Information security : 4th International Conference, ISC 2001, Malaga, Spain, October 1-3, 2001 : proceedings

The Information Security Conference 2001 brought together individuals involved in multiple disciplines of information security to foster the exchange of ideas. The conference, an outgrowth of the Information Security Workshop (ISW) series, was held in Malaga, Spain, on October 1-3, 2001. Previous workshops were ISW '97 at Ishikawa, Japan; ISW '99 at Kuala Lumpur, Malaysia; and ISW 2000 at Wollongong, Australia. The General Co chairs, Javier Lopez and Eiji Okamoto, oversaw the local organization, registration, and performed many other tasks. Many individuals deserve thanks for their contribution to the success of the conference. Jose M. Troya was the Conference Chair. The General Co chairs were assisted with local arrangements by Antonio Mana, Carlos Maraval, Juan J. Ortega, Jose M. Sierra, and Miguel Soriano. This was the first year that the conference accepted electronic submissions. Many thanks to Dawn Gibson for assisting in developing and maintaining the electronic submission servers. The conference received 98 submissions of which 37 papers were accepted for presentation. These proceedings contain revised versions of the accepted papers. Revisions were not checked and the authors bear full responsibility for the contents of their papers. The Program Committee consisted of Elisa Bertino, Universita di Milano; G. R.

Key Distribution.- Bounds and Constructions for Unconditionally Secure Distributed Key Distribution Schemes for General Access Structures.- Privacy Amplification Theorem for Noisy Main Channel.- Protocols.- Efficient Kerberized Multicast in a Practical Distributed Setting.- Suitability of a Classical Analysis Method for E-commerce Protocols.- Enhancing Technologies.- Hyppocrates A New Proactive Password Checker.- Lenient/Strict Batch Verification in Several Groups.- Privacy.- Absolute Privacy in Voting.- A Logical Model for Privacy Protection.- Software Protection.- DISSECT: DIStribution for SECurity Tool.- An Approach to the Obfuscation of Control-Flow of Sequential Computer Programs.- Message Hiding I.- A Practical and Effective Approach to Large-Scale Automated Linguistic Steganography.- Robust New Method in Frequency Domain Watermarking.- PKI Issues and Protocols.- On the Complexity of Public-Key Certificate Validation.- Liability of Certification Authorities: A Juridical Point of View.- Hardware Implementations.- Experimental Testing of the Gigabit IPSec-Compliant Implementations of Rijndael and Triple DES Using SLAAC-1V FPGA Accelerator Board.- Elliptic Curve Arithmetic Using SIMD.- On the Hardware Implementation of the 3GPP Confidentiality and Integrity Algorithms.- Efficient Implementation of Elliptic Curve Cryptosystems on an ARM7 with Hardware Accelerator.- Cryptanalysis and Prevention.- A Theoretical DPA-Based Cryptanalysis of the NESSIE Candidates FLASH and SFLASH.- Quadratic Relations for S-Boxes: Their Minimum Representations and Bounds.- Approximate Power Roots in ?m.- Securing Elliptic Curve Point Multiplication against Side-Channel Attacks.- Implementations.- A Flexible Role-Based Access Control Model for Multimedia Medical Image Database Systems.- A Secure Publishing Service for Digital Libraries of XML Documents.- Non-repudiation Techniques.- An Optimistic Non-repudiation Protocol with Transparent Trusted Third Party.- Persistent Authenticated Dictionaries and Their Applications.- Contracts and Auctions.- Efficient Optimistic N-Party Contract Signing Protocol.- Efficient Sealed-Bid Auctions for Massive Numbers of Bidders with Lump Comparison.- Message Hiding II.- Oblivious Image Watermarking Robust against Scaling and Geometric Distortions.- Fingerprinting Text in Logical Markup Languages.- Payments.- SPEED Protocol: Smartcard-Based Payment with Encrypted Electronic Delivery.- Efficient Transferable Cash with Group Signatures.- Security Applications.- An Auditable Metering Scheme for Web Advertisement Applications.- Broker-Based Secure Negotiation of Intellectual Property Rights.- Network and OS Security.- Design of the Decision Support System for Network Security Management to Secure Enterprise Network.- Measuring False-Positive by Automated Real-Time Correlated Hacking Behavior Analysis.- Design of UNIX System for the Prevention of Damage Propagation by Intrusion and Its Implementation Based on 4.4BSD.