[{"publisher":"IEEE","date_created":"2018-11-14T14:06:44Z","title":"Security in Large-Scale Internet Elections: A Retrospective Analysis of Elections in Estonia, The Netherlands, and Switzerland","issue":"4 Part","year":"2009","ddc":["000"],"keyword":["e-voting","Internet voting","Internet election","security","verifiability","RIES","Estonia","Neuch{\\^a}tel"],"language":[{"iso":"eng"}],"publication":"IEEE Transactions on Information Forensics \\& Security","abstract":[{"lang":"eng","text":"Remote voting through the Internet provides convenience and access to the electorate. At the same time, the security concerns facing any distributed application are magnified when the task is so crucial to democratic society. In addition, some of the electoral process loses transparency when it is encapsulated in information technology. In this paper, we examine the public record of three recent elections that used Internet voting. Our specific goal is to identify any potential flaws that security experts would recognize, but may have not been identified in the rush to implement technology. To do this, we present a multiple exploratory case study, looking at elections conducted between 2006 and 2007 in Estonia, Netherlands, and Switzerland. These elections were selected as particularly interesting and accessible, and each presents its own technical and security challenges. The electoral environment, technical design and process for each election are described, including reconstruction of details which are implied but not specified within the source material. We found that all three elections warrant significant concern about voter security, verifiability, and transparency. Usability, our fourth area of focus, seems to have been well-addressed in these elections. While our analysis is based on public documents and previously published reports, and therefore lacking access to any confidential materials held by electoral officials, this comparative analysis provides interesting insight and consistent questions across all these cases. Effective review of Internet voting requires an aggressive stance towards identifying potential security and operational flaws, and we encourage the use of third party reviews with critical technology skills during design, programming, and voting to reduce the changes of failure or fraud that would undermine public confidence."}],"file":[{"date_updated":"2018-12-18T13:16:07Z","creator":"hsiemes","date_created":"2018-12-18T13:16:07Z","file_size":1544790,"access_level":"open_access","file_id":"6316","file_name":"JOURNAL VERSION.pdf","content_type":"application/pdf","relation":"main_file"}],"date_updated":"2022-01-06T07:02:12Z","oa":"1","author":[{"first_name":"Guido","id":"72850","full_name":"Schryen, Guido","last_name":"Schryen"},{"first_name":"Eliot","last_name":"Rich","full_name":"Rich, Eliot"}],"volume":4,"has_accepted_license":"1","citation":{"short":"G. Schryen, E. Rich, IEEE Transactions on Information Forensics \\&#38; Security 4 (2009) 729–744.","bibtex":"@article{Schryen_Rich_2009, title={Security in Large-Scale Internet Elections: A Retrospective Analysis of Elections in Estonia, The Netherlands, and Switzerland}, volume={4}, number={4 Part}, journal={IEEE Transactions on Information Forensics \\&#38; Security}, publisher={IEEE}, author={Schryen, Guido and Rich, Eliot}, year={2009}, pages={729–744} }","mla":"Schryen, Guido, and Eliot Rich. “Security in Large-Scale Internet Elections: A Retrospective Analysis of Elections in Estonia, The Netherlands, and Switzerland.” <i>IEEE Transactions on Information Forensics \\&#38; Security</i>, vol. 4, no. 4 Part, IEEE, 2009, pp. 729–44.","apa":"Schryen, G., &#38; Rich, E. (2009). Security in Large-Scale Internet Elections: A Retrospective Analysis of Elections in Estonia, The Netherlands, and Switzerland. <i>IEEE Transactions on Information Forensics \\&#38; Security</i>, <i>4</i>(4 Part), 729–744.","ama":"Schryen G, Rich E. Security in Large-Scale Internet Elections: A Retrospective Analysis of Elections in Estonia, The Netherlands, and Switzerland. <i>IEEE Transactions on Information Forensics \\&#38; Security</i>. 2009;4(4 Part):729-744.","ieee":"G. Schryen and E. Rich, “Security in Large-Scale Internet Elections: A Retrospective Analysis of Elections in Estonia, The Netherlands, and Switzerland,” <i>IEEE Transactions on Information Forensics \\&#38; Security</i>, vol. 4, no. 4 Part, pp. 729–744, 2009.","chicago":"Schryen, Guido, and Eliot Rich. “Security in Large-Scale Internet Elections: A Retrospective Analysis of Elections in Estonia, The Netherlands, and Switzerland.” <i>IEEE Transactions on Information Forensics \\&#38; Security</i> 4, no. 4 Part (2009): 729–44."},"page":"729-744","intvolume":"         4","_id":"5621","user_id":"61579","department":[{"_id":"277"}],"file_date_updated":"2018-12-18T13:16:07Z","extern":"1","type":"journal_article","status":"public"},{"user_id":"61579","department":[{"_id":"277"}],"_id":"5625","file_date_updated":"2018-12-18T13:14:09Z","extern":"1","language":[{"iso":"eng"}],"ddc":["000"],"keyword":["Open source software","Closed source software","Security","Metrics"],"type":"conference","publication":"24th Annual ACM Symposium on Applied Computing","file":[{"file_size":456497,"file_name":"ACM VERSION.pdf","access_level":"open_access","file_id":"6310","date_updated":"2018-12-18T13:14:09Z","creator":"hsiemes","date_created":"2018-12-18T13:14:09Z","relation":"main_file","content_type":"application/pdf"}],"status":"public","abstract":[{"lang":"eng","text":"The increasing availability and deployment of open source software in personal and commercial environments makes open source software highly appealing for hackers, and others who are interested in exploiting software vulnerabilities. This deployment has resulted in a debate ?full of religion? on the security of open source software compared to that of closed source software. However, beyond such arguments, only little quantitative analysis on this research issue has taken place. We discuss the state-of-the-art of the security debate and identify shortcomings. Based on these, we propose new metrics, which allows to answer the question to what extent the review process of open source and closed source development has helped to fix vulnerabilities. We illustrate the application of some of these metrics in a case study on OpenOffice (open source software) vs. Microsoft Office (closed source software)."}],"date_created":"2018-11-14T14:12:27Z","author":[{"id":"72850","full_name":"Schryen, Guido","last_name":"Schryen","first_name":"Guido"},{"full_name":"Kadura, Rouven","last_name":"Kadura","first_name":"Rouven"}],"oa":"1","date_updated":"2022-01-06T07:02:13Z","title":"Open Source vs. Closed Source Software: Towards Measuring Security","has_accepted_license":"1","citation":{"apa":"Schryen, G., &#38; Kadura, R. (2009). Open Source vs. Closed Source Software: Towards Measuring Security. In <i>24th Annual ACM Symposium on Applied Computing</i>.","bibtex":"@inproceedings{Schryen_Kadura_2009, title={Open Source vs. Closed Source Software: Towards Measuring Security}, booktitle={24th Annual ACM Symposium on Applied Computing}, author={Schryen, Guido and Kadura, Rouven}, year={2009} }","mla":"Schryen, Guido, and Rouven Kadura. “Open Source vs. Closed Source Software: Towards Measuring Security.” <i>24th Annual ACM Symposium on Applied Computing</i>, 2009.","short":"G. Schryen, R. Kadura, in: 24th Annual ACM Symposium on Applied Computing, 2009.","ieee":"G. Schryen and R. Kadura, “Open Source vs. Closed Source Software: Towards Measuring Security,” in <i>24th Annual ACM Symposium on Applied Computing</i>, 2009.","chicago":"Schryen, Guido, and Rouven Kadura. “Open Source vs. Closed Source Software: Towards Measuring Security.” In <i>24th Annual ACM Symposium on Applied Computing</i>, 2009.","ama":"Schryen G, Kadura R. Open Source vs. Closed Source Software: Towards Measuring Security. In: <i>24th Annual ACM Symposium on Applied Computing</i>. ; 2009."},"year":"2009"},{"oa":"1","date_updated":"2022-01-06T07:02:19Z","date_created":"2018-11-14T14:40:04Z","author":[{"first_name":"Guido","last_name":"Schryen","id":"72850","full_name":"Schryen, Guido"}],"title":"A comprehensive and comparative analysis of the patching behavior of open source and closed source software vendors","has_accepted_license":"1","year":"2009","citation":{"chicago":"Schryen, Guido. “A Comprehensive and Comparative Analysis of the Patching Behavior of Open Source and Closed Source Software Vendors.” In <i>5th International Conference on IT Security Incident Management \\&#38; IT Forensics</i>, 2009.","ieee":"G. Schryen, “A comprehensive and comparative analysis of the patching behavior of open source and closed source software vendors,” in <i>5th International Conference on IT Security Incident Management \\&#38; IT Forensics</i>, 2009.","ama":"Schryen G. A comprehensive and comparative analysis of the patching behavior of open source and closed source software vendors. In: <i>5th International Conference on IT Security Incident Management \\&#38; IT Forensics</i>. ; 2009.","bibtex":"@inproceedings{Schryen_2009, title={A comprehensive and comparative analysis of the patching behavior of open source and closed source software vendors}, booktitle={5th International Conference on IT Security Incident Management \\&#38; IT Forensics}, author={Schryen, Guido}, year={2009} }","short":"G. Schryen, in: 5th International Conference on IT Security Incident Management \\&#38; IT Forensics, 2009.","mla":"Schryen, Guido. “A Comprehensive and Comparative Analysis of the Patching Behavior of Open Source and Closed Source Software Vendors.” <i>5th International Conference on IT Security Incident Management \\&#38; IT Forensics</i>, 2009.","apa":"Schryen, G. (2009). A comprehensive and comparative analysis of the patching behavior of open source and closed source software vendors. In <i>5th International Conference on IT Security Incident Management \\&#38; IT Forensics</i>."},"_id":"5646","department":[{"_id":"277"}],"user_id":"61579","ddc":["000"],"language":[{"iso":"eng"}],"file_date_updated":"2018-12-18T13:14:48Z","extern":"1","publication":"5th International Conference on IT Security Incident Management \\& IT Forensics","type":"conference","abstract":[{"text":"While many theoretical arguments against or in favor of open source and closed source software development have been presented, the empirical basis for the assessment of arguments is still weak. Addressing this research gap, this paper presents a comprehensive empirical investigation of the patching behavior of software vendors/communities of widely deployed open source and closed source software packages, including operating systems, database systems, web browsers, email clients, and office systems. As the value of any empirical study relies on the quality of data available, this paper also discusses in detail data issues, explains to what extent the empirical analysis can be based on vulnerability data contained in the NIST National Vulnerability Database, and shows how data on vulnerability patches was collected by the author to support this study. The results of the analysis suggest that it is not the particular software development style that determines patching behavior, but rather the policy of the particular software vendor.","lang":"eng"}],"status":"public","file":[{"date_created":"2018-12-18T13:14:48Z","creator":"hsiemes","date_updated":"2018-12-18T13:14:48Z","file_name":"Conference Version.pdf","access_level":"open_access","file_id":"6311","file_size":594302,"content_type":"application/pdf","relation":"main_file"}]},{"file":[{"file_size":483690,"access_level":"open_access","file_id":"6317","file_name":"Security of Open Source and Closed Source Software An Empirical - AMCIS Version.pdf","date_updated":"2018-12-18T13:16:39Z","creator":"hsiemes","date_created":"2018-12-18T13:16:39Z","relation":"main_file","content_type":"application/pdf"}],"status":"public","abstract":[{"lang":"eng","text":"Reviewing literature on open source and closed source security reveals that the discussion is often determined by biased attitudes toward one of these development styles. The discussion specifically lacks appropriate metrics, methodology and hard data. This paper contributes to solving this problem by analyzing and comparing published vulnerabilities of eight open source software and nine closed source software packages, all of which are widely deployed. Thereby, it provides an extensive empirical analysis of vulnerabilities in terms of mean time between vulnerability disclosures, the development of disclosure over time, and the severity of vulnerabilities, and allows for validating models provided in the literature. The investigation reveals that (a) the mean time between vulnerability disclosures was lower for open source software in half of the cases, while the other cases show no differences, (b) in contrast to literature assumption, 14 out of 17 software packages showed a significant linear or piecewise linear correlation between time and the number of published vulnerabilities, and (c) regarding the severity of vulnerabilities, no significant differences were found between open source and closed source."}],"type":"conference","publication":"15th Americas Conference on Information Systems","extern":"1","language":[{"iso":"eng"}],"file_date_updated":"2018-12-18T13:16:39Z","ddc":["000"],"keyword":["Vulnerabilities","security","open source software","closed source software","empirical comparison"],"user_id":"61579","department":[{"_id":"277"}],"_id":"5647","citation":{"apa":"Schryen, G. (2009). Security of open source and closed source software: An empirical comparison of published vulnerabilities. In <i>15th Americas Conference on Information Systems</i>.","mla":"Schryen, Guido. “Security of Open Source and Closed Source Software: An Empirical Comparison of Published Vulnerabilities.” <i>15th Americas Conference on Information Systems</i>, 2009.","bibtex":"@inproceedings{Schryen_2009, title={Security of open source and closed source software: An empirical comparison of published vulnerabilities}, booktitle={15th Americas Conference on Information Systems}, author={Schryen, Guido}, year={2009} }","short":"G. Schryen, in: 15th Americas Conference on Information Systems, 2009.","chicago":"Schryen, Guido. “Security of Open Source and Closed Source Software: An Empirical Comparison of Published Vulnerabilities.” In <i>15th Americas Conference on Information Systems</i>, 2009.","ieee":"G. Schryen, “Security of open source and closed source software: An empirical comparison of published vulnerabilities,” in <i>15th Americas Conference on Information Systems</i>, 2009.","ama":"Schryen G. Security of open source and closed source software: An empirical comparison of published vulnerabilities. In: <i>15th Americas Conference on Information Systems</i>. ; 2009."},"year":"2009","has_accepted_license":"1","title":"Security of open source and closed source software: An empirical comparison of published vulnerabilities","date_created":"2018-11-14T14:41:24Z","author":[{"first_name":"Guido","last_name":"Schryen","full_name":"Schryen, Guido","id":"72850"}],"date_updated":"2022-01-06T07:02:19Z","oa":"1"},{"type":"journal_article","publication":"Linux Technical Review","file":[{"content_type":"application/pdf","relation":"main_file","date_updated":"2018-12-18T13:17:40Z","date_created":"2018-12-18T13:17:40Z","creator":"hsiemes","file_size":41784,"file_id":"6319","file_name":"Linux Technical Review 2008 - Spam.pdf","access_level":"open_access"}],"status":"public","_id":"5648","user_id":"61579","department":[{"_id":"277"}],"ddc":["000"],"file_date_updated":"2018-12-18T13:17:40Z","language":[{"iso":"eng"}],"extern":"1","has_accepted_license":"1","issue":"7","year":"2008","citation":{"ama":"Schryen G. Effektivität und Effizienz von Anti-Spam-Maßnahmen. <i>Linux Technical Review</i>. 2008;(7).","chicago":"Schryen, Guido. “Effektivität Und Effizienz von Anti-Spam-Maßnahmen.” <i>Linux Technical Review</i>, no. 7 (2008).","ieee":"G. Schryen, “Effektivität und Effizienz von Anti-Spam-Maßnahmen,” <i>Linux Technical Review</i>, no. 7, 2008.","apa":"Schryen, G. (2008). Effektivität und Effizienz von Anti-Spam-Maßnahmen. <i>Linux Technical Review</i>, (7).","short":"G. Schryen, Linux Technical Review (2008).","bibtex":"@article{Schryen_2008, title={Effektivität und Effizienz von Anti-Spam-Maßnahmen}, number={7}, journal={Linux Technical Review}, publisher={Linux New Media AG}, author={Schryen, Guido}, year={2008} }","mla":"Schryen, Guido. “Effektivität Und Effizienz von Anti-Spam-Maßnahmen.” <i>Linux Technical Review</i>, no. 7, Linux New Media AG, 2008."},"oa":"1","publisher":"Linux New Media AG","date_updated":"2022-01-06T07:02:20Z","date_created":"2018-11-14T14:41:58Z","author":[{"id":"72850","full_name":"Schryen, Guido","last_name":"Schryen","first_name":"Guido"}],"title":"Effektivität und Effizienz von Anti-Spam-Maßnahmen"},{"ddc":["000"],"keyword":["Internet voting","large-scale election","Estonian parliamen- tary election","security","security management"],"extern":"1","language":[{"iso":"eng"}],"file_date_updated":"2018-12-18T13:18:21Z","_id":"5649","user_id":"61579","department":[{"_id":"277"}],"abstract":[{"lang":"eng","text":"The Estonian parliamentary election in 2007 is regarded as a success story of large-scale Internet elections. I use this election in a single case study on practical security to show that low quality of security and its management does not necessarily prevent large-scale Internet elections from being conducted. I also provide research propositions with regard to future challenges for large-scale Internet elections."}],"file":[{"access_level":"open_access","file_id":"6320","file_name":"Schryen - Practical Security of Large-scale Elections - LNBIP - web version.pdf","file_size":273231,"creator":"hsiemes","date_created":"2018-12-18T13:18:21Z","date_updated":"2018-12-18T13:18:21Z","relation":"main_file","content_type":"application/pdf"}],"status":"public","type":"conference","publication":"7th Workshop on e-Business (WEB 2008, AIS Special Interest Group on E-Business)","title":"Practical Security of Large-scale Elections: An Exploratory Case Study of Internet Voting in Estonia","date_updated":"2022-01-06T07:02:20Z","oa":"1","date_created":"2018-11-14T14:43:23Z","author":[{"first_name":"Guido","id":"72850","full_name":"Schryen, Guido","last_name":"Schryen"}],"year":"2008","citation":{"mla":"Schryen, Guido. “Practical Security of Large-Scale Elections: An Exploratory Case Study of Internet Voting in Estonia.” <i>7th Workshop on E-Business (WEB 2008, AIS Special Interest Group on E-Business)</i>, 2008.","short":"G. Schryen, in: 7th Workshop on E-Business (WEB 2008, AIS Special Interest Group on E-Business), 2008.","bibtex":"@inproceedings{Schryen_2008, title={Practical Security of Large-scale Elections: An Exploratory Case Study of Internet Voting in Estonia}, booktitle={7th Workshop on e-Business (WEB 2008, AIS Special Interest Group on E-Business)}, author={Schryen, Guido}, year={2008} }","apa":"Schryen, G. (2008). Practical Security of Large-scale Elections: An Exploratory Case Study of Internet Voting in Estonia. In <i>7th Workshop on e-Business (WEB 2008, AIS Special Interest Group on E-Business)</i>.","ama":"Schryen G. Practical Security of Large-scale Elections: An Exploratory Case Study of Internet Voting in Estonia. In: <i>7th Workshop on E-Business (WEB 2008, AIS Special Interest Group on E-Business)</i>. ; 2008.","chicago":"Schryen, Guido. “Practical Security of Large-Scale Elections: An Exploratory Case Study of Internet Voting in Estonia.” In <i>7th Workshop on E-Business (WEB 2008, AIS Special Interest Group on E-Business)</i>, 2008.","ieee":"G. Schryen, “Practical Security of Large-scale Elections: An Exploratory Case Study of Internet Voting in Estonia,” in <i>7th Workshop on e-Business (WEB 2008, AIS Special Interest Group on E-Business)</i>, 2008."},"has_accepted_license":"1"},{"date_updated":"2022-01-06T07:03:00Z","oa":"1","author":[{"first_name":"Guido","last_name":"Schryen","id":"72850","full_name":"Schryen, Guido"}],"date_created":"2018-12-18T12:50:22Z","title":"Preventing E-mail Spam: The Conceptualization and the Analysis of an Infrastructure Framework","has_accepted_license":"1","year":"2007","citation":{"apa":"Schryen, G. (2007). <i>Preventing E-mail Spam: The Conceptualization and the Analysis of an Infrastructure Framework</i>.","bibtex":"@book{Schryen_2007, title={Preventing E-mail Spam: The Conceptualization and the Analysis of an Infrastructure Framework}, author={Schryen, Guido}, year={2007} }","short":"G. Schryen, Preventing E-Mail Spam: The Conceptualization and the Analysis of an Infrastructure Framework, 2007.","mla":"Schryen, Guido. <i>Preventing E-Mail Spam: The Conceptualization and the Analysis of an Infrastructure Framework</i>. 2007.","ama":"Schryen G. <i>Preventing E-Mail Spam: The Conceptualization and the Analysis of an Infrastructure Framework</i>.; 2007.","chicago":"Schryen, Guido. <i>Preventing E-Mail Spam: The Conceptualization and the Analysis of an Infrastructure Framework</i>, 2007.","ieee":"G. Schryen, <i>Preventing E-mail Spam: The Conceptualization and the Analysis of an Infrastructure Framework</i>. 2007."},"_id":"6287","user_id":"61579","department":[{"_id":"277"}],"ddc":["000"],"keyword":["Email","Infrastructure","Internet","Spam"],"file_date_updated":"2018-12-18T13:23:40Z","language":[{"iso":"eng"}],"type":"report","abstract":[{"lang":"eng","text":"Spamming remains a form of Internet abuse, which burdens the Internet infrastructure, is generally regarded as an annoyance, and is said to cause a huge economic harm. Many technological, organizational, and legislative anti-spam measures have already been proposed and implemented, but have not led to any substantial decrease in the number of spam e-mails. We propose a scalable and flexible infrastructure framework that integrates several anti-spam measures and that features both a technological and an organizational facet. The key element of our infrastructure is a new organizational unit that reliably and transparently limits the number of e-mails that can be sent per day and per account. We also analyze the proposed framework in terms of its theoretical effectiveness, the required resources, and its limitations."}],"file":[{"file_name":"anti_spam_framework.pdf","access_level":"open_access","file_id":"6322","file_size":456755,"date_created":"2018-12-18T13:23:40Z","creator":"hsiemes","date_updated":"2018-12-18T13:23:40Z","relation":"main_file","content_type":"application/pdf"}],"status":"public"},{"extern":"1","language":[{"iso":"eng"}],"user_id":"61579","department":[{"_id":"277"}],"_id":"5650","status":"public","editor":[{"last_name":"Satesh","full_name":"Satesh, D.","first_name":"D."},{"first_name":"R.","full_name":"Prabhakar, R.","last_name":"Prabhakar"}],"type":"book_chapter","publication":"Proceedings of IPSI International Conference on Advances in the Internet, Processing, Systems, and Interdisciplinary Research","title":"A Scalable and Flexible Infrastructure Framework For Addressing Spam","date_created":"2018-11-14T14:44:01Z","author":[{"first_name":"Guido","last_name":"Schryen","id":"72850","full_name":"Schryen, Guido"}],"publisher":"ICFAI University Press","date_updated":"2022-01-06T07:02:20Z","citation":{"chicago":"Schryen, Guido. “A Scalable and Flexible Infrastructure Framework For Addressing Spam.” In <i>Proceedings of IPSI International Conference on Advances in the Internet, Processing, Systems, and Interdisciplinary Research</i>, edited by D. Satesh and R. Prabhakar, 55–64. Hyderabad, India: ICFAI University Press, 2007.","ieee":"G. Schryen, “A Scalable and Flexible Infrastructure Framework For Addressing Spam,” in <i>Proceedings of IPSI International Conference on Advances in the Internet, Processing, Systems, and Interdisciplinary Research</i>, D. Satesh and R. Prabhakar, Eds. Hyderabad, India: ICFAI University Press, 2007, pp. 55–64.","ama":"Schryen G. A Scalable and Flexible Infrastructure Framework For Addressing Spam. In: Satesh D, Prabhakar R, eds. <i>Proceedings of IPSI International Conference on Advances in the Internet, Processing, Systems, and Interdisciplinary Research</i>. Hyderabad, India: ICFAI University Press; 2007:55-64.","mla":"Schryen, Guido. “A Scalable and Flexible Infrastructure Framework For Addressing Spam.” <i>Proceedings of IPSI International Conference on Advances in the Internet, Processing, Systems, and Interdisciplinary Research</i>, edited by D. Satesh and R. Prabhakar, ICFAI University Press, 2007, pp. 55–64.","bibtex":"@inbook{Schryen_2007, place={Hyderabad, India}, title={A Scalable and Flexible Infrastructure Framework For Addressing Spam}, booktitle={Proceedings of IPSI International Conference on Advances in the Internet, Processing, Systems, and Interdisciplinary Research}, publisher={ICFAI University Press}, author={Schryen, Guido}, editor={Satesh, D. and Prabhakar, R.Editors}, year={2007}, pages={55–64} }","short":"G. Schryen, in: D. Satesh, R. Prabhakar (Eds.), Proceedings of IPSI International Conference on Advances in the Internet, Processing, Systems, and Interdisciplinary Research, ICFAI University Press, Hyderabad, India, 2007, pp. 55–64.","apa":"Schryen, G. (2007). A Scalable and Flexible Infrastructure Framework For Addressing Spam. In D. Satesh &#38; R. Prabhakar (Eds.), <i>Proceedings of IPSI International Conference on Advances in the Internet, Processing, Systems, and Interdisciplinary Research</i> (pp. 55–64). Hyderabad, India: ICFAI University Press."},"page":"55-64","year":"2007","place":"Hyderabad, India"},{"status":"public","type":"book","language":[{"iso":"eng"}],"extern":"1","department":[{"_id":"277"}],"user_id":"61579","_id":"5651","citation":{"apa":"Schryen, G. (2007). <i>Anti-Spam Measures: Analysis and Design</i>. Berlin, Heidelberg, New York: Springer.","bibtex":"@book{Schryen_2007, place={Berlin, Heidelberg, New York}, title={Anti-Spam Measures: Analysis and Design}, publisher={Springer}, author={Schryen, Guido}, year={2007} }","mla":"Schryen, Guido. <i>Anti-Spam Measures: Analysis and Design</i>. Springer, 2007.","short":"G. Schryen, Anti-Spam Measures: Analysis and Design, Springer, Berlin, Heidelberg, New York, 2007.","chicago":"Schryen, Guido. <i>Anti-Spam Measures: Analysis and Design</i>. Berlin, Heidelberg, New York: Springer, 2007.","ieee":"G. Schryen, <i>Anti-Spam Measures: Analysis and Design</i>. Berlin, Heidelberg, New York: Springer, 2007.","ama":"Schryen G. <i>Anti-Spam Measures: Analysis and Design</i>. Berlin, Heidelberg, New York: Springer; 2007."},"year":"2007","place":"Berlin, Heidelberg, New York","title":"Anti-Spam Measures: Analysis and Design","author":[{"last_name":"Schryen","full_name":"Schryen, Guido","id":"72850","first_name":"Guido"}],"date_created":"2018-11-14T14:45:12Z","date_updated":"2022-01-06T07:02:20Z","publisher":"Springer"},{"language":[{"iso":"eng"}],"ddc":["000"],"file":[{"date_updated":"2018-12-18T13:25:48Z","creator":"hsiemes","date_created":"2018-12-18T13:25:48Z","file_size":175248,"access_level":"open_access","file_name":"JOUNAL_VERSION.pdf","file_id":"6325","content_type":"application/pdf","relation":"main_file"}],"abstract":[{"text":"More than half of world-wide e-mail traffic ? an estimated total of several billion e-mails per day ? consists of spam. This is becoming a considerable disturbance to telecommunications. Spam is also closely related to other kinds of cyber crime as it possibly contains malicious software or is pursuing some kind of fraudulent aim, such as phishing. Besides technical and organizational measures, many countries have introduced anti-spam legislation. However, today's world-wide legislative coverage of spam is heterogeneous, and its effectiveness is controversially discussed. This article describes important parameters by which anti-spam legislation can vary and gives an overview and analysis of world-wide anti-spam legislation, including the European Directive 2002/58/EC, the U.S. CANSPAM Act of 2003, and international cooperation, such as the London Action Plan. The article then proceeds to discuss the effectiveness of current laws, and it identifies problems resulting from the fact that an international phenomenon is being addressed by national legislation. Finally, the article presents suggestions for overcoming some of these problems.","lang":"eng"}],"publication":"Information and Communications Technology Law","title":"Anti-spam legislation: An analysis of laws and their effectiveness","date_created":"2018-11-14T14:45:57Z","publisher":"Taylor \\& Francis","year":"2007","issue":"1","extern":"1","file_date_updated":"2018-12-18T13:25:48Z","user_id":"61579","department":[{"_id":"277"}],"_id":"5652","status":"public","type":"journal_article","author":[{"first_name":"Guido","id":"72850","full_name":"Schryen, Guido","last_name":"Schryen"}],"volume":16,"oa":"1","date_updated":"2022-01-06T07:02:21Z","citation":{"bibtex":"@article{Schryen_2007, title={Anti-spam legislation: An analysis of laws and their effectiveness}, volume={16}, number={1}, journal={Information and Communications Technology Law}, publisher={Taylor \\&#38; Francis}, author={Schryen, Guido}, year={2007}, pages={17–32} }","short":"G. Schryen, Information and Communications Technology Law 16 (2007) 17–32.","mla":"Schryen, Guido. “Anti-Spam Legislation: An Analysis of Laws and Their Effectiveness.” <i>Information and Communications Technology Law</i>, vol. 16, no. 1, Taylor \\&#38; Francis, 2007, pp. 17–32.","apa":"Schryen, G. (2007). Anti-spam legislation: An analysis of laws and their effectiveness. <i>Information and Communications Technology Law</i>, <i>16</i>(1), 17–32.","chicago":"Schryen, Guido. “Anti-Spam Legislation: An Analysis of Laws and Their Effectiveness.” <i>Information and Communications Technology Law</i> 16, no. 1 (2007): 17–32.","ieee":"G. Schryen, “Anti-spam legislation: An analysis of laws and their effectiveness,” <i>Information and Communications Technology Law</i>, vol. 16, no. 1, pp. 17–32, 2007.","ama":"Schryen G. Anti-spam legislation: An analysis of laws and their effectiveness. <i>Information and Communications Technology Law</i>. 2007;16(1):17-32."},"page":"17-32","intvolume":"        16","has_accepted_license":"1"},{"citation":{"mla":"Schryen, Guido. “Approaches Addressing Spam.” <i>Spam: An Introduction</i>, edited by D. Satesh and R. Prabhakar, ICFAI University Press, 2007, pp. 41–57.","bibtex":"@inbook{Schryen_2007, place={Hyderabad, India}, title={Approaches Addressing Spam}, booktitle={Spam: An Introduction}, publisher={ICFAI University Press}, author={Schryen, Guido}, editor={Satesh, D. and Prabhakar, R.Editors}, year={2007}, pages={41–57} }","short":"G. Schryen, in: D. Satesh, R. Prabhakar (Eds.), Spam: An Introduction, ICFAI University Press, Hyderabad, India, 2007, pp. 41–57.","apa":"Schryen, G. (2007). Approaches Addressing Spam. In D. Satesh &#38; R. Prabhakar (Eds.), <i>Spam: An Introduction</i> (pp. 41–57). Hyderabad, India: ICFAI University Press.","ieee":"G. Schryen, “Approaches Addressing Spam,” in <i>Spam: An Introduction</i>, D. Satesh and R. Prabhakar, Eds. Hyderabad, India: ICFAI University Press, 2007, pp. 41–57.","chicago":"Schryen, Guido. “Approaches Addressing Spam.” In <i>Spam: An Introduction</i>, edited by D. Satesh and R. Prabhakar, 41–57. Hyderabad, India: ICFAI University Press, 2007.","ama":"Schryen G. Approaches Addressing Spam. In: Satesh D, Prabhakar R, eds. <i>Spam: An Introduction</i>. Hyderabad, India: ICFAI University Press; 2007:41-57."},"page":"41-57","place":"Hyderabad, India","year":"2007","title":"Approaches Addressing Spam","author":[{"full_name":"Schryen, Guido","id":"72850","last_name":"Schryen","first_name":"Guido"}],"date_created":"2018-11-14T14:46:28Z","date_updated":"2022-01-06T07:02:21Z","publisher":"ICFAI University Press","status":"public","editor":[{"first_name":"D.","last_name":"Satesh","full_name":"Satesh, D."},{"full_name":"Prabhakar, R.","last_name":"Prabhakar","first_name":"R."}],"type":"book_chapter","publication":"Spam: An Introduction","language":[{"iso":"eng"}],"extern":"1","user_id":"61579","department":[{"_id":"277"}],"_id":"5653"},{"has_accepted_license":"1","year":"2007","citation":{"ama":"Schryen G. Armed for the spam battle - a technological and organizational infrastructure framework. In: <i>40th Annual Hawaii International Conference on System Sciences</i>. ; 2007.","ieee":"G. Schryen, “Armed for the spam battle - a technological and organizational infrastructure framework,” in <i>40th Annual Hawaii International Conference on System Sciences</i>, 2007.","chicago":"Schryen, Guido. “Armed for the Spam Battle - a Technological and Organizational Infrastructure Framework.” In <i>40th Annual Hawaii International Conference on System Sciences</i>, 2007.","apa":"Schryen, G. (2007). Armed for the spam battle - a technological and organizational infrastructure framework. In <i>40th Annual Hawaii International Conference on System Sciences</i>.","bibtex":"@inproceedings{Schryen_2007, title={Armed for the spam battle - a technological and organizational infrastructure framework}, booktitle={40th Annual Hawaii International Conference on System Sciences}, author={Schryen, Guido}, year={2007} }","short":"G. Schryen, in: 40th Annual Hawaii International Conference on System Sciences, 2007.","mla":"Schryen, Guido. “Armed for the Spam Battle - a Technological and Organizational Infrastructure Framework.” <i>40th Annual Hawaii International Conference on System Sciences</i>, 2007."},"oa":"1","date_updated":"2022-01-06T07:02:21Z","author":[{"first_name":"Guido","last_name":"Schryen","full_name":"Schryen, Guido","id":"72850"}],"date_created":"2018-11-14T14:46:49Z","title":"Armed for the spam battle - a technological and organizational infrastructure framework","publication":"40th Annual Hawaii International Conference on System Sciences","type":"conference","abstract":[{"text":"Spamming remains a form of Internet abuse, which burdens the Internet infrastructure, is generally regarded as an annoyance, and is said to cause economic harm to the tune of about several billion US\\$ per year. Many technological, organizational, and legislative anti-spam measures have already been proposed and implemented, but have not led to any substantial decrease in the number of spam e-mails. We propose here a new infrastructure framework that combines several anti-spam measures in a framework that features both a technological and an organizational facet. The key element of our infrastructure is a new organizational unit that reliably and transparently limits he number of e-mails that can be sent per day and per account. This paper first gives an overview of the framework, then it provides technological and organizational details of the infrastructure, the deployment of which depends to a large degree on its acceptance and propagation by the ICANN, the ISOC, and by large e-mail service providers. Finally, the paper discusses the limitations and drawbacks of the proposed framework.","lang":"eng"}],"status":"public","file":[{"date_updated":"2018-12-18T13:24:34Z","creator":"hsiemes","date_created":"2018-12-18T13:24:34Z","file_size":338482,"file_id":"6323","access_level":"open_access","file_name":"Armed for the spam battle - a technological and organizational infrastructure framework - proceeding version.pdf","content_type":"application/pdf","relation":"main_file"}],"_id":"5654","department":[{"_id":"277"}],"user_id":"61579","ddc":["000"],"extern":"1","language":[{"iso":"eng"}],"file_date_updated":"2018-12-18T13:24:34Z"},{"title":"Do anti-spam measures effectively cover the e-mail communication network? A formal approach","date_created":"2018-11-14T14:51:41Z","year":"2007","issue":"2","language":[{"iso":"eng"}],"ddc":["000"],"keyword":["e-mail","spam","e-mail infrastructure","anti-spam measures","spamming options"],"file":[{"file_size":100448,"access_level":"open_access","file_name":"Do anti-spam measures effectively cover the e-mail communication - Journal version.pdf","file_id":"6324","date_updated":"2018-12-18T13:25:12Z","creator":"hsiemes","date_created":"2018-12-18T13:25:12Z","relation":"main_file","content_type":"application/pdf"}],"abstract":[{"text":"Spam e-mails have become a serious technological and economic problem. Up to now, by deploying complementary anti-spam measures, we have been reasonably able to withstand spam e-mails and use the Internet for regular communication. However, if we are to avert the danger of losing the Internet e-mail service in its capacity as a valuable, free and worldwide medium of open communication, anti-spam activities should be performed more systematically than is currently the case regarding the mainly heuristic, anti-spam measures in place. A formal framework, within which the existing delivery routes that a spam e-mail may take, and anti-spam measures and their effectiveness can be investigated, will perhaps encourage a shift in methodology and pave the way for new, holistic anti-spam measures. This paper presents a model of the Internet e-mail infrastructure as a directed graph and a deterministic finite automaton and draws on automata theory to formally derive the spam delivery routes. The most important anti-spam measures are then described. Methods controlling only specific delivery routes are evaluated in terms of how effectively they cover the modeled e-mail infrastructure; methods operating independently of any particular routes receive a more general assessment.","lang":"eng"}],"publication":"The Journal of Information Systems Security (AIS Special Interest Group in Security)","author":[{"last_name":"Schryen","id":"72850","full_name":"Schryen, Guido","first_name":"Guido"}],"volume":3,"oa":"1","date_updated":"2022-01-06T07:02:22Z","citation":{"chicago":"Schryen, Guido. “Do Anti-Spam Measures Effectively Cover the e-Mail Communication Network? A Formal Approach.” <i>The Journal of Information Systems Security (AIS Special Interest Group in Security)</i> 3, no. 2 (2007): 66–90.","ieee":"G. Schryen, “Do anti-spam measures effectively cover the e-mail communication network? A formal approach,” <i>The Journal of Information Systems Security (AIS Special Interest Group in Security)</i>, vol. 3, no. 2, pp. 66–90, 2007.","ama":"Schryen G. Do anti-spam measures effectively cover the e-mail communication network? A formal approach. <i>The Journal of Information Systems Security (AIS Special Interest Group in Security)</i>. 2007;3(2):66-90.","apa":"Schryen, G. (2007). Do anti-spam measures effectively cover the e-mail communication network? A formal approach. <i>The Journal of Information Systems Security (AIS Special Interest Group in Security)</i>, <i>3</i>(2), 66–90.","mla":"Schryen, Guido. “Do Anti-Spam Measures Effectively Cover the e-Mail Communication Network? A Formal Approach.” <i>The Journal of Information Systems Security (AIS Special Interest Group in Security)</i>, vol. 3, no. 2, 2007, pp. 66–90.","bibtex":"@article{Schryen_2007, title={Do anti-spam measures effectively cover the e-mail communication network? A formal approach}, volume={3}, number={2}, journal={The Journal of Information Systems Security (AIS Special Interest Group in Security)}, author={Schryen, Guido}, year={2007}, pages={66–90} }","short":"G. Schryen, The Journal of Information Systems Security (AIS Special Interest Group in Security) 3 (2007) 66–90."},"page":"66-90","intvolume":"         3","has_accepted_license":"1","file_date_updated":"2018-12-18T13:25:12Z","extern":"1","user_id":"61579","department":[{"_id":"277"}],"_id":"5655","status":"public","type":"journal_article"},{"date_created":"2018-11-14T14:52:09Z","author":[{"first_name":"Guido","last_name":"Schryen","full_name":"Schryen, Guido","id":"72850"}],"date_updated":"2022-01-06T07:02:22Z","publisher":"Interest-Verlag","title":"Location Based Services","citation":{"ama":"Schryen G. Location Based Services. In: Schulte H, ed. <i>Vom LAN Zum Kommunikationsnetz - Systeme Und Applikationen</i>. Kissing: Interest-Verlag; 2007.","chicago":"Schryen, Guido. “Location Based Services.” In <i>Vom LAN Zum Kommunikationsnetz - Systeme Und Applikationen</i>, edited by Heinz Schulte. Kissing: Interest-Verlag, 2007.","ieee":"G. Schryen, “Location Based Services,” in <i>Vom LAN zum Kommunikationsnetz - Systeme und Applikationen</i>, H. Schulte, Ed. Kissing: Interest-Verlag, 2007.","mla":"Schryen, Guido. “Location Based Services.” <i>Vom LAN Zum Kommunikationsnetz - Systeme Und Applikationen</i>, edited by Heinz Schulte, Interest-Verlag, 2007.","short":"G. Schryen, in: H. Schulte (Ed.), Vom LAN Zum Kommunikationsnetz - Systeme Und Applikationen, Interest-Verlag, Kissing, 2007.","bibtex":"@inbook{Schryen_2007, place={Kissing}, title={Location Based Services}, booktitle={Vom LAN zum Kommunikationsnetz - Systeme und Applikationen}, publisher={Interest-Verlag}, author={Schryen, Guido}, editor={Schulte, HeinzEditor}, year={2007} }","apa":"Schryen, G. (2007). Location Based Services. In H. Schulte (Ed.), <i>Vom LAN zum Kommunikationsnetz - Systeme und Applikationen</i>. Kissing: Interest-Verlag."},"place":"Kissing","year":"2007","department":[{"_id":"277"}],"user_id":"61579","_id":"5656","language":[{"iso":"eng"}],"extern":"1","publication":"Vom LAN zum Kommunikationsnetz - Systeme und Applikationen","type":"book_chapter","status":"public","editor":[{"last_name":"Schulte","full_name":"Schulte, Heinz","first_name":"Heinz"}]},{"title":"Spam-Emails","volume":"9/12","author":[{"id":"72850","full_name":"Schryen, Guido","last_name":"Schryen","first_name":"Guido"}],"date_created":"2018-11-14T14:52:32Z","date_updated":"2022-01-06T07:02:22Z","publisher":"Interest-Verlag","citation":{"chicago":"Schryen, Guido. “Spam-Emails.” In <i>Vom LAN Zum Kommunikationsnetz - Systeme Und Applikationen, Edition 02/2007</i>, edited by Heinz Schulte, Vol. 9/12. Kissing: Interest-Verlag, 2007.","ieee":"G. Schryen, “Spam-Emails,” in <i>Vom LAN zum Kommunikationsnetz - Systeme und Applikationen, Edition 02/2007</i>, vol. 9/12, H. Schulte, Ed. Kissing: Interest-Verlag, 2007.","ama":"Schryen G. Spam-Emails. In: Schulte H, ed. <i>Vom LAN Zum Kommunikationsnetz - Systeme Und Applikationen, Edition 02/2007</i>. Vol 9/12. Kissing: Interest-Verlag; 2007.","apa":"Schryen, G. (2007). Spam-Emails. In H. Schulte (Ed.), <i>Vom LAN zum Kommunikationsnetz - Systeme und Applikationen, Edition 02/2007</i> (Vol. 9/12). Kissing: Interest-Verlag.","bibtex":"@inbook{Schryen_2007, place={Kissing}, title={Spam-Emails}, volume={9/12}, booktitle={Vom LAN zum Kommunikationsnetz - Systeme und Applikationen, Edition 02/2007}, publisher={Interest-Verlag}, author={Schryen, Guido}, editor={Schulte, HeinzEditor}, year={2007} }","short":"G. Schryen, in: H. Schulte (Ed.), Vom LAN Zum Kommunikationsnetz - Systeme Und Applikationen, Edition 02/2007, Interest-Verlag, Kissing, 2007.","mla":"Schryen, Guido. “Spam-Emails.” <i>Vom LAN Zum Kommunikationsnetz - Systeme Und Applikationen, Edition 02/2007</i>, edited by Heinz Schulte, vol. 9/12, Interest-Verlag, 2007."},"place":"Kissing","year":"2007","language":[{"iso":"eng"}],"extern":"1","department":[{"_id":"277"}],"user_id":"61579","_id":"5657","status":"public","editor":[{"first_name":"Heinz","last_name":"Schulte","full_name":"Schulte, Heinz"}],"publication":"Vom LAN zum Kommunikationsnetz - Systeme und Applikationen, Edition 02/2007","type":"book_chapter"},{"type":"journal_article","status":"public","_id":"5658","user_id":"61579","department":[{"_id":"277"}],"file_date_updated":"2018-12-18T13:27:01Z","extern":"1","has_accepted_license":"1","citation":{"ama":"Schryen G. The Impact that Placing Email Addresses on the Internet has on the Receipt of Spam ? An Empirical Analysis. <i>Computers &#38; Security</i>. 2007;2(5):361-372.","chicago":"Schryen, Guido. “The Impact That Placing Email Addresses on the Internet Has on the Receipt of Spam ? An Empirical Analysis.” <i>Computers &#38; Security</i> 2, no. 5 (2007): 361–72.","ieee":"G. Schryen, “The Impact that Placing Email Addresses on the Internet has on the Receipt of Spam ? An Empirical Analysis,” <i>Computers &#38; Security</i>, vol. 2, no. 5, pp. 361–372, 2007.","apa":"Schryen, G. (2007). The Impact that Placing Email Addresses on the Internet has on the Receipt of Spam ? An Empirical Analysis. <i>Computers &#38; Security</i>, <i>2</i>(5), 361–372.","bibtex":"@article{Schryen_2007, title={The Impact that Placing Email Addresses on the Internet has on the Receipt of Spam ? An Empirical Analysis}, volume={2}, number={5}, journal={Computers &#38; Security}, publisher={Elsevier}, author={Schryen, Guido}, year={2007}, pages={361–372} }","short":"G. Schryen, Computers &#38; Security 2 (2007) 361–372.","mla":"Schryen, Guido. “The Impact That Placing Email Addresses on the Internet Has on the Receipt of Spam ? An Empirical Analysis.” <i>Computers &#38; Security</i>, vol. 2, no. 5, Elsevier, 2007, pp. 361–72."},"page":"361-372","intvolume":"         2","date_updated":"2022-01-06T07:02:22Z","oa":"1","author":[{"last_name":"Schryen","full_name":"Schryen, Guido","id":"72850","first_name":"Guido"}],"volume":2,"publication":"Computers & Security","abstract":[{"lang":"eng","text":"Email communication is encumbered with a mass of email messages which their recipients have neither requested nor require. Even worse, the impacts of these messages are far from being simply an annoyance, as they also involve economic damage. This manuscript examines the resource ?email addresses?, which is vital for any potential bulk mailer and spammer. Both a methodology and a honeypot conceptualization for implementing an empirical analysis of the usage of email addresses placed on the Internet are proposed here. Their objective is to assess, on a quantitative basis, the extent of the current harassment and its development over time. This ?framework? is intended to be extensible to measuring the effectiveness of address-obscuring techniques. The implementation of a pilot honeypot is described, which led to key findings, some of them being: (1) Web placements attract more than two-thirds (70\\%) of all honeypot spam emails, followed by newsgroup placements (28.6\\%) and newsletter subscriptions (1.4\\%), (2) the proportions of spam relating to the email addresses? top-level domain can be statistically assumed to be uniformly distributed, (3) More than 43\\% of addresses on the web have been abused, whereas about 27\\% was the case for addresses on newsgroups and only about 4\\% was the case for addresses used for a newsletter subscription, (4) Regarding the development of email addresses? attractiveness for spammers over time, the service ?web sites? features a negative linear relationship, whereas the service ?Usenet? hows a negative exponential relationship. (5) Only 1.54\\% of the spam emails showed an interrelation between the topic of the spam email and that of the location where the recipient?s address was placed, so that spammers are assumed to send their emails in a ?context insensitive? manner. The results of the empirical analysis motivate the need for the protection of email addresses through obscuration. We analyze this need by formulating requirements for address obscuring techniques and we reveal to which extent today?s most relevant approaches fulfill these requirements."}],"file":[{"content_type":"application/pdf","relation":"main_file","date_created":"2018-12-18T13:27:01Z","creator":"hsiemes","date_updated":"2018-12-18T13:27:01Z","access_level":"open_access","file_id":"6326","file_name":"The Impact that Placing Email Addresses on the Internet has on the Receipt of Spam - An Empirical Analysis - Journal version.pdf","file_size":3026200}],"ddc":["000"],"keyword":["Address-obfuscating techniques","email","empirical analysis","honeypot","security by design","security by obscurity","spam"],"language":[{"iso":"eng"}],"issue":"5","year":"2007","publisher":"Elsevier","date_created":"2018-11-14T14:53:12Z","title":"The Impact that Placing Email Addresses on the Internet has on the Receipt of Spam ? An Empirical Analysis"},{"status":"public","file":[{"file_size":176033,"file_name":"Conference Version - A formal approach towards assessing the effectiveness of anti spam approaches.pdf","access_level":"open_access","file_id":"6327","date_updated":"2018-12-18T13:29:29Z","creator":"hsiemes","date_created":"2018-12-18T13:29:29Z","relation":"main_file","content_type":"application/pdf"}],"abstract":[{"text":"Spam e-mails have become a serious technological and economic problem. So far we have been reasonably able to resist spam e-mails and use the Internet for regular communication by deploying complementary anti-spam approaches. However, if we are to avert the danger of losing the Internet email service as a valuable, free, and worldwide medium of open communication, anti-spam activities should be performed more systematically than is done in current, mainly heuristic, anti-spam approaches. A formal framework within which the modes of spam delivery, anti-spam approaches, and their effectiveness can be investigated, may encourage a shift in methodology and pave the way for new, holistic anti-spam approaches. This paper presents a model of the Internet e-mail infrastructure as a directed graph and a deterministic finite automaton, and draws on automata theory to formally derive the modes of spam delivery possible. Finally the effectiveness of anti-spam approaches in terms of coverage of spamming modes is assessed.","lang":"eng"}],"publication":"39th Annual Hawaii International Conference on System Sciences","type":"conference","extern":"1","file_date_updated":"2018-12-18T13:29:29Z","language":[{"iso":"eng"}],"ddc":["000"],"department":[{"_id":"277"}],"user_id":"61579","_id":"5659","citation":{"apa":"Schryen, G. (2006). A formal approach towards assessing the effectiveness of anti-spam procedures. In <i>39th Annual Hawaii International Conference on System Sciences</i>.","bibtex":"@inproceedings{Schryen_2006, title={A formal approach towards assessing the effectiveness of anti-spam procedures}, booktitle={39th Annual Hawaii International Conference on System Sciences}, author={Schryen, Guido}, year={2006} }","short":"G. Schryen, in: 39th Annual Hawaii International Conference on System Sciences, 2006.","mla":"Schryen, Guido. “A Formal Approach towards Assessing the Effectiveness of Anti-Spam Procedures.” <i>39th Annual Hawaii International Conference on System Sciences</i>, 2006.","ama":"Schryen G. A formal approach towards assessing the effectiveness of anti-spam procedures. In: <i>39th Annual Hawaii International Conference on System Sciences</i>. ; 2006.","ieee":"G. Schryen, “A formal approach towards assessing the effectiveness of anti-spam procedures,” in <i>39th Annual Hawaii International Conference on System Sciences</i>, 2006.","chicago":"Schryen, Guido. “A Formal Approach towards Assessing the Effectiveness of Anti-Spam Procedures.” In <i>39th Annual Hawaii International Conference on System Sciences</i>, 2006."},"year":"2006","has_accepted_license":"1","title":"A formal approach towards assessing the effectiveness of anti-spam procedures","author":[{"first_name":"Guido","last_name":"Schryen","full_name":"Schryen, Guido","id":"72850"}],"date_created":"2018-11-14T14:54:44Z","date_updated":"2022-01-06T07:02:22Z","oa":"1"},{"status":"public","type":"journal_article","file_date_updated":"2018-12-18T13:31:04Z","extern":"1","user_id":"61579","department":[{"_id":"277"}],"_id":"5660","citation":{"ama":"Schryen G. A honeypot for the exploration of spammers’ behaviour. <i>IATAC IAnewsletter</i>. 2005;8(3):22-25.","ieee":"G. Schryen, “A honeypot for the exploration of spammers’ behaviour,” <i>IATAC IAnewsletter</i>, vol. 8, no. 3, pp. 22–25, 2005.","chicago":"Schryen, Guido. “A Honeypot for the Exploration of Spammers’ Behaviour.” <i>IATAC IAnewsletter</i> 8, no. 3 (2005): 22–25.","apa":"Schryen, G. (2005). A honeypot for the exploration of spammers’ behaviour. <i>IATAC IAnewsletter</i>, <i>8</i>(3), 22–25.","bibtex":"@article{Schryen_2005, title={A honeypot for the exploration of spammers’ behaviour}, volume={8}, number={3}, journal={IATAC IAnewsletter}, publisher={United States Department of Defense}, author={Schryen, Guido}, year={2005}, pages={22–25} }","short":"G. Schryen, IATAC IAnewsletter 8 (2005) 22–25.","mla":"Schryen, Guido. “A Honeypot for the Exploration of Spammers’ Behaviour.” <i>IATAC IAnewsletter</i>, vol. 8, no. 3, United States Department of Defense, 2005, pp. 22–25."},"intvolume":"         8","page":"22-25","has_accepted_license":"1","author":[{"first_name":"Guido","full_name":"Schryen, Guido","id":"72850","last_name":"Schryen"}],"volume":8,"oa":"1","date_updated":"2022-01-06T07:02:24Z","file":[{"relation":"main_file","content_type":"application/pdf","access_level":"open_access","file_name":"Honeypot for the Exploration of Spammers Behavior - journal version.pdf","file_id":"6330","file_size":3394223,"date_created":"2018-12-18T13:31:04Z","creator":"hsiemes","date_updated":"2018-12-18T13:31:04Z"}],"publication":"IATAC IAnewsletter","language":[{"iso":"eng"}],"ddc":["000"],"year":"2005","issue":"3","title":"A honeypot for the exploration of spammers' behaviour","date_created":"2018-11-14T14:55:09Z","publisher":"United States Department of Defense"},{"status":"public","type":"conference","extern":"1","file_date_updated":"2018-12-18T13:31:41Z","department":[{"_id":"277"}],"user_id":"61579","_id":"5661","page":"37-41","citation":{"mla":"Schryen, Guido. “An E-Mail Honeypot Addressing Spammers’ Behavior in Collecting and Applying Addresses.” <i>Proceedings of the 6th IEEE Information Assurance Workshop</i>, Westpoint, 2005, pp. 37–41.","short":"G. Schryen, in: Proceedings of the 6th IEEE Information Assurance Workshop, Westpoint, 2005, pp. 37–41.","bibtex":"@inproceedings{Schryen_2005, title={An e-mail honeypot addressing spammers’ behavior in collecting and applying addresses}, booktitle={Proceedings of the 6th IEEE Information Assurance Workshop}, publisher={Westpoint}, author={Schryen, Guido}, year={2005}, pages={37–41} }","apa":"Schryen, G. (2005). An e-mail honeypot addressing spammers’ behavior in collecting and applying addresses. In <i>Proceedings of the 6th IEEE Information Assurance Workshop</i> (pp. 37–41). Westpoint.","chicago":"Schryen, Guido. “An E-Mail Honeypot Addressing Spammers’ Behavior in Collecting and Applying Addresses.” In <i>Proceedings of the 6th IEEE Information Assurance Workshop</i>, 37–41. Westpoint, 2005.","ieee":"G. Schryen, “An e-mail honeypot addressing spammers’ behavior in collecting and applying addresses,” in <i>Proceedings of the 6th IEEE Information Assurance Workshop</i>, 2005, pp. 37–41.","ama":"Schryen G. An e-mail honeypot addressing spammers’ behavior in collecting and applying addresses. In: <i>Proceedings of the 6th IEEE Information Assurance Workshop</i>. Westpoint; 2005:37-41."},"has_accepted_license":"1","author":[{"last_name":"Schryen","id":"72850","full_name":"Schryen, Guido","first_name":"Guido"}],"date_updated":"2022-01-06T07:02:24Z","oa":"1","file":[{"file_size":119362,"file_name":"Schryen - An e-mail honeypot addressing spammers' behavior in collecting and applying addresses.pdf","access_level":"open_access","file_id":"6331","date_updated":"2018-12-18T13:31:41Z","creator":"hsiemes","date_created":"2018-12-18T13:31:41Z","relation":"main_file","content_type":"application/pdf"}],"abstract":[{"text":"Spam has become one of the most annoying and costly phenomenon in the Internet. Valid e-mail addresses belong to the most valuable resources of spammers, but little is known about spammers? behavior when collecting and harvesting addresses and spammers? capabilities and interest in carefully directed, consumer-oriented marketing have not been explored yet. Gaining insight into spammers? ways to obtain and (mis)use e-mail addresses is useful in many ways, e.g. for the assessment of the effectiveness of address obscuring techniques and the usability and necessity of hiding e-mail addresses on the Internet. This paper presents a spam honeypot project in progress addressing these issues by systematically placing e-mail addresses in the Internet and analyzing received e-mails. The honeypot?s conceptual framework, its implementation, and first empirical results are presented. Finally, an outlook on further work and activities is provided.","lang":"eng"}],"publication":"Proceedings of the 6th IEEE Information Assurance Workshop","language":[{"iso":"eng"}],"keyword":["Spam","ham","e-mail","honeypot","address obscuring technique","address taxonomy"],"ddc":["000"],"year":"2005","title":"An e-mail honeypot addressing spammers' behavior in collecting and applying addresses","date_created":"2018-11-14T14:55:48Z","publisher":"Westpoint"},{"title":"Security Aspects of Internet Voting","date_created":"2018-11-20T13:02:25Z","author":[{"first_name":"Guido","full_name":"Schryen, Guido","id":"72850","last_name":"Schryen"}],"date_updated":"2022-01-06T07:02:39Z","oa":"1","citation":{"bibtex":"@inproceedings{Schryen_2004, title={Security Aspects of Internet Voting}, booktitle={37th Annual Hawaii International Conference on System Sciences}, author={Schryen, Guido}, year={2004} }","short":"G. Schryen, in: 37th Annual Hawaii International Conference on System Sciences, 2004.","mla":"Schryen, Guido. “Security Aspects of Internet Voting.” <i>37th Annual Hawaii International Conference on System Sciences</i>, 2004.","apa":"Schryen, G. (2004). Security Aspects of Internet Voting. In <i>37th Annual Hawaii International Conference on System Sciences</i>.","chicago":"Schryen, Guido. “Security Aspects of Internet Voting.” In <i>37th Annual Hawaii International Conference on System Sciences</i>, 2004.","ieee":"G. Schryen, “Security Aspects of Internet Voting,” in <i>37th Annual Hawaii International Conference on System Sciences</i>, 2004.","ama":"Schryen G. Security Aspects of Internet Voting. In: <i>37th Annual Hawaii International Conference on System Sciences</i>. ; 2004."},"year":"2004","has_accepted_license":"1","language":[{"iso":"eng"}],"extern":"1","file_date_updated":"2018-12-18T13:32:44Z","ddc":["000"],"department":[{"_id":"277"}],"user_id":"61579","_id":"5765","status":"public","file":[{"file_size":385671,"file_id":"6332","access_level":"open_access","file_name":"Conference version - Security Aspects of Internet Voting.pdf","date_updated":"2018-12-18T13:32:44Z","date_created":"2018-12-18T13:32:44Z","creator":"hsiemes","relation":"main_file","content_type":"application/pdf"}],"abstract":[{"lang":"eng","text":"Voting via the Internet has become a feasible option for political as well as non-political ballots. However, there are many obstacles which have to be overcome, especially legal restrictions have to be transformed into technical and security solutions. The article starts with a brief presentation of advantages and disadvantages of Internet ballots and presents application fields and pilot schemes. Then, technological security aspects are derived due to democratic basic principles. Especially the applied voting procedures are critical in security terms. Hence, the most relevant cryptographic protocols are presented and their drawbacks and shortcomings are identified. However, this article does not propose a new voting protocol. Beyond fixing cryptographic procedures for ballots, more elements are to be specified, e.g. responsibilities and rights of involved authorities or security precautions regarding hardware and software. For this reason, a structural security framework for electronic voting systems is presented which can be used for their composition and analysis."}],"publication":"37th Annual Hawaii International Conference on System Sciences","type":"conference"}]