Securing email archives through user modeling

Proceedings - Annual Computer Security Applications Conference, ACSAC

Volumn 2005, Issue , 2005, Pages 547-556

  Li, Yiru ^a   Somayaji, Anil ^a  

^a CARLETON UNIVERSITY   (Canada)

Author keywords

[No Author keywords available]

Indexed keywords

ADMINISTRATIVE DATA PROCESSING; DIGITAL LIBRARIES; INFORMATION SERVICES; PROBABILITY; SECURITY OF DATA; USER INTERFACES;

EMAIL ARCHIVES; USER AUTHENTICATION;

ELECTRONIC MAIL;

EID: 33846281237     PISSN: 10639527     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/CSAC.2005.50     Document Type: Conference Paper

References (27)

1. D. Anderson, T. Frivold, and A. Valdes. Next-Generation Intrusion Detection Expert System (NIDES): A Summary. Technical Report SRI-CSL-95-07, Computer Science Laboratory, SRI International, May 1995.
2. Apache Software Foundation. SpamAssassin, 2005. http://spamassassin. apache.org.
3. F. Bergadano, D. Gunetti, and C. Picardi. User Authentication through Keystroke Dynamics. ACM Trans. Inf. Syst. Secur., 5(4):367-397, 2002.
4. C. Chung, M. Gertz, and K. Levitt. DEMIDS: Misuse Detection System Database System. In IICIS, 1999.
5. C. Cowan, C. Pu, D. Maier, J. Walpole, P. Bakke, S. Beattie, A. Grier, P. Wagle, Q. Zhang, and H. Hinton. Stack-Guard: Automatic Adaptive Detection and Prevention of Buffer-Overflow Attacks. In Proc. 7th USENIX Security Conference, Jan 1998.
6. M. Crispin. Request for Comment (RFC) 3501: Internet Message Access Protocol-Version 4revl, March 2003.
7. M. Delany. Internet draft: Domain-based email authentication using public-keys advertised in the DNS (DomainKeys), March 2005. http://www.ietf.org/ internetdrafts/draft-delany-domainkeys-base-02.txt.
8. W. DuMouchel. Computer Intrusion Detection Based on Bayes Factors for Comparing Command Transition Probabilities. Technical report, National Institute of Statistical Sciences (NISS), 1999.
9. L. Heberlein, G. Dias, K. Levitt, B. Mukherjee, J. Wood, and D. Wolber. A Network Security Monitor. In Proceedings of the IEEE Symposium on Security and Privacy, 1990.
10. S. Hofmeyr. An Immunological Model of Distributed Detection and its Application to Computer Security. PhD thesis, University of New Mexico, 1999.
11. G. Kim and E. Spafford. The Design and Implementation of Tripwire: A File System Integrity Checker. In ACM Conference on Computer and Communication Security, 1994.
12. J. Klensin. Request for Comment (RFC) 2821: Simple Mail Transfer Protocol, April 2001.
13. T. Lane. Machine Learning Techniques for the Computer Security Domain of Anomaly Detection. PhD thesis, Purdue University, 2000.
14. Y. Li. Email archive intrusion detection systems. Master's thesis, Carleton University, 2005.
15. R. Maxion and T. Townsend. Masquerade Detection Using Truncated Command Lines. In DSN '02: Proceedings of the 2002 International Conference on Dependable Systems and Networks, 2002.
16. J. Myers and M. Rose. Request for Comment (RFC) 1939: Post Office Protocol-Version 3, May 1996.
17. M. Oka, Y. Oyama, H. Abe, and K. Kato. Anomaly Detection Using Layered Networks Based on Eigen Cooccurrence Matrix. In RAID 2004 Proceedings, volume 3224 of LNCS, pages 223-237. Springer-Verlag, 2004.
18. B. Ramsdell. Request for Comment (RFC) 2633: S/MIME Version 3 Message Specification, June 1999.
19. M. Roesch. Snort - Lightweight Intrusion Detection for Networks. In Proceedings of LISA '99: 13th Systems Administration Conference, Seattle, WA, November 7-12 1999.
20. M. Schonlau, W. DuMouchel, W. Ju, A. Karr, M. Theus, and Y. Vardi. Computer intrusion: Detecting masquerades. Statistical Science, 16(1):1-17, 2001.
21. A. Somayaji. Operating System Stability and Security through Process Homeostasis. PhD thesis, University of New Mexico, 2002.
22. A. Somayaji and S. Forrest. Automated Response Using System-Call Delays. In Proceedings of the 9th USENIX Security Symposium, Denver, CO, August 14-17, 2000.
23. The Spamhaus Project, http://www.spamhaus.org, 2005.
24. University of Washington. IMAP information center. http://www.washington. edu/imap/, 2005.
25. K. Wang and S. J. Stolfo. Anomalous Payload-based Network Intrusion Detection. In RAID 2004 Proceedings, volume 3224 of LNCS, pages 203-222. Springer-Verlag, 2004.
26. M. Wong and W. Schlitt. Internet draft: Sender policy framework (SPF) for authorizing use of domains in email, version 1, June 6 2005. http://www.ietf.org/internetdrafts/draft-schlitt-spf-classic-02.txt.
27. P. Zimmerman. The official PGP user's guide. MIT Press, Cambridge, MA, 1995.