CSDL - Proceedings A

Conference Committee (PDF)

pp. xiv-xiv

Program Committee (PDF)

pp. xviii-xviii

Tutorial Committee (PDF)

pp. xix-xix

Reviewers (PDF)

pp. xx

Speaker Biographies (PDF)

pp. xxiii-xxiv

Distinguished Practitioner

The Trustworthy Computing Security Development Lifecycle (Abstract)

Steve Lipner, Microsoft Corporation, Redmond, WA

pp. 2-13

PDF

Track A: Intrusion Detection

An Intrusion Detection Tool for AODV-Based Ad hoc Wireless Networks (Abstract)

Giovanni Vigna, University of California, Santa Barbara

Sumit Gwalani, University of California, Santa Barbara

Kavitha Srinivasan, University of California, Santa Barbara

Elizabeth M. Belding-Royer, University of California, Santa Barbara

Richard A. Kemmerer, University of California, Santa Barbara

pp. 16-27

PDF

Automatic Generation and Analysis of NIDS Attacks (Abstract)

Shai Rubin, University of Wisconsin, Madison

Somesh Jha, University of Wisconsin, Madison

Barton P. Miller, University of Wisconsin, Madison

pp. 28-38

PDF

Reasoning About Complementary Intrusion Evidence (Abstract)

Yan Zhai, North Carolina State University, Raleigh, NC

Peng Ning, North Carolina State University, Raleigh, NC

Purush Iyer, North Carolina State University, Raleigh, NC

Douglas S. Reeves, North Carolina State University, Raleigh, NC

pp. 39-48

PDF

Track B: Start Seeing Security

Towards Secure Design Choices for Implementing Graphical Passwords (Abstract)

Julie Thorpe, Carleton University

P. C. van Oorschot, Carleton University

pp. 50-60

PDF

Visualizing and Identifying Intrusion Context from System Calls Trace (Abstract)

Zhuowei Li, Nanyang Technological University, Singapore

Amitabha Das, Nanyang Technological University, Singapore

pp. 61-70

PDF

VIsualizing Enterprise-Wide Security (VIEWS) (Abstract)

J. J. Brennan, The MITRE Corporation

Mindy Rudell, The MITRE Corporation

Don Faatz, The MITRE Corporation

Carson Zimmerman, The MITRE Corporation

pp. 71-79

PDF

Track A: Software Safety

A Dynamic Technique for Eliminating Buffer Overflow Vulnerabilities (and Other Memory Errors) (Abstract)

Martin Rinard, Massachusetts Institute of Technology, Cambridge, MA

Cristian Cadar, Massachusetts Institute of Technology, Cambridge, MA

Daniel Dumitran, Massachusetts Institute of Technology, Cambridge, MA

Daniel M. Roy, Massachusetts Institute of Technology, Cambridge, MA

Tudor Leu, Massachusetts Institute of Technology, Cambridge, MA

pp. 82-90

PDF

Detecting Kernel-Level Rootkits Through Binary Analysis (Abstract)

Christopher Kruegel, Technical University Vienna

William Robertson, University of California, Santa Barbara

Giovanni Vigna, University of California, Santa Barbara

pp. 91-100

PDF

Detecting Exploit Code Execution in Loadable Kernel Modules (Abstract)

Haizhi Xu, Syracuse University, NY

Wenliang Du, Syracuse University, NY

Steve J. Chapin, Syracuse University, NY

pp. 101-110

PDF

Track B: Panel

The Relationship of System & Product Specifications and Evaluations (PDF)

Marshall D. Abrams, The MITRE Corporation

pp. 112-113

Track A: Malware

Using Predators to Combat Worms and Viruses: A Simulation-Based Study (Abstract)

Ajay Gupta, Stony Brook University, NY

Daniel C. DuVarney, Stony Brook University, NY

pp. 116-125

PDF

High-Fidelity Modeling of Computer Network Worms (Abstract)

Kalyan S. Perumalla, Georgia Institute of Technology, Atlanta, Georgia

Srikanth Sundaragopalan, Georgia Institute of Technology, Atlanta, Georgia

pp. 126-135

PDF

Worm Detection, Early Warning and Response Based on Local Victim Information (Abstract)

Guofei Gu, Georgia Institute of Technology, Atlanta, GA

Monirul Sharif, Georgia Institute of Technology, Atlanta, GA

Xinzhou Qin, Georgia Institute of Technology, Atlanta, GA

David Dagon, Georgia Institute of Technology, Atlanta, GA

Wenke Lee, Georgia Institute of Technology, Atlanta, GA

George Riley, Georgia Institute of Technology, Atlanta, GA

pp. 136-145

PDF

Cozilet: Transparent Encapsulation to Prevent Abuse of Trusted Applets (Abstract)

Hisashi Kojima, Fujitsu Laboratories Limited

Ikuya Morikawa, Fujitsu Laboratories Limited

Yuko Nakayama, Fujitsu Laboratories Limited

Yuji Yamaoka, Fujitsu Laboratories Limited

pp. 146-155

PDF

Track B: Audit Analysis

Extracting Attack Manifestations to Determine Log Data Requirements for Intrusion Detection (Abstract)

Emilie Lundin Barse, Chalmers University of Technology, Sweden

Erland Jonsson, Chalmers University of Technology, Sweden

pp. 158-167

PDF

Detecting Attacks That Exploit Application-Logic Errors Through Application-Level Auditing (Abstract)

Jingyu Zhou, University of California, Santa Barbara

Giovanni Vigna, University of California, Santa Barbara

pp. 168-178

PDF

Design, Implementation, and Evaluation of A Repairable Database Management System (Abstract)

Tzi-cker Chiueh, Rether Networks Inc., Centereach, NY

Dhruv Pilania, Rether Networks Inc., Centereach, NY

pp. 179-188

PDF

RACOON: Rapidly Generating User Command Data For Anomaly Detection From Customizable Templates (Abstract)

Ramkumar Chinchani, State University of New York at Buffalo

Aarthie Muthukrishnan, State University of New York at Buffalo

Madhusudhanan Chandrasekaran, State University of New York at Buffalo

Shambhu Upadhyaya, State University of New York at Buffalo

pp. 189-204

PDF

If A1 is the Answer, What was the Question? An Edgy Na?f's Retrospective on Promulgating the Trusted Computer Systems Evaluation Criteria (Abstract)

Invited Essayist Plenary

Transparency and Trust in Computational Systems

Plenary: Classic Papers

Marvin Schaefer, Books With a Past, LLC

pp. 204-228

PDF

A Look Back at "Security Problems in the TCP/IP Protocol Suite" (Abstract)

Steven M. Bellovin, AT&T Labs-Research

pp. 229-249

PDF

Track A: Middleware

Vulnerabilities and Security Threats in Structured Overlay Networks: A Quantitative Analysis (Abstract)

Mudhakar Srivatsa, Georgia Institute of Technology

Ling Liu, Georgia Institute of Technology

pp. 252-261

PDF

Securing Java RMI-Based Distributed Applications (Abstract)

Ninghui Li, Purdue University, West Lafayette, IN

John C. Mitchell, Stanford University, CA

Derrick Tong, Google Inc., Mountain View CA

pp. 262-271

PDF

.NET Security: Lessons Learned and Missed from Java (Abstract)

Nathanael Paul, University of Virginia

David Evans, University of Virginia

pp. 272-281

PDF

Track B: Insider Threat

Tracing the Root of "Rootable" Processes (Abstract)

Amit Purohit, Stony Brook University

Vishnu Navda, Stony Brook University

Tzi-cker Chiueh, Stony Brook University

pp. 284-303

PDF

Open-Source Applications of TCPA Hardware (Abstract)

John Marchesini, Dartmouth College, Hanover, NH

Sean W. Smith, Dartmouth College, Hanover, NH

Omen Wild, Dartmouth College, Hanover, NH

Josh Stabiner, Dartmouth College, Hanover, NH

Alex Barsamian, Dartmouth College, Hanover, NH

pp. 294-303

PDF

Security Policies to Mitigate Insider Threat in the Document Control Domain (Abstract)

Suranjan Pramanik, University at Buffalo, Buffalo NY

Vidyaraman Sankaranarayanan, University at Buffalo, Buffalo NY

Shambhu Upadhyaya, University at Buffalo, Buffalo NY

pp. 304-313

PDF

Track A: Network Security

Nabs: A System for Detecting Resource Abuses via Characterization of Flow Content Type (Abstract)

Kulesh Shanmugasundaram, Polytechnic University, Brooklyn, NY

Mehdi Kharrazi, Polytechnic University, Brooklyn, NY

Nasir Memon, Polytechnic University, Brooklyn, NY

pp. 316-325

PDF

Static Analyzer of Vicious Executables (SAVE) (Abstract)

A. H. Sung, New Mexico Tech, Socorro, New Mexico

J. Xu, New Mexico Tech, Socorro, New Mexico

P. Chavez, New Mexico Tech, Socorro, New Mexico

S. Mukkamala, New Mexico Tech, Socorro, New Mexico

pp. 326-334

PDF

CTCP: A Transparent Centralized TCP/IP Architecture for Network Security (Abstract)

Fu-Hau Hsu, State University of New York at Stony Brook

Tzi-cker Chiueh, State University of New York at Stony Brook

pp. 335-344

PDF

The Cyber Enemy Within ... Countering the Threat from Malicious Insiders (PDF)

pp. 346-347

Track A: Event Correlation

Correlating Intrusion Events and Building Attack Scenarios Through Attack Graph Distances (Abstract)

Steven Noel, George Mason University

Eric Robertson, George Mason University

Sushil Jajodia, George Mason University

pp. 350-359

PDF

Alert Correlation through Triggering Events and Common Resources (Abstract)

Dingbang Xu, North Carolina State University, Raleigh, NC

Peng Ning, North Carolina State University, Raleigh, NC

pp. 360-369

PDF

Attack Plan Recognition and Prediction Using Causal Networks (Abstract)

Xinzhou Qin, Georgia Institute of Technology, Atlanta, GA

Wenke Lee, Georgia Institute of Technology, Atlanta, GA

pp. 370-379

PDF

Themes and Highlights of the New Security Paradigms Workshop 2004 (PDF)

Carla Marceau, ATC-NY

Simon Foley, University College Cork

pp. 382-383

Symmetric Behavior-Based Trust

Property-Based Attestation for Computing Platforms: Caring about Properties not Mechanisms

Support for Multi-Level Security Policies in DRM Architectures

The Role of Suspicion in Model-Based Intrusion Detection

Track A: Access Control Policy

PEACE: A Policy-Based Establishment of Ad-hoc Communities (Abstract)

Sye Loong Keoh, Imperial College London, UK

Emil Lupu, Imperial College London, UK

Morris Sloman, Imperial College London, UK

pp. 386-395

PDF

Role-Based Delegation Model/ Hierarchical Roles (RBDM1) (Abstract)

Ezedin Barka, University of the United Arab Emirates

Ravi Sandhu, George Mason University, Fairfax, VA, USA

pp. 396-404

PDF

Rule-Based RBAC with Negative Authorization (Abstract)

Mohammad A. Al-Kahtani, Computer Department of Saudi Air Defense

Ravi Sandhu, George Mason University & NSD Security

pp. 405-415

PDF

Track B: Innovative Design

Designing Good Deceptions in Defense of Information Systems (Abstract)

Neil C. Rowe, Cebrowski Institute, U.S. Naval Postgraduate School, Monterey CA

pp. 418-427

PDF

A Serial Combination of Anomaly and Misuse IDSes Applied to HTTP Traffic (Abstract)

Elvis Tombini, France T?l?com, Caen, France

Herv? Debar, France T?l?com, Caen, France

Ludovic M?, Sup?lec, Rennes, France

Mireille Ducass?, IRISA/INSA, Rennes, France

pp. 428-437

PDF

Securing a Remote Terminal Application with a Mobile Trusted Device (Abstract)

Alina Oprea, Carnegie Mellon University, Pittsburgh, PA

Dirk Balfanz, Palo Alto Research Center, Palo Alto, CA

Glenn Durfee, Palo Alto Research Center, Palo Alto, CA

D. K. Smetters, Palo Alto Research Center, Palo Alto, CA

pp. 438-447

PDF

Author Index (PDF)

pp. 449-450