CSE788X11: Advanced Topics in Internet and Wireless Network Security

 

SPRING 2007


Paper Reading List

 


A.  Basic Security Services

 

A1.  On the Release of CRLs in Public Key Infrastructure  (USENIX SEC’06)

        Chengyu Ma, Nan Hu and Yingjiu Li

 

A2.  Fundamental Limits on the Anonymity Provided by the MIX Technique  (S&P’06)

        Dakshi Agrawal, Dogan Kesdogan, Vinh Pham and Dieter Rautenbach

 

A3.  Privacy and Contextual Integrity: Framework and Applications  (S&P’06)

        Adam Barth, Anupam Datta, John C. Mitchell and Helen Nissenbaum

 

A4.  Integrity (I) codes: Message Integrity Protection and Authentication Over Insecure Channels  (S&P’06)

        Mario Cagalj, Srdjan Capkun, Ramkumar Rengaswamy, Ilias Tsigkogiannis, Mani Srivastava and Jean-Pierre Hubaux,

 

A5.  Resiliency Policies in Access Control  (CCS’06)

        Ninghui Li, Mahesh V. Tripunitara, and Qihua Wang

 

A6.  Salsa: A Structured Approach to Large-Scale Anonymity  (CCS’06)

        Arjun Nambiar and Matthew Wright

 

A7.  Safety and Consistency in Policy-Based Authorization Systems  (CCS’06)

        Adam J. Lee and Marianne Winslett

 


B.  Attacks

 

B1.  Keyboards and Covert Channels  (USENIX SEC’06)

        Gaurav Shah, Andres Molina and Matt Blaze

 

B2.  Passive Data Link Layer 802.11 Wireless Device Driver Fingerprinting  (USENIX SEC’06)

        Jason Franklin, Damon McCoy, Parisa Tabriz, Vicentiu Neagoe, Jamie Van Randwyk, Douglas Sicker and Scott Shenker

 

B3.  Polymorphic Blending Attacks  (USENIX SEC’06)

        Prahlad Fogla, Monirul Sharif, Roberto Perdisci, Oleg Kolesnikov, and Wenke Lee

 

B4.  SubVirt: Implementing malware with virtual machines  (S&P’06)

        Samuel T. King, Peter M. Chen, Yi-Min Wang, Chad Verbowski, Helen J. Wang and Jacob R. Lorch

 

B5.  Puppetnets: Misusing Web Browsers as a Distributed Attack Infrastructure  (CCS’06)

        V. T. Lam, S. Antonatos, P. Akritidis and K. G. Anagnostakis

 

B6.  A Natural Language Approach to Automated Cryptanalysis of Two-time Pads  (CCS’06)

        Joshua Mason, Kathryn Watkins, Jason Eisner and Adam Stubblefield



C.  Detection and Defending

 

C1.  Evaluating SFI for a CISC Architecture  (USENIX SEC’06)

        Stephen McCamant and Greg Morrisett

 

C2.  A Framework for the Evaluation of Intrusion Detection Systems  (S&P’06)

        Alvaro A. Cardenas, Karl Seamon and John S. Baras

 

C3.  Packet Vaccine: Black-box Exploit Detection and Signature Generation  (CCS’06)

        XiaoFeng Wang, Zhuowei Li, Jun Xu, Michael K. Reiter, Chongkyung Kil and Jong Youl Choi

 

C4.  Protomatching Network Traffic for High Throughput Network Intrusion Detection  (CCS’06)

        Shai Rubin, Somesh Jha and Barton P. Miller

 

C5.  Evading Network Anomaly Detection Systems: Formal Reasoning and Practical  (CCS’06)

        Techniques.Prahlad Fogla and Wenke Lee

 

C6.  SigFree: A Signature-free Buffer Overflow Attack Blocker  (CCS’06)

        Xinran Wang, Chi-Chun Pan, Peng Liu and Sencun Zhu



D.  Formal Methods

 

D1.  Trust Negotiation with Hidden Credentials, Hidden Policies, and Policy Cycles  (NDSS’06)

        Keith Frikken, Jiangtao Li and Mikhail Atallah

 

D2.  Key Regression: Enabling Efficient Key Distribution for Secure Distributed Storage  (NDSS’06)

        Kevin Fu, Seny Kamara and Yoshi Kohno

 

D3.  Searchable Symmetric Encryption: Improved Definitions and Efficient Constructions  (CCS’06)

        Reza Curtmola, Juan Garay, Seny Kamara and Rafail Ostrovsky

 

D4.  Forward Secure Signatures with Untrusted Update  (CCS’06)

        Xavier Boyen, Hovav Shacham, Emily Shen and Brent Waters

 

D5.  Multi-Signatures in the Plain Public-Key Model and a Generalized Forking Lemma  (CCS’06)

        Mihir Bellare and Gregory Neven

 

D6.  Deniable Authentication and Key Exchange  (CCS’06)

        Mario Di Raimondo, Rosario Gennaro and Hugo Krawczyk


3/23/2007