Assurance Workshop
10 - 11 June 2004
United States Military Academy
West Point, New York
Download our complete workshop brochure and program on 20 April.
2004 IEEE Information Assurance Workshop Program Comittee:
|
Mr. Wenke Lee, Ph.D. |
GA TechUniversity |
|
Ms. Viiveke Fåk, Ph.D. |
Linköping University |
|
Mr. Adam Young, Ph.D. |
Research Scientist, Cigital, Inc. |
|
Mr. Brajendra Panda, Ph.D. |
University of Arkansas |
|
Mr. Michael Oehler |
Senior Researcher, NSA |
|
Mr. Jonas Hallberg, Ph.D. |
Swedish Defence Research Agency |
|
Mr. Jack Marin, Ph.D. |
BBN Technologies |
|
Mr. Nong Ye, Ph.D. |
Arizona State University |
|
Mr. J. Bret Michael, Ph.D. |
Naval Postgraduate School |
|
Mr. Stephen D. Wolthusen, Ph.D. |
Fraunhofer-IGD |
|
Mr. John Cole |
Army Research Labs |
|
Mr. Alec Yasinsac, Ph.D. |
Florida State University |
|
Mr. Grant Jacoby |
Doctoral Candidate,, Virginia Tech |
|
Mr. Bill McCarty, Ph.D. |
Azusa Pacific University |
|
Mr. John Levine, Ph.D. |
United States Military Academy |
|
Mr. Kevin Huggins |
Doctoral Candidate, Ecole des Mines de Paris |
|
Mr. Bill Streilein |
Information Systems Technology, MIT Lincoln Laboratory |
Based on attendance, events subject to modification.
Wednesday, 9 June
--Reception an Registration--
1:00 - 5:30
Registration
Hotel Thayer Lobby
4:30-5:30
Guided Tour of USMA
Departs Hotel Thayer at 4:30
5:30-6:30
USMA Museum Reception
(http://www.usma.edu/Museum/ )
6:30-9:00
Dinner Buffet
(Lawn Terrance, Hotel Thayer)
Thursday, 10 June, Thayer Hall
The IAW is being held in conjunction with the Colloquium for Information System Security Education (CISSE). Paper Track A is for paid CISSE attendees only. All CISSE and IEEE IAW attendees will be provided with color coded badges that will identify conference attendees: registered only for the CISSE, registered only for the IEEE IAW, or registered for both the CISSE and the IEEE IAW.
7:30-8:15
Continental Breakfast Buffet
(Thayer Hall)
8:30-8:45
Welcome
Colonel George B. Forsythe , Vice Dean for Education, USMA
Room: TH143
8:45-9:30
Opening Keynote
Eric Haseltine, CTO, NSA. Room: TH143
9:30-10:45
Papers Session I
|
Track A: CISSE: IA Program Development Session Chair: |
|
Infrastructure Assurance: The New "I" in Information Assurance Education Aaron Ferguson
The Success of the UT IEEE Communications Society George Chamles, Adam Pridgen
Implementation and Lessons Learned from an Undergraduate Special Interest Group in Information Assurance Gregory Conti, Daniel Ragsdale, Scott Lathrop, Christopher Gates
Preparing the next generation of SE students for a brave new world: Making the case for an early introduction of ISSE Susan Hansche |
|
Track B: HoneyNets I Session Chair: Shambhu J Upadhyaya |
|
A Mechanism for Automatic Digital Evidence Collection on High-Interaction Honeypots Martim d'Orey Posser de Andrade Carbone, and Paulo Lício de Geus
An Investigation of a Compromised Host on a Honeynet Being Used to Increase the Security of a Large Enterprise Network Timothy R. Jackson, John G. Levine, Julian B. Grizzard, and Henry L. Owen
Application of a Methodology to Characterize Rootkits Retrieved from Honeynets John Levine, Julian Grizzard, and Henry Owen
Honeypot forensics Frederic Raynal, Yann Berthier, Philippe Biondi, and Danielle Kaminsky |
|
Track C: Intrusion Response and Recovery Session Chair: William Streilein |
|
Misleading Attackers with Deception Fred Cohen and Deanna Koike
Overview of a High Assurance Architecture for Distributed Multilevel Security Cynthia E. Irvine, Timothy E. Levin, Thuy D. Nguyen, David Shifflett, Jean Khosalim, Paul C. Clark, Albert Wong, Francis Afinidad, David Bibighaus, and Joseph Sears
Defending Against Traffic Analysis Attacks with Link Padding for Bursty Traffics Wei Yan, Edwin Hou, and Nirwan Ansari
Security in Software Architecture: a Case Study Adam Sachitano, Richard O. Chapman, and John A. "Drew" Hamilton |
|
Track D: Intrusion Detection I Session Chair: Alec Yasinsac |
|
Anomalous Packet Identification for Network Intrusion Detection Douglas H. Summerville, Nnamdi Nwanze, and Victor A. Skormin
Searching Covert Channels by Identifying Malicious Subjects in the Time Domain Changda Wang, Shiguang Ju
Protocol Anomaly Detection and Verification InSeon Yoo
Windows NT One-class Masquerade Detection Ling Li, and Constantine N. Manikopoulos |
|
Track E: Advanced Topics Session Chair: Stephen D. Wolthusen |
|
Context-Based Adaptive Control in Autonomous Systems Abdur Rahim Choudhary and Jide Odubiyi
LSB Steganalysis Using Support Vector Regression Erwei Lin, Edward Woertz, and Moshe Kam
Modeling Critical Infrastructure Requirements Stephen D. Wolthusen
The Trusted Computing Exemplar Project Cynthia E. Irvine, Timothy E. Levin, Thuy D. Nguyen, and George W. Dinolt |
10:45-11:15
Break
11:15-12:30
Papers Session II
|
Track A: CISSE: IA Curriculum Development Session Chair: |
|
Information Assurance Capacity Building: A Case Study Naomi Falby, J.D. Fulp, Paul C. Clark, R. Scott Cote, Cynthia E. Irvine, George W. Dinolt, Timothy E. Levin, Matthew Rose, Deborah Shifflett
Teaching Information Security Policy Herbert J. Mattord, Michael E. Whitman
Beyond Compliance: Cultural Change Enabling Transformation to a Security-focused Culture through Communications Ellen C. Roth
.edu, Partner or Pariah: A New Paradigm for University/Community Partnerships in Cyber Security Gregory B. White, Timothy Goles |
|
Track B: HoneyNets II Session Chair: John Cole |
|
Honeyfiles: Deceptive Files for Intrusion Detection Jim Yuill, Mike Zappe, Dorothy Denning, and Fred Feer
NoSEBrEaK - Attacking Honeynets Maximillian Dornseif, Thorsten Holz, Christian N. Klein
UML Extensions for Honeypots in the ISTS Distributed Honeypot Project Christopher Carella, Jeff Dike, Naomi Fox, and Mark Ryan
Determining the Strength of a Decoy System: A Paradox of Deception and Solicitation Christopher J. Jordan, Qiang Zhang, and Jason Royes |
|
Track C: Cryptography Session Chair: William Suchan |
|
Public Key Cryptography with Matrices Mukesh Kumar Singh
On the Security of Random Key Pre-distribution Scheme Mahalingam Ramkumar, Nasir Memon
Matrix Based Asymmetric Bulk Encryption Algorithm Mukesh Kumar Singh
Evolution of In-line Network Encryptors Toward the High Assurance Internet Protocol Interoperability Specifications (HAIPIS) J. B. Widby, R. D. Del Rio, D. O. Fulton, and COL C. Dunn |
|
Track D: Intrusion Detection II Session Chair: Eric Fretheim |
|
Simplified Protocol Capture (SIMPCAP) Michael W. Corley, Michael W. Weir, Kenric Nelson, and Andrew J. Karam
The New Criteria for Covert Channels Auditing Changda Wang and Shiguang Ju
Architecture of the Reconnaissance Intrusion Detection System (RIDS) Zheng Zhang and Constantine N. Manikopoulos
Dimension Reduction Using Feature Extraction Methods for Real-time Misuse Detection Systems Gopi K. Kuchimanchi, Vir V. Phoha, Kiran S. Balagani, and Shekhar Gaddam |
|
Track E: Policy and Defensive Measures I Session Chair: Bill McCarty |
|
Security Feature Comparison for Fibre Channel Storage Area Networks Switches Casimer DeCusatis, and Robert Atkins
Towards the Specification of Access Control Policies on Multiple Operating Systems Lawrence Teo and Gail-Joon Ahn
Dynamic Document Reclassification for Preventing Insider Abuse A. Garg, S. Pramanik, V. Sankaranarayanan, and S. Upadhyaya
Measuring IT Security - a Method Based on Common Criteria’s Security Functional Requirements Amund Hunstad, Jonas Hallberg, and Richard Andersson |
12:30-2:00
Lunch
Bill Cheswick (West Point Officer’s Club)
2:00-3:15
Information Security Top 5 Priorities (Panel)
Panel Chair: Jack Marin, BBN Technologies Room: TH143
3:15-3:45
Break
3:45-5:00
Papers Session III
|
Track A: CISSE: IA Program Development II Session Chair: |
|
Designing A Computer Forensics Course for an Information Assurance Track Barbara Endicott-Popovsky, V. M. Popovsky, Deb Frincke
Is it Safe? Information Security Education: Are We Teaching a Dangerous Subject? Patricia Logan, Allen Clarkson
Embedding Industry Standards within the Undergraduate IT Security Curriculum: An Australian Implementation Jill Slay
A Draft Model Curriculum for Programs of Study in Information Security and Assurance Michael E. Whitman, Herbert J. Mattord |
|
Track B: CISSE: IA Technical Research Session Chair: |
|
Event Data and Intrusion Alert Correlation in Heterogeneous Networks Ronja Addams-Moring, Antti Hätälä, Camillo Särs, Teemupekka Virtanen
Electronic Forensic Education Needs of Law Enforcement Helen Armstrong, Phillip Russo
Teaching Computer Forensics: Uniting Practice with Intellect Colin Armstrong, Nimal Jayaratna
Infosec Education and Expert Witnessing William J Caelli, Caroline L Allinson |
|
Track C: Wireless Security and Ad Hoc Networking Session Chair: Brajendra Panda |
|
Secure Communications in Ad Hoc Networks Mike Burmester and Tri Van Le
Developing and delivering hands-on information assurance exercises: Experiences with the Cyber Defense Lab at UMBC Alan T. Sherman, Brian O. Roberts, William E. Byrd, Matthew R. Baker, and John Simmons
A Biometric Authentication Approach for High Security Ad Hoc Networks Qinghan Xiao
Tactical Bandwidth Exhaustion in Ad Hoc Networks Qijun Gu, Peng Liu, Chao-Hsien Chu |
|
Track D: Intrusion Detection III Session Chair: Julie Ryan |
|
The Application of a Low Pass Filter in Anomaly Network Intrusion Detection Jun Li and Constantine Manikopoulos
Anomaly intrusion detection using one class SVM Yanxin Wang, Johnny Wong, and Andrew Miner
A Game Theoretic Approach to Modeling Intrusion Detection in Mobile Ad Hoc Networks Animesh Patcha and Jung-Min Park
Network Abuse Detection via Flow Content Characterization Mehdi Kharrazi, Kulesh Shanmugasundaram, and Nasir Memon |
|
Track E: Advanced Topics III Session Chair: Curt Carver |
|
Agent Based Multilevel Dynamic Multimedia Security System Hongwei Li and Atam Dhawan
SILT: Integrated Logging Management for Security-Enhanced Linux Nicholas Davis, Perry Holloway II, and John Hale
Advancing Assurance for Security Distributed Communications G. Bella and S. Bistarelli
The Manuka Project Barbara Endicott-Popovsky, Dave Dittrich, Amelia Phillips, Deb Frincke, Jose Chavez, W. Jenks Gibbons, Don Nguyen, Christian Seifert, Amy Shephard, Chris Abate, Shawn Loveland |
5:00 - 6:00
Open Time
6:30 - 10:00
Best Paper Award Dinner
Friday, 11 June,
8:00 - 8:30
Continental Breakfast
8:30 - 10:15
Papers Session IV
|
Track A: Policy and Defensive Measures II Session Chair: David Barlow |
|
Qualitative and Quantitative Analytical Techniques for Network Security Assessment Kevin Clark, Stephen Tyree, Jerald Dawkins, and John Hale
Simulation for Training Computer Network Operations L. DeLooze, Paul McKean, John R. Mostow, and Christopher Graig
Enhanced Secure Dynamic DNS Update with Indirect Route David Wilkinson, C. Edward Chow and Yu Cai
Analyzing the Security and Survivability of Real-time Control Systems Paul Oman, Axel Krings, Daniel Conte de Leon, and Jim Alves-Foss |
|
Track B: Intrusion Response and Recovery II Session Chair: Grant Jacoby |
|
Fuzzy Dependency and Its Applications in Damage Assessment and Recovery Yanjun Zuo and Brajendra Panda
Battery-Based Intrusion Detection: A First Line of Defense Grant A. Jacoby, Randy Marchany, and Nathaniel J. Davis IV
Classification of Computer Attacks using a Self-Organizing Map Lori L. DeLooze
Limitations of On Demand Secure Routing Protocols Prabha Ramachandran, Alec Yasinsac |
|
Track C: Forensics Session Chair: Wenke Lee |
|
Forensics for Advanced UNIX File Systems Knut Eckstein
A Secure Logging Scheme for Forensic Computing Nobutaka Kawaughi, Shintaro Ueda, Naohiro Obata, Reina Miyaji, Shinichiro Kaneko, Hiroshi Shigeno, and Kenichi Okada
Developing Forensic Computing Tools and Techniques within a holistic framework: an Australian Approach Jill Slay, Mathew Hannan, Vlasti Broucek, and Paul Turner
Mining Data Relationships for Database Damage Assessment in a Post Information Warfare Scenario Yi Hu, Brajendra Panda |
|
Track D: Advanced Topics III Session Chair: John Levine |
|
Who has the keys to the vault? Protecting secrets on Laptops Helen Armstrong, Mike Wynne, and Tony O’Shea
Investigation of Pushback Based Detection and Prevention of Network Bandwidth Attacks Ningning Wu, and Jing Zhang
Recursive Data Mining for Masquerade Detection Recursive Data Mining for Masquerade Detection Boleslaw K. Szymanski, Yongqiang Zhang |
|
Track E: Poster Session Session Chair: John James |
|
Markov Chains in Network Intrusion Detection Rena Hixon and Don M. Gruenbacher
GSWLAN: A New Architecture Model for a Generic and Secure Wireless LAN System Mohit Virendra, Shambhu Upadhyaya, and Xin Wang
Attack Attribution in Non-Cooperative Networks Donald Cohen and K. Narayanaswamy
IP-Traceback Based Attacker Tracking: A Probabilistic Technique for Detecting Internet Attacks Using the Concept of Hidden Markov Models Raviteja Varanasi, Vir V. Phoha, and Shrijit Joshi
Iterative Incentive Scheme for Outsourced IA Edward Schmitz, C. Ariel Pinto, Ashish Arora, and Rahul Telang
Adding the Fourth "R" Barbara Endicott-Popovsky and Deb Frincke
Towards a Trusted Immutable Kernel Extension (TIKE) for Self-Healing Systems: a Virtual Machine Approach Julian B. Grizzard, Eric R. Dodson, Gregory J. Conti, John G. Levine, Henry L. Owen
CLIQUE Clustering Approach to Detect Denial-of-Service Attacks Santosh K. Bethi, Vir V. Phoha, and Yenumula B. Reddy
Designing an Information Security System Cheryl Resch |
10:15 - 10:45
Break
10:45 - 12:00
Proactive Network Defense (Panel)
Panel Chair: Randy Marchany, Virginia Tech University