Publications of the Laboratory for Education and Research in Secure Systems Engineering (LERSSE)

Channel: Publications of the Laboratory for Education and Research in Secure Systems Engineering (LERSSE)

Towards Improving the Performance of Enterprise Authorization Systems using...

November 8, 2010, 12:09 pm

With the emergence of tighter corporate policies and government regulations, access control has become an integral part of business requirements in enterprises. The authorization process in enterprise...

View Article

Speculative Authorization

December 20, 2010, 12:45 pm

As enterprises aim towards achieving zero latency for their systems, latency introduced by authorization process can act as an obstacle towards achieving their goal. We present...

View Article

Augur: Aiding Malware Detection Using Large-Scale Machine Learning

August 5, 2012, 9:06 pm

We present Augur: a large-scale machine learning system that uses malware static and dynamic analyses to predict the maliciousness of new files. Unlike other machine learning-based malware detection...

View Article

Speculative Authorization

October 3, 2012, 10:29 am

We present Speculative Authorization (SPAN), a prediction technique that reduces authorization latency in enterprise systems. SPAN predicts requests that a system client might make in the near future,...

View Article

Thwarting fake accounts by predicting their victims

April 1, 2014, 1:29 pm

Traditional fake account detection systems employed by today's online social networks rely on either features extracted from user activities, or ranks computed from the underlying social graph. We...

View Article

Thwarting Fake OSN Accounts by Predicting their Victims

July 28, 2015, 2:25 pm

Traditional defense mechanisms for fighting against automated fake accounts in online social networks are victim-agnostic. Even though victims of fake accounts play an important role in the viability...

View Article

Dynamically Regulating Mobile Application Permissions

February 8, 2018, 8:02 am

Current smartphone operating systems employ permission systems to regulate how apps access sensitive resources. These systems are not well-aligned with users’ privacy expectations: users often have no...

View Article

Contextual Permission Models for Better Privacy Protection

July 21, 2018, 2:32 am

Despite corporate cyber intrusions attracting all the attention, privacy breaches that we, as ordinary users, should be worried about occur every day without any scrutiny. Smartphones, a household...

View Article

Forecasting Suspicious Account Activity at Large-Scale Online Service Providers

November 30, 2018, 9:35 am

In the face of large-scale automated social engineering attacks to large online services, fast detection and remediation of compromised accounts are crucial to limit the spread of the attack and to...

View Article