and what do you do with those discovered related works? bury them and never ever mention them in your own work or give proper credit? as a sidenote, the CCS05 CFI paper references my other work (ASLR), *except* the one that made their work not novel.

Cite it. Kind of stupid or passive aggressive question ;)

thanks for playing, it was neither :). you just shamed pretty much the entire academic CFI crowed.

I disagree on that part. You assume things you cannot know, that is someone being aware of a specific work maliciously avoids citing it for whatever reasons. And additionally, as this went through peer review, that the reviewers were fine with this. [1/2]

i don't assume, i know for a fact that say @gannimo knew about RAP when he wrote some of his CFI related papers. now what? ;)

You mean our CFI survey from '17 where we cited your work? What are you trying to imply?

that and CFIXX, HEXTYPE, etc, where's the citation of my work in there? that CSUR paper added a few down-playing words about my early work and zero about RAP itself, never mind an actual evaluation. you could have asked me to help conduct the tests but you never did. why not?

also you didn't answer why aslr.txt isn't held up to this standard of yours (N.B. i'm not in academia) and why you excluded RAP from the CSUR survey.

ASLR had a full practical implementation and improved over time. Your CFI proposal was an idea without an implementation and without discussing details.

We did not actively or maliciously exclude RAP. As I mentioned before, RAP is a policy that reiterates and reimplements academic ideas. There's no novelty there. Sure, we could (and maybe should) have evaluated for completeness but it would not have made a big difference IMO