Information and Communications Security

1. Front Matter

   PDF

2. System Security

   1. Defending against Heap Overflow by Using Randomization in Nested Virtual Clusters

      • Chee Meng Tey, Debin Gao

      Pages 1-16

   2. VTOS: Research on Methodology of “Light-Weight” Formal Design and Verification for Microkernel OS

      • Zhenjiang Qian, Hao Huang, Fangmin Song

      Pages 17-32

3. Web Security and Worm Detection

   1. Defeat Information Leakage from Browser Extensions via Data Obfuscation

      • Wentao Chang, Songqing Chen

      Pages 33-48

   2. Rating Web Pages Using Page-Transition Evidence

      • Jian Mao, Xinshu Dong, Pei Li, Tao Wei, Zhenkai Liang

      Pages 49-58

   3. OSNGuard: Detecting Worms with User Interaction Traces in Online Social Networks

      • Liang He, Dengguo Feng, Purui Su, Lingyun Ying, Yi Yang, Huafeng Huang et al.

      Pages 59-74

4. Cloud Storage Security

   1. A Secure and Efficient Scheme for Cloud Storage against Eavesdropper

      • Jian Liu, Huimei Wang, Ming Xian, Kun Huang

      Pages 75-89

   2. Secure and Private Outsourcing of Shape-Based Feature Extraction

      • Shumiao Wang, Mohamed Nassar, Mikhail Atallah, Qutaibah Malluhi

      Pages 90-99

5. Virtualization for Cloud Computing

   1. Time-Stealer: A Stealthy Threat for Virtualization Scheduler and Its Countermeasures

      • Hong Rong, Ming Xian, Huimei Wang, Jiangyong Shi

      Pages 100-112

   2. Detecting Malicious Co-resident Virtual Machines Indulging in Load-Based Attacks

      • Smitha Sundareswaran, Anna C. Squcciarini

      Pages 113-124

   3. A Covert Channel Using Event Channel State on Xen Hypervisor

      • Qingni Shen, Mian Wan, Zhuangzhuang Zhang, Zhi Zhang, Sihan Qing, Zhonghai Wu

      Pages 125-134

6. Trusted and Trustworthy Computing

   1. Type-Based Analysis of Protected Storage in the TPM

      • Jianxiong Shao, Dengguo Feng, Yu Qin

      Pages 135-150

   2. Remote Attestation Mechanism for User Centric Smart Cards Using Pseudorandom Number Generators

      • Raja Naeem Akram, Konstantinos Markantonakis, Keith Mayes

      Pages 151-166

7. Authentication and Security Protocols

   1. Direct Construction of Signcryption Tag-KEM from Standard Assumptions in the Standard Model

      • Xiangxue Li, Haifeng Qian, Yu Yu, Jian Weng, Yuan Zhou

      Pages 167-184

   2. Efficient eCK-Secure Authenticated Key Exchange Protocols in the Standard Model

      • Zheng Yang

      Pages 185-193

8. Intrusion Detection and Recovery

   1. XLRF: A Cross-Layer Intrusion Recovery Framework for Damage Assessment and Recovery Plan Generation

      • Eunjung Yoon, Peng Liu

      Pages 194-212

   2. PRIDE: Practical Intrusion Detection in Resource Constrained Wireless Mesh Networks

      • Amin Hassanzadeh, Zhaoyan Xu, Radu Stoleru, Guofei Gu, Michalis Polychronakis

      Pages 213-228

   3. Fingerprint Embedding: A Proactive Strategy of Detecting Timing Channels

      • Jing Wang, Peng Liu, Limin Liu, Le Guan, Jiwu Jing

      Pages 229-244

9. Side Channel Attacks and Defense

   1. Comprehensive Evaluation of AES Dual Ciphers as a Side-Channel Countermeasure

      • Amir Moradi, Oliver Mischke

      Pages 245-258

   2. EMD-Based Denoising for Side-Channel Attacks and Relationships between the Noises Extracted with Different Denoising Methods

      • Mingliang Feng, Yongbin Zhou, Zhenmei Yu

      Pages 259-274

This book constitutes the refereed proceedings of the 15th International Conference on Information and Communications Security, ICICS 2013, held in Beijing, China, in November 2013. The 23 regular papers and 6 short papers were carefully reviewed and selected from 113 submissions. The papers are organized in topical sections on system security, Web security and worm detection, cloud storage security, virtualization for cloud computing, trusted and trustworthy computing, authentication and security protocols, intrusion detection and recovery, side channel attacks and defense, engineering issues of crypto, cryptanalysis, attribute-based encryption, and cryptographic primitives and applications.

• applied cryptography
• authentication
• information security
• network security
• privacy
• algorithm analysis and problem complexity

• Institute of Software, Chinese Academy of Sciences, Beijing, China

  Sihan Qing, Dongmei Liu

• Institute for Infocomm Research, Infocom Security Department, Singapore, Singapore

  Jianying Zhou

Policies and ethics