|
D. Balzarotti, G. Banks, M. Cova, V. Felmetsger, R. Kemmerer, W. Robertson, F. Valeur, G. Vigna
"Are Your Votes Really Counted? Testing the Security of Real-world Electronic Voting Systems" (To appear) International Symposium on Software Testing and Analysis (ISSTA) - Seattle, WA, July 20-24 2008 [ ] |
|
G. Vigna, F. Valeur, D. Balzarotti, W. Robertson, C. Kruegel, E. Kirda
"Reducing Errors in the Anomaly-based Detection of Web-based Attacks Through the Combined Analysis of Web Requests and SQL Queries" (To appear) Journal of Computer Security [ ] |
|
|
D. Balzarotti, G. Vigna, M. Cova
"ClearShot: Eavesdropping on Keyboard Input from Video" (To appear) IEEE Symposium on Research on Security and Privacy, Oakland, CA May 2008 [ PDF ] |
|
|
D.Balzarotti, M.Cova, V.Felmetsger, N.Jovanovic, E.Kirda, C.Kruegel, G.Vigna
"Saner: Composing Static and Dynamic Analysis to Validate Sanitization in Web Applications" (To appear) IEEE Symposium on Research on Security and Privacy, Oakland, CA May 2008 [ PDF ] |
|
P. McDaniel, M. Blaze, G. Vigna, et al.
"EVEREST: Evaluation and Validation of Election-Related Equipment, Standards and Testing" In Ohio Secretary of State's EVEREST Report December 2007 [ Ohio Secretary of State Page | PDF | Bibtex ] |
|
|
D. Balzarotti,
C. Kruegel ,
W. Robertson
G. Vigna
"Improving Signature Testing Through Dynamic Data Flow Analysis" Annual Computer Security Applications Conference (ACSAC 23), December 10-14, 2007, Miami Beach, Florida, USA [ Details | PDF ] |
|
|
D. Balzarotti,
M. Cova ,
V. Felmetsger
G. Vigna
"Multi-Module Vulnerability Analysis of Web-based Applications" ACM Conference on Computer and Communication Security (ACM CCS), October 29-November 2, 2007, Alexandria, Virginia, USA [ Details | PDF ] |
|
|
M. Cova ,
D. Balzarotti,
V. Felmetsger
G. Vigna
"Swaddler: An Approach for the Anomaly-based Detection of State Violations in Web Applications" Recent Advance in Intrusion Detection (RAID), September 5-7, 2007, Queensland, Australia [ Details | PDF ] |
|
M. Van Gundy,
D. Balzarotti,
G. Vigna
"Catch Me, If You Can: Evading Network Signatures with Web-based Polymorphic Worms" First USENIX Workshop on Offensive Technologies (WOOT) 2007 [ Details | PDF ] |
|
|
G. Vigna, R. Kemmerer, D. Balzarotti, G. Banks, M. Cova, V. Felmetsger, W. Robertson, and F. Valeur
"Security Evaluation of the Sequoia Voting System" Report commissioned as part of the California Secretary of State's Top-To-Bottom Review of California Voting Systems. July 20, 2007. [ California Secretary of State Page | PDF | Bibtex | More info ] |
|
|
D. Balzarotti,
P. Costa,
G.P. Picco
"The LighTS Tuple Space Frawework and its Customization for Context-Aware Applications" International Journal on Web Intelligence and Agent Systems, Volume 5, Number 2, 2007 [ Details | PDF ] |
|
|
D. Balzarotti,
C. Ghezzi,
M. Monga
"Supporting cooperative software processes in a decentralized and nomadic world" IEEE Transactions on Systems, Man, and Cybernetics -- Part A: Systems and Humans 36(6), November 2006 [ Details | PDF ] |
|
|
D. Balzarotti,
M. Monga ,
S. Sicari
"Assessing the risk of using vulnerable components" Quality of protection: security measurements and metrics, Advances in Information Security 23 Springer New York,2006 [ Details | PDF ] |
|
|
D. Balzarotti,
A. Castaldo D'Ursi,
L. Cavallaro,
Mattia Monga
"Slicing AspectJ Woven Code" Proceedings of the Foundations of Aspect-Oriented Languages workshop (FOAL2005)- Chicago, IL (USA) - March 2005 [ Details | PDF ] |
|
|
G.P. Picco ,
P. Costa,
D. Balzarotti,
"LighTS: A Lightweight, Customizable Tuple Space Supporting Context-Aware Applications" Proceedings of the 20th ACM Symposium on Applied Computing (SAC05)- Santa Fe (New Mexico, USA) - March 2005 [ Details | PDF ] |
|
|
Davide Balzarotti,
M. Monga
"Using Program Slicing to Analyze Aspect-Oriented Composition" Proceedings of Foundations of Aspect-Oriented Languages Workshop at AOSD 2004- Lancaster (UK) - March 2004 [ Details | PDF ] |
|
|
G. Vigna ,
W. Robertson ,
D. Balzarotti
"Testing Network-based Intrusion Detection Signatures Using Mutant Exploits" Proceedings of the ACM Conference on Computer and Communication Security (ACM CCS)- Washington, DC - October 2004 [ Details | PDF ] |
|
|
D. Balzarotti,
C. Ghezzi ,
M. Monga
"Supporting Configuration Management for Virtual Workgroups in a Peer-to-Peer Setting " Proceedings of International Conference on Software Engineering and Knowledge Engineering- Ischia, Italy - July 2002 [ Details | PDF ] |
|
|
D. Balzarotti,
C. Ghezzi ,
M. Monga
"Freeing Cooperation From Servers Tyranny" Web Engineering and Peer-to-Peer Computing2002 [ Details | PDF ] |
|
D. Balzarotti
"Testing Network Intrusion Detection Systems" Ph.D Dissertation, 2006 [ Details | PDF ] |