|
|
|
|
[2010][2009] [08 | 07 | 06 | 05 | 04 | 03 | 02 | 01 | 00 | 99]
|
||
2010
|
||
COMCOM
|
Choi, Y. H., Liu, P. and
Seo, S. W. “Using Information Collected by Botnets to Create Importance
Scanning Worms,” Elsevier Computer
Communications Journal, accepted |
|
TDSC
|
X. Wang, C. Pan, P.
Liu, S. Zhu, SigFree: A Signature-free Buffer Overflow Attack Blocker, IEEE Transactions on Dependable and Secure
Computing (TDSC), accepted, in press
|
|
ARES
|
Hai Wang, Yan Su, Peng Liu,
"A Semi-Markov Survivability Evaluation Model for Intrusion Tolerant
Database Systems," accepted for publication in ARES 2010 (The Fifth International Conference on
Availability, Reliability and Security) |
|
|
2009 |
||
Cyber
Situation
Awareness
|
S. Jajodia, P. Liu, V. Swarup, C. Wang (eds.), Cyber Situational Awareness: Issues and Research, Springer,
published in Nov. 2009
|
|
ACSAC
|
X. Wang, Y. C. Jhi, S. Zhu, P. Liu, “Detecting Software Theft via
System Call Based Birthmarks”, Proc. ACSAC, 2009, accepted, to appear.
19.6% acceptance rate. |
|
ACSAC
|
X. Xiong, X. Jia, P. Liu, “SHELF: Preserving Business Continuity and
Availability in an Intrusion Recovery System”, Proc. ACSAC, 2009,
accepted, to appear. 19.6% acceptance rate. |
|
VMSEC
|
Zhang, S., Xiong, X., Jia, X. and Liu, P. (2009) “Availability-sensitive
Intrusion Recovery”, Proceedings of Second ACM Workshop on Virtual Machine
Security, Chicago, IL, November 2009, 6 page position paper |
|
CCS
|
X. Wang, Y. C. Jhi, S. Zhu, P. Liu, “Behavior Based Software
Theft Detection,” Proc. ACM
CCS, 2009,
accepted, to appear. |
|
TKDE
|
B. Zheng, W. C. Lee, P.
Liu, D. L. Lee, X. Ding, Tuning On-Air Signatures for Balancing Performance
and Confidentiality, IEEE Transactions
on Knowledge and Data Engineering, Vol. 21, Issue. 12, pp. 1783-1797, Dec. 2009 |
|
TDSC
|
Q. Gu, P.
Liu, W. C. Lee, C. H. Chu, KTR: An Efficient Key Management Scheme For Secure
Data Access Control in Wireless Broadcast Services, IEEE Transactions on Dependable and Secure Computing (TDSC), Volume 6, Number 3, July-Sept. 2009, pp. 188-201. [PDF]
|
|
EDBT
|
Damage
Tracking Quarantine and Recovery for Mission-Critical Database Systems, Proc.
EDBT 2009, to appear
|
|
COSE
|
Yoon-Ho Choi,
Lunquan Li, Peng Liu, George Kesidis, “Worm Virulence Estimation for the Containment of Local Worm Outbreak,” Elsevier Computers & Security journal, accepted, to appear
|
|
NCA
|
Meng Yu, Peng
Liu, Wanyu Zang: The implementation and evaluation of a recovery system for
workflows. Elsevier J. Network and
Computer Applications 32(1): 158-183 (2009)
|
|
SCN
|
Yoon-Chan
Jhi, Peng Liu, Lunquan Li, Qijun Gu, Jiwu Jing,
George Kesidis, PWC: A Proactive Worm Containment Solution for Enterprise
Networks, Wiley Security and
Communication Networks Journal, accepted, to appear
|
|
SCN
|
Jun Shao, Zhenfu Cao, Peng Liu, SCCR: a
generic approach to simultaneously achieve CCA security and
collusion-resistance in proxy re-encryption, Wiley Security and Communication Networks Journal, accepted, to
appear
|
|
|
|
K. Bai, Ying Liu,
Peng Liu, “Prevent Identity Disclosure in Social Network Data Study,” Proc.
ACM CCS 2009, poster
Zang, W., Gu, Q., Yu, M.
and Liu, P. (2009) “An Attack-Resilient Channel Assignment MAC Protocol Not
relying on Trust Management”, Proc. International Workshop on Data
Security and Privacy in Emerging Networked Systems, in association
with NBiS, Indianapolis, Aug. 19-21. Ruidong Li, Jie Li, Peng Liu, Jien
Kato, “A Novel Hybrid Trust Management Framework for MANETs,” Proc. 2009 International Workshop on Next
Generation Network Architecture (NGNA 2009) , in
association with ICDCS’09.
M. Yung, P. Liu, D. Lin (eds.), Information Security and
Cryptology,
Springer Lecture Notes in Computer Science, 2009, ISBN 3-540-36796-9
P. Liu, R. Molva,
R. D. Pietro (eds.), Proceedings of the
fourth International Conference on Security and Privacy in Communication
Networks (Securecomm 2008), ACM Digital Library, 2008
M. Yung, P. Liu, D. Lin (eds.), Information Security and Cryptology - Proceedings
of the Short Papers Presented on Inscrypt 2008, Chinese Science Press, 2009
Zang, W., Liu, P. and Yu,
M. (2009) “Incentive-based Methods for Inferring Attacker Intent and
Strategies and Measuring Attack Resilience,” in Annals of Emerging
Research in IA, Security and Privacy Service, H. R. Rao
and Shambhu Upadhyaya (eds.), Elsevier, in press. Barford, P., Dacier, M.,
Dietterich, T. G., Fredrikson, M., Giffin, J., Jajodia, S., Jha, S., Li,
J., Liu, P., Ning, P., Ou, X., Song,
D., Strater, L., Swarup, V., Tadda, G., Wang, C. and Yen, J. (2009) “Cyber
SA: Situational Awareness for Cyber Defense,” in Cyber Situational
Awareness: Issues and Research, S. Jajodia, P. Liu, V. Swarup, C. Wang
(Eds.), ISBN: 98-1-4419-0139-2, Springer International Series on Advances in
Information Security, Nov. 2009 Yen, J., McNeese, M., Mullen, T., Hall, D., Fan,
X. and Liu, P. (2009) “RPD-based Hypothesis Reasoning for Cyber Situation
Awareness,” in Cyber Situational Awareness: Issues and Research, S.
Jajodia, P. Liu, V. Swarup, C. Wang (Eds.), ISBN: 98-1-4419-0139-2, Springer
International Series on Advances in Information Security, Nov. 2009
Liu, P., Jia, X., Zhang,
S., Xiong, X., Jhi, Y. C., Bai, K. and Li, J. (2009) “Cross-Layer Damage
Assessment for Cyber Situational Awareness,” in Cyber Situational
Awareness: Issues and Research, S. Jajodia, P. Liu, V. Swarup, C. Wang
(Eds.), ISBN: 98-1-4419-0139-2, Springer International Series on Advances in
Information Security, Nov. 2009 Liu, P., La Porta, T. and
Kotapati, K. (2009) “Cellular Network Security,” in Handbook of Wireless
Networks, John R. Vacca (editor), Morgan Kaufmann, published. P.
Luenam, P. Liu, A. F. Norcio, A
Neuro-Fuzzy Approach towards Adaptive Intrusion Tolerant Database Systems, in
Computational Intelligence and Its
Applications, X. Li, X. Yao (eds.), USTC Press, Hefei, China, 2009
Kun Bai, Damage Management in Database Management Systems, Ph.D. Dissertation, defended in Summer
2009 |
|
2008
|
||
VMSEC
|
X. Jia,
|
|
ACSAC
|
|
|
ACSAC
|
X. Wang, Y-C
Jhi, S. Zhu, P. Liu, STILL: Exploit Code Detection via Static Taint and
Initialization Analyses Proceedings of
24th Annual Computer Security Applications Conference (ACSAC), 2008
|
|
ESORICS
|
K. Bai, P. Liu, M. Yu, TRACE: Zero-down-time
Database Damage Tracking, Quarantine, and Cleansing with Negligible Run-time
Overhead, Proc. ESORICS
2008
|
|
WINET
|
Kameswari Kotapati,
|
|
TELESYS
|
K. Kotapati, P.
Liu, T. F. LaPorta, Dependency Relation based Vulnerability Analysis of 3G
Networks: Can It Identify Unforeseen Cascading Attacks? Springer Telecommunications Systems Journal, special issue on “Security,
Privacy and Trust for Beyond-3G Networks,” in press [PDF]
|
|
|
|
Q.
Gu, C. H. Chu, P. Liu, Modeling and Analysis of Bandwidth Competition in
802.11 Networks, International Journal
of Mobile Network Design and Innovation, in press.
F.
Li, B. Luo, P. Liu, D. Lee, P. Mitra, W. Lee, C. Chu, In-broker Access
Control: Towards Efficient End-to-End Performance of Information Brokerage
Systems, International Journal on
Intelligent Control and Systems, Special Issue on Information Assurance,
in press.
W.
Zang, M. Yu, P. Liu, How Resilient is the Internet against DDoS attacks? - A
Game Theoretic Analysis of Signature-based Rate Limiting, International Journal on Intelligent
Control and Systems, Special Issue on Information Assurance, in press.
X.
Wen, J. Jing, P. Liu, A model of efficient intrusion recovery solution based
on log-structured file system, Journal of
the Graduate School of the Chinese Academy of Sciences (JGSCAS), No. 6,
2008 L. Li, P. Liu, G. Kesidis,
Threshold Smart Walk for the Containment of Local Worm Outbreak, Proc. IEEE GLOBECOM 2008
F. Li, R. Luo, P. Liu, A.
Squicciarini, D. Lee, C. Chu, Defending against Attribute-Correlation Attacks
in Privacy-Aware Information Brokering, Proc.
CollaborateCom 2008, invited paper
K.
Bai, P. Liu, A Fine-grained Damage Management Scheme in a Self-Healing
PostgreSQL System, Proc. IEEE High
Assurance Systems Engineering Symposium (HASE), Dec 3-5, 2008, Nanjing,
China Xinran Wang,
Yoon-Chan Jhi, Sencun Zhu, Peng Liu, Protecting Web Services from Remote
Exploit code: A Static Analysis Approach, Poster paper, Proc. 17th International World Wide Web Conference (WWW 2008), Beijing, China, April
2008, to appear.
K.
Bai, P. Liu, A Light Weighted Damage Tracking Quarantine and Recovery Scheme
for Mission-Critical Database System, poster paper, Proceedings of ACM CIKM 2008. Yuewu Wang,
|
|
2007
|
||
CCS
|
|
|
ESORICS
|
] B. Luo, D. Lee,
P. Liu, Pragmatic XML Access Control Enforcement using Off-the-shelf
RDBMS, ESORICS 2007, pages
55-71. [PDF]
|
|
SRDS
|
J. Lin, J. Jing, P.
Liu, A Framework for Intrusion Tolerant Certification Authority System
Evaluation, IEEE SRDS 2007,
acceptance rate = 15%
|
|
ACSAC
|
M. Yu, W. Zang, P.
Liu, Database Isolation and Filtering against Data Corruption Attacks, ACSAC 2007.
|
|
SecureComm
|
Y. Jhi, P. Liu, L.
Li, Q. Gu, J. Jing, G. Kesidis, PWC: A Proactive
Worm Containment Solution for Enterprise Networks, IEEE SecureComm 2007. [PDF]
|
|
ASIACCS
|
P. Ayyagari, P. Mitra, D. Lee, W. Lee, P. Liu, Incremental
Adaptation of XML Access-Control Views, Proc.
Second ACM Symposium on Information, Computer and
Communications Security
(AsiaCCS), 2007, acceptance rate = 18%.
|
|
TC
|
|
|
|
|
Q. Gu, P. Liu, C. Chu, Analysis of Area-congestion-based DDoS
Attacks in Ad Hoc Networks, Elsevier Ad
Hoc Networks Journal, Vol. 5/5, 2007, pages 613-625. [PDF]
H.
Wang, P. Liu, L. Li, Evaluating the Survivability of Intrusion Tolerant
Database Systems and the Impact of Intrusion Detection Deficiencies, International Journal of Information and
Computer Security, Vol. 1, No. 3, pp. 315-340.
Q.
Gu,
P. Liu, S. Zhu, C. Chu, Defending against Packet Injection Attacks in
Unreliable Ad Hoc Networks, International Journal of Security and Networks,
Vol. 2, 2007, pages 154-169. [PDF]
W. Zang, M. Yu, P. Liu, A Distributed Algorithm for Workflow Recovery, International Journal on Intelligent
Control and Systems, Volume
12, Number 1, March 2007
Page(s):
56- 62
M.
Yu, P. Liu, S. Jajodia, Trusted Recovery, in Secure Data Management in Decentralized Systems, T. Yu, S.
Jajodia, eds., Springer,
|
|
2006
|
||
USENIX Security
|
X. Wang, C. Pan, P.
Liu, S. Zhu, SigFree: A Signature-free Buffer Overflow Attack Blocker, Proc. USENIX Security 2006, acceptance
rate = 12% [PDF]
|
|
ESORICS
|
H. Wang, P. Liu, Modeling and
Evaluating the Survivability of an Intrusion Tolerant Database System, Proc. ESORICS 2006, acceptance rate = 20%
|
|
ACSAC
|
K. Bai, P. Liu, Towards Database
Firewall: Mining the Damage Spreading Patterns, Proc. ACSAC 2006, to appear, acceptance
rate = 20%
|
|
SACMAT
|
P. Mitra, C. Pan,
P. Liu, Semantic Access Control for Information
Interoperation, Proc. ACM
SACMAT 2006, to appear.
|
|
ASIACCS
|
] P. Mitra, C. Pan, P. Liu, V. Atluri, Privacy-preserving Semantic
Interoperation and Access Control of Heterogeneous Databases, Proc. ACM Symposium on Information,
Computer and Communications Security (ASIACCS), 2006, to appear, acceptance
rate = 17% [PDF]
|
|
SEC
|
K. Kotapati, P.
Liu, T. F. LaPorta, CAT – A Practical Graph & SDL Based Toolkit for
Vulnerability Assessment of 3G Networks, In Proc. IFIP SEC 2006, to appear, acceptance rate = 24.8% [PDF]
|
|
|
|
F. Li, B. Luo, P.
Liu, D. Lee, P. Mitra, W. Lee, C. Chu, In-broker Access Control: Towards
Efficient End-to-End Performance of Information Brokerage Systems, Proc. IEEE SUTC 2006, acceptance rate
= 25% [PDF]
L.
Li, I. Hamadeh, S. Jiwasurat,
G. Kesidis, P. Liu, C. Newman, Emulating Sequential Scanning Worms on the
DETER Testbed, Proc. IEEE TridentCom ’06. [PDF]
L. Li, P.
Liu, G. Kesidis, Visual Studio for Network Security Experiment Specification
and Data Analysis, Proc. ACM VizSEC Workshop 2006 (in association with CCS’06), Nov 2006.
R.
Li, J. Li, P. Liu, H. H. Chen, On-Demand Public-Key Management for Mobile Ad
Hoc Networks, Wiley Journal of Wireless Communications and
Mobile Computing (WCMC), 6:1-12, 2006.
P.
Liu, J. Jing, Architectures for Self-Healing Databases under Cyber Attacks, Journal of Computer Science and Network Security, Vol. 8, No. 1B,
2006, pages 204-216.
Q. Gu, Chao-Hsien Chu,
|
|
2005
|
||
TISSEC
|
P. Liu, W. Zang, M.
Yu, Incentive-Based Modeling and Inference of Attacker Intent, Objectives
and Strategies, ACM Transactions on Information and Systems Security, Vol. 8, No. 1, 41 pages. [PDF]
|
|
JCS
|
M. Yu, P. Liu, W.
Zang, Specifying and Using Group-to-Group Communication Services for
Intrusion Masking, Journal of Computer
Security, Vol. 13, No. 4, 623-658. [PDF]
|
|
JASIST
|
|
|
CIKM
|
Q. Tan, W. Lee, B.
Zhang, P. Liu, D. L. Lee, Balancing Performance and Confidentiality in Air
Index, ACM CIKM 2005, to appear,
acceptance rate = 18% [PDF]
|
|
ACSAC
|
M. Yu, W. Zang, P.
Liu, Defensive Execution of
Transactional Processes against Attacks, Proc. ACSAC 2005,
to appear, acceptance rate = 19.6% [PDF]
|
|
ITC
|
] L. Li, S. Jiwasurat, P. Liu, G. Kesidis, Emulation of Single Packet
UDP Scanning Worms in Large Enterprises, In Proc. 19 International Teletraffic
Congress (ITC19), August, Beijing, China, 2005. [PDF]
|
|
DOE
|
P. Liu, A Game Theoretic Approach to Cyber Attack
Prediction, DOE ECPI Program Final Technical Report, Dec 2005, 26 pages
|
|
|
|
P. Liu, Emerging
Technologies in Information Assurance, DoD
IA Newsletter, summer volume
Q.
Gu, P. Liu, S. Zhu, C. Chu, Defending against Packet Injection Attacks in
Unreliable Ad Hoc Networks, IEEE
GLOBECOM ’05, acceptance rate = 30%. Click [PDF]
for the full size technical report.
Q.
Gu, P. Liu, W. Lee, C. Chu, KTR: An Efficient Key
Management Scheme for Air Access Control, Proc.
IEEE Mobiquitous 2005 (short paper). Click [PDF]
for the full size technical report.
K.
Bai, H. Wang, P. Liu, Towards Database Firewalls, Proc. 19th Annual IFIP WG 11.3 Working Conference on Data
and Applications Security (DBSEC ’05), Storrs, CT, August 7-10, 2005.
K.
Kotapati, P. Liu., Y. Sun, T. F. LaPorta, A Taxonomy of Cyber Attacks on 3G
Networks, Proc. IEEE Int’l Conf. on
Intelligence and Security Informatics (extended abstract) (ISI ’05),
Springer LNCS Vol. xx
Q.
Gu, Chao-Hsien Chu,
|
|
2004
|
||
ICDCS
|
M. Yu, P. Liu, W.
Zang, Self Healing Workflow Systems under Attacks, Proc. 24th IEEE International Conference on Distributed
Computing Systems (ICDCS ’04),
|
|
CIKM
|
B. Luo, D. Lee, W.
C. Lee, P. Liu, QFilter: Fine-Grained Run-Time XML Access Controls via
NFA-based Query Rewriting, Proc. ACM
CIKM 2004. Acceptance rate = 19%.
[PDF]
|
|
CACM
|
R. Bazjscy,
T. Benzel, M. Bishop, B. Braden, C. Brodley, S. Fahmy, S. Floyd, W.
Hardaker, A. Joseph, G. Kesidis, K. Levitt, B. Lindell, P. Liu, D. Miller, R. Mundy, C. Neuman, R. Ostrenga, V. Paxson,
P. Porras, C. Rosenberg, J. Tygar, S. Sastry, D. Sterne, S.F. Wu,
Cyber Defense Technology Networking and Evaluation, Communications of the ACM, March 2004, Vol. 47, No. 3, pages
58-61
|
|
ISC
|
H. Wang, P. Liu, L.
Li, Evaluating the Impact of Intrusion Detection Deficiencies on the
Cost-Effectiveness of Attack Recovery, In Proceedings of the 7th Information
Security Conference (ISC
’04), Springer LNCS,
September 2004.
|
|
|
|
R. Li, J. Li, H.
Kameda, P. Liu, Localized Public-key Management for Mobile Ad Hoc Networks, Proc. IEEE Globecom
’04. Acceptance rate = 29% [PDF]
|
|
2003
|
||
CCS
|
P. Liu, W. Zang,
Incentive-Based Modeling and Inference of Attacker Intent, Objectives and
Strategies, Proc. 10th ACM Conference
on Computer and Communications Security (CCS ’03) (Acceptance rate
36/252=14.3%), October 28-31, Washington DC, 2003, pages 179-189. [PDF]
|
|
ACSAC
|
M. Yu, P. Liu, W. Zang,
Multi-Version Data Objects Based Attack Recovery of Workflows, Proc. 19th Annual Computer Security
Applications Conference (ACSAC ’03), Las Vegas, Dec, 2003, pages 142-151.
[PDF]
|
|
SEC
|
M. Yu, P. Liu, W. Zhang,
Intrusion Masking for Distributed Atomic Operations, Proc.
18th IFIP International Information Security Conference (SEC ’03), May
2003, acceptance ratio 27%, pages 229-240.
|
|
SSRS
|
] J. Jing, P. Liu, D. G. Feng,
J. Xiang, N. Gao, J. Q. Lin, ARECA: A Highly Attack
Resilient Certification Authority, Proc.
First ACM Workshop on Survivable and Self-Regenerative Systems (SSRS
’03), October 2003, pages 53-63. [PDF]
|
|
XSYM
|
D. Lee, W. C. Lee, and P. Liu,
Supporting XML Security Models using Relational Databases: A Vision, Proc. First
International Symposium of XML Databases (XSym ’03) (Lecture Notes in Computer Science), September
2003. [PDF]
|
|
|
|
J. Zhang, P. Liu, Delivering Services with
Integrity Guarantees in Survivable Database Systems, Proc. 17th IFIP WG 11.3 Conference on Data and Applications Security (DBSEC
’03), August 2003, pages 31-45.
|
|
2002
|
||
BOOK
|
(Book) P. Liu, S.
Jajodia, Trusted
Recovery and Defensive Information Warfare, Monograph, Kluwer Academic Publishers,
2002. ISBN 0-7923-7572-6
|
|
TKDE
|
P. Ammann, S. Jajodia, P. Liu, Recovery from Malicious
Transactions, IEEE
Transactions on Knowledge and Data Engineering,
Vol. 15, No. 5, September 2002, pages 1167-1185. [PDF]
|
|
ACSAC
|
P. Liu, Architectures for Intrusion
Tolerant Database Systems, Proc. 18th Annual Computer Security Applications Conference (ACSAC
’02), Dec 2002, acceptance ratio 32%, pages 311-320. [PDF]
|
|
|
|
P. Liu, Y. Wang, The Design and Implementation
of a Multiphase Database Damage Confinement System, Proc. 16th IFIP Working Conf. on Data and
Applications Security (DBSEC ’02), July 2002. [PDF]
|
|
2001
|
||
CSFW
|
P. Liu, S. Jajodia,
Multi-Phase Damage
Confinement in Database Systems for Intrusion Tolerance, Proc. 14th IEEE Computer
Security Foundations Workshop (CSFW ’01)), June
2001, pages 191-205. [PDF]
|
|
ACSAC
|
P. Liu, DAIS: A Real-Time Data
Attack Isolation System for Commercial Database Applications, Proc. 17th
Annual Computer Security Applications Conference
(ACSAC ’01), Dec 2001, pages 219-229. [PDF]
|
|
|
|
|
|
2000
|
||
JCS
|
P. Liu,
|
|
DSS
|
P. Liu, P. Ning,
|
|
DPDB
|
P. Liu, P. Ammann, S. Jajodia, Rewriting Histories: Recovering From
Malicious Transactions, Distributed
and Parallel Databases, Vol. 8, No. 1, January 2000,
pages 7-40. [PDF]
|
|
|
|
|
|
1999
|
||
ICDCS
|
P. Liu, P. Ammann,
|
|
THESIS
|
|
|
|
|
Paul Ammann, Sushil Jajodia,
|
|
-1998
|
||
ACSAC
|
S. Jajodia, P. Liu,
C. D. McCollum, Application
Level Isolation to Cope with Malicious Database Users, Proc. 14th Annual Computer Security
Applications Conference (ACSAC ’98), December 1998,
pages 73-82.
|
|
|
|
|
|
|
|
|
|
|
|
|
|