Paper List for "CS 6973: Applied Cryptography"

This list includes quite different topics (in a randomized order), of which you may choose one for the purpose of this course. It might be a good idea that you choose the one you feel most interested in and excited.

After you select you topic, it is likely I will give some more papers.

Topic 1. Cryptovirus

  1. A. Young and M. Yung. Cryptovirology: extortion-based security threats and countermeasures. IEEE Security and Privacy 1996.
  2. A. Young and M. Yung. Deniable password snatching: on the possibility of evasive electronic espionage. IEEE Security and Privacy 1997.
  3. Claude Crépeau, Alain Slakmon. Simple Backdoors for RSA Key Generation. CT-RSA 2003.
  4. Adam Young, Moti Yung. Malicious Cryptography: Kleptographic Aspects. CT-RSA.

Topic 2. Timing Analysis

  1. D. Song, D. Wagner, and X. Tian. Timing Analysis of Keystrokes and Timing Attacks on SSH. Usenix Security 2001 .
  2. D. Boneh and D. Brumley. Remote timing attacks are practical. Usenix Security 2003.
  3. Onur AciiÇmez, Werner Schindler, and Çetin Kaya KoÇ. Improving Brumley and Boneh Timing Attack on Unprotected SSL Implementations. ACM CCS 2006.

Topic 3. Counter-DDOS I

  1. J. Millen. A Resource Allocation Model for Denial of Service. IEEE Security and Privacy 1992.
  2. D. Moore, G. Voelker, and S. Savage. Inferring Internet Denial of Service Activity. Usenix Security 2001.
  3. M. Sung, M. Haas, and J. Xu. Analysis of DoS attack traffic data. Computer Security Incident Handling Conference 2002.
  4. A. Hussain, J. Heidemann, C. Papadopoulos. A Framework for Classifying Denial of Service Attack. ACM SIGCOMM 2003.
  5. V. Gligor. Guaranteeing Access in Spite of Service-Flooding Attacks. Security Protocols 2003.
  6. J. Xu and W. Lee. Sustaining Availability of Web Services under Distributed Denial of Service Attacks. IEEE Transaction on Computers.

Topic 4. Counter-DDOS II

  1. S. Savage, D. Wetherall, A. Karlin, and T. Anderson. Practical Network Support for IP Traceback. ACM SIGCOMM 2000.
  2. D. Song and A. Perrig. Advanced and Authenticated Marking Schemes for IP Traceback. IEEE INFOCOMM 2001.
  3. D. Dean, M. Franklin, and A. Stubblefield. An algebraic approach to IP traceback. NDSS 2001.
  4. A. Snoeren, C. Partridge, L. Sanchez, C. Jones, F. Tchakountio, S. Kent, and W. Strayer. Hash-Based IP Traceback. ACM SIGCOMM 2001.
  5. M. Sung and J. Xu. IP Traceback-based Intelligent Packet Filtering: A Novel Technique for Defending Against Internet DDoS Attacks. ICNP 2002.
  6. M. Goodrich. Efficient Packet Marking for Large-Scale IP Traceback. ACM CCS 2002.
  7. A. Yaar, A. Perrig, and D. Song. Pi: A Path Identification Mechanism to Defend against DDoS Attacks. IEEE Security and Privacy 2003.

Topic 5. Counter-DDOS III

  1. Ju Wang, Xin Liu, and Andrew A. Chien. Empirical Study of Tolerating Denial-of-Service Attacks with a Proxy Network. Usenix Security 2005.

Topic 6. Worm Signature

  1. Vinod Yegneswaran, Jonathon T. Giffin, Paul Barford, and Somesh Jha. An Architecture for Generating Semantic Aware Signatures. Usenix Security 05.
  2. James Newsome, Brad Karp, Dawn Song. Polygraph: Automatically Generating Signatures For Polymorphic Worms. Okland 2005.

Topic 7. Honeypots

  1. K. G. Anagnostakis et al. Detecting Targeted Attacks Using Shadow Honeypots. Usenix Security 2005.
  2. John Bethencourt, Jason Franklin, and Mary Vernon. Mapping Internet Sensors with Probe Response Attacks. Usenix Security 2005.

Topic 8. Sensor Network Security I

  1. Bryan Parno, Adrian Perrig, Virgil Gligor. Distributed Detection of Node Replication Attacks in Sensor Networks. Okland 2005.
  2. Jonathan M. McCune, Elaine Shi, Adrian Perrig, Michael K. Reitern. Detection of Denial-Of-Message Attacks on Sensor Network Broadcasts. Okland 2005.

Topic 9. MANET and Sensor Network Security II

  1. Laurent Eschenauer, Virgil D. Gligor. A key-management scheme for distributed sensor networks.
    ACM CCS 2002.

Topic 10. Anti-Worm

  1. D. Moore, C. Shannon, and J. Brown. Code-Red: a case study on the spread and victims of an Internet worm. ACM SIGCOMM/USENIX Internet Measurement Workshop 2002.
  2. D. Moore, V. Paxson, S. Savage, C. Shannon, S. Staniford, and N. Weaver. Inside the Slammer Worm. IEEE Security and Privacy Maganize 2003.
  3. D. Moore, C. Shannon, G. Voelker, and S. Savage. Internet Quarantine: Requirements for Containing Self-Propagating Code. IEEE INFOCOMM 2003.
  4. Z. Chen, L. Gao, and K. Kwiat. Modeling the Spread of Active Worms. IEEE INFOCOMM 2003.
  5. C. Zou, W. Gong, and D. Towsley. Code Red Worm Propagation Modeling and Analysis. ACM CCS 2002.
  6. C. Zou, W. Gong, and D. Towsley. Worm Propagation Modeling and Analysis under Dynamic Quarantine Defense. WORM 2003.
  7. C. Zou, L. Gao,W. Gong, and D. Towsley. Monitoring and Early Warning for Internet Worms. ACM CCS 2003.

Topic 11. Certificate Revocation List

  1. P. McDaniel and S. Jamin. Windowed Certificate Revocation. IEEE INFOCOM 2000.
  2. R. Wright, P. Lincoln, and J. Millen. Depender Graphs: A Method of Fault-Tolerant Certificate Distribution. ACM CCS 2000.
  3. M. Goodrich, R. Tamassia, and J. Hasic. An Efficient Dynamic and Distributed Cryptographic Accumulator. Information Security Conference (ISC 2002).

Topic 12. Confidence on PKI

  1. U. Maurer. Modelling a Public-Key Infrastructure. ESORICS' 96.
  2. M. Naor and K. Nissim. Certificate Revocation and Certificate Update. Usenix Security 1998.
  3. R. Kohlas and U. Maurer. Reasoning About Public-Key Certification - On Bindings Between Entities and Public Keys. Financial Crypto'99 (also IEEE JSAC 2000).
  4. R. Kohlas and U. Maurer. Confidence Valuation in a Public-key Infrastructure Based on Uncertain Evidence. PKC00.
  5. M. Reiter and S. Stubblebine. Authentication Metric Analysis and Design. IEEE Security and Privacy 1997 (also ACM TISSEC 1999).