Full Description
This book constitutes the refereed proceedings of the 36th IFIP TC 11 International Conference on Information Security and Privacy Protection, SEC 2021, held in Oslo, Norway, in June 2021.*The 28 full papers presented were carefully reviewed and selected from 112 submissions. The papers present novel research on theoretical and practical aspects of security and privacy protection in ICT systems. They are organized in topical sections on digital signatures; vulnerability management; covert channels and cryptography; application and system security; privacy; network security; machine learning for security; and security management.
*The conference was held virtually.
Contents
Digital Signatures.- XML Signature Wrapping Still Considered Harmful: A Case Study on the Personal Health Record in Germany.- Trust Me If You Can: Trusted Transformation Between (JSON) Schemas to Support Global Authentication of Education Credentials.- SIUV: A Smart car Identity management and Usage control system based on Verifiable credentials.- Vulnerability Management.- A Performance Assessment of Free-to-use Vulnerability Scanners - Revisited.- QuickBCC: Quick and Scalable Binary Vulnerable Code Clone Detection.- Automatic Inference of Taint Sources to Discover Vulnerabilities in SOHO Router Firmware.- Covert Channels and Cryptography.- ESQABE: Predicting Encrypted Search Queries.- Reconnection-based Covert Channels in Wireless Networks.- Minecraft Altered Skin Channel (MASC).- Lattice-based weak curve fault attack on ECDSA.- Application and System Security.- HyperSec: Visual Analytics for blockchain security monitoring.- 100 Popular Open-Source InfosecTools.- RootAsRole: Towards a Secure Alternative to sudo/su Commands for Home Users and SME Administrators.- Privacy.- Accept All: The Landscape of Cookie Banners in Greece & the UK.- The AppChk Crowd-Sourcing Platform: Which third parties are iOS apps talking to?.- Compiling Personal Data and Subject Categories from App Data Models.- Privacy Concerns Go Hand in Hand with Lack of Knowledge: The Case of the German Corona-Warn-App.- Perceived Privacy Problems within Digital Contact Tracing: A Study Among Swedish Citizens.- Network Security.- Secure and Scalable IoT: An IoT Network Platform Based on Network Overlay and MAC security.- Enriching DNS Flows with Host-Based Events to Bypass Future Protocol Encryption.- Advanced Cowrie Configuration to Increase Honeypot Deceptiveness.- Less is Often More: Header Whitelisting as Semantic Gap Mitigation in HTTP-based Software Systems.- Machine Learning for Security.- TAR: Generalized Forensic Framework to Detect Deepfakes using Weakly Supervised Learning.- Anomaly Detection for Insider Threats: An Objective Comparison of Machine Learning Models and Ensembles.- Revitalizing Self-Organizing Map: Anomaly Detection using Forecasting Error Patterns.- Security Management.- What is lurking in your backups?.- How Do Users Chain Email Accounts Together?.- Tensions that hinder the implementation of digital.
