Table of Contents

I Intrusion Detection.- 1 Intrusion Confinement by Isolation in Information Systems.- 2 Analyzing the Performance of Program Behavior Profiling for Intrusion Detection.- 3 Integrating Data Mining Techniques with Intrusion Detection Methods.- II Role-Based Access Control.- 4 RBAC on the Web by Secure Cookies.- 5 eMEDAC: Role-based Access Control Supporting Discretionary and Mandatory Features.- 6 Software Agents for Role Based Security.- III Critical Infrastructure Protection Panel.- 7 Selected Topics in Infrastructure and Information Assurance.- IV Policy/Modeling.- 8 A Secret Splitting Method for Assuring the Confidentiality of Electronic Records.- 9 For Unknown Secrecies Refusal is Better than Lying.- V Workflow Systems.- 10 Extending The BFA Workflow Authorization Model to Express Weighted Voting.- 11 A Strategy for an MLS Workflow Management System.- VI Data Mining/Data Warehousing.- 12 Impact of Decision-Region Based Classification Mining Algorithms on Database Security.- 13 Protecting Against Data Mining through Samples.- 14 Security Administration for Federations, Warehouses, and other Derived Data.- VII Intrusion Detection Panel.- 15 Panel on Intrusion Detection.- VIII Multilevel Security.- 16 Enforcing Integrity While Maintaining Secrecy.- 17 The Effect of Confidentiality on the Structure of Databases.- IX Temporal Authorization Models.- 18 Temporal Authorization in the Simplified Event Calculus.- 19 Specifying and Computing Hierarchies of Temporal Authorizations.- X Object-Oriented Databases.- 20 The Security Problem against Inference Attacks on Object-Oriented Databases.- 21 A Logical Formalization for Specifying Authorizations in Object-Oriented Databases.