ACSAC
2008
IEEE
14 years 2 months ago
2008
IEEE
Mashups have emerged as a Web 2.0 phenomenon, connecting disjoint applications together to provide unified services. However, scalable access control for mashups is difficult. T...
ACSAC
2008
IEEE
14 years 2 months ago
2008
IEEE
Mashups are new Web 2.0 applications that seamlessly combine contents from multiple heterogeneous data sources into one integrated browser environment. The hallmark of these appli...
ACSAC
2008
IEEE
14 years 2 months ago
2008
IEEE
Cross-site Scripting (XSS) has emerged to one of the most prevalent type of security vulnerabilities. While the reason for the vulnerability primarily lies on the serverside, the ...
ACSAC
2008
IEEE
14 years 2 months ago
2008
IEEE
ACSAC
2008
IEEE
14 years 2 months ago
2008
IEEE
A large number of papers have proposed cryptographic protocols for establishing secure group communication. These protocols allow group members to exchange or establish keys to en...
ACSAC
2008
IEEE
14 years 2 months ago
2008
IEEE
We present and evaluate various methods for purely automated attacks against click-based graphical passwords. Our purely automated methods combine click-order heuristics with focu...
ACSAC
2008
IEEE
14 years 2 months ago
2008
IEEE
In February 2002, more than 50 leaders in the information assurance field warned the President of the United States of a national strategic vulnerability in the country’s inform...
ACSAC
2008
IEEE
14 years 2 months ago
2008
IEEE
ACSAC
2008
IEEE
14 years 2 months ago
2008
IEEE
A new class of stealthy kernel-level malware, called transient kernel control flow attacks, uses dynamic soft timers to achieve significant work while avoiding any persistent ch...
ACSAC
2008
IEEE
14 years 2 months ago
2008
IEEE
Most intrusion detection systems apply the misuse detection approach. Misuse detection compares recorded audit data with predefined patterns denoted as signatures. A signature is ...