Security Protocols 14th International Workshop, Cambridge, UK, March 27-29, 2006, Revised Selected Papers

Welcome back to the International Security Protocols Workshop. Our theme for this, the 14th workshop in the series, is “Putting the Human Back in the Protocol”. We’ve got into the habit of saying “Of course, Alice and Bob aren’t really people. Alice and Bob are actually programs running in some computers.” But we build computer systems in order to enable people to interact in accordance with certain social protocols. So if we’re serious about system services being end-to-end then, at some level of abstraction, the end points Alice and Bob are humanafterall.Thishascertainconsequences.Weexploresomeoftheminthese proceedings, in the hope that this will encourage you to pursue them further. Is Alice talking to the correct stranger? Our thanks to Sidney Sussex College, Cambridge for the use of their faci- ties, and to the University of Hertfordshire for lending us several of their sta?. Particular thanks once again to Lori Klimaszewska of the University of C- bridge Computing Service for transcribing the audio tapes, and to Virgil Gligor for acting as our advisor.

Putting the Human Back in the Protocol.- Composing Security Metrics.- Putting the Human Back in Voting Protocols.- Putting the Human Back in Voting Protocols.- Towards a Secure Application-Semantic Aware Policy Enforcement Architecture.- Towards a Secure Application-Semantic Aware Policy Enforcement Architecture.- Phish and Chips.- Phish and Chips.- Where Next for Formal Methods?.- Where Next for Formal Methods?.- Cordial Security Protocol Programming.- Cordial Security Protocol Programming.- Privacy-Sensitive Congestion Charging.- Privacy-Sensitive Congestion Charging.- The Value of Location Information.- The Value of Location Information.- Update on PIN or Signature.- Innovations for Grid Security from Trusted Computing.- Innovations for Grid Security from Trusted Computing.- The Man-in-the-Middle Defence.- The Man-in-the-Middle Defence.- Using Human Interactive Proofs to Secure Human-Machine Interactions via Untrusted Intermediaries.- Using Human Interactive Proofs to Secure Human-Machine Interactions via Untrusted Intermediaries.- Secure Distributed Human Computation.- Secure Distributed Human Computation.- Bot, Cyborg and Automated Turing Test.- Bot, Cyborg and Automated Turing Test.- A 2-Round Anonymous Veto Protocol.- A 2-Round Anonymous Veto Protocol.- How to Speak an Authentication Secret Securely from an Eavesdropper.- How to Speak an Authentication Secret Securely from an Eavesdropper.- Secret Public Key Protocols Revisited.- Secret Public Key Protocols Revisited.- Vintage Bit Cryptography.- Vintage Bit Cryptography.- Usability of Security Management:Defining the Permissions of Guests.- Usability of Security Management: Defining the Permissions of Guests.- The Last Word.