Abstract

file

Visible to the public Surveying Security Practice Adherence in Software Development

Submitted by Laurie Williams on Tue, 03/07/2017 - 9:23pm. Contributors:

ABSTRACT: Software development teams are increasingly incorporating security practices in to their software development processes. However, little empirical evidence exists on the costs and benefits associated with the application of security practices.

file

Visible to the public Global Variation in Attack Encounters and Hosting

Submitted by ghita_mezzour on Tue, 03/07/2017 - 9:23pm. Contributors:

ABSTRACT: Countries vary greatly in the extent to which their computers encounter and host attacks. Empirically identifying factors behind such variation can provide a sound basis for policies to reduce attacks worldwide.

file

Visible to the public On the Tradeoff between Privacy and Utility in Collaborative Intrusion Detection Systems-A Game Theoretical Approach

Submitted by Huaiyu Dai on Tue, 03/07/2017 - 9:23pm. Contributors:

ABSTRACT: Intrusion Detection Systems (IDSs) are crucial security mechanisms widely deployed for critical network protection. However, conventional IDSs become incompetent due to the rapid growth in network size and the sophistication of large scale attacks.

file

Visible to the public Leveraging Unique CPS Properties to Design Better Privacy-Enhancing Algorithms

Submitted by Murat Kantarcioglu on Tue, 03/07/2017 - 9:23pm. Contributors:

ABSTRACT: Cyber-Physical Systems (CPS) have unique properties that can be exploited to design new privacy-enhancing technologies that minimize the negative impact to the utility of CPS. In this paper we show two examples of these properties.

file

Visible to the public Characterizing Scientific Reporting in Security Literature: An analysis of ACM CCS and IEEE S&P Papers

Submitted by ozgurkafali on Tue, 03/07/2017 - 9:23pm. Contributors:

ABSTRACT: Scientific advancement is fueled by solid fundamental research, followed by replication, meta-analysis, and theory building. To support such advancement, researchers and government agencies have been working towards a “science of security”.

file

Visible to the public Tutorial: The Bugs Framework (BF) "Hands-On"

Submitted by Paul E. Black on Tue, 03/07/2017 - 9:23pm. Contributors:

ABSTRACT: Advancements of scientific foundation in cybersecurity rely on the availability of accurate, precise, and non-ambiguous definitions of software weaknesses (bugs) and descriptions of software vulnerabilities. The Bugs Framework (BF) organizes software weaknesses into distinct classes, such as buffer overflow (BOF), injection (INJ), faulty operation (FOP), and control of interaction frequency (CIF).

file

Visible to the public Optimal Security Investments in a Prevention and Detection Game

Submitted by cardenas on Tue, 03/07/2017 - 9:23pm. Contributors:

ABSTRACT: Most security defenses can be breached by motivated adversaries, therefore in addition to attack-prevention technologies, firms investing in cyber-security for their information technology infrastructure need to consider attack-detection and restoration tools to detect intruders, an

file

Visible to the public Use of Phishing Training to Improve Security Warning Compliance: Evidence From a Field Experiment

Submitted by rproctor on Tue, 03/07/2017 - 9:23pm. Contributors:

ABSTRACT: The current approach to protect users from phishing attacks is to display a warning when the webpage is considered suspicious. We hypothesize that users are capable of making correct informed decisions when the warning also conveys the reasons why it is displayed.

event

Visible to the public  The Fourth International Conference On Digital Enterprise and Information Systems
Jul 19, 2017 9:00 am - Jul 20, 2017 5:00 pm UTC

Submitted by jerikasdiwc on Tue, 12/06/2016 - 2:11am

You are invited to participate in The Fourth International Conference On Digital Enterprise and Information Systems (DEIS2017) that will be held in Jakarta, Indonesia, on July 19 - 20, 2017. The event will be held over two days, with presentations delivered by researchers from the international community, including presentations from keynote speakers and state-of-the-art lectures.