Systems Security Trusted Computing: Publications
|
[1] |
Analysing Chindogu: Applying Defamiliarisation to Security Design Shamal Faily In CHI 2012 Workshop on Defamiliarisation in Innovation and Usability. 2012. |
|
[2] |
Eliciting Policy Requirements for Critical National Infrastructure using the IRIS Framework Shamal Faily and Ivan Flechais In International Journal of Secure Software Engineering. Vol. 2. No. 4. Pages 1–18. 2011. |
|
[3] |
Bridging User−Centered Design and Requirements Engineering with GRL and Persona Cases Shamal Faily In Proceedings of the 5th International i* Workshop. Pages 114–119. 2011. |
|
[4] |
Challenges for Provenance in Cloud Computing Imad M. Abbadi and John Lyle In TaPP 2011: Proceedings of the Third USENIX Workshop on the Theory and Practice of Provenance. USENIX. 2011. |
|
[5] |
A framework for usable and secure system design Shamal Faily PhD Thesis University of Oxford. 2011. |
|
[6] |
Trustworthy Services Through Attestation John Lyle PhD Thesis Department of Computer Science‚ University of Oxford. 2011. |
|
[7] |
Eliciting Usable Security Requirements with Misusability Cases Shamal Faily and Ivan Flechais In Proceedings of the 19th IEEE International Requirements Engineering Conference. Pages 339–340. IEEE Computer Society. 2011. Pre−print available at http://www.cs.ox.ac.uk/files/4125/PID1921187.pdf Details | BibTeX | Download (pdf) | DOI (10.1109/RE.2011.6051665) |
|
[8] |
Here's Johnny: a Methodology for Developing Attacker Personas Andrea Atzeni‚ Shamal Faily‚ John Lyle‚ Cesare Cameroni and Ivan Flechais In Proceedings of the 6th International Conference on Availability‚ Reliability and Security. Pages 722–727. 2011. |
|
[9] |
User−Centered Information Security Policy Development in a Post−Stuxnet World Shamal Faily and Ivan Flechais In Proceedings of the 6th International Conference on Availability‚ Reliability and Security. Pages 716–721. 2011. |
|
[10] |
Security goes to ground: on the applicability of Security Entrepreneurship to Grassroot Activism Shamal Faily In CHI Workshop on HCI‚ Politics and the City: Engaging with Urban Grassroots Movements for Reflection and Action. 2011. |
|
[11] |
Two Requirements for Usable and Secure Software Engineering Shamal Faily In 1st Software and Usable Security Aligned for Good Engineering (SAUSAGE) Workshop. 2011. |
|
[12] |
Persona Cases: A Technique for grounding Personas Shamal Faily and Ivan Flechais In CHI '11: Proceedings of the 29th International conference on Human factors in computing systems. Pages 2267−2270. Vancouver‚ BC‚ Canada. 2011. ACM. |
|
[13] |
Security through Usability: a user−centered approach for balanced security policy requirements Shamal Faily and Ivan Flechais In Poster at: Annual Computer Security Applications Conference. 2010. |
|
[14] |
Security and Usability: Searching for the philosopher's stone Ivan Flechais and Shamal Faily In Workshop on the development of EuroSOUPS (European Symposium on Usable Privacy and Security). 2010. |
|
[15] |
Security and Usability: Analysis and Evaluation A. W. Roscoe Ronald Kainda Ivan Flechais 2010. |
|
[16] |
Two Heads are Better Than One: Security and Usability of Device Associations in Group Scenarios A. W. Roscoe Ronald Kainda Ivan Flechais In Proceedings of the 2010 Symposium on Usable Privacy and Security (SOUPS 2010). 2010. |
|
[17] |
Unsteady Ground: Certification to Unstable Criteria Joe Loughry In Proceedings of the Second International Conference on Advances in System Testing and Validation Life Cycle. Nice‚ France. , 2010. |
|
[18] |
Managing application whitelists in trusted distributed systems Jun Ho Huh‚ John Lyle‚ Cornelius Namiluko and Andrew Martin In Future Generation Computer Systems. Vol. In Press‚ Accepted Manuscript. 2010. |
|
[19] |
Trusted Computing and Provenance: Better Together John Lyle and Andrew Martin In Proceedings of the 2nd Workshop on the Theory and Practice of Provenance. Usenix. 2010. |
|
[20] |
Engineering Attestable Services (short paper) John Lyle and Andrew Martin In Ahmad−Reza Acquisti Alessandro; Smith Sean W.; Sadeghi, editor, Proceedings of the 3rd International Conference on Trust and Trustworthy Computing. Pages 257–264. Springer. June, 2010. |
|
[21] |
A Model of Security Culture for e−Science Shamal Faily and Ivan Flechais In Nathan Clarke‚ Steven Furnell and Rossouw von Solms, editors, Proceedings of the South African Information Security Multi−Conference (SAISMC 2010). Pages 154–164. University of Plymouth. 2010. |
|
[22] |
To boldly go where invention isn't secure: applying Security Entrepreneurship to secure systems design Shamal Faily and Ivan Flechais In NSPW '10: Proceedings of the 2010 New Security Paradigms Workshop. Pages 73–84. New York‚ NY‚ USA. 2010. ACM. |
|
[23] |
Designing and Aligning e−Science Security Culture with Design Shamal Faily and Ivan Flechais In Information Management & Computer Security. Vol. 18. No. 5. 2010. |
|
[24] |
The Secret Lives of Assumptions: Developing and Refining Assumption Personas for Secure System Design Shamal Faily and Ivan Flechais In HCSE'2010: Proceedings of the 3rd Conference on Human−Centered Software Engineering. Pages 111–118. Springer. 2010. |
|
[25] |
Barry is not the weakest link: Eliciting Secure System Requirements with Personas Shamal Faily and Ivan Flechais In Proceedings of the 24th British HCI Group Annual Conference on People and Computers: Play is a Serious Business. Pages 113–120. British Computer Society. 2010. |
|
[26] |
Improving Secure Systems Design with Security Culture Shamal Faily and Ivan Flechais In Poster at: Human Factors in Information Security. February, 2010. |
|
[27] |
Analysing and Visualising Security and Usability in IRIS Shamal Faily and Ivan Flechais In Availability‚ Reliability and Security‚ 2010. ARES 10. Fifth International Conference on. February, 2010. Details | BibTeX | Download (pdf) | DOI (10.1109/ARES.2010.28) |
|
[28] |
A Meta−Model for Usable Secure Requirements Engineering Shamal Faily and Ivan Flechais In Software Engineering for Secure Systems‚ 2010. SESS '10. ICSE Workshop on. Pages 29–35. May, 2010. Details | BibTeX | Download (pdf) | DOI (10.1145/1809100.1809105) |
|
[29] |
Towards tool−support for Usable Secure Requirements Engineering with CAIRIS Shamal Faily and Ivan Flechais In International Journal of Secure Software Engineering. Vol. 1. No. 3. Pages 56–70. 2010. |
|
[30] |
Usability and Security of Out−Of−Band Channels in Secure Device Pairing Protocols A. W. Roscoe Ronald Kainda Ivan Flechais In SOUPS '09: Proceedings of the 5th Symposium on Usable Privacy and Security. 2009. |
|
[31] |
Stakeholder involvement‚ motivation‚ responsibility‚ communication: How to design usable security in e−Science I. Flechais and M. A. Sasse Vol. 67. No. 4. Pages 281−296. 2009. Details | BibTeX | Download (pdf) | DOI (10.1016/j.ijhcs.2007.10.002) |
|
[32] |
On the Feasibility of Remote Attestation for Web Services John Lyle and Andrew Martin In SecureCom09: Proceedings of the International Symposium on Secure Computing. Pages 283−288. IEEE. 2009. |
|
[33] |
Trustworthy Log Reconciliation for Distributed Virtual Organisations Jun Ho Huh and John Lyle In Liqun Chen‚ Chris J. Mitchell and Andrew Martin, editors, Trust '09: Proceedings of the 2nd International Conference on Trusted Computing. Pages 169−182. Berlin‚ Heidelberg. April, 2009. Springer−Verlag. |
|
[34] |
Trustable Remote Verification of Web Services John Lyle In Liqun Chen‚ Chris J. Mitchell and Andrew Martin, editors, TRUST. Pages 153−168. Springer. April, 2009. |
|
[35] |
Context−Sensitive Requirements and Risk Analysis Shamal Faily In Requirements Engineering Doctoral Symposium. 2009. |
|
[36] |
Context−Sensitive Requirements and Risk Management with IRIS Shamal Faily and Ivan Flechais In International Requirements Engineering‚ 2009. RE'09. 17th IEEE. IEEE. August, 2009. Details | BibTeX | Download (pdf) | DOI (10.1109/RE.2009.54) |
|
[37] |
On formalising and normalising role−based access control systems D. J. Power M. A. Slaymaker and A. C. Simpson In The Computer Journal. Vol. 52. No. 3. Pages 305−325. 2009. |
|
[38] |
Making the invisible visible: a theory of security culture for secure and usable grids Shamal Faily and Ivan Flechais In UK e−Science All Hands Conference 2008‚ Edinburgh‚ UK (Oral Presentation). 2008. |
|
[39] |
The Ten Page Introduction to Trusted Computing Andrew Martin No. RR−08−11. OUCL. December, 2008. |
|
[40] |
On the facilitation of fine−grained access to distributed healthcare data D. Russell M. A. Slaymaker D. J. Power and A. C. Simpson In Proceedings of Secure Data Management 2008. 2008. |
|
[41] |
Towards a Secure‚ Tamper−Proof Grid Platform. Andrew Cooper and Andrew Martin In Sixth IEEE International Symposium on Cluster Computing and the Grid (CCGrid 2006)‚ 16−19 May 2006‚ Singapore. Pages 373−380. IEEE Computer Society. 2006. |
|
[42] |
Securing web services for deployment in health grids D. J. Power‚ E. A. Politou‚ M. A. Slaymaker and A. C. Simpson In Future Generation Computer Systems. Vol. 22. No. 5. Pages 547–570. 2006. |
|
[43] |
Information Leakage from Optical Emanations Joe Loughry and David A. Umphress In ACM Transactions on Information and Systems Security. Vol. 5. No. 3. Pages 262–289. August, 2002. |