Detecting VoIP Floods Using the Hellinger Distance (2009)
Hemant Sengar, Student Member, Haining Wang, Duminda Wijesekera, Senior Member, Sushil Jajodia, ...
Abstract—Voice over IP (VoIP), also known as Internet telephony, is gaining market share rapidly and now competes favorably as one of the visible applications of the Internet. Nevertheless, being...
Model-Based Covert Timing Channels: Automated Modeling and Evasion (2009)
Steven Gianvecchio, Haining Wang, Duminda Wijesekera
Abstract. The exploration of advanced covert timing channel design is important to understand and defend against covert timing channels. In this paper, we introduce a new class of covert timing...
Modeling Dynamic Role-based Access Constraints using UML (2008)
Khaled Alghathbar, Duminda Wijesekera
Abstract. Systematic development of security sensitive software requires that there be a sufficiently expressive linguistic extension to modeling languages. We propose an extension to the Unified...
Fast Detection of Denial-of-Service Attacks on IP Telephony (2008)
Hemant Sengar, Haining Wang, Duminda Wijesekera, Sushil Jajodia
Abstract — Recently Voice over IP (VoIP) is experiencing a phenomenal growth. Being a real-time service, VoIP is more susceptible to Denial-of-Service (DoS) attacks than regular Internet services....
SECRETS: A Secure Real-Time Multimedia (2008)
Surveillance System, Naren Kodali, Duminda Wijesekera, Csilla Farkas
Abstract. We propose a surveillance framework (SECRETS: SECure Real-time ElecTronic Surveillance) that is a practical solution to safeguarding sensitive physical facilities like command and control...
Trends and Developments in Telecommunication Security (2008)
SS7 is a signaling system for the public switched telephone network (PSTN) [1,2,3]. SS7 network transports call setup, teardown messages, database queries, trunk status, instructions for remote phone...
Multimedia Access Control using RDF Metadata ⋆ (2008)
Naren Kodali, Csilla Farkas, Duminda Wijesekera
Abstract. The Synchronized Multimedia Integration Language (SMIL) [Aya01] is an W3C [W3C03] specification for authoring multimedia documents. Although SMIL has XML like syntactic constructs, unlike...
Secure Surveillance using SMIL (2008)
Naren Kodali, Duminda Wijesekera, J. Bret Michael
The role of multimedia and user interactivity has increased in recent years. User interaction is an important component of emerging multimedia systems, and the methods of interaction will become...
Optimizing Lawful Responses to Cyber Intrusions (2008)
Thomas C. Wingfield, James B. Michael, Duminda Wijesekera, Thomas C. Wingfield, James B. Michael, Duminda Wijesekera
Abstract: Cyber intrusions are rarely met with the most effective possible response, less for technical than legal reasons. Different rogue actors (terrorists, criminals, spies, etc.) are governed by...
Specifying Multimedia Access Control using RDF ∗ (2008)
Naren Kodali, Csilla Farkas, Duminda Wijesekera
The Synchronized Multimedia Integration Language (SMIL) [Aya01] is an W3C [W3C03] specification for authoring multimedia documents. Although SMIL has XML like syntactic constructs, unlike XML, SMIL...
Semantic-Aware Data Protection in Web Services Csilla Farkas 1 (2008)
Amit Jain, Duminda Wijesekera, Anoop Singhal, Bhavani Thuraisingham
This paper presents a method to remove the dependency of XML access control models on the syntactic representation of the XML trees. We propose a semantics-based approach, expressing XML access...
MLS-SMIL for Electronic Surveillance of Facilities with Multi-Level Security Requirements (2008)
Naren Kodali, Csilla Farkas, Duminda Wijesekera
We propose a framework that provides controlled distribution of live multimedia data to display devices with different access permissions for physical surveillance of multi-level secure facilities....
Naren Kodali, Csilla Farkas, Duminda Wijesekera
The date of receipt and acceptance will be inserted by the editor Abstract. In this paper we present a generalized authorization model for digital libraries. Our aim is to support the enforcement of...
Enforcing Semantics-Aware Security in Multimedia Surveillance ⋆ (2008)
Naren Kodali, Csilla Farkas, Duminda Wijesekera
Abstract. Continuous audio-visual surveillance is utilized to ensure the physical safety of critical infrastructures such as airports, nuclear power plants and national laboratories. In order to do...
Parity-based Inference Control for Multi-dimensional Range Sum Queries (2008)
Lingyu Wang, Yingjiu Li, Sushil Jajodia, Duminda Wijesekera
This paper studies the inference control of multi-dimensional range (MDR) sum queries. We show that existing inference control methods are usually inefficient for MDR queries. We then consider...
Creating Objects in the Flexible Authorization (2008)
Framework Nicola Zannone, Nicola Zannone, Sushil Jajodia, Duminda Wijesekera
Access control is a crucial concern to build secure IT systems and, more specifically, to protect the confidentiality of information. However, access control is necessary, but not sufficient....
A Multimedia Programming Toolkit/Environment (2007)
Raja R. Harinath, Wonjun Lee, Difu Su, Sunil Wadhwa, Duminda Wijesekera, Jaideep Srivastava, ...
This paper provides details and implementation experiences of a multimedia programming language and associated toolkits. The language, a data-flow paradigm for multimedia streams, consist of blocks...
TOWARDS SECURE XML FEDERATIONS (2007)
Lingyu Wang, Duminda Wijesekera, Sushil Jajodia
Abstract The integration of isolated XML repositories has drawn more and more interest recently. In this paper, we propose XML federations to provide global e-services while preserving the necessary...
c ○ Springer-Verlag 1999 Experimental evaluation of loss perception in continuous media ⋆ (2007)
Duminda Wijesekera, Jaideep Srivastava, Anil Nerode, Mark Foresti
Abstract. Perception of multimedia quality, specified by quality-of-service (QoS) metrics, can be used by system designers to optimize customer satisfaction within resource bounds enforced by...
On the Provision of Safety Assurance via Safety Kernels for Modern Weapon Systems (2006)
Michael, J. B., Nerode, Anil, Wijesekera, Duminda
In this paper we discuss some of the challenges and approaches for providing safety assurance for modern weapon systems via software-based safety kernels. We argue that software-centric approaches...
Requirements for Self-Stabilization of Distributed Advanced Battle Managers (2006)
Auguston, Mikhail, Cook, Thomas S., Michael, James B., Shing, Man-Tak, Tummala, Harsha, Wijesekera, Duminda, ...
In this report, we formalize the self-stabilization problem as it pertains to the C2BMC, in addition to highlighting some of key features of the C2BMC that distinguish it from general-purpose...
Voip intrusion detection through interacting protocol state machines (2006)
Hemant Sengar, Duminda Wijesekera, Haining Wang, Sushil Jajodia
Being a fast-growing Internet application, Voice over Internet Protocol (VoIP) shares the network resources with the regular Internet traffic, and is susceptible to the existing security holes of the...
Mark Hartong, Rajni Goel, Duminda Wijesekera, Sciences Howard
Positive Train Control (PTC) is a wireless control system ensuring railroad safety by enforcing train separation, speed enforcement, roadway worker protection and other safety functions. Due to...
BPEL Orchestration of Secure WebMail (2006)
Saket Kaushik, Duminda Wijesekera, Paul Ammann
Web Services offer an excellent opportunity to redesign and replace old and insecure applications with more flexible and robust ones. WSEmail is one such application that replaces conventional...
Securing uml information flow using flowuml (2006)
Khaled Alghathbar, Csilla Farkas, Duminda Wijesekera
FlowUML is a logic-based system to validate information flow policies at the requirements specification phase of UML based designs. It uses Horn clauses to specify information flow polices that can...
Maintaining Privacy on Derived Objects (2005)
Nicola Zannone, Sushil Jajodia, Fabio Massacci, Duminda Wijesekera
A logic-based framework for attribute based access control (2004)
Lingyu Wang, Duminda Wijesekera, Sushil Jajodia
Attribute based access control (ABAC) grants accesses to services based on the attributes possessed by the requester. Thus, ABAC differs from the traditional discretionary access control model by...
San Francisco, USA Workshop Materials Editors: (2003)
Ludwik Kuzniarz, Zbigniew Huzar, Gianna Reggio, Jean Louis Sourrouille, Miroslaw Staron, Zbigniew Huzar, ...
James B. Michael, Thomas C. Wingfield, Duminda Wijesekera
In this paper we address the development of measured responses to coercive actions. We demonstrate, via a case study of kinetic and cyber attacks on a safety-critical software-intensive system, the...
Cardinality-based inference control in data cubes (2003)
Lingyu Wang, Duminda Wijesekera, Sushil Jajodia
This paper deals with the inference problem of data cube queries in on-line analytical processing (OLAP) systems. Even though OLAP systems restrict user accesses to predefined aggregations, the...
Precisely answering multi-dimensional range queries without privacy breaches (2003)
Lingyu Wang, Yingjiu Li, Duminda Wijesekera, Sushil Jajodia
This paper investigates the privacy breaches caused by multi-dimensional range (MDR) sum queries in OLAP systems. We show that existing inference control methods are generally ineffective or...
Provisions and obligations in policy management and security applications (2002)
Claudio Bettini, Sushil Jajodia, X. Sean Wang, Duminda Wijesekera
Policies are widely used in many different systems and applications. Recently, it has been recognized that a “yes/no ” response to every scenario is just not enough for many modern systems and...
Cardinality-based inference control in sum-only data cubes (2002)
Lingyu Wang, Duminda Wijesekera, Sushil Jajodia
Abstract. This paper deals with the inference problems in data warehouses and decision support systems such as on-line analytical processing (OLAP) systems. Even though OLAP systems restrict user...
Provisions and obligations in policy management and security applications (2002)
Claudio Bettini, Sushil Jajodia, X. Sean Wang, Duminda Wijesekera
Policies are widely used in many different systems and applications. Recently, it has been recognized that a "yes/no " response to every scenario is just not enough for many modern...
Provisions and obligations in policy management and security applications (2002)
Claudio Bettini, Sushil Jajodia, X. Sean Wang, Duminda Wijesekera
Policies are widely used in many systems and applications. Recently, it has been recognized that a “yes/no ” response to every scenario is just not enough for many modern systems and...
Relating counterexamples to test cases in CTL model checking speci Unpublished (2002)
Duminda Wijesekera, Paul Ammann, Gordon Fraser
Counterexamples produced by model checkers are frequently exploited for the purpose of testing. Counterexamples and test cases are generally treated as essentially the same thing, while in fact they...
Modern intrusion detection, data mining, and degrees of attack guilt (2002)
Steven Noel, Duminda Wijesekera, Charles Youman
This chapter examines the state of modern intrusion detection, with a particular emphasis on the emerging approach of data mining. The discussion parallels two important aspects of intrusion...
Constraints, inference channels and secure databases (2000)
Er Brodsky, Csilla Farkas, Duminda Wijesekera, X. Sean Wang
Abstract. This paper investigates the problem of confidentiality violations via illegal data inferences that occur when arithmetic constraints are combined with non-confidential numeric data to infer...
Quality of Service (QoS) Metrics for Continuous Media (1996)
Duminda Wijesekera, Jaideep Srivastava
This paper presents quality of service (QoS) metrics for continuity and synchronization specifications in continuous media (CM). Proposed metrics specify continuity and synchronization, with...
Quality of service based synchronization for continuous media / (1995)
Thesis (M.S.)--University of Minnesota, 1995.
Specification and Use of of Approximate Synchronization in Multimedia Presentations (1994)
Duminda Wijesekera, Deepak Kenchammana-hosekote, Jaideep Srivastava
Emergence of multimedia computing have brought forth new horizons and challenges to traditional computing. New notions of synchronization requirements is one such novelty of multimedia computations,...
Constructive modal logics / (1990)
Thesis (Ph. D.)--Cornell University, January, 1990.
Securing Positive Train Control Systems (1970)
Mark Hartong, Rajni Goel, Duminda Wijesekera
Positive traincontrol(PTC)systemsare distributed interoperablesystems that control the movement of passenger and freight trains, providing significant safety enhancements over traditional methods of...
Protection and Recovery of Railroad Event Recorder Data (1970)
Mark Hartong, Rajni Goel, Duminda Wijesekera
Passenger and freight locomotives in the United States are required to carry event recorders for collecting data that can be used in post-accident investigations. There are, however, shared...
Murat Gunestas, Duminda Wijesekera, Anoop Singhal
Choreography, orchestration and dynamic invocation allow new web services to be composed from existing ones. However, these compositions create service interdependencies that can be misused for...