Ehab Al-Shaer

ACM Trans. Priv. Secur., November, 2023

Automated CVE Analysis for Threat Prioritization and Impact Prediction.

[BibT_eX]

[DOI]

CoRR, 2023

CVE-driven Attack Technique Prediction with Semantic Information Extraction and a Domain-specific Language Model.

[BibT_eX]

[DOI]

CoRR, 2023

SMET: Semantic Mapping of CVE to ATT&CK and Its Application to Cybersecurity.

[BibT_eX]

[DOI]

Proceedings of the Data and Applications Security and Privacy XXXVII, 2023

Autonomous Cyber Defense Against Dynamic Multi-strategy Infrastructural DDoS Attacks.

[BibT_eX]

[DOI]

Proceedings of the IEEE Conference on Communications and Network Security, 2023

VeriActor: Dynamic Generation of Challenge-Response Questions for Enhanced Email Sender Verification.

[BibT_eX]

[DOI]

Basel Abdeen

Waseem G. Shadid

Proceedings of the IEEE Conference on Communications and Network Security, 2023

2022

Language Model for Text Analytic in Cybersecurity.

[BibT_eX]

[DOI]

CoRR, 2022

SecureBERT: A Domain-Specific Language Model for Cybersecurity.

[BibT_eX]

[DOI]

Proceedings of the Security and Privacy in Communication Networks, 2022

VWC-BERT: Scaling Vulnerability-Weakness-Exploit Mapping on Modern AI Accelerators.

[BibT_eX]

[DOI]

Siddhartha Shankar Das

Mahantesh Halappanavar

Proceedings of the IEEE International Conference on Big Data, 2022

2021

Automated Configuration Synthesis for Resilient Smart Metering Infrastructure.

[BibT_eX]

[DOI]

Amarjit Datta

EAI Endorsed Trans. Security Safety, 2021

Constraints Satisfiability Driven Reinforcement Learning for Autonomous Cyber Defense.

[BibT_eX]

[DOI]

Samrat Chatterjee

CoRR, 2021

V2W-BERT: A Framework for Effective Hierarchical Multiclass Classification of Software Vulnerabilities.

[BibT_eX]

[DOI]

Siddhartha Shankar Das

Edoardo Serra

Mahantesh Halappanavar

Alex Pothen

Proceedings of the 8th IEEE International Conference on Data Science and Advanced Analytics, 2021

CHIMERA: Autonomous Planning and Orchestration for Malware Deception.

[BibT_eX]

[DOI]

Jinpeng Wei

Sadegh Farhang

Proceedings of the IEEE Conference on Communications and Network Security, 2021

SODA: A System for Cyber Deception Orchestration and Automation.

[BibT_eX]

[DOI]

Proceedings of the ACSAC '21: Annual Computer Security Applications Conference, Virtual Event, USA, December 6, 2021

2020

A game-theoretic analysis to defend against remote operating system fingerprinting.

[BibT_eX]

[DOI]

Md. Golam Moula Mehedi Hasan

Mohammad Hossein Manshaei

J. Inf. Secur. Appl., 2020

ThreatZoom: CVE2CWE using Hierarchical Neural Network.

[BibT_eX]

[DOI]

Waseem G. Shadid

CoRR, 2020

The Panacea Threat Intelligence and Active Defense Platform.

[BibT_eX]

[DOI]

CoRR, 2020

A Formal Verification of Configuration-Based Mutation Techniques for Moving Target Defense.

[BibT_eX]

[DOI]

Proceedings of the Security and Privacy in Communication Networks, 2020

Email Address Mutation for Proactive Deterrence Against Lateral Spear-Phishing Attacks.

[BibT_eX]

[DOI]

Proceedings of the Security and Privacy in Communication Networks, 2020

ThreatZoom: Hierarchical Neural Network for CVEs to CWEs Classification.

[BibT_eX]

[DOI]

Waseem G. Shadid

Proceedings of the Security and Privacy in Communication Networks, 2020

Active Deception Framework: An Extensible Development Environment for Adaptive Cyber Deception.

[BibT_eX]

[DOI]

Proceedings of the IEEE Secure Development, SecDev 2020, Atlanta, GA, USA, 2020

Active Defense Against Social Engineering: The Case for Human Language Technology.

[BibT_eX]

[DOI]

Proceedings of the Proceedings for the First International Workshop on Social Threats in Online Conversations: Understanding and Management, 2020

From Word Embedding to Cyber-Phrase Embedding: Comparison of Processing Cybersecurity Texts.

[BibT_eX]

[DOI]

Moumita Das Purba

Bill Chu

Proceedings of the IEEE International Conference on Intelligence and Security Informatics, 2020

HoneyBug: Personalized Cyber Deception for Web Applications.

[BibT_eX]

[DOI]

Bei-Tseng Chu

Proceedings of the 53rd Hawaii International Conference on System Sciences, 2020

A Formal Analysis of Moving Target Defense.

[BibT_eX]

[DOI]

Proceedings of the 44th IEEE Annual Computers, Software, and Applications Conference, 2020

DodgeTron: Towards Autonomous Cyber Deception Using Dynamic Hybrid Analysis of Malware.

[BibT_eX]

[DOI]

Proceedings of the 8th IEEE Conference on Communications and Network Security, 2020

Range and Topology Mutation Based Wireless Agility.

[BibT_eX]

[DOI]

Jiang Xie

Proceedings of the 7th ACM Workshop on Moving Target Defense, 2020

Automated Cyber Risk Mitigation: Making Informed Cost-Effective Decisions.

[BibT_eX]

[DOI]

Proceedings of the Adaptive Autonomous Secure Cyber Systems., 2020

2019

A Formal Approach for Efficient Navigation Management of Hybrid Electric Vehicles on Long Trips.

[BibT_eX]

[DOI]

Md Hasan Shahriar

Quanyan Zhu

CoRR, 2019

Security design against stealthy attacks on power system state estimation: A formal approach.

[BibT_eX]

[DOI]

Amarjit Datta

Comput. Secur., 2019

IoTC<sup>2</sup>: A Formal Method Approach for Detecting Conflicts in Large Scale IoT Systems.

[BibT_eX]

[DOI]

Proceedings of the IFIP/IEEE International Symposium on Integrated Network Management, 2019

A formal verification of mutation-based moving target defense.

[BibT_eX]

[DOI]

Proceedings of the 6th Annual Symposium on Hot Topics in the Science of Security, 2019

CLIPS/ActiveSDN for automated and safe cybersecurity course-of-actions orchestration.

[BibT_eX]

[DOI]

Proceedings of the 6th Annual Symposium on Hot Topics in the Science of Security, 2019

Learning APT chains from cyber threat intelligence.

[BibT_eX]

[DOI]

Ghaith Husari

Bill Chu

Ruhani Faiheem Rahman

Proceedings of the 6th Annual Symposium on Hot Topics in the Science of Security, 2019

Cyber defense matrix: a new model for optimal composition of cybersecurity controls to construct resilient risk mitigation.

[BibT_eX]

[DOI]

Proceedings of the 6th Annual Symposium on Hot Topics in the Science of Security, 2019

Measures and metrics for the enforcement of critical security controls: a case study of boundary defense.

[BibT_eX]

[DOI]

Mohiuddin Ahmed

Proceedings of the 6th Annual Symposium on Hot Topics in the Science of Security, 2019

ThreatZoom: neural network for automated vulnerability mitigation.

[BibT_eX]

[DOI]

Proceedings of the 6th Annual Symposium on Hot Topics in the Science of Security, 2019

"What", "Where", and "Why" Cybersecurity Controls to Enforce for Optimal Risk Mitigation.

[BibT_eX]

[DOI]

Proceedings of the 7th IEEE Conference on Communications and Network Security, 2019

Specification-driven Moving Target Defense Synthesis.

[BibT_eX]

[DOI]

Proceedings of the 6th ACM Workshop on Moving Target Defense, 2019

Autonomous Cyber Deception - Reasoning, Adaptive Planning, and Evaluation of HoneyThings

[BibT_eX]

[DOI]

Springer, ISBN: 978-3-030-02110-8, 2019

2018

IoTC2: A Formal Method Approach for Detecting Conflicts in Large Scale IoT Systems.

[BibT_eX]

[DOI]

CoRR, 2018

PhishMon: A Machine Learning Framework for Detecting Phishing Webpages.

[BibT_eX]

[DOI]

Bei-Tseng Chu

Proceedings of the 2018 IEEE International Conference on Intelligence and Security Informatics, 2018

Using Entropy and Mutual Information to Extract Threat Actions from Cyber Threat Intelligence.

[BibT_eX]

[DOI]

Proceedings of the 2018 IEEE International Conference on Intelligence and Security Informatics, 2018

Verifying the Enforcement and Effectiveness of Network Lateral Movement Resistance Techniques.

[BibT_eX]

[DOI]

Proceedings of the 15th International Joint Conference on e-Business and Telecommunications, 2018

A Poisoning Attack Against Cryptocurrency Mining Pools.

[BibT_eX]

[DOI]

Proceedings of the Data Privacy Management, Cryptocurrencies and Blockchain Technology, 2018

CONCEAL: A Strategy Composition for Resilient Cyber Deception-Framework, Metrics and Deployment.

[BibT_eX]

[DOI]

Proceedings of the 2018 IEEE Conference on Communications and Network Security, 2018

In-design Resilient SDN Control Plane and Elastic Forwarding Against Aggressive DDoS Attacks.

[BibT_eX]

[DOI]

Proceedings of the 5th ACM Workshop on Moving Target Defense, 2018

gExtractor: Towards Automated Extraction of Malware Deception Parameters.

[BibT_eX]

[DOI]

Jinpeng Wei

Mohiuddin Ahmed

Proceedings of the 8th Software Security, 2018

2017

Automated Synthesis of Distributed Network Access Controls: A Formal Framework with Refinement.

[BibT_eX]

[DOI]

IEEE Trans. Parallel Distributed Syst., 2017

Secure and Private Data Aggregation for Energy Consumption Scheduling in Smart Grids.

[BibT_eX]

[DOI]

Mohammad Hossein Manshaei

Mohamed Shehab

IEEE Trans. Dependable Secur. Comput., 2017

A Novel Class of Robust Covert Channels Using Out-of-Order Packets.

[BibT_eX]

[DOI]

IEEE Trans. Dependable Secur. Comput., 2017

ROI-Driven Cyber Risk Mitigation Using Host Compliance and Network Configuration.

[BibT_eX]

[DOI]

Ghaith Husari

J. Netw. Syst. Manag., 2017

Data-driven analytics for cyber-threat intelligence and information sharing.

[BibT_eX]

[DOI]

Sara Qamar

Zahid Anwar

Bei-tseng Chu

Comput. Secur., 2017

IoTChecker: A data-driven framework for security analytics of Internet of Things configurations.

[BibT_eX]

[DOI]

Comput. Secur., 2017

Predicting Zero-day Malicious IP Addresses.

[BibT_eX]

[DOI]

Mir Mehedi A. Pritom

Bei-tseng Chu

Sreyasee Das Bhattacharjee

Proceedings of the 2017 Workshop on Automated Decision Making for Active Cyber Defense, 2017

Prioritized active learning for malicious URL detection using weighted text-based features.

[BibT_eX]

[DOI]

Ashit Talukder

Pratik Doshi

Proceedings of the 2017 IEEE International Conference on Intelligence and Security Informatics, 2017

Characterizing Scientific Reporting in Security Literature: An analysis of ACM CCS and IEEE S&P Papers.

[BibT_eX]

[DOI]

Morgan Burcham

Mahran Al-Zyoud

Jeffrey C. Carver

Proceedings of the Hot Topics in Science of Security: Symposium and Bootcamp, HoTSoS 2017, 2017

TTPDrill: Automatic and Accurate Extraction of Threat Actions from Unstructured Text of CTI Sources.

[BibT_eX]

[DOI]

Proceedings of the 33rd Annual Computer Security Applications Conference, 2017

2016

Security and Resiliency Analytics for Smart Grids - Static and Dynamic Approaches

[BibT_eX]

[DOI]

Advances in Information Security 67, Springer, ISBN: 978-3-319-32871-3, 2016

Economic metric to improve spam detectors.

[BibT_eX]

[DOI]

Basil AsSadhan

J. Netw. Comput. Appl., 2016

Towards Automated Verification of Active Cyber Defense Strategies on Software Defined Networks.

[BibT_eX]

[DOI]

Proceedings of the 2016 ACM Workshop on Automated Decision Making for Active Cyber Defense, 2016

Strategic Cyber Threat Intelligence Sharing: A Case Study of IDS Logs.

[BibT_eX]

[DOI]

Proceedings of the 25th International Conference on Computer Communication and Networks, 2016

Formal Analysis for Dependable Supervisory Control and Data Acquisition in Smart Grids.

[BibT_eX]

[DOI]

A. H. M. Jakaria

Proceedings of the 46th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, 2016

Optimizing the RoI of cyber risk mitigation.

[BibT_eX]

[DOI]

Ghaith Husari

Proceedings of the 12th International Conference on Network and Service Management, 2016

Automated synthesis of resiliency configurations for cyber networks.

[BibT_eX]

[DOI]

Abdullah Al Farooq

Amarjit Datta

Proceedings of the 2016 IEEE Conference on Communications and Network Security, 2016

IoTSAT: A formal framework for security analysis of the internet of things (IoT).

[BibT_eX]

[DOI]

Proceedings of the 2016 IEEE Conference on Communications and Network Security, 2016

Formal Approach for Resilient Reachability based on End-System Route Agility.

[BibT_eX]

[DOI]

Usman Rauf

Mahantesh Halappanavar

Samrat Chatterjee

Christopher S. Oehmen

Proceedings of the 2016 ACM Workshop on Moving Target Defense, 2016

Multi-dimensional Host Identity Anonymization for Defeating Skilled Attackers.

[BibT_eX]

[DOI]

Proceedings of the 2016 ACM Workshop on Moving Target Defense, 2016

A Cyber Mutation: Metrics, Techniques and Future Directions.

[BibT_eX]

[DOI]

Proceedings of the 2016 ACM Workshop on Moving Target Defense, 2016

Agile Virtual Infrastructure for Cyber Deception Against Stealthy DDoS Attacks.

[BibT_eX]

[DOI]

Syed Fida Gillani

Proceedings of the Cyber Deception, Building the Scientific Foundation, 2016

2015

Attribution, Temptation, and Expectation: A Formal Framework for Defense-by-Deception in Cyberwarfare.

[BibT_eX]

[DOI]

Proceedings of the Cyber Warfare - Building the Scientific Foundation, 2015

Randomization-Based Intrusion Detection System for Advanced Metering Infrastructure.

[BibT_eX]

[DOI]

ACM Trans. Inf. Syst. Secur., 2015

An Effective Address Mutation Approach for Disrupting Reconnaissance Attacks.

[BibT_eX]

[DOI]

IEEE Trans. Inf. Forensics Secur., 2015

PoliCon: a policy conciliation framework for heterogeneous mobile ad hoc networks.

[BibT_eX]

[DOI]

Soumya Maity

Soumya Kanti Ghosh

Secur. Commun. Networks, 2015

Formal integrated network security analysis tool: formal query-based network security configuration analysis.

[BibT_eX]

[DOI]

IET Networks, 2015

Formal synthesis of dependable configurations for advanced metering infrastructures.

[BibT_eX]

[DOI]

Proceedings of the 2015 IEEE International Conference on Smart Grid Communications, 2015

Automated Decision Making for Active Cyber Defense: Panel Discussion.

[BibT_eX]

[DOI]

Christopher S. Oehmen

Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense, 2015

Cyber Resilience-by-Construction: Modeling, Measuring & Verifying.

[BibT_eX]

[DOI]

Yasir Imtiaz Khan

Usman Rauf

Proceedings of the 2015 Workshop on Automated Decision Making for Active Cyber Defense, 2015

Adversary-aware IP address randomization for proactive agility against sophisticated attackers.

[BibT_eX]

[DOI]

Proceedings of the 2015 IEEE Conference on Computer Communications, 2015

Agile virtualized infrastructure to proactively defend against cyber attacks.

[BibT_eX]

[DOI]

Proceedings of the 2015 IEEE Conference on Computer Communications, 2015

Towards a science of anomaly detection system evasion.

[BibT_eX]

[DOI]

Proceedings of the 2015 IEEE Conference on Communications and Network Security, 2015

SafeConfig 2015: Workshop on Automated Decision Making for Active Cyber Defense.

[BibT_eX]

[DOI]

Christopher S. Oehmen

Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security, 2015

2014

Problem Localization and Quantification Using Formal Evidential Reasoning for Virtual Networks.

[BibT_eX]

[DOI]

IEEE Trans. Netw. Serv. Manag., 2014

Firewall Policy Reconnaissance: Techniques and Analysis.

[BibT_eX]

[DOI]

IEEE Trans. Inf. Forensics Secur., 2014

Information theoretic feature space slicing for statistical anomaly detection.

[BibT_eX]

[DOI]

J. Netw. Comput. Appl., 2014

On DDoS Attack Related Minimum Cut Problems.

[BibT_eX]

[DOI]

CoRR, 2014

Improving Efficiency of Spam Detection using Economic Model.

[BibT_eX]

[DOI]

Proceedings of the 2014 Workshop on Cyber Security Analytics, 2014

Enterprise Risk Assessment Based on Compliance Reports and Vulnerability Scoring Systems.

[BibT_eX]

[DOI]

Proceedings of the 2014 Workshop on Cyber Security Analytics, 2014

Impact Analysis of Topology Poisoning Attacks on Economic Operation of the Smart Power Grid.

[BibT_eX]

[DOI]

Rajesh G. Kavasseri

Proceedings of the IEEE 34th International Conference on Distributed Computing Systems, 2014

A formal model for verifying the impact of stealthy attacks on optimal power flow in power grids.

[BibT_eX]

[DOI]

Rajesh G. Kavasseri

Proceedings of the ACM/IEEE International Conference on Cyber-Physical Systems, 2014

Security Threat Analytics and Countermeasure Synthesis for Power System State Estimation.

[BibT_eX]

[DOI]

Rajesh G. Kavasseri

Proceedings of the 44th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, 2014

Security configuration analytics using video games.

[BibT_eX]

[DOI]

Proceedings of the IEEE Conference on Communications and Network Security, 2014

Two-tier data-driven intrusion detection for automatic generation control in smart grid.

[BibT_eX]

[DOI]

Proceedings of the IEEE Conference on Communications and Network Security, 2014

Moving Target Defense for Hardening the Security of the Power System State Estimation.

[BibT_eX]

[DOI]

Rakesh B. Bobba

Proceedings of the First ACM Workshop on Moving Target Defense, 2014

Spatio-temporal Address Mutation for Proactive Cyber Agility against Sophisticated Attackers.

[BibT_eX]

[DOI]

Proceedings of the First ACM Workshop on Moving Target Defense, 2014

Summary Abstract for the 7th ACM International Workshop on Cyber Security Analytics, Intelligence and Automation.

[BibT_eX]

[DOI]

Krishna Kant

Proceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security, 2014

Automated Firewall Analytics - Design, Configuration and Optimization

[BibT_eX]

[DOI]

Springer, ISBN: 978-3-319-10371-6, 2014

2013

A Noninvasive Threat Analyzer for Advanced Metering Infrastructure in Smart Grid.

[BibT_eX]

[DOI]

Padmalochan Bera

IEEE Trans. Smart Grid, 2013

Automated Anomaly Detector Adaptation using Adaptive Threshold Tuning.

[BibT_eX]

[DOI]

ACM Trans. Inf. Syst. Secur., 2013

Adaptive Information Coding for Secure and Reliable Wireless Telesurgery Communications.

[BibT_eX]

[DOI]

Bhavani Thuraisingham

Bei-tseng Chu

Mob. Networks Appl., 2013

Traffic-aware dynamic firewall policy management: techniques and applications.

[BibT_eX]

[DOI]

IEEE Commun. Mag., 2013

A formal model for verifying stealthy attacks on state estimation in power grids.

[BibT_eX]

[DOI]

Md. Ashfaqur Rahman

Proceedings of the IEEE Fourth International Conference on Smart Grid Communications, 2013

Randomizing AMI configuration for proactive defense in smart grid.

[BibT_eX]

[DOI]

Proceedings of the IEEE Fourth International Conference on Smart Grid Communications, 2013

Probabilistic model checking for AMI intrusion detection.

[BibT_eX]

[DOI]

Proceedings of the IEEE Fourth International Conference on Smart Grid Communications, 2013

Metrics for Automated Network Security Design.

[BibT_eX]

[DOI]

Proceedings of the 20th Annual Network and Distributed System Security Symposium, 2013

SensorChecker: reachability verification in mission-oriented sensor networks.

[BibT_eX]

[DOI]

Proceedings of the 2nd ACM annual international workshop on Mission-oriented wireless sensor networking, 2013

A formal approach for network security management based on qualitative risk analysis.

[BibT_eX]

[DOI]

Proceedings of the 2013 IFIP/IEEE International Symposium on Integrated Network Management (IM 2013), 2013

A Formal Framework for Network Security Design Synthesis.

[BibT_eX]

[DOI]

Proceedings of the IEEE 33rd International Conference on Distributed Computing Systems, 2013

Energy efficient navigation management for hybrid electric vehicles on highways.

[BibT_eX]

[DOI]

Proceedings of the ACM/IEEE 4th International Conference on Cyber-Physical Systems (with CPS Week 2013), 2013

Overlay network placement for diagnosability.

[BibT_eX]

[DOI]

Proceedings of the 2013 IEEE Global Communications Conference, 2013

Formal Approach for Route Agility against Persistent Attackers.

[BibT_eX]

[DOI]

Proceedings of the Computer Security - ESORICS 2013, 2013

A formal approach for virtual machine migration planning.

[BibT_eX]

[DOI]

Proceedings of the 9th International Conference on Network and Service Management, 2013

A game-theoretic approach for deceiving Remote Operating System Fingerprinting.

[BibT_eX]

[DOI]

Mohammad Hossein Manshaei

Proceedings of the IEEE Conference on Communications and Network Security, 2013

Efficient Random Route Mutation considering flow and network constraints.

[BibT_eX]

[DOI]

Proceedings of the IEEE Conference on Communications and Network Security, 2013

Objective metrics for firewall security: A holistic view.

[BibT_eX]

[DOI]

Proceedings of the IEEE Conference on Communications and Network Security, 2013

A formal model for sustainable vehicle-to-grid management.

[BibT_eX]

[DOI]

Fadi Mohsen

Proceedings of the SEGS'13, 2013

Revisiting anomaly detection system design philosophy.

[BibT_eX]

[DOI]

Proceedings of the 2013 ACM SIGSAC Conference on Computer and Communications Security, 2013

Configuration-based IDS for advanced metering infrastructure.

[BibT_eX]

[DOI]

Proceedings of the 2013 ACM SIGSAC Conference on Computer and Communications Security, 2013

Private and Anonymous Data Storage and Distribution in Cloud.

[BibT_eX]

[DOI]

Proceedings of the 2013 IEEE International Conference on Services Computing, Santa Clara, CA, USA, June 28, 2013

Security-Aware Resource Allocation in Clouds.

[BibT_eX]

[DOI]

HariGovind V. Ramasamy

Proceedings of the 2013 IEEE International Conference on Services Computing, Santa Clara, CA, USA, June 28, 2013

2012

Reasoning under Uncertainty for Overlay Fault Diagnosis.

[BibT_eX]

[DOI]

Kaustubh R. Joshi

IEEE Trans. Netw. Serv. Manag., 2012

Fuzzy Conflict Analysis for QoS Policy Parameters in DiffServ Networks.

[BibT_eX]

[DOI]

IEEE Trans. Netw. Serv. Manag., 2012

Secure Distributed Solution for Optimal Energy Consumption Scheduling in Smart Grid.

[BibT_eX]

[DOI]

Libin Bai

Mohamed Shehab

Proceedings of the 11th IEEE International Conference on Trust, 2012

Openflow random host mutation: transparent moving target defense using software defined networking.

[BibT_eX]

[DOI]

Proceedings of the first workshop on Hot topics in software defined networks, 2012

Random Host Mutation for Moving Target Defense.

[BibT_eX]

[DOI]

Proceedings of the Security and Privacy in Communication Networks, 2012

A Declarative Logic-Based Approach for Threat Analysis of Advanced Metering Infrastructure.

[BibT_eX]

[DOI]

Proceedings of the Automated Security Management [papers from SafeConfig 2012, 2012

Towards a Unified Modeling and Verification of Network and System Security Configurations.

[BibT_eX]

[DOI]

Proceedings of the Automated Security Management [papers from SafeConfig 2012, 2012

An evasive attack on SNORT flowbits.

[BibT_eX]

[DOI]

Proceedings of the 2012 IEEE Network Operations and Management Symposium, 2012

On stochastic risk ordering of network services for proactive security management.

[BibT_eX]

[DOI]

Mohamed Amezziane

Proceedings of the 2012 IEEE Network Operations and Management Symposium, 2012

SmartAnalyzer: A noninvasive security threat analyzer for AMI smart grid.

[BibT_eX]

[DOI]

Padmalochan Bera

Proceedings of the IEEE INFOCOM 2012, Orlando, FL, USA, March 25-30, 2012, 2012

Anomaly Discovery and Resolution in MySQL Access Control Policies.

[BibT_eX]

[DOI]

Proceedings of the Database and Expert Systems Applications, 2012

Fine-grain diagnosis of overlay performance anomalies using end-point network experiences.

[BibT_eX]

[DOI]

Proceedings of the 8th International Conference on Network and Service Management, 2012

Provable configuration planning for wireless sensor networks.

[BibT_eX]

[DOI]

Proceedings of the 8th International Conference on Network and Service Management, 2012

Monetizing spambot activity and understanding its relation with spambot traffic features.

[BibT_eX]

[DOI]

Proceedings of the 7th ACM Symposium on Information, Compuer and Communications Security, 2012

2011

Toward Network Configuration Randomization for Moving Target Defense.

[BibT_eX]

[DOI]

Proceedings of the Moving Target Defense, 2011

Firewalls.

[BibT_eX]

[DOI]

Proceedings of the Encyclopedia of Cryptography and Security, 2nd Ed., 2011

A potential low-rate DoS attack against network firewalls.

[BibT_eX]

[DOI]

Secur. Commun. Networks, 2011

Objective Risk Evaluation for Automated Security Management.

[BibT_eX]

[DOI]

Mohamed Mahmoud Taibah

J. Netw. Syst. Manag., 2011

Build and Test Your Own Network Configuration.

[BibT_eX]

[DOI]

Padmalochan Bera

Proceedings of the Security and Privacy in Communication Networks, 2011

AMIAnalyzer: Security analysis of AMI configurations.

[BibT_eX]

[DOI]

Proceedings of the 4th Symposium on Configuration Analytics and Automation, SafeConfig 2011, Arlington, VA, USA, October 31, 2011

Towards Eliminating Configuration Errors in Cyber Infrastructure.

[BibT_eX]

[DOI]

Sanjai Narain

Sharad Malik

Proceedings of the 4th Symposium on Configuration Analytics and Automation, SafeConfig 2011, Arlington, VA, USA, October 31, 2011

SCAP Based Configuration Analytics for Comprehensive Compliance Checking.

[BibT_eX]

[DOI]

Proceedings of the 4th Symposium on Configuration Analytics and Automation, SafeConfig 2011, Arlington, VA, USA, October 31, 2011

ConfigChecker: A tool for comprehensive security configuration analytics.

[BibT_eX]

[DOI]

Proceedings of the 4th Symposium on Configuration Analytics and Automation, SafeConfig 2011, Arlington, VA, USA, October 31, 2011

Measuring Firewall Security.

[BibT_eX]

[DOI]

Proceedings of the 4th Symposium on Configuration Analytics and Automation, SafeConfig 2011, Arlington, VA, USA, October 31, 2011

CloudChecker: An imperative framework for cloud configuration management.

[BibT_eX]

[DOI]

Proceedings of the 4th Symposium on Configuration Analytics and Automation, SafeConfig 2011, Arlington, VA, USA, October 31, 2011

QoS policy verification for DiffServ networks.

[BibT_eX]

[DOI]

Proceedings of the 19th International Workshop on Quality of Service, 2011

A declarative approach for global network security configuration verification and evaluation.

[BibT_eX]

[DOI]

Proceedings of the 12th IFIP/IEEE International Symposium on Integrated Network Management, 2011

On synthesizing distributed firewall configurations considering risk, usability and cost constraints.

[BibT_eX]

[DOI]

Proceedings of the 7th International Conference on Network and Service Management, 2011

2010

Analysis of firewall policy rules using traffic mining techniques.

[BibT_eX]

[DOI]

Int. J. Internet Protoc. Technol., 2010

Autonomic QoS Optimization of Real-Time Internet Audio Using Loss Prediction and Stochastic Control.

[BibT_eX]

[DOI]

Int. J. Adapt. Resilient Auton. Syst., 2010

FlowChecker: configuration analysis and verification of federated openflow infrastructures.

[BibT_eX]

[DOI]

Proceedings of the 3rd ACM Workshop on Assurable and Usable Security Configuration, 2010

Automated management of network access control from design to enforcement.

[BibT_eX]

[DOI]

Proceedings of the 15th ACM Symposium on Access Control Models and Technologies, 2010

Towards Automatic Creation of Usable Security Configuration.

[BibT_eX]

[DOI]

Proceedings of the INFOCOM 2010. 29th IEEE International Conference on Computer Communications, 2010

Synthetic security policy generation via network traffic clustering.

[BibT_eX]

[DOI]

Proceedings of the 3rd ACM Workshop on Security and Artificial Intelligence, 2010

2009

Automated pseudo-live testing of firewall configuration enforcement.

[BibT_eX]

[DOI]

IEEE J. Sel. Areas Commun., 2009

New frontiers in internet network management.

[BibT_eX]

[DOI]

Comput. Commun. Rev., 2009

Towards network security policy generation for configuration analysis and testing.

[BibT_eX]

[DOI]

Proceedings of the 2nd ACM Workshop on Assurable and Usable Security Configuration, 2009

Community-base Fault Diagnosis Using Incremental Belief Revision.

[BibT_eX]

[DOI]

Proceedings of the International Conference on Networking, Architecture, and Storage, 2009

Overlay Fault Diagnosis Based on Evidential Reasoning.

[BibT_eX]

[DOI]

Proceedings of the INFOCOM 2009. 28th IEEE International Conference on Computer Communications, 2009

Adaptive Early Packet Filtering for Defending Firewalls Against DoS Attacks.

[BibT_eX]

[DOI]

Proceedings of the INFOCOM 2009. 28th IEEE International Conference on Computer Communications, 2009

Building Covert Channels over the Packet Reordering Phenomenon.

[BibT_eX]

[DOI]

Proceedings of the INFOCOM 2009. 28th IEEE International Conference on Computer Communications, 2009

Optimizing correlation structure of event services considering time and capacity constraints.

[BibT_eX]

[DOI]

Proceedings of the Integrated Network Management, 2009

Network Configuration in A Box: Towards End-to-End Verification of Network Reachability and Security.

[BibT_eX]

[DOI]

Proceedings of the 17th annual IEEE International Conference on Network Protocols, 2009

Information Theoretic Approach for Characterizing Spam Botnets Based on Traffic Properties.

[BibT_eX]

[DOI]

Kyle Smith

Khalid Elbadawi

Proceedings of IEEE International Conference on Communications, 2009

Sharing end-user negative symptoms for improving overlay network dependability.

[BibT_eX]

[DOI]

Proceedings of the 2009 IEEE/IFIP International Conference on Dependable Systems and Networks, 2009

TimeVM: a framework for online intrusion mitigation and fast recovery using multi-time-lag traffic replay.

[BibT_eX]

[DOI]

Khalid Elbadawi

Proceedings of the 2009 ACM Symposium on Information, 2009

2008

Efficient fault diagnosis using incremental alarm correlation and active investigation for internet and overlay networks.

[BibT_eX]

[DOI]

IEEE Trans. Netw. Serv. Manag., 2008

Automated Security Configuration Management.

[BibT_eX]

[DOI]

Charles R. Kalmanek

Felix Wu

J. Netw. Syst. Manag., 2008

A game-theoretic model for capacity-constrained fair bandwidth allocation.

[BibT_eX]

[DOI]

Yonghe Yan

Int. J. Netw. Manag., 2008

Correlation-based load balancing for network intrusion detection and prevention systems.

[BibT_eX]

[DOI]

Anh Le

Proceedings of the 4th International ICST Conference on Security and Privacy in Communication Networks, 2008

QoS Policy Modeling and Conflict Analysis.

[BibT_eX]

[DOI]

Hong Li

Proceedings of the 9th IEEE International Workshop on Policies for Distributed Systems and Networks (POLICY 2008), 2008

Alert prioritization in Intrusion Detection Systems.

[BibT_eX]

[DOI]

Khalid Alsubhi

Proceedings of the IEEE/IFIP Network Operations and Management Symposium: Pervasive Management for Ubioquitous Networks and Services, 2008

Designing, optimizing, and evaluating network security configuration.

[BibT_eX]

[DOI]

Proceedings of the IEEE/IFIP Network Operations and Management Symposium: Pervasive Management for Ubioquitous Networks and Services, 2008

Towards autonomic risk-aware security configuration.

[BibT_eX]

[DOI]

Mohamed Mahmoud Taibah

Muhammad Abedin

Proceedings of the IEEE/IFIP Network Operations and Management Symposium: Pervasive Management for Ubioquitous Networks and Services, 2008

Towards Collaborative User-Level Overlay Fault Diagnosis.

[BibT_eX]

[DOI]

Proceedings of the INFOCOM 2008. 27th IEEE International Conference on Computer Communications, 2008

A Novel Quantitative Approach For Measuring Network Security.

[BibT_eX]

[DOI]

Proceedings of the INFOCOM 2008. 27th IEEE International Conference on Computer Communications, 2008

A comprehensive objective network security metric framework for proactive security configuration.

[BibT_eX]

[DOI]

Proceedings of the 4th annual workshop on Cyber security and information intelligence research, 2008

2007

Specifications of a high-level conflict-free firewall policy language for multi-domain networks.

[BibT_eX]

[DOI]

Proceedings of the 12th ACM Symposium on Access Control Models and Technologies, 2007

An Automated Framework for Validating Firewall Policy Enforcement.

[BibT_eX]

[DOI]

Proceedings of the 8th IEEE International Workshop on Policies for Distributed Systems and Networks (POLICY 2007), 2007

PolicyVis: Firewall Security Policy Visualization and Inspection.

[BibT_eX]

[DOI]

Tung Tran

Proceedings of the 21th Large Installation System Administration Conference, 2007

Ranking-Based Optimal Resource Allocation in Peer-to-Peer Networks.

[BibT_eX]

[DOI]

Yonghe Yan

Proceedings of the INFOCOM 2007. 26th IEEE International Conference on Computer Communications, 2007

Using Online Traffic Statistical Matching for Optimizing Packet Filtering Performance.

[BibT_eX]

[DOI]

Proceedings of the INFOCOM 2007. 26th IEEE International Conference on Computer Communications, 2007

Toward Globally Optimal Event Monitoring & Aggregation For Large-scale Overlay Networks.

[BibT_eX]

[DOI]

Proceedings of the Integrated Network Management, 2007

FireCracker: A Framework for Inferring Firewall Policies using Smart Probing.

[BibT_eX]

[DOI]

Proceedings of the IEEE International Conference on Network Protocols, 2007

A Novel Visualization Approach for Efficient Network-wide Traffic Monitoring.

[BibT_eX]

[DOI]

Proceedings of the Fifth IEEE/IFIP Workshop on End-to-End Monitoring Techniques and Services, 2007

Self-organizing Monitoring Agents for Hierarchical Event Correlation.

[BibT_eX]

[DOI]

Proceedings of the Managing Virtualization of Networks and Services, 2007

2006

On Dynamic Optimization of Packet Matching in High-Speed Firewalls.

[BibT_eX]

[DOI]

IEEE J. Sel. Areas Commun., 2006

On autonomic optimization of firewall policy organization.

[BibT_eX]

[DOI]

J. High Speed Networks, 2006

On the impact of loss and delay variation on Internet packet audio transmission.

[BibT_eX]

[DOI]

Gregory B. Brewster

Comput. Commun., 2006

Special issue: monitoring and measurements of IP networks.

[BibT_eX]

[DOI]

Kevin C. Almeroth

Comput. Commun., 2006

Taxonomy of conflicts in network security policies.

[BibT_eX]

[DOI]

Hazem Hamed

IEEE Commun. Mag., 2006

An Architecture for an Email Worm Prevention System.

[BibT_eX]

[DOI]

Mohamed Mahmoud Taibah

Proceedings of the Second International Conference on Security and Privacy in Communication Networks and the Workshops, 2006

Fair Bandwidth Allocation under User Capacity Constraints.

[BibT_eX]

[DOI]

Yonghe Yan

Proceedings of the Management of Integrated End-to-End Communications and Services, 2006

Analysis of Firewall Policy Rules Using Data Mining Techniques.

[BibT_eX]

[DOI]

Proceedings of the Management of Integrated End-to-End Communications and Services, 2006

Email Worm Detection Using Naïve Bayes and Support Vector Machine.

[BibT_eX]

[DOI]

Mohammad M. Masud

Proceedings of the Intelligence and Security Informatics, 2006

Adaptive Statistical Optimization Techniques for Firewall Packet Filtering.

[BibT_eX]

[DOI]

Proceedings of the INFOCOM 2006. 25th IEEE International Conference on Computer Communications, 2006

Dynamic rule-ordering optimization for high-speed firewall filtering.

[BibT_eX]

[DOI]

Proceedings of the 2006 ACM Symposium on Information, Computer and Communications Security, 2006

Vulnerability analysis For evaluating quality of protection of security policies.

[BibT_eX]

[DOI]

Proceedings of the 2nd ACM Workshop on Quality of Protection, 2006

2005

Real-time packet loss prediction based on end-to-end delay variation.

[BibT_eX]

[DOI]

IEEE Trans. Netw. Serv. Manag., 2005

Conflict classification and analysis of distributed firewall policies.

[BibT_eX]

[DOI]

IEEE J. Sel. Areas Commun., 2005

Real-Time Audio Quality Evaluation for Adaptive Multimedia Protocols.

[BibT_eX]

[DOI]

Proceedings of the Management of Multimedia Networks and Services, 2005

Active integrated fault localization in communication networks.

[BibT_eX]

[DOI]

Proceedings of the Integrated Network Management, 2005

Modeling and Verification of IPSec and VPN Security Policies.

[BibT_eX]

[DOI]

Will Marrero

Proceedings of the 13th IEEE International Conference on Network Protocols (ICNP 2005), 2005

2004

Modeling and Management of Firewall Policies.

[BibT_eX]

[DOI]

IEEE Trans. Netw. Serv. Manag., 2004

MRMON: remote multicast monitoring.

[BibT_eX]

[DOI]

Proceedings of the Managing Next Generation Convergence Networks and Services, 2004

Managing firewall and network-edge security policies.

[BibT_eX]

[DOI]

Proceedings of the Managing Next Generation Convergence Networks and Services, 2004

Real-time Analysis of Delay Variation for Packet Loss Prediction.

[BibT_eX]

[DOI]

Proceedings of the Management of Multimedia Networks and Services: 7th IFIP/IEEE International Conference, 2004

Discovery of Policy Anomalies in Distributed Firewalls.

[BibT_eX]

[DOI]

Proceedings of the Proceedings IEEE INFOCOM 2004, 2004

Adaptive rate control for real-time packet audio based on loss prediction.

[BibT_eX]

[DOI]

Proceedings of the Global Telecommunications Conference, 2004. GLOBECOM '04, Dallas, Texas, USA, 29 November, 2004

HiFi+: A Monitoring Virtual Machine for Autonomic Distributed Management.

[BibT_eX]

[DOI]

Proceedings of the Utility Computing: 15th IFIP/IEEE International Workshop on Distributed Systems: Operations and Management, 2004

2003

Architecture for Efficient Monitoring and Management of Sensor Networks.

[BibT_eX]

[DOI]

Mohamed F. Younis

Poonam Munshi

Proceedings of the Management of Multimedia Networks and Services, 2003

Firewall Policy Advisor for Anomaly Discovery and Rule Editing.

[BibT_eX]

Proceedings of the Integrated Network Management VII, Managing It All, 2003

Audio transmission over the Internet: experiments and observations.

[BibT_eX]

[DOI]

Hazem Hamed

Gregory B. Brewster

Proceedings of IEEE International Conference on Communications, 2003

Management and translation of filtering security policies.

[BibT_eX]

[DOI]

Proceedings of IEEE International Conference on Communications, 2003

2002

QoS Path Monitoring for Multicast Networks.

[BibT_eX]

[DOI]

J. Netw. Syst. Manag., 2002

SMRM: SNMP-based multicast reachability monitoring.

[BibT_eX]

[DOI]

Proceedings of the Management Solutions for the New Communications World, 2002

2001

Toward integrating IP multicasting in internet network management protocols.

[BibT_eX]

[DOI]

Comput. Commun., 2001

A Dynamic Group Management Framework for Large-scale Distributed Event Monitoring.

[BibT_eX]

[DOI]

Proceedings of the 2001 IEEE/IFIP International Symposium on Integrated Network Management, 2001

2000

Active Management Framework for Distributed Multimedia Systems.

[BibT_eX]

[DOI]

J. Netw. Syst. Manag., 2000

Adaptive object-oriented filtering framework for event management applications.

[BibT_eX]

[DOI]

Mohamed Fayad

ACM Comput. Surv., 2000

Integrating IP Multicasting in Standard Network Management Protocols.

[BibT_eX]

Proceedings of the Managing QoS in Multimedia Networks and Services, IEEE/IFIP TC6, 2000

1999

Dynamic Monitoring Approach for Multi-poin Multimedia Systems.

[BibT_eX]

Netw. Inf. Syst. J., 1999

HiFi: A New Monitoring Architecture for Distributed Systems Management.

[BibT_eX]

[DOI]

Proceedings of the 19th International Conference on Distributed Computing Systems, Austin, TX, USA, May 31, 1999

Programmable Agents for Active Distributed Monitoring.

[BibT_eX]

[DOI]

Proceedings of the Active Technologies for Network and Service Management, 1999

1997

Interactive Distance Learning over Intranets.

[BibT_eX]

[DOI]

C. Michael Overstreet

IEEE Internet Comput., 1997

Reliability, Scalability and Robustness Issues in IRI*.

[BibT_eX]

[DOI]

Alaa Youssef

C. Michael Overstreet

Proceedings of the 6th Workshop on Enabling Technologies (WET-ICE '97), 1997

A scalable monitoring architecture for managing distributed multimedia systems.

[BibT_eX]

Proceedings of the Management of Multimedia Networks and Services, 1997

Application-Layer Group Communication Server for Extending Reliable Multicast Protocols Services.

[BibT_eX]

[DOI]

Proceedings of the 1997 International Conference on Network Protocols (ICNP '97), 1997

Event Filtering Framework: Key Criteria and Design Trade-offs.

[BibT_eX]

[DOI]