VIPER: Verifying the Integrity of PERipherals' Firmware
Yanlin Li, Jonathan McCune and Adrian Perrig

Unicorn: Two-Factor Attestation for Data Security
Mohammad Mannan, Beom Kim, Afshar Ganjali and David Lie

Combining Control-Flow Integrity and Static Analysis for Efficient and Validated Data Sandboxing
Bin Zeng, Gang Tan and Greg Morrisett

Composition Theorems Without Pre-Established Session Identifiers
Ralf Kuesters and Max Tuengerthal

Composability of Bellare-Rogaway Key Exchange Protocols
Christina Brzuska, Marc Fischlin, Bogdan Warinschi and Stephen C. Williams

A composable computational soundness notion
Veronique Cortier and Bogdan Warinschi

On the Requirements for Successful GPS Spoofing Attacks
Nils Ole Tippenhauer, Christina Pöpper, Kasper Bonne Rasmussen and Srdjan Capkun

Protecting Consumer Privacy from Electric Load Monitoring
Stephen Mclaughlin, William Aiello and Patrick Mcdaniel

PaperSpeckle: Microscopic fingerprinting of paper
Ashlesh Sharma, Lakshminarayanan Subramanian and Eric Brewer

On the Vulnerability of FPGA Bitstream Encryption against Power Analysis Attacks - Extracting Keys from Xilinx Virtex-II FPGAs
Amir Moradi, Alessandro Barenghi, Timo Kasper and Christof Paar

Text-based CAPTCHA Strengths and Weaknesses
Elie Bursztein, Matthieu Martin and John Mitchell

An Efficient User Verification System via Mouse Movements
Nan Zheng, Aaron Paloski and Haining Wang

Policy Auditing over Incomplete Logs: Theory, Implementation and Applications
Deepak Garg, Limin Jia and Anupam Datta

Automatic Error Finding in Access-Control Policies
Karthick Jayaraman, Vijay Ganesh, Mahesh Tripunitara, Martin Rinard and Steve Chapin

Fashion Crimes: Trending-Term Exploitation on the Web
Tyler Moore, Nektarios Leontiadis and Nicolas Christin

SURF: Detecting and Measuring Search Poisoning
Long Lu, Roberto Perdisci and Wenke Lee

Cloak and Dagger: Dynamics of Web Search Cloaking
David Wang, Stefan Savage and Geoff Voelker

Proofs of Ownerhip in Remote Storage Systems
Shai Halevi, Danny Harnik, Benny Pinkas and Alexandra Shulman-Peleg

How to Tell if Your Cloud Files Are Vulnerable to Drive Crashes
Kevin D. Bowers, Marten Van Dijk, Ari Juels, Alina Oprea and Ronald L. Rivest

Sedic: Privacy-Aware Data Intensive Computing on Hybrid Cloud
Kehuan Zhang, Xiaoyong Zhou, Yangyi Chen, Xiaofeng Wang and Yaoping Ruan

Deobfuscating Virtualization-Obfuscated Software: A Semantics-Based Approach
Kevin Coogan, Gen Lu and Saumya Debray

The Power of Procrastination: Detection and Mitigation of Execution-Stalling Malicious Code
Clemens Kolbitsch, Christopher Kruegel and Engin Kirda

MIDeA: A Multi-Parallel Intrusion Detection Architecture
Giorgos Vasiliadis, Michalis Polychronakis and Sotiris Ioannidis

BitShred: Feature Hashing Malware for Scalable Triage and Semantic Analysis
Jiyong Jang, David Brumley and Shobha Venkataraman

Trace equivalence decision: negative tests and non-determinism
Vincent Cheval, Hubert Comon-Lundh and Stephanie Delaune

Extracting and Verifying Cryptographic Models from C Protocol Code by Symbolic Execution
Mihhail Aizatulin, Andrew Gordon and Jan Jürjens

Modular Code-Based Cryptographic Verification
Cedric Fournet, Markulf Kohlweiss and Pierre-Yves Strub

Information-Flow Types for Homomorphic Encryptions
Cedric Fournet, Jérémy Planul and Tamara Rezk

Process Out-Grafting: An Efficient “Out-of-VM” Approach for Fine-Grained Process Execution Monitoring
Deepa Srinivasan, Zhi Wang, Xuxian Jiang and Dongyan Xu

SICE: A Hardware-Level Strongly Isolated Computing Environment for x86 Multi-core Platforms
Ahmed Azab, Peng Ning and Xiaolan Zhang

AmazonIA: When Elasticity Snaps Back
Sven Bugiel, Stefan Nürnberger, Thomas Pöppelmann, Ahmad-Reza Sadeghi and Thomas Schneider

Eliminating the Hypervisor Attack Surface for a More Secure Cloud
Jakub Szefer, Eric Keller, Ruby B. Lee and Jennifer Rexford

How to Break XML Encryption
Tibor Jager and Juraj Somorovsky

Ciphers that Encipher their own Keys
Mihir Bellare, David Cash and Sriram Keelveedhi

Password Protected Secret Sharing
Ali Bagherzandi, Stanislaw Jarecki, Nitesh Saxena and Yanbin Lu

Practical Delegation of Computation using Multiple Servers
Ben Riva, Ran Canetti and Guy N. Rothblum

Trust-based Anonymous Communication: Adversary Models and Routing Algorithms
Paul Syverson, Aaron Johnson, Roger Dingledine and Nick Mathewson

Cirripede: Circumvention Infrastructure using Router Redirection with Plausible Deniability
Amir Houmansadr, Giang T. K. Nguyen, Matthew Caesar and Nikita Borisov

Forensic Investigation of the OneSwarm Anonymous Filesharing System
Swagatika Prusty, Marc Liberatore and Brian N. Levine

Stealthy Traffic Analysis of Low-Latency Anonymous Communication Using Throughput Fingerprinting
Prateek Mittal, Ahmed Khurshid, Joshua Juen, Matthew Caesar and Nikita Borisov

App Isolation: Get the Security of Multiple Browsers with Just One
Eric Chen, Jason Bau, Charles Reis, Adam Barth and Collin Jackson

Crouching Tiger - Hidden Payload: Security Risks of Scalable Vectors Graphics
Mario Heiderich, Tilman Frosch, Meiko Jensen and Thorsten Holz

Fear the EAR: Discovering and Mitigating Execution After Redirect Vulnerabilities
Adam Doupe, Bryce Boe, Christopher Kruegel and Giovanni Vigna

Automated Black-box Detection of Side-Channel Vulnerabilities in Web Applications
Peter Chapman and David Evans

iSpy: Automatic Reconstruction of Typed Input from Compromising Reflections
Rahul Raguram, Andrew White, Dibyendusekhar Goswami, Fabian Monrose and Jan-Michael Frahm

Televisions, Video Privacy, and Powerline Electromagnetic Interference
Miro Enev, Sidhant Gupta, Tadayoshi Kohno and Shwetak Patel

(sp)iPhone: Decoding Vibrations From Nearby Keyboards Using Mobile Phone Accelerometers
Philip Marquardt, Arunabh Verma, Henry Carter and Patrick Traynor

Predictive Mitigation of Timing Channels in Interactive Systems
Danfeng Zhang, Aslan Askarov and Andrew Myers

Whitebox Analysis of Web Applications for Parameter Tampering Exploit Construction
Prithvi Bisht, Timothy Hinrichs, Nazari Skrupsky and Venkat Venkatakrishnan

Context-Sensitive Auto-Sanitization in Web Templating Languages Using Type Qualifiers
Mike Samuel, Prateek Saxena and Dawn Song

ScriptGard: Automatic Context-Sensitive Sanitization for Large-Scale Legacy Web Applications
Prateek Saxena, David Molnar and Benjamin Livshits

Fortifying Web-Based Applications Automatically
Shuo Tang, Nathan Dautenhahn and Samuel T. King

Android Permissions Demystified
Adrienne Felt, Erika Chin, Steve Hanna, David Wagner and Dawn Song

These Aren't the Droids You're Looking For: Retrofitting Android to Protect Data from Imperious Applications
Peter Hornyack, Seungyeop Han, Jaeyeon Jung, Stuart Schechter and David Wetherall.

Privacy and Accountability for Location-based Aggregate Statistics
Raluca Ada Popa, Andrew J. Blumberg, Hari Balakrishnan and Frank H. Li

Auctions in Do-Not-Track Compliant Internet Advertising
Alexey Reznichenko, Saikat Guha and Paul Francis

Practical PIR for Electronic Commerce
Ryan Henry, Femi Olumofin and Ian Goldberg

Countering GATTACA: Efficient and Secure Testing of Fully-Sequenced Human Genomes
Pierre Baldi, Roberta Baronio, Emiliano De Cristofaro, Paolo Gasti and Gene Tsudik

Automatically Optimizing Secure Computation
Florian Kerschbaum

VMCrypt - Modular Software Architecture for Scalable Secure Computation
Lior Malka