The advent of the World Wide Web had a huge impact on the world, because suddenly people had easy access to information that was previously unavailable or simply hard to find. Unfortunately this raises many new problems in the protection of information against unauthorized access and use. We take the privacy of our users seriously, and we have people working on nearly every aspect of information security, including networking, OS security, language design, cryptography, fraud detection and prevention, denial of service, privacy, and human aspects of security. Here are some of their publications.
“Cloud Data Protection for the Masses”, Dawn Song, Elaine Shi, Ian Fischer, Umesh Shankar, Computer, vol. 45, no. 1 (2012), pp. 39-45.
[abstract] [doi.ieeecomputersociety.org] [pdf] [search]
“Let's Parse to Prevent Pwnage”, Mike Samuel, Úlfar Erlingsson, USENIX workshop on Large-Scale Exploits and Emergent Threats, 2012.
[abstract] [usenix.org] [search]
“Security and Testing”, Kurt Rosenfeld, Introduction to Hardware Security and Trust, 2012 (to appear).
[abstract] [search]
“Vanity or Privacy? Social Media as a Facilitator of Privacy and Trust”, Jessica Staddon, CSCW Workshop: Reconciling Privacy with Social Media (2012).
[abstract] [pdf] [search]
“Address space randomization for mobile devices”, Hristo Bojinov, Dan Boneh, Rich Cannings, Iliyan Malchev, WiSec '11 - Proceedings of the fourth ACM conference on wireless network security, 2011.
[abstract] [pdf] [search]
“App Isolation: Get the Security of Multiple Browsers with Just One”, Eric Y. Chen, Jason Bau, Charles Reis, Adam Barth, Collin Jackson, 18th ACM Conference on Computer and Communications Security, 2011 (to appear).
[abstract] [pdf] [search]
“Automated Analysis of Security-Critical JavaScript APIs”, Ankur Taly, Úlfar Erlingsson, John C. Mitchell, Mark S. Miller, Jasvir Nagra, IEEE Symposium on Security & Privacy (SP), 2011.
[abstract] [www-cs-students.stanford.edu] [pdf] [search]
“Distributed forensics and incident response in the enterprise”, Michael Cohen, Darren Bilby, Germano Caronni, Journal of Digital Investigation, vol. 8 (2011), S101-S110.
[abstract] [dfrws.org] [pdf] [search]
“Fast Elliptic Curve Cryptography in OpenSSL”, Emilia Kasper, 2nd Workshop on Real-Life Cryptographic Protocols and Standardization (Financial Cryptography and Data Security 2011, to appear).
[abstract] [pdf] [search]
“Hardware Trojan Detection Solutions and Design-for-Trust Challenges”, Kurt Rosenfeld, IEEE Computer (2011), pp. 64-72.
[abstract] [pdf] [search]
“Indirect Content Privacy Surveys: Measuring Privacy Without Asking About It”, Alex Braunstein, Laura Granka, Jessica Staddon, Symposium on Usable Privacy and Security (SOUPS), 2011.
[abstract] [pdf] [search]
“Public vs. Publicized: Content Use Trends and Privacy Expectations”, Jessica Staddon, Andrew Swerdlow, 6th USENIX Workshop on Hot Topics in Security (HotSec '11), 2011.
[abstract] [pdf] [search]
“Rootkits in your web application”, Artur Janc, 28C3: Chaos Communications Congress, 2011.
[abstract] [search]
“Security Challenges During VLSI Test”, Kurt Rosenfeld, Proceedings of 2011 IEEE NEWCAS Conference.
[abstract] [pdf] [search]
“Security-Aware SoC Test Access Mechanisms”, Kurt Rosenfeld, Proceedings of the 2011 IEEE VLSI Test Symposium.
[abstract] [pdf] [search]
“ShellOS: Enabling fast detection and forensic analysis of code injection attacks”, Kevin Snow, Srinivas Krishnan, Fabian Monrose, Niels Provos, USENIX Security Symposium, 2011.
[abstract] [static.usenix.org] [search]
“Third International Symposium on Engineering Secure Software and Systems, ESSoS 2011”, Úlfar Erlingsson, Roel Wieringa, Nicola Zannone, editors., Lecture Notes in Computer Science Volume 6542, 2011.
[search]
“Transparency and Choice: Protecting Consumer Privacy in an Online World”, Alma Whitten, Sean Harvey, Ian Fette, Betsy Masiello, Jochen Eisinger, Jane Horvath, W3C Workshop on Web Tracking and User Privacy, 2011, pp. 3.
[abstract] [w3.org] [pdf] [search]
“Automata Evaluation and Text Search Protocols with Simulation Based Security”, Carmit Hazay, Rosario Gennaro, Jeffrey Sorensen, Cryptology ePrint Archive Report, 2010/484 (2010).
[abstract] [eprint.iacr.org] [pdf] [search]
“Dagstuhl Seminar 09141: Web Application Security (Abstracts collection)”, Dan Boneh, Úlfar Erlingsson, Martin Johns, Benjamin Livshits, Dagstuhl Seminar Proceedings, 2010.
[abstract] [drops.dagstuhl.de] [search]
“Drac: An Architecture for Anonymous Low-Volume Communications”, George Danezis, Claudia Diaz, Carmela Troncosco, Ben Laurie, PETS 2010 (to appear).
[pdf] [search]
“Engineering Privacy in an Age of Information Abundance”, Betsy Masiello, Alma Whitten, Intelligent Privacy Management Symposium, 2010.
[search]
“Improving users' security choices on home wireless networks”, Justin T. Ho, David Dearman, Khai N. Truong, Proceedings of the Sixth Symposium on Usable Privacy and Security, 2010, 12:1-12:12.
[doi.acm.org] [search]
“Large-Scale Automatic Classification of Phishing Pages”, Colin Whittaker, Brian Ryner, Marria Nazif, NDSS '10, 2010.
[abstract] [isoc.org] [pdf] [search]
“Making Privacy a Fundamental Component of Web Resources”, Thomas Duebendorfer, Christoph Renner, Tyrone Grandison, Michael Maximilien, Mark Weitzel, W3C Workshop on Privacy for Advanced Web APIs, 2010, pp. 5.
[abstract] [w3.org] [pdf] [search]
“Practical Privacy Concerns in a Real World Browser”, Ian Fette, Jochen Eisinger, W3C Workshop on Privacy for Advanced Web APIs, 2010, pp. 4.
[abstract] [w3.org] [pdf] [search]
“PseudoID: Enhancing Privacy in Federated Login”, Arkajit Dey, Stephen Weis, Hot Topics in Privacy Enhancing Technologies, 2010, pp. 95-107.
[abstract] [pseudoid.net] [pdf] [search]
“Public-Key Encryption in the Bounded-Retrieval Model”, Joel Alwen, Yevgeniy Dodis, Moni Naor, Gil Segev, Shabsi Walfish, Daniel Wichs, Advances in Cryptology - EUROCRYPT 2010, 29th Annual International Conference on the Theory and Applications of Cryptographic Techniques, French Riviera, May 30 - June 3, 2010. Proceedings, pp. 113-134.
[abstract] [pdf] [search]
“Technology Companies are Best Positioned to Offer Health Record Trusts”, Shirley Gaw, Umesh Shankar, HealthSec '10 Position Paper, 2010.
[abstract] [pdf] [search]
“The Nocebo Effect on the Web: An Analysis of Fake Anti-Virus Distribution”, Moheeb Abu Rajab, Lucas Ballard, Panayiotis Marvrommatis, Niels Provos, Xin Zhao, Large-Scale Exploits and Emergent Threats, 2010.
[abstract] [usenix.org] [pdf] [search]
“Trustworthy Hardware: Identifying and Classifying Hardware Trojans”, Kurt Rosenfeld, IEEE Design and Test of Computers (2010), pp. 39-46.
[abstract] [pdf] [search]
“Universally optimal privacy mechanisms for minimax agents”, Mangesh Gupte, Mukund Sundararajan, Proc. ACM SIGMOD, 2010, pp. 135-146.
[abstract] [doi.acm.org] [search]
“Using the Wave Protocol to Represent Individuals’ Health Records”, Shirley Gaw, Umesh Shankar, HealthSec '10 Position Paper, 2010.
[abstract] [pdf] [search]
“A New Randomness Extraction Paradigm for Hybrid Encryption”, Eike Kiltz, Krzysztof Pietrzak, Martijn Stam, Moti Yung, EUROCRYPT '09: Proceedings of the 28th Annual International Conference on Advances in Cryptology, 2009, pp. 590-609.
[doi] [search]
“A Unified Framework for the Analysis of Side-Channel Key Recovery Attacks”, François-Xavier Standaert, Tal G. Malkin, Moti Yung, EUROCRYPT '09: Proceedings of the 28th Annual International Conference on Advances in Cryptology, 2009, pp. 443-461.
[doi] [search]
“Balancing Usability and Security in a Video CAPTCHA”, Kurt Alfred Kluever, Richard Zanibbi, Proceedings of the 5th Symposium on Usable Privacy and Security (SOUPS '09), 2009.
[abstract] [kloover.com] [pdf] [search]
“Browser Security: Lessons from Google Chrome”, Charles Reis, Adam Barth, Carlos Pizano, ACM Queue, vol. 7, no. 5 (2009), pp. 3.
[queue.acm.org] [pdf] [search]
“Capacity of Steganographic Channels”, Jeremiah Harmsen, William Pearlman, IEEE Transactions on Information Theory, vol. 55 (2009), pp. 1775-1792.
[abstract] [doi] [search]
“Composability and On-Line Deniability of Authentication”, Yevgeniy Dodis, Jonathan Katz, Adam Smith, Shabsi Walfish, Proceedings of the 6th Theory of Cryptography Conference, TCC 2009, San Francisco, CA, USA, March 15-17, 2009, pp. 146-162.
[doi] [search]
“Constructing Variable-Length PRPs and SPRPs from Fixed-Length PRPs”, Debra L. Cook, Moti Yung, Angelos Keromytis, Information Security and Cryptology, 2009, pp. 157-180.
[doi] [search]
“Efficient Robust Private Set Intersection”, Dana Dachman-Soled, Tal Malkin, Mariana Raykova, Moti Yung, ACNS '09: Proceedings of the 7th International Conference on Applied Cryptography and Network Security, 2009, pp. 125-142.
[doi] [search]
“Efficient Traceable Signatures in the Standard Model”, Benoît Libert, Moti Yung, Pairing '09: Proceedings of the 3rd International Conference Palo Alto on Pairing-Based Cryptography, 2009, pp. 187-205.
[doi] [search]
“Efficient and secure authenticated key exchange using weak passwords”, Jonathan Katz, Rafail Ostrovsky, Moti Yung, J. ACM, vol. 57 (2009), pp. 1-39.
[doi.acm.org] [search]
“Elastic block ciphers: method, security and instantiations”, Debra L. Cook, Moti Yung, Angelos D. Keromytis, Int. J. Inf. Secur., vol. 8 (2009), pp. 211-231.
[doi] [search]
“Expecting the Unexpected: Towards Robust Credential Infrastructure”, Shouhuai Xu, Moti Yung, Financial Cryptography and Data Security, 2009, pp. 201-221.
[doi] [search]
“Firefox (In)Security Update Dynamics Exposed”, Stefan Frei, Thomas Duebendorfer, Bernhard Plattner, ACM Sigcomm Comput. Commun. Rev., vol. 39 Issue 1 (2009), pp. 16-22.
[doi.acm.org] [search]
“Generative usability: security and user centered design beyond the appliance”, Luke Church, Alma Whitten, New Security Paradigms Workshop, 2009.
[search]
“Key Evolution Systems in Untrusted Update Environments”, Benoît Libert, Jean-Jacques Quisquater, Moti Yung, Information Security and Cryptology, 2009, pp. 12-21.
[doi] [search]
“MAC Reforgeability”, John Black, Martin Cochran, Fast Software Encryption, 2009, pp. 345-362.
[abstract] [search]
“On the Portability of Generalized Schnorr Proofs”, Jan Camenisch, Aggelos Kiayias, Moti Yung, EUROCRYPT '09: Proceedings of the 28th Annual International Conference on Advances in Cryptology, 2009, pp. 425-442.
[doi] [search]
“Plinko: polling with a physical implementation of a noisy channel”, Chris Alexander, Joel Reardon, Ian Goldberg, WPES '09: Proceedings of the 8th ACM workshop on Privacy in the electronic society, 2009, pp. 109-112.
[doi.acm.org] [search]
“Privacy-Preserving Information Markets for Computing Statistical Data”, Aggelos Kiayias, Bülent Yener, Moti Yung, Financial Cryptography and Data Security, 2009, pp. 32-50.
[doi] [search]
“Privacy-preserving indexing of documents on the network”, Mayank Bawa, Roberto J. Bayardo, Rakesh Agrawal, Jaideep Vaidya, The VLDB Journal, vol. 18 (2009), pp. 837-856.
[doi] [search]
“Redirects to login pages are bad, or are they?”, Eric Sachs, SOUPS '09: Proceedings of the 5th Symposium on Usable Privacy and Security, 2009, pp. 1-1.
[doi.acm.org] [search]
“Secure EPC Gen2 Compliant Radio Frequency Identification”, Mike Burmester, Breno Medeiros, Jorge Munilla, Alberto Peinado, ADHOC-NOW '09: Proceedings of the 8th International Conference on Ad-Hoc, Mobile and Wireless Networks, 2009, pp. 227-240.
[doi] [search]
“Secure Function Collection with Sublinear Storage”, Maged H. Ibrahim, Aggelos Kiayias, Moti Yung, Hong-Sheng Zhou, ICALP '09: Proceedings of the 36th Internatilonal Collogquium on Automata, Languages and Programming, 2009, pp. 534-545.
[doi] [search]
“The Goals and Challenges of Click Fraud Penetration Testing Systems”, Carmelo Kintana, David Turner, Jia-Yu Pan, Ahmed Metwally, Neil Daswani, Erika Chin, Andrew Bortz, International Symposium on Software Reliability Engineering, 2009.
[abstract] [issre2009.org] [search]
“The Kurosawa-Desmedt key encapsulation is not chosen-ciphertext secure”, Seung Geol Choi, Javier Herranz, Dennis Hofheinz, Jung Yeon Hwang, Eike Kiltz, Dong Hoon Lee, Moti Yung, Inf. Process. Lett., vol. 109 (2009), pp. 897-901.
[doi] [search]
“Why Silent Updates Boost Security”, Thomas Duebendorfer, Stefan Frei, ETH Tech Report, vol. TIK 302 (2009), pp. 1-9.
[abstract] [techzoom.net] [search]
“(Under)mining Privacy in Social Networks”, Monica Chew, Dirk Balfanz, Ben Laurie, W2SP 2008: Web 2.0 Security and Privacy 2008.
[w2spconf.com] [pdf] [search]
“A block cipher based pseudo random number generator secure against side-channel key recovery”, Christophe Petit, François-Xavier Standaert, Olivier Pereira, Tal G. Malkin, Moti Yung, ASIACCS '08: Proceedings of the 2008 ACM symposium on Information, computer and communications security, pp. 56-65.
[doi.acm.org] [search]
“Access Control”, Ben Laurie, 2008.
[links.org] [pdf] [search]
“All Your iFrames Point to Us”, Niels Provos, Panayiotis Mavrommatis, Moheeb Rajab, Fabian Monrose, 17th USENIX Security Symposium, 2008.
[search]
“Anonymous RFID authentication supporting constant cost key lookup against active adversaries”, M. Burmester, B. De Medeiros, R. Motta, Int. J. Appl. Cryptol., vol. 1 (2008), pp. 79-90.
[doi] [search]
“Choose the Red Pill and the Blue Pill”, Ben Laurie, Abe Singer, New Security Paradigms Workshop 2008.
[search]
“Competition and Fraud in Online Advertising Markets”, Bob Mungamuru, Stephen A. Weis, Financial Cryptography, 2008.
[abstract] [pdf] [search]
“Corrupted DNS Resolution Paths: The Rise of a Malicious Resolution Authority”, David Dagon, Chris Lee, Wenke Lee, Niels Provos, Proc. 15th Network and Distributed System Security Symposium (NDSS), 2008.
[abstract] [citi.umich.edu] [pdf] [search]
“Distributed divide-and-conquer techniques for effective DDoS attack defenses”, Muthuprasanna Muthusrinivasan, Manimaran Govindarasu, IEEE International Conference on Distributed Computing Systems (ICDCS), 2008.
[abstract] [research.google.com] [pdf] [search]
“Does Physical Security of Cryptographic Devices Need a Formal Study? (Invited Talk)”, François-Xavier Standaert, Tal G. Malkin, Moti Yung, ICITS '08: Proceedings of the 3rd international conference on Information Theoretic Security, 2008, pp. 70-70.
[doi] [search]
“Efficient Constructions of Composable Commitments and Zero-Knowledge Proofs”, Yevgeniy Dodis, Victor Shoup, Shabsi Walfish, Proceedings of Advances in Cryptology - CRYPTO 2008, 28th Annual International Cryptology Conference, Santa Barbara, CA, USA, August 17-21, 2008, pp. 515-535.
[doi] [search]
“Fair Traceable Multi-Group Signatures”, Vicente Benjumea, Seung Geol Choi, Javier Lopez, Moti Yung, Financial Cryptography, 2008, pp. 231-246.
[doi] [search]
“Ghost Turns Zombie: Exploring the Life Cycle of Web-based Malware”, Michalis Polychronakis, Panayiotis Mavrommatis, Niels Provos, Proceedings of the 1st USENIX Workshop on Large-Scale Exploits and Emergent Threats (LEET), 2008.
[usenix.org] [pdf] [search]
“Insecure Context Switching: Innoculating regular expressions for survivability”, Will Drewry, Tavis Ormandy, 2nd USENIX Workshop on Offensive Technologies (WOOT '08), 2008.
[usenix.org] [pdf] [search]
“Methods for Linear and Differential Cryptanalysis of Elastic Block Ciphers”, Debra L. Cook, Moti Yung, Angelos D. Keromytis, ACISP '08: Proceedings of the 13th Australasian conference on Information Security and Privacy, 2008, pp. 187-202.
[doi] [search]
“On the Evolution of User Authentication: Non-bilateral Factors”, Moti Yung, Information Security and Cryptology, Third SKLOIS Conference, Inscrypt 2007, 2008, pp. 5-10.
[doi] [search]
“Peeking Through the Cloud”, Moheeb Abu Rajab, Fabian Monrose, Andreas Terzis, Niels Provos, 6th Conference on Applied Cryptography and Network Security, 2008.
[search]
“Plan 9 Authentication in Linux”, Ashwin Ganti, ACM SIGOPS OSR special issue on Research and Developments in the Linux Kernel, vol. 42, Issue 5 (July 2008) (2008).
[delivery.acm.org] [pdf] [search]
“Please Permit Me: Stateless Delegated Authorization in Mashups”, Ragib Hasan, Marianne Winslett, Richard Conlan, Brian Slesinsky, Nandakumar Ramani, Proceedings of the Annual Computer (2008), pp. 173-182.
[abstract] [ragibhasan.com] [pdf] [search]
“Privacy Preserving Data Mining within Anonymous Credential Systems”, Aggelos Kiayias, Shouhuai Xu, Moti Yung, SCN '08: Proceedings of the 6th international conference on Security and Cryptography for Networks, 2008, pp. 57-76.
[doi] [search]
“Provably Secure Grouping-Proofs for RFID Tags”, Mike Burmester, Breno Medeiros, Rossana Motta, CARDIS '08: Proceedings of the 8th IFIP WG 8.8/11.2 international conference on Smart Card Research and Advanced Applications, 2008, pp. 176-190.
[doi] [search]
“Public-key traitor tracing from efficient decoding and unbounded enrollment: extended abstract”, Aggelos Kiayias, Moti Yung, DRM '08: Proceedings of the 8th ACM workshop on Digital rights management, 2008, pp. 9-18.
[doi.acm.org] [search]
“Real Electronic Cash Versus Academic Electronic Cash Versus Paper Cash (Panel Report)”, Jon Callas, Yvo Desmedt, Daniel Nagy, Akira Otsuka, Jean-Jacques Quisquater, Moti Yung, Financial Cryptography and Data Security, 2008, pp. 307-313.
[doi] [search]
“Securing Nonintrusive Web Encryption through Information Flow”, Lantian Zheng, Andrew C. Myers, Proceedings of the 2008 workshop on programming languages and analysis for security.
[pdf] [search]
“Security aspects of the Authentication used in Quantum Cryptography”, Jörgen Cederlöf, Jan-Åke Larsson, IEEE Transactions on Information Theory, vol. 54 (2008), pp. 1735-1741.
[arxiv.org] [pdf] [search]
“To Catch a Predator: A Natural Language Approach for Eliciting Protocol Interaction”, Sam Small, Joshua Mason, Fabian Monrose, Niels Provos, Adam Stubblefield, 17th USENIX Security Symposium, 2008.
[search]
“Understanding the Web browser threat”, Stefan Frei, Thomas Duebendorfer, Gunter Ollmann, Martin May, DefCon 16 (2008).
[techzoom.net] [search]
“Video CAPTCHAs: Usability vs. Security”, Kurt Alfred Kluever, Richard Zanibbi, Proceedings of the IEEE Western New York Image Processing Workshop (WNYIP '08), 2008.
[abstract] [kloover.com] [pdf] [search]
“A Framework for Detection and Measurement of Phishing Attacks”, Sujata Garera, Niels Provos, Monica Chew, Aviel D. Rubin, WORM'07, 2007.
[doi.acm.org] [search]
“An Empirical Study into the Security Exposure to Hosts of Hostile Virtualized Environments”, Tavis Ormandy, CanSecWest 2007.
[taviso.decsystem.org] [search]
“Byzantine Attacks on Anonymity Systems”, Nikita Borisov, George Danezis, Parisa Tabriz, Digital Privacy: Theory, Technologies, and Practices, 2007.
[search]
“Cyberassault on Estonia”, Marc Donner, IEEE Security and Privacy, vol. 5, no. 4 (2007), pp. 4.
[search]
“Defining Strong Privacy for RFID”, Ari Juels, Stephen A. Weis, Proc. 5th International Conf. on Pervasive Computing and Communications Workshops, 2007, pp. 342-347.
[doi] [search]
“Delegating Responsibility in Digital Systems: Horton's”, Mark S. Miller, Jed Donnelley, Alan H. Karp, 2nd USENIX Workshop on Hot Topics in Security, 2007, pp. 5.
[abstract] [erights.org] [pdf] [search]
“Denial of Service or Denial of Security? How Attacks can Compromize Anonymity”, Nikita Borisov, George Danezis, Prateek Mittal, Parisa Tabriz, Conference on Computer and Communications Security, 2007.
[doi.acm.org] [pdf] [search]
“Dynamic Pharming Attacks and Locked Same-Origin Policies for Web Browsers”, Chris Karlof, Umesh Shankar, J. D. Tygar, David Wagner, Conference on Computer and Communications Security, 2007.
[doi.acm.org] [pdf] [search]
“Flayer: Exposing Application Internals”, Will Drewry, Tavis Ormandy, First USENIX Workshop on Offensive Technologies (WOOT '07), 2007.
[usenix.org] [pdf] [search]
Foundations of Security: What Every Programmer Needs to Know, Neil Daswani, Christoph Kern, Anita Kesavan, 2007.
[pdf] [search]
“Memsherlock: An Automated Debugger for Unknown Memory Corruption Vulnerabilities”, Emre C. Sezer, Peng Ning, ChongKyung Kil, Jun Xu, Conference on Computer and Communication Security, 2007.
[doi.acm.org] [search]
“Provable Data Possession at Untrusted Stores”, Giuseppe Ateniese, Randal Burns, Reza Curtmola, Joseph Herring, Lea Kissner, Zachary Peterson, Dawn Song, Conference on Computer and Communications Security, 2007.
[doi.acm.org] [pdf] [search]
“Selective Disclosure”, Ben Laurie, 2007.
[abstract] [links.org] [pdf] [search]
“The Ghost In The Browser: Analysis of Web-based Malware”, Niels Provos, Dean McNamee, Panayiotis Mavrommatis, Ke Wang, Nagendra Modadugu, First Workshop on Hot Topics in Understanding Botnets (HotBots '07), 2007.
[usenix.org] [pdf] [search]
“Tradeoffs in Retrofitting Security: An Experience Report”, Mark S. Miller, Dynamic Languages Symposium, 2007.
[doi.acm.org] [pdf] [search]
Virtual Honeypots: From Botnet Tracking to Intrusion Detection, Niels Provos, Thorsten Holz, 2007.
[amazon.com] [pdf] [search]
“A Method for Making Password-Based Key Exchange Resilient to Server Compromise”, Craig Gentry, Philip MacKenzie, Zulfikar Ramzan, Advances in Cryptology - CRYPTO 2006, pp. 142-159.
[pdf] [search]
“Cookies Along Trust-Boundaries (CAT): Accurate and Deployable Flood Protection”, Martin Casado, Aditya Akella, Pei Cao, Niels Provos, Scott Shenker, In Proceedings of Steps To Reduce Unwated Traffic From The Internet, 2006.
[yuba.stanford.edu] [search]
“Flow-Cookies: Using Bandwidth Amplification to Defend Against DDoS Flooding Attacks”, Martin Casado, Pei Cao, Aditya Akella, Niels Provos, Proceedings of the IEEE Workshop on QoS, 2006.
[search]
“Language Modeling and Encryption on Packet Switched Networks”, Kevin S. McCurley, Advances in Cryptology: Proc. Eurocrypt 2006, pp. 359-372.
[mccurley.org] [pdf] [search]
“Limits to Anti Phishing”, Jeff Nelson, David Jeske, Proceedings of the W3c Security and Usability Workshop, 2006, pp. 5.
[w3.org] [search]
“Packet vaccine: black-box exploit detection and signature generation”, XiaoFeng Wang, Zhuowei Li, Jun Xu, Michael K. Reiter, Chongkyung Kil, Jong Youl Choi, Proc. 13th ACM Conference on Computer and Communications Security, 2006, pp. 37-46.
[search]
“Privacy-Enhancing Technologies”, Stephen A. Weis, IEEE Security and Privacy, vol. 4 (2006), pp. 59.
[pdf] [search]
“Resource Fairness and Composability of Cryptographic Protocols”, Juan Garay, Philip MacKenzie, Manoj Prabhakaran, Ke Yang, Theory of Cryptography: Third Theory of Cryptography Conference, TCC 2006, pp. 404-428.
[search]
“Search Worms”, Niels Provos, Joe McClain, Ke Wang, WORM '06: Proceedings of the 4th ACM workshop on Recurring malcode, 2006, pp. 1-8.
[abstract] [doi.acm.org] [search]
“A Virtual Honeypot Framework”, Niels Provos, USENIX Security Symposium, 2004, pp. 1-14.
[usenix.org] [pdf] [search]
“Improving Host Security with System Call Policies”, Niels Provos, 12th USENIX Security Symposium, 2003.
[pdf] [search]
“Preventing Privilege Escalation”, Niels Provos, Markus Friedl, Peter Honeyman, 12th USENIX Security Symposium, 2003.
[pdf] [search]
“Defending Against Statistical Steganalysis”, Niels Provos, 10th USENIX Security Symposium, 2001.
[search]
“Encrypting Virtual Memory”, Niels Provos, 9th USENIX Security Symposium (2000).
[search]
“A Future-Adaptable Password Scheme”, Niels Provos, David Mazières, USENIX Annual Technical Conference, FREENIX Track, 1999.
[usenix.org] [search]
“Cryptography in OpenBSD: An Overview”, Theo de Raadt, Niklas Hallqvist, Artur Grabowski, Angelos D. Keromytis, Niels Provos, USENIX Annual Technical Conference, FREENIX Track, 1999.
[usenix.org] [search]