Australian Information Security Management Conference
Submissions from 2012
An Investigation into the Wi-Fi Protected Setup PIN of the Linksys WRT160N v2, Symon Aked, Christopher Bolan, and Murray Brand
A Proposed Formula for Comparing Kill Password Effectiveness in Single Password RFID Systems, Christopher Bolan
Exposing Potential Privacy Issues with IPv6 Address Construction, Clinton Carpene and Andrew Woodward
HARMs: Hierarchical Attack Representation Models for Network Security Analysis, Jin Hong and Dong-Seong Kim
The Mobile Execution Environment: A Secure and Non-Intrusive Approach to Implement a Bring You Own Device Policy for Laptops, Peter James and Don Griffiths
Does the Android Permission System Provide Adequate Information Privacy Protection for End-Users of Mobile Apps?, Michael Lane
Web-Based Risk Analysis for Home Users, R. T. Magaya and N. L. Clarke
The Security Challenges and Countermeasures of Virtual Cloud, Bhupesh Mansukhani and Tanveer A. Zia
An Information Security Awareness Capability Model (ISACM), Robert Poepjes and Michael Lane
Implementing a Secure Academic Grid System - A Malaysian Case, Mohd Samsu Sajat, Suhaidi Hassan, Adi Affandi Ahmad, Ali Yusny Daud, and Amran Ahmad
Experimenting with Anomaly Detection by Mining Large-Scale Information Networks, A. Taleb-Bendiab
Human-Readable Real-Time Classifications of Malicious Executables, Anselm Teh and Arran Stewart
Territorial Behavior and the Economics of Botnets, Craig S. Wright
Submissions from 2011
Implementation of ISO 27001 in Saudi Arabia – obstacles, motivations, outcomes, and lessons learned, Belal AbuSaad, Fahad A. Saeed, Khaled Alghathbar, and Bilal Khan
An investigation into darknets and the content available via anonymous peer-to-peer file sharing, Symon Aked
Insecurity by obscurity continues: are ADSL router manuals putting end-users at risk, Kim Andersson and Patryck Szewczyk
A risk index model for security incident prioritisation, Nor Badrul Anuar, Steven Furnell, Maria Papadaki, and Nathan Clarke
Understanding the management of information security controls in practice , Daniel Bachlechner, Ronald Maier, Frank Innerhofer-Oberperfler, and Lukas Demetz
Seeing the full picture: the case for extending security ceremony analysis, Giampaolo Bella and Lizzie Coles-Kemp
A proposal for utilising active jamming for the defence of RFID systems against attack, Christopher Bolan
Seniors language paradigms: 21st century jargon and the impact on computer security and financial transactions for senior citizens, David M. Cook, Patryck Szewczyk, and Krishnun Sansurooah
User perceptions of end user license agreements in the smartphone environment, Hamish Cotton and Christopher Bolan
Human-related information security problems faced by British companies in economically rising countries, Suchinthi Fernando and Tatsuo Asai
Evaluation of users’ perspective on VOIP’s security vulnerabilities, Alireza Heravi and Sameera Mubarak
A preliminary investigation of distributed and cooperative user authentication, C G. Hocking, S M. Furnell, N L. Clarke, and P L. Reynolds
An agile IT security model for project risk assessment, Damien Hutchinson, Heath Maddern, and Jason Wells
A longitudinal study of wi-fi access point security in the Perth central business district , Emil Jacobson and Andrew Woodward
Are existing security models suitable for teleworking?, Peter James
Modelling misuse cases as a means of capturing security requirements, Michael N. Johnstone
Security aspects of sensor-based defence systems, Michael N. Johnstone
Privacy-preserving PKI design based on group signature, Sokjoon Lee, Hyeok Chan Kwon, and Dong-il Seo
Australian primary care health check: who is accountable for information security?, Rachel J. Mahncke and Patricia A H Williams
An empirical study of challenges in managing the security in cloud computing, Bupesh Mansukhani and Tanveer A. Zia
Stakeholders in security policy development, S B. Maynard, A B. Ruighaver, and A Ahmad
Trusted interoperability and the patient safety issues of parasitic health care software, Vincent B. McCauley and Patricia A H Williams
Cloud computing concerns in developing economies, Mathias Mujinga and Baldreck Chipangura
Analysis of BGP security vulnerabilities, Muhammad Mujtaba and Priyadarsi Nanda
An exploratory study of ERM perception in Oman and proposing a maturity model for risk optimization , Arun N. Shivashankarappa, D Ramalingam, Leonid Smalov, and N Anbazhagan
Experimental study of DNS performance, Ananya Tripathi, Farhat Khan, and Akhilesh Sisodia
Out-of-band wormhole attack detection in MANETS, Sana ul Haq and Faisal B. Hussain
Attack vectors against social networking systems: the Facebook example, Matthew Warren, Shona Leitch, and Ian Rosewall
Help or hindrance: the practicality of applying security standards in healthcare, Patricia A H Williams
Using checklists to make better best, Craig S. Wright and Tanveer A. Zia
Efficient and expressive fully secure attribute-based signature in the standard model , Piyi Yang, Tanveer A. Zia, Zhenfu Cao, and Xiaolei Dong
Source code embedded (SCEM) security framework, Tanveer A. Zia and Aftab Rizvi
Submissions from 2010
Detect and Sanitise Encoded Cross-Site Scripting and SQL Injection Attack Strings Using a Hash Map, Erwin Adi and Irene Salomo
Yet Another Symbian Vulnerability Update, Nizam Uddin Bhuiyan
Mahalanobis Distance Map Approach for Anomaly Detection, Aruna Jamdagnil, Zhiyuan Tan, Priyadarsi Nanda, Xiangjian He, and Ren Ping Liu
Threat Modelling with Stride and UML, Michael N. Johnstone
A Proposed Policy-Based Management Architecture for Wireless Clients Operating in a Heterogeneous Mobile Environment, Mayank Keshariya and Ray Hunt
Micro-Blogging in the Workplace, Chia Yao Lee and Matthew Warren
A Novel Design and Implementation of Dos-Resistant Authentication and Seamless Handoff Scheme for Enterprise WLANs, Isaac Lee and Ray Hunt
An Information Security Governance Framework for Australian Primary Care Health Providers, Donald C. McDermid, Rachel J. Mahncke, and Patricia A H Williams
Information Leakage through Online Social Networking: Opening the Doorway for Advanced Persistence Threats, Nurul Nuha Abdul Molok, Shanton Chang, and Atif Ahmad
Anomaly Detection over User Profiles for Intrusion Detection, Grant Pannell and Helen Ashman
The Complexity of Security Studies in NFC Payment System, Marc Pasquet and Sylvie Gerbaix
Development and Evaluation of a Secure Web Gateway Using Existing ICAP Open Source Tools, Michael Pearce and Ray Hunt
Information Security Disclosure: A Victorian Case Study, Ian Rosewall and Matthew Warren
Organisational Learning and Incident Response: Promoting Effective Learning Through The Incident Response Process, Piya Shedden, Atif Ahmad, and A B. Ruighaver
Information Security Risk Assessment: Towards a Business Practice Perspective, Piya Shedden, Wally Smith, and Atif Ahmad
Security Information Supplied by Australian Internet Service Providers, Patryk Szewczyk
The Economics of Developing Security Embedded Software, Craig S. Wright and Tanveer A. Zia
New Approaches to Mitigation of Malicious Traffic in VoIP Networks, Tobi Wulff and Ray Hunt
An Analytical Study of It Security Governance and its Adoption on Australian Organisations, Tanveer A. Zia
Submissions from 2009
Proposed Framework for Understanding Information Security Culture and Practices in the Saudi Context, Mohammed Alnatheer and Karen Nelson
Development of a Critical Factors Model for the Knowledge Economy in Saudi Arabia, Fahad A. Alothman and Peter Busch
Spoofing Attack Against an EPC Class One RFID System, Christopher Bolan
Electronic-Supply Chain Information Security: A Framework for Information, Alizera Bolhari
Assessment of Internationalised Domain Name Homograph Attack Mitigation, Peter Hannay and Christopher Bolan
Security Requirements Engineering-The Reluctant Oxymoron, Michael N. Johnstone
Security Issues Challenging Facebook, S Leitch and M Warren
Exploring the Relationship between Organizational Culture and Information Security Culture, Joo S. Lim, Shanton Chang, Sean Maynard, and Atif Ahmad
Method for Securing Online Community Service: A Study of Selected Western Australian Councils, Sunsern Limwiriyakul
Measuring Information Security Governance Within General Medical Practice, Rachel J. Mahncke, Donald C. McDermid, and Patricia A. Williams
Challenges in Improving Information Security Practice in Australian General, Donald C. McDermid, Rachel J. Mahncke, and Patricia A. Williams
Case Study on an Investigation of Information Security Management among Law Firms, Sameera Mubarak and Elena Sitnikova
Playing Safe: A Prototype Game For Raising Awareness of Social Engineering, Michael Newbould and Stephen Furnell
2009 Personal Firewall Robustness Evaluation, Ken Pydayya, Peter Hannay, and Patryk Szewczyk
Information Security Disclosure: A Case Study, I Rosewall and M J. Warren
Strong Authentication for Web Services using Smartcards, D S. Stienne, Nathan Clarke, and Paul Reynolds
Improving an organisations existing information technology policy to increase security, Shane Talbot and Andrew Woodward
Review of Browser Extensions, a Man-in-the-Browser Phishing Techniques Targeting Bank Customers, Nattakant Utakrit
What Does Security Culture Look Like For Small Organizations?, Patricia A. Williams
Submissions from 2008
Information security governance and Boards of directors: Are they compatible?, Endre Bihari
RFID Communications - Who is listening?, Christopher Bolan
Deployment of Keystroke Analysis on a Smartphone, A Buchoux and N L. Clarke
Framework for Anomaly Detection in OKL4-Linux Based Smartphones, Geh W. Chow and Andy Jones
Evaluating the usability impacts of security interface adjustments in Word 2007, M Helala, S M. Furnell, and M Papadaki
Secure Portable Execution Environments: A Review of Available Technologies, Peter James
Dealing with the Malicious Insider, Andy Jones and Carl Colwill
Risk Mitigation Strategies for the Prepaid Card Issuer in Australia, M A. Khairuddin, P Zhang, and A Rao
Organisational security requirements: An agile approach to Ubiquitous Information Security, A B. Ruighaver
Identifying DOS Attacks Using Data Pattern Analysis, Mohammed Salem and Helen Armstrong
Network security isn't all fun and games: An analysis of information transmitted while playing Team Fortress 2, Brett Turner and Andrew Woodward
Securing a wireless network with EAP-TLS: perception and realities of its implementation, Brett Turner and Andrew Woodward
Enhanced Security for Preventing Man-in-the-Middle Attacks in Authentication, Data Entry and Transaction Verification, Jason Wells, Damien Hutchinson, and Justin Pierce
Can intrusion detection implementation be adapted to end-user capabilities?, Patricia A. Williams and Renji J. Mathew
Trust me. I am a Doctor. Your records are safe, Patricia A. Williams and Craig Valli
Assessing and Mitigating VIP Vulnerabilities in the Corporate Environment, Hoi Z. Wong
Submissions from 2007
Taxonomy of iPhone Activation and SIM Unlocking Methods, Marwan Al-Zarouni and Haitham Al-Hajri