Computers & Security, Volume 22

Volume 22, Number 1, January 2003

• E. Eugene Schultz: Security views. 4-13 BibTeX
• Stephen Hinde: Time cost$ money. 14-21 BibTeX
• Fred Piper: Reseacrh in cryptography and security mechanisms. 22-25 BibTeX
• Henry B. Wolfe: Computer forensics. 26-28 BibTeX
• Jon David: Security in a Flash. 29-33 BibTeX
• Chris Pounder: A tangled Web of libel lies? 34-37 BibTeX
• Brian McKenn: UK police promise charter to guard good names. 38-40 BibTeX
• Mark Fisher: LIRVA virus. 41-42 BibTeX
• Sung-Bae Cho, Hyuk-Jang Park: Efficient anomaly detection by modeling privilege flows using hidden Markov model. 45-55 BibTeX
• Danilo Bruschi, A. Curti, Emilia Rosti: A quantitative study of Public Key Infrastructures. 56-67 BibTeX
• Chun-Li Lin, Tzonelih Hwang: A password authentication scheme with secure password updating. 68-72 BibTeX

Volume 22, Number 2, February 2003

• E. Eugene Schultz: Internet security: what's in the future? 78-79 BibTeX
• E. Eugene Schultz: Security Views. 80-89 BibTeX
• Stephen Hinde: The law, cybercrime, risk assessment and cyber protection. 90-95 BibTeX
• Henry B. Wolfe: The circumstances of seizure. 96-98 BibTeX
• Ken Doughty: Implementing enterprise security: a case study. 99-114 BibTeX
• Chris Pounder: Security with unfortunate side effect. 115-118 BibTeX
• D. K. Matai: The economic impact of war with Iraq asymmetric risks. 119-123 BibTeX
• August Bequai: Safeguards for IT managers and staff under the Sarbanes-Oxley Act. 124-127 BibTeX
• Hassan Aljifri, Marcel Smets, Alexander P. Pons: IP Traceback using header compression. 136-151 BibTeX
• Jesper M. Johansson, E. Eugene Schultz: Dealing with contextual vulnerabilities in code: distinguishing between solutions and pseudosolutions. 152-159 BibTeX
• Chin-Chen Chang, Yeu-Pong Lai: A flexible date-attachment scheme on e-cash. 160-166 BibTeX

Volume 22, Number 3, April 2003

• From the editor-in-chief: Virus and worm trends. 174-175
  Electronic Edition (link) BibTeX
• E. Eugene Schultz:
  Security views. 176-187
  Electronic Edition (link) BibTeX
• Stephen Hinde:
  Cyber-terrorism in context. 188-192
  Electronic Edition (link) BibTeX
• Hank Wolfe:
  Evidence acquisition. 193-195
  Electronic Edition (link) BibTeX
• Hassan Aljifri, Diego Sánchez Navarro:
  International legal aspects of cryptography: Understanding cryptography. 196-203
  Electronic Edition (link) BibTeX
• Rolf Moulton, Robert S. Coles:
  A contest to evaluate IT security services management. 204-206
  Electronic Edition (link) BibTeX
• Chris Pounder:
  Governments act to improve security. 207-211
  Electronic Edition (link) BibTeX
• Seny Kamara, Sonia Fahmy, E. Eugene Schultz, Florian Kerschbaum, Michael Frantzen:
  Analysis of vulnerabilities in Internet firewalls. 214-232
  Electronic Edition (link) BibTeX
• Helen van de Haar, Rossouw von Solms:
  A model for deriving information security control attribute profiles. 233-244
  Electronic Edition (link) BibTeX
• Li-Hua Li, Shiang-Feng Tzeng, Min-Shiang Hwang:
  Generalization of proxy signature-based on discrete logarithms. 245-255
  Electronic Edition (link) BibTeX
• Phillip J. Brooke, Richard F. Paige:
  Fault trees for security system design and analysis. 256-264
  Electronic Edition (link) BibTeX

Volume 22, Number 4, May 2003

• E. Eugene Schultz:
  Why can't Microsoft stay out of the InfoSec headlines? 270-272
  Electronic Edition (link) BibTeX
• E. Eugene Schultz:
  Attackers hit Web hosting servers. 273-283
  Electronic Edition (link) BibTeX
• Stephen Hinde:
  Careless about privacy. 284-288
  Electronic Edition (link) BibTeX
• Hank Wolfe:
  Evidence analysis. 289-291
  Electronic Edition (link) BibTeX
• Marcus K. Rogers:
  The role of criminal profiling in the computer forensics process. 292-298
  Electronic Edition (link) BibTeX
• H. S. Venter, Jan H. P. Eloff:
  A taxonomy for information security technologies. 299-307
  Electronic Edition (link) BibTeX
• James M. Anderson:
  Why we need a new definition of information security. 308-313
  Electronic Edition (link) BibTeX
• Mohammad Peyravian, Allen Roginsky, Nevenko Zunic:
  Methods for preventing unauthorized software distribution. 316-321
  Electronic Edition (link) BibTeX
• Neelam Bhalla:
  Is the mouse click mighty enough to bring society to its knees? 322-336
  Electronic Edition (link) BibTeX
• Denis Trèek:
  An integral framework for information systems security management. 337-360
  Electronic Edition (link) BibTeX

Volume 22, Number 5, July 2003

• E. Eugene Schultz:
  Pandora's Box: spyware, adware, autoexecution, and NGSCB. 366-367
  Electronic Edition (link) BibTeX
• E. Eugene Schultz:
  Security Views. 368-377
  Electronic Edition (link) BibTeX
• Stephen Hinde:
  Privacy legislation: a comparison of the US and European approaches. 378-387
  Electronic Edition (link) BibTeX
• Hank Wolfe:
  Encountering encryption. 388-391
  Electronic Edition (link) BibTeX
• Eve Edelson:
  The 419 scam: information warfare on the spam front and a proposal for local filtering. 392-401
  Electronic Edition (link) BibTeX
• Fred Cohen, Deanna Koike:
  Leading attackers through attack graphs with deceptions. 402-411
  Electronic Edition (link) BibTeX
• Scott A. Vanstone:
  Next generation security for wireless: elliptic curve cryptography. 412-415
  Electronic Edition (link) BibTeX
• Andrew Harding:
  SSL Virtual Private Networks. 416-420
  Electronic Edition (link) BibTeX
• Martin Botha, Rossouw von Solms:
  Utilising fuzzy logic and trend analysis for effective intrusion detection. 423-434
  Electronic Edition (link) BibTeX
• Gonzalo Álvarez, Slobodan Petrovic:
  A new taxonomy of Web attacks suitable for efficient encoding. 435-449
  Electronic Edition (link) BibTeX
• Sheng Zhong, Tianwen Lin:
  A comment on the Chen-Chung scheme for hierarchical access control. 450-452
  Electronic Edition (link) BibTeX
• Chien-Lung Hsu, Tzong-Sun Wu:
  Cryptanalyses and improvements of two cryptographic key assignment schemes for dynamic access control in a user hierarchy. 453-456
  Electronic Edition (link) BibTeX

Volume 22, Number 6, September 2003

• From the editor-in-chief: Gartner's prediction concerning intrusion detection systems: sense or nonsense? 462-463
  Electronic Edition (link) BibTeX
• E. Eugene Schultz:
  Security views: Online piracy battle heats up in US. 464-473
  Electronic Edition (link) BibTeX
• Stephen Hinde:
  Spam: the evolution of a nuisance. 474-478
  Electronic Edition (link) BibTeX
• Presenting the Evidence Report: Introduction. 479-481
  Electronic Edition (link) BibTeX
• John Leach:
  Security engineering and security RoI. 482-486
  Electronic Edition (link) BibTeX
• Robert S. Coles, Rolf Moulton:
  Operationalizing IT Risk Management. 487-493
  Electronic Edition (link) BibTeX
• Andrew Blyth, Daniel Cunliffe, Iain Sutherland:
  Security analysis of XML usage and XML parsing. 494-505
  Electronic Edition (link) BibTeX
• Christopher Kelly, Chris Nelms:
  Roadmap to checking data migration. 506-510
  Electronic Edition (link) BibTeX
• Elisa Bertino:
  RBAC models - concepts and trends. 511-514
  Electronic Edition (link) BibTeX
• Brian McKenna:
  Web services set to provoke new sthreats: Preview of Compsec 2003, 30 Oct-1 Nov, Queen Elizabeth II Conference Centre, Westminster, London, UK. 515-516
  Electronic Edition (link) BibTeX
• Hung-Yu Chien, Jinn-ke Jan:
  New hierarchical assignment without Public Key cryptography. 523-526
  Electronic Edition (link) BibTeX
• Tzer-Shyong Chen, Yu-Fang Chung, Gwo-Shiuan Huang:
  Efficient proxy multisignature schemes based on the elliptic curve cryptosystem. 527-534
  Electronic Edition (link) BibTeX
• Kwok-Yan Lam, Siu Leung Chung, Ming Gu, Jia-Guang Sun:
  Security middleware for enhancing interoperability of Public Key Infrastructure. 535-546
  Electronic Edition (link) BibTeX
• Shyi-Tsong Wu, Bin-Chang Chieu:
  A user friendly remote authentication scheme with smart cards. 547-550
  Electronic Edition (link) BibTeX

Volume 22, Number 7, October 2003

• E. Eugene Schultz:
  Patching Pandemonium. 556-558
  Electronic Edition (link) BibTeX
• Security Views. 559-569
  Electronic Edition (link) BibTeX
• Stephen Hinde:
  Nimbyism, dominoes and creaking infrastructure. 570-576
  Electronic Edition (link) BibTeX
• Hank Wolfe:
  Forensic evidence testimony - some thoughts. 577-579
  Electronic Edition (link) BibTeX
• Rolf Moulton, Robert S. Coles:
  Applying information security governance. 580-584
  Electronic Edition (link) BibTeX
• Nicolas Sklavos, Odysseas G. Koufopavlou:
  Data dependent rotations, a trustworthy approach for future encryption systems/ciphers: low cost and high performance. 585-588
  Electronic Edition (link) BibTeX
• Jau-Ji Shen, Chih-Wei Lin, Min-Shiang Hwang:
  Security enhancement for the timestamp-based password authentication scheme using smart cards. 591-595
  Electronic Edition (link) BibTeX
• Sang Hyun Oh, Won Suk Lee:
  An anomaly intrusion detection method by clustering normal user behavior. 596-612
  Electronic Edition (link) BibTeX
• Sang-Jun Han, Sung-Bae Cho:
  Detecting intrusion with rule-based integration of multiple models. 613-623
  Electronic Edition (link) BibTeX
• Harold W. Thimbleby:
  The reduced Enigma. 624-642
  Electronic Edition (link) BibTeX
• Bin Wang, Jian-Hua Li, Zhi-Peng Tong:
  Cryptanalysis of an enhanced timestamp-based password authentication scheme. 643-645
  Electronic Edition (link) BibTeX

Volume 22, Number 8, December 2003

• E. Eugene Schultz:
  Information security and the media. 652-653
  Electronic Edition (link) BibTeX
• E. Eugene Schultz:
  Security views. 654-663
  Electronic Edition (link) BibTeX
• Stephen Hinde:
  Computer security: Mapping the future. 664-669
  Electronic Edition (link) BibTeX
• Hank Wolfe:
  Setting up an electronic evidence forensics laboratory. 670-672
  Electronic Edition (link) BibTeX
• Jay G. Heiser:
  Beyond cryptography: Bruce Schneier's Beyond Fear: thinking sensibly about security in an uncertain world. 673-674
  Electronic Edition (link) BibTeX
• J. Johnston, Jan H. P. Eloff, Les Labuschagne:
  Security and human computer interfaces. 675-684
  Electronic Edition (link) BibTeX
• John Leach:
  Improving user security behaviour. 685-692
  Electronic Edition (link) BibTeX
• Aykut Guven, Ibrahim Sogukpinar:
  Understanding users' keystroke patterns for computer access security. 695-706
  Electronic Edition (link) BibTeX
• John Reinke, Hossein Saiedian:
  The availability of source code in relation to timely response to security vulnerabilities. 707-724
  Electronic Edition (link) BibTeX
• Kefei Chen, Sheng Zhong:
  Attacks on the (enhanced) Yang-Shieh authentication. 725-727
  Electronic Edition (link) BibTeX
• Chin-Chen Chang, Ya-Fen Chang:
  Efficient anonymous auction protocols with freewheeling bids. 728-734
  Electronic Edition (link) BibTeX