Code Injection Attacks on Harvard-Architecture Devices
Aurelien Francillon (INRIA) and Claude Castelluccia (INRIA)

When Good Instructions Go Bad: Generalizing Return-Oriented Programming to RISC
Erik Buchanan (UCSD), Ryan Roemer (UCSD), Hovav
Shacham (UCSD), and Stefan Savage (UCSD)

Efficient and Extensible Security Enforcement Using Dynamic Data Flow Analysis
Walter Chang (The University of Texas at Austin), Brandon Streiff (The University of Texas at Austin) and Calvin Li (The University of Texas at Austin)

Ether: Malware Analysis via Hardware Virtualization Extensions
Artem Dinaburg (Georgia Institute of Technology and Damballa), Paul Royal (Damballa and Georgia Institute of Technology), Monirul Sharif (Georgia Institute of Technology and Damballa), and Wenke Lee (Damballa and Georgia Institute of Technology)

Extending Logical Attack Graphs for Efficient Vulnerability Analysis
Diptikalyan Saha (Motorola India Research Lab)

Robust Defenses for Cross-Site Request Forgery
Adam Barth (Stanford University), Collin Jackson (Stanford University) and John C. Mitchell (Stanford University, USA)

SOMA: Mutual Approval for Included Content in Web Pages
Terri Oda (Carleton University) , Glenn Wurster (Carleton University) Paul Van Oorschot (Carleton University), and Anil Somayaji (Carleton University)

OMash: Enabling Secure Web Mashups via Object Abstractions
Steven Crites (UC Davis), Francis Hsu (UC Davis), and Hao Chen (UC Davis)

Computational soundness of observational equivalence
Hubert Comon-Lundh (ENS Cachan and AIST) and Veronique
Cortier (CNRS, Loria)

Unbounded Verification, Falsification, and Characterization of Security Protocols by Pattern Refinement
C.J.F. Cremers (ETH Zurich)

Reducing Protocol Analysis with XOR to the XOR-free Case in the Horn Theory Based Approach
Ralf Kuesters (University of Trier) and Tomasz Truderung (University of Trier)

Building Castles out of Mud: Practical Access Pattern Privacy and Correctness on Untrusted Storage
Peter Williams (Stony Brook University), Radu Sion (Stony Brook University), and Bogdan Carbunar (Motorola Labs)

Location Privacy of Distance Bounding Protocols
Kasper Bonne Rasmussen (ETH Zurich) and Srdjan Capkun (ETH Zurich)

Verifiable functional purity in Java
Matthew Finifter (UC, Berkeley), Adrian Mettler (UC, Berkeley), Naveen Sastry (UC, Berkeley), and David Wagner (UC, Berkeley)

Trust Management for Secure Information Flows
Mudhakar Srivatsa (IBM T.J. Watson Research Center), Shane Balfe (Royal Holloway, University of London), Kenneth Paterson (Royal Holloway, University of London), and Pankaj Rohatgi (IBM T.J. Watson Research Center)

Brief presentations by funding agencies

Mitigating DNS DoS Attacks
Hitesh Ballani (Cornell University) and Paul Francis (Cornell University)

Revocation Games in Ephemeral Networks
Maxim Raya (EPFL, Switzerland), Mohammad Hossein Manshaei (EPFL, Switzerland), Mark Felegyhazi ( University of California, Berkeley), Jean-Pierre Hubaux (EPFL)

Increased DNS Forgery Resistance Through 0x20-Bit Encoding
David Dagon (Georgia Institute of Technology), Manos Antonakakis (Georgia Institute of Technology), Paul Vixie (Internet Systems Consortium, USA), Jinmei Tatuya (Internet Systems Consortium, Japan), and Wenke Lee (Georgia Institute of Technology)

Enforcing Authorization Policies using Transactional Memory Introspection
Arnar Birgisson (Reykjavik University), Mohan Dhawan (Rutgers University), Ulfar Erlingsson (Reykjavik University), Vinod Ganapathy (Rutgers University), and Liviu Iftode (Rutgers University)

Towards Practical Biometric Key Generation with Randomized Biometric Templates
Lucas Ballard (Google), Seny Kamara (Microsoft Research), Fabian Monrose (University of North Carolina at Chapel Hill), and Michael K. Reiter (University of North Carolina at Chapel Hill)

Towards Automatic Reverse Engineering of Software Security Configuration
Rui Wang (Indiana University at Bloomington), XiaoFeng Wang (Indiana University at Bloomington), Kehuan Zhang (IUB and Hunan University), and Zhuowei Li (Center for Software Excellence, Microsoft)

FairplayMP -- A System for Secure Multi-Party Computation
Assaf Ben-David (Hebrew University), Noam Nisan (Hebrew University), and Benny Pinkas (University of Haifa)

Information Leaks in Structured Peer-to-peer Anonymous Communication Systems
Prateek Mittal (University of Illinois at Urbana-Champaign) and Nikita Borisov (University of Illinois at Urbana-Champaign)

Privacy Oracle: a System for Finding Application Leaks with Black Box Differential Testing
Jaeyeon Jung (Intel Research), Anmol Sheth (Intel Research), Ben Greenstein (Intel Research), David Wetherall (Intel Research), Gabriel Maganis (University of Washington), and Yoshi Kohno (University of Washington)

A Framework for Reflective Database Access Control Policies
Lars E. Olson (University of Illinois), Carl A. Gunter (University of Illinois), and Madhusudan Parthasarathy (University of Illinois)

A Class of Probabilistic Models for Role Engineering
Mario Frank (ETH, Zurich), David Basin (ETH, Zurich), and Joachim M. Buhmann (ETH, Zurich)

Assessing Query Privileges via Safe and Efficient Permission Composition
Sabrina De Capitani di Vimercati (DTI - Universita' degli Studi di Milano) Sara Foresti (DTI - Universita' degli Studi di Milano) Sushil Jajodia (George Mason University) Stefano Paraboschi (Universit-di Bergamo), and Pierangela Samarati (Universita` degli Studi di Milano)

Dependent Link Padding Algorithms for Low Latency Anonymity Systems
Wei Wang (National University of Singapore), Mehul Motani (National University of Singapore), and Vikram Srinivasan (Bell Labs Research, India)

PEREA: Towards Practical TTP-Free Revocation in Anonymous Authentication
Patrick P. Tsang (Dartmouth College), Man Ho Au (University of Wollongong), Apu Kapadia (Dartmouth College), and Sean Smith (Dartmouth College)

Efficient Attributes for Anonymous Credentials
Jan Camenisch (IBM Research, Zurich Research Laboratory) and Thomas Gross (IBM Research, Zurich Research Laboratory)

Type-checking Zero-knowledge
Michael Backes (Saarland University and MPI-SWS), Catalin Hritcu (Saarland University), and Matteo Maffei (Saarland University)

Towards Automated Proofs of Asymmetric Encryption Schemes in the Random Oracle Model
Pascal Lafourcade (University of Grenoble, France), Yassine Lakhnech (University of Grenoble, France), Cristian Ene (University of Grenoble, France) , Judicaël Courant (University of Grenoble, France) , and Marion Daubignard (University of Grenoble, France)

EON: Modeling and Analyzing Dynamic Access Control Systems with Logic Programs
Avik Chaudhuri (UC, Santa Cruz), Prasad Naldurg (Microsoft Research India), Sriram Rajamani (Microsoft Research India), Ganesan Ramalingam (Microsoft Research India) Lakshmisubrahmanyam Velaga (Indian Institute of Management Bangalore)

Tupni: Automatic Reverse Engineering of Input Formats
Weidong Cui (Microsoft Research), Marcus Peinado (Microsoft Corporation) Karl Chen (University of California, Berkeley), Helen Wang (Microsoft Research), and Luis Irun-Briz (Microsoft Corporation)

Rootkit-Resistant Disks
Kevin Butler (Pennsylvania State University), Stephen McLaughlin (Pennsylvania State University), and Patrick McDaniel (Pennsylvania State University)

Identity-based Encryption with Efficient Revocation
Alexandra Boldyreva (Georgia Institute of Technology), Vipul Goyal (UCLA), and Virendra Kumar (Georgia Institute of Technology)

Black Box Accountable Authority Identity-Based Encryption
Vipul Goyal (UCLA), Steve Lu (UCLA), Amit Sahai (UCLA), Brent Waters (SRI International)

Authenticated Hash Tables
Charalampos Papamanthou (Brown University), Roberto Tamassia (Brown University), and Nikos Triandopoulos (University of Aarhus)

Multisignatures Secure under the Discrete Logarithm Assumption and a Generalized Forking Lemma
Stanislaw Jarecki (UC, Irvine), Ali Bagherzandi (UC, Irvine), and Jung Hee Cheon (Seoul National University)

Reconsidering Physical Key Secrecy: Teleduplication via Optical Decoding
Benjamin Laxton (UCSD), Kai Wang(UCSD), and Stefan Savage (UCSD)

RFIDS and Secret Handshakes: Defending Against Ghost-and-Leech Attacks and Unauthorized Reads with Context-Aware Communications
Alexei Czeskis (University of Washington), Karl Koscher (University of Washington), Joshua R. Smith (Intel Research), and Tadayoshi Kohno (University of Washington)

Constructions of Truly Practical Secure Protocols using Standard Smartcards
Carmit Hazay (Bar-Ilan University) and Yehuda Lindell (Bar-Ilan University)

Traitor Tracing with Constant Size Ciphertext
Dan Boneh (Stanford University) and Moni Naor (Weizmann Institute)

Multi-Use Unidirectional Proxy Re-Signatures
Benoit Libert (UCL Crypto Group) and Damien Vergnau (Ecole Normale Superieure, CNRS-INRIA)

Efficient Security Primitives Derived from a Secure Aggregation Algorithm
Haowen Chan (Carnegie Mellon University) and Adrian Perrig (Carnegie Mellon University)

Machine Learning Attacks Against the ASIRRA CAPTCHA
Philippe Golle (Palo Alto Research Center)

A Low-cost Attack on a Microsoft CAPTCHA
Jeff Yan (Newcastle University) and Ahmad Salah El Ahmad (Newcastle University)

BootJacker: Compromising Computers using Forced Restarts
Ellick M. Chan (University of Illinois at Urbana-Champaign), Jeffrey C. Carlyle (University of Illinois at Urbana-Champaign), Francis M. David (University of Illinois at Urbana-Champaign), Reza Farivar (University of Illinois at Urbana-Champaign) , and Roy H. Campbell (University of Illinois at Urbana-Champaign)

A Look In the Mirror: Attacks on Package Managers
Justin Cappos (University of Arizona), Justin Samuel (University of Arizona), Scott Baker (University of Arizona), and John Hartman (University of Arizona)