Secure IT Systems

1. Front Matter

   PDF

2. Application Security

   1. Designed to Fail: A USB-Connected Reader for Online Banking

      • Arjan Blom, Gerhard de Koning Gans, Erik Poll, Joeri de Ruiter, Roel Verdult

      Pages 1-16

   2. Security Add-Ons for Mobile Platforms

      • Benjamin Adolphi, Hanno Langweg

      Pages 17-30

   3. THAPS: Automated Vulnerability Scanning of PHP Applications

      • Torben Jensen, Heine Pedersen, Mads Chr. Olesen, René Rydhof Hansen

      Pages 31-46

3. Security Management

   1. Cyber Security Exercises and Competitions as a Platform for Cyber Security Experiments

      • Teodor Sommestad, Jonas Hallberg

      Pages 47-60

   2. The Development of Cyber Security Warning, Advice and Report Points

      • Tony Proctor

      Pages 61-72

   3. Towards an Empirical Examination of IT Security Infrastructures in SME

      • Ramona Groner, Philipp Brune

      Pages 73-88

   4. How to Select a Security Requirements Method? A Comparative Study with Students and Practitioners

      • Fabio Massacci, Federica Paci

      Pages 89-104

4. System Security

   1. There Is Safety in Numbers: Preventing Control-Flow Hijacking by Duplication

      • Job Noorman, Nick Nikiforakis, Frank Piessens

      Pages 105-120

   2. Coinductive Unwinding of Security-Relevant Hyperproperties

      • Dimiter Milushev, Dave Clarke

      Pages 121-136

   3. Retooling and Securing Systemic Debugging

      • Björn Ståhl, Per Mellstrand

      Pages 137-152

5. Network Security

   1. Cracking Associative Passwords

      • Kirsi Helkala, Nils Kalstad Svendsen, Per Thorsheim, Anders Wiehe

      Pages 153-168

   2. A Hybrid Approach for Highly Available and Secure Storage of Pseudo-SSO Credentials

      • Jan Zibuschka, Lothar Fritsch

      Pages 169-183

   3. Assessing the Quality of Packet-Level Traces Collected on Internet Backbone Links

      • Behrooz Sangchoolie, Mazdak Rajabi Nasab, Tomas Olovsson, Wolfgang John

      Pages 184-198

6. Trust Management

   1. Everything But the Kitchen Sink: Determining the Effect of Multiple Attacks on Privacy Preserving Technology Users

      • Jason W. Clark

      Pages 199-214

   2. Can We Identify Manipulative Behavior and the Corresponding Suspects on Review Websites Using Supervised Learning?

      • Huiying Duan, Cäcilia Zirn

      Pages 215-230

   3. Privacy-Friendly Cloud Storage for the Data Track

      • Tobias Pulls

      Pages 231-246

7. Back Matter

   PDF

This book constitutes the refereed proceedings of the 17th Nordic Conference on Secure IT Systems, NordSec 2012, held in Karlskrona, Sweden, in October 2012. The 16 revised papers were carefully reviewed and selected from 32 submissions. The papers are organized in topical sections on application security, security management, system security, network security, and trust management.

• applied cryptography
• firewall
• intrusion detection/prevention system
• privacy by design
• single sign-on

• University of Oslo, Oslo, Norway

  Audun Jøsang

• Blekinge Institute of Technology, Karlskrona, Sweden

  Bengt Carlsson

Policies and ethics