CSDL - Proceedings A

Conference Committee (PDF)

pp. xiii

Program Committee (PDF)

pp. xvi

Tutorial Committee (PDF)

pp. xvii

Reviewers (PDF)

pp. xviii

Speaker Biographies (PDF)

pp. xxi

Distinguished Practitioner

MLS-PCA: A High Assurance Security Architecture for Future Avionics (Abstract)

Clark Weissman, Northrop Grumman Corporation

pp. 2

PDF

Track A: Intrusion Detection I

null

Bayesian Event Classification for Intrusion Detection (Abstract)

Christopher Kruegel, University of California, Santa Barbara

Darren Mutz, University of California, Santa Barbara

William Robertson, University of California, Santa Barbara

Fredrik Valeur, University of California, Santa Barbara

pp. 14

PDF

Intrusion Detection: A Bioinformatics Approach (Abstract)

Scott Coull, Rensselaer Polytechnic Institute

Joel Branch, Rensselaer Polytechnic Institute

Boleslaw Szymanski, Rensselaer Polytechnic Institute

Eric Breimer, Siena College

pp. 24

PDF

A Stateful Intrusion Detection System for World-Wide Web Servers (Abstract)

Giovanni Vigna, University of California, Santa Barbara

William Robertson, University of California, Santa Barbara

Vishal Kher, University of California, Santa Barbara

Richard A. Kemmerer, University of California, Santa Barbara

pp. 34

PDF

Track B: Network Security

null

Behavioral Authentication of Server Flows (Abstract)

James P. Early, Purdue University

Carla E. Brodley, Purdue University

Catherine Rosenberg, Purdue University

pp. 46

PDF

A Multi-View Tool for Checking the Security Semantics of Router Configurations (Abstract)

Holger Peine, Fraunhofer Institute for Experimental Software Engineering, Germany

Reinhard Schwarz, Fraunhofer Institute for Experimental Software Engineering, Germany

pp. 56

PDF

S-ARP: a Secure Address Resolution Protocol (Abstract)

D. Bruschi, Universit? degli Studi di Milano, Italy

A. Ornaghi, Universit? degli Studi di Milano, Italy

E. Rosti, Universit? degli Studi di Milano, Italy

pp. 66

PDF

Track A: Defensive Information Warfare

null

Design, Implementation and Test of an Email Virus Throttle (Abstract)

Matthew M. Williamson, HP Labs Bristol, UK

pp. 76

PDF

Efficient Minimum-Cost Network Hardening Via Exploit Dependency Graphs (Abstract)

Steven Noel, George Mason University

Sushil Jajodia, George Mason University

Brian O'Berry, George Mason University

Michael Jacobs, George Mason University

pp. 86

PDF

An IP Traceback Technique against Denial-of-Service Attacks (Abstract)

Zhaole Chen, the Chinese University of Hong Kong

Moon-Chuen Lee, the Chinese University of Hong Kong

pp. 96

PDF

Track B: Forum

Forum Session: Security for Wireless Sensor Networks (PDF)

David Carman, Network Associates Laboratories

Daniel Coffin, BBN Technologies

Bruno Dutertre, SRI International

Vipin Swarup, The MITRE Corp.

Ronald Watro, BBN Technologies

pp. 106

Track A: Applied Cryptography

null

An Intrusion-Tolerant Password Authentication System (Abstract)

Xunhua Wang, James Madison University, Harrisonburg, VA

M. Hossain Heydari, James Madison University, Harrisonburg, VA

Hua Lin, Wachovia Corporation, Rockville, MD

pp. 110

PDF

Modeling of Multiple Agent based Cryptographic Key Recovery Protocol (Abstract)

Shinyoung Lim, ETRI, Korea

Sangseung Kang, ETRI, Korea

Joochan Sohn, ETRI, Korea

pp. 119

PDF

Practical Random Number Generation in Software (PDF)

John Viega, Virginia Tech

pp. 129

Track B: Recovery and Forensics

null

Multi-Version Attack Recovery for Workflow Systems (Abstract)

Meng Yu, Pennsylvania State University

Peng Liu, Pennsylvania State University

Wanyu Zang, Pennsylvania State University

pp. 142

PDF

Automatic Reassembly of Document Fragments via Context Based Statistical Models (Abstract)

Kulesh Shanmugasundaram, Polytechnic University, Brooklyn, NY

Nasir Memon, Polytechnic University, Brooklyn, NY

pp. 152

PDF

Automated Analysis for Digital Forensic Science: Semantic Integrity Checking (Abstract)

Tye Stallard, University of California, Davis

Karl Levitt, University of California, Davis

pp. 160

PDF

Works in Progress

null

Invited Essayist Plenary

null

Honeypots: Catching the Insider Threat (Abstract)

Lance Spitzner, Honeypot Technologies Inc

pp. 170

PDF

Track A: Software Safety and Program Correctness

null

Isolated Program Execution: An Application Transparent Approach for Executing Untrusted Programs (Abstract)

Zhenkai Liang, Stony Brook University, NY

V. N. Venkatakrishnan, Stony Brook University, NY

R. Sekar, Stony Brook University, NY

pp. 182

PDF

How to unwittingly sign non-repudiable documents with Java applications (Abstract)

D. Bruschi, Universit? degli Studi di Milano, Italy

D. Fabris, Universit? degli Studi di Milano, Italy

V. Glave, Universit? degli Studi di Milano, Italy

E. Rosti, Universit? degli Studi di Milano, Italy

pp. 192

PDF

Making Secure TCP Connections Resistant to Server Failures (Abstract)

Hailin Wu, University of Denver, CO

Andrew Burt, University of Denver, CO

Ramki Thurimella, University of Denver, CO

pp. 197

PDF

Track B: Classic Papers

null

PSOS Revisited (Abstract)

Peter G. Neumann, SRI International

Richard J. Feiertag, Cougaar Software, Inc.

pp. 208

PDF

A Failure to Learn from the Past (Abstract)

Eugene H. Spafford, Purdue University CERIAS

pp. 217

PDF

Track A: Event Correlation

null

Collaborative Intrusion Detection System (CIDS): A Framework for Accurate and Efficient IDS (Abstract)

Yu-Sung Wu, Purdue University

Bingrui Foo, Purdue University

Yongguo Mei, Purdue University

Saurabh Bagchi, Purdue University

pp. 234

PDF

Attack Signature Matching and Discovery in Systems Employing Heterogeneous IDS (Abstract)

Nathan Carey, Queensland University of Technology

George Mohay, Queensland University of Technology

Andrew Clark, Queensland University of Technology

pp. 245

PDF

Log Correlation for Intrusion Detection: A Proof of Concept (Abstract)

Cristina Abad, University of Illinois at Urbana-Champaign; National Center for Supercomputing Applications (NCSA)

Jed Taylor, University of Illinois at Urbana-Champaign

Cigdem Sengul, University of Illinois at Urbana-Champaign

William Yurcik, National Center for Supercomputing Applications (NCSA)

Yuanyuan Zhou, University of Illinois at Urbana-Champaign

Ken Rowe, Science Applications International Corporation (SAIC)

pp. 255

PDF

Track B: Security Engineering & Management

null

Protecting Personal Data: Can IT Security Management Standards Help? (Abstract)

Giovanni Iachello, Georgia Institute of Technology

pp. 266

PDF

An Editor for Adaptive XML-Based Policy Management of IPsec (Abstract)

Raj Mohan, Indian Army

Timothy E. Levin, Naval Postgraduate School

Cynthia E. Irvine, Naval Postgraduate School

pp. 276

PDF

Security Design in Online Games (Abstract)

Jeff Yan, The Chinese University of Hong Kong

pp. 286

PDF

Track A: Enterprise Security

null

Security Analysis of the SAML Single Sign-on Browser/Artifact Profile (Abstract)

Thomas Gro?, IBM Zurich Research Laboratory

pp. 298

PDF

Scalable and Efficient PKI for Inter-Organizational Communication (Abstract)

Arne Ansper, Cybernetica, Tallinn, Estonia

Ahto Buldas, Cybernetica, Tallinn, Estonia; Tartu University, Tartu, Estonia; Tallinn Technical University

Margus Freudenthal, Cybernetica, Tallinn, Estonia

Jan Willemson, Cybernetica, Tallinn, Estonia; Tartu University, Tartu, Estonia

pp. 308

PDF

A Policy Validation Framework for Enterprise Authorization Specification (Abstract)

Ramaswamy Chandramouli

pp. 319

PDF

Themes and Highlights of the New Security Paradigms Workshop 2003 (PDF)

O. Sami Saydjari, Cyber Defense Agency

Carla Marceau, ATC-NY

pp. 330

Track A: Operating System Security

null

Goalkeeper: Close-In Interface Protection (Abstract)

Stephen D. Wolthusen, Fraunhofer-IGD, Germany

pp. 334

PDF

Poly² Paradigm: A Secure Network Service Architecture (Abstract)

Eric Bryant, Purdue University

James Early, Purdue University

Rajeev Gopalakrishna, Purdue University

Gregory Roth, Purdue University

Eugene H. Spafford, Purdue University

Keith Watson, Purdue University

Paul Williams, Purdue University

Scott Yost, Purdue University

pp. 342

PDF

Defending Embedded Systems Against Buffer Overflow via Hardware/Software (Abstract)

Zili Shao, University of Texas at Dallas

Qingfeng Zhuge, University of Texas at Dallas

Yi He, University of Texas at Dallas

Edwin H.-M. Sha, University of Texas at Dallas

pp. 352

PDF

Track B: Intrusion Detection II

null

Experimenting with a Policy-Based HIDS Based on an Information Flow Control Model (Abstract)

pp. 364

PDF

An Experience Developing an IDS Stimulator for the Black-Box Testing of Network Intrusion Detection Systems (Abstract)

Darren Mutz, University of California, Santa Barbara

Giovanni Vigna, University of California, Santa Barbara

Richard Kemmerer, University of California, Santa Barbara

pp. 374

PDF

Synthesizing Test Data for Fraud Detection Systems (Abstract)

Emilie Lundin Barse, Chalmers University of Technology

H?kan Kvarnstr?, Chalmers University of Technology

Erland Jonsson, Chalmers University of Technology

pp. 384

PDF

Track A: Access Control

null

Differential Data Protection for Dynamic Distributed Applications (Abstract)

Patrick Widener, Georgia Institute of Technology

Karsten Schwan, Georgia Institute of Technology

Fabian E. Bustamante, Northwestern University

pp. 396

PDF

Usable Access Control for the World Wide Web (Abstract)

Dirk Balfanz, Palo Alto Research Center

pp. 406

PDF

Modelling Contexts in the Or-BAC Model (Abstract)

Fr?d?ric Cuppens, GET/ENST Bretagne, France

Alexandre Mi?ge, GET/ENST Bretagne, France

pp. 416

PDF

Miracle Cures and Toner Cartridges: Finding Solutions to the Spam Problem (PDF)

Track B: Panel

Michael Clifford, The Aerospace Corporation

Daniel Faigin, The Aerospace Corporation

Matt Bishop, The University of California at Davis

Tasneem Brutch, Kaiser Permanente

pp. 428

Author Index (PDF)

pp. 430