Program

Program (2012-10-24 Updated with session chairs)

Program: NordSec 2012

Wednesday 31 October 2012

12:30-13:45 Lunch

13:45-14:00 Opening

14:00-15:30 Application Security, 3 full papers

Session chair: Erland Jonsson, Chalmers, Sweden

• Designed to Fail: A USB-Connected Reader for Online Banking, by Arjan Blom, Gerhard de Koning Gans, Erik Poll, Joeri de Ruiter, and Roel Verdult
• Security Add-Ons for Mobile Platforms, by Benjamin Adolphi and Hanno Langweg
• THAPS: Automated Vulnerability Scanning of PHP Applications by Torben Jensen, Heine Pedersen, Mads Chr. Olesen, and René Rydhof Hansen

15:30-16:00 break

16:00-17:00 Security Assurance: 3 short papers

Session chair: Stefan Axelsson, Blekinge Institute of Technology, Sweden

• Robust Authentication in Trusted Sensing Networks with Physically Uncloneable Functions, by Kristjan Valur Jonsson and Ymir Vigfusson.
• Cost-Effective Technical Countermeasures Against GUI Manipulation of .NET Programs, by Svein Roger Engen and Hanno Langweg.
• An Attempt to Structure Risk Assessment, by Laleh Pirzadeh

17:00-19:00 poster presentations and welcome reception sponsored by Netport

  

Thursday 1 November 2012

Introduction keynote talk: Bengt Carlsson, Blekinge Institute of Technology, Sweden

09:30-10:15 Keynote talk by Svante Nygren from MSB – Swedish Civil Contingencies Agency. Information security trends and challenges

10:15-10:45 break

10:45-12:45 Security Management, 4 full papers

Session chair: Ender Yüksel, Technical University of Denmark

• Cyber security exercises and competitions as a platform for cyber security experiments, by Teodor Sommestad and Jonas Hallberg
• The Development of Cyber Security Warning, Advice & Report Points, by Tony Proctor
• Towards an Empirical Examination of IT Security Infrastructures in SME, by Ramona Groner and Philipp Brune
• How to Select a Security Requirements Method? A comparative study  with students and practitioners, by Fabio Massacci and Federica Paci

12:45-13:30 lunch

Session chair:

13:30-15:00 System Security, 3 full papers

Session chair: Dieter Gollmann, Hamburg University of Technology, Germany

• There is Safety in Numbers: Preventing Control-Flow Hijacking by  Duplication, by Job Noorman, Nick Nikiforakis, and Frank Piessens
• Coinductive Unwinding of Security-Relevant Hyperproperties, by Dimiter Milushev and Dave Clarke
• Retooling and Securing Systemic Debugging, by Björn Ståhl and Per Mellstrand

15:00-15:30 break

15:30-16:30 Economics and Security: 3 short papers

Session chair: Lothar Fritsch, Norsk Regnesentral-Norwegian Computing Center, Norway

• Multi Agent Based Simulation (MABS) of Financial Transactions for Anti Money Laundering (AML), by Edgar Alonso Lopez-Rojas and Stefan Axelsson.
• V2GPriv*: Privacy-preserving Vehicle-to-Grid roaming based on untraceable payments, by Mark Stegelmann and Dogan Kesdogan
• Stakeholder Economics of Identity Management Infrastructures for the Web, by Jan Zibuschka and Heiko Roßnagel.

Dinner + best poster award

 

Friday 2 November 2012

09:30-11:00 Network Security, 3 full papers

Session chair: Simone Fischer-Huebner, Karlstad University, Sweden

• Cracking Associative Passwords, by Kirsi Helkala, Nils Kalstad Svendsen, Per Thorsheim, and Anders  Wiehe
• A Hybrid Approach for Highly Available & Secure Storage of Pseudo-SSO Credentials, by Jan Zibuschka and Lothar Fritsch
• Assessing the Quality of Packet-Level Traces Collected on Internet  Backbone Links, by Behrooz Sangchoolie, Mazdak Rajabi Nasab, Tomas Olovsson, and Wolfgang John

11:00-11:30 break

11:30-12:30 Trust Management, 2 full papers

Session chair: Audun Jøsang, UNIK / University of Oslo, Norway

• Everything but the Kitchen Sink: Determining the effect of multiple  attacks on privacy preserving technology users, by Jason W. Clark
• Privacy-Friendly Cloud Storage for the Data Track, by Tobias Pulls

12:30-13:30 lunch

Closing