8th Annual IEEE SMC Information Assurance Workshop

 20-22 June 2007

 "The West Point Workshop"

 United States Military Academy, West Point, New York
Chair:  LTC John Hill, john.hill@usma.edu

http://www.itoc.usma.edu/workshop/2007
   
Home
Call for Papers
Papers
Posters
Submission
Registration
Travel
Lodging
Program
Vendor Info
Contacts

Program

Many thanks to the Program Committee for their hard and thorough work in ensuring the high quality of the workshop!  Here is an alphabetical list of Accepted Papers and Posters, and their assignment to sessions is shown below.  Gold stars that appear will indicate best-paper nominees. The best paper will be identified at the Thursday dinner.

All locations are at the Hotel Thayer (see Facilities Map) unless otherwise specified.  Sign in and on-site registration will be in the Main Lobby throughout the workshop.

Wednesday, 20 June 2007

Main
Entrance		 1000-
1200		 Sign-In  All IAW07 participants sign-in during this time in the lobby of Hotel Thayer
Main
Entrance		 1100-
1215		 West Point Tour A bus tour to see the West Point grounds and learn some of its storied history! Seating is limited to the first 56  people who reserve a place during sign-in at the Hotel Thayer.  Participation is free to registered attendees and their guests. 
Crest
Room		 1215-
1300		 Lunch Social
Crest
Room		 1300-
1315		 Welcoming Remarks 
COL Daniel Ragsdale, Vice Dean for Education, USMA
Crest
Room		 1315-
1415		 Keynote Address
Morris A. Hymes, NSA Director DoD PKI PMO a secret!
Crest
Room		 1415-
1445		 Break
Sessions
Block I		 (Crest Terrace South)
Best Practices
Chair:  Stephen Hamilton		 (Crest Terrace North) 
IA Education
Chair: Helen Armstrong		 (Hudson Gallery)
Security Considerations
Chair: Jide Odubiyi
  1445-
1510		 A Global Look at Authentication
S. Hamilton, M. Carlisle, and J. Hamilton, Jr.		 Experiences and Lessons Learned in the Design and Implementation of an Information Assurance Curriculum
S. Malladi, O. El-Gayar, K. Streff		 -- open--
  1510-
1535		 Recovering from Database Recovery: Case Studies and the Lessons They Teach
M. Hoferek and S. Wilson		 Mapping Information Security Curricula to Professional Accreditation Standards
C. Armstrong and H. Armstrong		 Building Security into an IEEE FIPA Compliant Multiagent System
J. Odubiyi and A. Choudhary
  1535-
1600		 Do Word Clues Suffice in Detecting Spam and Phishing?
N. Rowe, D. Barnes, M. McVicker, M. Egan, R. Betancourt, R. Toledo, D. Horner, D. Davis, L. Guiterrez, and C. Martell		 Evaluating an IA Virtual Network Education Program
H. Armstrong, N. Jayaratna, R. Dodge		 -- open--
Hotel
Thayer		 1600-
1630		 Break (and setup of poster presentations)
Sessions
Block II		 (Crest Terrace South)
Computer Forensics I
Chair:  Barbara Endicott-Popovsky		 (Crest Terrace North) 
Wireless Security I
Chair: Calvert Bowen III		 (Hudson Gallery)
Honeynet I
Chair:  Srinivas Mukkamala
  1630-
1655		 A Framework for Redacting Digital Information from Electronic Devices
G. Manes, L. Watson, E. Downing, A. Barclay, D. Greer, and J. Hale		 A Family of Efficient Key Predistribution Schemes for Pairwise Authentication
M. Ramkumar		 Detection of Virtual Environments and Low Interaction Honeypots
S. Mukkamala, K. Yendrapalli, R. Basnet, M. Shankarapani, and A. Sung
  1655-
1720		 The Observability Calibration Test Development Framework
B. Endicott-Popovsky and D. Frincke		 Efficient Distribution of Trust Authority Functions in Tactical Networks
S. Reidt and S. Wolthusen		 Improving Honeynet Data Analysis
C. Viecco
  1720-
1745		 Volleystore: A Parasitic Storage Framework
K. Rosenfeld, H. Sencar, and N. Memon		 -- open -- Deception in Honeynets: A Game-Theoretic Analysis
N. Garg and D. Grosu
Hotel
Thayer		 1745-
1815		 Open Time
Lawn
Terrace		 1815-
1930		 Dinner
Speaker:  Tom Cross, IBM Advanced Research

Thursday, 21 June 2007

Sessions
Block III		 (Crest Terrace South)
Computer Forensics II
Chair:  Kevin Fairbanks		 (Crest Terrace North) 
Wireless Security II
Chair:  David Raymond		 (Hudson Gallery)
Honeynet II
Chair:  Neil Rowe
  0830-
0855		 TimeKeeper: A Metadata Archiving Method for Honeypot Forensics
K. Fairbanks, C. Lee, Y. Xia, and H. Owen III		 Scalable, Cluster-Based Anti-Replay Protection for Wireless Sensor Networks
D. Raymond, R. Marchany, and S. Midkiff		 Thwarting Cyber-Attack Reconnaissance with Inconsistency and Deception
N. Rowe and H. Goh
  0855-
0920		 Stego Scrubbing - A New Direction for Image Steganography
I. Moskowitz, P. Lafferty, and F. Ahmed		 Battery Polling and Trace Determination for Bluetooth Attack Detection in Mobile Devices
T. Buennemeyer, T. Nelson, M. Gora, R. Marchany, and J. Tront		 Rationale for and Capabilities of IT Security Assessment
N. Hallberg, J. Hallberg, and A. Hunstad
  0920-
0945		 BIRDS OF A FEATHER:
"Other IEEE IA Activities" 
Organizer: Jack Cole		 Keyless Jam Resistance
L. Baird III, W. Bahn, M. Collins, M. Carlisle, and S. Butler		 -- open --
Crest
Room		 0945-
1015 		 Break and Poster Session
Crest
Room		 1015-
1115 		 Panel: e-voting with Matt Bishop

Panel Chair:

Matt Bishop, Professor, Dept. of Computer Science, University of California at Davis

 

Panelists:

Jeffrey Hunker, Professor of Technology and Public Policy, Heinz School, Carnegie Mellon University

Alec Yasinsac, Associate Professor, Dept. of Computer Science, Florida State University

Voting is a critical part of citizen participation in the governing of the United States. The mechanisms for voting must not only perform with high assurance, but also must be seen to perform correctly, securely, and accurately. This requires credible evidence be gathered and made public. What kind of evidence for voting systems provides this assurance? What kind of evidence can be gathered during the design and implementation phase, and what evidence emerges only after the electronic voting systems are fielded? Perhaps most importantly, who should this evidence be aimed at -- election officials, computer scientists, policy makers, or ordinary citizens?
Sessions
Block IV		 (Crest Terrace South)
Privacy
Chair:  Sean Price

(Crest Terrace North) 

Wireless Security III
Chair: Tim Buennemeyer

 (Hudson Gallery)
Intrusion I
Chair: Jack Cole
  1115-
1140		 Protecting Privacy Credentials from Phishing and Spyware Attacks
S. Price		 SWAP:  Shared Wireless Access Protocol (using Reciprocity)
M. Dunlop, G. Perng, and D. Anderson		 Fuzzy Belief k-Nearest Neighbors Anomaly Detection of User to Root and Remote to Local Attacks
T. Chou and K. Yen
  1140-
1205		 Preserving User Location Privacy Based on Web Queries and LBS Responses
C. Bowen III and T. Martin		 On the Effort to Create Smartphone Worms in Windows Mobile
M. Becher, F. Freiling, and B. Leider		 Arachne: Integrated Enterprise Security Management
M. Burnside and A. Keromytis
  1205-
1230		 Privacy Preserving Reputation Inquiry in a Peer-to-Peer Communication Environment
B. Sy		 -- open -- An Efficient Network Anomaly Detection Scheme Based on TCM-KNN Algorithm and Dta Reduction Mechanism
Y. Li and L. Guo
Lawn
Terrace		 1230-
1400		 Lunch
Speaker:   Peiter Mudge Zatko, BBN Technologies
Sessions
Block V		 (Crest Terrace South)
Data Protection I
Chair: Qinghan Xiao		 (Crest Terrace North) 
Information Warfare I
Chair:  Sven Krasser		 (Hudson Gallery)
Intrusion II
Chair: Eric Imsand
  1400-
1425		 An Exploration on Security and Privacy Issues of Biometric Smart ID Cards
Q. Xiao and M. Savastano		 Analysis and Statistical Properties of Critical Infrastructure Interdependency Multiflow Models
N. Svendsen and S. Wolthusen		 GUI Usage Analysis for Masquerade Detection
E. Imsand and J. Hamilton Jr.
  1425-
1450		 An Elementary Electronic Voting Protocol Using RFID
X. Li, M. Carlisle, a. Kwan, L. Leung, A. Enemuo, and M. Anshel		 Identifying Image Spam based on Header and File Properties using C4.5 Decision Trees and Support Vector Machine Learning
S. Krasser, Y. Tang, J. Gould, D. Alperovitch, and P. Judge		 MSP-system: Mobile Secure Passport System to detect Malicious Users
S. Tahara, N. Kawaguchi, T. Inaba, H. Shiozawa, H. Shigeno, and K. Okada
  1450-
1515		 A Knowledge-Base Model for Insider Threat Prediction
Q. Althebyan and B. Panda		 Guiding Threat Analysis with Threat Source Models
K. Clark, C. Lee, S. Tyree, and J. Hale		 PANEMOTO: Network Visualization of Security Situational Awareness Through Passive Analysis
W. Streilein, K. Kratkiewicz, M. Sikorski, K. Piwowarski, and S. Webster
Crest
Room		 1515-
1545		 Break and Poster Session
Main
Entrance		 1545-
1600		 Bus (two trips) to South Dock
South
Dock		 1600-
1615		 Boarding
Hudson
River		 1615-
1745		 Hudson River Cruise A boat tour to see West Point from the Hudson River, with refreshments.  Participation is limited to the first 150 people who reserve a place during sign-in at the Hotel Thayer.  Registered attendees can take the cruise for free; guests will incur additional charges. 
South
Dock		 1745-
1815		 Bus (two trips) to Hotel Thayer
Lawn
Terrace		 1815-
1930		 Dinner and Best Paper Award
Speaker:  Randy Marchany, SANS

Friday, 22 June 2007

Sessions
Block VI		 (Crest Terrace South)
Data Protection II
Chair: Cynthia Irvine		 (Crest Terrace North) 
Information Warfare II
Chair:  Greg Conti		 (Hudson Gallery)
Secure Software Tech.
Chair: Martin Carlisle
  0830-
0855		 Memoization Attacks and Copy Protection in Partitioned Applications
C. O'Donnell, G. Suh, M. van Dijk, and S. Devadas		 Enhancing Internet Domain Name System Availability by Building Rings of Cooperation Among Cache Resolvers
N. Poolsappasit and I. Ray		 An Evaluation of NaïveBayesian Anti-Spam Filtering Techniques
V. Deshpande, R. Erbacher, and C. Harris
  0855-
0920		 H.264/AVC Stream Authentication at the Network Abstraction Layer
S. Ueda, Y. Shinzaki, H. Shegeno, K. Okada		 Traffic Flow Confidentiality in a Future Network Enabled Capability Enrironment
G. Hallingstad and L. Øverlier		 Vulnerability Analysis of SCADA Protocol Binaries through Detection of Memory Access Taintedness
C. Bellettini and J. Rrushi
  0920-
0945		 A Linux Implementation of Temporal Access Controls
K. Chiang, T. Nguyen, and C. Irvine		 Protocol of Secure Mutual Authentication
N. Miloslavskaya, A. Tolstoy, and D. Ushakov		 Design and Use of a Secure Testing Environment on Untrusted Hardware
M. Carlisle and L. Baird III
Crest
Room		 0945-
1015		 Break
Crest
Room		 1015-
1115		 Tutorial:  Wireless Security with Adam Laurie, Bunker Secure Hosting
Crest
Room		 1115-
1145		 Closing Remarks
LTC Ronald Dodge, Director, Information Technology and Operations Center, USMA
   
         
The IEEE Information Assurance Workshop is sponsored by the IEEE Systems Man and Cybernetics Society, supported by the National Security Agency, and hosted by the Information Technology Operations Center, Department of Electrical Engineering and Computer Science, at the United States Military Academy, West Point, New York.