Data and Applications Security and Privacy XXVI

1. Front Matter

   PDF

2. Invited Paper

   1. Logics for Security and Privacy

      • Leendert van der Torre

      Pages 1-7

3. Access Control

   1. A User-to-User Relationship-Based Access Control Model for Online Social Networks

      • Yuan Cheng, Jaehong Park, Ravi Sandhu

      Pages 8-24

   2. Automated and Efficient Analysis of Role-Based Access Control with Attributes

      • Alessandro Armando, Silvio Ranise

      Pages 25-40

   3. A Unified Attribute-Based Access Control Model Covering DAC, MAC and RBAC

      • Xin Jin, Ram Krishnan, Ravi Sandhu

      Pages 41-55

4. Confidentiality and Privacy

   1. Signature-Based Inference-Usability Confinement for Relational Databases under Functional and Join Dependencies

      • Joachim Biskup, Sven Hartmann, Sebastian Link, Jan-Hendrik Lochner, Torsten Schlotmann

      Pages 56-73

   2. Privacy Consensus in Anonymization Systems via Game Theory

      • Rosa Karimi Adl, Mina Askari, Ken Barker, Reihaneh Safavi-Naini

      Pages 74-89

   3. Uniform Obfuscation for Location Privacy

      • Gianluca Dini, Pericle Perazzo

      Pages 90-105

5. Smart Cards Security (Short Papers)

   1. Security Vulnerabilities of User Authentication Scheme Using Smart Card

      • Ravi Singh Pippal, Jaidhar C.D., Shashikala Tapaswi

      Pages 106-113

   2. Secure Password-Based Remote User Authentication Scheme with Non-tamper Resistant Smart Cards

      • Ding Wang, Chun-guang Ma, Peng Wu

      Pages 114-121

   3. A Friendly Framework for Hidding fault enabled virus for Java Based Smartcard

      • Tiana Razafindralambo, Guillaume Bouffard, Jean-Louis Lanet

      Pages 122-128

6. Privacy-Preserving Technologies

   1. Approximate Privacy-Preserving Data Mining on Vertically Partitioned Data

      • Robert Nix, Murat Kantarcioglu, Keesook J. Han

      Pages 129-144

   2. Security Limitations of Using Secret Sharing for Data Outsourcing

      • Jonathan L. Dautrich, Chinya V. Ravishankar

      Pages 145-160

   3. Privacy-Preserving Subgraph Discovery

      • Danish Mehmood, Basit Shafiq, Jaideep Vaidya, Yuan Hong, Nabil Adam, Vijayalakshmi Atluri

      Pages 161-176

7. Data Management

   1. Decentralized Semantic Threat Graphs

      • Simon N. Foley, William M. Fitzgerald

      Pages 177-192

   2. Code Type Revealing Using Experiments Framework

      • Rami Sharon, Ehud Gudes

      Pages 193-206

   3. From MDM to DB2: A Case Study of Security Enforcement Migration

      • Nikolay Yakovets, Jarek Gryz, Stephanie Hazlewood, Paul van Run

      Pages 207-222

8. Intrusion and Malware

   1. XSS-Dec: A Hybrid Solution to Mitigate Cross-Site Scripting Attacks

      • Smitha Sundareswaran, Anna Cinzia Squicciarini

      Pages 223-238

   2. Randomizing Smartphone Malware Profiles against Statistical Mining Techniques

      • Abhijith Shastry, Murat Kantarcioglu, Yan Zhou, Bhavani Thuraisingham

      Pages 239-254

9. Probabilistic Attacks and Protection (Short Papers)

   1. Layered Security Architecture for Masquerade Attack Detection

      • Hamed Saljooghinejad, Wilson Naik Bhukya

      Pages 255-262

This book constitutes the refereed proceedings of the 26th IFIP WG 11.3 International Conference on Data and Applications Security and Privacy, DBSec 2012, held in Paris, France in July 2012. The 17 revised full and 15 short papers presented together with 1 invited paper were carefully reviewed and selected from 49 submissions. The papers are organized in topical sections on access control, confidentiality and privacy, smart cards security, privacy-preserving technologies, data management, intrusion and malware, probabilistic attacks and protection, and cloud computing.

• authorization and authentication
• data mining
• information systems
• security threats
• vulnerability

• Télécom Bretagne, Cesson Sévigné Cedex, France

  Nora Cuppens-Boulahia, Frédéric Cuppens, Joaquin Garcia-Alfaro

Policies and ethics