.jpg)
Refereed Papers
| Browsers and User Interfaces |
Data Mining |
Industrial Practice and Experience |
| Internet Monetization |
Mobility |
Performance and Scalability |
Rich Media |
Search |
| Security and Privacy |
Semantic / Data Web |
Social Networks and Web 2.0 |
| Technology for Developing Regions |
Web Engineering |
WWW in China |
XML and Web Data |
Developers Track |
Panels |
Posters |
Tutorials |
Workshops
Security and Privacy
The flexibility and richness of the Web architecture have come at the price of increasing complexity and lack of a sound overall security architecture. The movement toward Web-based services, and the increasing dependency on the Web, have also made reliability a first-rate security concern. From malware and spyware, drive-by downloads, typo squatting, denial of service attacks, to phishing and identity theft, a variety of threats make the Web an increasingly hostile and dangerous environment. By undermining user trust, these problems are hampering e-commerce and the growth of online communities.
This track promotes the view that security, privacy, reliability, and sound guiding ethics must be part of the texture of a successful World Wide Web. In addition to devising practical tools and techniques, it is the duty of the research community to promote and guide business adoption of security technology for the Web and to help inform related legislation. We seek novel research (both theoretical and practical) in security, privacy, reliability, and ethics as they relate to the Web, including but not limited to the following areas:
-
Authentication, authorization, and auditing on the web
-
Availability and reliability of Web servers and services
-
Intrusion detection and honeypots
-
The Insider threat
-
Privacy-enhancing technologies, including anonymity, pseudonymity and identity management, specifically for the web
-
User interfaces and usability as they relate to use of cryptography and online scams such as phishing and pharming
-
Applications of cryptography to the web, including PKI and supporting concepts like digital signatures, certification, etc.
-
Electronic commerce, particularly security mechanisms for e-cash, auctions, payment, and fraud detection
-
Economic / business analysis of Web security and privacy
-
Legal and legislative approaches to issues of Web security and privacy
-
Secure and robust management of server farms
-
Dealing with client-side risks
-
Security for new web services (blogs, RSS, wikis, etc.)
-
Wireless web security (including RFID, sensors, and mobile phones)
-
Content protection and abuse on the web (DRM, web/blog spam, etc.)
Paper formatting requirements will be provided on the submissions page.
-
Program Committee:
Adam Smith (Penn State)
Alex Halderman (Princeton University)
Ben Adida (Harvard University)
Ben Laurie (Apache Foundation)
Brent Waters (SRI International)
Christopher Kruegel (Technical University Vienna)
Collin Jackson (Stanford University)
Dan Kaminsky
Dirk Balfanz (Google)
Eric Rescorla (Network Resonsance)
Hovav Shacham (University of California at San Diego)
Jason Hong (Carnegie Mellon University)
Larry Koved (IBM TJ Watson Research Center)
Marc Dacier (Eurecom)
Markus Jakobsson (Indiana University)
Matthew Wright (University of Texas at Arlington)
Michael Steiner (IBM TJ Watson Research Center)
Naveen Agarwal (Yahoo!)
Nicholas Weaver (ICSI)
Nick Feamster (Georgia Tech)
Rachna Dhamija (Harvard University)
Shriram Krishnamurthi (Brown University)
Shuo Chen (Microsoft Research)
Ulfar Erlingsson (Microsoft Research Silicon Valley)
Zhendong Su (UC Davis)
