---
_id: '5621'
abstract:
- lang: eng
text: Remote voting through the Internet provides convenience and access to the
electorate. At the same time, the security concerns facing any distributed application
are magnified when the task is so crucial to democratic society. In addition,
some of the electoral process loses transparency when it is encapsulated in information
technology. In this paper, we examine the public record of three recent elections
that used Internet voting. Our specific goal is to identify any potential flaws
that security experts would recognize, but may have not been identified in the
rush to implement technology. To do this, we present a multiple exploratory case
study, looking at elections conducted between 2006 and 2007 in Estonia, Netherlands,
and Switzerland. These elections were selected as particularly interesting and
accessible, and each presents its own technical and security challenges. The electoral
environment, technical design and process for each election are described, including
reconstruction of details which are implied but not specified within the source
material. We found that all three elections warrant significant concern about
voter security, verifiability, and transparency. Usability, our fourth area of
focus, seems to have been well-addressed in these elections. While our analysis
is based on public documents and previously published reports, and therefore lacking
access to any confidential materials held by electoral officials, this comparative
analysis provides interesting insight and consistent questions across all these
cases. Effective review of Internet voting requires an aggressive stance towards
identifying potential security and operational flaws, and we encourage the use
of third party reviews with critical technology skills during design, programming,
and voting to reduce the changes of failure or fraud that would undermine public
confidence.
author:
- first_name: Guido
full_name: Schryen, Guido
id: '72850'
last_name: Schryen
- first_name: Eliot
full_name: Rich, Eliot
last_name: Rich
citation:
ama: 'Schryen G, Rich E. Security in Large-Scale Internet Elections: A Retrospective
Analysis of Elections in Estonia, The Netherlands, and Switzerland. IEEE Transactions
on Information Forensics \& Security. 2009;4(4 Part):729-744.'
apa: 'Schryen, G., & Rich, E. (2009). Security in Large-Scale Internet Elections:
A Retrospective Analysis of Elections in Estonia, The Netherlands, and Switzerland.
IEEE Transactions on Information Forensics \& Security, 4(4
Part), 729–744.'
bibtex: '@article{Schryen_Rich_2009, title={Security in Large-Scale Internet Elections:
A Retrospective Analysis of Elections in Estonia, The Netherlands, and Switzerland},
volume={4}, number={4 Part}, journal={IEEE Transactions on Information Forensics
\& Security}, publisher={IEEE}, author={Schryen, Guido and Rich, Eliot}, year={2009},
pages={729–744} }'
chicago: 'Schryen, Guido, and Eliot Rich. “Security in Large-Scale Internet Elections:
A Retrospective Analysis of Elections in Estonia, The Netherlands, and Switzerland.”
IEEE Transactions on Information Forensics \& Security 4, no. 4 Part
(2009): 729–44.'
ieee: 'G. Schryen and E. Rich, “Security in Large-Scale Internet Elections: A Retrospective
Analysis of Elections in Estonia, The Netherlands, and Switzerland,” IEEE Transactions
on Information Forensics \& Security, vol. 4, no. 4 Part, pp. 729–744,
2009.'
mla: 'Schryen, Guido, and Eliot Rich. “Security in Large-Scale Internet Elections:
A Retrospective Analysis of Elections in Estonia, The Netherlands, and Switzerland.”
IEEE Transactions on Information Forensics \& Security, vol. 4, no.
4 Part, IEEE, 2009, pp. 729–44.'
short: G. Schryen, E. Rich, IEEE Transactions on Information Forensics \& Security
4 (2009) 729–744.
date_created: 2018-11-14T14:06:44Z
date_updated: 2022-01-06T07:02:12Z
ddc:
- '000'
department:
- _id: '277'
extern: '1'
file:
- access_level: open_access
content_type: application/pdf
creator: hsiemes
date_created: 2018-12-18T13:16:07Z
date_updated: 2018-12-18T13:16:07Z
file_id: '6316'
file_name: JOURNAL VERSION.pdf
file_size: 1544790
relation: main_file
file_date_updated: 2018-12-18T13:16:07Z
has_accepted_license: '1'
intvolume: ' 4'
issue: 4 Part
keyword:
- e-voting
- Internet voting
- Internet election
- security
- verifiability
- RIES
- Estonia
- Neuch{\^a}tel
language:
- iso: eng
oa: '1'
page: 729-744
publication: IEEE Transactions on Information Forensics \& Security
publisher: IEEE
status: public
title: 'Security in Large-Scale Internet Elections: A Retrospective Analysis of Elections
in Estonia, The Netherlands, and Switzerland'
type: journal_article
user_id: '61579'
volume: 4
year: '2009'
...
---
_id: '5625'
abstract:
- lang: eng
text: The increasing availability and deployment of open source software in personal
and commercial environments makes open source software highly appealing for hackers,
and others who are interested in exploiting software vulnerabilities. This deployment
has resulted in a debate ?full of religion? on the security of open source software
compared to that of closed source software. However, beyond such arguments, only
little quantitative analysis on this research issue has taken place. We discuss
the state-of-the-art of the security debate and identify shortcomings. Based on
these, we propose new metrics, which allows to answer the question to what extent
the review process of open source and closed source development has helped to
fix vulnerabilities. We illustrate the application of some of these metrics in
a case study on OpenOffice (open source software) vs. Microsoft Office (closed
source software).
author:
- first_name: Guido
full_name: Schryen, Guido
id: '72850'
last_name: Schryen
- first_name: Rouven
full_name: Kadura, Rouven
last_name: Kadura
citation:
ama: 'Schryen G, Kadura R. Open Source vs. Closed Source Software: Towards Measuring
Security. In: 24th Annual ACM Symposium on Applied Computing. ; 2009.'
apa: 'Schryen, G., & Kadura, R. (2009). Open Source vs. Closed Source Software:
Towards Measuring Security. In 24th Annual ACM Symposium on Applied Computing.'
bibtex: '@inproceedings{Schryen_Kadura_2009, title={Open Source vs. Closed Source
Software: Towards Measuring Security}, booktitle={24th Annual ACM Symposium on
Applied Computing}, author={Schryen, Guido and Kadura, Rouven}, year={2009} }'
chicago: 'Schryen, Guido, and Rouven Kadura. “Open Source vs. Closed Source Software:
Towards Measuring Security.” In 24th Annual ACM Symposium on Applied Computing,
2009.'
ieee: 'G. Schryen and R. Kadura, “Open Source vs. Closed Source Software: Towards
Measuring Security,” in 24th Annual ACM Symposium on Applied Computing,
2009.'
mla: 'Schryen, Guido, and Rouven Kadura. “Open Source vs. Closed Source Software:
Towards Measuring Security.” 24th Annual ACM Symposium on Applied Computing,
2009.'
short: 'G. Schryen, R. Kadura, in: 24th Annual ACM Symposium on Applied Computing,
2009.'
date_created: 2018-11-14T14:12:27Z
date_updated: 2022-01-06T07:02:13Z
ddc:
- '000'
department:
- _id: '277'
extern: '1'
file:
- access_level: open_access
content_type: application/pdf
creator: hsiemes
date_created: 2018-12-18T13:14:09Z
date_updated: 2018-12-18T13:14:09Z
file_id: '6310'
file_name: ACM VERSION.pdf
file_size: 456497
relation: main_file
file_date_updated: 2018-12-18T13:14:09Z
has_accepted_license: '1'
keyword:
- Open source software
- Closed source software
- Security
- Metrics
language:
- iso: eng
oa: '1'
publication: 24th Annual ACM Symposium on Applied Computing
status: public
title: 'Open Source vs. Closed Source Software: Towards Measuring Security'
type: conference
user_id: '61579'
year: '2009'
...
---
_id: '5646'
abstract:
- lang: eng
text: While many theoretical arguments against or in favor of open source and closed
source software development have been presented, the empirical basis for the assessment
of arguments is still weak. Addressing this research gap, this paper presents
a comprehensive empirical investigation of the patching behavior of software vendors/communities
of widely deployed open source and closed source software packages, including
operating systems, database systems, web browsers, email clients, and office systems.
As the value of any empirical study relies on the quality of data available, this
paper also discusses in detail data issues, explains to what extent the empirical
analysis can be based on vulnerability data contained in the NIST National Vulnerability
Database, and shows how data on vulnerability patches was collected by the author
to support this study. The results of the analysis suggest that it is not the
particular software development style that determines patching behavior, but rather
the policy of the particular software vendor.
author:
- first_name: Guido
full_name: Schryen, Guido
id: '72850'
last_name: Schryen
citation:
ama: 'Schryen G. A comprehensive and comparative analysis of the patching behavior
of open source and closed source software vendors. In: 5th International Conference
on IT Security Incident Management \& IT Forensics. ; 2009.'
apa: Schryen, G. (2009). A comprehensive and comparative analysis of the patching
behavior of open source and closed source software vendors. In 5th International
Conference on IT Security Incident Management \& IT Forensics.
bibtex: '@inproceedings{Schryen_2009, title={A comprehensive and comparative analysis
of the patching behavior of open source and closed source software vendors}, booktitle={5th
International Conference on IT Security Incident Management \& IT Forensics},
author={Schryen, Guido}, year={2009} }'
chicago: Schryen, Guido. “A Comprehensive and Comparative Analysis of the Patching
Behavior of Open Source and Closed Source Software Vendors.” In 5th International
Conference on IT Security Incident Management \& IT Forensics, 2009.
ieee: G. Schryen, “A comprehensive and comparative analysis of the patching behavior
of open source and closed source software vendors,” in 5th International Conference
on IT Security Incident Management \& IT Forensics, 2009.
mla: Schryen, Guido. “A Comprehensive and Comparative Analysis of the Patching Behavior
of Open Source and Closed Source Software Vendors.” 5th International Conference
on IT Security Incident Management \& IT Forensics, 2009.
short: 'G. Schryen, in: 5th International Conference on IT Security Incident Management
\& IT Forensics, 2009.'
date_created: 2018-11-14T14:40:04Z
date_updated: 2022-01-06T07:02:19Z
ddc:
- '000'
department:
- _id: '277'
extern: '1'
file:
- access_level: open_access
content_type: application/pdf
creator: hsiemes
date_created: 2018-12-18T13:14:48Z
date_updated: 2018-12-18T13:14:48Z
file_id: '6311'
file_name: Conference Version.pdf
file_size: 594302
relation: main_file
file_date_updated: 2018-12-18T13:14:48Z
has_accepted_license: '1'
language:
- iso: eng
oa: '1'
publication: 5th International Conference on IT Security Incident Management \& IT
Forensics
status: public
title: A comprehensive and comparative analysis of the patching behavior of open source
and closed source software vendors
type: conference
user_id: '61579'
year: '2009'
...
---
_id: '5647'
abstract:
- lang: eng
text: Reviewing literature on open source and closed source security reveals that
the discussion is often determined by biased attitudes toward one of these development
styles. The discussion specifically lacks appropriate metrics, methodology and
hard data. This paper contributes to solving this problem by analyzing and comparing
published vulnerabilities of eight open source software and nine closed source
software packages, all of which are widely deployed. Thereby, it provides an extensive
empirical analysis of vulnerabilities in terms of mean time between vulnerability
disclosures, the development of disclosure over time, and the severity of vulnerabilities,
and allows for validating models provided in the literature. The investigation
reveals that (a) the mean time between vulnerability disclosures was lower for
open source software in half of the cases, while the other cases show no differences,
(b) in contrast to literature assumption, 14 out of 17 software packages showed
a significant linear or piecewise linear correlation between time and the number
of published vulnerabilities, and (c) regarding the severity of vulnerabilities,
no significant differences were found between open source and closed source.
author:
- first_name: Guido
full_name: Schryen, Guido
id: '72850'
last_name: Schryen
citation:
ama: 'Schryen G. Security of open source and closed source software: An empirical
comparison of published vulnerabilities. In: 15th Americas Conference on Information
Systems. ; 2009.'
apa: 'Schryen, G. (2009). Security of open source and closed source software: An
empirical comparison of published vulnerabilities. In 15th Americas Conference
on Information Systems.'
bibtex: '@inproceedings{Schryen_2009, title={Security of open source and closed
source software: An empirical comparison of published vulnerabilities}, booktitle={15th
Americas Conference on Information Systems}, author={Schryen, Guido}, year={2009}
}'
chicago: 'Schryen, Guido. “Security of Open Source and Closed Source Software: An
Empirical Comparison of Published Vulnerabilities.” In 15th Americas Conference
on Information Systems, 2009.'
ieee: 'G. Schryen, “Security of open source and closed source software: An empirical
comparison of published vulnerabilities,” in 15th Americas Conference on Information
Systems, 2009.'
mla: 'Schryen, Guido. “Security of Open Source and Closed Source Software: An Empirical
Comparison of Published Vulnerabilities.” 15th Americas Conference on Information
Systems, 2009.'
short: 'G. Schryen, in: 15th Americas Conference on Information Systems, 2009.'
date_created: 2018-11-14T14:41:24Z
date_updated: 2022-01-06T07:02:19Z
ddc:
- '000'
department:
- _id: '277'
extern: '1'
file:
- access_level: open_access
content_type: application/pdf
creator: hsiemes
date_created: 2018-12-18T13:16:39Z
date_updated: 2018-12-18T13:16:39Z
file_id: '6317'
file_name: Security of Open Source and Closed Source Software An Empirical - AMCIS
Version.pdf
file_size: 483690
relation: main_file
file_date_updated: 2018-12-18T13:16:39Z
has_accepted_license: '1'
keyword:
- Vulnerabilities
- security
- open source software
- closed source software
- empirical comparison
language:
- iso: eng
oa: '1'
publication: 15th Americas Conference on Information Systems
status: public
title: 'Security of open source and closed source software: An empirical comparison
of published vulnerabilities'
type: conference
user_id: '61579'
year: '2009'
...
---
_id: '5648'
author:
- first_name: Guido
full_name: Schryen, Guido
id: '72850'
last_name: Schryen
citation:
ama: Schryen G. Effektivität und Effizienz von Anti-Spam-Maßnahmen. Linux Technical
Review. 2008;(7).
apa: Schryen, G. (2008). Effektivität und Effizienz von Anti-Spam-Maßnahmen. Linux
Technical Review, (7).
bibtex: '@article{Schryen_2008, title={Effektivität und Effizienz von Anti-Spam-Maßnahmen},
number={7}, journal={Linux Technical Review}, publisher={Linux New Media AG},
author={Schryen, Guido}, year={2008} }'
chicago: Schryen, Guido. “Effektivität Und Effizienz von Anti-Spam-Maßnahmen.” Linux
Technical Review, no. 7 (2008).
ieee: G. Schryen, “Effektivität und Effizienz von Anti-Spam-Maßnahmen,” Linux
Technical Review, no. 7, 2008.
mla: Schryen, Guido. “Effektivität Und Effizienz von Anti-Spam-Maßnahmen.” Linux
Technical Review, no. 7, Linux New Media AG, 2008.
short: G. Schryen, Linux Technical Review (2008).
date_created: 2018-11-14T14:41:58Z
date_updated: 2022-01-06T07:02:20Z
ddc:
- '000'
department:
- _id: '277'
extern: '1'
file:
- access_level: open_access
content_type: application/pdf
creator: hsiemes
date_created: 2018-12-18T13:17:40Z
date_updated: 2018-12-18T13:17:40Z
file_id: '6319'
file_name: Linux Technical Review 2008 - Spam.pdf
file_size: 41784
relation: main_file
file_date_updated: 2018-12-18T13:17:40Z
has_accepted_license: '1'
issue: '7'
language:
- iso: eng
oa: '1'
publication: Linux Technical Review
publisher: Linux New Media AG
status: public
title: Effektivität und Effizienz von Anti-Spam-Maßnahmen
type: journal_article
user_id: '61579'
year: '2008'
...
---
_id: '5649'
abstract:
- lang: eng
text: The Estonian parliamentary election in 2007 is regarded as a success story
of large-scale Internet elections. I use this election in a single case study
on practical security to show that low quality of security and its management
does not necessarily prevent large-scale Internet elections from being conducted.
I also provide research propositions with regard to future challenges for large-scale
Internet elections.
author:
- first_name: Guido
full_name: Schryen, Guido
id: '72850'
last_name: Schryen
citation:
ama: 'Schryen G. Practical Security of Large-scale Elections: An Exploratory Case
Study of Internet Voting in Estonia. In: 7th Workshop on E-Business (WEB 2008,
AIS Special Interest Group on E-Business). ; 2008.'
apa: 'Schryen, G. (2008). Practical Security of Large-scale Elections: An Exploratory
Case Study of Internet Voting in Estonia. In 7th Workshop on e-Business (WEB
2008, AIS Special Interest Group on E-Business).'
bibtex: '@inproceedings{Schryen_2008, title={Practical Security of Large-scale Elections:
An Exploratory Case Study of Internet Voting in Estonia}, booktitle={7th Workshop
on e-Business (WEB 2008, AIS Special Interest Group on E-Business)}, author={Schryen,
Guido}, year={2008} }'
chicago: 'Schryen, Guido. “Practical Security of Large-Scale Elections: An Exploratory
Case Study of Internet Voting in Estonia.” In 7th Workshop on E-Business (WEB
2008, AIS Special Interest Group on E-Business), 2008.'
ieee: 'G. Schryen, “Practical Security of Large-scale Elections: An Exploratory
Case Study of Internet Voting in Estonia,” in 7th Workshop on e-Business (WEB
2008, AIS Special Interest Group on E-Business), 2008.'
mla: 'Schryen, Guido. “Practical Security of Large-Scale Elections: An Exploratory
Case Study of Internet Voting in Estonia.” 7th Workshop on E-Business (WEB
2008, AIS Special Interest Group on E-Business), 2008.'
short: 'G. Schryen, in: 7th Workshop on E-Business (WEB 2008, AIS Special Interest
Group on E-Business), 2008.'
date_created: 2018-11-14T14:43:23Z
date_updated: 2022-01-06T07:02:20Z
ddc:
- '000'
department:
- _id: '277'
extern: '1'
file:
- access_level: open_access
content_type: application/pdf
creator: hsiemes
date_created: 2018-12-18T13:18:21Z
date_updated: 2018-12-18T13:18:21Z
file_id: '6320'
file_name: Schryen - Practical Security of Large-scale Elections - LNBIP - web version.pdf
file_size: 273231
relation: main_file
file_date_updated: 2018-12-18T13:18:21Z
has_accepted_license: '1'
keyword:
- Internet voting
- large-scale election
- Estonian parliamen- tary election
- security
- security management
language:
- iso: eng
oa: '1'
publication: 7th Workshop on e-Business (WEB 2008, AIS Special Interest Group on E-Business)
status: public
title: 'Practical Security of Large-scale Elections: An Exploratory Case Study of
Internet Voting in Estonia'
type: conference
user_id: '61579'
year: '2008'
...
---
_id: '6287'
abstract:
- lang: eng
text: Spamming remains a form of Internet abuse, which burdens the Internet infrastructure,
is generally regarded as an annoyance, and is said to cause a huge economic harm.
Many technological, organizational, and legislative anti-spam measures have already
been proposed and implemented, but have not led to any substantial decrease in
the number of spam e-mails. We propose a scalable and flexible infrastructure
framework that integrates several anti-spam measures and that features both a
technological and an organizational facet. The key element of our infrastructure
is a new organizational unit that reliably and transparently limits the number
of e-mails that can be sent per day and per account. We also analyze the proposed
framework in terms of its theoretical effectiveness, the required resources, and
its limitations.
author:
- first_name: Guido
full_name: Schryen, Guido
id: '72850'
last_name: Schryen
citation:
ama: 'Schryen G. Preventing E-Mail Spam: The Conceptualization and the Analysis
of an Infrastructure Framework.; 2007.'
apa: 'Schryen, G. (2007). Preventing E-mail Spam: The Conceptualization and the
Analysis of an Infrastructure Framework.'
bibtex: '@book{Schryen_2007, title={Preventing E-mail Spam: The Conceptualization
and the Analysis of an Infrastructure Framework}, author={Schryen, Guido}, year={2007}
}'
chicago: 'Schryen, Guido. Preventing E-Mail Spam: The Conceptualization and the
Analysis of an Infrastructure Framework, 2007.'
ieee: 'G. Schryen, Preventing E-mail Spam: The Conceptualization and the Analysis
of an Infrastructure Framework. 2007.'
mla: 'Schryen, Guido. Preventing E-Mail Spam: The Conceptualization and the Analysis
of an Infrastructure Framework. 2007.'
short: 'G. Schryen, Preventing E-Mail Spam: The Conceptualization and the Analysis
of an Infrastructure Framework, 2007.'
date_created: 2018-12-18T12:50:22Z
date_updated: 2022-01-06T07:03:00Z
ddc:
- '000'
department:
- _id: '277'
file:
- access_level: open_access
content_type: application/pdf
creator: hsiemes
date_created: 2018-12-18T13:23:40Z
date_updated: 2018-12-18T13:23:40Z
file_id: '6322'
file_name: anti_spam_framework.pdf
file_size: 456755
relation: main_file
file_date_updated: 2018-12-18T13:23:40Z
has_accepted_license: '1'
keyword:
- Email
- Infrastructure
- Internet
- Spam
language:
- iso: eng
oa: '1'
status: public
title: 'Preventing E-mail Spam: The Conceptualization and the Analysis of an Infrastructure
Framework'
type: report
user_id: '61579'
year: '2007'
...
---
_id: '5650'
author:
- first_name: Guido
full_name: Schryen, Guido
id: '72850'
last_name: Schryen
citation:
ama: 'Schryen G. A Scalable and Flexible Infrastructure Framework For Addressing
Spam. In: Satesh D, Prabhakar R, eds. Proceedings of IPSI International Conference
on Advances in the Internet, Processing, Systems, and Interdisciplinary Research.
Hyderabad, India: ICFAI University Press; 2007:55-64.'
apa: 'Schryen, G. (2007). A Scalable and Flexible Infrastructure Framework For Addressing
Spam. In D. Satesh & R. Prabhakar (Eds.), Proceedings of IPSI International
Conference on Advances in the Internet, Processing, Systems, and Interdisciplinary
Research (pp. 55–64). Hyderabad, India: ICFAI University Press.'
bibtex: '@inbook{Schryen_2007, place={Hyderabad, India}, title={A Scalable and Flexible
Infrastructure Framework For Addressing Spam}, booktitle={Proceedings of IPSI
International Conference on Advances in the Internet, Processing, Systems, and
Interdisciplinary Research}, publisher={ICFAI University Press}, author={Schryen,
Guido}, editor={Satesh, D. and Prabhakar, R.Editors}, year={2007}, pages={55–64}
}'
chicago: 'Schryen, Guido. “A Scalable and Flexible Infrastructure Framework For
Addressing Spam.” In Proceedings of IPSI International Conference on Advances
in the Internet, Processing, Systems, and Interdisciplinary Research, edited
by D. Satesh and R. Prabhakar, 55–64. Hyderabad, India: ICFAI University Press,
2007.'
ieee: 'G. Schryen, “A Scalable and Flexible Infrastructure Framework For Addressing
Spam,” in Proceedings of IPSI International Conference on Advances in the Internet,
Processing, Systems, and Interdisciplinary Research, D. Satesh and R. Prabhakar,
Eds. Hyderabad, India: ICFAI University Press, 2007, pp. 55–64.'
mla: Schryen, Guido. “A Scalable and Flexible Infrastructure Framework For Addressing
Spam.” Proceedings of IPSI International Conference on Advances in the Internet,
Processing, Systems, and Interdisciplinary Research, edited by D. Satesh and
R. Prabhakar, ICFAI University Press, 2007, pp. 55–64.
short: 'G. Schryen, in: D. Satesh, R. Prabhakar (Eds.), Proceedings of IPSI International
Conference on Advances in the Internet, Processing, Systems, and Interdisciplinary
Research, ICFAI University Press, Hyderabad, India, 2007, pp. 55–64.'
date_created: 2018-11-14T14:44:01Z
date_updated: 2022-01-06T07:02:20Z
department:
- _id: '277'
editor:
- first_name: D.
full_name: Satesh, D.
last_name: Satesh
- first_name: R.
full_name: Prabhakar, R.
last_name: Prabhakar
extern: '1'
language:
- iso: eng
page: 55-64
place: Hyderabad, India
publication: Proceedings of IPSI International Conference on Advances in the Internet,
Processing, Systems, and Interdisciplinary Research
publisher: ICFAI University Press
status: public
title: A Scalable and Flexible Infrastructure Framework For Addressing Spam
type: book_chapter
user_id: '61579'
year: '2007'
...
---
_id: '5651'
author:
- first_name: Guido
full_name: Schryen, Guido
id: '72850'
last_name: Schryen
citation:
ama: 'Schryen G. Anti-Spam Measures: Analysis and Design. Berlin, Heidelberg,
New York: Springer; 2007.'
apa: 'Schryen, G. (2007). Anti-Spam Measures: Analysis and Design. Berlin,
Heidelberg, New York: Springer.'
bibtex: '@book{Schryen_2007, place={Berlin, Heidelberg, New York}, title={Anti-Spam
Measures: Analysis and Design}, publisher={Springer}, author={Schryen, Guido},
year={2007} }'
chicago: 'Schryen, Guido. Anti-Spam Measures: Analysis and Design. Berlin,
Heidelberg, New York: Springer, 2007.'
ieee: 'G. Schryen, Anti-Spam Measures: Analysis and Design. Berlin, Heidelberg,
New York: Springer, 2007.'
mla: 'Schryen, Guido. Anti-Spam Measures: Analysis and Design. Springer,
2007.'
short: 'G. Schryen, Anti-Spam Measures: Analysis and Design, Springer, Berlin, Heidelberg,
New York, 2007.'
date_created: 2018-11-14T14:45:12Z
date_updated: 2022-01-06T07:02:20Z
department:
- _id: '277'
extern: '1'
language:
- iso: eng
place: Berlin, Heidelberg, New York
publisher: Springer
status: public
title: 'Anti-Spam Measures: Analysis and Design'
type: book
user_id: '61579'
year: '2007'
...
---
_id: '5652'
abstract:
- lang: eng
text: More than half of world-wide e-mail traffic ? an estimated total of several
billion e-mails per day ? consists of spam. This is becoming a considerable disturbance
to telecommunications. Spam is also closely related to other kinds of cyber crime
as it possibly contains malicious software or is pursuing some kind of fraudulent
aim, such as phishing. Besides technical and organizational measures, many countries
have introduced anti-spam legislation. However, today's world-wide legislative
coverage of spam is heterogeneous, and its effectiveness is controversially discussed.
This article describes important parameters by which anti-spam legislation can
vary and gives an overview and analysis of world-wide anti-spam legislation, including
the European Directive 2002/58/EC, the U.S. CANSPAM Act of 2003, and international
cooperation, such as the London Action Plan. The article then proceeds to discuss
the effectiveness of current laws, and it identifies problems resulting from the
fact that an international phenomenon is being addressed by national legislation.
Finally, the article presents suggestions for overcoming some of these problems.
author:
- first_name: Guido
full_name: Schryen, Guido
id: '72850'
last_name: Schryen
citation:
ama: 'Schryen G. Anti-spam legislation: An analysis of laws and their effectiveness.
Information and Communications Technology Law. 2007;16(1):17-32.'
apa: 'Schryen, G. (2007). Anti-spam legislation: An analysis of laws and their effectiveness.
Information and Communications Technology Law, 16(1), 17–32.'
bibtex: '@article{Schryen_2007, title={Anti-spam legislation: An analysis of laws
and their effectiveness}, volume={16}, number={1}, journal={Information and Communications
Technology Law}, publisher={Taylor \& Francis}, author={Schryen, Guido}, year={2007},
pages={17–32} }'
chicago: 'Schryen, Guido. “Anti-Spam Legislation: An Analysis of Laws and Their
Effectiveness.” Information and Communications Technology Law 16, no. 1
(2007): 17–32.'
ieee: 'G. Schryen, “Anti-spam legislation: An analysis of laws and their effectiveness,”
Information and Communications Technology Law, vol. 16, no. 1, pp. 17–32,
2007.'
mla: 'Schryen, Guido. “Anti-Spam Legislation: An Analysis of Laws and Their Effectiveness.”
Information and Communications Technology Law, vol. 16, no. 1, Taylor \&
Francis, 2007, pp. 17–32.'
short: G. Schryen, Information and Communications Technology Law 16 (2007) 17–32.
date_created: 2018-11-14T14:45:57Z
date_updated: 2022-01-06T07:02:21Z
ddc:
- '000'
department:
- _id: '277'
extern: '1'
file:
- access_level: open_access
content_type: application/pdf
creator: hsiemes
date_created: 2018-12-18T13:25:48Z
date_updated: 2018-12-18T13:25:48Z
file_id: '6325'
file_name: JOUNAL_VERSION.pdf
file_size: 175248
relation: main_file
file_date_updated: 2018-12-18T13:25:48Z
has_accepted_license: '1'
intvolume: ' 16'
issue: '1'
language:
- iso: eng
oa: '1'
page: 17-32
publication: Information and Communications Technology Law
publisher: Taylor \& Francis
status: public
title: 'Anti-spam legislation: An analysis of laws and their effectiveness'
type: journal_article
user_id: '61579'
volume: 16
year: '2007'
...
---
_id: '5653'
author:
- first_name: Guido
full_name: Schryen, Guido
id: '72850'
last_name: Schryen
citation:
ama: 'Schryen G. Approaches Addressing Spam. In: Satesh D, Prabhakar R, eds. Spam:
An Introduction. Hyderabad, India: ICFAI University Press; 2007:41-57.'
apa: 'Schryen, G. (2007). Approaches Addressing Spam. In D. Satesh & R. Prabhakar
(Eds.), Spam: An Introduction (pp. 41–57). Hyderabad, India: ICFAI University
Press.'
bibtex: '@inbook{Schryen_2007, place={Hyderabad, India}, title={Approaches Addressing
Spam}, booktitle={Spam: An Introduction}, publisher={ICFAI University Press},
author={Schryen, Guido}, editor={Satesh, D. and Prabhakar, R.Editors}, year={2007},
pages={41–57} }'
chicago: 'Schryen, Guido. “Approaches Addressing Spam.” In Spam: An Introduction,
edited by D. Satesh and R. Prabhakar, 41–57. Hyderabad, India: ICFAI University
Press, 2007.'
ieee: 'G. Schryen, “Approaches Addressing Spam,” in Spam: An Introduction,
D. Satesh and R. Prabhakar, Eds. Hyderabad, India: ICFAI University Press, 2007,
pp. 41–57.'
mla: 'Schryen, Guido. “Approaches Addressing Spam.” Spam: An Introduction,
edited by D. Satesh and R. Prabhakar, ICFAI University Press, 2007, pp. 41–57.'
short: 'G. Schryen, in: D. Satesh, R. Prabhakar (Eds.), Spam: An Introduction, ICFAI
University Press, Hyderabad, India, 2007, pp. 41–57.'
date_created: 2018-11-14T14:46:28Z
date_updated: 2022-01-06T07:02:21Z
department:
- _id: '277'
editor:
- first_name: D.
full_name: Satesh, D.
last_name: Satesh
- first_name: R.
full_name: Prabhakar, R.
last_name: Prabhakar
extern: '1'
language:
- iso: eng
page: 41-57
place: Hyderabad, India
publication: 'Spam: An Introduction'
publisher: ICFAI University Press
status: public
title: Approaches Addressing Spam
type: book_chapter
user_id: '61579'
year: '2007'
...
---
_id: '5654'
abstract:
- lang: eng
text: Spamming remains a form of Internet abuse, which burdens the Internet infrastructure,
is generally regarded as an annoyance, and is said to cause economic harm to the
tune of about several billion US\$ per year. Many technological, organizational,
and legislative anti-spam measures have already been proposed and implemented,
but have not led to any substantial decrease in the number of spam e-mails. We
propose here a new infrastructure framework that combines several anti-spam measures
in a framework that features both a technological and an organizational facet.
The key element of our infrastructure is a new organizational unit that reliably
and transparently limits he number of e-mails that can be sent per day and per
account. This paper first gives an overview of the framework, then it provides
technological and organizational details of the infrastructure, the deployment
of which depends to a large degree on its acceptance and propagation by the ICANN,
the ISOC, and by large e-mail service providers. Finally, the paper discusses
the limitations and drawbacks of the proposed framework.
author:
- first_name: Guido
full_name: Schryen, Guido
id: '72850'
last_name: Schryen
citation:
ama: 'Schryen G. Armed for the spam battle - a technological and organizational
infrastructure framework. In: 40th Annual Hawaii International Conference on
System Sciences. ; 2007.'
apa: Schryen, G. (2007). Armed for the spam battle - a technological and organizational
infrastructure framework. In 40th Annual Hawaii International Conference on
System Sciences.
bibtex: '@inproceedings{Schryen_2007, title={Armed for the spam battle - a technological
and organizational infrastructure framework}, booktitle={40th Annual Hawaii International
Conference on System Sciences}, author={Schryen, Guido}, year={2007} }'
chicago: Schryen, Guido. “Armed for the Spam Battle - a Technological and Organizational
Infrastructure Framework.” In 40th Annual Hawaii International Conference on
System Sciences, 2007.
ieee: G. Schryen, “Armed for the spam battle - a technological and organizational
infrastructure framework,” in 40th Annual Hawaii International Conference on
System Sciences, 2007.
mla: Schryen, Guido. “Armed for the Spam Battle - a Technological and Organizational
Infrastructure Framework.” 40th Annual Hawaii International Conference on System
Sciences, 2007.
short: 'G. Schryen, in: 40th Annual Hawaii International Conference on System Sciences,
2007.'
date_created: 2018-11-14T14:46:49Z
date_updated: 2022-01-06T07:02:21Z
ddc:
- '000'
department:
- _id: '277'
extern: '1'
file:
- access_level: open_access
content_type: application/pdf
creator: hsiemes
date_created: 2018-12-18T13:24:34Z
date_updated: 2018-12-18T13:24:34Z
file_id: '6323'
file_name: Armed for the spam battle - a technological and organizational infrastructure
framework - proceeding version.pdf
file_size: 338482
relation: main_file
file_date_updated: 2018-12-18T13:24:34Z
has_accepted_license: '1'
language:
- iso: eng
oa: '1'
publication: 40th Annual Hawaii International Conference on System Sciences
status: public
title: Armed for the spam battle - a technological and organizational infrastructure
framework
type: conference
user_id: '61579'
year: '2007'
...
---
_id: '5655'
abstract:
- lang: eng
text: Spam e-mails have become a serious technological and economic problem. Up
to now, by deploying complementary anti-spam measures, we have been reasonably
able to withstand spam e-mails and use the Internet for regular communication.
However, if we are to avert the danger of losing the Internet e-mail service in
its capacity as a valuable, free and worldwide medium of open communication, anti-spam
activities should be performed more systematically than is currently the case
regarding the mainly heuristic, anti-spam measures in place. A formal framework,
within which the existing delivery routes that a spam e-mail may take, and anti-spam
measures and their effectiveness can be investigated, will perhaps encourage a
shift in methodology and pave the way for new, holistic anti-spam measures. This
paper presents a model of the Internet e-mail infrastructure as a directed graph
and a deterministic finite automaton and draws on automata theory to formally
derive the spam delivery routes. The most important anti-spam measures are then
described. Methods controlling only specific delivery routes are evaluated in
terms of how effectively they cover the modeled e-mail infrastructure; methods
operating independently of any particular routes receive a more general assessment.
author:
- first_name: Guido
full_name: Schryen, Guido
id: '72850'
last_name: Schryen
citation:
ama: Schryen G. Do anti-spam measures effectively cover the e-mail communication
network? A formal approach. The Journal of Information Systems Security (AIS
Special Interest Group in Security). 2007;3(2):66-90.
apa: Schryen, G. (2007). Do anti-spam measures effectively cover the e-mail communication
network? A formal approach. The Journal of Information Systems Security (AIS
Special Interest Group in Security), 3(2), 66–90.
bibtex: '@article{Schryen_2007, title={Do anti-spam measures effectively cover the
e-mail communication network? A formal approach}, volume={3}, number={2}, journal={The
Journal of Information Systems Security (AIS Special Interest Group in Security)},
author={Schryen, Guido}, year={2007}, pages={66–90} }'
chicago: 'Schryen, Guido. “Do Anti-Spam Measures Effectively Cover the e-Mail Communication
Network? A Formal Approach.” The Journal of Information Systems Security (AIS
Special Interest Group in Security) 3, no. 2 (2007): 66–90.'
ieee: G. Schryen, “Do anti-spam measures effectively cover the e-mail communication
network? A formal approach,” The Journal of Information Systems Security (AIS
Special Interest Group in Security), vol. 3, no. 2, pp. 66–90, 2007.
mla: Schryen, Guido. “Do Anti-Spam Measures Effectively Cover the e-Mail Communication
Network? A Formal Approach.” The Journal of Information Systems Security (AIS
Special Interest Group in Security), vol. 3, no. 2, 2007, pp. 66–90.
short: G. Schryen, The Journal of Information Systems Security (AIS Special Interest
Group in Security) 3 (2007) 66–90.
date_created: 2018-11-14T14:51:41Z
date_updated: 2022-01-06T07:02:22Z
ddc:
- '000'
department:
- _id: '277'
extern: '1'
file:
- access_level: open_access
content_type: application/pdf
creator: hsiemes
date_created: 2018-12-18T13:25:12Z
date_updated: 2018-12-18T13:25:12Z
file_id: '6324'
file_name: Do anti-spam measures effectively cover the e-mail communication - Journal
version.pdf
file_size: 100448
relation: main_file
file_date_updated: 2018-12-18T13:25:12Z
has_accepted_license: '1'
intvolume: ' 3'
issue: '2'
keyword:
- e-mail
- spam
- e-mail infrastructure
- anti-spam measures
- spamming options
language:
- iso: eng
oa: '1'
page: 66-90
publication: The Journal of Information Systems Security (AIS Special Interest Group
in Security)
status: public
title: Do anti-spam measures effectively cover the e-mail communication network? A
formal approach
type: journal_article
user_id: '61579'
volume: 3
year: '2007'
...
---
_id: '5656'
author:
- first_name: Guido
full_name: Schryen, Guido
id: '72850'
last_name: Schryen
citation:
ama: 'Schryen G. Location Based Services. In: Schulte H, ed. Vom LAN Zum Kommunikationsnetz
- Systeme Und Applikationen. Kissing: Interest-Verlag; 2007.'
apa: 'Schryen, G. (2007). Location Based Services. In H. Schulte (Ed.), Vom LAN
zum Kommunikationsnetz - Systeme und Applikationen. Kissing: Interest-Verlag.'
bibtex: '@inbook{Schryen_2007, place={Kissing}, title={Location Based Services},
booktitle={Vom LAN zum Kommunikationsnetz - Systeme und Applikationen}, publisher={Interest-Verlag},
author={Schryen, Guido}, editor={Schulte, HeinzEditor}, year={2007} }'
chicago: 'Schryen, Guido. “Location Based Services.” In Vom LAN Zum Kommunikationsnetz
- Systeme Und Applikationen, edited by Heinz Schulte. Kissing: Interest-Verlag,
2007.'
ieee: 'G. Schryen, “Location Based Services,” in Vom LAN zum Kommunikationsnetz
- Systeme und Applikationen, H. Schulte, Ed. Kissing: Interest-Verlag, 2007.'
mla: Schryen, Guido. “Location Based Services.” Vom LAN Zum Kommunikationsnetz
- Systeme Und Applikationen, edited by Heinz Schulte, Interest-Verlag, 2007.
short: 'G. Schryen, in: H. Schulte (Ed.), Vom LAN Zum Kommunikationsnetz - Systeme
Und Applikationen, Interest-Verlag, Kissing, 2007.'
date_created: 2018-11-14T14:52:09Z
date_updated: 2022-01-06T07:02:22Z
department:
- _id: '277'
editor:
- first_name: Heinz
full_name: Schulte, Heinz
last_name: Schulte
extern: '1'
language:
- iso: eng
place: Kissing
publication: Vom LAN zum Kommunikationsnetz - Systeme und Applikationen
publisher: Interest-Verlag
status: public
title: Location Based Services
type: book_chapter
user_id: '61579'
year: '2007'
...
---
_id: '5657'
author:
- first_name: Guido
full_name: Schryen, Guido
id: '72850'
last_name: Schryen
citation:
ama: 'Schryen G. Spam-Emails. In: Schulte H, ed. Vom LAN Zum Kommunikationsnetz
- Systeme Und Applikationen, Edition 02/2007. Vol 9/12. Kissing: Interest-Verlag;
2007.'
apa: 'Schryen, G. (2007). Spam-Emails. In H. Schulte (Ed.), Vom LAN zum Kommunikationsnetz
- Systeme und Applikationen, Edition 02/2007 (Vol. 9/12). Kissing: Interest-Verlag.'
bibtex: '@inbook{Schryen_2007, place={Kissing}, title={Spam-Emails}, volume={9/12},
booktitle={Vom LAN zum Kommunikationsnetz - Systeme und Applikationen, Edition
02/2007}, publisher={Interest-Verlag}, author={Schryen, Guido}, editor={Schulte,
HeinzEditor}, year={2007} }'
chicago: 'Schryen, Guido. “Spam-Emails.” In Vom LAN Zum Kommunikationsnetz -
Systeme Und Applikationen, Edition 02/2007, edited by Heinz Schulte, Vol.
9/12. Kissing: Interest-Verlag, 2007.'
ieee: 'G. Schryen, “Spam-Emails,” in Vom LAN zum Kommunikationsnetz - Systeme
und Applikationen, Edition 02/2007, vol. 9/12, H. Schulte, Ed. Kissing: Interest-Verlag,
2007.'
mla: Schryen, Guido. “Spam-Emails.” Vom LAN Zum Kommunikationsnetz - Systeme
Und Applikationen, Edition 02/2007, edited by Heinz Schulte, vol. 9/12, Interest-Verlag,
2007.
short: 'G. Schryen, in: H. Schulte (Ed.), Vom LAN Zum Kommunikationsnetz - Systeme
Und Applikationen, Edition 02/2007, Interest-Verlag, Kissing, 2007.'
date_created: 2018-11-14T14:52:32Z
date_updated: 2022-01-06T07:02:22Z
department:
- _id: '277'
editor:
- first_name: Heinz
full_name: Schulte, Heinz
last_name: Schulte
extern: '1'
language:
- iso: eng
place: Kissing
publication: Vom LAN zum Kommunikationsnetz - Systeme und Applikationen, Edition 02/2007
publisher: Interest-Verlag
status: public
title: Spam-Emails
type: book_chapter
user_id: '61579'
volume: 9/12
year: '2007'
...
---
_id: '5658'
abstract:
- lang: eng
text: 'Email communication is encumbered with a mass of email messages which their
recipients have neither requested nor require. Even worse, the impacts of these
messages are far from being simply an annoyance, as they also involve economic
damage. This manuscript examines the resource ?email addresses?, which is vital
for any potential bulk mailer and spammer. Both a methodology and a honeypot conceptualization
for implementing an empirical analysis of the usage of email addresses placed
on the Internet are proposed here. Their objective is to assess, on a quantitative
basis, the extent of the current harassment and its development over time. This
?framework? is intended to be extensible to measuring the effectiveness of address-obscuring
techniques. The implementation of a pilot honeypot is described, which led to
key findings, some of them being: (1) Web placements attract more than two-thirds
(70\%) of all honeypot spam emails, followed by newsgroup placements (28.6\%)
and newsletter subscriptions (1.4\%), (2) the proportions of spam relating to
the email addresses? top-level domain can be statistically assumed to be uniformly
distributed, (3) More than 43\% of addresses on the web have been abused, whereas
about 27\% was the case for addresses on newsgroups and only about 4\% was the
case for addresses used for a newsletter subscription, (4) Regarding the development
of email addresses? attractiveness for spammers over time, the service ?web sites?
features a negative linear relationship, whereas the service ?Usenet? hows a negative
exponential relationship. (5) Only 1.54\% of the spam emails showed an interrelation
between the topic of the spam email and that of the location where the recipient?s
address was placed, so that spammers are assumed to send their emails in a ?context
insensitive? manner. The results of the empirical analysis motivate the need for
the protection of email addresses through obscuration. We analyze this need by
formulating requirements for address obscuring techniques and we reveal to which
extent today?s most relevant approaches fulfill these requirements.'
author:
- first_name: Guido
full_name: Schryen, Guido
id: '72850'
last_name: Schryen
citation:
ama: Schryen G. The Impact that Placing Email Addresses on the Internet has on the
Receipt of Spam ? An Empirical Analysis. Computers & Security. 2007;2(5):361-372.
apa: Schryen, G. (2007). The Impact that Placing Email Addresses on the Internet
has on the Receipt of Spam ? An Empirical Analysis. Computers & Security,
2(5), 361–372.
bibtex: '@article{Schryen_2007, title={The Impact that Placing Email Addresses on
the Internet has on the Receipt of Spam ? An Empirical Analysis}, volume={2},
number={5}, journal={Computers & Security}, publisher={Elsevier}, author={Schryen,
Guido}, year={2007}, pages={361–372} }'
chicago: 'Schryen, Guido. “The Impact That Placing Email Addresses on the Internet
Has on the Receipt of Spam ? An Empirical Analysis.” Computers & Security
2, no. 5 (2007): 361–72.'
ieee: G. Schryen, “The Impact that Placing Email Addresses on the Internet has on
the Receipt of Spam ? An Empirical Analysis,” Computers & Security,
vol. 2, no. 5, pp. 361–372, 2007.
mla: Schryen, Guido. “The Impact That Placing Email Addresses on the Internet Has
on the Receipt of Spam ? An Empirical Analysis.” Computers & Security,
vol. 2, no. 5, Elsevier, 2007, pp. 361–72.
short: G. Schryen, Computers & Security 2 (2007) 361–372.
date_created: 2018-11-14T14:53:12Z
date_updated: 2022-01-06T07:02:22Z
ddc:
- '000'
department:
- _id: '277'
extern: '1'
file:
- access_level: open_access
content_type: application/pdf
creator: hsiemes
date_created: 2018-12-18T13:27:01Z
date_updated: 2018-12-18T13:27:01Z
file_id: '6326'
file_name: The Impact that Placing Email Addresses on the Internet has on the Receipt
of Spam - An Empirical Analysis - Journal version.pdf
file_size: 3026200
relation: main_file
file_date_updated: 2018-12-18T13:27:01Z
has_accepted_license: '1'
intvolume: ' 2'
issue: '5'
keyword:
- Address-obfuscating techniques
- email
- empirical analysis
- honeypot
- security by design
- security by obscurity
- spam
language:
- iso: eng
oa: '1'
page: 361-372
publication: Computers & Security
publisher: Elsevier
status: public
title: The Impact that Placing Email Addresses on the Internet has on the Receipt
of Spam ? An Empirical Analysis
type: journal_article
user_id: '61579'
volume: 2
year: '2007'
...
---
_id: '5659'
abstract:
- lang: eng
text: Spam e-mails have become a serious technological and economic problem. So
far we have been reasonably able to resist spam e-mails and use the Internet for
regular communication by deploying complementary anti-spam approaches. However,
if we are to avert the danger of losing the Internet email service as a valuable,
free, and worldwide medium of open communication, anti-spam activities should
be performed more systematically than is done in current, mainly heuristic, anti-spam
approaches. A formal framework within which the modes of spam delivery, anti-spam
approaches, and their effectiveness can be investigated, may encourage a shift
in methodology and pave the way for new, holistic anti-spam approaches. This paper
presents a model of the Internet e-mail infrastructure as a directed graph and
a deterministic finite automaton, and draws on automata theory to formally derive
the modes of spam delivery possible. Finally the effectiveness of anti-spam approaches
in terms of coverage of spamming modes is assessed.
author:
- first_name: Guido
full_name: Schryen, Guido
id: '72850'
last_name: Schryen
citation:
ama: 'Schryen G. A formal approach towards assessing the effectiveness of anti-spam
procedures. In: 39th Annual Hawaii International Conference on System Sciences.
; 2006.'
apa: Schryen, G. (2006). A formal approach towards assessing the effectiveness of
anti-spam procedures. In 39th Annual Hawaii International Conference on System
Sciences.
bibtex: '@inproceedings{Schryen_2006, title={A formal approach towards assessing
the effectiveness of anti-spam procedures}, booktitle={39th Annual Hawaii International
Conference on System Sciences}, author={Schryen, Guido}, year={2006} }'
chicago: Schryen, Guido. “A Formal Approach towards Assessing the Effectiveness
of Anti-Spam Procedures.” In 39th Annual Hawaii International Conference on
System Sciences, 2006.
ieee: G. Schryen, “A formal approach towards assessing the effectiveness of anti-spam
procedures,” in 39th Annual Hawaii International Conference on System Sciences,
2006.
mla: Schryen, Guido. “A Formal Approach towards Assessing the Effectiveness of Anti-Spam
Procedures.” 39th Annual Hawaii International Conference on System Sciences,
2006.
short: 'G. Schryen, in: 39th Annual Hawaii International Conference on System Sciences,
2006.'
date_created: 2018-11-14T14:54:44Z
date_updated: 2022-01-06T07:02:22Z
ddc:
- '000'
department:
- _id: '277'
extern: '1'
file:
- access_level: open_access
content_type: application/pdf
creator: hsiemes
date_created: 2018-12-18T13:29:29Z
date_updated: 2018-12-18T13:29:29Z
file_id: '6327'
file_name: Conference Version - A formal approach towards assessing the effectiveness
of anti spam approaches.pdf
file_size: 176033
relation: main_file
file_date_updated: 2018-12-18T13:29:29Z
has_accepted_license: '1'
language:
- iso: eng
oa: '1'
publication: 39th Annual Hawaii International Conference on System Sciences
status: public
title: A formal approach towards assessing the effectiveness of anti-spam procedures
type: conference
user_id: '61579'
year: '2006'
...
---
_id: '5660'
author:
- first_name: Guido
full_name: Schryen, Guido
id: '72850'
last_name: Schryen
citation:
ama: Schryen G. A honeypot for the exploration of spammers’ behaviour. IATAC
IAnewsletter. 2005;8(3):22-25.
apa: Schryen, G. (2005). A honeypot for the exploration of spammers’ behaviour.
IATAC IAnewsletter, 8(3), 22–25.
bibtex: '@article{Schryen_2005, title={A honeypot for the exploration of spammers’
behaviour}, volume={8}, number={3}, journal={IATAC IAnewsletter}, publisher={United
States Department of Defense}, author={Schryen, Guido}, year={2005}, pages={22–25}
}'
chicago: 'Schryen, Guido. “A Honeypot for the Exploration of Spammers’ Behaviour.”
IATAC IAnewsletter 8, no. 3 (2005): 22–25.'
ieee: G. Schryen, “A honeypot for the exploration of spammers’ behaviour,” IATAC
IAnewsletter, vol. 8, no. 3, pp. 22–25, 2005.
mla: Schryen, Guido. “A Honeypot for the Exploration of Spammers’ Behaviour.” IATAC
IAnewsletter, vol. 8, no. 3, United States Department of Defense, 2005, pp.
22–25.
short: G. Schryen, IATAC IAnewsletter 8 (2005) 22–25.
date_created: 2018-11-14T14:55:09Z
date_updated: 2022-01-06T07:02:24Z
ddc:
- '000'
department:
- _id: '277'
extern: '1'
file:
- access_level: open_access
content_type: application/pdf
creator: hsiemes
date_created: 2018-12-18T13:31:04Z
date_updated: 2018-12-18T13:31:04Z
file_id: '6330'
file_name: Honeypot for the Exploration of Spammers Behavior - journal version.pdf
file_size: 3394223
relation: main_file
file_date_updated: 2018-12-18T13:31:04Z
has_accepted_license: '1'
intvolume: ' 8'
issue: '3'
language:
- iso: eng
oa: '1'
page: 22-25
publication: IATAC IAnewsletter
publisher: United States Department of Defense
status: public
title: A honeypot for the exploration of spammers' behaviour
type: journal_article
user_id: '61579'
volume: 8
year: '2005'
...
---
_id: '5661'
abstract:
- lang: eng
text: Spam has become one of the most annoying and costly phenomenon in the Internet.
Valid e-mail addresses belong to the most valuable resources of spammers, but
little is known about spammers? behavior when collecting and harvesting addresses
and spammers? capabilities and interest in carefully directed, consumer-oriented
marketing have not been explored yet. Gaining insight into spammers? ways to obtain
and (mis)use e-mail addresses is useful in many ways, e.g. for the assessment
of the effectiveness of address obscuring techniques and the usability and necessity
of hiding e-mail addresses on the Internet. This paper presents a spam honeypot
project in progress addressing these issues by systematically placing e-mail addresses
in the Internet and analyzing received e-mails. The honeypot?s conceptual framework,
its implementation, and first empirical results are presented. Finally, an outlook
on further work and activities is provided.
author:
- first_name: Guido
full_name: Schryen, Guido
id: '72850'
last_name: Schryen
citation:
ama: 'Schryen G. An e-mail honeypot addressing spammers’ behavior in collecting
and applying addresses. In: Proceedings of the 6th IEEE Information Assurance
Workshop. Westpoint; 2005:37-41.'
apa: Schryen, G. (2005). An e-mail honeypot addressing spammers’ behavior in collecting
and applying addresses. In Proceedings of the 6th IEEE Information Assurance
Workshop (pp. 37–41). Westpoint.
bibtex: '@inproceedings{Schryen_2005, title={An e-mail honeypot addressing spammers’
behavior in collecting and applying addresses}, booktitle={Proceedings of the
6th IEEE Information Assurance Workshop}, publisher={Westpoint}, author={Schryen,
Guido}, year={2005}, pages={37–41} }'
chicago: Schryen, Guido. “An E-Mail Honeypot Addressing Spammers’ Behavior in Collecting
and Applying Addresses.” In Proceedings of the 6th IEEE Information Assurance
Workshop, 37–41. Westpoint, 2005.
ieee: G. Schryen, “An e-mail honeypot addressing spammers’ behavior in collecting
and applying addresses,” in Proceedings of the 6th IEEE Information Assurance
Workshop, 2005, pp. 37–41.
mla: Schryen, Guido. “An E-Mail Honeypot Addressing Spammers’ Behavior in Collecting
and Applying Addresses.” Proceedings of the 6th IEEE Information Assurance
Workshop, Westpoint, 2005, pp. 37–41.
short: 'G. Schryen, in: Proceedings of the 6th IEEE Information Assurance Workshop,
Westpoint, 2005, pp. 37–41.'
date_created: 2018-11-14T14:55:48Z
date_updated: 2022-01-06T07:02:24Z
ddc:
- '000'
department:
- _id: '277'
extern: '1'
file:
- access_level: open_access
content_type: application/pdf
creator: hsiemes
date_created: 2018-12-18T13:31:41Z
date_updated: 2018-12-18T13:31:41Z
file_id: '6331'
file_name: Schryen - An e-mail honeypot addressing spammers' behavior in collecting
and applying addresses.pdf
file_size: 119362
relation: main_file
file_date_updated: 2018-12-18T13:31:41Z
has_accepted_license: '1'
keyword:
- Spam
- ham
- e-mail
- honeypot
- address obscuring technique
- address taxonomy
language:
- iso: eng
oa: '1'
page: 37-41
publication: Proceedings of the 6th IEEE Information Assurance Workshop
publisher: Westpoint
status: public
title: An e-mail honeypot addressing spammers' behavior in collecting and applying
addresses
type: conference
user_id: '61579'
year: '2005'
...
---
_id: '5765'
abstract:
- lang: eng
text: Voting via the Internet has become a feasible option for political as well
as non-political ballots. However, there are many obstacles which have to be overcome,
especially legal restrictions have to be transformed into technical and security
solutions. The article starts with a brief presentation of advantages and disadvantages
of Internet ballots and presents application fields and pilot schemes. Then, technological
security aspects are derived due to democratic basic principles. Especially the
applied voting procedures are critical in security terms. Hence, the most relevant
cryptographic protocols are presented and their drawbacks and shortcomings are
identified. However, this article does not propose a new voting protocol. Beyond
fixing cryptographic procedures for ballots, more elements are to be specified,
e.g. responsibilities and rights of involved authorities or security precautions
regarding hardware and software. For this reason, a structural security framework
for electronic voting systems is presented which can be used for their composition
and analysis.
author:
- first_name: Guido
full_name: Schryen, Guido
id: '72850'
last_name: Schryen
citation:
ama: 'Schryen G. Security Aspects of Internet Voting. In: 37th Annual Hawaii
International Conference on System Sciences. ; 2004.'
apa: Schryen, G. (2004). Security Aspects of Internet Voting. In 37th Annual
Hawaii International Conference on System Sciences.
bibtex: '@inproceedings{Schryen_2004, title={Security Aspects of Internet Voting},
booktitle={37th Annual Hawaii International Conference on System Sciences}, author={Schryen,
Guido}, year={2004} }'
chicago: Schryen, Guido. “Security Aspects of Internet Voting.” In 37th Annual
Hawaii International Conference on System Sciences, 2004.
ieee: G. Schryen, “Security Aspects of Internet Voting,” in 37th Annual Hawaii
International Conference on System Sciences, 2004.
mla: Schryen, Guido. “Security Aspects of Internet Voting.” 37th Annual Hawaii
International Conference on System Sciences, 2004.
short: 'G. Schryen, in: 37th Annual Hawaii International Conference on System Sciences,
2004.'
date_created: 2018-11-20T13:02:25Z
date_updated: 2022-01-06T07:02:39Z
ddc:
- '000'
department:
- _id: '277'
extern: '1'
file:
- access_level: open_access
content_type: application/pdf
creator: hsiemes
date_created: 2018-12-18T13:32:44Z
date_updated: 2018-12-18T13:32:44Z
file_id: '6332'
file_name: Conference version - Security Aspects of Internet Voting.pdf
file_size: 385671
relation: main_file
file_date_updated: 2018-12-18T13:32:44Z
has_accepted_license: '1'
language:
- iso: eng
oa: '1'
publication: 37th Annual Hawaii International Conference on System Sciences
status: public
title: Security Aspects of Internet Voting
type: conference
user_id: '61579'
year: '2004'
...