Secure IT Systems

1. Front Matter

   PDF

2. Cyber-Physical Systems

   1. Detecting and Preventing Beacon Replay Attacks in Receiver-Initiated MAC Protocols for Energy Efficient WSNs

      • Alessio Di Mauro, Xenofon Fafoutis, Sebastian Mödersheim, Nicola Dragoni

      Pages 1-16

   2. Security Games for Cyber-Physical Systems

      • Roberto Vigo, Alessandro Bruni, Ender Yüksel

      Pages 17-32

   3. Prevent Session Hijacking by Binding the Session to the Cryptographic Network Credentials

      • Willem Burgers, Roel Verdult, Marko van Eekelen

      Pages 33-50

3. Security Policies

   1. Inferring Required Permissions for Statically Composed Programs

      • Tero Hasu, Anya Helene Bagge, Magne Haveraaen

      Pages 51-66

   2. SafeScript: JavaScript Transformation for Policy Enforcement

      • Mike Ter Louw, Phu H. Phung, Rohini Krishnamurti, Venkat N. Venkatakrishnan

      Pages 67-83

4. Information Flow

   1. A Logic for Information Flow Analysis of Distributed Programs

      • Musard Balliu

      Pages 84-99

   2. Dynamics and Secure Information Flow for a Higher-Order Pi-Calculus

      • Martin Pettai, Peeter Laud

      Pages 100-115

   3. Lazy Programs Leak Secrets

      • Pablo Buiras, Alejandro Russo

      Pages 116-122

5. Security Experiences

   1. High-Performance Qualified Digital Signatures for X-Road

      • Arne Ansper, Ahto Buldas, Margus Freudenthal, Jan Willemson

      Pages 123-138

   2. Identification and Evaluation of Security Activities in Agile Projects

      • Tigist Ayalew, Tigist Kidane, Bengt Carlsson

      Pages 139-153

   3. PeerShare : A System Secure Distribution of Sensitive Data among Social Contacts

      • Marcin Nagy, N. Asokan, Jörg Ott

      Pages 154-165

6. Cyber-Physical Systems

   1. Resilience of Process Control Systems to Cyber-Physical Attacks

      • Marina Krotofil, Alvaro A. Cárdenas

      Pages 166-182

   2. Femtocell Security in Theory and Practice

      • Fabian van den Broek, Ronny Wichers Schreur

      Pages 183-198

   3. Security Analysis of Building Automation Networks

      • Alessio Antonini, Alessandro Barenghi, Gerardo Pelosi

      Pages 199-214

7. Web Security

   1. Controlling Data Flow with a Policy-Based Programming Language for the Web

      • Thierry Sans, Iliano Cervesato, Soha Hussein

      Pages 215-230

   2. A Survey on Control-Flow Integrity Means in Web Application Frameworks

      • Bastian Braun, Christian v. Pollak, Joachim Posegga

      Pages 231-246

8. Security Policies

   1. Incremental Hyperproperty Model Checking via Games

      • Dimiter Milushev, Dave Clarke

      Pages 247-262

   2. Graph k-Anonymity through k-Means and as Modular Decomposition

      • Klara Stokes

      Pages 263-278

9. Network Security

   1. Domain-Based Storage Protection (DBSP) in Public Infrastructure Clouds

      • Nicolae Paladi, Christian Gehrmann, Fredric Morenius

      Pages 279-296

This book constitutes the refereed proceedings of the 18th Nordic Conference on Secure IT Systems, NordSec 2013, held in Ilulissat, Greenland, in October 2013. The 18 revised regular papers together with 3 short papers and one invited talk were carefully reviewed and selected from 35 submissions. The papers are organized in topical sections on formal analysis of security protocols, cyber-physical systems, security policies, information flow, security experiences, Web security, and network security.

• algorithms
• anonymity
• computer networks
• cryptography
• distributed systems
• algorithm analysis and problem complexity

• Department of Applied Mathematics and Computer Science, DTU Compute, Technical University of Denmark, Lyngby, Denmark

  Hanne Riis Nielson

• Institut für Sicherheit in verteilten Anwendungen, Technische Universität Hamburg-Harburg, Hamburg, Germany

  Dieter Gollmann

Policies and ethics