Data and Applications Security and Privacy XXV
25th Annual IFIP WG 11.3 Conference, DBSec 2011, Richmond, VA, USA, July 11-13, 2011, Proceedings
Published on 29. June 2011
XI, 309 pages
978-3-642-22348-8 (ISBN)
Description
This book constitutes the refereed proceedings of the 25th IFIP WG 11.3 International Conference on Data and Applications Security and Privacy, DBSec 2011, held in Richmond, VA, USA, in July 2011.
The 14 revised full papers and 9 short papers presented together with 3 invited lectures were carefully reviewed and selected from 37 submissions. The topics of these papers include access control, privacy-preserving data applications, data confidentiality and query verification, query and data privacy, authentication and secret sharing.
More details
Other editions
Additional editions
Yingjiu Li
Data and Applications Security and Privacy XXV
25th Annual IFIP WG 11.3 Conference, DBSec 2011, Richmond, VA, USA, July 11-13, 2011, Proceedings
Book
06/2011
1st Edition
Springer
€53.49
Shipment within 7-9 days
Content
- Title
- Preface
- Organization
- Table of Contents
- Invited Papers
- Information Flow Containment: A Practical Basis for Malware Defense
- Re-designing the Web's Access Control System (Extended Abstract)
- Introduction
- Current Access Control in the Web
- Browser-Side Access Control
- Server-Side Access Control
- Our Approaches
- Summary
- References
- Integrated Management of Security Policies
- Challenges to Security Policy Management
- Conceptual, Vertical, and Horizontal Integration
- Reference
- Access Control I
- Cooperative Data Access in Multi-cloud Environments
- Introduction
- Related Work
- Composing Rules for Query Checking
- Basic Concepts
- Graph Model to Determine Sub-path Relationship
- Rule Composition Rationale
- Theorems and Proofs
- Verifying Query Admissibility
- Algorithm for Checking Query Permission
- Illustration with the Running Example
- Checking Consistency with Deny Policies
- Join Group List Approach
- Deny Rule Verification Algorithm
- Illustration of Deny Rule Checking
- Conclusions and Future Work
- References
- Multiparty Authorization Framework for Data Sharing in Online Social Networks
- Introduction
- Related Work
- Multiparty Authorization for OSNs
- Requirements
- Modeling Social Networks
- Multiparty Authorization Specification
- Multiparty Policy Evaluation
- Prototype Implementation and Evaluation
- Conclusion and Future Work
- References
- Privacy-Preserving Data Applications I
- Enforcing Confidentiality and Data Visibility Constraints: An OBDD Approach
- Introduction
- Preliminary Concepts
- OBDD-Based Modeling of the Fragmentation Problem
- OBDD Representation of Constraints
- Truth Assignments
- Comparison of Assignments
- Computing a Minimal Set of Truth Assignments
- Related Work
- Conclusions
- References
- Public-Key Encrypted Bloom Filters with Applications to Supply Chain Integrity
- Introduction
- Problem: Supply Chain Integrity
- Security Desiderata
- Background
- Bloom Filter
- Goldwasser Micali Encryption
- Sander Young Yung Technique
- Quadratic Residuosity Zero-Knowledge Proofs
- Shuffle Zero-Knowledge Proof
- Public-Key Encrypted Bloom Filter
- Related Work
- Conclusions
- References
- Access Control II
- An Optimization Model for the Extended Role Mining Problem
- Introduction
- Problem Definition and Preliminaries
- Notations and Preliminary Definitions
- Problem Definitions
- Mathematical Models for ERMP and Its Variants
- MIP Formulation for ERMP
- MIP Formulation for Minnoise ERMP
- MIP Formulation for Edge ERMP
- Heuristic Procedure
- Computational Experiments and Results
- Conclusions
- References
- Dynamics in Delegation and Revocation Schemes: A Logical Approach
- Introduction
- System Description
- Basics
- The Logic
- Delegation Schemes
- Revocation Schemes
- Positive Revocation Schemes
- An Epistemic Approach to Trust
- Related Work
- Conclusions and Further Work
- References
- Data Confidentiality and Query Verification
- History-Dependent Inference Control of Queries by Dynamic Policy Adaption
- Introduction
- Basic Notations and View-Based Approach
- Basic Notations
- View-Based Approach
- Policy Adaption for Propositional Information Systems
- Outline and Examples
- Protocol for Policy Adaption and Correctness
- Efficiency of Policy Adaption
- Related Work, Extensions and Conclusions
- References
- Multilevel Secure Data Stream Processing
- Introduction
- Multilevel Security Formalization Model
- Multilevel Stream Processing Architecture
- General DSMS Architecture
- MLS DSMS Architecture
- Shared Query Processing in Replicated DSMS
- MLS CQL Queries
- Query Sharing
- Related Work
- Conclusions and Future Work
- References
- Query and Data Privacy
- Query Processing in Private Data Outsourcing Using Anonymization
- Introduction
- Threat Model
- Related Work
- Data Outsourcing Using Anatomy
- Definitions and Notations
- Privacy Preservation
- Query Operators
- Selection
- Projection
- Join
- Group-By
- Conclusions and Further Work
- Private Database Search with Sublinear Query Time
- Introduction
- Problem Definition and Contributions
- Building Blocks
- Notational Conventions
- Oblivious Transfer
- Permuted Encodings
- Scrambled Circuit Evaluation
- New Tool: Chained PEGLTs
- Private Database Search Protocol
- Precomputation Phase
- Query Phase
- Performance Analysis
- Proof of Security
- Experiments
- Related Work
- Conclusions/Future Work
- References
- Privacy-Preserving Data Applications II
- Efficient Distributed Linear Programming with Limited Disclosure
- Introduction
- Literature Review
- Preliminaries
- Polyhedra
- Dantzig-Wolfe Decomposition
- Revised Dantzig-Wolfe Decomposition
- K-LP Transformation
- Righthand-Side Value b Anonymization Algorithm
- Revised Dantzig-Wolfe Decomposition
- Secure Column Generation Protocol for K-LP Problems
- Solving RMP by an Arbitrary Agent
- Solving Pricing Problems by Peer-Agent
- Secure K-agent Column Generation Algorithm (SCGA)
- Communication Cost Analysis
- Experiments
- Conclusion and Future Work
- References
- Privacy-Preserving Data Mining: A Game-Theoretic Approach
- Introduction
- Related Work
- Our Contribution
- Background and Preliminary
- Cryptographic Considerations in Game Theory
- Definitions
- Model
- Rational Set-Intersection Protocol
- An Overview of the Protocol
- Protocol Construction
- Protocol Analysis
- Conclusion
- References
- Authentication and Secret Sharing
- Enhancing CardSpace Authentication Using a Mobile Device
- Introduction
- CardSpace
- Introduction
- Personal Cards
- The Scheme
- Entities Involved
- Operation
- Discussion
- Implementation Issues
- Variants of the Scheme
- Advantages
- Security Analysis
- Threats to the Mobile Device
- Threats to the Supporting Infrastructure
- Threats to the PC
- Prototype Realisation
- User Registration
- Prototype Operation
- Practical Issues
- Related Work
- Conclusions and Future Work
- References
- Verifiable Secret Sharing with Comprehensive and Efficient Public Verification
- Introduction
- Security Model
- The New PVSS Protocol
- The Main Idea
- Detailed Description
- Analysis and Comparison
- Conclusion
- References
- Short Papers
- A Robust Remote User Authentication Scheme against Smart Card Security Breach
- Introduction
- A Review of Kim et al.'s Scheme
- Registration Phase
- Authentication Phase
- Password Update Phase
- The Various Kinds of Attacks with Smart Card Security Breach
- Off-Line Password Guessing Attack on Kim et al.'s Scheme
- Masquerading Attack on Kim et al.'s Scheme
- The Proposed Scheme
- Registration Phase
- Login Phase
- Verification Phase
- Password Update Phase
- Security Analysis of the Proposed Scheme
- Conclusions
- References
- N-Gram Based Secure Similar Document Detection
- Introduction
- Related Work
- The Proposed Method
- Secure Similarity Computation
- Stage 1 - Securely Computing a1i and a2i
- Stage 2 - Securely Computing JC Scores
- N-Gram Based SSDD
- Future Work
- References
- An Index Structure for Private Data Outsourcing
- Introduction
- Background
- Previous Solutions
- Problem Definition
- Proposed Scheme
- Calculating Storage
- Approximating Storage
- Experiments and Results
- Related Work
- Conclusions
- References
- Selective Disclosure on Encrypted Documents
- Introduction
- Syntax for SD Scheme
- Syntax for SD Scheme
- The IND-SD-CPA Security Game and Plaintext Awareness
- A CCA2 Secure SD Scheme and Its Application
- Security Proof for IND-SD-CCA2
- Conclusion
- References
- Preliminaries
- Bilinear Diffie-Hellman Assumption
- Randomness Extractors
- Leakage Model for IBE Setting
- Our Scheme
- Security Analysis
- References
- A New Leakage-Resilient IBE Scheme in the Relative Leakage Model
- Introduction
- Preliminaries
- Bilinear Diffie-Hellman Assumption
- Randomness Extractors
- Leakage Model for IBE Setting
- Our Scheme
- Security Analysis
- References
- Accurate Accident Reconstruction in VANET
- Introduction
- Accident Reconstruction Overview
- Proposed Solution
- Architecture Philosophy
- VANET Communication Data
- Accident Reconstruction Application Data
- Application Operation
- Security and Privacy
- Conclusions and Discussion
- References
- Cyber Situation Awareness: Modeling the Security Analyst in a Cyber-Attack Scenario through Instance-Based Learning
- Introduction
- A Simple Scenario of a Cyber Attack
- Motivation
- Instance-Based Learning Theory (IBLT) and IBL Model of Security Analyst
- Implementation and Execution of the IBL Model
- Results
- Discussion
- References
- Leveraging UML for Security Engineering and Enforcement in a Collaboration on Duty and Adaptive Workflow Model That Extends NIST RBAC
- Introduction and Motivation
- Security Engineering of COD/AWF with UML
- UML Role and Team Slice Diagram
- UML New Obligation and Workflow Slice Diagram
- Mapping to Enforcement Policies for COD/AWF
- Policy Code Template for the Role and Team Slice Diagram
- Policy Code Template for the Obligation and Workflow Slice Diagram
- Conclusion
- References
- Preserving Privacy in Structural Neuroimages
- Introduction
- Background
- Privacy Issues in Medical Images
- Neuroimage Re-identification
- Neuroimage De-identification
- Quickshear Defacing
- Conclusions
- References
- Author Index
