Research and Publications (P. Van Oorschot)

Last update: March 8, 2010.

Journal Papers (most recent)

  1. P.C. van Oorschot, J. Thorpe. On Predicting and Exploiting Hot-Spots in Click-Based Graphical Passwords. Preprint: Technical Report TR-08-21 (Nov.7, 2008), School of Computer Science, Carleton University. Journal version under revision.
  2. M. Mannan, P.C. van Oorschot. Leveraging Personal Devices for Stronger Password Authentication from Untrusted Computers. Journal of Computer Security (accepted with minor revisions, Jan.18 2010). draft (Oct.6 2008).
  3. S. Chiasson, A. Forget, R. Biddle, P.C. van Oorschot. User Interface Design Affects Security: Patterns in Click-Based Graphical Passwords. Int. J. Inf. Security 8(6):387-398 (Dec.2009, Springer). Author's copy.
  4. J.A. Muir, P.C. van Oorschot. Internet Geolocation: Evasion and Counterevasion. ACM Computing Surveys 42(1), Article 4:1-23 (Dec.2009). Preliminary version: Carleton University, School of Computer Science, Technical Report TR-06-05, April 2006.
  5. M. Mannan, P.C. van Oorschot. Reducing Threats from Flawed Security APIs: The Banking PIN Case. Computers & Security vol.28 no.6 (Sept.2009), pp.410-420. Preliminary version: `Weighing Down "The Unbearable Lightness of PIN Cracking" (Extended Version)', Carleton University, School of Computer Science, Technical Report TR-08-08 (Apr.29 2008).
  6. P.C. van Oorschot, J. Thorpe. On Predictive Models and User-Drawn Graphical Passwords. ACM TISSEC vol.10 no.4 (Jan.2008), article 17, pp.1-33. pdf (©ACM). preprint (June 2 2007).
  7. P.C. van Oorschot, T. Wan, E. Kranakis. On Inter-domain Routing Security and Pretty Secure BGP (psBGP). ACM TISSEC vol.10 no.3 (July 2007), article 11, pp.1-41. pdf (©ACM). preprint (Jan.16 2007).
  8. P.C. van Oorschot, S. Stubblebine. On Countering Online Dictionary Attacks with Login Histories and Humans-in-the-Loop. ACM TISSEC vol.9 issue 3 (Aug. 2006), 235-258. pdf (©ACM). preprint (Mar.9 2006).
  9. P.C. van Oorschot, J.M. Robert, M. Vargas Martin. A Monitoring System for Detecting Repeated Packets with Applications to Computer Worms. Int. J. Inf. Security 5(3):186-199 (July 2006, Springer). pdf (©Springer). preprint.
  10. P.C. van Oorschot, A. Somayaji, G. Wurster. Hardware-assisted circumvention of self-hashing software tamper resistance. IEEE Transactions on Dependable and Secure Computing, vol.2 no.2 (Apr.-June 2005), pp.82-92. pdf (©IEEE).

Conference Papers and Technical Reports

    2010:

  1. E. Stobert, A. Forget, S. Chiasson, P.C. van Oorschot, R. Biddle. Exploring Usability Effects of Increasing Security in Click-based Graphical Passwords. Technical Report TR-10-06, Carleton University, School of Computer Science (version: March 8, 2010).
  2. M. Mannan, T. Whalen, R. Biddle, P.C. van Oorschot. The Usable Security of Passwords based on Digital Objects: From Design and Analysis to User Study. Technical Report TR-10-02, Carleton University, School of Computer Science (version: Feb.16, 2010).
  3. P.C. van Oorschot, A. Salehi-Abari, J. Thorpe. Purely Automated Attacks on PassPoints-Style Graphical Passwords. Manuscript. (Extends and updates ACSAC 2008 paper and June 2008 Technical Report TR-08-15.)

    4. 2009:

  4. R. Biddle, S. Chiasson, P.C. van Oorschot. Graphical Passwords: Learning from the First Generation. Technical Report TR-09-09, Carleton University, School of Computer Science (version: Oct.2, 2009).
  5. Glenn Wurster, P.C. van Oorschot. Towards Reducing Unauthorized Modification of Binary Files. Carleton University, School of Computer Science, Technical Report TR-09-07 (Sept.14, 2009).
  6. R. Biddle, P.C. van Oorschot, A.S. Patrick, J. Sobey, T. Whalen. Browser Interfaces and Extended Validation SSL Certificates: An Empirical Study. CCSW 2009: The ACM Cloud Computing Security Workshop (in conjunction with the 16th ACM CCS), November 13 2009, Chicago. pdf.
  7. S. Chiasson, A. Forget, E. Stobert, P.C. van Oorschot, R. Biddle. Multiple Password Interference in Text Passwords and Click-Based Graphical Passwords. ACM CCS 2009, Nov.10-12 2009, Chicago. pdf. Preliminary version: Carleton University, School of Computer Science, Technical Report TR-08-20 (Sept.25, 2008).
  8. David Barrera, P.C. van Oorschot. Security Visualization Tools and Source Addresses in IPv6. Short paper. VizSec 2009: Workshop on Visualization for Cyber Security (to appear). October 11, 2009, Atlantic City, New Jersey. pdf.
  9. Glenn Wurster, P.C. van Oorschot. System Configuration as a Privilege. USENIX HotSec'09 (to appear), Aug.11 2009, Montreal. pdf.
  10. P.C. van Oorschot, T. Wan. TwoStep: An Authentication Method Combining Text and Graphical Passwords. MCETECH 2009: 4th International MCETECH Conference on eTechnologies, 4-6 May 2009, Ottawa, Canada (Springer LNBIP vol.26, pp.233-239). pdf.
  11. C. Herley, P.C. van Oorschot, A.S. Patrick. Passwords: If We're So Smart, Why Are We Still Using Them? Financial Cryptography and Data Security (FC 2009), 13th International Conference, Rockley, Christ Church, Barbados, Feb. 2009 (post-proceedings to appear, Springer LNCS). pdf.

    12. 2008:

  12. M. Alsaleh, D. Barrera, P.C. van Oorschot. Improving Security Visualization with Exposure Map Filtering. 24th ACSAC, Dec.8-12, 2008, Anaheim, California. pdf.
  13. A. Salehi-Abari, J. Thorpe, P.C. van Oorschot. On Purely Automated Attacks and Click-Based Graphical Passwords. 24th ACSAC, Dec.8-12, 2008, Anaheim, California. pdf.
  14. T. Oda, G. Wurster, P.C. van Oorschot, A. Somayaji. SOMA: Mutual Approval for Included Content in Web Pages. ACM CCS 2008, Oct.27-31 2008, Alexandria, VA, USA. pdf.
  15. J. Sobey, R. Biddle, P.C. van Oorschot, A.S. Patrick. Exploring User Reactions to Browser Cues for Extended Validation Certificates. ESORICS 2008 - European Symposium on Research in Computer Security. October 6-8, 2008, Malaga, Spain. pdf.
  16. D. Nali, P.C. van Oorschot. CROO: A Universal Infrastructure and Protocol to Detect Identity Fraud. ESORICS 2008 - European Symposium on Research in Computer Security. October 6-8, 2008, Malaga, Spain. pdf.
  17. G. Wurster, P.C. van Oorschot. The Developer is the Enemy. NSPW 2008 - New Security Paradigms Workshop. September 22-25, 2008, Olympic Valley, California, USA. pdf.
  18. M. Mannan, P.C. van Oorschot. Localization of Credential Information to Address Increasingly Inevitable Data Breaches. NSPW 2008 - New Security Paradigms Workshop. September 22-25, 2008, Olympic Valley, California, USA. pdf.
  19. S. Chiasson, A. Forget, R. Biddle, P.C. van Oorschot. Influencing Users Towards Better Passwords: Persuasive Cued Click-Points. HCI 2008, September 1-5 2008, Liverpool, U.K. pdf.
  20. M. Mannan, P.C. van Oorschot. Digital Objects as Passwords. USENIX HotSec'08, July 28 2008, San Jose, California. pdf.
  21. A. Forget, S. Chiasson, P.C. van Oorschot, R. Biddle. Improving Text Passwords Through Persuasion. SOUPS 2008 (Symposium on Usable Privacy and Security), July 23-25 2008, Pittsburgh, PA. pdf.
  22. A. Forget, S. Chiasson, P.C. van Oorschot, R. Biddle. Persuasion for Stronger Passwords: Motivation and Pilot Study. Third International Conference on Persuasive Technology, Oulu, Finland (June 2-4 2008). Springer LNCS vol.5033/2008, pp.140-150. pdf.
  23. A. Hijazi, H. Inoue, A. Matrawy, P.C. van Oorschot, A. Somayaji. Discovering Packet Structure through Lightweight Hierarchical Clustering. ICC 2008, Beijing, China, May 2008. pdf.
  24. M. Mannan, P.C. van Oorschot. Privacy-Enhanced Sharing of Personal Content on the Web. WWW 2008, Beijing, China (April 21-25, 2008). pdf.
  25. S. Chiasson, J. Srinivasan, R. Biddle, P. van Oorschot. Centered Discretization with Application to Graphical Passwords. USENIX UPSEC 2008 (Usability, Psychology and Security), April 14, 2008, San Francisco. pdf.
  26. M. Mannan, P.C. van Oorschot. Weighing Down The Unbearable Lightness of PIN Cracking. FC 2008 (12th International Conference, Financial Cryptography and Data Security). Cozumel, Mexico, January 28-31, 2008 (pp.176-181, Springer LNCS vol.5143/2008, revised papers). pdf.

    27. 2007:

  27. D. Whyte, P.C. van Oorschot, E. Kranakis. Tracking Darkports for Network Defense. (ACSAC 2007 Outstanding Paper Award.) 23rd Annual Computer Security Applications Conference (ACSAC), Dec. 10-14, 2007, Miami Beach, Florida. pdf. Extended version: Technical Report TR-07-04, Feb. 2007.
  28. S. Chiasson, P.C. van Oorschot, R. Biddle. Graphical Password Authentication Using Cued Click Points. ESORICS, Sept.24-27 2007, Dresden, Germany. Springer-Verlag LNCS 4734 (2007), pp.359-374. pdf.
  29. M. Mannan, P.C. van Oorschot. Security and Usability: The Gap in Real-World Online Banking. New Security Paradigms Workshop (NSPW), Sept.18-21 2007, New Hampshire, USA. pdf.
  30. D. Nali, P.C. van Oorschot, A. Adler. VideoTicket: Detecting Identity Fraud Attempts via Audiovisual Certificates and Signatures. New Security Paradigms Workshop (NSPW), Sept.18-21 2007, New Hampshire, USA. pdf.
  31. J. Thorpe, P.C. van Oorschot. Human-Seeded Attacks and Exploiting Hot-Spots in Graphical Passwords. 16th USENIX Security Symposium, Aug.6-10 2007, Boston, MA. pdf.
  32. G. Wurster, P.C. van Oorschot. Self-signed Executables: Restricting Replacement of Program Binaries by Malware. USENIX HotSec'07 (2nd Workshop on Hot Topics in Security), Aug.7 2007, Boston. pdf.
  33. S. Chiasson, Robert Biddle, P.C. van Oorschot. A Second Look at the Usability of Click-Based Graphical Passwords. (SOUPS 2007 Best Paper Award.) Symposium on Usable Privacy and Security, July 18-20 2007, Pittsburgh, PA. pdf.
  34. J. Clark, P.C. van Oorschot, C. Adams. Usability of Anonymous Web Browsing: An Examination of Tor Interfaces and Deployability. Symposium on Usable Privacy and Security (SOUPS 2007), July 18-20 2007, Pittsburgh, PA. pdf.
  35. M. Mannan, P.C. van Oorschot. Using a Personal Device to Strengthen Password Authentication from an Untrusted Computer. Financial Cryptography and Data Security (FC'07), Lowlands, Scarborough, Trinidad and Tobago, Feb.12-15, 2007. pdf. Extended version: Technical Report TR-07-11 (Mar 2007). See also updated journal version above.

    36. 2006:

  36. D. Whyte, P.C. van Oorschot, E. Kranakis. Addressing SMTP-based Mass-Mailing Activity Within Enterprise Networks. 22nd Annual Computer Security Applications Conference (ACSAC), Dec. 11-15, 2006, Miami Beach, Florida. pdf. Preliminary version: Technical Report TR-05-06 (May 2005), Carleton University, School of Computer Science.
  37. S. Chiasson, P.C. van Oorschot, R. Biddle. A Usability Study and Critique of Two Password Managers. USENIX Security 2006, Aug.2-4, Vancouver. pdf.
  38. D. Whyte, P.C. van Oorschot, E. Kranakis. Exposure Maps: Removing Reliance on Attribution During Scan Detection. USENIX HotSec'06 (1st Workshop on Hot Topics in Security), July 31 2006, Vancouver. pdf.
  39. T. Wan, P.C. van Oorschot. Analysis of BGP Prefix Origins During Google's May 2005 Outage. 2nd International Workshop on Security in Systems and Networks (SSN2006), Rhode Island, Greece, Apr.25 2006 (in conjunction with IEEE IPDPS). pdf (21 Jan. 2006).
  40. M. Mannan, P.C. van Oorschot. A Protocol for Secure Public Instant Messaging. Financial Cryptography and Data Security, 10th International Conference (FC 2006), Feb.27-Mar.2 2006, Anguilla, British West Indies, pp.20-35, Springer LNCS vol.4107/2006. Pre-proceedings pdf (25 Jan. 2006).

    41. 2005:

  41. D. Whyte, P.C. van Oorschot, E. Kranakis. Detecting Intra-Enterprise Scanning Worms Based on Address Resolution. 21st Annual Computer Security Applications Conference (ACSAC), Dec. 5-9, 2005, Tucson, Arizona. pdf.
  42. M. Mannan, P.C. van Oorschot. Instant Messaging Worms, Analysis and Countermeasures. WORM 2005 (ACM Workshop on Rapid Malcode), Nov. 2005, Fairfax, VA. pdf.
  43. J. Thorpe, P.C. van Oorschot, A. Somayaji. Pass-thoughts: Authenticating With Our Minds. 2005 New Security Paradigms Workshop, Sept. 2005, Lake Arrowhead, California pdf (©ACM). ***Note: through a proceedings error, the version which appeared in the final proceedings is not this final version.
  44. P.C. van Oorschot. Message Authentication by Integrity with Public Corroboration. 2005 New Security Paradigms Workshop, Sept. 2005, Lake Arrowhead, California. pdf, ps (©ACM).
  45. T. Wan, P.C. van Oorschot, E. Kranakis. A Selective Introduction to Border Gateway Protocol (BGP) Security Issues. Technical Report TR-05-07 (August 2005), Carleton University, School of Computer Science. Also in: Proc. of NATO Advanced Studies Institute on Network Security and Intrusion Detection, Nork, Yerevan, Armenia, Oct.1-12 2005, IOS Press (to appear, 2006).
  46. A. Matrawy, P.C. van Oorschot, A. Somayaji. Mitigating Network Denial of Service through Diversity-Based Traffic Management. Applied Cryptography and Network Security: Third International Conference, ACNS 2005, New York, June 7-10, 2005. pdf. Proceedings, Springer LNCS 3531, pp.104-121, 2005.
  47. G. Wurster, P.C. van Oorschot, A. Somayaji. A Generic Attack on Checksumming-Based Software Tamper Resistance. May 2005 IEEE Symp. Security and Privacy, Oakland, California. pdf (©IEEE). Extended version: see journal papers below.
  48. P.C. van Oorschot, S. Stubblebine. Countering Identity Theft through Digital Uniqueness, Location Cross-Checking, and Funneling. Financial Cryptography and Data Security 2005 (FC'05), Feb.28-Mar.3 2005, Commonwealth of Dominica. LNCS 3570, pp.31-43, Springer-Verlag 2005. pdf (©IFCA). Extended version: Carleton University, School of Computer Science, Technical Report TR-05-12 (December 2005).
  49. T. Wan, E. Kranakis, P.C. van Oorschot. Pretty Secure BGP. Network and Distributed System Security Symposium (NDSS'05), Feb. 2005, San Diego. pdf, ps.
  50. D. Whyte, E. Kranakis, P.C. van Oorschot. DNS-based Detection of Scanning Worms in an Enterprise Network. Network and Distributed System Security Symposium (NDSS'05), Feb.2005, San Diego. pdf.

    51. 2004:

  51. J. Thorpe, P.C. van Oorschot. Towards Secure Design Choices for Implementing Graphical Passwords. 20th Annual Computer Security Applications Conference (ACSAC), Dec. 6-10, 2004, Tucson, Arizona. pdf, ps.
  52. T. Wan, E. Kranakis, P.C. van Oorschot. Securing the Destination Sequenced Distance Vector Routing Protocol (S-DSDV). ICICS'04 (6th International Conference on Information and Communications Security), Oct. 27-29, 2004, Malaga, Spain. Springer LNCS 3269 pp.358-374. pdf, ps.
  53. M. Mannan, P.C. van Oorschot. Secure Public Instant Messaging: A Survey. Second Annual Conference on Privacy, Security and Trust, Oct. 13-15, 2004, Fredericton, New Brunswick. pdf.
  54. J. Thorpe, P.C. van Oorschot. Graphical Dictionaries and the Memorable Space of Graphical Passwords. USENIX Security 2004, August 9-13, 2004, San Diego. pdf, ps.
  55. T. Wan, E. Kranakis, P.C. van Oorschot. S-RIP: A Secure Distance Vector Routing Protocol. ACNS'04 (2nd International Conf. on Applied Cryptography and Network Security), Yellow Mountain, China, June 8-11 2004. Springer LNCS 3089 pp.103-119. pdf, ps.
  56. S. Stubblebine, P.C. van Oorschot. Addressing Online Dictionary Attacks with Login Histories and Humans-in-the-Loop. pdf (©IFCA). Financial Cryptography, 8th International Conference, FC 2004, Key West, Florida, Feb.9-12 2004, Springer LNCS 3110 (revised papers). Extended version: see journal papers below.

    57. 2003:

  57. A. Main, P.C. van Oorschot. Software Protection and Application Security: Understanding the Battleground. International Course on State of the Art and Evolution of Computer Security and Industrial Cryptography, Heverlee, Belgium, June 2003. Proceedings (revised papers): Springer LNCS (to appear). Version of Dec.31, 2003: ps, pdf.
  58. P.C. van Oorschot. Revisiting Software Protection (invited paper). 6th International Information Security Conference (ISC 2003), Bristol, UK, October 2003. Proceedings: pp.1-13, Springer LNCS 2851 (2003). Version of July 30, 2003: ps, pdf.

    59. 2002 and earlier:

  59. S. Chow, P. Eisen, H. Johnson, P.C. van Oorschot. White-Box Cryptography and an AES Implementation. SAC 2002 - 9th Annual Workshop on Selected Areas in Cryptography, Aug.15-16 2002, St. John's, Canada. Proceedings (revised papers): pp.250-270, Springer LNCS 2595 (2003). Sept.30 2002 version: ps. Earlier version (pre-proceedings): ps.
  60. S. Chow, P. Eisen, H. Johnson, P.C. van Oorschot. A White-Box DES Implementation for DRM Applications. ACM CCS-9 Workshop DRM 2002 - 2nd ACM Workshop on Digital Rights Management, Nov.18 2002, Wash. D.C. Proceedings (revised papers): pp.1-15, Springer LNCS 2696 (2003). Jan.13 2003 version: ps.
  61. M. Just, P.C. van Oorschot. Addressing the problem of undetected signature key compromise, proceedings, Network and Distributed System Security - NDSS'99. ps, pdf. See also TR-98-06, Carleton University, School of Computer Science, June 1998.
  62. P.C. van Oorschot, M.J. Wiener. Improving meet-in-the-middle attacks by orders of magnitude, Crypto'96, Springer LNCS vol.1109, pp.229-236, 1996. ps, pdf. A more complete treatment is given in the 1999 Journal of Cryptology paper.
  63. B. Preneel, P.C. van Oorschot. On the security of two MAC algorithms, Eurocrypt'96, Springer LNCS vol.1070, pp.19-32, 1996. ps, pdf. See also the 1999 IEEE-IT journal paper, and for further work on MAA, the 1997 ETT journal paper.
  64. P.C. van Oorschot, M.J. Wiener. On Diffie-Hellman key agreement with short exponents. Eurocrypt'96, Springer LNCS vol.1070, pp.332-343, 1996. ps, pdf.
  65. B. Preneel, P.C. van Oorschot. MDx-MAC and building fast MACs from hash functions. Crypto'95, Springer LNCS vol.963, 1995. ps, pdf. See also the 1999 IEEE-IT paper.
  66. P.C. van Oorschot, M.J. Wiener. Parallel collision search with applications to hash functions and discrete logarithms. pp.210-218, proceedings, 2nd ACM Conference on Computer and Communications Security, Nov. 1994, Fairfax, Virginia. ps, pdf. The Crypto'96 paper builds on this, and a more complete treatment is in the 1999 Journal of Cryptology paper.
  67. M. Just, E. Kranakis, D. Krizanc, P.C. van Oorschot. On key distribution via true broadcasting. pp.81-88, proceedings, 2nd ACM Conference on Computer and Communications Security, Nov. 1994, Fairfax, Virginia. pdf.
  68. P. Syverson, P.C. van Oorschot. On unifying some cryptographic protocol logics. pp.14-28, proceedings, 1994 IEEE Symposium on Research in Security and Privacy, 1994 May 16-18, Oakland, California. ps, pdf.
  69. P.C. van Oorschot. An alternate explanation of two BAN-logic `failures’, Eurocrypt'93, Springer LNCS vol.765, pp.443-447 (1994). ps, pdf.
  70. P.C. van Oorschot. Extending cryptographic logics of belief to key agreement protocols. pp.232-243, proceedings, 1st ACM Conference on Computer and Communications Security, Nov. 1993, Fairfax, Virginia. ps, pdf.
  71. P.C. van Oorschot. A comparison of practical public-key cryptosystems based on integer factorization and discrete logarithms (extended abstract). Crypto'90, Springer LNCS vol.537, pp.576-581 (1991). The full paper appears as a chapter in the Gus Simmons' volume (see below).
  72. P.C. van Oorschot, M.J. Wiener. A known-plaintext attack on two-key triple encryption. Eurocrypt'90, Springer LNCS 473, pp.318-325, 1991. ps, pdf.
  73. P.C. van Oorschot, S.A. Vanstone. Some geometric aspects of root finding in GF(qm), pp.303-307, Contemporary Mathematics vol.111 (Finite Geometries and Combinatorial Designs), E.S. Kramer and S.S. Magliveras (eds.), AMS 1990.
  74. A.J. Menezes, P.C. van Oorschot, S.A. Vanstone. Some computational aspects of root finding in GF(qm). pp.259-270, Symbolic and Algebraic Computation, Springer LNCS 358, 1989.

Books

  1. A.J. Menezes, P.C. van Oorschot, S. Vanstone. Handbook of Applied Cryptography, CRC Press (1996), 780 pages, ISBN 0-8493-8523-7. 5th printing (July 2001) with corrections to all known errors. The standard crypto reference for engineers and practical researchers. 2nd on the list of most-cited 1996 C.S. publications (per Sept. 2006); 49th on the list of most-cited (overall) C.S. publications (per Sept. 2006). Complete book available online (free).
  2. E. Kranakis, P.C. van Oorschot (editors). Selected Areas in Cryptography, Kluwer Academic Publishers (1997), 108 pages, ISBN 0-7923-8023-1. An invited subset of papers from SAC'95.
  3. S.A. Vanstone, P.C. van Oorschot. An Introduction to Error Correcting Codes with Applications, Kluwer Academic Publishers (1989), 289 pages, ISBN 0-7923-9017-2. An undergraduate textbook.

Journal Papers (prior to year 2000)

  1. B. Preneel, P.C. van Oorschot. On the security of iterated message authentication codes. IEEE Transactions on Information Theory, vol.45 no.1 (Jan. 1999), pp.188-199. ps, pdf.
  2. P.C. van Oorschot, M.J. Wiener. Parallel collision search with cryptanalytic applications. Journal of Cryptology, vol.12 no.1 (Jan. 1999) pp.1-28. pdf.
  3. B. Preneel, P.C. van Oorschot, V. Rijmen. Security analysis of the Message Authenticator Algorithm (MAA), European Transactions on Telecommunications, Vol. 8, No. 5 (Sept./Oct. 1997), pp.455-470. ps, pdf.
  4. B. Preneel, P.C. van Oorschot. A key recovery attack on the ANSI X9.9 retail MAC, Electronics Letters, Aug.16 1996 (vol.32 no.17), pp.1568-1569. ps, pdf. See also 1999 IEEE-IT journal paper.
  5. R. Rueppel, P.C. van Oorschot. Modern key agreement techniques, Computer Communications, vol.17 (July 1994), pp.458-465. ps, pdf.
  6. W. Diffie, P.C. van Oorschot, M.J. Wiener. Authentication and authenticated key exchanges, Designs, Codes and Cryptography, vol.2 (1992), pp.107-125. ps, pdf.
  7. A.J. Menezes, P.C. van Oorschot, S.A. Vanstone. Subgroup refinement algorithms for root finding in GF(q), SIAM Journal on Computing, vol.21 (1992), pp.228-239.
  8. A. Beutelspacher, D. Jungnickel, P.C. van Oorschot, S.A. Vanstone. Pair-splitting sets in AG(m,q), SIAM Journal on Discrete Mathematics, vol.5, Nov.1992.
  9. P.C. van Oorschot, S.A. Vanstone. On splitting sets in block designs and finding roots of polynomials, Discrete Mathematics, vol.84 (1990), pp.71-85.
  10. C.J. Colbourn, P.C. van Oorschot. Applications of combinatorial designs in computer science, ACM Computing Surveys, vol.21 (Jun. 1989), pp.223-250.
  11. P.C. van Oorschot, S.A. Vanstone. A geometric approach to root finding in GF(qm), IEEE Transactions on Information Theory, vol.35 (Mar. 1989), pp.444-453.

Other Publications (papers in books, book chapters, etc.)

  1. A.J. Menezes, P.C. van Oorschot. Coding Theory and Cryptology, Chapter 14 (pp.889-954) in Handbook of Discrete and Combinatorial Mathematics, Kenneth H. Rosen (editor), CRC Press 2000.
  2. M. Smith, P.C. van Oorschot, M. Willett. Cryptographic Information Recovery Using Key Recovery. Computers & Security, vol.19 no.1, pp.21-27, Elsevier Advanced Technology 2000.
  3. P. Syverson, P.C. van Oorschot. A unified cryptographic protocol logic. Unpublished manuscript, 1996. ps, pdf. This extends the work in our 1994 Oakland paper.
  4. B. Preneel, P.C. van Oorschot. Further comments on keyed MD5. CryptoBytes, vol.1 no.3 (summer 1995), page 15, RSA Laboratories technical newsletter. ps, pdf.
  5. P.C. van Oorschot. Security in GSM, Telesis, Issue No. 94 (July 1992), pp.58-60, Northern Telecom.
  6. P.C. van Oorschot. A comparison of practical public-key cryptosystems based on integer factorization and discrete logarithms, Chapter 5 (pp.289-322) in Contemporary Cryptology: The Science of Information Integrity, G.J. Simmons (ed.), IEEE Press (1992).
  7. I.F. Blake, P.C. van Oorschot, S.A. Vanstone. Complexity issues for public-key cryptography, pp.75-97 in Performance Limits in Communication Theory and Practice, J.K. Skwirzynski (ed.), Kluwer Academic Publishers 1988.
Top 10,000 cited authors in Computer Science (CiteSeer.IST)