Accepted Papers

  • Joel Weinberger, Prateek Saxena, Devdatta Akhawe, Matthew Finifter, Richard Shin and Dawn Song.
    A Systematic Analysis of XSS Sanitization in Web Application Frameworks.
  • Sören Bleikertz, Thomas Gross, Matthias Schunter and Konrad Eriksson.
    Automated Information Flow Analysis of Virtualized Infrastructures.
  • Christina Pöpper, Nils Ole Tippenhauer, Boris Danev and Srdjan Capkun.
    Investigation of Signal and Message Manipulations on the Wireless Channel.
  • Xiaoyong Zhou, Bo Peng, Yong Li, Yangyi Chen, Haixu Tang and Xiaofeng Wang.
    To Release or Not to Release: Evaluating Information Leaks in Aggregate Human-Genome Data.
  • Ronen Margulies and Amir Herzberg.
    Forcing Johnny to Login Safely.
  • Gunnar Kreitz.
    Timing is Everything - the Importance of History Detection.
  • Zhen Liu, Zhenfu Cao, Qiong Huang, Duncan S. Wong and Tsz Hon Yuen.
    Fully Secure Multi-Authority Ciphertext-Policy Attribute-Based Encryption without Random Oracles.
  • Arnar Birgisson and Andrei Sabelfeld.
    Multi-run security.
  • Jens Hermans, Frederik Vercauteren, Andreas Pashalidis and Bart Preneel.
    A New RFID Privacy Model.
  • Philippe De Ryck, Lieven Desmet, Frank Piessens and Wouter Joosen.
    Automatic and Precise Client-Side Protection against CSRF Attacks.
  • Piero Bonatti, Marco Faella, Clemente Galdi and Luigi Sauro.
    Towards a Mechanism for Incentivating Privacy.
  • Steve Barker and Valerio Genovese.
    Socially Constructed Trust for Distributed Authorization.
  • Nathan Rosenblum, Xiaojin Zhu and Barton Miller.
    Who Wrote This Code? Identifying the Authors of Program Binaries.
  • Alexander Ulrich, Ralph Holz, Peter Hauck and Georg Carle.
    Investigating the OpenPGP Web of Trust.
  • Nashad Safa, Reihaneh Safavi-Naini, Saikat Sarkar and Majid Ghaderi.
    Secure Localization using Dynamic Verifiers.
  • Dominique Schröder.
    How to Aggregate the CL Signature Scheme.
  • Raymond Mui and Phyllis Frankl.
    Preventing Web Application Injections with Complementary Character Coding.
  • Vinh Pham, Kesdogan Dogan and Joss Wright.
    A Practical Complexity-Theoretic Analysis of Mix Systems.
  • Sabrina De Capitani Di Vimercati, Sara Foresti, Stefano Paraboschi, Gerardo Pelosi and Pierangela Samarati.
    Supporting Concurrency in Private Data Outsourcing.
  • Michele Boreale, Francesca Pampaloni and Michela Paolini.
    Quantitative Information Leakage, With a View.
  • Murtuza Jadliwala, Igor Bilogrevic and Jean-Pierre Hubaux.
    Optimizing Mixing in Pervasive Networks: A Graph-Theoretic Perspective.
  • Jason Crampton.
    Time-Storage Trade-Offs for Cryptographically-Enforced Access Control.
  • Marina Blanton and Paolo Gasti.
    Secure and Efficient Protocols for Iris and Fingerprint Identification.
  • Diogo Monica and Carlos Ribeiro.
    WiFiHop - Mitigating the Evil Twin Attack through Multi-hop Detection.
  • David Bernhard, Veronique Cortier and Bogdan Warinschi.
    Adapting Helios for provable ballot secrecy.
  • Nicholas Farnan, Adam J. Lee and Panos Chrysanthis.
    Don't Reveal My Intension: Protecting User Privacy using Declarative Preferences during Distributed Query Processing.
  • Ka Yang, Jinsheng Zhang, Wensheng Zhang and Daji Qiao.
    A Light-weight Solution to Preservation of Access Pattern Privacy in Un-trusted Clouds.
  • Zhi Wang, Jiang Ming, Chunfu Jia and Debin Gao.
    Linear Obfuscation to Combat Symbolic Execution.
  • Massimiliano Albanese, Sushil Jajodia, Andrea Pugliese and V.S. Subrahmanian.
    Scalable Analysis of Attack Scenarios.
  • Elie Bursztein, Baptiste Gourdin and John Mitchell.
    Reclaiming the Blogosphere, Talkback: A Secure Linkback Protocol for Weblogs.
  • Yueqiang Cheng, Xuhua Ding and Robert Deng.
    DriverGuard: A Fine-grained Protection On I/O Flow.
  • Alfred Kobsa, Rishab Nithyanand, Gene Tsudik and Ersin Uzun.
    Usability of Display-Equipped RFID Tags for Security Purposes.
  • Billy Brumley and Nicola Tuveri.
    A Timing Attack on an ECDSA Software Implementation.
  • Yuchen Zhou and David Evans.
    Protecting Private Web Content from Embedded Scripts.
  • Cas Cremers.
    Key Exchange in IPsec revisited: Formal Analysis of IKEv1 and IKEv2.
  • Hannes Federrath, Karl-Peter Fuchs, Dominik Herrmann and Christopher Piosecny.
    Privacy-Preserving DNS.