USS
2004
13 years 6 months ago
2004
Today's Internet intrusion detection systems (IDSes) monitor edge networks' DMZs to identify and/or filter malicious flows. While an IDS helps protect the hosts on its l...
USS
2004
13 years 6 months ago
2004
USS
2004
13 years 6 months ago
2004
Many host-based anomaly detection systems monitor a process ostensibly running a known program by observing the system calls the process makes. Numerous improvements to the precis...
USS
2004
13 years 6 months ago
2004
USS
2004
13 years 6 months ago
2004
We present Tor, a circuit-based low-latency anonymous communication service. This second-generation Onion Routing system addresses limitations in the original design by adding per...
USS
2004
13 years 6 months ago
2004
It is well known that it is insecure to use the access(2) system call in a setuid program to test for the ability of the program's executor to access a file before opening sa...
USS
2004
13 years 6 months ago
2004
Graphical password schemes have been proposed as an alternative to text passwords in applications that support graphics and mouse or stylus entry. In this paper we detail what is,...
USS
2004
13 years 6 months ago
2004
Privilege separation partitions a single program into two parts: a privileged program called the monitor and an unprivileged program called the slave. All trust and privileges are...
USS
2004
13 years 6 months ago
2004
USS
2004
13 years 6 months ago
2004
Buffer overflow exploits make use of the treatment of strings in C as character arrays rather than as first-class objects. Manipulation of arrays as pointers and primitive pointer...