Information Systems Security信息系统安全 ICISS 2005/会议录

This book constitutes the refereed proceedings of the First International Conference on Information Systems Security, ICISS 2005, held in Calcutta, India in December 2005. The 19 revised papers presented together with 4 invited papers and 5 ongoing project summaries were carefully reviewed and selected from 72 submissions. The papers discuss in depth the current state of the research and practice in information systems security and cover the following topics: authentication and access control, mobile code security, key management and cryptographic protocols, privacy and anonymity, intrusion detection and avoidance, security verification, database and application security and integrity, security in P2P, sensor and ad hoc networks, secure Web services, fault tolerance and recovery methods for security infrastructure, threats, vulnerabilities and risk management, and commercial and industrial security.

The LNCS series reports state-of-the-art results in computer science research, development, and education, at a high level and in both printed and electronic form. Enjoying tight cooperation with the R&D community,with numerous individuals, as well as with prestigious organizations and societies, LNCS has grown into the most comprehensive computer science research forum available.
The scope of LNCS, including its subseries LNAI and LNBI, spans the whole range of computer science and information technology including interdisciplinary topics in a variety of application fields. The type of material published traditionally includes
-proceedings (published in time for the respective conference)
-post-proceedings (consisting of thoroughly revised final full papers)
-research monographs (which may be based on outstanding PhD work,research projects, technical reports, etc.)

Authorization and Trust Enhanced Security for Distributed Applications
Toward Exploiting Location-Based and Video Information in Negotiated Access Control Policies
Understanding Mutable Internet Pathogens, or How I Learned to Stop Worrying and Love Parasitic Behavior
Building India as the Destination for Secure Software Development- Next Wave of Opportunities for the ICT Industry
Auditable Anonymous Delegation
A Robust Double Auction Protocol Based on a Hybrid Trust Model
VTrust: A Trust Management System Based on a Vector Model of Trust
Analysis and Modelling of Trust in Distributed Information Systems
EPAL Based Privacy Enforcement Using ECA Rules
An Attribute Graph Based Approach to Map Local Access Control Policies to Credential Based Access Control Policies
Protection of Relationships in XML Documents with the XML-BB Model
EISA - An Enterprise Application Security Solution for Databases
Event Detection in Multilevel Secure Active Databases
Key Management for Multicast Fingerprinting
A Key Reshuffling Scheme for Wireless Sensor Networks
CCMEA: Customized Cellular Message Encryption Algorithm for Wireless Networks
A Hybrid Design of Key Pre-distribution Scheme for Wireless Sensor Networks
Detecting ARP Spoofing: An Active Technique
Episode Based Masquerade Detection
A Game-Theoretic Approach to Credit Card Fraud Detection Modifications of SHA-0 to Prevent Attacks
How to Solve Key Escrow and Identity Revocation in Identity-Based Encryption Schemes
On Broadcast Encryption with Random Key Pre-distribution Schemes
A Framework for Examining Skill Specialization, Gender Inequity, and Career Advancement in the Information Security Field
SPEAR: Design of a Secured Peer-to-Peer Architecture
……
Author Index