Information Trust Institute University of Illinois at Urbana-Champaign

2010

D. M. Nicol, W. H. Sanders, M. Seri, and S. Singh, "Experiences Validating the Access Policy Tool in Industrial Settings," Proceedings of the 43rd Annual Hawai'i International Conference on System Sciences (HICSS), Koloa, Kauai, Hawaii, January 5-8, 2010, to appear.

2009

Z. Anwar, M. Montanari, A. Gutierrez, and R. H. Campbell, "Budget Constrained Optimal Security Hardening of Control Networks for Critical Cyber-infrastructures," International Journal of Critical Infrastructure Protection, online February 24, 2009. doi:10.1016/j.ijcip.2009.02.001.

M. H. Au, P. P. Tsang, W. Susilo, and Y. Mu, "Dynamic Universal Accumulators for DDH Groups and Their Application to Attribute-Based Anonymous Credential Systems," Proceedings of the Cryptographers' Track at the RSA Conference 2009 (CT-RSA 2009), April 20-24, 2009, Lecture Notes in Computer Science, vol. 5473, Berlin/Heidelberg: Springer, 2009, pp. 295-308.

R. Bobba, H. Khurana, M. AlTurki, and F. Ashraf, "PBES: A Policy Based Encryption System with Application to Data Sharing in the Power Grid," Proceedings of the 4th International Symposium on Information, Computer, & Communications Security (ASIACCS), Sydney, Australia, March 10-12, 2009, pp. 262-275.

S. Chen, G. Lyle, K. Pattabiraman, Z. Kalbarczyk, and R. Iyer, "End-to-end Approach for the Automatic Derivation of Application-Aware Error Detectors," Proceedings of the IEEE International Conference on Dependable Systems and Networks (DSN), Estoril, Lisbon, Portugal, June 29-July 2, 2009, to appear.

C. Davis, Multiple Outage Contingency Screening, Ph.D. dissertation, University of Illinois at Urbana-Champaign, 2009.

C. Davis and T. Overbye, "Linear Analysis of Multiple Outage Interaction," Proceedings of the 42nd Hawaii International Conference on System Sciences, Waikoloa, Big Island, Hawaii, January 5-8, 2009, unpaginated.

H. Gjermundrod, D. E. Bakken, C. H. Hauser, and A. Bose, "GridStat: A Flexible QoS-Managed Data Dissemination Framework for the Power Grid," IEEE Transactions on Power Delivery, vol. 24, no. 1, pp. 136-143, January 2009.

R. Hasan, R. Bobba, and H. Khurana, "Analyzing NASPInet Data Flows," Proceedings of the IEEE PES Power Systems Conference & Exposition (PSCE), Seattle, Washington, March 15-18, 2009, pp. 1-6.

W. He, Y. Huang, R. Sathyam, K. Nahrstedt, and W. C. Lee, "SMOCK: A Scalable Method of Cryptographic Key Management for Mission-Critical Wireless Ad-Hoc Networks," IEEE Transactions on Information Forensics and Security, vol. 4, no. 1, March 2009, pp. 140-150.

S. Kirti and A. Scaglione, "On the Problem of Averaging Infinitely Many Remote Values," submitted for publication.

A. J. Lee, K. Minami, and N. Borisov, "Confidentiality-Preserving Distributed Proofs of Conjunctive Queries," Proceedings of the 4th International Symposium on Information, Computer, and Communication Security (ASIACCS 2009), Sydney, Australia, March 10-12, 2009, pp. 287-297.

A. Lee, K. Minami, and M. Winslett, "On the Consistency of Distributed Proofs with Hidden Subtrees," ACM Transactions on Information and System Security, to appear.

A. Lee, M. Winslett, and K. Perano, "TrustBuilder2: A Reconfigurable Framework for Trust Negotiation," Proceedings of the 3rd International Conference on Trust Management (IFIPTM 2009), June 2009, to appear.

M. LeMay, J. J. Haas, and C. A. Gunter, "Collaborative Recommender Systems for Building Automation," Proceedings of the 42nd Hawaii International Conference on System Sciences, Waikoloa, Big Island, Hawaii, January 5-8, 2009, unpaginated.

K. Minami, N. Borisov, and C. Gunter, "Safety in Discretionary Access Control for Logic-based Publish-subscribe Systems," Proceedings of the 14th ACM Symposium on Access Control Models and Technologies, June 2009, to appear.

K. Minami and D. Kotz, "Distributed Proof Systems for Cross-Domain Authorization," Annals of Emerging Research in IA, Security and Privacy Services, Elsevier, to appear.

K. Pattabiraman, N. Nakka, Z. Kalbarczyk, and R. Iyer, "Discovering Application-level Insider Attacks using Symbolic Execution," Proceedings of the 24th IFIP TC 11 Information Security Conference (SEC), Patos, Cyprus, May 18-20, 2009, IFIP Advances in Information and Communication Technology, vol. 297, Springer, to appear.

E. Solum, C. Hauser, D. Bakken, and R. Mudumbai Chakravarthy, "Modular Over-the-Wire Configurable Security for Long-Lived Critical Infrastructure Monitoring Systems," submitted for publication.

P. P. Tsang, R. V. Solomakhin, and S. W. Smith, Authenticated Streamwise On-line Encryption. Dartmouth Computer Science Technical Report TR2009-640, March 2009.

Q. Wang, H. Khurana, Y. Huang, and K. Nahrstedt, "Time Valid One-Time Signature for Time-Critical Multicast Data Authentication," Proceedings of the 28th IEEE Conference on Computer Communications (INFOCOM), Rio de Janeiro, Brazil, April 19-25, 2009, pp. 1233-1241.

Z. Wang, A. Scaglione, and R. J. Thomas, "On Modeling Random Topology Power Grids for Testing Decentralized Network Control Strategies," submitted for publication.

T. Yang, H. Sun, and A. Bose, "Transition to a Two-Level Linear State Estimator, part I: Architecture," submitted for publication.

T. Yang, H. Sun, and A. Bose, "Transition to a Two-Level Linear State Estimator, part II: Algorithm," submitted for publication.

T. Yang, H. Sun, and A. Bose, "Two-level PMU-based Linear State Estimator," Proceedings of the IEEE PES Power Systems Conference & Exposition (PSCE), Seattle, Washington, March 15-18, 2009, pp. 1-6.

S. Zonouz, H. Khurana, W. Sanders, and T. Yardley, "RRE: A Game-Theoretic Intrusion Response and Recovery Engine," Proceedings of the 39th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN), Estoril, Lisbon, Portugal, June 29-July 2, 2009, pp. 439-448.

2008

Z. Anwar, Automatic Security Assessment of Control Systems for Critical Cyber-Infrastructures, Ph.D. dissertation, University of Illinois at Urbana-Champaign, 2008.

Z. Anwar and R. Campbell, "Automated Assessment of Compliance with Security Best Practices," Critical Infrastructure Protection II: Proceedings of the Second Annual IFIP WG 11.10 International Conference, Arlington, Virginia, March 17-19, 2008, pp. 173-187.

Z. Anwar, R. Shankesi, and R. H. Campbell, "Automatic Security Assessment of Critical Cyber-Infrastructures," Proceedings of the IEEE International Conference on Dependable Systems and Networks with FTCS and DCC (DSN 2008), Anchorage, Alaska, June 24-27, 2008, pp. 366-375.

A. A. Aquino-Lugo and T. J. Overbye, "Distributed Intelligent Agents for Service Restoration and Control Applications," Proceedings of the 40th North American Power Symposium, Calgary, Canada, September 28-30, 2008.

S. Bratus, N. D'Cunha, E. Sparks, and S. W. Smith, "TOCTOU, Traps, and Trusted Computing," Proceedings of the 1st International Conference on Trusted Computing and Trust in Information Technologies (TRUST 2008), Lecture Notes in Computer Science (LNCS) vol. 4968, pp. 14-32, Villach, Austria, March 11-12, 2008, Springer, 2008.

S. Bratus, A. Hansen, and A. Shubina, LZfuzz: A Fast Compression-based Fuzzer for Poorly Documented Protocols. Dartmouth Computer Science Technical Report TR2008-634, September 2008.

S. Bratus, M. Locasto, A. Ramaswamy, and S. W. Smith, "New Directions for Hardware-assisted Trusted Computing Policies," Proceedings of the 2nd Conference on the Future of Trust in Computing, Berlin, Germany, June 30-July 2, 2008.

S. Bratus, M. Locasto, A. Ramaswamy, and S. W. Smith, "Traps, Events, Emulation, and Enforcement: Managing the Yin and Yang of Virtualization-based Security," Proceedings of the 1st Workshop on Virtual Machine Security (VMSec), Fairfax, Virginia, USA, October 31, 2008, pp. 49-58.

P. Dabrowski, W. Healey, K. Pattabiraman, S. Chen, Z. Kalbarczyk, and R. Iyer, "Hardware Implementation of Information Flow Signatures Derived via Program Analysis," Proceedings of the 2nd Workshop on Dependable & Secure Nanocomputing, organized in conjunction with the Conference on Dependable Systems and Networks, DSN'08, 2008.

T. Fleury, H. Khurana, and V. Welch, "Towards a Taxonomy of Attacks Against Energy Control Systems," in Critical Infrastructure Protection II, The International Federation for Information Processing, vol. 290, Springer US, 2009, pp. 71-86.

C. H. Hauser, D. E. Bakken, I. Dionysiou, K. H. Gjermundrød, V. S. Irava, J. Helkey, and A. Bose, "Security, Trust and QoS in Next-generation Control and Communication for Large Power Systems," International Journal of Critical Infrastructures, vol. 4, no. 1/2, pp. 3-16, 2008.

S. Kirti and A. Scaglione, "On the Problem of Adding Infinitely Many Values," Proceedings of the IEEE 10th International Symposium on Spread Spectrum Techniques and Applications (ISSSTA 2008), Bologna, Italy, August 25-28, 2008, pp. 173-181.

S. Kirti and A. Scaglione, "Scalable Distributed Kalman Filtering Through Consensus," Proceedings of the International Conference on Speech and Signal Processing (ICASSP 2008), 2008.

A. J. Lee and M. Winslett, "Enforcing Safety and Consistency Constraints in Policy-Based Authorization Systems," ACM Transactions on Information and System Security, vol. 12, no. 2, December 2008, article no. 8.

A. J. Lee and M. Winslett, "Towards an Efficient and Language-Agnostic Compliance Checker for Trust Negotiation Systems," Proceedings of the 3rd ACM Symposium on Information, Computer and Communications Security (ASIACCS 2008), 2008.

A. J. Lee and M. Winslett, Towards an Efficient and Language-Agnostic Compliance Checker for Trust Negotiation Systems. University of Illinois at Urbana-Champaign Department of Computer Science Technical Report No. UIUCDCS-R-2007-2903, 2007.

A. J. Lee and M. Winslett, "Towards Standards-Compliant Trust Negotiation for Web Services," Proceedings of the Joint iTrust and PST Conferences on Privacy, Trust Management, and Security (IFIPTM 2008), 2008.

A. J. Lee and M. Winslett, Towards Standards-Compliant Trust Negotiation for Web Services (Extended Version). University of Illinois at Urbana-Champaign Department of Computer Science Technical Report No. UIUCDCS-R-2008-2944, 2008.

A. J. Lee, M. Winslett, J. Basney, and V. Welch, "The Traust Authorization Service," ACM Transactions on Information and System Security, vol. 11, no. 1, p. 1, 2008.

M. D. LeMay, Dependable Emergency-Response Networking Based on Retaskable Network Infrastructures, M.S. thesis, University of Illinois at Urbana-Champaign, 2008.

M. LeMay, R. Nelli, G. Gross, and C. A. Gunter, "An Integrated Architecture for Demand Response Communications and Control" (received best paper award), Proceedings of the 41st Annual Hawai'i International Conference on System Sciences, January 7-10, 2008, unpaginated.

C. P. Masone, Attribute-Based, Usefully Secure Email. Ph.D. Dissertation. Dartmouth Computer Science Technical Report TR2008-633, August 2008.

K. Minami, A. J. Lee, M. Winslett, and N. Borisov, "Secure Aggregation in a Publish-Subscribe System," Proceedings of the 7th ACM Workshop on Privacy in the Electronic Society, Alexandria, Virginia, October 27, 2008, pp. 95-104.

S. Muthuswamy, System Implementation of a Real-time, Content based Application Router for a Managed Publish-Subscribe System, M.S. thesis, Washington State University, 2008.

D. M. Nicol, "Efficient Simulation of Internet Worms," ACM Transactions on Modeling and Computer Simulation, vol. 18, no. 2, April 2008.

D. Nicol, W. Sanders, M. Seri, and S. Singh, "Usable Global Network Access Policy for PCS," IEEE Security & Privacy, vol. 6, no. 6, pp. 30-36, November-December 2008.

H. Okhravi and D. M. Nicol, "Application of Trusted Network Technology to Industrial Control Network," Proceedings of the 2nd IFIP WG 11.10 International Conference on Critical Infrastructure Protection, Fairfax, VA, 2008.

A. Ramaswamy, Detecting Kernel Rootkits. Dartmouth Computer Science Technical Report TR2008-627, September 2008.

K. M. Rogers and T. J. Overbye, "Some Applications of Distributed Flexible AC Transmission System (D-FACTS) Devices in Power Systems," Proceedings of the 40th North American Power Symposium, Calgary, Canada, September 28-30, 2008, to appear.

R. Sathyam, Analysis of a Key Management Scheme for Wireless Mesh Networks, M.S. thesis, University of Illinois at Urbana-Champaign, 2008.

N. Schear and D. M. Nicol, "Performance Analysis of Real Traffic Carried with Encrypted Cover Flows," Proceedings of the 22nd Workshop on Principles of Advanced and Distributed Simulation, Rome, Italy, June 3-6, 2008, pp. 80-87.

J. Sebestik, The Power of the Wind: Facilitator's Guide. National 4-H Curriculum Product Number 08384, 2008.

J. Sebestik, The Power of the Wind: Youth Guide. National 4-H Curriculum Product Number 08383, 2008.

S. Sinclair and S. W. Smith, "Preventative Directions for Insider Threat Mitigation via Access Control," Insider Attack and Cyber Security: Beyond the Hacker (S. J. Stolfo, S. M. Bellovin, S. Hershkop, A. D. Keromytis, S. Sinclair, and S. W. Smith, Eds.), Advances in Information Security, vol. 39, pp. 165-194, Springer, 2008.

S. Singh, W. H. Sanders, D. M. Nicol, and M. Seri, Automatic Verification of Distributed and Layered Security Policy Implementations. University of Illinois at Urbana-Champaign Coordinated Science Laboratory technical report UILU-ENG-08-2209 (CRHC-08-05), July 2008.

M. K. Sleeper, Key Management for Secure Power SCADA. Dartmouth Computer Science Technical Report TR2008-628, June 2008.

J. E. Tate, T. J. Overbye, J. Sebestik, and G. C. Reese, "Interactive Lessons for Pre-University Power Education," IEEE Transactions on Power Systems, vol. 23, no. 3, pp. 824-830, August 2008.

P. P. Tsang, M. H. Au, A. Kapadia, and S. W. Smith, BLAC: Revoking Repeatedly Misbehaving Anonymous Users Without Relying on TTPs. Dartmouth Computer Science Technical Report TR2008-635, October 2008.

P. P. Tsang, M. H. Au, A. Kapadia, and S. W. Smith, "PEREA: Towards Practical TTP-Free Revocation in Anonymous Authentication," Proceedings of the 15th ACM Conference on Computer and Communications Security (CCS '08), Alexandria, Virginia, USA, October 27-31, 2008, pp. 333-344.

P. P. Tsang, A. Kapadia, C. Cornelius, and S. W. Smith, Nymble: Blocking Misbehaving Users in Anonymizing Networks. Dartmouth Computer Science Technical Report TR2008-637, December 2008.

P. P. Tsang and S. W. Smith, "Combating Spam and Denial-of-Service Attacks with Trusted Puzzle Solvers," Proceedings of the 4th Information Security Practice and Experience Conference (ISPEC 2008), Lecture Notes in Computer Science (LNCS) vol. 4991, pp. 188-202, Sydney, Australia, April 21-23, 2008, Springer, 2008.

P. P. Tsang and S. W. Smith, "PPAA: Peer-to-Peer Anonymous Authentication," Proceedings of the 6th International Conference on Applied Cryptography and Network Security (ACNS 2008), Lecture Notes in Computer Science (LNCS) vol. 5037, pp. 55-74, New York, NY, USA, June 3-6, 2008, Springer, 2008.

P. P. Tsang and S. W. Smith, "Secure Cryptographic Precomputation with Insecure Memory," Proceedings of the 4th Information Security Practice and Experience Conference (ISPEC 2008), Lecture Notes in Computer Science (LNCS) vol. 4991, pp. 146-160, Sydney, Australia, April 21-23, 2008, Springer, 2008.

P. Tsang and S. W. Smith, "YASIR: A Low-Latency, High-Integrity Security Retrofit for Legacy SCADA Systems," Proceedings of the IFIP TC 11 23rd International Information Security Conference (SEC 2008), Milano, Italy, 2008, pp. 445-460.

P. P. Tsang and S. W. Smith, YASIR: A Low-Latency, High-Integrity Security Retrofit for Legacy SCADA Systems (Extended Version). Dartmouth Computer Science Technical Report TR2008-617, April 2008.

Z. Wang, R. J. Thomas, A. Scaglione, and S. Kirti, "Generating Random Topology Power Grids," Proceedings of the 41st Annual Hawaii International Conference on System Sciences (HICSS 2008), Waikola, Big Island, Hawaii, January 7-10, 2008, p. 183.

2007

S. Abelsen, Adaptive GridStat Information Flow Mechanisms and Management for Power Grid Contingencies. Master's thesis, Washington State University, 2007.

S. Abelsen, E. S. Viddal, K. H. Gjermundrød, D. E. Bakken, and C. H. Hauser, Adaptive Information Flow Mechanisms and Management for Power Grid Contingencies. Washington State University School of EECS Technical Report, EECS-GS-012, 2007.

K.-H. Baek, S. Bratus, S. Sinclair, and S. W. Smith, "Attacking and Defending Networked Embedded Devices," Proceedings of the 2nd Workshop on Embedded Systems Security (WESS'2007), 2007.

D. Bakken, C. Hauser, H. Gjermundrod, and A. Bose, Towards More Flexible and Robust Data Delivery for Monitoring and Control of the Electric Power Grid. Technical Report EECS-GS-009, Washington State University, 7 May 2007.

R. Bobba and H. Khurana, "DLPKH: Distributed Logical Public Key Hierarchy," Proceedings of the International Conference on Information System Security, p. 110, LNCS vol. 4812, 2007.

C. M. Davis, J. E. Tate, and T. J. Overbye, "Wide Area Phasor Data Visualization," Proceedings of the 39th North American Power Symposium (NAPS'07), Las Cruces, New Mexico, September 30-October 2, 2007, pp. 246-252.

N. A. D'Cunha, Exploring the Integration of Memory Management and Trusted Computing. Thesis published as Dartmouth College Department of Computer Science Technical Report TR2007-594, 2007.

W. He, Y. Huang, R. Sathyam, K. Nahrstedt, and W. C. Lee, "SMOCK: A Scalable Method of Cryptographic Key Management for Mission-critical Wireless Ad Hoc Networks," 5th Annual IEEE International Conference on Pervasive Computing and Communications (PerCom '07), White Plains, NY, March 2007. 

W. He, X. Liu, H. Nguyen, K. Nahrstedt, and T. T. Abdelzaher, "PDA: Privacy-Preserving Data Aggregation in Wireless Sensor Networks," Proceedings of the 26th IEEE International Conference on Computer Communications (INFOCOM 2007), Anchorage, Alaska, May 6-12, 2007, pp. 2045-2053.

J. Helkey, Achieving End-to-End Delay Bounds in a Real-Time Status Dissemination Network. Masters Thesis, Washington State University, May 2007.

R. Iyer, Z. Kalbarczyk, K. Pattabiraman, W. Healey, P. Klemperer, and R. Farivar, "Toward Application-Aware Security and Reliability," IEEE Security & Privacy, vol. 5, no. 1, 2007, pp. 57-62.

P. Johnson, A. Kapadia, P. Tsang, and S. W. Smith, "Nymble: Anonymous IP-Address Blocking," Proceedings of the 7th International Symposium on Privacy-Enhancing Technologies, Ottawa, Canada, June 20-22, 2007, Springer-Verlag LNCS, pp. 113-133.

A. Kapadia, P. Tsang, and S. W. Smith, "Attribute-Based Publishing with Hidden Credentials and Hidden Policies," Proceedings of the 14th Annual Network and Distributed System Security Symposium (NDSS '07), p. 179, 2007.

S. S. R. Katasani, Theory and Logic for Security Assessment of Cyberinfrastructures, M.S. thesis, University of Illinois at Urbana-Champaign, 2007.

H. Khurana, M. Khan, and V. Welch, "Leveraging Computational Grid Technologies for Building a Secure and Manageable Power Grid," Proc. Hawaii International Conference on System Sciences (HICSS), Hawaii, January 2007, p. 115c.

S. Kirti, A. Scaglione, and R. J. Thomas, "A Scalable Wireless Communication Architecture for Average Consensus," invited paper, Proceedings of the 46th IEEE Conference on Decision and Control (CDC), New Orleans, LA, Dec. 12-14, 2007, pp. 32-37.

S. Kirti, Z. Wang, A. Scaglione, and R. Thomas, "On the Communication Architecture for Wide-Area Real-Time Monitoring in Power Networks," Proc. 40th Annual Hawaii International Conference on System Sciences, 2007 (HICSS 2007), Jan. 2007, p. 119.

A. J. Lee, K. Minami, and M. Winslett, "Lightweight Consistency Enforcement Schemes for Distributed Proofs with Hidden Subtrees," Proceedings of the 12th ACM Symposium on Access Control Models and Technologies (SACMAT 2007), Sophia Antipolis, France, June 20-22, 2007, pp. 101-110.

A. J. Lee, K. Minami, and M. Winslett, Lightweight Consistency Enforcement Schemes for Distributed Proofs with Hidden Subtrees (Extended Version). University of Illinois at Urbana-Champaign Department of Computer Science Technical Report No. UIUCDCS-R-2007-2839, April 2007

A. J. Lee, K. E. Seamons, M. Winslett, and Ting Yu, "Automated Trust Negotiation in Open Systems," in Secure Data Management in Decentralized Systems, Ting Yu and Sushil Jajodia (editors), Berlin: Springer, 2007.

M. LeMay, G. Gross, C. A. Gunter, and S. Garg, "Unified Architecture for Large-Scale Attested Metering," Proceedings of the 40th Annual Hawaii International Conference on System Sciences (HICSS'07), 2007, p. 115b.

M. LeMay and C. A. Gunter, "Supporting Emergency-Response by Retasking Network Infrastructures," Sixth Workshop on Hot Topics in Networking (HotNets-VI), Atlanta, GA, Nov. 14-15, 2007, proceedings available online at conferences.sigcomm.org/hotnets/2007/program.html.

S. Myagmar, R. Campbell, and M. Winslett, "Security Challenges of Reconfigurable Devices in the Power Grid," Proceedings of the International Conference on Critical Infrastructure Protection, March 2007.

N. Nakka, K. Pattabiraman, and R. Iyer, "Processor-level Selective Replication," Proceedings of the Int'l Conference on Dependable Systems and Networks, DSN'07, p. 544, 2007.

H. Nguyen and K. Nahrstedt, "Attack Containment Framework for Large-Scale Critical Infrastructures," Proceedings of the 16th International Conference on Computer Communications and Networks (ICCCN), Honolulu, Hawaii, August 13-16, 2007, pp. 442-449.

D. M. Nicol, "Analysis of Local Address Scanning by Puppetnets," Proceedings of the 2007 Conference on Quantitative Evaluation of Systems, Edinburgh, Scotland, p. 258, 2007.

D. M. Nicol, S. Hanna, F. Stratton, and W. Sanders, "Modeling Worm Defense Using Stochastic Activity Networks," Proceedings of the 2007 Symposium on Simulation of System Security, Norfolk, VA, 2007.

K. Pattabiraman, Z. Kalbarczyk, and R. Iyer, "Automated Derivation of Application-Aware Error Detectors using Static Analysis," Proceedings of the 13th IEEE International On-Line Testing Symposium (IOLTS), Heraklion, Crete, Greece, July 8-11, 2007, pp. 211-216.

S. Singh, R. K. Cunningham, S. Cheung, M. Fong, U. Lindqvist, D. M. Nicol, R. Pawlowski, E. Robinson, W. H. Sanders, A. Valdes, B. Woodworth, and M. Zhivich, "Securing Process Control Systems of Today and Tomorrow," Proceedings of the IFIP WG 11.10 International Conference on Critical Infrastructure Protection, Hanover, NH, March 2007.

E. Solum, Achieving Over-the-wire Configurable Confidentiality, Integrity, Authentication and Availability in GridStat's Status Dissemination. Master's thesis, Washington State University, December, 2007.

E. Solum, C. Hauser, and D. E. Bakken, Modular Over-The-Wire Security in Managed Publish-Subscribe Systems. Washington State University School of EECS Technical Report, EECS-GS-010, 2007.

E. Sparks, A Security Assessment of Trusted Platform Modules, senior honors thesis, Dartmouth College, March 2007. Dartmouth College Department of Computer Science Technical Report TR 2007-597, 2007.

P. P. Tsang, M. H. Au, A. Kapadia, and S. W. Smith, Blacklistable Anonymous Credentials: Blocking Misbehaving Users without TTPs (Extended Version). Dartmouth Computer Science Technical Report TR2007-601, September 2007.

P. P. Tsang, M. H. Au, A. Kapadia, and S. W. Smith, "Blacklistable Anonymous Credentials: Blocking Misbehaving Users Without TTPs," Proceedings of the 14th ACM Conference on Computer and Communication Security (CCS '07), Alexandria, Virginia, USA, October 28-31, 2007, pp. 72-81.

P. P. Tsang, S. S. M. Chow, and S. W. Smith, "Batch Paring Delegation," Proceedings of the 2nd International Workshop on Security (IWSEC 2007), Lecture Notes in Computer Science (LNCS) vol. 4752, pp. 74-90, Nara, Japan, October 29-31, 2007, Springer, 2007.

E. Viddal, Ratatoskr: Wide-area Actuator RPC over GridStat with Timeliness, Redundancy, and Safety, M.S. thesis, Washington State University, 2007.

E. Viddal, S. Abelsen, D. Bakken, and C. Hauser, Ratatoskr: Wide-Area Actuator RPC over GridStat with Timeliness, Redundancy, and Safety. Washington State University School of EECS Technical Report, EECS-GS-011, 2007.

2006

M. Ahsant, J. Basney, O. Mulmo, A. J. Lee, and L. Johnsson, "Toward an On-Demand Restricted Delegation Mechanism for Grids," Proceedings of the 7th IEEE/ACM International Conference on Grid Computing (Grid 2006), September 2006, pp. 152-159.

D. Bakken, A. Bose, and C. Hauser, EC Efforts in SCADA-Related Research: Selected Projects. Technical Report EECS-GS-008, Washington State University, 20 October 2006.

C. M. Davis, J. E. Tate, H. Okhravi, C. Grier, T. J. Overbye, and D. Nicol, "SCADA Cyber Security Testbed Development," Proceedings of the 38th North American Power Symposium (NAPS 2006), Carbondale, IL, September 2006, po. 483-488.

I. Dionysiou, Dynamic and Composable Trust for Indirect Interactions, PhD Dissertation, Washington State University, August 2006.

K.-H. Gjermundrød, Flexible QoS-Managed Status Dissemination Framework for the Electric Power Grid, PhD Dissertation, Washington State University, 2006.

C. A. Gunter, W. H. Sanders, D. E. Bakken, A. Bose, R. Campbell, G. Gross, C. H. Hauser, H. Khurana, R. K. Iyer, Z. T. Kalbarczyk, K. Nahrstedt, D. M. Nicol, T. J. Overbye, P. W. Sauer, S. W. Smith, R. J. Thomas, V. Welch, and M. Winslett, "Trustworthy Cyber-Infrastructure for Power (TCIP)," (online) Proceedings of the Workshop on Research Directions for Security and Networking in Critical Real-time and Embedded Systems, San Jose, CA, April 2006.

S. Hanna and D. M. Nicol, "Implementation and Instrumentation of a Flash-Worm," Proceedings of 2006 DETER Community Workshop, Arlington, VA, June 2006, pp. 91-94.

R. Hasan and M. Winslett, "Synergy: A Trust-aware, Policy-driven Information Dissemination Framework," Proc. IEEE International Conference on Intelligence and Security Informatics (ISI 2006), San Diego, USA, May 23-24, 2006.

C. H. Hauser, D. E. Bakken, I. Dionysiou, K. H. Gjermundrod, V. S. Irava, and A. Bose, "Security, Trust and QoS in Next-generation Control and Communication for Large Power Systems," Proc. International Workshop on Complex Network and Infrastructure Protection 2006, Rome, Italy, March 2006.

A. Iliev and S. W. Smith, "Faerieplay on Tiny Trusted Third Parties (Work in Progress)," Proceedings of the Second Workshop on Advances in Trusted Computing: WATC '06 Fall (online), 2006.

V. S. Irava, Low-cost Delay-constrained Multicast Routing Heuristics and Their Evaluation, PhD Dissertation, Washington State University, August 2006.

H. Khurana, J. Basney, V. Welch, and R. Campbell, "Operational Security Requirements for Large Collaborative Compute Infrastructures," Proc. of the Trusted Collaboration Workshop (TrustCol), part of CollaborateCom, Atlanta, November 2006.

A. J. Lee, J. P. Boyer, L. E. Olson, and C. A. Gunter, "Defeasible Security Policy Composition for Web Services," Proceedings of the 4th ACM Workshop on Formal Methods in Security Engineering (FMSE 2006) held in conjunction with the 13th ACM Conference on Computer and Communications Security (CCS 2006), November 2006, pp. 45-54.

A. J. Lee, P. Tabriz, and N. Borisov, "A Privacy-Preserving Interdomain Audit Framework," Proceedings of the 5th ACM Workshop on Privacy in the Electronic Society (WPES 2006) held in conjunction with the 13th ACM Conference on Computer and Communications Security (CCS 2006), October 2006.

A. J. Lee and M. Winslett, "Open Problems for Usable and Secure Open Systems," Proc. Usability Research Challenges for Cyberinfrastructure and Tools held in conjunction with ACM CHI 2006, April 2006.

A. J. Lee and M. Winslett, "Safety and Consistency in Policy-Based Authorization Systems," Proceedings of the 13th ACM Conference on Computer and Communications Security (CCS 2006), Alexandria, Virginia, October 30-November 3, 2006, pp. 124-133.

A. J. Lee and M. Winslett, Safety and Consistency in Policy-Based Authorization Systems (Extended Version). University of Illinois at Urbana-Champaign Department of Computer Science Technical Report No. UIUCDCS-R-2006-2761, August 2006.

A. J. Lee and M. Winslett, Virtual Fingerprinting as a Foundation for Reputation in Open Systems, University of Illinois at Urbana-Champaign Department of Computer Science Technical Report No. UIUCDCS-R-2006-2691, February 2006. (This is a greatly extended version of the conference paper.)

A. J. Lee and M. Winslett, "Virtual Fingerprinting as a Foundation for Reputation in Open Systems," Proc. Fourth International Conference on Trust Management (iTrust 2006), May 2006.

A. J. Lee, M. Winslett, J. Basney, and V. Welch, "Traust: A Trust Negotiation Based Authorization Service" (Demonstration Short Paper), Proc. Fourth International Conference on Trust Management (iTrust 2006), May 2006.

A. J. Lee, M. Winslett, J. Basney, and V. Welch, "Traust: A Trust Negotiation-Based Authorization Service for Open Systems," Proc. Eleventh ACM Symposium on Access Control Models and Technologies (SACMAT 2006), June 2006, pp. 39-48.

H. Nguyen and K. Nahrstedt, "Data Aggregation in SCADA Networks" (abstract), Proc. 1st Midwest Security Workshop, May 6, 2006.

D. M. Nicol, "The Impact of Stochastic Variability on Worm Detection," Proceedings of ACM Worm 2006, Alexandria, VA, November 2006, pp. 57-64.

D. M. Nicol, "Top Speed of Flash Worms Revisited," Proceedings of the European Modeling and Simulation Symposium, Barcelona, Spain, October 2006, pp. 21-30.

D. M. Nicol, "Tradeoffs Between Model Abstraction, Execution Speed, and Accuracy," Proceedings of the European Modeling and Simulation Symposium, Barcelona, Spain, October 2006, pp. 13-20.

D. M. Nicol, R. Tsang, H. Ammerlahn, and M. Johnson, "Detection of Nuclear Material at Border Crossings by Correlating Movement and Radiation Measurements," Proceedings of the 2006 Winter Simulation Conference, Monterey, CA, December 2006, pp. 536-544.

D. M. Nicol, R. Tsang, H. Ammerlahn, and M. Johnson, "Sensor Fusion Algorithms for the Detection of Nuclear Material at Border Crossings," in Sensors, and Command, Control, Communications, and Intelligence (C3I) Technologies for Homeland Security and Homeland Defense V, edited by Edward M. Carapezza, vol. 6201 of the Proceedings of SPIE, Orlando, FL, May 2006, pp. 62011O.

K. Pattabiraman, G.-P. Saggese, D. Chen, Z. Kalbarczyk, and R. Iyer, "Dynamic Derivation of Application-Specific Error Detectors and their Implementation in Hardware," Proc. of European Dependable Computing Conference, EDCC-6, 2006, pp. 97-108

P. Tsang, A. Kapadia, and S. W. Smith, "Anonymous IP-Address Blocking in Tor with Trusted Computing (Work in Progress)," Proceedings of the Second Workshop on Advances in Trusted Computing: WATC '06 Fall (online), 2006.

L. Wang, Z. Kalbarczyk, W. Gu, and R. Iyer, "An Operating-system-level Framework for Providing Application-aware Reliability," Proceedings of the Pacific Rim International Symposium on Dependable Computing, PRDC'06, 2006, pp. 55-62.

2005

D. Nicol, "Models and Analysis of Active Worm Defense," Proceedings of Mathematical Methods, Models and Architectures for Computer Networks Security Workshop, St. Petersburg, Russia, September 2005.

D. Nicol, M. Liljenstam, and J. Liu, "Advanced Concepts in Network Simulation," Proceedings of 2005 Winter Simulation Conference, Orlando, FL, December 2005.

M. Zhao, S. Smith, and D. Nicol, "Aggregated Path Authentication for Efficient BGP Security," Proceedings of the 2005 ACM Conference on Computer and Communications Security (CCS 2005), Alexandria, VA, November 2005.