LEADER 07146nam 22008175 450 001 9910483596803321 005 20251226200041.0 024 7 $a10.1007/b107167 035 $a(CKB)1000000000212896 035 $a(SSID)ssj0000318288 035 $a(PQKBManifestationID)11247224 035 $a(PQKBTitleCode)TC0000318288 035 $a(PQKBWorkID)10328348 035 $a(PQKB)11489941 035 $a(DE-He213)978-3-540-31979-5 035 $a(MiAaPQ)EBC3067544 035 $a(PPN)123093856 035 $a(EXLCZ)991000000000212896 100 $a20100630d2005 u| 0 101 0 $aeng 135 $aurnn#008mamaa 181 $ctxt 182 $cc 183 $acr 200 10$aInformation Security Practice and Experience $eFirst International Conference, ISPEC 2005, Singapore, April 11-14, 2005, Proceedings /$fedited by Robert H. Deng, Feng Bao, HweeHwa Pang, Jianying Zhou 205 $a1st ed. 2005. 210 1$aBerlin, Heidelberg :$cSpringer Berlin Heidelberg :$cImprint: Springer,$d2005. 215 $a1 online resource (XII, 428 p.) 225 1 $aSecurity and Cryptology,$x2946-1863 ;$v3439 300 $aBibliographic Level Mode of Issuance: Monograph 311 08$a3-540-31979-4 311 08$a3-540-25584-2 320 $aIncludes bibliographical references and index. 327 $aNetwork Security -- Risk Assessment of Production Networks Using Honeynets ? Some Practical Experience -- POSSET ? Policy-Driven Secure Session Transfer -- Modeling and Evaluation of Security Architecture for Wireless Local Area Networks by Indexing Method: A Novel Approach -- Robust Routing in Malicious Environment for Ad Hoc Networks -- Cryptographic Techniques I -- Short Linkable Ring Signatures for E-Voting, E-Cash and Attestation -- Tracing Traitors by Guessing Secrets. The q-Ary Case -- Probabilistic Analyses on Finding Optimal Combinations of Primality Tests in Real Applications -- Countermeasures for Preventing Comb Method Against SCA Attacks -- Secure Architecture I -- An Email Worm Vaccine Architecture -- Enforcing the Principle of Least Privilege with a State-Based Privilege Control Model -- Security On-demand Architecture with Multiple Modules Support -- Measuring Resistance to Social Engineering -- Access Control -- Conformance Checking of RBAC Policy and its Implementation -- A Practical Aspect Framework for Enforcing Fine-Grained Access Control in Web Applications -- A Task-Oriented Access Control Model for WfMS -- Intrusion Detection -- A Brief Observation-Centric Analysis on Anomaly-Based Intrusion Detection -- Detection of Distributed Denial of Service Attacks Using Statistical Pre-processor and Unsupervised Neural Networks -- Visual Spoofing of SSL Protected Web Sites and Effective Countermeasures -- Model Redundancy vs. Intrusion Detection -- Applications and Case Studies -- An Open Approach for Designing Secure Electronic Immobilizers -- An Empirical Study on the Usability of Logout in a Single Sign-on System -- Secure Software Delivery and Installation in Embedded Systems -- A Restricted Multi-show Credential System and Its Application on E-Voting -- Secure ArchitectureII -- Recard: Using Recommendation Cards Approach for Building Trust in Peer-to-Peer Networks -- Using Trust for Restricted Delegation in Grid Environments -- Computer Vulnerability Evaluation Using Fault Tree Analysis -- An Identity-Based Grid Security Infrastructure Model -- Data Security -- Towards Multilateral-Secure DRM Platforms -- Hiding Data in Binary Images -- Performance Analysis of CDMA-Based Watermarking with Quantization Scheme -- Protecting Mass Data Basing on Small Trusted Agent -- Cryptographic Techniques II -- On the Security of Some Nonrepudiable Threshold Proxy Signature Schemes -- Token-Controlled Public Key Encryption -- A New Class of Codes for Fingerprinting Schemes -- t-Out-of-n String/Bit Oblivious Transfers Revisited. 330 $aThe inaugural Information Security Practice and Experience Conference (ISPEC) was held on April 11?14, 2005, in Singapore. As applications of information security technologies become pervasive, - sues pertaining to their deployment and operation are becoming increasingly important. ISPEC is intended to be an annual conference that brings together researchers and practitioners to provide a con?uence of new information se- rity technologies, their applications and their integration with IT systems in various vertical sectors. The Program Committee consisted of leading experts in the areas of information security, information systems, and domain experts in applications of IT in vertical business segments. The topics of the conference covered security applications and case studies, access control, network security, data security, secure architectures, and cryp- graphic techniques. Emphasis was placed on the application of security research to meet practical user requirements, both in the paper selection process and in the invited speeches. Acceptance into the conference proceedings was very competitive. The Call for Papers attracted more than 120 submissions, out of which the Program Committee selected only 35 papers for inclusion in the proceedings. Thisconferencewasmadepossibleonlythroughthecontributionsfrommany individuals and organizations. We would like to thank all the authors who s- mitted papers. We also gratefully acknowledge the members of the Program Committee and the external reviewers, for the time and e?ort they put into reviewing the submissions. Special thanks are due to Ying Qiu for managing the website for paper s- mission,reviewandnoti?cation.PatriciaLohwaskindenoughtoarrangeforthe conference venue, and took care of the administration in runningthe conference. 410 0$aSecurity and Cryptology,$x2946-1863 ;$v3439 606 $aCryptography 606 $aData encryption (Computer science) 606 $aComputer networks 606 $aOperating systems (Computers) 606 $aComputers and civilization 606 $aElectronic data processing$xManagement 606 $aInformation storage and retrieval systems 606 $aCryptology 606 $aComputer Communication Networks 606 $aOperating Systems 606 $aComputers and Society 606 $aIT Operations 606 $aInformation Storage and Retrieval 615 0$aCryptography. 615 0$aData encryption (Computer science). 615 0$aComputer networks. 615 0$aOperating systems (Computers). 615 0$aComputers and civilization. 615 0$aElectronic data processing$xManagement. 615 0$aInformation storage and retrieval systems. 615 14$aCryptology. 615 24$aComputer Communication Networks. 615 24$aOperating Systems. 615 24$aComputers and Society. 615 24$aIT Operations. 615 24$aInformation Storage and Retrieval. 676 $a005.8 701 $aDeng$b Robert$0927691 801 0$bMiAaPQ 801 1$bMiAaPQ 801 2$bMiAaPQ 906 $aBOOK 912 $a9910483596803321 996 $aInformation security practice and experience$94198428 997 $aUNINA