14. CCS 2007: Alexandria, VA, USA

Peng Ning, Sabrina De Capitani di Vimercati, Paul F. Syverson (Eds.): Proceedings of the 2007 ACM Conference on Computer and Communications Security, CCS 2007, Alexandria, Virginia, USA, October 28-31, 2007. ACM 2007, ISBN 978-1-59593-703-2 BibTeX

Steven B. Lipner:
Assurance and evaluation: what next? 1
Electronic Edition (ACM DL) BibTeX

Web applications security

Shuo Chen, David Ross, Yi-Min Wang:
An analysis of browser domain-isolation bugs and a light-weight transparent defense mechanism. 2-11
Electronic Edition (ACM DL) BibTeX
Sruthi Bandhakavi, Prithvi Bisht, P. Madhusudan, V. N. Venkatakrishnan:
CANDID: preventing sql injection attacks using dynamic candidate evaluations. 12-24
Electronic Edition (ACM DL) BibTeX
Davide Balzarotti, Marco Cova, Viktoria Felmetsger, Giovanni Vigna:
Multi-module vulnerability analysis of web-based applications. 25-35
Electronic Edition (ACM DL) BibTeX

Authentication and passwords

Paul Dunphy, Jeff Yan:
Do background images improve "draw a secret" graphical passwords? 36-47
Electronic Edition (ACM DL) BibTeX
Ben Adida:
Beamauth: two-factor web authentication with a bookmark. 48-57
Electronic Edition (ACM DL) BibTeX
Chris Karlof, Umesh Shankar, J. Doug Tygar, David Wagner:
Dynamic pharming attacks and locked same-origin policies for web browsers. 58-71
Electronic Edition (ACM DL) BibTeX

Anonymity

Patrick P. Tsang, Man Ho Au, Apu Kapadia, Sean W. Smith:
Blacklistable anonymous credentials: blocking misbehaving users without ttps. 72-81
Electronic Edition (ACM DL) BibTeX
Nicholas Hopper, Eugene Y. Vasserman, Eric Chan-Tin:
How much anonymity does network latency leak? 82-91
Electronic Edition (ACM DL) BibTeX
Nikita Borisov, George Danezis, Prateek Mittal, Parisa Tabriz:
Denial of service or denial of security? 92-102
Electronic Edition (ACM DL) BibTeX

Operating systems and malware

Nick L. Petroni Jr., Michael W. Hicks:
Automated detection of persistent kernel control-flow attacks. 103-115
Electronic Edition (ACM DL) BibTeX
Heng Yin, Dawn Xiaodong Song, Manuel Egele, Christopher Kruegel, Engin Kirda:
Panorama: capturing system-wide information flow for malware detection and analysis. 116-127
Electronic Edition (ACM DL) BibTeX
Xuxian Jiang, Xinyuan Wang, Dongyan Xu:
Stealthy malware detection through vmm-based "out-of-the-box" semantic view reconstruction. 128-138
Electronic Edition (ACM DL) BibTeX

Traffic analysis and location privacy

José M. González, Vern Paxson, Nicholas Weaver:
Shunting: a hardware/software architecture for flexible, high-performance network intrusion prevention. 139-149
Electronic Edition (ACM DL) BibTeX
Miroslav Ponec, Paul Giura, Hervé Brönnimann, Joel Wein:
Highly efficient techniques for network forensics. 150-160
Electronic Edition (ACM DL) BibTeX
Baik Hoh, Marco Gruteser, Hui Xiong, Ansaf Alrabady:
Preserving privacy in gps traces via uncertainty-aware path cloaking. 161-171
Electronic Edition (ACM DL) BibTeX

Cryptography

Phillip Rogaway, Mihir Bellare:
Robust computational secret sharing and a unified account of classical secret-sharing goals. 172-184
Electronic Edition (ACM DL) BibTeX
Ran Canetti, Susan Hohenberger:
Chosen-ciphertext secure proxy re-encryption. 185-194
Electronic Edition (ACM DL) BibTeX
Rafail Ostrovsky, Amit Sahai, Brent Waters:
Attribute-based encryption with non-monotonic access structures. 195-203
Electronic Edition (ACM DL) BibTeX

Network security

Rinku Dewri, Nayot Poolsappasit, Indrajit Ray, Darrell Whitley:
Optimal security hardening using multi-objective optimization on attack tree models of networks. 204-213
Electronic Edition (ACM DL) BibTeX
David John Zage, Cristina Nita-Rotaru:
On the accuracy of decentralized virtual coordinate systems in adversarial networks. 214-224
Electronic Edition (ACM DL) BibTeX
Bivas Mitra, Fernando Peruani, Sujoy Ghose, Niloy Ganguly:
Analyzing the vulnerability of superpeer networks against attack. 225-234
Electronic Edition (ACM DL) BibTeX
Serdar Cabuk, Chris I. Dalton, HariGovind V. Ramasamy, Matthias Schunter:
Towards automated provisioning of secure virtualized networks. 235-245
Electronic Edition (ACM DL) BibTeX

Election systems and applied cryptography

Tal Moran, Moni Naor:
Split-ballot voting: everlasting privacy with distributed trust. 246-255
Electronic Edition (ACM DL) BibTeX
Sujata Garera, Aviel D. Rubin:
An independent audit framework for software dependent voting systems. 256-265
Electronic Edition (ACM DL) BibTeX
Benoît Libert, Jean-Jacques Quisquater, Moti Yung:
Forward-secure signatures in untrusted update environments: efficient and generic constructions. 266-275
Electronic Edition (ACM DL) BibTeX
Alexandra Boldyreva, Craig Gentry, Adam O'Neill, Dae Hyun Yum:
Ordered multisignatures and identity-based sequential aggregate signatures, with applications to secure routing. 276-285
Electronic Edition (ACM DL) BibTeX

Side and covert channels detection

Boris Köpf, David A. Basin:
An information-theoretic model for adaptive side-channel attacks. 286-296
Electronic Edition (ACM DL) BibTeX
Daniel V. Bailey, Dan Boneh, Eu-Jin Goh, Ari Juels:
Covert channels in privacy-preserving identification systems. 297-306
Electronic Edition (ACM DL) BibTeX
Steven Gianvecchio, Haining Wang:
Detecting covert timing channels: an entropy-based approach. 307-316
Electronic Edition (ACM DL) BibTeX

Protocols and spam filters

Juan Caballero, Heng Yin, Zhenkai Liang, Dawn Xiaodong Song:
Polyglot: automatic extraction of protocol message format using dynamic binary analysis. 317-329
Electronic Edition (ACM DL) BibTeX
J. Alex Halderman, Brent Waters:
Harvesting verifiable challenges from oblivious online sources. 330-341
Electronic Edition (ACM DL) BibTeX
Anirudh Ramachandran, Nick Feamster, Santosh Vempala:
Filtering spam with behavioral blacklisting. 342-351
Electronic Edition (ACM DL) BibTeX

Internet security

Jedidiah R. Crandall, Daniel Zinn, Michael Byrd, Earl Barr, Rich East:
ConceptDoppler: a weather tracker for internet censorship. 352-365
Electronic Edition (ACM DL) BibTeX
Jeremy Elson, John R. Douceur, Jon Howell, Jared Saul:
Asirra: a CAPTCHA that exploits interest-aligned manual image categorization. 366-374
Electronic Edition (ACM DL) BibTeX
Jason Franklin, Vern Paxson:
An inquiry into the nature and causes of the wealth of internet miscreants. 375-388
Electronic Edition (ACM DL) BibTeX

Key management

Jeffrey S. Dwoskin, Ruby B. Lee:
Hardware-rooted trust for secure key management and transient trust. 389-400
Electronic Edition (ACM DL) BibTeX
Babak Azimi-Sadjadi, Aggelos Kiayias, Alejandra Mercado, Bülent Yener:
Robust key generation from signal envelopes in wireless networks. 401-410
Electronic Edition (ACM DL) BibTeX
Stanislaw Jarecki, Jihye Kim, Gene Tsudik:
Robust group key agreement using short broadcasts. 411-420
Electronic Edition (ACM DL) BibTeX

Policies

Collin Jackson, Adam Barth, Andrew Bortz, Weidong Shao, Dan Boneh:
Protecting browsers from dns rebinding attacks. 421-431
Electronic Edition (ACM DL) BibTeX
Chris Lesniewski-Laas, Bryan Ford, Jacob Strauss, Robert Morris, M. Frans Kaashoek:
Alpaca: extensible authorization for distributed services. 432-444
Electronic Edition (ACM DL) BibTeX
Scott D. Stoller, Ping Yang, C. R. Ramakrishnan, Mikhail I. Gofman:
Efficient policy analysis for administrative role based access control. 445-455
Electronic Edition (ACM DL) BibTeX

Cryptography and cryptoanalysis

Ling Cheung, Calvin C. Newport:
Provably secure ciphertext policy ABE. 456-465
Electronic Edition (ACM DL) BibTeX
Shai Halevi, Hugo Krawczyk:
Security under key-dependent inputs. 466-475
Electronic Edition (ACM DL) BibTeX
Leo Dorrendorf, Zvi Gutterman, Benny Pinkas:
Cryptanalysis of the windows random number generator. 476-485
Electronic Edition (ACM DL) BibTeX

Data privacy

Paul Bunn, Rafail Ostrovsky:
Secure two-party k-means clustering. 486-497
Electronic Edition (ACM DL) BibTeX
Justin Brickell, Donald E. Porter, Vitaly Shmatikov, Emmett Witchel:
Privacy-preserving remote diagnostics. 498-507
Electronic Edition (ACM DL) BibTeX
Fengjun Li, Bo Luo, Peng Liu, Dongwon Lee, Chao-Hsien Chu:
Automaton segmentation: a new approach to preserve privacy in xml information brokering. 508-518
Electronic Edition (ACM DL) BibTeX
Juan Ramón Troncoso-Pastoriza, Stefan Katzenbeisser, Mehmet Utku Celik:
Privacy preserving error resilient dna searching through oblivious automata. 519-528
Electronic Edition (ACM DL) BibTeX

Software security

Stephan Neuhaus, Thomas Zimmermann, Christian Holler, Andreas Zeller:
Predicting vulnerable software components. 529-540
Electronic Edition (ACM DL) BibTeX
Yingbo Song, Michael E. Locasto, Angelos Stavrou, Angelos D. Keromytis, Salvatore J. Stolfo:
On the infeasibility of modeling polymorphic shellcode. 541-551
Electronic Edition (ACM DL) BibTeX
Hovav Shacham:
The geometry of innocent flesh on the bone: return-into-libc without function calls (on the x86). 552-561
Electronic Edition (ACM DL) BibTeX
Emre Can Sezer, Peng Ning, Chongkyung Kil, Jun Xu:
Memsherlock: an automated debugger for unknown memory corruption vulnerabilities. 562-572
Electronic Edition (ACM DL) BibTeX

Data disclosure

Lei Zhang, Sushil Jajodia, Alexander Brodsky:
Information disclosure under realistic assumptions: privacy versus optimality. 573-583
Electronic Edition (ACM DL) BibTeX
Ari Juels, Burton S. Kaliski Jr.:
Pors: proofs of retrievability for large files. 584-597
Electronic Edition (ACM DL) BibTeX
Giuseppe Ateniese, Randal C. Burns, Reza Curtmola, Joseph Herring, Lea Kissner, Zachary N. J. Peterson, Dawn Xiaodong Song:
Provable data possession at untrusted stores. 598-609
Electronic Edition (ACM DL) BibTeX