@inproceedings{wurster-ccs-10, author = {G. Wurster and P.C. van Oorschot}, title = {A Control Point for Reducing Root Abuse of File-System Privileges}, booktitle = {ACM CCS}, month = {Oct}, year = {2010}, url = {../paper-archive/wurster-ccs-10.pdf} }

@article{oda-HotSec-10, author = {T. Oda and A. Somayaji}, title = {Visual Security Policy for the Web}, year = {2010}, month = {Aug}, journal = {USENIX HotSec'10 (5th Workshop on Hot Topics in Security)}, url = {../paper-archive/oda-hotsec-10.pdf} }

@inproceedings{cowperthwaite-ASIA-10, title = {The Futility of DNSSec}, author = {A. Cowperthwaite and A. Somayaji}, booktitle = {Annual Symposium on Information Security}, pages = {2--8}, month = {Jun}, year = {2010}, url = {../paper-archive/cowperthwaite-asia-10.pdf} }

@article{oda-W2SP0-10, author = {T. Oda and A. Somayaji}, title = {No Web Site Left Behind: Are We Making Web Security Only for the Elite?}, year = {2010}, month = {May}, journal = {Web 2.0 Security and Privacy (W2SP)}, url = {../paper-archive/oda-w2sp-10.pdf} }

@article{muir-ComputingSurveys-09, author = {J.A. Muir and P.C. van Oorschot}, title = {Internet Geolocation: Evasion and Counterevasion}, year = {2009}, month = {Dec}, journal = {ACM Computing Surveys (vol.42 no.1, Article 4)}, url = {../paper-archive/muir-computingsurveys-09.pdf} }

@article{chiasson-JINFS-09, author = {S. Chiasson and A. Forget and R. Biddle and P.C. van Oorschot}, title = {User Interface Design Affects Security: Patterns in Click-Based Graphical Passwords}, year = {2009}, month = {Dec}, journal = {Int. J. Inf. Security 8(6):387-398}, url = {../paper-archive/chiasson-jinfs-09.pdf} }

@inproceedings{chiasson-CCS-09, author = {S. Chiasson and A. Forget and E. Stobert and P.C. van Oorschot and R. Biddle}, title = {Multiple Password Interference in Text Passwords and Click-Based Graphical Passwords}, booktitle = {ACM CCS}, year = {2009}, month = {Nov}, url = {../paper-archive/chiasson-ccs-09.pdf} }

@inproceedings{biddle-CCSW-09, author = {R. Biddle and P.C. van Oorschot and A.S. Patrick and J. Sobey and T. Whalen}, title = {Browser Interfaces and Extended Validation SSL Certificates: An Empirical Study}, booktitle = {CCSW: The ACM Cloud Computing Security Workshop}, year = {2009}, month = {Nov}, url = {../paper-archive/biddle-ccsw-09.pdf} }

@inproceedings{barrera-VizSec-09, author = {D. Barrera and P.C. van Oorschot}, title = {Security Visualization Tools and IPv6 Addresses}, booktitle = {6th International Workshop on Visualization for Cyber Security (VizSec'09)}, year = {2009}, month = {Oct}, url = {../paper-archive/barrera-vizsec-09.pdf} }

@article{mannan-ComSec-09, author = {M. Mannan and P.C. van Oorschot}, title = {Reducing Threats from Flawed Security APIs: The Banking PIN Case}, year = {2009}, month = {Sep}, journal = {Computers & Security (vol.28 no.6, pp.410-420)}, url = {../paper-archive/mannan-comsec-09.pdf} }

@inproceedings{wurster-HotSec-09, author = {Glenn Wurster and P.C. van Oorschot}, title = {System Configuration as a Privilege}, booktitle = {USENIX HotSec'09}, year = {2009}, month = {Aug}, url = {../paper-archive/wurster-hotsec-09.pdf} }

@inproceedings{brown-cisda-09, author = {C. Brown and A. Cowperthwaite and A. Hijazi and A. Somayaji}, booktitle = {IEEE Symposium on Computational Intelligence for Security and Defense Applications (CISDA'2009)}, title = {Analysis of the 1999 DARPA/Lincoln Laboratory IDS evaluation data with NetADHICT}, year = {2009}, month = {Jul}, pages = {1-7}, url = {../paper-archive/brown-cisda-09.pdf} }

@inproceedings{van-Oorschot-MCETECH-09, author = {P.C. van Oorschot and T. Wan}, title = {TwoStep: An Authentication Method Combining Text and Graphical Passwords}, booktitle = {MCETECH 2009: 4th International MCETECH Conference on eTechnologies}, year = {2009}, month = {May}, url = {../paper-archive/van-Oorschot-MCETECH-09.pdf} }

@inproceedings{herley-FC-09, author = {C. Herley and P.C. van Oorschot and A.S. Patrick}, title = {Passwords: If We're So Smart, Why Are We Still Using Them?}, booktitle = {Financial Cryptography and Data Security (FC 2009)}, year = {2009}, month = {Feb}, url = {../paper-archive/herley-fc-09.pdf} }

@inproceedings{thorpe-ACSAC-08, author = {A. Salehi-Abari and J. Thorpe and P.C. van Oorschot}, title = {On Purely Automated Attacks and Click-Based Graphical Passwords}, booktitle = {24th Annual Computer Security Applications Conference (ACSAC'08)}, year = {2008}, month = {Dec}, url = {../paper-archive/salehiabari-acsac-08.pdf} }

@inproceedings{alsaleh-ACSAC-08, author = {M. Alsaleh and D. Barrera and P.C. van Oorschot}, title = {Improving Security Visualization with Exposure Map Filtering}, booktitle = {24th Annual Computer Security Applications Conference (ACSAC'08)}, year = {2008}, month = {Dec}, url = {../paper-archive/alsaleh-acsac-08.pdf} }

@inproceedings{nali-ESORICS-08, author = {D. Nali and P.C. van Oorschot}, title = {CROO: A Universal Infrastructure and Protocol to Detect Identity Fraud}, booktitle = {European Symposium on Research in Computer Security (ESORICS'08)}, year = {2008}, month = {Oct}, url = {../paper-archive/nali-esorics-08.pdf} }

@inproceedings{sobey-ESORICS-08, author = {J. Sobey and R. Biddle and P.C. van Oorschot and A.S. Patrick}, title = {Exploring User Reactions to Browser Cues for Extended Validation Certificates}, booktitle = {European Symposium on Research in Computer Security (ESORICS'08)}, year = {2008}, month = {Oct}, url = {../paper-archive/sobey-esorics-08.pdf} }

@inproceedings{oda-CCS-08, author = {T. Oda and G. Wurster and P.C. van Oorschot and A. Somayaji}, title = {SOMA: Mutual Approval for Included Content in Web Pages}, booktitle = {ACM Computer and Communications Security (CCS'08)}, year = {2008}, month = {Oct}, url = {../paper-archive/oda-ccs-08.pdf} }

@inproceedings{chiasson-HCI-08, author = {S. Chiasson and A. Forget and R. Biddle and P.C. van Oorschot}, title = {Influencing Users Towards Better Passwords: Persuasive Cued Click-Points}, booktitle = {Human-Computer Interaction (HCI'08)}, year = {2008}, month = {Sep}, url = {../paper-archive/chiasson-hci08.pdf} }

@inproceedings{mannan-NSPW-08, author = {M. Mannan and P.C. van Oorschot}, title = {Localization of Credential Information to Address Increasingly Inevitable Data Breaches}, booktitle = {New Security Paradigms Workshop (NSPW'08)}, year = {2008}, month = {Sep}, url = {../paper-archive/mannan-nspw-08.pdf} }

@inproceedings{wurster-NSPW-08, author = {G. Wurster and P.C. van Oorschot}, title = {The Developer is the Enemy}, booktitle = {New Security Paradigms Workshop (NSPW'08)}, year = {2008}, month = {Sep}, url = {../paper-archive/wurster-nspw-08.pdf} }

@inproceedings{forget-SOUPS-08, author = {A. Forget and S. Chiasson and P.C. van Oorschot and R. Biddle}, title = {Improving Text Passwords Through Persuasion}, booktitle = {Symposium on Usable Privacy and Security (SOUPS'08)}, year = {2008}, month = {Jul}, url = {../paper-archive/forget-soups08.pdf} }

@inproceedings{mannan-HotSec-08, author = {M. Mannan and P.C. van Oorschot}, title = {Digital Objects as Passwords}, booktitle = {USENIX HotSec'08 (3rd Workshop on Hot Topics in Security)}, year = {2008}, month = {Jul}, url = {../paper-archive/mannan-hotsec08.pdf} }

@inproceedings{forget-PT-08, author = {A. Forget and S. Chiasson and P.C. van Oorschot and R. Biddle}, title = {Persuasion for Stronger Passwords: Motivation and Pilot Study}, booktitle = {Third International Conference on Persuasive Technology}, year = {2008}, month = {Jun}, url = {../paper-archive/forget-pt08.pdf} }

@inproceedings{oda-ASIA-08, author = {T. Oda and A. Somayaji and T. White}, title = {Content Provider Conflict on the Modern Web}, booktitle = {3rd Annual Symposium on Information Assurance (ASIA'08)}, year = {2008}, month = {Jun}, url = {../paper-archive/oda-asia-08.pdf} }

@inproceedings{hijazi-ICC-08, author = {A. Hijazi and H. Inoue and A. Matrawy and P.C. van Oorschot and A. Somayaji}, title = {Discovering Packet Structure through Lightweight Hierarchical Clustering}, booktitle = {IEEE International Conference on Communications (ICC'08)}, year = {2008}, month = {May}, url = {../paper-archive/hijazi-icc08.pdf} }

@inproceedings{mannan-WWW-08, author = {M. Mannan and P.C. van Oorschot}, title = {Privacy-Enhanced Sharing of Personal Content on the Web}, booktitle = {World Wide Web (WWW'08)}, year = {2008}, month = {Apr}, url = {../paper-archive/mannan-www08.pdf} }

@inproceedings{chiasson-UPSEC-08, author = {S. Chiasson and J. Srinivasan and R. Biddle and P. van Oorschot}, title = {Centered Discretization with Application to Graphical Passwords}, booktitle = {USENIX Usability, Psychology and Security (UPSEC'08)}, year = {2008}, month = {Apr}, url = {../paper-archive/chiasson-upsec08.pdf} }

@inproceedings{van_Oorschot-Thorpe-TISSEC-08, author = {P.C. van Oorschot and J. Thorpe}, title = {On Predictive Models and User-Drawn Graphical Passwords}, booktitle = {ACM TISSEC, Vol. 10, No. 4}, year = {2008}, month = {Jan}, url = {../paper-archive/DAS_journal_preprint.pdf} }

@inproceedings{mannan-FC-08, author = {M. Mannan and P.C. van Oorschot}, title = {Weighing Down ``The Unbearable Lightness of PIN Cracking''}, booktitle = {Financial Cryptography and Data Security (FC'08)}, year = {2008}, month = {Jan}, url = {../paper-archive/mannan-fc08.pdf} }

@inproceedings{inoue-LISA-07, author = {H. Inoue and D. Jansens and A. Hijazi and A. Somayaji}, title = {NetADHICT: A Tool for Understanding Network Traffic}, booktitle = {Large Installation System Administration Conference (LISA'07)}, year = {2007}, month = {Nov}, url = {../paper-archive/inoue-lisa07.pdf} }

@inproceedings{Ingham-CN-07, author = {K.L. Ingham and A. Somayaji and J. Burge and Stephanie Forrest}, title = {Learning DFA representations of HTTP for protecting web applications}, booktitle = {Computer Networks, Vol. 51, No. 5}, year = {2007}, url = {../paper-archive/sdarticle.pdf} }

@inproceedings{Whyte-ACSAC-07, author = {D. Whyte and P.C. van Oorschot and E. Kranakis}, title = {Tracking Darkports for Network Defense}, booktitle = {23rd Annual Computer Security Applications Conference (ACSAC'07)}, year = {2007}, month = {Dec}, url = {../paper-archive/whyte-acsac07.pdf} }

@inproceedings{ingham-LANC-07, author = {K.L. Ingham and A. Somayaji}, title = {A Methodology for Designing Accurate Anomaly Detection Systems}, booktitle = {IFIP/ACM Latin American Networking Conference (LANC'07)}, year = {2007}, month = {Oct}, url = {../paper-archive/ingham-lanc07.pdf} }

@inproceedings{chiasson-ESORICS-07, author = {S. Chiasson and P.C. van Oorschot and R. Biddle}, title = {Graphical Password Authentication Using Cued Click Points}, booktitle = {European Symposium on Research in Computer Security (ESORICS'07)}, year = {2007}, month = {Sep}, url = {../paper-archive/chiasson-esorics07.pdf} }

@inproceedings{Ingham-RAID-07, author = {K. Ingham and H. Inoue}, title = {Comparing Anomaly Detection Techniques for HTTP}, booktitle = {International Symposium on Recent Advances in Intrusion Detection (RAID'07)}, year = {2007}, month = {Sep} }

@inproceedings{mannan-NSPW-07, author = {M. Mannan and P.C. van Oorschot}, title = {Security and Usability: The Gap in Real-World Online Banking}, booktitle = {New Security Paradigms Workshop (NSPW'07)}, year = {2007}, month = {Sep}, url = {../paper-archive/mannan-nspw07.pdf} }

@inproceedings{nali-NSPW-07, author = {D. Nali and P.C. van Oorschot and A. Adler}, title = {VideoTicket: Detecting Identity Fraud Attempts via Audiovisual Certificates and Signatures}, booktitle = {New Security Paradigms Workshop (NSPW'07)}, year = {2007}, month = {Sep}, url = {../paper-archive/nali-nspw07.pdf} }

@inproceedings{Thorpe-USENIX-07, author = {J. Thorpe and P.C. van Oorschot}, title = {Human-Seeded Attacks and Exploiting Hot-Spots in Graphical Passwords}, booktitle = {16th USENIX Security Symposium}, year = {2007}, month = {Aug}, url = {../paper-archive/usenix07.hotspots.pdf} }

@inproceedings{wurster-hotsec-07, author = {G. Wurster and P.C. van Oorschot}, title = {Self-signed Executables: Restricting Replacement of Program Binaries by Malware}, booktitle = {USENIX HotSec'07 (2nd Workshop on Hot Topics in Security)}, year = {2007}, month = {Aug}, url = {../paper-archive/wurster-hotsec07.pdf} }

@inproceedings{van_Oorschot-Wan-TISSEC-07, author = {P.C. van Oorschot and T. Wan and E. Kranakis}, title = {On Inter-domain Routing Security and Pretty Secure BGP (psBGP)}, booktitle = {ACM TISSEC, Vol. 10, No. 3}, year = {2007}, month = {Jul}, url = {../paper-archive/psBGP-journal-draft.pdf} }

@inproceedings{Clark-SOUPS-07, author = {J. Clark and P.C. van Oorschot and C. Adams}, title = {Usability of Anonymous Web Browsing: An Examination of Tor Interfaces and Deployability}, booktitle = {Symposium on Usable Privacy and Security (SOUPS'07)}, year = {2007}, month = {Jul}, url = {../paper-archive/soups2007.tor.pdf} }

@inproceedings{chiasson-SOUPS-07, author = {S. Chiasson and Robert Biddle and P.C. van Oorschot}, title = {A Second Look at the Usability of Click-Based Graphical Passwords}, booktitle = {Symposium on Usable Privacy and Security (SOUPS'07)}, year = {2007}, month = {Jul}, url = {../paper-archive/soups2007.passpoints-usability.pdf} }

@inproceedings{chiasson-USM-07, author = {S. Chiasson and R. Biddle and A. Somayaji}, title = {Even Experts Deserve Usable Security: Design guidelines for security management systems}, booktitle = {Workshop on Usable IT Security Management (USM'07)}, year = {2007}, month = {Jul}, url = {../paper-archive/Chiasson_DesignGuidelinesForExperts_USM07.pdf} }

@inproceedings{Inoue-ASIA-07, author = {H. Inoue and A. Somayaji}, title = {Lookahead Pairs and Full Sequences: A Tale of Two Anomaly Detection Methods}, booktitle = {2nd Annual Symposium on Information Assurance}, year = {2007}, month = {Jun}, url = {../paper-archive/inoue-albany07.pdf} }

@inproceedings{mmannan-fc-07, author = {M. Mannan and P. C. van Oorschot}, title = {Using a Personal Device to Strengthen Password Authentication from an Untrusted Computer}, booktitle = {Financial Cryptography and Data Security (FC'07)}, publisher = {Springer-Verlag}, series = {LNCS}, year = {2007}, month = {Feb}, url = {../paper-archive/mmannan-fc-07.pdf} }

@inproceedings{Whyte-ACSAC-06, author = {D. Whyte and P.C. van Oorschot and E. Kranakis}, title = {Addressing SMTP-based Mass-Mailing Activity Within Enterprise Networks}, booktitle = {22nd Annual Computer Security Applications Conference (ACSAC'06)}, year = {2006}, month = {Dec}, url = {../paper-archive/93.pdf} }

@article{pvanoorschot-tissec-06, author = {P. C. van Oorschot and S. Stubblebine}, title = {On Countering Online Dictionary Attacks with Login Histories and Humans-in-the-Loop}, year = {2006}, month = {Aug}, journal = {ACM Transactions on Information and System Security (TISSEC)}, url = {../paper-archive/pvanoorschot-tissec-06.pdf} }

@inproceedings{chiasson-usenix-06, author = {S. Chiasson, P.C. van Oorschot and R. Biddle}, title = {A Usability Study and Critique of Two Password Managers}, booktitle = {USENIX Security Symposium}, year = {2006}, month = {Aug}, url = {../paper-archive/chiasson-usenix-06.pdf} }

@inproceedings{whyte-hotsec-06, author = {D. Whyte and P.C. van Oorschot and E. Kranakis}, title = {Exposure Maps: Removing Reliance on Attribution During Scan Detection}, booktitle = {USENIX HotSec'06 (1st Workshop on Hot Topics in Security)}, year = {2006}, month = {Jul}, url = {../paper-archive/whyte-hotsec-06.pdf} }

@inproceedings{twan-ssn-06, author = {T. Wan and P.C. van Oorschot}, title = {Analysis of BGP Prefix Origins During Google.s May 2005 Outage}, year = {2006}, month = {Apr}, booktitle = {Security in Systems and Networks (SSN'06)}, url = {../paper-archive/twan-ssn-06.pdf} }

@inproceedings{mmannan-fc-06, author = {M. Mannan and P. C. van Oorschot}, title = {A Protocol for Secure Public Instant Messaging}, booktitle = {Financial Cryptography and Data Security (FC'06)}, publisher = {Springer-Verlag}, series = {LNCS}, year = {2006}, month = {Feb}, url = {../paper-archive/mmannan-fc-06.pdf} }

@article{pvanoorschot-ijis-06, author = {P. C. van Oorschot and J.M. Robert and M. Vargas Martin}, title = {A Monitoring System for Detecting Repeated Packets with Applications to Computer Worms}, year = {2006}, month = {Feb}, journal = {International Journal of Information Security}, url = {../paper-archive/pvanoorschot-ijis-06.pdf} }

@inproceedings{dwhyte-acsac-05, author = {D. Whyte and P.C. van Oorschot and E. Kranakis}, title = {Detecting Intra-Enterprise Scanning Worms Based on Address Resolution}, year = {2005}, month = {Dec}, booktitle = {Annual Computer Security Applications Conference (ACSAC'05)}, url = {../paper-archive/dwhyte-acsac-05.pdf} }

@inproceedings{yli-acsac-05, author = {Y. Li and A. Somayaji}, title = {Securing Email Archives through User Modeling}, booktitle = {Annual Computer Security Applications Conference (ACSAC'05)}, year = {2005}, month = {Dec}, url = {../paper-archive/yli-acsac-05.pdf} }

@inproceedings{ehughes-lisa-05, author = {E. Hughes and A. Somayaji}, title = {Towards Network Awareness}, booktitle = {Large Installation System Administration Conference (LISA'05)}, year = {2005}, month = {Dec}, url = {../paper-archive/ehughes-lisa-05.pdf} }

@inproceedings{mmannan-worm-05, author = {M. Mannan and P. C. van Oorschot}, title = {On Instant Messaging Worms, Analysis and Countermeasures}, year = {2005}, month = {Nov}, address = {Fairfax, VA}, booktitle = {ACM Workshop on Rapid Malcode (WORM'05)}, url = {../paper-archive/mmannan-worm-05.pdf} }

@inproceedings{twan-nato-05, author = {T. Wan and P.C. van Oorschot and E. Kranakis}, title = {A Selective Introduction to Border Gateway Protocol (BGP) Security Issues}, year = {2005}, month = {Oct}, booktitle = {NATO Advanced Studies Institute on Network Security and Intrusion Detection}, url = {../paper-archive/twan-nato-05.pdf} }

@inproceedings{jthorpe-nspw-05, author = {J. Thorpe and P. C. van Oorschot and A. Somayaji}, title = {Pass-thoughts: Authenticating With Our Minds}, year = {2005}, month = {Sep}, booktitle = {New Security Paradigms Workshop, (NSPW'05)}, url = {../paper-archive/jthorpe-nspw-05.pdf} }

@inproceedings{pvanoorschot-nspw-05, author = {P. C. van Oorschot}, title = {Message Authentication by Integrity with Public Corroboration}, year = {2005}, month = {Sep}, booktitle = {New Security Paradigms Workshop, (NSPW'05)}, url = {../paper-archive/pvanoorschot-nspw-05.pdf} }

@article{pvanoorschot-ieeetdsc-05, author = {P. van Oorschot and A. Somayaji and G. Wurster}, title = {Hardware-assisted circumvention of self-hashing software tamper resistance}, year = {2005}, month = {Jun}, journal = {IEEE Transactions on Dependable and Secure Computing}, url = {../paper-archive/pvanoorschot-ieeetdsc-05.pdf} }

@inproceedings{amatrawy-acns-05, author = {A. Matrawy and P. C. van Oorschot and A. Somayaji}, title = {Mitigating Network Denial-of-Service Through Diversity-Based Traffic Management}, booktitle = {Applied Cryptography and Network Security (ACNS'05)}, year = {2005}, month = {Jun}, pages = {104-121}, url = {../paper-archive/amatrawy-acns-05.pdf} }

@inproceedings{gwurster-ieeesp-05, author = {G. Wurster and P. van Oorschot and A. Somayaji}, title = {A generic attack on checksumming-based software tamper resistance}, year = {2005}, month = {May}, booktitle = {IEEE Symposium on Security and Privacy}, url = {../paper-archive/gwurster-ieeesp-05.pdf} }

@inproceedings{dwhyte-ndss-05, author = {D. Whyte and E. Kranakis and P.C. van Oorschot}, title = {DNS-based Detection of Scanning Worms in an Enterprise Network}, year = {2005}, month = {Feb}, booktitle = {Network and Distributed System Security Symposium (NDSS'05)}, url = {../paper-archive/dwhyte-ndss-05.pdf} }

@inproceedings{pvanoorschot-fc-05, author = {P. C. van Oorschot and S. Stubblebine}, title = {Countering Identity Theft through Digital Uniqueness, Location Cross-Checking, and Funneling}, year = {2005}, month = {Feb}, booktitle = {Financial Cryptography and Data Security (FC'05)}, url = {../paper-archive/pvanoorschot-fc-05.pdf} }

@inproceedings{twan-ndss-05, author = {T. Wan and E. Kranakis and P.C. van Oorschot}, title = {Pretty Secure BGP}, year = {2005}, month = {Feb}, booktitle = {Network and Distributed System Security Symposium (NDSS'05)}, url = {../paper-archive/twan-ndss-05.pdf} }

@inproceedings{jthorpe-acsac-04, author = {J. Thorpe and P. C. van Oorschot}, title = {Towards Secure Design Choices for Implementing Graphical Passwords}, year = {2004}, month = {Dec}, booktitle = {Annual Computer Security Applications Conference (ACSAC'04)}, url = {../paper-archive/jthorpe-acsac-04.pdf} }

@inproceedings{mmannan-pst-04, author = {M. Mannan and P. C. van Oorschot}, title = {Secure Public Instant Messaging: A Survey}, year = {2004}, month = {Oct}, address = {Fredericton, NB}, booktitle = {Privacy, Security and Trust (PST'04)}, pages = {69--77}, url = {../paper-archive/mmannan-pst-04.pdf} }

@inproceedings{twan-icics-04, author = {T. Wan and E. Kranakis and P.C. van Oorschot}, title = {Securing the Destination Sequenced Distance Vector Routing Protocol (S-DSDV)}, year = {2004}, month = {Oct}, booktitle = {International Conference on Information and Communications Security (ICICS'04)}, url = {../paper-archive/twan-icics-04.pdf} }

@inproceedings{jthorpe-usenix-04, author = {J. Thorpe and P. C. van Oorschot}, title = {Graphical Dictionaries and the Memorable Space of Graphical Passwords}, year = {2004}, month = {Aug}, booktitle = {USENIX Security Symposium}, url = {../paper-archive/jthorpe-usenix-04.pdf} }

@inproceedings{twan-acns-04, author = {T. Wan and E. Kranakis and P.C. van Oorschot}, title = {S-RIP: A Secure Distance Vector Routing Protocol}, year = {2004}, month = {Jun}, booktitle = {Applied Cryptography and Network Security (ACNS'04)}, url = {../paper-archive/twan-acns-04.pdf} }

@inproceedings{pvanoorschot-fc-04, author = {S. Stubblebine and P. C. van Oorschot}, title = {Addressing Online Dictionary Attacks with Login Histories and Humans-in-the-Loop}, year = {2004}, month = {Feb}, booktitle = {Financial Cryptography and Data Security (FC'04)}, url = {../paper-archive/pvanoorschot-fc-04.pdf} }