The 2004 Information Security Conference Was The Seventh In A Series That Started With The Information Security Workshop In 1997. A Distinct Feature Of This Series Is The Wide Coverage Of Topics With The Aim Of Encouraging Interaction Between Researchers In Di?erent Aspects Of Information Security. This Trend C- Tinuedintheprogramofthisyear’sconference.theprogramcommitteereceived 106 Submissions, From Which 36 Were Selected For Presentation. Each Submission Was Reviewed By At Least Three Experts In The Relevant Research Area. We Would Liketothankalltheauthorsfortakingtheirtimetopreparethesubmissions,and Wehopethatthosewhosepapersweredeclinedwillbeableto?ndanalternative Forum For Their Work. We Were Fortunate To Have An Energetic Team Of Experts Who Took On The Task Of The Program Committee. Their Names May Be Found Overleaf, And We Thank Them Warmly For Their Time And E?orts. This Team Was Helped By An Even Larger Number Of External Reviewers Who Reviewed Papers In Their Particular Areas Of Expertise. A List Of These Names Is Also Provided, Which We Hope Is Complete. We Would Also Like To Thank The Advisory Committee For Their Advice And S- Port.theexcellentlocalarrangementswerehandledbydirkbalfanzandjessica Staddon. We Made Use Of The Electronic Submission And Reviewing Software S- Plied By Cosic At The Katholieke Universiteit Leuven. Both The Software And The Isc 2004 Website Were Run On A Server At Unc Charlotte, And Were Perfectly Maintained By Seung-hyun Im. We Also Appreciate Assistance From Lawrence Teo In Editing The Proceedings. Key Management -- Practical Authenticated Key Agreement Using Passwords -- Further Analysis Of Password Authenticated Key Exchange Protocol Based On Rsa For Imbalanced Wireless Networks -- Storage-efficient Stateless Group Key Revocation -- Digital Signatures -- Low-level Ideal Signatures And General Integrity Idealization -- Cryptanalysis Of A Verifiably Committed Signature Scheme Based On Gps And Rsa -- How To Break And Repair A Universally Composable Signature Functionality -- New Algorithms -- Rsa Accumulator Based Broadcast Encryption -- Chameleon Hashing Without Key Exposure -- Radix-r Non-adjacent Form -- Cryptanalysis -- On Related-key And Collision Attacks: The Case For The Ibm 4758 Cryptoprocessor -- Security Analysis Of Two Signcryption Schemes -- On The Security Of Key Derivation Functions -- Intrusion Detection -- Evaluating The Impact Of Intrusion Detection Deficiencies On The Cost-effectiveness Of Attack Recovery --^ A Model For The Semantics Of Attack Signatures In Misuse Detection Systems -- Detection Of Sniffers In An Ethernet Network -- Using Greedy Hamiltonian Call Paths To Detect Stack Smashing Attacks -- Securing Dbms: Characterizing And Detecting Query Floods -- Access Control -- An Xml-based Approach To Document Flow Verification -- Model-checking Access Control Policies -- A Distributed High Assurance Reference Monitor -- Using Mediated Identity-based Cryptography To Support Role-based Access Control -- Human Authentication -- Towards Human Interactive Proofs In The Text-domain -- Image Recognition Captchas -- Certificate Management -- A Hierarchical Key-insulated Signature Scheme In The Ca Trust Model -- Certificate Recommendations To Improve The Robustness Of Web Of Trust -- Mobile And Ad Hoc Security -- Universally Composable Secure Mobile Agent Computation -- Re-thinking Security In Ip Based Micro-mobility --^ Shared-key Signature And Its Application To Anonymous Authentication In Ad Hoc Group -- Web Security -- Prevent Online Identity Theft – Using Network Smart Cards For Secure Online Transactions -- Provable Unlinkability Against Traffic Analysis Already After Steps! -- An Efficient Online Electronic Cash With Unlinkable Exact Payments -- Digital Rights Management -- Modifiable Digital Content Protection In P2p -- Survey On The Technological Aspects Of Digital Rights Management -- Detecting Software Theft Via Whole Program Path Birthmarks -- Software Security -- Effective Security Requirements Analysis: Hazop And Use Cases -- The Obfuscation Executive. Kan Zhang, Yuliang Zheng (eds.). Includes Bibliographical References And Index.

lgrsnf/Information Security, 7 conf., ISC 2004(LNCS3225, Springer, 2004)(ISBN 3540232087)(T)(C)(O)(457s).djvu

Information security : ... international conference ; proceedings. 7 (2004), Palo Alto, CA, USA, September 27-29, 2004

Lecture Notes in Computer Science 3225 Information Security 7th International Conference,ISC 2004

Kan Zhang; Yuliang Zheng; ISC (Conference : Information security)

Masahiro Mambo; Eiji Okamoto; Josef Pieprzyk; ISC; ISW

Kan Zhang ; Yuliang Zheng,Springer

ISC 2004 (2004 Palo Alto, Calif.)

Kan Zhang, Yuliang Zheng (eds.)

Springer Berlin Heidelberg : Imprint : Springer

Steinkopff. in Springer-Verlag GmbH

Lecture notes in computer science,, 3225, Berlin, New York, Germany, 2004

Springer Nature, Berlin, 2004

1 edition, December 14, 2004

Germany, Germany

Includes bibliographical references and index.

Table of Contents
Key Management
Practical Authenticated Key Agreement Using Passwords
Further Analysis of Password Authenticated Key Exchange Protocol Based on RSA for Imbalanced Wireless Networks
Storage-Efficient Stateless Group Key Revocation
Digital Signatures
Low-Level Ideal Signatures and General Integrity Idealization
Cryptanalysis of a Verifiably Committed Signature Scheme Based on GPS and RSA
How to Break and Repair a Universally Composable Signature Functionality
New Algorithms
RSA Accumulator Based Broadcast Encryption
Chameleon Hashing Without Key Exposure
Radix-r Non-Adjacent Form
Cryptanalysis
On Related-Key and Collision Attacks: The Case for the IBM 4758 Cryptoprocessor
Security Analysis of Two Signcryption Schemes
On The Security of Key Derivation Functions
Intrusion Detection
Evaluating the Impact of Intrusion Detection Deficiencies on the Cost-Effectiveness of Attack Recovery
A Model for the Semantics of Attack Signatures in Misuse Detection Systems
Detection of Sniffers in an Ethernet Network
Using Greedy Hamiltonian Call Paths to Detect Stack Smashing Attacks
Securing DBMS: Characterizing and Detecting Query Floods
Access Control
An XML-Based Approach to Document Flow Verification
Model-Checking Access Control Policies
A Distributed High Assurance Reference Monitor
Using Mediated Identity-Based Cryptography to Support Role-Based Access Control
Human Authentication
Towards Human Interactive Proofs in the Text-Domain (Using the Problem of Sense-Ambiguity for Security)
Image Recognition CAPTCHAs
Certificate Management
A Hierarchical Key-Insulated Signature Scheme in the CA Trust Model
Certificate Recommendations to Improve the Robustness of Web of Trust
Mobile and Ad Hoc Security
Universally Composable Secure Mobile Agent Computation
Re-thinking Security in IP Based Micro-Mobility
Shared-Key Signature and Its Application to Anonymous Authentication in Ad Hoc Group
Web Security
Prevent Online Identity Theft – Using Network Smart Cards for Secure Online Transactions
Provable Unlinkability Against Traffic Analysis Already After O(log(n)) Steps!
An Efficient Online Electronic Cash with Unlinkable Exact Payments
Digital Rights Management
Modifiable Digital Content Protection in P2P
Survey on the Technological Aspects of Digital Rights Management
Detecting Software Theft via Whole Program Path Birthmarks
Software Security
Effective Security Requirements Analysis: HAZOP and Use Cases
The Obfuscation Executive
Author Index
A
B
C
D
F
G
H
J
K
L
M
N
P
Q
R
S
T
W
X
Y
Z

The 2004 Information Security Conference was the seventh in a series that started with the Information Security Workshop in 1997. A distinct feature of this series is the wide coverage of topics with the aim of encouraging interaction between researchers in di?erent aspects of information security. This trend c- tinuedintheprogramofthisyear’sconference.Theprogramcommitteereceived 106 submissions, from which 36 were selected for presentation. Each submission was reviewed by at least three experts in the relevant research area. We would liketothankalltheauthorsfortakingtheirtimetopreparethesubmissions,and wehopethatthosewhosepapersweredeclinedwillbeableto?ndanalternative forum for their work. We were fortunate to have an energetic team of experts who took on the task of the program committee. Their names may be found overleaf, and we thank them warmly for their time and e?orts. This team was helped by an even larger number of external reviewers who reviewed papers in their particular areas of expertise. A list of these names is also provided, which we hope is complete. We would also like to thank the advisory committee for their advice and s- port.TheexcellentlocalarrangementswerehandledbyDirkBalfanzandJessica Staddon. We made use of the electronic submission and reviewing software s- plied by COSIC at the Katholieke Universiteit Leuven. Both the software and the ISC 2004 website were run on a server at UNC Charlotte, and were perfectly maintained by Seung-Hyun Im. We also appreciate assistance from Lawrence Teo in editing the proceedings.
Erscheinungsdatum: 17.09.2004

The 2004 Information Security Conference was the seventh in a series that started with the Information Security Workshop in 1997. A distinct feature of this series is the wide coverage of topics with the aim of encouraging interaction between researchers in di?erent aspects of information security. This trend c- tinuedintheprogramofthisyear'sconference. Theprogramcommitteereceived 106 submissions, from which 36 were selected for presentation. Each submission was reviewed by at least three experts in the relevant research area. We would liketothankalltheauthorsfortakingtheirtimetopreparethesubmissions, and wehopethatthosewhosepapersweredeclinedwillbeableto?ndanalternative forum for their work. We were fortunate to have an energetic team of experts who took on the task of the program committee. Their names may be found overleaf, and we thank them warmly for their time and e?orts. This team was helped by an even larger number of external reviewers who reviewed papers in their particular areas of expertise. A list of these names is also provided, which we hope is complete. We would also like to thank the advisory committee for their advice and s- port. TheexcellentlocalarrangementswerehandledbyDirkBalfanzandJessica Staddon. We made use of the electronic submission and reviewing software s- plied by COSIC at the Katholieke Universiteit Leuven. Both the software and the ISC 2004 website were run on a server at UNC Charlotte, and were perfectly maintained by Seung-Hyun Im. We also appreciate assistance from Lawrence Teo in editing the proceedings

2024-07-22