Patrick Mcdaniel

ASR: Anonymous and Secure Reporting of Traffic Forwarding Activity in Mobile Ad Hoc Networks (2008)

IP networks fundamentally rely on the Address Resolution Protocol (ARP) for proper operation. Unfortunately, vulnerabilities in the ARP protocol enable a raft of IP-based impersonation,...

Heesook Choi, William Enck, Jaesheung Shin, Patrick Mcdaniel

Nodes forward data on behalf of each other in mobile ad hoc networks. In a civilian application, nodes are assumed to be selfish and rational, i.e., they pursue their own self-interest. Hence, the...

3. Exploit (2008)

Patrick Mcdaniel, William Enck, Patrick Traynor, Thomas La Porta

• The law of unintended consequences holds that almost all human actions have at least one unintended consequence. Systems and Internet Infrastructure Security Laboratory (SIIS) Page 2 Large Scale...

ABSTRACT Protecting Users From “Themselves” (2008)

William Enck, Ra Rueda, Joshua Schiffman, Yogesh Sreenivasan, Luke St. Clair, Trent Jaeger, ...

Computer usage and threat models have changed drastically since the advent of access control systems in the 1960s. Instead of multiple users sharing a single file system, each user has many devices...

Abstract Non-Invasive Methods for Host Certification (2008)

Patrick Traynor, Michael Chien, Scott Weaver, Boniface Hicks, Patrick Mcdaniel

Determining whether a user or system is exercising appropriate security practices is difficult in any context. Such difficulties are particularly pronounced when uncontrolled or unknown hosts join...

TARP: Ticket-based Address Resolution Protocol (2008)

ASR: Anonymous and Secure Reporting of Traffic Forwarding Activity in Mob ile Ad Hoc Networks (2008)

IP networks fundamentally rely on the Address Resolution Protocol (ARP) for proper operation. Unfortunately, vulnerabilities in the ARP protocol enable a raft of IP-based impersonation,...

Heesook Choi, William Enck, Jaesheung Shin, Patrick Mcdaniel

Nodes forward data on behalf of each other in mobile ad hoc networks. In a civilian application, nodes are assumed to be selfish and rational, i.e., they pursue their own self-interest. Hence, the...

Establishing and Sustaining System Integrity via Root of Trust Installation (2008)

Luke St. Clair, Joshua Schiffman, Trent Jaeger, Patrick Mcdaniel

Integrity measurements provide a means by which distributed systems can assess the trustability of potentially compromised remote hosts. However, current measurement techniques simply assert the...

Design, Implementation and Evaluation of Security in iSCSI-based Network Storage Systems ABSTRACT Shiva Chaitanya Computer Science and (2008)

Patrick Mcdaniel, Murali Vilayannur, Anand Sivasubramaniam

This paper studies the performance and security aspects of the iSCSI protocol in a network storage based system. Ethernet speeds have been improving rapidly and network throughput is no longer...

Systems and Internet Infrastructure Labratory (2008)

Kevin Butler, Toni Farley, Patrick Mcdaniel, Jennifer Rexford

The Border Gateway Protocol (BGP) is the de facto interdomain routing protocol of the Internet. Although the performance BGP has been historically acceptable, there are mounting concerns about its...

Policy Evolution: Autonomic Environmental Security (2008)

Understanding Equivalance in High-Level and Information Flow Policy (2008)

Security policy in contemporary computing systems is largely inert. For this reason, reaction to changes in an environment requires manual (administrator) intervention. Futhermore, because policy...

Integrating SELinux with Security-typed Languages (2008)

Information flow policies (labels and lattices) are not stated in terms that administrators and developers

Boniface Hicks, Ra Rueda, Trent Jaeger, Patrick Mcdaniel

Recent advances in the area of security-typed languages have enabled the development of realistic applications aware of information flow security. Traditionally, operating systems have enforced MAC...

Securing Non-Volatile Main Memory (2008)

William Enck, Kevin Butler, Thomas Richardson, Patrick Mcdaniel

Non-volatile memories provide energy efficiency, tolerance against power failure, and “instant-on” power-up. These memories are likely to replace traditional volatile memory in next-generation...

Abstract (2008)

Patrick Mcdaniel, Subhabrata Sen

Enterprise networks today carry a range of mission critical communications. A successful worm attack within an enterprise network can be substantially more devastating to most companies than attacks...

Password Exhaustion: Predicting the End of Password Usefulness (2008)

Luke St. Clair, Lisa Johansen, William Enck, Matthew Pirretti, Patrick Traynor, Patrick Mcdaniel, ...

Passwords are currently the dominant authentication mechanism in computing systems. However, users are unwilling or unable to retain passwords with a large amount of entropy. This reality is...

Privacy Preserving Web-based Email (2008)

Patrick Traynor, Kevin Butler, William Enck, Jennifer Plasterr, Patrick Mcdaniel

Abstract. Recent web-based applications offer users free service in exchange for access to personal communication, such as on-line email services and instant messaging. The inspection and retention...

Design, Implementation and Evaluation of Security in iSCSI-based Network Storage Systems ABSTRACT Shiva Chaitanya Computer Science and (2008)

Patrick Mcdaniel, Murali Vilayannur, Anand Sivasubramaniam

This paper studies the performance and security aspects of the iSCSI protocol in a network storage based system. Ethernet speeds have been improving rapidly and network throughput is no longer...

ABSTRACT Email Communities of Interest (2008)

Lisa Johansen, Michael Rowell, Kevin Butler, Patrick Mcdaniel

Email has become an integral and sometimes overwhelming part of users ’ personal and professional lives. In this paper, we measure the flow and frequency of user email toward the identification of...

Abstract Declassification with Cryptographic Functions in a Security-Typed Language (2008)

Boniface Hicks, David King, Patrick Mcdaniel

Security-typed languages are powerful tools for provably enforcing noninterference. Real computing systems, however, often intentionally violate noninterference by deliberately releasing (or...

Abstract A Scalable Key Distribution Hierarchy (2008)

ABSTRACT Blocking-Aware Private Record Linkage (2008)

As the use of the Internet for electronic commerce, audio and video conferencing, and other applications with sensitive content grows, the need for secure services becomes critical. Central to the...

Ali Al-lawati, Dongwon Lee, Patrick Mcdaniel

In this paper, the problem of quickly matching records (i.e., record linkage problem) from two autonomous sources without revealing privacy to the other parties is considered. In particular, our...

Non-Invasive Methods for Host Certification (2008)

Patrick Traynor, Michael Chien, Scott Weaver, Boniface Hicks, Patrick Mcdaniel

Abstract — Determining whether a user or system is exercising appropriate security practices is difficult in any context. Such difficulties are particularly pronounced when uncontrolled or unknown...

Abstract Windowed Key Revocation in Public Key Infrastructures (2008)

A fundamental problem inhibiting the wide acceptance of a Public Key Infrastructure (PKI) in the Internet is the lack of a mechanism that provides scalable certificate revocation. In this paper, we...

Abstract (2008)

Patrick Mcdaniel, Subhabrata Sen

Many emerging applications on the Internet requiring group communication have varying security requirements. Significant strides have been made in achieving strong semantics and security guarantees...

Abstract (2008)

Enterprise networks today carry a range of mission critical communications. A successful worm attack within an enterprise network can be substantially more devastating to most companies than attacks...

ABSTRACT Blocking-Aware Private Record Linkage (2008)

Ali Al-lawati, Dongwon Lee, Patrick Mcdaniel

In this paper, the problem of quickly matching records (i.e., record linkage problem) from two autonomous sources without revealing privacy to the other parties is considered. In particular, our...

Abstract Windowed Certificate Revocation (2007)

Abstract Windowed Key Revocation in Public Key Infrastructures (2007)

The advent of electronic commerce and personal communications on the Internet heightens concerns over the lack of privacy and security. Network services providing a wide range of security related...

A Response to \Can We Eliminate Certicate Revocation Lists?" (2007)

A fundamental problem inhibiting the wide acceptance of a Public Key Infrastructure (PKI) in the Internet is the lack of a mechanism that provides scalable certificate revocation. In this paper, we...

Patrick Mcdaniel, Aviel Rubin

Abstract. The massive growth of electronic commerce on the Internet heightens concerns over the lack of meaningful certicate management. One issue limiting the availability of such services is the...

A Scalable Key Distribution Hierarchy (2007)

Patrick Mcdaniel Sugih, Patrick Mcdaniel, Sugih Jamin

As the use of the Internet for electronic commerce, audio and video conferencing, and other applications with sensitive content grows, the need for secure services becomes critical. Central to the...

General Terms Security (2007)

Authorization policy infrastructures are evolving with the complex environments that they support. However, the requirements and technologies supporting context are not yet well understood. Often...

Policy (2007)

Antigone: Implementing Policy in Secure Group Communication (2007)

Policy describes how environments dictate the behavior of applications and services. Security policies specify how relevant conditions mandate how, when, and/or to whom access to controlled resources...

McDaniel, Patrick, Prakash, Atul

Significant strides have been made in achieving strong semantics and security guarantees within group communication and multicast systems. However, the scope of available security policies in these...

Ismene: Provisioning and Policy Reconciliation in Secure Group Communication (2007)

McDaniel, Patrick, Prakash, Atul

Group communication systems increasingly provide security services. However, in practice, the use of such systems is complicated by the divergent requirements and abilities of group members. In this...

Limiting sybil attacks in structured p2p networks (2007)

Hosam Rowaihy, William Enck, Patrick Mcdaniel, Thomas La Porta

Abstract—One practical limitation of structured peer-to-peer (P2P) networks is that they are frequently subject to Sybil attacks: malicious parties can compromise the network by generating and...

Configuration management at massive scale: System design and experience (2007)

William Enck, Patrick Mcdaniel, Albert Greenberg, Subhabrata Sen, Panagiotis Sebos, Sylke Spoerel, ...

The development and maintenance of network device configurations is one of the central challenges faced by large network providers. Current network management systems fail to meet this challenge...

From trusted to secure: Building and executing applications that enforce system security (2007)

Boniface Hicks, Ra Rueda, Trent Jaeger, Patrick Mcdaniel

Commercial operating systems have recently introduced mandatory access controls (MAC) that can be used to ensure system-wide data confidentiality and integrity. These protections rely on restricting...

On attack causality in internet-connected cellular networks (2007)

Patrick Traynor, Patrick Mcdaniel, Thomas La Porta

The emergence of connections between telecommunications networks and the Internet creates significant avenues for exploitation. For example, through the use of small volumes of targeted traffic,...

Limiting sybil attacks in structured p2p networks (2007)

Hosam Rowaihy, William Enck, Patrick Mcdaniel, Thomas La Porta

Abstract — One practical limitation of structured peer-to-peer (P2P) networks is that they are frequently subject to Sybil attacks: malicious parties can compromise the network by generating and...

Configuration management at massive scale: System design and experience (2007)

William Enck, Patrick Mcdaniel, Albert Greenberg, Subhabrata Sen, Panagiotis Sebos, Sylke Spoerel, ...

The development and maintenance of network device configurations is one of the central challenges faced by large network providers. Current network management systems fail to meet this challenge...

A Logical Specification and Analysis for SELinux MLS (2007)

Boniface Hicks, Sandra Rueda, Luke St. Clair, Trent Jaeger, Patrick Mcdaniel

The SELinux mandatory access control (MAC) policy has recently added a multi-level security (MLS) model which is able to express a fine granularity of control over a subject's access rights. The...

Integrating SELinux with Security-typed Languages (2007)

Boniface Hicks, Sandra Rueda, Trent Jaeger, Patrick Mcdaniel

Traditionally, operating systems have enforced MAC and information flow policies with minimal dependence on application programs. However, there are many cases where systems depend on user-level...

Leveraging identitybased cryptography for node ID assignment in structured P2P systems (2007)

Sunam Ryu, Kevin Butler, Patrick Traynor, Patrick Mcdaniel

Abstract — Structured peer-to-peer systems have grown enormously because of their scalability, efficiency and reliability. These systems assign a unique identifier to each user and object. However,...

On attack causality in internet-connected cellular networks (2007)

Patrick Traynor, Patrick Mcdaniel, Thomas La Porta

The emergence of connections between telecommunications networks and the Internet creates significant avenues for exploitation. For example, through the use of small volumes of targeted traffic,...

Mitigating attacks on open functionality in sms-capable cellular networks (2006)

Patrick Traynor, William Enck, Patrick Mcdaniel, Thomas La Porta

The transformation of telecommunications networks from homogeneous closed systems providing only voice services to Internetconnected open networks that provide voice and data services presents...

From Languages to Systems: Understanding Practical Application Development in Security-typed Languages (2006)

Boniface Hicks, Kiyan Ahmadizadeh, Patrick Mcdaniel

Security-typed languages are an evolving tool for implementing systems with provable security guarantees. However, to date, these tools have only been used to build simple “toy ” programs. As...

Approaches for building secure, distributed systems have fundamental limitations that prevent the construction of dynamic, Internet-scale systems. In this paper, we propose a concept of a shared...

Secure Attribute-Based Systems (2006)

Approaches for building secure, distributed systems have fundamental limitations that prevent the construction of dynamic, Internet-scale systems. In this paper, we propose a concept of a shared...

Matthew Pirretti, Patrick Traynor, Patrick Mcdaniel

Attributes define, classify, or annotate the datum to which they are assigned. However, traditional attribute architectures and cryptosystems are ill-equipped to provide security in the face of...

Optimizing BGP security by exploiting path stability (2006)

Kevin Butler, Patrick Mcdaniel

The Border Gateway Protocol (BGP) is the de facto interdomain routing protocol on the Internet. While the serious vulnerabilities of BGP are well known, no security solution has been widely deployed....

Mitigating attacks on open functionality in sms-capable cellular networks (2006)

Approaches for building secure, distributed systems have fundamental limitations that prevent the construction of dynamic, Internet-scale systems. In this paper, we propose a concept of a shared...

Patrick Traynor, William Enck, Patrick Mcdaniel, Thomas La Porta

Abstract — The transformation of telecommunications networks from homogeneous closed systems providing only voice services to Internet-connected open networks that provide voice and data services...

Secure Attribute-Based Systems (2006)

Matthew Pirretti, Patrick Traynor, Patrick Mcdaniel

Attributes are a powerful building block for the design of information systems. However, traditional attribute architectures and cryptosystems are ill-equipped to provide security in the face of...

Optimizing BGP security by exploiting path stability (2006)

Kevin Butler, Patrick Mcdaniel

The Border Gateway Protocol (BGP) is the de facto interdomain routing protocol on the Internet. While the serious vulnerabilities of BGP are well known, no security solution has been widely deployed....

Exploiting open functionality in sms-capable cellular networks (2005)

Approaches for building secure, distributed systems have fundamental limitations that prevent the construction of dynamic, Internet-scale systems. In this paper, we propose a concept of a shared...

William Enck, Patrick Traynor, Patrick Mcdaniel, Thomas La Porta

Cellular networks are a critical component of the economic and social infrastructures in which we live. In addition to voice services, these networks deliver alphanumeric text messages to the vast...

Exploiting open functionality in sms-capable cellular networks (2005)

William Enck, Patrick Traynor, Patrick Mcdaniel, Thomas La Porta

Cellular networks are a critical component of the economic and social infrastructures in which we live. In addition to voice services, these networks deliver alphanumeric text messages to the vast...

Secure Reporting of Traffic Forwarding Activity in Mobile Ad Hoc Networks (2005)

Heesook Choi, William Enck, Jaesheung Shin, Patrick Mcdaniel

Nodes forward data on behalf of each other in mobile ad hoc networks. In a civilian application, nodes are assumed to be selfish and rational, i.e., they pursue their own self-interest. Hence, the...

Exploiting open functionality in sms-capable cellular networks (2005)

William Enck, Patrick Traynor, Patrick Mcdaniel, Thomas La Porta

Abstract — Cellular networks are a critical component of the economic and social infrastructures in which we live. In addition to voice services, these networks deliver alphanumeric text messages...

Secure Reporting of Traffic Forwarding Activity in Mobile Ad Hoc Networks (2005)

Heesook Choi, William Enck, Jaesheung Shin, Patrick Mcdaniel

Nodes forward data on behalf of each other in mobile ad hoc networks. In a civilian application, nodes are assumed to be selfish and rational, i.e., they pursue their own self-interest. Hence, the...

Exploiting open functionality in sms-capable cellular networks (2005)

William Enck, Patrick Traynor, Patrick Mcdaniel, Thomas La Porta

Cellular networks are a critical component of the economic and social infrastructures in which we live. In addition to voice services, these networks deliver alphanumeric text messages to the vast...

Security Policy Enforcement in the Antigone System (2005)

Patrick McDaniel, Atul Prakash

Works in communication security policy have recently focused on general-purpose policy languages and evaluation algorithms. However, because the supporting frameworks often defer enforcement, the...

Secure Reporting of Traffic Forwarding Activity in Mobile Ad Hoc Networks (2005)

Heesook Choi William, William Enck, Jaesheung Shin, Patrick Mcdaniel

Nodes forward data on behalf of each other in mobile ad hoc networks. In a civilian application, nodes are assumed to be selfish and rational, i.e., they pursue their own self-interest. Hence, the...

The sleep deprivation attack in sensor networks: analysis and methods of defense (2005)

Matthew Pirretti, Sencun Zhu, Vijaykrishnan Narayanan, Patrick Mcdaniel, Mahmut K

Abstract — The ability of sensor nodes to enter a low power sleep mode is very useful for extending network longevity. We show how adversary nodes can exploit clustering algorithms to ensure their...

The sleep deprivation attack in sensor networks: analysis and methods of defense (2005)

Matthew Pirretti, Sencun Zhu, Vijaykrishnan Narayanan, Patrick Mcdaniel, Mahmut K

Abstract — The ability of sensor nodes to enter a low power sleep mode is very useful for extending network longevity. We show how adversary nodes can exploit clustering algorithms to ensure their...

Analysis of communities of interest in data networks (2005)

William Aiello, Charles Kalmanek, Patrick Mcdaniel, Subhabrata Sen, Oliver Spatscheck

Abstract. Communities of interest (COI) have been applied in a variety of environments ranging from characterizing the online buying behavior of individuals to detecting fraud in telephone networks....

TARP: Ticket-based address resolution protocol (2005)

TARP: Ticket-based address resolution protocol (2005)

IP networks fundamentally rely on the Address Resolution Protocol (ARP) for proper operation. Unfortunately, vulnerabilities in the ARP protocol enable a raft of IP-based impersonation,...

Limiting sybil attacks in structured peer-to-peer networks (2005)

IP networks fundamentally rely on the Address Resolution Protocol (ARP) for proper operation. Unfortunately, vulnerabilities in the ARP protocol enable a raft of IP-based impersonation,...

Hosam Rowaihy, William Enck, Patrick Mcdaniel, Thomas La Porta

Abstract — Structured peer-to-peer networks are highly scalable, efficient, and reliable. These characteristics are achieved by deterministically replicating and recalling content within a widely...

Searching for privacy: Design and implementation of a p3p-enabled search engine (2004)

Simon Byers, Lorrie Faith Cranor, Dave Kormann, Patrick Mcdaniel

Abstract. Although the number of online privacy policies is increasing, it remains difficult for Internet users to understand them, let alone to compare policies across sites or identify sites with...

A Survey of BGP Security Issues and Solutions (2004)

Toni Farley, Patrick Mcdaniel, Kevin Butler

BGP is the de facto protocol enabling interdomain routing in the Internet. Although BGP has proven to be generally stable, there are mounting concerns about its ability to meet the needs of the...

A Survey of BGP Security Issues and Solutions (2004)

Kevin Butler, Toni Farley, Patrick Mcdaniel, Jennifer Rexford

The Border Gateway Protocol (BGP) is the de facto interdomain routing protocol of the Internet. Although the performance of BGP has been historically acceptable, there are continuing concerns about...

Abstract (2003)

Patrick Mcdaniel, Atul Praskash

Distributed applications are increasingly being used for communication, sharing data, and distributing data by users. However, incorporating security in them remains a significant challenge for both...

Working around BGP: An incremental approach to improving security and accuracy of interdomain routing (2003)

Geoffrey Goodell, William Aiello, Timothy Griffin, John Ioannidis, Patrick Mcdaniel, Aviel Rubin

BGP is essential to the operation of the Internet, but is vulnerable to both accidental failures and malicious attacks. We propose a new protocol that works in concert with BGP, which Autonomous...

Analysis of security vulnerabilities in the movie production and distribution process (2003)

Simon Byers, Lorrie Cranor, Dave Korman, Patrick Mcdaniel

Unauthorized copying of movies is a major concern for the motion picture industry. While unauthorized copies of movies have been distributed via portable physical media for some time, low-cost,...

Working Around BGP: An Incremental Approach to Improving Security and Accuracy of Interdomain Routing (2003)

Geoffrey Goodell, William Aiello, Timothy Griffin, John Ioannidis, Patrick McDaniel, Aviel Rubin

BGP is essential to the operation of the Internet, but is vulnerable to both accidental failures and malicious attacks. We propose a new protocol that works in concert with BGP, which Autonomous...

An Analysis of Security Vulnerabilities in the (2003)

Movie Production And, Simon Byers, Eric Cronin, Lorrie Faith Cranor, Dave Korman, Patrick Mcdaniel

Unauthorized copying of movies is a major concern for the motion picture industry. While unauthorized copies of movies have been distributed via portable physical media for some time, low-cost,...

Origin Authentication in Interdomain Routing (2003)

William Aiello, John Ioannidis, Patrick McDaniel

Attacks against Internet routing are increasing in number and severity. Contributing greatly to these attacks is the absence of origin authentication: there is no way to validate claims of address...

Analysis of security vulnerabilities in the movie production and distribution process (2003)

Simon Byers, Lorrie Cranor, Dave Kormann, Patrick Mcdaniel, Eric Cronin

Unauthorized copying of movies is a major concern for the motion picture industry. While unauthorized copies of movies have been distributed via portable physical media for some time, low-cost,...

An Architecture for Security Policy Enforcement (2002)

Methods and limitations of security policy reconciliation (2002)

aprakasheecs. umich. edu Significant progress has been made on the design of security policy representations for complex communication systems. A significant problem however remains-how to design...

Methods and limitations of security policy reconciliation (2002)

A security policy is a means by which participant session requirements are specified. However, existing frameworks provide limited facilities for the automated reconciliation of participant policies....

Flexibly Constructing Secure Groups in Antigone 2.0 (2001)

A security policy specifies session participant requirements. However, existing frameworks provide limited facilities for the automated reconciliation of participant policies. This paper considers...

Patrick Mcdaniel, Atul Prakash, Jim Irrer, Sharad Mittal, Thai-chuin Thuang

Group communication is increasingly used as a low cost building block for the development of highly available and survivable services in dynamic environments. However, contemporary frameworks often...

Flexibly Constructing Secure Groups in Antigone 2.0 (2001)

Patrick Mcdaniel, Atul Prakash, Jim Irrer, Sharad Mittal, Thai-chuin Thuang

Group communication is increasingly used as a low cost building block for the development of highly available and survivable services in dynamic environments. However, contemporary frameworks often...

Principles of policy in secure groups (2001)

Hugh Harney, Andrea Colgrove, Patrick Mcdaniel

Security policy is increasingly being used as a vehicle for specifying complex entity relationships. When used to define group security, policy must be extended to state the entirety of the security...

Flexibly Constructing Secure Groups in Antigone 2.0 (2001)

Patrick Mcdaniel, Atul Prakash, Jim Irrer, Sharad Mittal, Thai-chuin Thuang

Group communication is increasingly used as a low cost building block for the development of highly available and survivable services in dynamic environments. However, contemporary frameworks often...

Windowed Certificate Revocation (2000)

Lightweight Failure Detection in Secure Group Communication (2000)

Abstract—The advent of electronic commerce and personal communi-cations on the Internet heightens concerns over the lack of privacy and security. Network services providing a wide range of security...

Ismene: Provisioning and Policy Reconciliation in Secure Group Communication (2000)

The secure and efficient detection of process failures is an essential requirement of many distributed systems. In this paper, we present the design and analysis of a mechanism used for the detection...

Windowed Certificate Revocation (2000)

Group communication systems increasingly provide security services. However, in practice, the use of such systems is complicated by the divergent requirements and abilities of group members. In this...

Antigone: Implementing Policy in Secure Group Communication (2000)

The advent of electronic commerce and personal communications on the Internet heightens concerns over the lack of privacy and security. Network services providing a wide range of security related...

Patrick McDaniel, Atul Prakash

Significant strides have been made in achieving strong semantics and security guarantees within group communication and multicast systems. However, the scope of available security policies in these...

Lightweight Failure Detection in Secure Group Communication (2000)

Patrick McDaniel, Atul Prakash

The secure and efficient detection of process failures is an essential requirement of many distributed systems. In this paper, we present the design and analysis of a mechanism used for the detection...

Antigone: A Flexible Framework for Secure Group Communication (1999)

Antigone: A Flexible Framework for Secure Group Communication (1999)

Rights to individual papers remain with the author or the author's employer. Permission is granted for noncommercial reproduction of the work for educational or research purposes. This copyright...

Windowed Certificate Revocation (1999)

Rights to individual papers remain with the author or the author's employer. Permission is granted for noncommercial reproduction of the work for educational or research purposes. This copyright...

Patrick Mcdaniel Sugih, Patrick Mcdaniel, Sugih Jamin

The advent of electronic commerce and personal communications on the Internet heightens concerns over the lack of privacy and security. Network services providing a wide range of security related...

Windowed Certificate Revocation (1999)

A Response to "Can We Eliminate Certificate Revocation Lists?" (1999)

The advent of electronic commerce and personal communications on the Internet heightens concerns over the lack of privacy and security. Network services providing a wide range of security related...

Patrick McDaniel, Patrick Mcdaniel, Aviel Rubin, Aviel Rubin

The use of certificate revocation lists (CRLs) to convey revocation state in public key infrastructures has long been the subject of debate. Centrally, opponents of the technology attribute a range...

Antigone: A Flexible Framework for Secure Group Communication (1999)

Atul Prakash, Patrick McDaniel, Patrick Mcdaniel, Peter Honeyman, Peter Honeyman

Many emerging applications on the Internet requiring group communication have varying security requirements. Significant strides have been made in achieving strong semantics and security guarantees...

Antigone: A Flexible Framework for Secure Group Communication (1999)

Patrick Mcdaniel, Atul Prakash, Peter Honeyman

Many emerging applications on the Internet requiring group communication have varying security requirements. Significant strides have been made in achieving strong semantics and security guarantees...

Lightweight Secure Group Communication (1998)

Atul Prakash, Patrick McDaniel, Patrick Mcdaniel, Peter Honeyman, Peter Honeyman

An advantage of today's high speed networks is the ability to support group communication. Applications that support group communication allow the free exchange of ideas and data in real time,...

Windowed Key Revocation in Public Key Infrastructures (1998)

A Scalable Key Distribution Hierarchy (1998)

A fundamental problem inhibiting the wide acceptance of a Public Key Infrastructure (PKI) in the Internet is the lack of a mechanism that provides scalable certificate revocation. In this paper, we...

A Scalable Key Distribution Hierarchy (1998)

As the use of the Internet for electronic commerce, audio and video conferencing, and other applications with sensitive content grows, the need for secure services becomes critical. Central to the...