Home / Publications (page 2)


[Report] Improving Security Using Deception

Mohammed H. Almeshekah, Eugene H. Spafford and Mikhail J. Atallah The Center for Education and Research in Information Assurance and Security: Technical Report (CERIAS TR 2013-13), November 2013 ABSTRACT: As the convergence between our physical and digital worlds continues at a rapid pace, much of our information is becoming available online. …

Read More »

Proposal for Better Revocation Model of SSL/TLS Certificates

Mohammed H. Almeshekah Mozilla Corporation, September 2013    ABSTRACT: There are multiple initiatives that have emerged in the past couple of years to address some of the inherit limitation of the CA-based trust model and SSL certificates. One of the these limitations is the current revocation models. In this document we …

Read More »

[Paper] Back Channels Can be Useful! – Layering Authentication Channels to Provide Covert Communication

Mohammed H. Almeshekah, Mikhail J. Atallah and Eugene H. Spafford [Paper] SPW’13, in Security Protocols XXI (B. Christianson, J. Malcolm, F. Stajano, and J. Anderson, eds.), vol. 8263 of Lecture Notes in Computer Science, Springer Berlin Heidelberg, 2013 [Poster] 14th Annual Information Security Symposium, CERIAS, Purdue, March 2013 (3rd Best Paper Award …

Read More »

[Report] Economics of Identity Management Systems – Towards and Economically Incentived User-Centric IDMS

Mohammed H. Almeshekah Masters Thesis, Information Security Group, Royal Holloway, University of London, September 2010 ABSTRACT: The ubiquity of identity management systems in people’s online activities has lead to a significant growth in the number of identity management solutions. These systems have been designed to help users manage their digital identities …

Read More »

[Paper] Why did Microsoft Passport fail, and how good is the CardSpace solution?

Mohammed H. Almeshekah and Waleed A. Alrodhan Proceedings of the 4th Saudi International Conference (SIC’10), Manchester, UK, 2010 ABSTRACT: Microsoft Passport was developed to be the Internet global identity management system (or IdMS). In its early days, it was adopted by many well-known organizations, such as eBay and PayPal; however, several …

Read More »