Information security and privacy : 10th Australasian Conference, ACISP 2005, Brisbane, Australia, July 4-6, 2005 : proceedings

The 2005 Australasian Conference on Information Security and Privacy was the tenth in the annual series that started in 1996.Over the yearsACISP has grown from a relativelysmallconferencewith a largeproportionof paperscoming from Australia into a truly international conference with an established reputation. ACISP 2005 was held at Queensland University of Technology in Brisbane, d- ing July 4-6, 2005. This year there were 185 paper submissions and from these 45 papers were accepted. Accepted papers came from 13 countries, with the largest proportions coming from Australia (12), China (8) and Japan (6). India and Korea both contributed 2 papers and one came from Singapore. There were also 11 papers from European countries and 3 from North America. We would like to extend our sincere thanks to all authors who submitted papers to ACISP 2005. The contributed papers were supplemented by four invited talks from e- nent researchers in information security. The father-and-son team of Prof. and Dr. Bob Blakley (Texas A&M University and IBM) gave a talk entitled "All Sail, No Anchor III," following up on a theme started at their ACISP 2000 - vited talk. Adrian McCullagh (Phillips Fox Lawyers and QUT) talked on the bene?t and perils of Internet banking. Ted Dunstone (Biometix) enlightened us on multimodal biometric systems. Yvo Desmedt (University College London) elucidated the growing gap between theory and practice in information security.

Invited Talk.- All Sail, No Anchor III: Risk Aggregation and Time's Arrow.- Network Security.- Traversing Middleboxes with the Host Identity Protocol.- An Investigation of Unauthorised Use of Wireless Networks in Adelaide, South Australia.- An Efficient Solution to the ARP Cache Poisoning Problem.- Cryptanalysis.- On Stern's Attack Against Secret Truncated Linear Congruential Generators.- On the Success Probability of ? 2-attack on RC6.- Solving Systems of Differential Equations of Addition.- Group Communications.- A Tree Based One-Key Broadcast Encryption Scheme with Low Computational Overhead.- Dynamic Group Key Agreement in Tree-Based Setting.- Immediate Data Authentication for Multicast in Resource Constrained Network.- Elliptic Curve Cryptography.- Redundant Trinomials for Finite Fields of Characteristic 2.- Efficient Tate Pairing Computation for Elliptic Curves over Binary Fields.- A Complete Divisor Class Halving Algorithm for Hyperelliptic Curve Cryptosystems of Genus Two.- Mobile Security.- Using "Fair Forfeit" to Prevent Truncation Attacks on Mobile Agents.- An Improved Execution Integrity Solution for Mobile Agents.- RFID Guardian: A Battery-Powered Mobile Device for RFID Privacy Management.- Side Channel Attacks.- Enhanced DES Implementation Secure Against High-Order Differential Power Analysis in Smartcards.- Improved Zero Value Attack on XTR.- Efficient Representations on Koblitz Curves with Resistance to Side Channel Attacks.- Evaluation and Biometrics.- SIFA: A Tool for Evaluation of High-Grade Security Devices.- Cancelable Key-Based Fingerprint Templates.- Public Key Cryptosystems.- Hybrid Signcryption Schemes with Insider Security.- On the Possibility of Constructing Meaningful Hash Collisions for Public Keys.- Tunable Balancing of RSA.- Access Control I.- Key Management for Role Hierarchy in Distributed Systems.- A Formalization of Distributed Authorization with Delegation.- Signatures I.- Two Improved Partially Blind Signature Schemes from Bilinear Pairings.- On the Security of Nominative Signatures.- Invited Talk.- Who Goes There? Internet Banking: A Matter of Risk and Reward.- Access Control II.- Role Activation Management in Role Based Access Control.- VO-Sec: An Access Control Framework for Dynamic Virtual Organization.- Threshold Cryptography.- An Efficient Implementation of a Threshold RSA Signature Scheme.- GBD Threshold Cryptography with an Application to RSA Key Recovery.- An (n-t)-out-of-n Threshold Ring Signature Scheme.- Protocols I.- Deposit-Case Attack Against Secure Roaming.- Security Requirements for Key Establishment Proof Models: Revisiting Bellare-Rogaway and Jeong-Katz-Lee Protocols.- Group Signatures.- Group Signature Schemes with Membership Revocation for Large Groups.- An Efficient Group Signature Scheme from Bilinear Maps.- Group Signature Where Group Manager, Members and Open Authority Are Identity-Based.- Protocols II.- Analysis of the HIP Base Exchange Protocol.- ID-based Authenticated Key Agreement for Low-Power Mobile Devices.- Signatures II.- On the Security of Two Key-Updating Signature Schemes.- Building Secure Tame-like Multivariate Public-Key Cryptosystems: The New TTS.- Invited Talk.- Potential Impacts of a Growing Gap Between Theory and Practice in Information Security.- Credentials.- Security Analysis and Fix of an Anonymous Credential System.- Counting Abuses Using Flexible Off-line Credentials.- Symmetric Cryptography.- Cryptanalysis of Two Variants of PCBC Mode When Used for Message Integrity.- New Cryptographic Applications of Boolean Function Equivalence Classes.