．He had no idea where the book was.C．He didn’t get the book he needed.D．He didn’t have time to go to the library.9.A．The apartment was provided with some old furniture.B．The furnished apartment was not expensive.C．The furniture in the market was on sale every Sunday.D．The furniture he bought was rather cheap.10.A．Internet surfing. B．Stock exchangingC．Mountain climbing. D．Job hunting.听下面一段独白，回答以下小题。

浙江省精诚联盟2023-2024学年高三上学期12月适应性联考英语试题卷一、听力选择题1．Why does the man refuse the cola?A．He dislikes the taste.B．He needs to lose weight.C．He doesn’t want to be sleepless.2．Who left the water on in the bathroom?A．Sam.B．Jenny.C．Mom.3．When will David hand in the paper?A．On April 21st.B．On April 22nd.C．On April 23rd.4．Where probably is the woman?A．At an airport B．In the street.C．In a mall.5．What will the woman do next?A．Meet Andrew.B．Have her car fixed.C．See her grandparents.听下面一段较长对话，回答以下小题。

6．What’s the relationship between the speakers?A．Husband and wife.B．Colleagues.C．Friends.7．What can we know about the man’s website?A．It’s an idea-sharing website.B．It’s used for fun.C．It’s a finished website.听下面一段较长对话,回答以下小题。

8．What is the man?A．A driver.B．A librarian.C．An applicant.9．What is needed to borrow a book?A．A deposit.B．Any identification.C．A driving test.10．What does the man mean in the end?A．He misunderstood the woman.B．He can make an exception.C．He will stick to the rules.听下面一段较长对话,回答以下小题。

高三英语考生注意：1. 本试卷分选择题和非选择题两部分。

满分150分，考试时间120分钟。

2. 答题前，考生务必用直径0. 5毫米黑色墨水签字笔将密封线内项目填写清楚。

3. 考生作答时，请将答案答在答题卡上。

选择题每小题选出答案后，用2B铅笔把答题卡上对应题目的答案标号涂黑；非选择题请用直径0. 5毫米黑色墨水签字笔在答题卡上各题的答题区域内作答，超出答题区域书写的答案无效，在试题卷、草稿纸上作答无效。

4. 本卷命题范围：高考范围。

第一部分听力（共两节，满分30分）第一节（共5小题；每小题1. 5分，满分7. 5分）听下面5段对话。

每段对话后有一个小题，从题中所给的A、B、C三个选项中选出最佳选项。

听完每段对话后，你都有10秒钟的时间来回答有关小题和阅读下一小题。

每段对话仅读一遍。

例：How much is the shirt?A. £19. 15.B. £9. 18.C. £9. 15.答案是C。

1. What will the girl do next?A. Play a game.B. Do her homework.C. Read a book.2. Which train was late?A. The first train.B. The last train.C. The connecting train.3. What are the speakers mainly talking about?A. The weather.B. Weekend plans.C. Their feelings.4. Why did Brian go to the head office?A. For the sales report.B. For the annual bonus.C. For the year-end party.5. Where are the speakers?A. In a coffee shop.B. Near a shopping center.C. Next to a post office.第二节（共15小题；每小题1. 5分，满分22. 5分）听下面5段对话或独白。

2024年吉林学位英语考试真题2024 Jilin University English Degree ExaminationPart I Listening Comprehension (30 points)Section ADirections: In this section, you will hear 10 short conversations. At the end of each conversation, a question will be asked about what was said. Both the conversation and the question will be spoken only once. After each question, there will be a pause. During the pause, read the four choices marked A), B), C) and D), and decide which is the best answer. Then mark the corresponding letter on the Answer Sheet with a single line through the center.1. A) At 5:00 B) At 6:00 C) At 6:30 D) At 7:002. A) In a bookshop B) At a cinema C) In a libraryD) On a train3. A) A printing machine B) A telephone C) Anair-conditioner D) A door4. A) The man went to bed late last night. B) The man didn’t have a good sleep last night. C) The man is so sleepy today. D) The man fell asleep in the class5. A) It’s sunny. B) It’s raining. C) It’s snowing. D) It’s windy.6. A) The woman should take more exercise. B) The woman should see a doctor. C) The woman should drink more water. D) The woman should take more rest.7. A) She was late for class. B) She has been busy with her assignment. C) She has just returned from the library.D) She hasn’t eaten lu nch yet.8. A) The man should drive more carefully. B) The man should pay more attention to the traffic signs. C) The man shouldn’t speed on the road. D) The man shouldn’t park his car there.9. A) He will come to see her in half an hour. B) He is waiting for his friend. C) He knows the woman’s address.D) He suggests the location of the woman’s house.10. A) She has worked for the company for two years.B) She has just graduated from university. C) Shemajored in human resources management. D) She has been promoted recently.Section BDirections: In this section, you will hear 3 short passages. At the end of each passage, you will hear some questions. Both the passage and the questions will be spoken only once. After you hear a question, read the four possible answers on the screen and decide which one would be the best answer to the question you have heard. Listen carefully and mark the corresponding choice on your Answer Sheet.Part II Reading Comprehension (40 points)Section ADirections: In this section, there are four passages followed by questions or unfinished statements. For each of them, there are four choices marked A), B), C) and D). Choose the one that fits best according to the passages you have heard.Passage OneEvery day, researchers around the world are working on ways to harness renewable energy sources in order to combat climate change. Solar power is one of the most promisingrenewable energy sources, but the problem is how to store the electricity produced by solar panels for use at night or on cloudy days. Batteries are the most common method, but they are expensive and not always efficient. Now, researchers at the Massachusetts Institute of Technology (MIT) have developed a new type of battery that can store solar energy at a fraction of the cost of conventional batteries.11. What is the main topic of the passage?A) The importance of renewable energy sources.B) The problem with solar power.C) A new battery developed at MIT.D) The cost of storing solar energy.12. What is the biggest drawback of using batteries to store solar energy?A) They are inefficient.B) They are expensive.C) They rely on the weather.D) They are difficult to install.13. According to the passage, what have researchers at MIT developed?A) A new way to harness solar power.B) A more efficient type of solar panel.C) A battery for storing solar energy.D) A method for using solar power at night.Passage TwoIn recent years, there has been a growing interest inplant-based diets as a way to reduce the environmental impact of food production. Meat production is a major contributor to greenhouse gas emissions, deforestation, and water pollution. By switching to plant-based alternatives, individuals can significantly reduce their carbon footprint and promote sustainability. However, many people are hesitant to make the switch due to concerns about the nutritional value ofplant-based diets.14. What is the main topic of the passage?A) The environmental impact of meat production.B) The benefits of plant-based diets.C) The nutritional value of plant-based foods.D) The popularity of plant-based diets.15. According to the passage, why are many people hesitant to switch to plant-based diets?A) They are expensive.B) They are difficult to find.C) They lack essential nutrients.D) They are not tasty.16. What is the main advantage of plant-based diets mentioned in the passage?A) They are more affordable.B) They are more sustainable.C) They are easier to cook.D) They are better for your health.Section BDirections: Read the passage and answer the questions or complete the statements that follow it.Passage ThreeOver the past decade, social media has become an increasingly popular platform for political activism and social change. By providing a platform for people to share their ideas, connect with others, and organize events, social media has played a key role in many social movements around the world. From the Arab Spring to the Black Lives Matter movement, social media has enabled individuals to raise awareness, mobilize support, and hold authorities accountable for their actions. However, social media also faces criticism for spreading misinformation, enabling hate speech, and amplifying echo chambers.17. What is the main advantage of social media mentioned in the passage?18. Give an example of a social movement that has been influenced by social media.19. What is one of the criticisms of social media mentioned in the passage?20. Why is it important for social media to be used responsibly?Part III Vocabulary and Structure (20 points)Directions: There are 40 incomplete sentences in this section. For each sentence, there are four choices marked A), B), C) and D). Choose the one that best completes the sentence. Mark your answers on the Answer Sheet.Part IV Writing (10 points)Directions: For this part, you are required to write a composition of 150 words on the topic “The Impact of Technology on Education”. You should write the composition within 20 minutes. Your composition should be based on the outline given in Chinese below.【提纲】1. 现代科技对教育的影响2. 在线学习和远程教育3. 电子图书和数字化教学4. 教学方法的改变5. 我的观点Please remember to write in paragraphs and make sure to include an introduction, body paragraphs, and a conclusion.This is the end of the examination. Thank you for your attention.。

西南政法大学试卷（A 卷）2006 — 2007 学年第 二 学期课程 大学英语 专业 全校各专业平行班 年级 2005级本试卷共 10 页，满分 100 分；考试时间：120 分钟；考试方式：闭卷注意事项1、 本学期使用新机读卡，主观题与客观题的答案都填写在一张卡上，卡上准考证号一栏填学生完整的学号，请正确填写自己的学号，学号请按示范填写，填错或不填阅卷系统记录为零分。

示范如下：学号为2005111101， 填涂为：2、3、 选择题按对应编号，用铅笔将答案划在机读卡上。

主观题的答案写在机读卡上指定栏内，在指定栏以外地方作答将记录为零分。

4、 主观题作答时请一定在卡上写清楚每题对应的大编号与小编号。

5、 注意保持机读卡面清洁、无折叠、无污损，否则阅卷系统不能正常识别。

Part I Listening Comprehension (25%) Section ADirections: In this section, you’ll hear 8 short conversations and 2 long conversations. At the end of each conversation, one or more questions will be asked about what was said. Both the conversation and the questions will be spoken ONLY ONCE . Listen carefully and choose the best answer to each question.1. A) The man refuses to listen to his doctor ’s advice. B) The man is under pressure from his wife. C) The man usually follows his wife ’s advice. D) The man no longer smokes.2. A) In a department store. B) In a bank. C) At a hotel. D) At a tourist bureau.3. A) Manager and clerk.B) College advisor and student. C) Architect and computer expert.D) Architect and mathematics department head. 4. A) The woman has been complaining too much.------------------------------------------------------------------------------------------------------------------------------------------------------------------ -密-----------------封-----------------线-------------------内-------------------不---------------------要-----------------------答-------------------题------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ 学生姓名：___________________ 学号 ：_________________ 专业年级 ：_________________ 考试教室：____________B) The woman’s headache will go away by itself.C) The woman should have seen the doctor earlier.D) The woman should confirm her appointment with the doctor.5. A) She did poorly on the exam.B) She complained about the man making the highest mark.C) She often makes careless mistakes.D) She wanted the highest grade but got only the second highest.6. A) He may need to take an extra course.B) The degree will take a shorter time in the future.C) Degrees will be easier to finish next year.D) There is no regulation of the courses next year.7. A) At last he enjoys campus life.B) School has changed little since last year.C) He has many new friends.D) It’s easier to find his way around this year.8. A) He’s afraid to try some of the exercises himself.B) The physics class is only halfway over.C) The students aren’t in good physical condition.D) He doesn’t believe everything people say.Questions 9-12 are based on the conversation you have just heard.9. A) To choose a topic for a term paper.B) To get material not available at the main library.C) To type some research materials.D) To learn to use the computers there.10. A) A comparison of political journals and newspapers.B) The impact of TV on recent presidential election.C) The use of computers in calculating election results.D) An analysis of early presidential results.11. A) It is quite general.B) It should be changed.C) It’ll take a short time to find the relevant materials.D) It is closely related with information in a newspaper.12. A) He pays a little money to use it.B) He orders it from the publisher.C) He travels to that library to get it.D) He reads it in the graduate school library.Questions 13-15 are based on the conversation you have just heard.13. A) Abroad. B) To the seaside.C) To his mother. D) To the mountains.14. A) His wife. B) His mother. C) A friend. D) A nurse.15. A) Joining him and his wife for the holiday.B) Sending her sister’s children to their grandmother.C) Going to the mountains.D) Going for a tour abroad.Section BDirections: In this section, you’ll hear 3 short passages. At the end of each passage, you will hear some questions. Both the passage and the questions will be spoken ONLY ONCE.Passage OneQuestions 16-18 are based on the conversation you have just heard.16. A) She feels that they must offer more if they wish to attract students.B) She feels that they should cut back on graduate programs.C) She feels that they still maintain their usual sacred position in the eyes of the general public.D) She feels that they should not concern themselves with the needs of prospective students.17. A) She believes that students are more emotionally mature than they once were.B) She believes that students consider all colleges inferior.C) She believes that students realize that a college education is no longer important.D) She believes that students are aware of the fact that a college degree does not necessarily guaranteelong term job success.18. A) All private institutions will close down.B) Private institutions must meet society’s needs in some specified fields.C) Private institutions have to satisfy their customers.D) Private institutions have a greater future than the public ones.Passage TwoQuestions 19-21 are based on the conversation you have just heard.19. A) 4,000 years ago. B) 3,000 years ago.C) 2,000 years ago. D) 1,000 years ago.20. A) The small bowl was put above the large bowl.B) The large bowl was put above the small bowl.C) The small bowl was put inside the large bowl.D) The large bowl consisted of two equal parts.21. A) Horsemen. B) Brass doors. C) Drops of water. D) Metal balls.Passage ThreeQuestions 22-25 are based on the conversation you have just heard.22. A) In a fast-food restaurant. B) At a shopping center.C) At a country fair. D) In a bakery.23. A) Avoid eating any food. B) Prepare the right type of pie to eat.C) Wash his hands thoroughly. D) Practice eating a pie quickly.24. A) On the table. B) Behind his back.C) Under his bottom. D) On his lap.25. A) Looking sideways to see how fast your neighbour eats.B) Eating from the outside toward the middle.C) Swallowing the pie with water.D) Holding the pie in the right position.Part II Reading Comprehension (30%)Passage OneWater projects in the United States gained a new rationale (根据) in the 1930’s as the nation suffered its worst economic depression and the Great Plains region suffered its worst drought in recorded history. As the economy sank into despair and unemployment rates increased, the political climate for direct federal government involvement in water projects improved. President Franklin Roosevelt’s first 100 days in office brought a number of new laws to deal with the severe economic depression that became known as the Great Depression. Two of these laws, the Tennessee Valley Authority Act of 1933 and the National Recovery Act of 1933 (NIRA), had particular significance for water resource development.The natural pattern of Tennessee River was characterized by large spring flows that produceddestructive floods and low summer flows that restricted navigation. The intensity and frequency of the events discouraged development and contributed to persistent poverty in the valley. To counter these natural obstacles, the Tennessee Valley Authority Act of 1933 created Tennessee Valley Authority (TV A), a public agency with broad powers to develop the Tennessee River system in the interest of navigation, flood control, and national defense, and to promote development in the region, including authority to build dams and reservoirs and to generate and sell hydroelectric power. The TV A is a unique institution in that it brings all the water-related functions of the federal government of the single body. The TV A used its authority to transform the Tennessee River into one of the most highly regulated rivers in the world within about two decades. The TVA inherited the Wilson Dam, and by the beginning of the Second World War it had completed six additional multipurpose dams with power plants and locks for navigation. Investments in dams and hydropower facilities within the Tennessee Valley also received high priority during the war.The NIRA authorized the creation of the Public Works Administration to create jobs while undertaking work of benefit to the community. The NIRA also gave the United States President unprecedented powers to initiate public works, including water projects. The Public Works Administration provided loans and grants to state and local governments and to federal agencies for municipal waterworks, sewage plants, irrigation, flood control, and waterpower projects.26. All of following are mentioned as resulting from the Great Depression EXCEPT ______.A) an increase in unemploymentB) a change in political thinkingC) a new study of the history of droughtsD) a different approach to water projects27. It can be inferred from the passage that before the 1930’s the role of the federal government in waterprojects was _______.A) more limited than it was after 1930B) more important than its role in other conservation projectsC) restricted to the Great Plains regionD) designed to help with drought recovery28. The word “unprecedented” (Para. 3) is closest in meaning to ______.A) not extensiveB) not existing beforeC) not used oftenD) not needing money29. Which of the following discouraged development of the Tennessee Valley prior to 1933?A) Laws imposed by the local government.B) The geographical features of the valley.C) The lack of suitable building materials.D) The effects of seasonal flows of the river.30. According to the passage, the Tennessee Valley Authority decided to ______.A) introduce rules to control the use of the Tennessee RiverB) build the Wilson DamC) reduce investment in hydropower facilities in the Tennessee ValleyD) increase the price of electricityPassage TwoWithin fifteen years Britain and other nations should be well on with the building of huge industrial complexes for the recycling of waste. The word rubbish could lose its meaning because everything which goes into the dumps would be made into something useful. Even the most dangerous and unpleasantwastes would provide energy if nothing else.The latest project is to take a city of around half a million inhabitants and discover exactly what raw materials go into it and what go out. The aim is to find out how much of these raw materials could be provided if a plant for recycling waste were built just outside the city. This plant would recycle not only metal such as steel, lead and copper, but also paper and rubber as well.Another new project is being set up to discover the best ways of sorting and separating the rubbish. When this project is complete, the rubbish will be processed like this: first, it will pass through sharp metal bars which will tear open the plastic bags in which rubbish is usually packed; then it will pass through a powerful fan to separate the lightest elements from the heavy solids; after that grounders and rollers break up everything that can be broken. Finally, the rubbish will pass under magnets, which will remove the bits of iron and steel; the rubber and plastic will then be sorted out in the final stage.The first full-scale giant recycling plants are, perhaps, fifteen years away. Indeed, with the growing cost of transporting rubbish to more distant dumps, some big cities will be forced to build their own recycling plants before long.31. The phrase “be well on with…” (Para. 1) most probably means _______.A) have completed what was startedB) get ready to startC) have achieved a great dealD) put an end to32. What is NOT mentioned as a part of the recycling process described in Paragraph 3?A) Breaking up whatever is breakable.B) Sharpening metal bars.C) Separating light elements from the heavy ones.D) Sorting out small pieces of metal.33. What’s the main reason for big cities to build their own recycling plants?A) To deal with wastes in a better way.B) To protect the environment from pollution.C) To get raw materials locally.D) To get big profits from those plants.34. The first full-scale huge recycling plants ______.A) began to operate fifteen years agoB) will probably take less than fifteen years to buildC) will be built fifteen years laterD) will probably be in operation in fifteen years35. The passage is mainly about ______.A) a cheap way to get energyB) the location of recycling plantsC) new ways of recycling wastesD) the protection of city environmentPassage ThreeIn 1972, a century after the first national park in the United States was established at Yellowstone, legislation was passed to create the National Marine Sanctuaries（国家海洋保护区）Program. The intent of this legislation was to provide protection to selected coastal habitats（栖息地）similar to that existing for land areas designated（指定）as national parks. The designation of an area a marine sanctuary indicates that it is a protected area, just as a national park is. People are permitted to visit and observe there, but living organisms and their environments may not be harmed or removed.The National Marine Sanctuary Program was created by the Marine Protection, Research and Sanctuaries Act of 1972. This authorizes the Secretary of Commerce to designate and manage areas of the marine environment with special national significance due to their conservation, recreational, ecological, historical, scientific, cultural, archeological, educational, or esthetic qualities as national marine sanctuaries. Initially, 70 sites were proposed as candidates for sanctuary status. Two and a half decades later, only fifteen sanctuaries had been designated, with half of these established after 1978. They range in size from the very small (less than 1 square kilometer) Fagatele Bay National Marine Sanctuary in American Samoa to the Monterey Bay National Marine Sanctuary in California, extending over 15,744 square kilometers.The National Marine Sanctuaries Program is a crucial part of new management practices in which whole communities of species, and not just individual species, are offered some degree of protection from habitat degradation and overexploitation. Only in this way can a reasonable degree of marine species diversity be maintained in a setting that also maintains the natural interrelationships that exist among these species.Several other types of marine protected areas exist in the United States and other countries. The National Estuarine Research Reserve System, managed by the United States government, includes 23 designated and protected estuaries（港湾）. Outside the United States, marine protected-area programs exist as marine parks, reserves, and preserves. Over 100 designated areas exist around the periphery of the Carbbean Sea. Others range from the well-known Australian Great Barrer Reef Marine Park to lesser-known parks in countries such as Thailand and Indonesia, where tourism is placing growing pressures on fragile coral reef systems. As state, national, and international agencies come to recognize the importance of conserving marine biodiversity, marine projected areas, whether as sanctuaries, parks, or estuarine reserves, will play an increasingly important role in preserving that diversity.36. What does the passage mainly talk about?A) Various marine conservation programs.B) Differences among marine parks, sanctuaries, and reserves.C) International agreements on coastal protection.D) Similarities between land and sea protected environments.37. The passage mentions the Monterey Bay National Marine Sanctuary in paragraph 2 as an example of asanctuary that ______.A) is worth protectingB) covers a large areaC) is the largest one in AmericaD) was designated by the Secretary of Commerce38. According to the passage, all of the following are achievements of the National Marine SanctuariesProgram EXCEPT ______.A) the discovery of several new marine organismsB) the preservation of connections between individual marine speciesC) the protection of coastal habitatsD) the establishment of areas where the public can observe marine life39. Based on the passage, ______ is regarded as a threat to marine areas outside the United States.A) limitations in financial supportB) the use of marine species as foodC) variability of the climateD) increases in tourism40. The word “periphery” in paragraph 4 is closest in meaning to ______.A) depthB) landmassC) outer edgeD) habitatPassage FourIt is all very well to blame traffic jams, the cost of petrol and the quick pace of modern life, but manners on the roads are becoming horrible. Everybody knows that the nicest men become monsters behind the wheel. You might tolerate the odd road-hog, the rude and inconsiderate driver, but nowadays the well-mannered motorist is the exception to the rule.Road politeness is not only good manners, but good sense too. It takes the most coolheaded and good-tempered of drivers to resist the temptation to revenge when subjected to uncivilized behavior. On the other hand, a little politeness goes a long way towards relieving the tensions of motoring. A friendly nod or a wave of acknowledgement in response to an act of politeness helps to create an atmosphere of goodwill and tolerance so necessary in modern traffic conditions. But such acknowledgements of politeness are all too rare today.However, misplaced politeness can also be dangerous. Typical examples are the driver who brakes violently to allow a car to emerge from a side street at some hazard to following traffic, when a few seconds later the road would be clear anyway; or the man who waves a child across a zebra crossing into the path of oncoming vehicles that may be unable to stop in time. The same goes for encouraging old ladies to cross the road wherever and whenever they care to. It always amazes me that the highways are not covered with the dead bodies of these grannies.A veteran driver, whose manners are faultless, told me it would help if motorists learnt to filter correctly into traffic streams one at a time without causing the total blockages that give rise to bad temper. Unfortunately, modern motorists can’t even learn to drive, let alone master the subtler aspects of roadsmanship. Years ago the experts warned us that the car-ownership explosion would demand a lot more give-and-take from all road users. It is high time for all of us to take this message to heart.41. Accoding to this passage, troubles on the road are primarily caused by _______.A) people’s attitude towards the road-hogB) the rhythm of modern lifeC) the behavior of the driverD) traffic conditions42. The sentence “You might tolerate the odd-hog… the rule.” (Para. 1) implies that _______.A) our society is unjust towards well-mannered motoristsB) rude drivers can be met only occasionallyC) the well-mannered motorist cannot tolerate the road-hogD) nowadays impolite drivers constitute the majority of motorists43. By “good sense” in paragraph 2, the writer means _______.A) the driver’s ability to understand and react reasonablyB) the driver’s prompt response to difficult and severe conditionsC) the driver’s tolerance of rude or even savage behaviorD) the driver’s acknowledgement of politeness and regulations44. Experts have long pointed out that in the face of car-ownership explosion, _______.A) road users should make more sacrificeB) drivers should be ready to yield to each otherC) drivers should have more communication among themselvesD) drivers will suffer great loss if they pay no respect to others45. In the writer’s opinion, _______.A) strict traffic regulations are badly neededB) drivers should apply road politeness properlyC) rude drivers should be punishedD) drivers should avoid traffic jamsPart III Vocabulary and Structure(10%)46. We need someone really ______ who can organize the office and make it run smoothly.A) crucial B) realistic C) essential D) efficient47. Their refusal to compromise is a major _______ that stands in the way of further peace talks.A) obstacle B) complication C) entity D) hazard48. Under normal circumstances the body can _______ these naturally occurring substances into vitamins.A) convert B) render C) derive D) originate49. He should ______ what he’s good at, and not switch to something he knows nothing about.A) take on B) stick to C) go after D) live on50. Many social problems are caused by the uneven ______ of wealth.A) equality B) justice C) distribution D) volume51. The doctor ______ Billy’s operation with x-rays and special exercises to make him stronger.A) went after B) followed up C) started up D) took on52. Obviously, no teacher has _______ patience. Even Larry, who is always kind and tolerant, lost histemper on that particular occasion.A) infinite B) definite C) spectacular D) plural53. His total worldly possessions ______ little more than the clothes he stood up in.A) amounted to B) settled for C) turned up D) came at54. Our director had ______ on the matter for a long time before he made the decision.A) hushed B) thrashed C) pondered D) suspended55. The United Nations was supposed to ______ the role of global peace-keeper.A) contend B) nurture C) carve D) undertakeChoose the words and expressions that are similar in meaning to the underlined parts. (找同义词) 56. If an object is suspended from any point on the vertical line passing through its center of gravity, theobject will remain stationary.A) secure B) flexible C) motionless D) hung57. According to a United States law passed in 1986, states participating in daylight saving timesimultaneously advance their clocks one hour on the last Sunday in April.A) conceptually B) systematically C) at the same time D) for a brief period58. The Hudson River School was the name of the first group of American artists to develop acharacteristic style of landscape paintings.A) territory B) scenery C) spectrum D) groundwork59. Some cells, such as epithelia, proliferate more rapidly when the body is asleep than when it is awake.A) cluster B) multiply C) adapt D) heal60. That morning, on Mount Tai, I saw the most spectacular sunrise in my life.A) adolescent B) mysterious C) opaque D) impressive61. However, the new law, once passed, will render the Bridlington agreement illegal by giving workersthe right to join unions of their choice.A) convert B) cancel C) make D) hold62. The mayor promised to trim the city budget without cutting essential services.A) appropriate B) fundamental C) equivalent D) sparkled63. The destruction of the Twin Towers in New York City provoked shock and anger throughout the world.A) aroused B) tempted C) summoned D) enveloped64. The poetry of Ezra Pound is sometimes difficult to understand because it contains so many obscurereferences.A) dazzling B) widespread C) plural D) unrecognizable65. Dr. Light, who is reputed to be one of the best surgeons in London, performed the operation andsuccessfully removed the tumor in her lungs.A) considered B) confessed C) thrilled D) perceivedPart IV Cloze(10%)Direction:There are 20 blanks in the following passage. For each blank there are four choices marked A),B), C) and D) on the right side of the paper. You should choose the one that best fits into thepassage.Part V Word Formation (5%)1.There is a _____ of two things that are important: culture and space. (combine)2.If he had failed in the old society, he would be _____ and pessimistic. (courage)3.But instead of liberating us, technology has _________us. (slave)4.They worked hard and finally achieved the ________result. (prospect)5.The opening speeches sounded more like _________of war than offerings of peace. (declare)Part VI Translation(20%)Translate the following sentences into Chinese.1. It takes no longer to prepare well for one interview than to wander in half-prepared for five. And your prospects for success will be many times better.2. It may be that the Euro-centered American nation is declining as it gives way to a new pacific civilization that will include, but not be limited to, America.3. I’m struck that I am walking on one of the engineering wonders of the world.4. We need to develop a conception of ourselves in the universe not as the master species but as the servant species.5. The stress we feel arises not from a shortage of time, but from the surfeit of things we try to cram into it. Choose the proper words and phrases in the box to translate the following sentences into English.6．除去毁灭性的洪水，饥荒也广泛存在，并已导致了各种各样的问题。

2022高考英语二轮（十一月）练习及答案：阅读理解（4）阅读下列短文，从每题所给的四个选项（A、B、C和D）中，选出最佳选项。

(The Program-Federal Government Helps Minority Business)Federal efforts to aid minority businesses began in the 1960’s when the Small Business Administration (SBA) began making federally guaranteed loans and government-sponsored management and technical assistance available to minority business enterprises. While this program enabled many minority entrepreneurs to form new businesses, the results were disappointing, since managerial inexperience, unfavorable locations, and capital shortages led to high failure rates. Even 15 years after the program was implemented, minority business receipts were not quite two percent of the national economy’s total receipts.Recently federal policymakers have adopted an approach intended to accelerate development of the minority business sector by moving away from directly aiding small minority enterprises and toward supporting large, growth-oriented minority firms through intermediary companies. In this approach, large corporations participate in the development of successful and stable minority businesses by making use of government-sponsored venture capital. The capital is used by a participating company to establish a Minority Enterprise Small Businesses that have potential to become future suppliers of customers of the sponsoring company.MESBIC’s are the result of the belief that providing established firms with easier access to relevant management techniques and more job-specific experience, as well as substantial amounts of capital, gives those firms a greater opportunity to develop sound business foundations than does simply making general management experience and small amounts of capital available. Further, since potential markets for the minority businesses already exist through the sponsoring companies, the minority businesses face considerably less risk in terms of location and market fluctuation. Following early financial and operating problems, sponsoring corporations began t o capitalize MESBIC’s far above the legal minimum of $500,000 in order to generate sufficient income and to sustain the quality of management needed. MESBIC’s are now emerging as increasingly important financing sources for minority enterprises.Ironically, MESBIC staffs, which usually consist of Hispanic and Black professionals, tend to approach investments in minority firms more pragmatically than do many MESBIC directors, who are usually senior managers from sponsoring corporations. The latter often still think mainly in terms of the ‘social responsibility approach’ and thus seem to prefer deals that are riskier and less attractive than normal investment criteria would warrant. Such differences in viewpoint have produced uneasiness among many minority staff members, who feel that minority entrepreneurs and businesses should be judged by established business considerations. These staff members believe their point of view is closer to the original philosophy of MESBIC’s and they are concerned that, unle ss a more prudent course if followed, MESBIC directors may revert to policies likely to re-create the disappointing results of the original SBA approach.1.Which of the following best states the central idea of the passage?[A] The use of MESBIC’s for aid ing minority entrepreneurs seems to have greater potential for success than does the original SBA approach.There is a crucial difference in point of view between the staff and directors of some MESBIC’s.[C] After initial problems with management and marketing, minority businesses have begun to expand at a steady rate.[D] Minority entrepreneurs wishing to form new businesses now have several equally successful federal programs on which to rely. 2.According to the passage, the MESBIC approach differ s from the SBA approach in that MESBIC’s[A] seek federal contracts to provide market for minority businesses.Encourage minority businesses to provide markets for other minority businesses.[C] Attempt to maintain a specified rate of growth in the minority business sector.[D] Rely on the participation of large corporations to finance minority businesses.3.Which of the following statements about the SBA program can be inferred from the passage?[A] The maximum term for loans made to recipient businesses was 15 years.Business loans were considered to be more useful to recipient businesses than was management and technical assistance.[C] The anticipated failure rate for recipient businesses was significantly lower than the rate that actually resulted.[D] Recipient businesses were encouraged to relocate to areas more favorable for business development.4.The author refers to the ‘financial and operating problems’ encountered by MESBIC’s primarily in order to[A] broaden the scope of the discussion to include the legal considerations of funding MESBIC’s through sponsoring companies.call attention to the fact that MESBIC’s must receive adequate funding in order to function effectively.[C] show that sponsoring companies were willing to invest only $500,000 of government-sponsored venture capital in the original MESBIC’s.[D] Compare SBA and MESBIC limits on minimum funding.5.It can be inferred from the passage that the attitude of some MESBIC staff member toward the investments preferred by some MESBIC directors can be best described as[A] disappointing.Indifferent.[C] Shocked.[D] Defensive.Vocabulary1.implement 执行，履行2.growth-oriented 增长潜力的，有进展性的3.intermediary company 中介公司，中间公司4.venture capital 风险资本5.entrepreneur 企业家，创业者6.fluctuation 波动，涨落，起伏7.pragmatically 有用地难句译注1. Even 15 years after the program was implemented minority business receipts were not quite two percent of the national e conomy’s total receipts.【参考译文】甚至在这个方案执行后15年，少数民族工业的收入还不到全国总收入的2％。

专题08阅读理解提分练第一节(共15小题；每小题2分，满分30分)阅读下列短文，从每题所给的A、B、C和D四个选项中，选出最佳选项。

A(2022·云南省第一次统一检测)Choosing the most beautiful ski resort in the Alps is like picking the prettiest diamond.1．Saas-Fee, SwitzerlandUnique selling points：the high-mountain setting, in-your-face glaciers.Saas-Fee hit the right note as the setting for Wham！'s music video in 1984. It's a pleasing Swiss village among glaciers and mountains. Fabled peaks of more than 4，000 meters dot the skyline.Worth the trip：For you to rub shoulders with real mountaineers, the Britannia Hutte is a climbers' refuge, just 15 minutes' walk from the nearest lift. A simple lunch on its sunny balcony offers grand views.Britannia Hutte, 3906 Saas Fee, Switzerland2．Alpbach, AustriaUnique selling points：Cute houses, the bygone feel.Alpbach has long known what its best features are. The medieval (中世纪的) village's traditional wooden farmhouses proved to be head-turners for early tourists and planners.Farming is still very much alive here. It has landed the prize as “Austria's most beautiful village”. And the competition for that one is tough.Worth the trip：Böglalm is an Alpbach favourite, offering authentic local food such as beef soup and grilled sausage.Böglalm, 6236 Alpbach, Austria; ＋43 5336 51773．Megeve, FranceUnique selling points：Mont Blanc views, the stylish center, scent of pine.Megeve muscles its way into the list by virtue of its location, with close-up views of Mont Blanc, Western Europe's highest peak. The town was one of the first purpose-built resorts in the Alps.Worth the trip：Foodies are spoiled for choice in Megeve, especially in three-Michelin-starred Flocons de Sel.Flocons de Sel, 1775 Route du Leutaz, 74120 Megeve, France4．Cortina d'Ampezzo, ItalyUnique selling points：a magnet for the beautiful set, an Olympic site.Just two hours north of Venice, Cortina d'Ampezzo is in a UNESCO World Heritage region. Cortina hosted the Winter Olympics in 1956 and was the setting for a certain James Bond film.Worth the trip：If it's good enough for Mr Bond, Miramonti Majestic Grand Hotel might do the job for you.Miramonti Majestic Grand Hotel, Via Pezie 103, 32043 Cortina d'Ampezzo, Italy; ＋39 0436 42011．Who will choose to vacation in Alpbach?A．Fans of the band Wham！.B．Lovers of ancient European architecture.C．Skiers of the Mount Qomolangma area.D．Enthusiasts of James Bond films.2．Which resort offers the most high-end food?A．Saas-Fee, Switzerland.B．Alpbach, Austria.C．Megeve, France.D．Cortina d'Ampezzo, Italy.3．In which column can the text be found in a newspaper?A．Business. B．Style.C．Entertainment.D．Travel.B(2022·潍坊市模拟)Thirty-five years ago, with just one acre of land, a couple of seeds and a bucket of hope, one Nigerian-born scientist began his mission to defeat famine (饥荒) on his continent.News of the drought across Africa in the early 1980s troubled Nzamujo. Equipped with a PhD in microbiology and his faith, he travelled back to Africa. There, he found a continent ecologically rich, diverse and capable of producing food. He believed drought wasn't the only reason for widespread hunger, and that sustainability had been left out.Nzamujo began designing a “zero waste” agriculture system that would not only increase food security, but also help the environment and create jobs. In 1985, he started his sustainable farm “Songhai” in Benin, a country in western Africa.Nzamujo lives on the farm and constantly updates his techniques. He owes Songhai's success to his degrees in science and engineering. But he also thanks his spiritual and cultural roots, and his father — a driving force in his life — who encouraged him to pursue his studies to the highest degree and to use Songhai to share his knowledge.Songhai has several “eco-literacy” development programs. They range from 18-month training courses for farmer enterprisers, to shorter stays to learn techniques like weeding. People come from all over the world to study Nzamujo's methods.After seeing success on his first zero waste farm, he expanded it throughout western Africa. Today, the Songhai model is applied across the continent. Nzamujo says they've trained more than 7，000 farmer enterprisers and more than 30，000 people in total since it began.Nzamujo believes zero waste agriculture is now steadily tackling the issues he set out to defeat: hunger, unemployment and environmental declines. And he wants to see it go further.4．Which factor related to famine was unnoticed in Nzamujo's eyes?A．Poor soil.B．Water shortage.C．Lack of resources.D．Unsustainability.5．What does the author intend to do in Paragraph 3?A．Introduce a solution.B．Give examples to the readers.C．Add some background information.D．Summarize the previous paragraphs.6．How does Songhai help to ease the problem of famine?A．By offering land.B．By trading seeds.C．By educating farmers.D．By selling technology.7．Which of the following can best describe Nzamujo?A．Critical and careful.B．Learned and responsible.C．Optimistic and generous.D．Considerate and ambitious.C(2022·甘肃省第一次诊断)It's no secret that walking is good for you. Many of us are trying to get in those recommended 10，000 steps a day that our wearable fitness technology urges us to achieve. But how many calories are we actually burning, and how can we get the most out of those steps? Find answers in these ways.Do you know the truth about calorie-burning? Walking is a moderate intensity form of exercise. To get the most calorie-burning benefits, then, it would seem that walking at a consistently light pace would make the most sense. Pay attention to your heart rate and how you feel. Wearable technology can certainly provide an idea of progress towards your calorie-burning goals. Using fitness tracker equipment to help you recognise when you reach your target heart rate zones can help you maximize the calorie-burning.Walking is often considered as a great fat-burning exercise, and with good reason. You can't really walk at higher intensities because of the nature of the exercise; therefore, you end up in low-intensity zones, where you tend to burn more fat. When you're walking at a lighter intensity with your heart rate in the 57% to 63% range, you are more likely to be using fat for fuel. No matter what your speed is, the form matters. When done with a good form, walking is an incredibly beneficial form of exercise for total health and wellness beyond mere calorie burn. Moreover, walking is the most accessible form of exercise because it doesn't require any special clothes, equipment or membership.Whether your goal is fat loss, increased fitness or simply enhancing your overall health and wellness, walking offers all these benefits and more.8．What is the purpose of Paragraph 1?A．To introduce the topic.B．To compare walking with other exercise.C．To explain the wearable fitness technology.D．To show the importance of 10，000 steps a day.9．What does the underlined word “intensity” in Paragraph 2 mean?A．Depth.B．Strength.C．Height.D．Distance.10．What can be inferred from the text?A．Walking at high intensities is recommended.B．Your walking speed is the most important to calorie-burning.C．Walking can burn calories better if you walk in a proper form.D．It is more convenient to walk for those who have gym membership.11．What is the best title for the text?A．Walking 10，000 Steps a Day MattersB．Walking Benefits Your HeartC．How to Best Burn Calories While You're WalkingD．How to Use Wearable Fitness Technology While You're WalkingD(2022·昆明市“三诊一模”)There is a time when many Americans question whether a college degree is worth its cost. However, a recent study found Americans who completed college or university are more likely to have friends and are less lonely than those who only finished high school.Daniel Cox, director of the Survey Center on American Life, said that in general Americans are experiencing a “friend recession”，meaning a decline in their number of friends. Cox noted “Americans have fewer close friends today than we did in the early 1990s. But men and those without a college degree are particularly affected because they seem to have experienced a much more dramatic decline over that period”．The Center questioned 5，054 people this past summer. It found Americans with a college degree feel more socially connected and are more active in their communities than people who didn't go to college. As a result, those who completed college report feeling less lonely.Previous research showed that Americans who didn't go to college are less likely to marry. A 2012 study found that college-educated women are much more likely to get married than women who dropped out of high school. A 2013 study of people born between 1957 and 1964 found that both men and women who didn't finish high school are less likely to marry than those with more education.Today, 65 percent of college-educated Americans over age 25 are married. About 50 percent of people with a high school diploma, or who dropped out of high school, are married. Those numbers were different in 1990, when marriage rates among the college graduates were at 69 percent, compared with 63 percent for those who didnot go to college, says a Pew research report.The American Community Life Survey found around 1 in 10 college graduates say they have no close social connections. That number rises among Americans without a degree, where almost 1 in 4 say they have no close friends.12．According to the text, the study was carried out when ________．A．psychological problems arose sharplyB．the number of college graduates declinedC．Americans experienced a friend recessionD．concerns about college costs appeared13．Why are some studies mentioned in Paragraph 4?A．To provide evidence for the research.B．To analyze the reasons for loneliness.C．To show the importance of marriage.D．To compare differences in generations.14．What is the text mainly about?A．Social problems in the American society.B．Reasons for Americans' low marriage rates.C．Links between education and social interaction.D．Discussions about whether to get a college degree.15．In which column of a magazine may this text appear?A．Entertainment.B．Education.C．Technology.D．Health.第二节(共5小题；每小题2分，满分10分)根据短文内容，从短文后的选项中选出能填入空白处的最佳选项。

选择性必修第三册Unit 3Environmental ProtectionⅠ.阅读理解A[2021·西安模拟]Instagram is about to take its biggest step toward removing likes from its platform. After months of testing an option to hide likes in select international markets, Instagram, which is owned by Facebook (FB), has already been testing hiding likes in seven other countries, including Canada, Ireland and Australia. For years, likes have been central to how celebrities, brands, politicians and everyday users experience Instagram and Facebook. It's a way of measuring popularity and success. But in recent months, Instagram has been rethinking how likes contribute to making its platform more toxic. Now it's considering a change.The total number of likes on posts－which appear as hearts on the app－will disappear from Instagram's main feed, profile pages and permalink pages. The owner of the account can still see their own likes, but their followers won't know the count.CNN Business previously spoke with users in countries with the test. The majority felt this move would improve well-being on the app. Instagram is the most detrimental social networking app for young people's mental health, such as negatively impacting body image, according to one study.But other users and psychologists said hiding likes won't fix everything. The test doesn't address some of the key ways that activity on Instagram can impact the well-being of users, including bullying, feeling left out and thinking other people's lives are better than their own.Renee Engeln, a psychology professor at Northwestern University, voiced his opinion that the biggest impact of Instagram is the content and the exposure to this constant stream of perfected images is what seems to hurt psychologically. Plus, users can still see their own likes—and feel badly if their posts don't perform well.1．How do users usually experience Instagram for years?A．By selecting platforms.B．By showing off talents.C．By hiding likes. D．By giving likes.2．What does the underlined word “detrimental” in Paragraph 3 mean?A．Profitable. B．Popular.C．Harmful. D．Positive.3．What can we infer from the passage?A．Instagram has affected youngsters' mental health.B．The account owners won't know the count o-likes.C．Instagram tested hiding likes in seven countries first.D．The majority think Instagram has been a well-being app.4．What could be the best title of the passage?A．Instagram Misuses LikesB．More People Are Against LikesC．Likes Cause Mental ProblemsD．Likes will Be Hidden on InstagramB[2021·德州模拟]China's Mars rover, Tianwen-1, will likely attempt to land at a site in northeastern Mars, according to a new paper published just days ahead of the mission's launch. The paper was written by team members of China's Tianwen-1 Mars mission, which aims to send an orbiter and a rover to the Red Planet.The study reveals new details about Tianwen-1, outlining its intended landing area, science goals and the names of instruments aboard the spacecraft. It also stresses the historic nature of the mission: Not only is Tianwen-1 China's first fully homegrown Mars mission, it's also the first to carry both an orbiter and a rover.Tianwen-1 means “questions to heaven”and was taken from the title of a poem by Qu Yuan (340 —278 BC). The spacecraft will reach Mars in February 2021, at the same time as NASA's Perseverance rover and the United Arab Emirates 5 Hope orbiter launched on Sunday (July 19). However, China's rover will remain attached to the orbiter for two to three months before attempting its landing, according to the paper.The chosen landing area is Utopia Planitia, a huge basin formed by a large impact far back in Mars' history that was also the region where NASA's Viking 2 lander touched down in 1976. China had isolated a part of the vast plain as a landing area, which means there will be more time and atmosphere for the entry spacecraft to slow down and safely land on the surface. The latitude is also suitable for receiving enough sunlight to power the 240 kilograms rover. The relatively smooth surface will also be helpful for roving. The mission also benefits from the engineering heritage of China's Chang'e lunar exploration program, the paper noted.The Tianwen-1 orbiter will operate in a polar orbit in order to map Mars. The rover will also investigate the surface soil characteristics and water-ice distribution with its own Subsurface Exploration Radar. It will also analyze surface material composition and characteristics of the Martian climate and environment on the surface.5．What's the purpose of the passage?A．To lay out key details about Tianwen-1.B．To state how Tianwen-1 was invented.C．To stress the historic meaning of Tianwen-1.D．To analyze characteristics of the Martian climate.6．What is most special about Tianwen-1 according to Para. 2?A．It was named after Qu Y uan, a famous poet in Chinese history.B．It will reach Mars at the same time as NASA's Viking 2.C．It will remain for 2 or 3 months on Mars.D．It will complete orbiting and roving in a Mars mission.7．Why is Utopia Planitia chosen as the landing area of Tianwen-1?A．The rare air there is suitable for the flight of Tianwen.B．The area can protect Tianwen-1 from too much sunlight.C．It has relatively smooth surface, which is helpful for roving.D．There is no spacecraft successfully landing there in history.8．The last Paragraph states mainly ________.A．Tianwen-1's historic contributionsB．Tianwen-1's new radar instrumentsC．Tianwen-1's academic advantagesD．Tianwen-1's scientific goalsⅡ.完形填空[2021·日照模拟]Just a few months earlier, I would never have pictured myself acting in a play in front of two hundred people. If not for my __1__，Mrs. Sather, I might never have found that opportunity.In the first and second grade, I was extremely __2__. It just wasn't in my personality to be very outgoing. I would escape in my writing. Mrs. Sather, always __3__ me to write more. I think she was one of the first people to see my inner __4__.One day, she announced our class was going to __5__ a play, a take-off on The Wizard of Oz. “I need someone to play the lead part of Dorothy.” A few excited hands __6__. Mine, of course, was not one of them.After school, Mrs. Sather said to me, “Dallas, I was __7__ you didn't raise your hand. You're great at memorizing things, and you have such a sweet personality. Perfect for Dorothy! I had you in __8__ for Dorothy while writing the play! If you __9__ don't want to, though, I won't make you. It's your __10__.”I realized it was time to show the world who I really was. I __11__ the role. Fast-forward through five months of __12__，line memorizing, and costume creating, we were ready.At the end of the play, when the audience stood and applauded, I knew they were not just __13__ for my performance that night, but for the __14__ that they knew would come in later years because of my newfound __15__.1．A.partner B．teacherC．parent D．classmate2．A.shy B．weakC．energetic D．ambitious3．A.recommended B．allowedC．encouraged D．accompanied4．A.drawback B．peaceC．character D．strength5．A.perform B．watchC．write D．enjoy6．A.put down B．reached outC．shot up D．drew back7．A.excited B．amusedC．afraid D．surprised8．A.store B．mindC．memory D．comparison9．A.initially B．reallyC．finally D．spiritually10．A.turn B．choiceC．luck D．fault11．A.accepted B．playedC．created D．remembered12．A.practicing B．learningC．observing D．communicating13．A.celebrating B．chattingC．cheering D．congratulating14．A.praises B．effortsC．beliefs D．performances15．A.skill B．confidenceC．interest D．hobbyⅢ.语篇填空[2021·湖北模拟]Having a vegan diet might sound hard. However, in recent years, veganism (纯素食主义) has become one of 1.________ fastest-growing lifestyle trends in the world.According to HuffPost, more than 3 million people in the United States are vegans. In the UK, about 542,000 people 2.________ (choose) veganism over the past decade.What is driving this 3.________ (grow) in veganism? It is because people want to protect the environment. Producing meat and dairy products 4.________ (be) stressful for the environment. According to a study, global meat manufacturing causes about 18 percent of the world's greenhouse gas emissions. This figure is 5.________ (high) than all the world's cars, trains and planes combined. Another reason is 6.________ many of today's young people believe it's wrong to kill animals for food.For many people, veganism 7.________ (simple) means eating no meat, cheese or eggs, but going animal-free also applies to fashion and manufacturing. Every year more than a billion animals are killed 8.________ (make) leather products from their skins. Now, many brands are looking for other materials. The sports brand Puma has made shoes out of pineapple leaves. Tesla is said to be removing animal-based leather 9.________ its seats.So, if you're interested in 10.________ (protect) the environment, you might want to give veganism a try.详解答案选择性必修第三册Unit 3Environmental Protection Ⅰ.阅读理解A【语篇解读】本文是一篇说明文。

2025届黑龙江省大庆第一中学高考仿真卷英语试题注意事项：1．答题前，考生先将自己的姓名、准考证号填写清楚，将条形码准确粘贴在考生信息条形码粘贴区。

2．选择题必须使用2B铅笔填涂；非选择题必须使用0．5毫米黑色字迹的签字笔书写，字体工整、笔迹清楚。

3．请按照题号顺序在各题目的答题区域内作答，超出答题区域书写的答案无效；在草稿纸、试题卷上答题无效。

4．保持卡面清洁，不要折叠，不要弄破、弄皱，不准使用涂改液、修正带、刮纸刀。

第一部分（共20小题，每小题1.5分，满分30分）1．With the number of homecoming overseas students ________ up in recent years, the attraction of foreign degree holders has gradually faded.A．shot B．being shotC．shooting D．to shoot2．Linda realized she was in the wrong and promised to ________ a new leaf.A．take over B．turn over C．get over D．go over3．–What’s that noise?–Oh, I forgot to tell you. The new machine ______.A．was tested B．will be testedC．is being tested D．has been tested4．_____ here, come and have a cup of tea.A．Passing B．To pass C．Pass D．Having passed5．Not until he went abroad to further his study_______ the importance of English.A．has he found B．he has foundC．did he find D．he had found6．—Thank God I passed the interview yesterday. I was sweating heavily.—Me too. I ________ when I was sitting outside waiting.A．looked down my nose B．let my hair downC．had butterflies in my stomach D．chanced my arm7．To tell the truth, I would rather I ________ the pain instead of you. You don’t know how worr ied I was.A．took B．had takenC．have taken D．should have taken8．–You look so angry. What happened?–_______ I’d rather not talk about it.A．Nothing. B．All right. C．Get away! D．No way!9．If you, the special one in the world, want to show your ______ personality, this T-shirt is exactly what you are looking for.A．calm B．unique C．straight D．constant10．I prefer a school ______teachers have to work as a team, instead of fighting against each other.A．where B．that C．as D．when11．—Jenny，how did your math exam go?—I thought I ________，but in fact I came in the top 10% in the class.A．might have failed B．couldn’t have failed C．should have failed D．mustn’t have failed12．Y ou can use this room for your club activities tomorrow ______ you keep it tidy and clean.A．for fear that B．in caseC．on condition that D．even if13．Maybe some of you are curious about what my life was like on the streets because I’ve never really talked about it ______.A．in place B．in turn C．in force D．in depth14．The younger generation are raised in a more open environment, which has enabled them to develop____ their values in life.A．in charge of B．in contrast to C．in exchange for D．in tune with15．Andy can go to the cinema together with us he has finished the task．A．unless B．as soon as C．until D．as long as16．----What happened to the young trees we planted last week？---The trees_____________ well，but I didn't water them.A．might grow B．needn't have grownC．would grow D．would have grown17．How did it come about ________ a quiet person should appear so wild today?A．whether B．that C．if D．what18．—Why did you come by taxi?—My car broke down last week and I still it repaired.A．didn’t have B．hadn’t hadC．haven’t had D．won’t have19．In my driving lesson, a traffic rule that impressed me most is that in no time ________ when the traffic lights turn red.A．all vehicles should stop B．should all vehicles stopC．should stop all vehicles D．should stop all vehicles20．— Is it enough to finish the form for a passport, Madam?— Y our passport application form should be ________ by two recent photos.A．updated B．accompaniedC．established D．identified第二部分阅读理解（满分40分）阅读下列短文，从每题所给的A、B、C、D四个选项中，选出最佳选项。

2022高考英语星级阶梯阅读练习二星级（25）AThirty years ago not many people would have dreamed of doing the repairs and decorations in their own homes. In those days labor was fairly cheap and most people would have thought it worthwhile to employ a professional painter and decorator, unless of course they were either very hand up or were in the trade themselves.Today, however, it is quite a different story. Men and women in all walks of life turn their hands to all sorts of jobs round the house including painting, papering, putting up shelves and wall units, and tiling walls and floors. Some people with no professional training of any kind have even successfully built their own houses. These jobs have been made easier today by the introduction of prepared materials, which require the minimum amount of skill to use. In every high street throughout Britain nowadays there is at least one “Do-It-Yourself” shop containing a vast range of timber, tiles, paints, wallpapers and floor coverings besides tools of every description including power drills and many accessories. “Do-It-Yourself” is a booming business; all these shops do a roaring trade and look like continuing to do so. Probably the main reason for the craze is the high cost of present-day labor and the shortage of building firms willing to do small jobs.51. Why did people employ professional workers to decorate homes thirty years ago?A. Because they could not do it themselves.B. Because professional workers were very cheap.C. Because they had no time.D. Because professional workers could do much better.52. Thirty years later what changes took place?A. People could do everything themselves.B. Few people chose to be a professional worker.C. People with no professional training successfully built their own houses.D. New expensive materials required no skills at all.53. What caused the DIY craze?A. Young people liked to follow the fashion.B. “Do-It-Yourself” is a booming business.C. There were fewer building companies.D. High cost of professional workers.54. What is the speaker telling us ?A. How DIY comes into being.B. Changes in building.C. Changes in housing.D. Great changes in these thirty years.BKindergarten outside? Yes, indeed. I t’s part of a growing worldwide trend toward outdoor education. The schools are called forest kindergartens.The numbers are small so far in the U.S., but the idea is well established in Europe, with schools in Scotland, England, and Switzerland. By far the most such schools are in Germany, which has more than 400 forest kindergartens.Some schools feature several hours of outdoor schooling. This is certainly the case with the Waldorf School of Saratoga Springs. Children there will be venturing out on the nearby Hemlock Trail to learn more about the natural world. Some lessons are focused on nature; others are academic topics delivered in a natural setting. In all cases, students are active-not sitting at desks or on mats on the floor but walking, running, jumping, solving problems like how to get the mud off the bottoms of their shoes before their parents find out.Seriously, the focus is on activity at these schools. Studies have shown that children’s immune systems actually get stronger after all of the outdoor activity, and that graduates of forest kindergartens show a higher ability to learn when they progress through their academic careers.Other schools are all outdoors, all the time. This is the case with the Cedar Song Nature School, on Vashon Island, Washington. Students at this school spend their whole three–hour day outdoors, in a private five-acre forest, doing all kinds of physical activities.At these forest kindergartens, students learn science by observing and doing it, learn math by applying it to the natural world around them, learn letters and words by putting them together using sights and sounds. These students learn how to get along with one another, individually and in a group. They also develop healthy levels of self-confidence.Nowadays many children become obese(肥胖的) because of sedentary（久坐的）activities like watching television and playing video games. These outdoor schools give children chances to learn just as much, if not more, from opening their eyes to the real world around them.55. What do we know about forest kindergartens?A. The first one was created in England.B. They are very popular in Germany.C. There are 400 all over the world.D. Their number is huge in the U.S.56. What is special about forest kindergartens?A. Kids learn more than those at ordinary kindergartens.B. Students go outside when weather permits.C. They value activity very much.D. They are situated in forests.57. The main difference between the Waldorf School and Cedar Song Nature School liesin______.A. the subjectsB. the activitiesC. the outdoor timeD. the teaching methods58. Which of the following would be the best title for the text?A. Get close to natureB. A new trend of educationC. Forest kindergartens are popularD. Outdoor education benefits kids a lotCEveryone has good days and bad days.Sometimes, you feel as if you’re on top of the world and all the questions on your maths test might seem easy. But occasionally you feel horrible, and you lose things and cannot focus on our schoolwork.For more than 20 years, scientists have suggested that high self-esteem(自尊) is the key to success.Now, new research shows that focusing just on building self-esteem may not be helpful. In some cases, having high self-esteem can make people less likeable or more upset when they fail in something.“Forget about self-esteem,”says Jennifer Crocker, a psychologist at the University of Michigan, US. “It’s not the important thing.”Feeling goodCrocker’s advice may sound a bit strange. After all, feeling good can be good for you.Studies show that people with high self-esteem are less likely to be depressed, anxious, shy, or lonely than those with low self-esteem.However, after reviewing about 18,000 studies on self-esteem, Roy Baumeister, a psychologist at Florida State University, has found that building up your self-esteem will not necessarily make you a better person.He believes that violent people often have the highest self-esteem of all. He also said:“ There’s no evidence that kids with high self-esteem do better in school.”ProblemsAll types of people have problems. People with high self-esteem can have big egos(自我) that can make them less likeable, said Kathleen Vohs, a psychology professor at Columbia University.People with high self-esteem tend to think more of themselves, VOhs says. People with low self-esteem are more likely to rely on their friends when they need help.What to doResearchers say it is best to listen to and support other people. Find positive ways to contribute to society. If you fail in something, try to learn from the experience. “The best therapy(药方) is to recognize your faults,” Vohs says. “It’s OK to say, ‘I’ m not so good at that,’ and then move on.”59. What does the underlined part “on top of the world” in Paragraph 2 probably mean?A. Quite helpful.B. Extremely happy.C. Very unlucky.D. Rather upset.60. The conclusion drawn from the new research shows that high self-esteem_____.A. is not important at allB. makes people more likeableC. may not be the key to successD. helps you do better at school61. Which of the following is TRUE according to Vohs?A. Feeling good doesn’t mean you lead a happy life.B. People with high self-esteem always seek others’ help.C. People with high self-esteem tend to be selfish.D. People with low self-esteem are often more popular.62. We can infer from the text that the best therapy mentioned in the last paragraph is mainly forpeople_____.A. with high self-esteemB. with low self-esteemC. who contribute significantly to societyD. who are in need of supportDIt was a Sunday and the heavy storm had lasted all night. The morning after the storm, though, was beautiful: blue skies, warm air and a calm, inviting sea touching the shore gently.My father realized it was a good day for fishing and invited my sister and me to go with him.I was only 14 and fishing had never been my thing, but I decided to go all the same. I’m so glad I did.On the road to the harbour we could see the terrible destruction on the coast, but the harbour itself was in fairly good shape. After all, it was protected by the arms of a bay that only one tiny channel to the sea. As we got on board, we noticed two big humps(脊背)in the distance.On approaching them, we saw it was a mother whale with her baby. We couldn’t believe it—there aren’t any whale along the coast here. The storm must have driven them across the ocean into the bay, in which the still water was so badly polluted that nothing could survive.The little baby whale actually as big as our boat was obviously stuck and could not move. The mother dived under the water and came up suddenly, making big whirlpools(漩涡)and waves. “She’s trying to help her baby, but on the wrong side,” my father said. At this point, my father moved our boat in a semicircle to the other side and, heading the boat towards the baby whale, pushed it gently. With several gentle pushes the big hump turned over and disappeared under water. Then it swam up right beside its mum. They struggled in their desperate attempts to escape but missed the exit and started heading in the wrong direction. We hurried up to the whales and tried to lead them towards the bay channel. Slowly, they let us lead them, sometimes rising from the water right beside us to breathe and to give us a trusting look with those huge eyes. Once they hit their first part of clean water flowing straight from the sea, the mum gave us a wave with her tail and off they swam into the distance.In the excitement it had felt like only a few minutes, but we had been with those wonderfulanimals for almost an hour and a half. That was the simple and lasting beauty of the day. Nearly four decades later, I still look back fondly to that golden day at sea.63.The author says “I’m so glad I did.”(in Para.2)because_______.A. he witnessed the whole process of fishingB. he enjoyed the beauty of the calm seaC. he experienced the rescue of the whalesD. he spent the weekend with his family64.The harbour survived the storm owing to ______.A. the shape of the harborB. the arms of one bayC. the still water in the channelD. the long coast line65.The mother whale failed to help her baby because _______.A. she had stayed in the polluted water for too longB. the whirlpools she had made were not big enoughC. she had no other whales around to turn for helpD. the waves pushed her baby in the wrong direction66. What is the theme of the story?A. Saving lives brings people a sense of happiness.B. Fishing provides excitement for children.C. It’s necessary to live in harmony with animals.D. It’s vital to protect the environment.EWhat Is a Boy?Between the innocence of babyhood and the seriousness of manhood we find a delightful creature called a “boy”. Boys come in different sizes, weights, and colors, but all boys have the same belief: to enjoy every second of every minute of every hour of every day and to fill the air with noise until the adult males pack them off to bed at night.Boys are found everywhere –on top of, under, inside of, climbing on, swinging from, running around, or jumping to. Mothers spoil them, little girls hate them, older sisters and brothers love them, and God protects them. A boy is TRUTH with dirt on its face, BEAUTY with a cut on its finger, WISDOM with chocalate in its hair, and the HOPE of the future with a snake in its pocket.When you are busy, a boy is a trouble maker and a noise. When you want him to make a good impression, his brain turns to jelly or else he becomes a wild creature bent on destroying the world and himself with it.A boy is a mixture – he has the stomach of a horse, the digestion (消化力) of stones and sand, the energy of an atomic bomb, the curiosity of a cat, the imagination of a superman, the shyness of a sweet girl, the brave nature of a bull, the violence of a firecracker, but when you askhim to make something, he has five thumbs (拇指) on each hand.He likes ice cream, knives, saws, Christmas, comic books, woods, water (in its natural habitat), large animals, Dad, trains, Saturday mornings, and fire engines. He is not much for Sunday schools, company, schools, books without pictures, music lessons, neckties, barbers, girls, overcoats, adults, or bedtime.Nobody else is so early to rise, or so late to supper. Nobody else gets so much fun out of trees, dogs, and breezes. Nobody else can put into one pocket a rusty knife, a half eaten apple, a three-feet rope, six cents and some unknown things.A boy is a magical creature – he is your headache but when you come home at night with only shattered pieces of your hopes and dreams, he can mend them like new with two magic words, “Hi, Dad!”67. The whole passage is in a tone(调子) of _________.A. humor and loveB. respect and harmonyC. ambition and expectationD. confidence and imagination68.The underlined sentence “he has five thumbs on each hand” probably means______.A. he has altogether five fingersB. he is slow, foolish and clumsyC. he becomes clever and smartD. he cuts his hand with a knife69. According to the writer, boys appreciate everything in the following except ________.A. ice creamB. comic booksC. Saturday morningsD. Sunday schools70. What does the writer feel about boys?A. He feels curious about their noise.B. He is fed up with these creatures.C. He is amazed by their naughtiness.D. He feels unsafe staying with them.阅读明白得：51---54 BCDA 55---58 BCCD 59---62 BCCA63---66 CBDA 67---70 ABDC。

绝密★启用前汕头市2016-2017学年度普通高中毕业班教学质量监测试题英语注意事项：1、本试卷分第I卷（选择题）和第II卷（非选择题）两部分。

答卷前，考生务必将自己的姓名、考生号和座位号填写在答题卡上。

因测试不考听力，第I 卷从第二部分的”阅读理解”开始，试题序号从”21”开始。

2、回答第I卷时，选出每小题答案后，用铅笔把答题卡上对应题目的答案标号涂黑。

如需改动，用橡皮擦干净后，再选涂其他答案标号。

写在本试卷上无效。

3、回答第II卷时，将答案写在答题卡上，写在本试卷上无效。

4、考生必须保持答题卡的整洁。

考试结束后，将答题卡交回。

第I 卷第二部分阅读理解(共20小题，每题2分，满分40分)第一节(共15小题；每小题2分，满分30分)阅读下列短文，从每题所给的四个选项(A、B、C、和D)中，选出最佳选项，并在答题卡上将该项涂黑。

ASigns of a global economic recovery are glimmering, but are they enough to account for taking a major vacation? Well, the world is always bigger than our wallets. One of the simplest options is to find a place that has a lot to offer but hasn’t yet been hit by the price inflation that comes with mass popularity. To help travelers in search of value, we’ve assembled, with the help of professionals from USA Today, CNN and Lonely Planet, a list of destinations that are worth going to while they’re still cheap.UkraineIts name translates as “land on the edge”, and this year Ukraine may be on the edge of discovery for budget travelers in search of rich history. Visitors can enjoy its cultural wealth, the warmth of its people, and the fact that their daily spending is below $50 (307 yuan).The country’s UNESCO World Heritage Sites are cooperating with locals to offer special deals, such as a traditional meal for just a few dollars. It’s the kind of travel experience you will recall once the moment has passed, so now is the time to build those memories.South KoreaSouth Korea is a visitor-friendly country. Not only can budget travelers find the basics —from hotel rooms to great meals —at reasonable prices, but the country also has a ton of free parks, discounts and other services, especially for visitors. For instance, until August 25, a free shuttle bus transports foreign visitors between the capital city of Seoul and Jeonju, a popular tourist destination. A free phone service offers tourists multilingual assistance 24 hours a day.TurkeyTurkey is on the rise, so to get the best of the new at the price of the old, go now. In the last decade, the country’s tourism facilities have grown by 67 percent, according to USA Today, and more recently it has emerged as a global airline hub. This country of ancient ruins, historic towns and beckoning beaches is a destination to watch this summer.EgyptPopular resort areas in Egypt, like Sharm El Sherk, are as relaxing as they ever were — and also less stressful for your wallet. “The overall sentiment is that resort areas like Sharm El Sheik are very safe,” said Tony Cardoza, president of a US travel agency, in an interview with CNN. “But most vacationers appear to prefer traveling to places that haven’t seen as much civil unrest.”That preference has made Egypt a buyer’s market. Low demand also has another benefit: smaller crowds. “Clients going now have been able to get pictures of themselves in front of the pyramids with no other tourists blocking the view,” Cardoza said.1.What can South Korea especially provide for the tourists?A.rich historyB.free servicesC.ancient ruinsD.free hotels2.If you are interested in history, you can go to _______.raine & Egyptraine & South KoreaC.South Korea & EgyptD.Turkey & Ukraine3.What is the advantage of Egypt, compared to other three countries?A.lower priceB.much saferC.fewer touristsD.less stressfulBI always believed that my parents had a good marriage, but just before I, the youngest of four children, turned sixteen, my belief was painfully tested. My father, who used to share in the chores around the house, gradually started becoming downhearted. From the time he came home from his job to the time he went to bed, he hardly spoke a word to my mom or us kids. The strain on my mom and dad’s relationship was very evident. However, I was not prepared for the day that Mom told us that Dad had decided to leave. All that I could think of was that I was going to become a product of a divorced family. It was something I never thought possible, and it grieved me greatly.I kept telling myself that it wasn’t going to happen, and I went totally numb when I knew my dad was really leaving. The night before he left, I stayed up in my room for a long time. I prayed and I cried and I wrote a long letter to my dad. I told him how much I loved him and how much I would miss him. I told him that I was praying for him and wanted him to know that, no matter what, Jesus and I loved him. I told him that I would always and forever be his Krissie ... his Noodles. As I folded my note, I stuck in a picture of me with a saying I had always heard: “Anyone can be a father, but it takes someone special to be a daddy.”Early the next morning, as my dad left our house, I sneaked out to the car and slipped my letter into one of his bags.Two weeks went by with hardly a word from my father. Then, one afternoon, I came home from school to find my mom sitting at the dining room table waiting to talk to me. I could see in her eyes that she had been crying. She told me that Dad had been there and that they had talked for a long time. They decided that there were things that the both of them could and would change and that their marriage was worth saving. Mom then turned her focus to my eyes.“Kristi, Dad told me that you wrote him a letter. Can I ask what you wrote to him?”I found it hard to share with my mom what I had written from my heart to my dad. I mumbled a few words and shrugged.A few days later my dad was back. We never talked about the letter, my dad and I. I guess I always figured that it was something that was a secret between us.4.What happened to the author’s parents when she was sixteen?A.They left her alone.B.They got divorced.C.They shared in the chores together.D.They had a good marriage.5.What is the meaning of the underlined word “grieved” in Para.1?A.made sb. angryB.made sb. delightedC.made sb. sadD.made sb. greedy6.What can we learn from the passage?A.The author handed the letter directly to her father.B.Her father wrote back to the author when he finished reading the letter.C.The author’s letter made a difference to her father.D.The author shared what she wrote with her mother.7.What might be the best title for the passage?A. A Promise KeptB. A LetterC. A Broken FamilyD. A Great DaddyCThe history of Teacher’s Day traces back to the Han Dynasty(206 BC — AD 220). According to record, during the Han and Jin dynasties, on August 27 each year, the birthday of Confucius, the emperor would go to Confucius’ temple and pay tribute(敬意) to the ancient philosopher followed by court officials, and would also invite royal teachers to the imperial court for a banquet. On this day, teachers around the nation enjoyed a day’s vacation and were given dried meat as gifts.The capital, all states and counties would also hold ceremonies to worship Confucius. Excellent-performing teachers would be chosen from academies and learning institutions nationwide, reporting to the royal court and given 500 liang(两) silver coins as awards.Until the Qing Dynasty, the ceremony, on August 27, was of a larger scale. The teachers’salaries in schools and academies around the nation were raised, and well-performing teachers would be awarded official titles or promoted to higher positions.Normally, an ancient teacher’s income included salary, accommodation and festival gifts. There was no fixed tuition fee. Generally the parents paid teachers according to their household income. Both money and basic foodstuff could be paid in exchange for tuition.In private schools, teachers always received money or gifts from the host family at certain festivals or at the beginning and end of each semester.The festivals in which teachers received gifts varied from region to region, while the most valued ones were the Duanwu, Mid-autumn and Chinese New Year festivals, as well as Confucius’birthday and the private tutor’s birthday.Among all the gift-giving festivals, the first meeting gift was a must. When students met their private tutors for the first time, they had to kneel down to Confucius’ spirit tablet and then to their private tutor, before presenting a “gift”.8.The passage mainly talks about _______.A.the teachers in ancient ChinaB.the Teachers’ Day in ancient ChinaC.the teachers’ high positions in ancient ChinaD.the teachers’ salaries in ancient China9.How long has the Teachers’ Day been in China?A.1000-2000 yearsB.2000-3000 yearsC.3000-4000 yearsD.4000-5000 years10.What is the special gift for the teachers on the Teachers’ Day during the Han and Jin dynasties?A. a higher positionB. a day freeC.500 liang silver coinsD.days’ vacation11.What’s the main idea of the last four paragraphs?A.Where teachers could get gifts in ancient China.B.Why teachers got gifts in ancient China.C.How teachers were presented gifts in ancient China.D.When teachers received gifts in ancient China.DTurkey has warned its citizens living in or traveling to the United States to avoid “social tensions”in major American cities, such as angry protests against Donald Trump’s presidential election victory.The Ankara government on Saturday also advised caution for any visitors who might encounter “racist”outbursts, which many Americans see as the action of extremists(极端个体) possibly caused by Trump’s comments critical of immigrants.Turkey did not specifically cite post-election political turmoil(混乱) in the United States in connection with either of its warnings.A Turkish Foreign Ministry statement urged Turks “to be alert due to the risks linked to current events and social tensions.”Turkey, which itself has been the subject of frequent travel warnings by Western governments in recent months, also noted “the increase, over the last few days, of verbal and physical aggression of a xenophobic(恐惧外国人的) or racist nature across the U.S.”Turkish tourists and those who live in the U.S. were told to watch for possible future announcement on the website of the Turkish Embassy in Washington.The Ankara government regularly condemns violence or threats of violence against Muslims in the United States and Europe, and President Recep Tayyip Erdogan sounded a warning Saturday about prejudice, which he said “is spreading like the plague in some European countries.”12.What did Turkey advise its citizens to do?A.To leave America immediatelyB.To keep away from the Anti-Trump ProtestsC.To join the political turmoilD.To stop traveling to the United States13.What can we learn from the passage?A.Trump criticized immigrants severely.B.The Ankara government welcomes Trump’s victory.C.Turkey broadcast a lot of post-election political turmoil in the United States.D.European countries show friendliness to Turkey.14.What is the Turkish Foreign Ministry’s attitude towards Trump’s victory?A.CourageousB.DoubtfulC.OptimisticD.Pessimistic15.Where would this passage most probably appear?A. A textbookB. A newspaperC. A travel guideD. A TV ad.第二节（共 5 小题，每小题 2 分，满分10 分）根据短文内容，从短文后的选项中选出能填入空白处的最佳选项。

One password to remember, foreverPassword reuse? Break the habitSecure and accessible with features you needUse a password manager to generate unique, strong passwords for different websites and store them in a secure “vault”. Toaccess that vault, all you need to remember is one single, very strong, unique password.We’ve all likely used the same logins for different websites in the past, but this puts important data at risk: hackers can useleaked passwords to gather sensitive information about you and your family. HaveIBeenPwned (https:///)can show you when website data breaches have leaked your passwords. Luckily, passwordmanagers make it simple to create strong, unique passwords. When there’s a security breach in the future, you’ll have peaceof mind knowing your data on other websites is not at risk.We’ve all likely used the same logins for different websites in the past, but this puts important data at risk: hackers can useleaked passwords to gather sensitive information about you and your family. HaveIBeenPwned can show you when websitedata breaches have leaked your passwords. Luckily, password managers make it simple to create strong, unique passwords.When there’s a security breach in the future, you’ll have peace of mind knowing your data on other websites is not at risk.There are many reputable password manager solutions, each with its own pros and cons. Three of the most popular are highlighted below. Each is available on all major platforms and offers similar functionality but has its own design and unique features.We do encourage a password manager as an Information Security best practice for your personal information. If used properly, a password manager will be easier to use and more secure than needing to remember multiple strong passwords.Each solution offers a basic free version with a robust feature set as well as paid versions with additional functionality. If you choose to upgrade to oneof the paid versions, you are responsible for the associated cost.See the drop-down below for a comparison of these three solutions.https:// https:// https:// Password ManagersWhy use a password manager?Why use a password manager?Accenture's Guidance on password managersUse of a password manager is recommended.We recommend this extra layer of security, especially if you choose to store personal logins and passwords.If you use a password manager to store personal credentials, it should be protected with Multi-Factor Authentication.While we recommend the use of a password manager, like any other commercially available product that you chose to use at home, we cannot guarantee that it will never be compromised. We believe it is still the safest approach, and our security leaders use password managers every day. Because you could be impacted personally, the choice of whether to use a password manager and which one to use is solely up to you.• Feature rich free version• Extensive two factor authentication options• Solid and consistent design across • Stand-alone desktop app limitations in Mac • Limited password sharing• Limited Two Factor Authentication (2FA) • Ease of use, excellent support for all majorplatforms, wide range of features andvariety of configurations• The free version of LastPass syncs across anunlimited number of devices• Paid version's price has tripled in the pastfew years, going from $12 per year to $36per year. • Can change almost all passwords instantly • Intuitive interface across all platforms • Premium version is more expensive thanother password managers • Single device only • Maximum of 50 stored passwords • Bulk password changer, which can reset hundreds of your passwords at once • Can scan email to find old accounts • Premium plan is costly at $60 per year; Premium Plus plan is $120 per year • Free plan was downgraded to 50 sets of credentials • Particularly strong security features (Breach watch, Zero knowledge, SOC2) • Intuitive design across platforms • Less robust form-filling capabilities • No PIN for mobile app• No bulk password change• Single device only• Cheaper than premium versions of both Dashlane and LastPass • Has excellent "Zero Knowledge" security, but does not have a bulk password changer • Won't let you create a PIN to quickly access the mobile appSTANDOUT FEATURESCONSIDERATIONSNOTABLE LIMITATIONS OF FREE VERSIONADDITIONAL INFORMATIONPlease visit each respective solution's website for a more complete and up-to-date list of features. You are responsible for the protection of your personal credentials.Detailed password manager comparison tablehttps://https:// https://。