Open Problems in Network Security
IFIP WG 11.4 International Workshop, iNetSec 2011, Lucerne, Switzerland, June 9, 2011, Revised Selected Papers
Published on 2. February 2012
VIII, 164 pages
978-3-642-27585-2 (ISBN)
Description
This book constitutes the thoroughly refereed post-conference proceedings of the IFIP WG 11.4 International Workshop on Open Problems in Network Security, iNetSec 2011, held in Lucerne, Switzerland, in June 2011, co-located and under the auspices of IFIP SEC 2011, the 26th IFIP TC-11 International Information Security Conference. The 12 revised full papers were carefully reviewed and selected from 28 initial submissions; they are fully revised to incorporate reviewers' comments and discussions at the workshop. The volume is organized in topical sections on assisting users, malware detection, saving energy, policies, and problems in the cloud.
More details
Other editions
Additional editions
Jan Camenisch | Dogan Kesdogan
Open Problems in Network Security
IFIP WG 11.4 International Workshop, iNetSec 2011, Lucerne, Switzerland, June 9, 2011, Revised Selected Papers
Book
01/2012
1st Edition
Springer
€53.49
Shipment within 7-9 days
Content
- Title page
- Preface
- Organization
- Table of Contents
- Assisting Users
- Evoking Comprehensive Mental Models of Anonymous Credentials
- Introduction
- Background
- Anonymous Credentials
- Mental Models
- Related Work
- Methodology
- The Card-Based Approach
- The Attribute-Based Approach
- The Adapted Card-Based Approach
- Conclusions
- References
- Towards Usable Interfaces for Proof Based Access Rights on Mobile Devices
- Introduction
- State of the Art
- Requirements
- Requirements Derived from the Scenario
- Non-functional Requirements
- Approach
- Implementation of the Scenario (R2, R4)
- The Interface (NFR1)
- Context Dependent Identity Management (R1, NFR2, NFR3)
- Experiences and Discussion
- Conclusion and Future Work
- References
- Commercial Home Assistance (eHealth) Services
- Introduction
- Functional Description of the System
- The Patient's Social Network
- System Architecture
- Functional Requirements
- Security and Privacy Requirements
- Attacker's Model
- System Protocols
- User Registration
- Creation of the Patients' Network
- Extension of the Patients' Networks
- Evaluation
- Related Work
- Conclusion and Future Work
- References
- Malware Detection
- Detecting Computer Worms in the Cloud
- Introduction
- Open Problem and Approach
- Technical Approach
- Experimental Cloud Configuration
- Simulation
- Future Work
- Conclusion
- References
- Efficient and Stealthy Instruction Tracing and Its Applications in Automated Malware Analysis: Open Problems and Challenges
- Introduction
- Instruction Traces - Challenges and Open Problems
- Tracing
- Helios - Novel Techniques
- Advancing Trace Analysis
- References
- Challenges for Dynamic Analysis of iOS Applications
- Introduction
- Dynamic Analysis
- Challenges for Dynamic Analysis on the iOS Platform
- Strategies to Overcome these Challenges
- Dynamic Analysis Approaches
- Automated GUI Interaction
- Evaluation
- Method Call Coverage
- Comparison with Static Analysis
- Method Call Arguments
- Improvements for Static Analysis
- Limitations and Future Work
- Related Work
- Conclusion
- References
- Saving Energy
- Energy-Efficient Cryptographic Engineering Paradigm
- Motivation: The Future is Green
- Green Cryptographic Engineering Paradigm
- A Computation-Amortizing Structure
- Computation Amortization in Practice
- Open Research Questions
- References
- Policies
- Towards a Similarity Metric for Comparing Machine-Readable Privacy Policies
- Introduction
- Case-Based Reasoning for Privacy
- Existing Distance Metrics
- Towards a Similarity Metric for Privacy Policies
- What Makes Privacy Policies Similar?
- Divide and Conquer
- Local Similarity: Attributes
- Global Similarity: Cases
- Similarity of Policies
- Applying Similarity Metrics in Preference Learning User Agent
- Discussion
- The Role of the Expert
- Involving the End-User
- Differences between Policy Languages
- Aggregation of Similarity Values
- CBR vs. Policy Comparison in General
- Conclusion and Further Work
- References
- Abstract Privacy Policy Framework: Addressing Privacy Problems in SOA
- Motivation
- Abstract Privacy Framework
- Outline
- A Closer Look at PII Provider Role
- A Closer Look at PII Consumer R
- Instantiation of the Framework
- Evaluated Technologies
- Evaluation Results
- Conclusions
- References
- Flexible and Dynamic Consent-Capturing
- Introduction
- Motivation
- Research Contributions
- Organisation
- Legal Requirements to Capture Consent
- Related Work
- The Proposed Approach
- System Model
- Consent-Policy Types
- Solution Details
- Communication Messages
- ConsentWithdrawal
- Integrity of Consent
- Emergency Situations
- Digital Evidence
- Data Subject Tool
- Implementation Overview
- Performance Overhead
- Discussion
- Availability and Confidentiality
- Increased Usability
- Conclusions and Future Work
- References
- Problems in the Cloud
- Towards User Centric Data Governance and Control in the Cloud
- Motivation
- Problem Statement
- Introducing FlexCloud
- Service Platform
- ?-P2P Ressources
- ?-Gateway
- ?-Cockpit
- A First Use Case: Enterprise Cloud Storage
- Problems of Current Cloud Storage Solutions
- Proposed Solution
- Discussion and Related Work
- Conclusion
- References
- Securing Data Provenance in the Cloud
- Introduction
- Motivation
- Research Contribution
- Organistaion
- Security Properties of a Data Provenance Scheme
- Related Work
- General Data Provenance Schemes
- Secure Data Provenance Schemes
- Threat Model
- The Proposed Approach
- Structure of a Data Provenance Entry
- Query Representation
- Solution Details
- Intialisation
- Storing Data Provenance
- Searching Data Provenance
- Accessing Data Provenance
- Revocation
- Discussion
- Storage Optimisation
- Performance Optimisation
- Conclusion and Future Directions
- References
- Author Index
