19th Annual Computer Security Applications Conference. proceedings : 8-12 December, 2003, Las Vegas, Nevada / sponsored by Applied Computer Security Associates.

Format:

Book

Conference/Event

Contributor:

IEEE Xplore (Online service)

Applied Computer Security Associates.

Conference Name:

Annual Computer Security Applications Conference (19th : 2003 : Las Vegas, Nev.)

Language:

English

Subjects (All):

Computer security--Congresses.

Computer security.

Genre:

Conference papers and proceedings.

Physical Description:

xxii, 430 pages : illustrations

Other Title:

Computer security applications

Place of Publication:

Los Alamitos, Calif. : IEEE Computer Society, [2003]

System Details:

Mode of access: World Wide Web.

text file

Contents:

Wednesday 8:30 A.M., December 10

Distinguished Practitioner

MLS-PCA: A High Assurance Security Architecture for Future Avionics / C. Weissman 2

Wednesday 10:30 A.M., December 10

Track A Intrusion Detection I / Chair: Christoph Schuba

Bayesian Event Classification for Intrusion Detection / C. Kruegel, D. Mutz, W. Robertson, F. Valeur 14

Intrusion Detection: A Bioinformatics Approach / S. Coull, J. Branch, B. Szymanski, E. Breimer 24

A Stateful Intrusion Detection System for World-Wide Web Servers / G. Vigna, W. Robertson, V. Kher, R. Kemmerer 34

Track B Network Security / Chair: John Viega

Behavioral Authentication of Server Flows / J. Early, C. Brodley, C. Rosenberg 46

A Multi-View Tool for Checking the Security Semantics of Router Configurations / H. Peine, R. Schwarz 56

S-ARP: A Secure Address Resolution Protocol / D. Bruschi, A. Ornaghi, E. Rosti 66

Wednesday 1:30 P.M., December 10

Track A Defensive Information Warfare / Chair: Thomas Daniels

Design, Implementation and Test of an Email Virus Throttle / M. Williamson 76

Efficient Minimum-Cost Network Hardening via Exploit Dependency Graphs / S. Noel, S. Jajodia, B. O'Berry, M. Jacobs 86

An IP Traceback Technique against Denial-of-Service Attacks / Z. Chen, M.-C. Lee 96

Track B Forum

Security for Wireless Sensor Networks / Chair: Ronald Watro, Panelists: D. Carman, D. Coffin, B. Dutertre, V. Swarup 106

Wednesday 3:30 P.M., December 10

Track A Applied Cryptography / Chair: Vipin Swarup

An Intrusion-Tolerant Password Authentication System / X. Wang, M. Heydari, H. Lin 110

Modeling of Multiple Agent Based Cryptographic Key Recovery Protocol / S. Lim, S. Kang, J. Sohn 119

Practical Random Number Generation in Software / J. Viega 129

Track B Recovery and Forensics / Chair: Eugene Spafford

Multi-Version Attack Recovery for Workflow Systems / M. Yu, P. Liu, W. Zang 142

Automatic Reassembly of Document Fragments via Context Based Statistical Models / K. Shanmugasundaram, N. Memon 152

Automated Analysis for Digital Forensic Science: Semantic Integrity Checking / T. Stallard, K. Levitt 160

Wednesday 5:30 - 7:00 P.M., December 10

Works in Progress / Chair: Christoph Schuba

Thursday 8:30 A.M., December 11

Invited Essayist Plenary / Speaker: Lance Spitzner

Honeypots: Catching the Insider Threat / L. Spitzner 170

Thursday 10:30 A.M., December 11

Track A Software Safety and Program Correctness / Chair: Meg Weinberg

Isolated Program Execution: An Application Transparent Approach for Executing Untrusted Programs / Z. Liang, V. Venkatakrishnan, R. Sekar 182

How to Unwittingly Sign Non-repudiable Documents with Java Applications / D. Bruschi, D. Fabris, V. Glave, E. Rosti 192

Making Secure TCP Connections Resistant to Server Failures / H. Wu, A. Burt, R. Thurimella 197

Track B Classic Papers / Chair: Dan Thomsen

PSOS Revisited / P. Neumann, R. Feiertag 208

A Failure to Learn from the Past / E. Spafford 217

Thursday 1:30 P.M., December 11

Track A Event Correlation / Chair: Art Friedman

Collaborative Intrusion Detection System (CIDS): A Framework for Accurate and Efficient IDS / Y.-S. Wu, B. Foo, Y. Mei, S. Bagchi 234

Attack Signature Matching and Discovery in Systems Employing Heterogeneous IDS / N. Carey, G. Mohay, A. Clark 245

Log Correlation for Intrusion Detection: A Proof of Concept / C. Abad, J. Taylor, C. Sengul, W. Yurcik, Y. Zhou, K. Rowe 255

Track B Security Engineering & Management / Chair: Marshall Abrams

Protecting Personal Data: Can IT Security Management Standards Help? / G. Iachello 266

An Editor for Adaptive XML-Based Policy Management of Ipsec / R. Mohan, T. Levin, C. Irvine 276

Security Design in Online Games / J. Yan 286

Thursday 3:30 P.M., December 11

Track A Enterprise Security / Chair: Harold Podell

Security Analysis of the SAML Single Sign-on Browser/Artifact Profile / T. Gross 298

Scalable and Efficient PKI for Inter-Organizational Communication / A. Ansper, A. Buldas, M. Freudenthal, J. Willemson 308

A Policy Validation Framework for Enterprise Authorization Specification / R. Chandramouli 319

Themes and Highlights of the New Security Paradigms Workshop 2003 / Chairperson: O. Sami Saydjari, Chairperson: Carla Marceau 330

Bringing Security Home: A Process for Developing Secure and Usable Systems / I. Flechais, M.A. Sasse, S.M.V Hailes

Locality: A New Paradigm for Thinking About Normal Behavior and Outsider Threat / J. McHugh

WiFi Nomads and Their Unprotected Devices: The Case for QED-Quarantine, Examination, and Decontamination / K. Eustace

Merging Paradigms of Survivability and Security: Stochastic Faults and Designed Faults / J. McDermott

Friday 8:30 A.M., December 12

Track A Operating System Security / Chair: Dirk Balfanz

Goalkeeper: Close-In Interface Protection / S. Wolthusen 334

Poly[superscript 2] Paradigm: A Secure Network Service Architecture / E. Bryant, J. Early, R. Gopalakrishna, G. Roth, E. Spafford, K. Watson, P. Williams, S. Yost 342

Defending Embedded Systems Against Buffer Overflow via Hardware/Software / Z. Shao, Q. Zhuge, Y. He, E. Sha 352

Track B Intrusion Detection II / Chair: David Chizmadia

Experimenting with a Policy-Based HIDS Based on an Information Flow Control Model / J. Zimmermann, L. Me, C. Bidan 364

An Experience Developing an IDS Stimulator for the Black-Box Testing of Network Intrusion Detection Systems / D. Mutz, G. Vigna, R. Kemmerer 374

Synthesizing Test Data for Fraud Detection Systems / E. Barse, H. Kvarnstrom, E. Jonsson 384

Friday 10:30 A.M., December 12

Track A Access Control / Chair: Ed Schneider

Differential Data Protection for Dynamic Distributed Applications / P. Widener, K. Schwan, F. Bustamante 396

Usable Access Control for the World Wide Web / D. Balfanz 406

Modeling Contexts in the Or-BAC Model / F. Cuppens, A. Miege 416

Miracle Cures and Toner Cartridges: Finding Solutions to the Spam Problem / Chair: Michael Clifford, Panelists: D. Faigin, M. Bishop, T. Brutch 428.

Notes:

"IEEE Computer Society Order Number PR02041"--T.p. verso.

Includes bibliographical references and author index.

ISBN:

0769520413

9780769520414

OCLC:

53978883

Access Restriction:

Restricted for use by site license.