security.bib
@MISC{cmu:03,
AUTHOR = {{Carnegie Mellon University}},
MONTH = {Nov},
NOTE = {\url{http://www.cmu.edu/PR/releases03/031120_cyber.html}},
TITLE = {{Carnegie Mellon} Researchers Tap Biology To Fend Off Computer Worms, Virus Attacks},
URL = {http://www.cmu.edu/PR/releases03/031120_cyber.html},
YEAR = {2003}
}
@TECHREPORT{ptacek:98,
AUTHOR = {T. Ptacek and T. Newsham},
INSTITUTION = {Secure Networks, Inc.},
TITLE = {Insertion, Evasion, and Denial of Service: {Eluding} Network Intrusion Detection},
YEAR = {1998}
}
@MISC{guninski:04,
AUTHOR = {G. Guninski},
MONTH = {Jan},
NOTE = {\url{http://www.guninski.com/obsdmtu.html}},
TITLE = {Remote openbsd crash with ip6, yet still openbsd much better than windows},
URL = {http://www.guninski.com/obsdmtu.html{\newline}},
YEAR = {2004}
}
@INPROCEEDINGS{cowan:03b,
ANNOTE = {PaX to Cowan: {\newline}Cowan to PaX: {\newline}Pax to Cowan: },
AUTHOR = {C. Cowan and S. Beattie and J. Johansen and P. Wagle},
BOOKTITLE = {Proc. of the 12th {Usenix} Security Symposium},
MONTH = {Aug},
TITLE = {{PointGuard$^{\textrm{TM}}$}: {Protecting} Pointers from Buffer Overflow Vulnerabilities},
URL = {http://www.usenix.org/events/sec03/tech/full_papers/cowan/cowan.pdf},
YEAR = {2003}
}
@INPROCEEDINGS{robertson:03,
AUTHOR = {W. Robertson and C Kruegel and D. Mutz and F Valeur},
BOOKTITLE = {Proc. of the 17th {Usenix} Large Installation Systems Administration Conference ({LISA})},
MONTH = {Oct},
PAGES = {51--60},
TITLE = {Run-time Detection of Heap-based Overflows},
URL = {http://www.usenix.org/publications/library/proceedings/lisa03/tech/full_papers/robertson/robertson.pdf},
YEAR = {2003}
}
@MISC{cert:03,
AUTHOR = {{CERT} Coordination Center},
NOTE = {\url{http://www.cert.org/stats/}},
TITLE = {{CERT/CC} Statistics 1988-2003},
URL = {http://www.cert.org/stats/},
YEAR = {2004}
}
@MISC{cert:03b,
AUTHOR = {{CERT} Coordination Center},
MONTH = {May},
NOTE = {\url{http://www.cert.org/present/cert-overview-trends/}},
TITLE = {Incident and Vulnerability Trends},
URL = {http://www.cert.org/present/cert-overview-trends/},
YEAR = {2003}
}
@ARTICLE{aleph:96,
ABSTRACT = {Over the last few months there has been a large increase of buffer{\newline}overflow vulnerabilities being both discovered and exploited. Examples{\newline}of these are syslog, splitvt, sendmail 8.7.5, Linux/FreeBSD mount, Xt {\newline}library, at, etc. This paper attempts to explain what buffer overflows {\newline}are, and how their exploits work.{\par}Basic knowledge of assembly is required. An understanding of virtual {\newline}memory concepts, and experience with gdb are very helpful but not necessary.{\newline}We also assume we are working with an Intel x86 CPU, and that the operating {\newline}system is Linux.{\par}Some basic definitions before we begin: A buffer is simply a contiguous {\newline}block of computer memory that holds multiple instances of the same data {\newline}type. C programmers normally associate with the word buffer arrays. Most {\newline}commonly, character arrays. Arrays, like all variables in C, can be {\newline}declared either static or dynamic. Static variables are allocated at load {\newline}time on the data segment. Dynamic variables are allocated at run time on {\newline}the stack. To overflow is to flow, or fill over the top, brims, or bounds. {\newline}We will concern ourselves only with the overflow of dynamic buffers, otherwise{\newline}known as stack-based buffer overflows.},
AUTHOR = {{Aleph One}},
JOURNAL = {Phrack},
KEYWORDS = {code-injection attack},
MONTH = {November},
NUMBER = {49},
TITLE = {Smashing The Stack For Fun And Profit},
URL = {http://www.phrack.org/phrack/49/P49-14},
VOLUME = {7},
YEAR = {1996}
}
@UNPUBLISHED{fayolle:02,
AUTHOR = {P-A. Fayolle and V. Glaume},
KEYWORDS = {code-injection attack, buffer-overflow detection},
NOTE = {\url{http://www.securityfocus.com/library/3797}},
TITLE = {A Buffer Overflow Study: Attacks and Defenses},
URL = {http://www.securityfocus.com/library/3797},
YEAR = {2002}
}
@INPROCEEDINGS{jurisic:03,
ABSTRACT = {Because of prebinding, Mac OS X modifies executable files after they are installed. These modifications change cryptographic signatures of the executables, thus making it impractical to rely on cryptograhic signatures to verify integrity of Mac OS X executables. This paper discusses how cryptographic signatures can be computed for Mac OS X executables in such a way that the signatures are not modified by prebinding},
AUTHOR = {M. Juri\v{s}i\'{c}},
BOOKTITLE = {Proc. of {MacHack} 2003},
MONTH = {Jun},
TITLE = {Signing prebound executables on {Mac OS X}},
URL = {http://www.periodic-kingdom.org/People/Miro/Papers/MacHack-SigningPrebound/SigningPrebound.pdf},
YEAR = {2003}
}
@INPROCEEDINGS{fraser:01,
AUTHOR = {T. Fraser},
BOOKTITLE = {Proc. of the 2001 {Usenix} Annual Technical Conference},
MONTH = {Jun},
TITLE = {{LOMAC}: {MAC} You Can Live With},
URL = {http://opensource.nailabs.com/lomac/docs/lomac-freenix01.pdf},
YEAR = {2001}
}
@INPROCEEDINGS{fraser:00,
AUTHOR = {T. Fraser},
BOOKTITLE = {Proc. of the 2000 {IEEE} Symposium on Security and Privacy},
MONTH = {May},
TITLE = {{LOMAC}: {Low} Water-Mark Integrity Protection for {COTS} Environments},
URL = {http://opensource.nailabs.com/lomac/docs/lomac-sp00.pdf},
YEAR = {2000}
}
@INPROCEEDINGS{kc:03,
AUTHOR = {G.S. Kc and A.D. Keromytis and V. Prevelakis},
BOOKTITLE = {Proc. of the 10th {ACM} Conference on Computer and Communications Security},
MONTH = {Oct},
TITLE = {Countering Code-Injection Attacks with Instruction-Set Randomization},
YEAR = {2003}
}
@INPROCEEDINGS{deswarte:98,
ABSTRACT = {The paper is aimed at examining the relationship between the three topics of the workshops that gave rise to this book: security, fault tolerance, and software assurance. Those three topics can be viewed as different facets of dependability. The paper focuses on diversity, as a desirable approach for addressing the classes of faults that underlay all these topics, i.e., design faults and intrusion faults.},
AUTHOR = {Y. Deswarte and K. Kanoun and J.-C. Laprie},
BOOKTITLE = {Proc. of Computer Security, Dependability and Assurance: From Needs to Solutions},
PAGES = {171--181},
TITLE = {Diversity against accidental and deliberate faults},
URL = {http://proxy.library.upenn.edu:8355/iel5/6493/17339/00798364.pdf?tp=&arnumber=798364&isnumber=17339},
YEAR = {1998}
}
@TECHREPORT{xu:03,
ABSTRACT = {A large class of security attacks exploit software implementation vulnerabilities such as unchecked buffers. This paper proposes Transparent Runtime Randomization (TRR), a generalized approach for protecting against a wide range of security attacks. TRR dynamically and randomly relocates a program's stack, heap, shared libraries, and parts of its runtime control data structures inside the application memory address space. Making a program's memory layout different each time it runs foils the attacker's assumptions about the memory layout of the vulnerable program and makes the determination of critical address values difficult if not impossible. TRR is implemented by changing the Linux dynamic program loader, hence it is transparent to applications. We demonstrate that TRR is effective in defeating real security attacks, including malloc-based heap overflow, integer overflow, and doublefree attacks, for which effective prevention mechanisms are yet to emerge. Furthermore, TRR incurs less than 9% program startup overhead and no runtime overhead.},
AUTHOR = {J. Xu and Z. Kalbarczyk and R.K. Iyer},
INSTITUTION = {University of Illinois at Urbana-Champaign},
MONTH = {May},
NUMBER = {UILU-ENG-03-2207},
TITLE = {Transparent Runtime Randomization for Security},
URL = {http://www.crhc.uiuc.edu/~junxu/Papers/TechReport_TRR_UILU-ENG-03-2207.pdf},
YEAR = {2003}
}
@MISC{xun:99,
AUTHOR = {L. Xun},
NOTE = {\url{http://www.geocities.com/fasterlu/leel.htm}},
TITLE = {A {Linux} Executable Editing Library ({LEEL})},
URL = {http://www.geocities.com/fasterlu/leel.htm},
YEAR = {1999}
}
@MISC{cryptoapi:03,
AUTHOR = {{CryptoAPI}},
NOTE = {\url{http://www.kerneli.org/}},
TITLE = {The {GNU/Linux} {CryptoAPI}},
URL = {http://www.kerneli.org/},
YEAR = {2003}
}
@MISC{hardgentoo:03,
AUTHOR = {{Gentoo Linux Project}},
KEYWORDS = {address randomization},
NOTE = {\url{http://www.gentoo.org/proj/en/hardened/}},
TITLE = {Hardened {Gentoo}},
URL = {http://www.gentoo.org/proj/en/hardened/},
YEAR = {2003}
}
@ARTICLE{nergal:01,
AUTHOR = {Nergal},
JOURNAL = {Phrack},
KEYWORDS = {address randomization},
MONTH = {Dec},
NUMBER = {58},
TITLE = {The advanced return-into-lib(c) exploits: {PaX} case study},
URL = {http://phrack.org/phrack/58/p58-0x04},
VOLUME = {11},
YEAR = {2001}
}
@ARTICLE{anon:02,
AUTHOR = {Anonymous},
JOURNAL = {Phrack},
KEYWORDS = {address randomization},
MONTH = {Jul},
NUMBER = {59},
TITLE = {Bypassing {PaX} {ASLR} protection},
URL = {http://phrack.org/phrack/59/p59-0x09.txt},
VOLUME = {11},
YEAR = {2002}
}
@MISC{pax:03b,
AUTHOR = {{PaX Project}},
KEYWORDS = {address randomization},
MONTH = {Mar},
NOTE = {\url{http://pageexec.virtualave.net/docs/aslr.txt}},
TITLE = {Address Space Layout Randomization},
YEAR = {2003}
}
@MISC{adamantix:03,
AUTHOR = {{Adamantix Project}},
KEYWORDS = {address randomization},
NOTE = {\url{http://www.adamantix.com/}},
TITLE = {Adamantix},
YEAR = {2003}
}
@MISC{elf:95,
AUTHOR = {{TIS Committee}},
EDITION = {Version 1.2},
MONTH = {May},
NOTE = {Version 1.2},
TITLE = {Tool Interface Standard ({TIS}) Executable and Linking Format ({ELF}) Specification},
URL = {http://x86.ddj.com/ftp/manuals/tools/elf.pdf},
YEAR = {1995}
}
@MISC{elfsh:03,
AUTHOR = {{ELFsh Project}},
KEYWORDS = {binary rewriting},
NOTE = {\url{http://www.devhell.org/~mayhem/projects/elfsh/}},
TITLE = {{ELF} shell},
URL = {http://www.devhell.org/~mayhem/projects/elfsh/},
YEAR = {2003}
}
@TECHREPORT{barrantes:03,
AUTHOR = {E.G. Barrantes and D.H. Ackley and T.S. Palmer and D.D. Zovi and S. Forrest and A. Stefanovi\'c},
INSTITUTION = {University of New Mexico},
MONTH = {Feb},
NUMBER = {TR-CS-2003-10},
TITLE = {Randomized Instruction Set Emulation to Disrupt Binary Code Injection Attacks},
URL = {http://www.cs.unm.edu/~moore/tr/03-02/rise.pdf},
YEAR = {2003}
}
@ARTICLE{holtzman:03,
AUTHOR = {D.H. Holtzman},
JOURNAL = {CSO Magazine},
MONTH = {Jun},
TITLE = {Diversity Training},
URL = {http://www.csoonline.com/read/060103/flashpoint.html},
YEAR = {2003}
}
@MISC{pax:03,
AUTHOR = {{PaX Project}},
KEYWORDS = {address randomization},
MONTH = {Nov},
NOTE = {\url{http://pax.grsecurity.net/docs/pax.txt}},
TITLE = {The {PaX} Project},
URL = {http://pax.grsecurity.net/docs/pax.txt},
YEAR = {2003}
}
@INPROCEEDINGS{barrantes:03b,
AUTHOR = {E.G. Barrantes and D.H. Ackley and S. Forrest and T.S. Palmer and A. Stefanovi\'c and D.D. Zovi},
BOOKTITLE = {Proc. of the 10th {ACM} Conference on Computer and Communications Security},
MONTH = {Oct},
TITLE = {Randomized Instruction Set Emulation to Disrupt Binary Code Injection Attacks},
YEAR = {2003}
}
@MISC{pax:03c,
AUTHOR = {{PaX Project}},
KEYWORDS = {address randomization},
MONTH = {Feb},
NOTE = {\url{http://pageexec.virtualave.net/docs/randexec.txt}},
TITLE = {Non-relocatable Executable File Randomization},
URL = {http://pageexec.virtualave.net/docs/randexec.txt},
YEAR = {2003}
}
@MISC{pax:03d,
AUTHOR = {{PaX Project}},
KEYWORDS = {address randomization},
MONTH = {Jan},
NOTE = {\url{http://pageexec.virtualave.net/docs/randmmap.txt}},
TITLE = {mmap() Randomization},
URL = {http://pageexec.virtualave.net/docs/randmmap.txt},
YEAR = {2003}
}
@MISC{smalley:03,
AUTHOR = {S. Smalley and T. Fraser and C. Vance},
NOTE = {\url{http://lsm.immunix.org/docs/overview/linuxsecuritymodule.html}},
TITLE = {Linux Security Modules: {General} Security Hooks for {Linux}},
URL = {http://lsm.immunix.org/docs/overview/linuxsecuritymodule.html},
YEAR = {2003}
}
@INPROCEEDINGS{garfinkel:03,
AUTHOR = {Tal Garfinkel},
BOOKTITLE = {Proc. Network and Distributed Systems Security Symposium},
MONTH = {Feb},
TITLE = {Traps and Pitfalls: Practical Problems in in System Call Interposition based Security Tools},
URL = {http://www.stanford.edu/~talg/papers/traps/traps-ndss03.pdf},
YEAR = {2003}
}
@MISC{pax:03e,
AUTHOR = {{PaX Project}},
KEYWORDS = {address randomization},
MONTH = {Jan},
NOTE = {\url{http://pageexec.virtualave.net/docs/randkstack.txt}},
TITLE = {Kernel Stack Randomization},
URL = {http://pageexec.virtualave.net/docs/randkstack.txt},
YEAR = {2003}
}
@MISC{pax:03f,
AUTHOR = {{PaX Project}},
KEYWORDS = {address randomization},
MONTH = {Feb},
NOTE = {\url{http://pageexec.virtualave.net/docs/randustack.txt}},
TITLE = {Userland Stack Randomization},
URL = {http://pageexec.virtualave.net/docs/randustack.txt},
YEAR = {2003}
}
@PHDTHESIS{zovi:02,
AUTHOR = {D.D. Zovi},
KEYWORDS = {binary rewriting},
MONTH = {Dec},
SCHOOL = {University of New Mexico},
TITLE = {Security Applications of Dynamic Binary Translation},
TYPE = {{B.S.} Honors Thesis},
URL = {http://www.cs.unm.edu/~ghandi/ddz-thesis.pdf},
YEAR = {2002}
}
@MISC{pax:03g,
AUTHOR = {{PaX Project}},
KEYWORDS = {address randomization},
MONTH = {May},
NOTE = {\url{http://pageexec.virtualave.net/docs/vmmirror.txt}},
TITLE = {VMA Mirroring},
URL = {http://pageexec.virtualave.net/docs/vmmirror.txt},
YEAR = {2003}
}
@TECHREPORT{smalley:01,
AUTHOR = {S. Smalley and C. Vance and W. Salamon},
INSTITUTION = {{NAI} Labs},
MONTH = {Dec},
NOTE = {Revised May 2002},
NUMBER = {\#01-043},
TITLE = {Implementing {SELinux} as a {Linux} Security Module},
TYPE = {NAI Labs Report},
URL = {http://www.nsa.gov/selinux/doc/module.pdf},
YEAR = {2001}
}
@TECHREPORT{palmer:01,
AUTHOR = {T. Palmet and D.D. Zovi and D. Stefanovi\'c},
INSTITUTION = {University of New Mexico},
KEYWORDS = {binary rewriting},
NUMBER = {TR-CS-2001-38},
TITLE = {{SIND}: {A} Framework for Binary Translation},
URL = {http://www.cs.unm.edu/~ghandi/sind.pdf},
YEAR = {2001}
}
@INPROCEEDINGS{cowan:00c,
AUTHOR = {C. Cowan and H. Hinton and C. Pu and J. Walpole},
BOOKTITLE = {Proc. of the 23$^{rd}$ National Information Systems Security Conference (NISSC)},
MONTH = {Oct},
TITLE = {The Cracker Patch Choice: {An} Analysis of Post Hoc Security Techniques},
URL = {file:///home/crispin/Autonomix/autonomix/crackerpatch.pdf},
YEAR = {2000}
}
@MISC{cohen:92,
AUTHOR = {F.B. Cohen},
NOTE = {\url{http://www.all.net/books/IP/evolve.html}},
TITLE = {Operating System Protection Through Program Evolution},
URL = {http://www.all.net/books/IP/evolve.html},
YEAR = {1992}
}
@ARTICLE{thompson:84,
AUTHOR = {K. Thompson},
JOURNAL = {Communications of the {ACM}},
MONTH = {Aug},
NUMBER = {8},
PAGES = {761--763},
TITLE = {Reflections on Trusting Trust},
URL = {http://doi.acm.org/10.1145/358198.358210},
VOLUME = {27},
YEAR = {1984}
}
@TECHREPORT{song:02,
AUTHOR = {M. Chew and D. Song},
INSTITUTION = {Carnegie Mellon University},
KEYWORDS = {address randomization},
MONTH = {Dec},
NUMBER = {CMU-CS-02-197},
TITLE = {Mitigating Buffer Overflows by Operating System Randomization},
URL = {http://www.cs.berkeley.edu/~mmc/papers/tr.pdf},
YEAR = {2002}
}
@ARTICLE{spinellis:03,
AUTHOR = {D. Spinellis},
JOURNAL = {Communications of the {ACM}},
MONTH = {Jun},
NUMBER = {6},
PAGES = {112},
TITLE = {Reflections on Trusting Trust Revisited},
URL = {http://doi.acm.org/10.1145/777313.777347},
VOLUME = {46},
YEAR = {2003}
}
@TECHREPORT{blaze:99,
AUTHOR = {M. Blaze and J. Feigenbaum and J. Ioannidis and A. Keromytis},
INSTITUTION = {{IETF}},
MONTH = {Sep},
NUMBER = {2704},
TITLE = {The {KeyNote} Trust-Management System Version 2},
TYPE = {{RFC}},
YEAR = {1999}
}
@ARTICLE{mcgraw:00,
AUTHOR = {G. McGraw and G. Morrisett},
JOURNAL = {{IEEE} Software},
MONTH = {Sep/Oct},
NUMBER = {5},
PAGES = {33--41},
TITLE = {Attacking Malicious Code: {A} Report to the {Infosec Research Council}},
URL = {http://www.cigital.com/~gem/malcode.pdf},
VOLUME = {17},
YEAR = {2000}
}
@ARTICLE{arbaugh:00,
AUTHOR = {W.A. Arbaugh and B. Fithen and J. McHugh},
JOURNAL = {{IEEE} Computer},
MONTH = {Dec},
NUMBER = {12},
PAGES = {52--59},
TITLE = {Windows of Vulnerability: {A} Case Study Analysis},
URL = {http://ieeexplore.ieee.org/iel5/2/19227/00889093.pdf?isNumber=19227&prod=IEEE+JNL&arnumber=889093&arSt=52&ared=59&arAuthor=Arbaugh%2C+W.A.%3B+Fithen%2C+W.L.%3B+McHugh%2C+J.%3B},
VOLUME = {33},
YEAR = {2000}
}
@MISC{scanit:03,
AUTHOR = {Scanit},
NOTE = {\url{http://bcheck.scanit.be/bcheck/stats.php}},
TITLE = {Browser Security Test},
URL = {http://bcheck.scanit.be/bcheck/stats.php},
YEAR = {2003}
}
@ARTICLE{arbaugh:03,
AUTHOR = {W.A. Arbaugh},
JOURNAL = {{IEEE} Computer},
MONTH = {Jun},
NUMBER = {6},
PAGES = {112--113},
TITLE = {Firewalls: {An} Outdated Defense},
URL = {http://ieeexplore.ieee.org/iel5/2/27119/01204384.pdf?isNumber=27119&prod=IEEE+JNL&arnumber=1204384&arSt=112&ared=116&arAuthor=Arbaugh%2C+W.A.%3B},
VOLUME = {36},
YEAR = {2003}
}
@INPROCEEDINGS{browne:01,
AUTHOR = {H.K. Browne and W.A. Arbaugh and J. McHugh and W.L. Fithen},
BOOKTITLE = {Proc. of the 2001 {IEEE} Symposium on Security and Privacy},
MONTH = {May},
PAGES = {214--229},
TITLE = {A Trend Analysis of Exploitations},
URL = {http://ieeexplore.ieee.org/iel5/7367/19992/00924300.pdf?isNumber=19992&prod=IEEE+CNF&arnumber=924300&arSt=214&ared=229&arAuthor=Browne%2C+H.K.%3B+Arbaugh%2C+W.A.%3B+McHugh%2C+J.%3B+Fithen%2C+W.L.%3B},
YEAR = {2001}
}
@INPROCEEDINGS{cowan:00b,
AUTHOR = {C. Cowan and S. Beattie and G. Kroah-Hartman and C. Pu and P. Wagle and V. Gligor},
BOOKTITLE = {Proc. of the 14th {Usenix} Large Installation Systems Administration Conference ({LISA})},
MONTH = {Dec},
PAGES = {355--367},
TITLE = {{SubDomain}: {Parsimonious} Server Security},
URL = {http://www.usenix.org/publications/library/proceedings/lisa2000/full_papers/cowan/cowan.pdf},
YEAR = {2000}
}
@INPROCEEDINGS{ashcraft:02,
AUTHOR = {K. Ashcraft and D. Engler},
BOOKTITLE = {Proc. of the 2002 {IEEE} Symposium on Security and Privacy},
MONTH = {May},
TITLE = {Using Programmer-Written Compiler Extensions to Catch Security Holes},
URL = {http://www.stanford.edu/~engler/sp-ieee-02.pdf},
YEAR = {2002}
}
@ARTICLE{chakrab:02,
AUTHOR = {A. Chakrabarti and B. Manimaran},
JOURNAL = {{IEEE} Network},
MONTH = {Nov-Dec},
NUMBER = {6},
PAGES = {13--21},
TITLE = {Internet Infrastructure Security: {A} Taxonomy},
URL = {http://ieeexplore.ieee.org/iel5/65/23365/01081761.pdf?isNumber=23365&prod=IEEE+JNL&arnumber=1081761&arSt=13&ared=21&arAuthor=Chakrabarti%2C+A.%3B+Manimaran%2C+G.%3B},
VOLUME = {16},
YEAR = {2002}
}
@ARTICLE{mcgraw:03,
AUTHOR = {G. McGraw},
JOURNAL = {{IEEE} Security \& Privacy},
MONTH = {Mar/Apr},
NUMBER = {2},
PAGES = {59--66},
TITLE = {From the ground up: {The} {DIMACS} software security workshop},
URL = {http://ieeexplore.ieee.org/iel5/8013/26759/01193213.pdf?isNumber=26759&prod=IEEE%20JNL&arnumber=1193213&arSt=59&ared=66&arAuthor=McGraw%2C+G.%3B},
VOLUME = {1},
YEAR = {2003}
}
@TECHREPORT{batten:01,
AUTHOR = {C. Batten and K. Barr and A. Saraf and S. Trepetin},
INSTITUTION = {Massachusetts Institute of Technology Laboratory for Computer Science},
MONTH = {Oct},
NUMBER = {LCS Technical Memo 632},
TITLE = {{pStore}: {A} Secure Peer-to-Peer Backup System},
URL = {http://www.lcs.mit.edu/publications/pubs/pdf/MIT-LCS-TM-632.pdf},
YEAR = {2001}
}
@ARTICLE{varian:00,
AUTHOR = {H. Varian},
JOURNAL = {The New York Times},
KEYWORDS = {security-economics},
MONTH = {Jun 1,},
NOTE = {\url{http://www.nytimes.com/library/financial/columns/060100econ-scene.html}},
TITLE = {Managing Online Security Risks},
URL = {http://www.nytimes.com/library/financial/columns/060100econ-scene.html},
YEAR = {2000}
}
@ARTICLE{mcgraw:02,
AUTHOR = {G. McGraw},
JOURNAL = {{IEEE} Software},
MONTH = {Nov/Dec},
NUMBER = {6},
PAGES = {57--59},
TITLE = {Building secure software: {Better} than protecting bad software},
URL = {http://ieeexplore.ieee.org/iel5/52/22486/01049391.pdf?isNumber=22486&prod=IEEE%20JNL&arnumber=1049391&arSt=57&ared=58&arAuthor=McGraw%2C+G.%3B},
VOLUME = {19},
YEAR = {2002}
}
@TECHREPORT{junqu:03,
AUTHOR = {F. Junqueira and R. Bhagwan and K. Marzullo and S. Savage and G.M. Voelker},
INSTITUTION = {University of California, San Diego},
MONTH = {Jan},
NUMBER = {CS2003-0732},
TITLE = {The {Phoenix} Recovery System: {Rebuilding} from the ashes of an {Internet} catastrophe},
URL = {http://www.cs.ucsd.edu/Dienst/Repository/2.0/Body/ncstrl.ucsd_cse/CS2003-0732/postscript},
YEAR = {2003}
}
@INPROCEEDINGS{michael:00,
AUTHOR = {C.C. Michael and A. Bartle and J. Viega and A. Hulot and N. Jarymowycz and J.R. Mills and B. Sohr and B. Arkin},
BOOKTITLE = {{DARPA} Information Survivability Conference \& Exposition -- Volume 2},
MONTH = {Jan},
PAGES = {220--230},
TITLE = {Two Systems for Automatic Software Diversification},
URL = {http://proxy.library.upenn.edu:8355/iel5/6658/17794/00821522.pdf?tp=&arnumber=821522&isnumber=17794},
YEAR = {2000}
}
@INPROCEEDINGS{cowan:00,
AUTHOR = {C. Cowan and F. Wagle and C. Pu and S. Beattie and J. Walpole},
BOOKTITLE = {{DARPA} Information Survivability Conference \& Exposition -- Volume 2},
KEYWORDS = {buffer-overflow detection},
MONTH = {Jan},
PAGES = {119--129},
TITLE = {Buffer overflows: {Attacks} and defenses for the vulnerability of the decade},
URL = {http://ieeexplore.ieee.org/iel5/6658/17794/00821514.pdf?isNumber=17794&prod=IEEE%20CNF&arnumber=821514&arSt=119&ared=129+vol.2&arAuthor=Cowan%2C+C.%3B+Wagle%2C+F.%3B+Calton+Pu%3B+Beattie%2C+S.%3B+Walpole%2C+J.%3B},
YEAR = {2000}
}
@INPROCEEDINGS{somay:98,
AUTHOR = {A. Somayaji and S. Hofmeyr and S. Forrest},
BOOKTITLE = {Proc. of 1997 New Security Paradigms Workshop},
PAGES = {75--82},
TITLE = {Principles of a Computer Immune System},
URL = {http://www.cs.unm.edu/~immsec/publications/nspw-97.pdf},
YEAR = {1998}
}
@INPROCEEDINGS{forrest:97,
AUTHOR = {S. Forrest and A. Somayaji and D.H. Ackley},
BOOKTITLE = {Proc. of the 6th {IEEE} Workshop on Hot Topics in Operating Systems},
PAGES = {67--72},
TITLE = {Building diverse computer systems},
URL = {http://www.cs.unm.edu/~immsec/publications/hotos-97.pdf},
YEAR = {1997}
}
@INPROCEEDINGS{odlyzko:03,
AUTHOR = {A. Odlyzko},
BOOKTITLE = {Proc. of Financial Cryptography 2003},
KEYWORDS = {security-economics},
TITLE = {Economics, psychology, and sociology of security},
URL = {http://www.dtc.umn.edu/~odlyzko/doc/econ.psych.security.pdf},
YEAR = {2003}
}
@INPROCEEDINGS{bhatkar:03,
AUTHOR = {S. Bhatkar and D.C. DuVarney and R. Sekar},
BOOKTITLE = {Proc. of the 12th {Usenix} Security Symposium},
KEYWORDS = {address randomization},
MONTH = {Aug},
TITLE = {Address Obfuscation: {An} Efficient Approach to Combat a Broad Range of Memory Error Exploits},
URL = {http://www.usenix.org/events/sec03/tech/full_papers/bhatkar/bhatkar.pdf},
YEAR = {2003}
}
@BOOK{rubin:01,
AUTHOR = {A.D. Rubin},
PUBLISHER = {Addison Wesley},
TITLE = {White-Hat Security Arsenal},
YEAR = {2001}
}
@BOOK{schneier:96,
AUTHOR = {B. Schneier},
PUBLISHER = {John Wiley \& Sons, Inc.},
TITLE = {Applied Cryptography},
YEAR = {1996}
}
@BOOK{ferguson:03,
AUTHOR = {N. Ferguson and B. Schneier},
PUBLISHER = {Wiley Publishing, Inc.},
TITLE = {Practical Cryptography},
YEAR = {2003}
}
@MISC{rudis:03,
AUTHOR = {B. Rudis and P. Kostenbader},
MONTH = {Jun},
NOTE = {\url{http://securityfocus.com/infocus/1701}},
TITLE = {The Enemy Within: {Firewalls} and Backdoors},
YEAR = {2003}
}
@INPROCEEDINGS{zhang:00,
AUTHOR = {Y. Zhang and V. Paxson},
BOOKTITLE = {Proc. of the 9th {Usenix} Security Symposium},
TITLE = {Detecting Backdoors},
URL = {http://www.usenix.org/publications/library/proceedings/sec2000/zhangbackdoor/zhangbackdoor.pdf},
YEAR = {2000}
}
@UNPUBLISHED{bellovin:03,
AUTHOR = {S.M. Bellovin and E.R. Gansner},
KEYWORDS = {unpublished, routing-security},
MONTH = {May},
NOTE = {***** UNPUBLISHED DO NOT CITE *****},
TITLE = {Using Link Cuts to Attack Internet Routing},
URL = {http://www.research.att.com/~smb/papers/reroute.pdf},
YEAR = {2003}
}
@INPROCEEDINGS{wright:02,
AUTHOR = {C. Wright and C. Cowan and J. Morris and S. Smalley and G. Kroah-Hartman},
BOOKTITLE = {Proc. of the 11th {Usenix} Security Symposium},
KEYWORDS = {access control, capabilities},
TITLE = {Linux Security Modules: {General} Security Support for the {Linux} Kernel},
URL = {http://www.usenix.org/publications/library/proceedings/sec02/full_papers/wright/wright.pdf},
YEAR = {2002}
}
@TECHREPORT{bain:01,
AUTHOR = {C. Bain and D. Faatz and A. Fayad and D. Williams},
INSTITUTION = {The {MITRE} Corporation},
TITLE = {Diversity as a Defense Strategy in Information Systems},
URL = {http://www.mitre.org/work/tech_papers/tech_papers_01/bain_diversity/bain_diversity.pdf},
YEAR = {2001}
}
@TECHREPORT{moore:03,
AUTHOR = {D. Moore and V. Paxson and S. Savage and C. Shannon and S. Staniford and N. Weaver},
INSTITUTION = {CAIDA, ICSI, Silicon Defense, UC Berkeley EECS and UC San Diego CSE},
KEYWORDS = {worms},
TITLE = {The Spread of the Sapphire/Slammer Worm},
YEAR = {2003}
}
@INPROCEEDINGS{moore:03b,
AUTHOR = {D. Moore and C. Shannon and G.M. Voelker and S. Savage},
BOOKTITLE = {Proc. of INFOCOM 2003},
KEYWORDS = {worms},
TITLE = {Internet Quarantine: {Requirements} for Containing Self-Propagating Code},
URL = {http://www.cs.ucsd.edu/users/voelker/pubs/worm-infocom03.pdf},
YEAR = {2003}
}
@INPROCEEDINGS{moore:02,
AUTHOR = {D. Moore and C. Shannon and J. Brown},
BOOKTITLE = {Proc. of Internet Measurement Workshop 2002},
KEYWORDS = {worms},
MONTH = {Nov},
TITLE = {{Code-Red}: a case study on the spread and victims of an {Internet} worm},
URL = {http://www.caida.org/outreach/papers/2002/codered/codered.pdf},
YEAR = {2002}
}
@UNPUBLISHED{weaver:02,
AUTHOR = {N. Weaver},
KEYWORDS = {worms},
NOTE = {\url{http://www.cs.berkeley.edu/$\sim$nweaver/0wn2.html}},
TITLE = {Reflections on {Brilliant Digital}: {Single} Points of {Internet} 0wnership},
URL = {http://www.cs.berkeley.edu/~nweaver/0wn2.html},
YEAR = {undated}
}
@UNPUBLISHED{weaver:02b,
AUTHOR = {N. Weaver},
KEYWORDS = {worms},
MONTH = {Mar},
NOTE = {\url{http://www.cs.berkeley.edu/$\sim$nweaver/worms.pdf}},
TITLE = {Potential Strategies for High Speed Active Worms: {A} Worst Case Analysis},
URL = {http://www.cs.berkeley.edu/~nweaver/worms.pdf},
YEAR = {2002}
}
@ARTICLE{spaff:89,
AUTHOR = {E.H. Spafford},
JOURNAL = {Communications of the {ACM}},
KEYWORDS = {worms},
MONTH = {Jun},
NUMBER = {6},
PAGES = {678--687},
TITLE = {The {Internet} Worm: {Crisis} and Aftermath},
VOLUME = {32},
YEAR = {1989}
}
@ARTICLE{rochlis:89,
AUTHOR = {J.A. Rochlis and M.W. Eichin},
JOURNAL = {Communications of the {ACM}},
KEYWORDS = {worms},
MONTH = {Jun},
NUMBER = {6},
PAGES = {689--698},
TITLE = {With Microscope and Tweezers: {The} Worm from {MIT's} Perspective},
VOLUME = {32},
YEAR = {1989}
}
@ARTICLE{eisen:89,
AUTHOR = {T. Eisenberg and D. Gries and J. Hartmanis and D. Holcomb and M.S. Lynn and T. Santoro},
JOURNAL = {Communications of the {ACM}},
KEYWORDS = {worms},
MONTH = {Jun},
NUMBER = {6},
PAGES = {706--709},
TITLE = {The {Cornell} Commission: {On} {Morris} and the Worm},
VOLUME = {32},
YEAR = {1989}
}
@INPROCEEDINGS{chen:01,
AUTHOR = {P.M. Chen and B.D. Noble},
BOOKTITLE = {Proc. of the 8th {IEEE} Workshop on Hot Topics in Operating Systems},
MONTH = {May},
TITLE = {When Virtual is Better Than Real},
URL = {http://www.eecs.umich.edu/~pmchen/papers/vmHotOS.pdf},
YEAR = {2001}
}
@INPROCEEDINGS{king:03,
AUTHOR = {S.T. King and G.W. Dunlap and P.M. Chen},
BOOKTITLE = {Proc. of the 2003 {Usenix} Annual Technical Conference},
TITLE = {Operating System Support for Virtual Machines},
URL = {http://www.eecs.umich.edu/Rio/papers/umlinux.pdf},
YEAR = {2003}
}
@TECHREPORT{lewis:02,
AUTHOR = {J.A. Lewis},
INSTITUTION = {Center for Strategic and International Studies},
MONTH = {Dec},
TITLE = {Assessing the Risks of Cyber Terrorism, Cyber War and Other Cyber Threats},
URL = {http://www.csis.org/tech/0211_lewis.pdf},
YEAR = {2002}
}
@INPROCEEDINGS{jim:02,
AUTHOR = {T. Jim and G. Morrisett and D. Grossman and M. Hicks and J. Cheney and Y. Wang},
BOOKTITLE = {Proc. of the 2002 {Usenix} Annual Techincal Conference},
KEYWORDS = {buffer-overflow prevention},
MONTH = {Jun},
PAGES = {275--288},
TITLE = {Cyclone: {A} safe dialect of {C}},
URL = {http://www.research.att.com/projects/cyclone/papers/cyclone-safety.pdf},
YEAR = {2002}
}
@INPROCEEDINGS{wilander:03,
AUTHOR = {J. Wilander and M. Kamkar},
BOOKTITLE = {Proc. of the 10th Network and Distributed System Security Symposium},
KEYWORDS = {buffer-overflow prevention, buffer-overflow detection},
MONTH = {Feb},
TITLE = {A Comparison of Publicly Available Tools for Dynamic Buffer Overflow Prevention},
URL = {http://www.ida.liu.se/~johwi/research_publications/paper_ndss2003_john_wilander.pdf},
YEAR = {2003}
}
@INPROCEEDINGS{cowan:98,
AUTHOR = {C. Cowan and C. Pu and D. Maier and J. Walpole and P. Bakke and S. Beattie and A. Grier and P. Wagle and Q. Zhang and H. Hinton},
BOOKTITLE = {Proc. of the 7th {Usenix} Security Symposium},
KEYWORDS = {buffer-overflow detection},
MONTH = {Jan},
PAGES = {63--78},
TITLE = {{StackGuard}: {Automatic} Adaptive Detection and Prevention of Buffer-Overflow Attacks},
URL = {http://www.usenix.org/publications/library/proceedings/sec98/full_papers/cowan/cowan.pdf},
YEAR = {1998}
}
@INPROCEEDINGS{barat:00,
AUTHOR = {A. Baratloo and N. Singh and T. Tsai},
BOOKTITLE = {Proc. of the 2000 {Usenix} Annual Technical Conference},
KEYWORDS = {buffer-overflow prevention, buffer-overflow detection},
MONTH = {Jun},
TITLE = {Transparent Run-Time Defense Against Stack Smashing Attacks},
URL = {http://www.usenix.org/publications/library/proceedings/usenix2000/general/full_papers/baratloo/baratloo.pdf},
YEAR = {2000}
}
@INPROCEEDINGS{fetzer:01,
AUTHOR = {C. Fetzer and Z. Xiao},
BOOKTITLE = {Proc. of the {IEEE} Symposium on Reliable Distributed Systems},
KEYWORDS = {buffer-overflow prevention},
MONTH = {Oct},
TITLE = {Detecting Heap Buffer Overflow Through Fault Containment Wrappers},
URL = {http://www.research.att.com/~christof/papers/preprint-SRDS2001.pdf},
YEAR = {2001}
}
@INPROCEEDINGS{frantzen:01,
AUTHOR = {M. Frantzen and M. Shuey},
BOOKTITLE = {Proc. of the 10th {Usenix} Security Symposium},
KEYWORDS = {buffer-overflow detection},
PAGES = {55-66},
TITLE = {{StackGhost}: {Hardware} Facilitated Stack Protection},
URL = {http://www.usenix.org/events/sec01/full_papers/frantzen/frantzen.pdf},
YEAR = {2001}
}
@INPROCEEDINGS{cowan:01,
AUTHOR = {C. Cowan and M. Barringer and S. Beattie and G. Kroah-Hartman and M. Frantzen and J. Lokier},
BOOKTITLE = {Proc. of the 10th {Usenix} Security Symposium},
KEYWORDS = {buffer-overflow prevention},
MONTH = {Aug},
TITLE = {{FormatGuard}: {Automatic} Protection From printf Format String Vulnerabilities},
URL = {http://www.usenix.org/events/sec01/full_papers/cowanbarringer/cowanbarringer.pdf},
YEAR = {2001}
}
@INPROCEEDINGS{prasad:03,
AUTHOR = {M. Prasad and T. Chiueh},
BOOKTITLE = {Proc. of the 2003 {Usenix} Annual Technical Conference},
KEYWORDS = {binary rewriting, buffer-overflow detection},
MONTH = {Jun},
TITLE = {A Binary Rewriting Defense against Stack based Buffer Overflow Attacks},
URL = {http://www.ecsl.cs.sunysb.edu/tr/TR121.ps},
YEAR = {2003}
}
@INPROCEEDINGS{larson:03,
AUTHOR = {E. Larson and T. Austin},
BOOKTITLE = {Proc. of the 12th {Usenix} Security Symposium},
KEYWORDS = {buffer-overflow prevention},
MONTH = {Aug},
TITLE = {High Coverage Detection of Input-Related Security Faults},
URL = {http://www.eecs.umich.edu/~larsone/security.pdf},
YEAR = {2003}
}
@MISC{etoh:03,
AUTHOR = {H. Etoh},
KEYWORDS = {buffer-overflow detection},
NOTE = {\url{http://www.trl.ibm.com/projects/security/ssp/}},
TITLE = {{GCC} extension for protecting applications from stack-smashing attacks ({ProPolice})},
URL = {http://www.trl.ibm.com/projects/security/ssp/},
YEAR = {2003}
}
@INPROCEEDINGS{kirian:02,
AUTHOR = {V. Kiriansky and D. Bruening and S. Amarasinghe},
BOOKTITLE = {Proc. of the 11th {Usenix} Security Symposium},
KEYWORDS = {program flow control},
MONTH = {Aug},
TITLE = {Secure Execution Via Program Shepherding},
URL = {http://www.usenix.org/publications/library/proceedings/sec02/full_papers/kiriansky/kiriansky.pdf},
YEAR = {2002}
}
@INPROCEEDINGS{berna:00,
AUTHOR = {M. Bernaschi and E. Gabrielli and L.V. Mancini},
BOOKTITLE = {Proc. of the 7th {ACM} Conference on Computer and Communications Security},
KEYWORDS = {program flow control},
PAGES = {174--183},
TITLE = {Operating system enhancements to prevent the misuse of system calls},
URL = {http://delivery.acm.org/10.1145/360000/352624/p174-bernaschi.pdf?key1=352624&key2=4947075501&coll=portal&dl=ACM&CFID=10928109&CFTOKEN=35489178},
YEAR = {2000}
}
@INPROCEEDINGS{dunlap:02,
AUTHOR = {G.W. Dunlap and S.T. King and S. Cinar and M.A. Basrai and P.M. Chen},
BOOKTITLE = {Proc. of the 2002 Symposium on Operating Systems Design and Implementation},
KEYWORDS = {intrusion detection},
MONTH = {Dec},
TITLE = {{ReVirt}: {Enabling} Intrusion Analysis through Virtual-Machine Logging and Replay},
URL = {http://www.eecs.umich.edu/CoVirt/papers/revirt.pdf},
YEAR = {2002}
}
@INPROCEEDINGS{gleitz:01,
AUTHOR = {P.M. Gleitz and S.M. Bellovin},
BOOKTITLE = {Proc. of the 10th {Usenix} Security Symposium},
MONTH = {Aug},
TITLE = {Transient Addressing for Related Processes: {Improved} Firewalling by Using {IPV6} and Multiple Addresses per Host},
URL = {http://www.usenix.org/events/sec01/full_papers/gleitz/gleitz.pdf},
YEAR = {2001}
}
@INPROCEEDINGS{cowan:01b,
AUTHOR = {C. Cowan and S. Beattie and C. Wright and G. Kroah-Hartman},
BOOKTITLE = {Proc. of the 10th {Usenix} Security Symposium},
MONTH = {Aug},
TITLE = {{RaceGuard}: {Kernel} Protection From Temporary File Race Vulnerabilities},
URL = {http://www.usenix.org/events/sec01/full_papers/cowanbeattie/cowanbeattie.pdf},
YEAR = {2001}
}
@INPROCEEDINGS{provos:03,
AUTHOR = {N. Provos and M. Friedl and P. Honeyman},
BOOKTITLE = {Proc. of the 12th {Usenix} Security Symposium},
KEYWORDS = {access control},
MONTH = {Aug},
TITLE = {Preventing Privilege Escalation},
YEAR = {2003}
}
@INPROCEEDINGS{provos:03b,
AUTHOR = {N. Provos},
BOOKTITLE = {Proc. of the 12th {Usenix} Security Symposium},
KEYWORDS = {access control, capabilities},
MONTH = {Aug},
TITLE = {Improving Host Security with System Call Policies},
YEAR = {2003}
}
@ARTICLE{cowan:03,
AUTHOR = {C. Cowan},
JOURNAL = {{IEEE} Security \& Privacy},
MONTH = {Jan-Feb},
NUMBER = {1},
PAGES = {38--45},
TITLE = {Software Security for Open-Source Systems},
URL = {http://ieeexplore.ieee.org/iel5/8013/26429/01176994.pdf?isNumber=26429&prod=IEEE+JNL&arnumber=1176994&arSt=38&ared=45&arAuthor=Cowan%2C+C.%3B},
VOLUME = {1},
YEAR = {2003}
}
@ARTICLE{clarke:02,
AUTHOR = {I. Clarke and T.W. Hong and S.G. Miller and O. Sandberg and B. Wiley},
JOURNAL = {IEEE Internet Computing},
KEYWORDS = {anti-censorship, anonymity},
NUMBER = {1},
PAGES = {40--49},
TITLE = {Protecting Free Expression Online with {Freenet}},
URL = {citeseer.nj.nec.com/article/clarke02protecting.html},
VOLUME = {6},
YEAR = {2002}
}
@ARTICLE{clarke:01,
AUTHOR = {I. Clarke and O. Sandberg and B. Wiley and T.W. Hong},
JOURNAL = {Lecture Notes in Computer Science},
KEYWORDS = {anti-censorship, anonymity},
TITLE = {Freenet: {A} Distributed Anonymous Information Storage and Retrieval System},
URL = {citeseer.nj.nec.com/clarke00freenet.html},
VOLUME = {2009},
YEAR = {2001}
}
@MISC{anderson:01,
AUTHOR = {R. Anderson},
KEYWORDS = {security-economics},
MONTH = {Jan},
NOTE = {\url{http://www.cl.cam.ac.uk/ftp/users/rja14/econ.pdf}},
TITLE = {Why information security is hard -- {An} economic perspective},
URL = {http://www.cl.cam.ac.uk/ftp/users/rja14/econ.pdf},
YEAR = {2001}
}
@INPROCEEDINGS{blakley:96,
AUTHOR = {B. Blakley},
BOOKTITLE = {Proceedings of the 1996 workshop on New security paradigms},
LOCATION = {Lake Arrowhead, California, United States},
PAGES = {2--16},
PUBLISHER = {ACM Press},
TITLE = {The Emperor's old armor},
URL = {http://doi.acm.org/10.1145/304851.304855},
YEAR = {1996}
}
@INPROCEEDINGS{spencer:99,
AUTHOR = {R. Spencer and S. Smalley and P. Loscocco and M. Hibler and D. Andersen and J. Lepreau},
BOOKTITLE = {Proc. of the 8th {Usenix} Security Symposium},
KEYWORDS = {capabilities},
PAGES = {123--139},
TITLE = {The {Flask} Security Architecture: System Support for Diverse Security Policies},
URL = {http://www.usenix.org/publications/library/proceedings/sec99/full_papers/spencer/spencer.pdf},
YEAR = {1999}
}
@INPROCEEDINGS{waldman:00,
AUTHOR = {M. Waldman and A.D. Rubin and L.F. Cranor},
BOOKTITLE = {Proc. of the 9th {Usenix} Security Symposium},
KEYWORDS = {anti-censorship},
MONTH = {Aug},
PAGES = {59--72},
TITLE = {Publius: {A} robust, tamper-evident, censorship-resistant, web publishing system},
URL = {http://cs1.cs.nyu.edu/~waldman/publius/publius.pdf},
YEAR = {2000}
}
@INPROCEEDINGS{kubiat:00,
AUTHOR = {J. Kubiatowicz and D. Bindel and Y. Chen and P. Eaton and D. Geels and R. Gummadi and S. Rhea and H. Weatherspoon and W. Weimer and C. Wells and B. Zhao},
BOOKTITLE = {Proceedings of ACM ASPLOS},
MONTH = {Nov},
ORGANIZATION = {ACM},
TITLE = {{OceanStore}: An Architecture for Global-Scale Persistent Storage},
URL = {http://citeseer.nj.nec.com/kubiatowicz00oceanstore.html},
YEAR = {2000}
}
@ARTICLE{shoch:82,
AUTHOR = {J.F. Shoch and J.A. Hupp},
JOURNAL = {Communications of the {ACM}},
MONTH = {Mar},
NUMBER = {3},
TITLE = {The ``Worm'' Programs---{Early} Experience with a Distributed Computation},
VOLUME = {25},
YEAR = {1982}
}
@BOOK{brunner:76,
AUTHOR = {J. Brunner},
PUBLISHER = {Ballantine Books, Inc.},
TITLE = {The Shockwave Rider},
YEAR = {1976}
}
@INPROCEEDINGS{spaff:89b,
AUTHOR = {E.H. Spafford},
BOOKTITLE = {Proc. of the 2nd European Software Engineering Conference},
KEYWORDS = {worms},
TITLE = {The {Internet} Worm Incident},
URL = {http://citeseer.nj.nec.com/rd/89484622%2C48503%2C1%2C0.25%2CDownload/http://citeseer.nj.nec.com/cache/papers/cs/22/http:zSzzSzwww.telstra.com.auzSzpubzSzdocszSzsecurityzSzsert-doczSzspaf-worm.pdf/spafford91internet.pdf},
YEAR = {1989}
}
@ARTICLE{land:97,
AUTHOR = {C.E. Landwehr and D.M. Goldschlag},
ISSUE = {12},
JOURNAL = {Proceedings of the IEEE},
MONTH = {Dec},
PAGES = {2034--2051},
TITLE = {Security issues in networks with {Internet} access},
URL = {http://ieeexplore.ieee.org/iel3/5/14184/00650183.pdf?isNumber=14184&prod=IEEE+JNL&arnumber=650183&arSt=2034&ared=2051&arAuthor=Landwehr%2C+C.E.%3B+Goldschlag%2C+D.M.%3B},
VOLUME = {85},
YEAR = {1997}
}
@INPROCEEDINGS{hagimont:96,
AUTHOR = {D. Hagimont and J. Mossi{\`e}re and C.W. Hemming, Jr},
BOOKTITLE = {Proc. of the seventh workshop on {ACM} {SIGOPS} European workshop},
PAGES = {219--223},
TITLE = {Hidden capabilities: {Towards} a flexible protection utility for the {Internet}},
URL = {http://delivery.acm.org/10.1145/510000/504489/p219-hagimont.pdf?key1=504489&key2=5111785501&coll=portal&dl=ACM&CFID=10908868&CFTOKEN=18181839},
YEAR = {1996}
}
@MISC{openwall:03,
AUTHOR = {Openwall Project},
KEYWORDS = {buffer-overflow detection},
NOTE = {\url{http://www.openwall.com/linux}},
TITLE = {{Linux} kernel patch from the {Openwall Project}},
URL = {http://www.openwall.com/linux},
YEAR = {2003}
}
@INPROCEEDINGS{junqu:03b,
AUTHOR = {F. Junqueira and K. Marzullo},
BOOKTITLE = {Proc. of the {ICDCS} 2003},
KEYWORDS = {fault-tolerance},
TITLE = {Synchronous Consensus for Dependent Process Failures},
URL = {http://www.cs.ucsd.edu/~marzullo/pubs/icdcs-depfail.pdf},
YEAR = {2003}
}
@INPROCEEDINGS{rodrig:01,
AUTHOR = {R. Rodrigues and M. Castro and B. Liskov},
BOOKTITLE = {Proc. of the 18th {ACM} Symposium on Operating System Principles},
KEYWORDS = {diversity, fault-tolerance},
PAGES = {15--28},
TITLE = {{BASE}: {Using} Abstraction to Improve Fault Tolerance},
URL = {http://delivery.acm.org/10.1145/510000/502037/p15-rodrigues.pdf?key1=502037&key2=9630885501&coll=portal&dl=ACM&CFID=10910689&CFTOKEN=44230212},
YEAR = {2001}
}
@INPROCEEDINGS{kain:86,
AUTHOR = {R.Y. Kain and C.E. Landwehr},
BOOKTITLE = {Proc. of the 1986 {IEEE} Symposium on Security and Privacy},
KEYWORDS = {capabilities},
MONTH = {May},
PAGES = {95--101},
TITLE = {On Access Checking in Capability-Based Systems},
URL = {http://chacs.nrl.navy.mil/publications/CHACS/Before1990/1987landwehr-tse.pdf},
YEAR = {1986}
}
@ARTICLE{chase:94,
AUTHOR = {J.S. Chase and H.M. Levy and M.J. Feeley and E.D. Lazowska},
JOURNAL = {{ACM} Transactions on Computer Systems},
NUMBER = {4},
PAGES = {271--307},
TITLE = {Sharing and Protection in a Single-Address-Space Operating System},
URL = {http://delivery.acm.org/10.1145/200000/195795/p271-chase.pdf?key1=195795&key2=1401785501&coll=portal&dl=ACM&CFID=10908868&CFTOKEN=18181839},
VOLUME = {12},
YEAR = {1994}
}
@ARTICLE{goth:03,
AUTHOR = {G. Goth},
JOURNAL = {IEEE Security \& Privacy Magazine},
MONTH = {Dec},
NUMBER = {6},
PAGES = {8--10},
TITLE = {Addressing the monoculture},
URL = {http://proxy.library.upenn.edu:8355/iel5/8013/28051/01253561.pdf?isNumber=28051&arnumber=1253561&prod=JNL&arSt=+8&ared=+10&arAuthor=Goth%2C+G.},
VOLUME = {1},
YEAR = {2003}
}
@ARTICLE{geer:03,
AUTHOR = {D. Geer},
JOURNAL = {IEEE Security \& Privacy Magazine},
MONTH = {Dec},
NUMBER = {6},
PAGES = {14--16},
TITLE = {Monopoly considered harmful},
URL = {http://proxy.library.upenn.edu:8355/iel5/8013/28051/01253563.pdf?isNumber=28051&arnumber=1253563&prod=JNL&arSt=+14&ared=+16&arAuthor=Geer%2C+D.E.},
VOLUME = {1},
YEAR = {2003}
}
@TECHREPORT{geer:03b,
AUTHOR = {D. Geer and R. Bace and P. Gutmann and P. Metzger and C.P. Pfleeger and J.S. Quarterman and B. Schneier},
INSTITUTION = {Computer \& Communications Industry Association},
TITLE = {Cyber Insecurity: The Cost of Monopoly},
URL = {http://www.ccianet.org/papers/cyberinsecurity.pdf},
YEAR = {2003}
}
This file has been generated by
bibtex2html 1.65