Data and Applications Security XIX: 19th Annual IFIP WG 11.3 Working Conference on Data and Applications Security, Storrs, CT, USA, August 7-10, 2005, Proceedings, Volume 19The 19th Annual IFIP Working Group 11.3 Working Conference on Data and Applications Security was held August 7-10, 2005 at the University of C- necticut in Storrs, Connecticut. The objectives of the working conference were to discuss in depth the current state of the researchand practice in data and - plicationsecurity, enableparticipantstobene'tfrompersonalcontactwithother researchers and expand their knowledge, support the activities of the Working Group, and disseminate the research results. This volume contains the 24 papers that were presented at the working c- ference. These papers, which had been selected from 54 submissions, were rig- ously reviewed by the Working Group members. The volume is o'ered both to document progressand to provideresearcherswith a broadperspective of recent developments in data and application security. A special note of thanks goes to the many volunteers whose e'orts made the working conference a success. We wish to thank Divesh Srivastava for agreeing to deliver the invited talk, Carl Landwehr and David Spooner for organizing the panel, the authors for their worthy contributions, and the referees for their time and e'ort in reviewing the papers. We are grateful to T. C. Ting for serving as the General Chair, Steven Demurjian and Charles E. Phillips, Jr. for their hard work as Local Arrangements Chairs, and Pierangela Samarati, Working Group Chair, for managing the IFIP approval process. We would also like to acknowledge Sabrina De Capitani di Vimercati for managing the conference's Web site. |
Contents
Streams Security and Scalability | 1 |
Towards PrivacyEnhanced Authorization Policies and Languages | 16 |
A Notation for RBAC Permission Assignment | 40 |
Designing Secure Indexes for Encrypted Databases | 54 |
Efficiency and Security TradeOff in Supporting Range Queries | 69 |
Verified Query Results from Hybrid Authentication Trees | 84 |
Multilevel Secure Teleconferencing over Public Switched Telephone | 99 |
Secrecy of TwoParty Secure Computation | 114 |
A Comprehensive Approach to Anomaly Detection in Relational | 207 |
An Authorization Architecture for Web Services | 222 |
Secure Model Management Operations for the | 237 |
A CredentialBased Approach for Facilitating Automatic Resource | 252 |
Secure Mediation with Mobile Code | 267 |
A Quantitative Perspective | 281 |
Trading Off Security in a Service Oriented Architecture | 295 |
Trusted Identity and Session Management Using Secure Cookies | 310 |
PrivacyPreserving Decision Trees over Vertically Partitioned Data | 139 |
PrivacyPreserving Collaborative Association Rule Mining | 153 |
PrivacyPreserving Distributed kAnonymity | 166 |
Complete Redundancy Detection in Firewalls | 193 |
Security Issues in Querying Encrypted Data | 325 |
A Database Service Architecture That Supports | 338 |
353 | |
Other editions - View all
Data and Applications Security XIX: 19th Annual IFIP WG 11.3 Working ... Sushil Jajodia,Duminda Wijesekera No preview available - 2005 |
Data and Applications Security XIX: 19th Annual IFIP WG 11.3 ..., Volume 19 Sushil Jajodia No preview available - 2005 |
Common terms and phrases
access control rules ACmsb advanced transaction algorithm Applications Security approach architecture aspect-oriented programming association rule assume attack attribute authentication authorization c.count ciphertext client coalition entity coalition level Computer Conference constraints credentials data mining data objects decision decryption defined Definition delegation denote dependency detection distributed effective rule set evaluated example execution Fâ firewall framework Gigascope hash homomorphic encryption IEEE IFIP implementation input integrity IPV4 Jajodia k-anonymity mapping matching mediator method mobile code NET Passport node packet pair paper parties Passport Cookies performance plaintext pointcut prefix prefix-preserving privacy-preserving problem proof protocol query random RBAC redundant rules request revocation role slices Role-Based Access Control Schema Matching scheme Section Secure Cookies server Service Provider specific subnet subtransaction tion tree tuples values verify vulnerabilities Web service Windows 98 XACML