检索结果-内蒙古大学图书馆

2009 international conference on network and service security, N2S 2009

ISBN: (纸本)9782953244311

The proceedings contain 35 papers. The topics discussed include: a prior distribution for anti-spam statistical Bayesian model;a PVSS scheme based on Boolean operations with improved contrast;adaptive trust aware community in unstructured peer to peer network;a pairing identity based key management protocol for heterogeneous wireless sensor networks;a protocol for secure electronic remote voting;a trusted platform module based anti-forensics system;an efficient multi-parameter group leader selection scheme for wireless sensor networks;design of a simulation framework to evaluate trust models for collaborative intrusion detection;entrusting remote software executed in an untrusted computation helper;formal verification of IEEE 802.16 security sublayer using scyther tool;and related-key cryptanalysis of RAIDEN.

关键词：

来源：评论

学校读者我要写书评

暂无评论

Report on the 4th international conference on Autonomous Infrastructures, Management, and security (AIMS 2010) and the international Summer School on network and service Management (ISSNSM 2010)

引用

JOURNAL OF network AND SYSTEMS MANAGEMENT 2011年第1期19卷 130-136页

作者： Stiller, Burkhard De Turck, Filip Morariu, Cristian Waldburger, Martin Univ Zurich CSG IFI CH-8050 Zurich Switzerland Univ Ghent IBBT B-9050 Ghent Belgium

This article contains the report on AIMS 2010, which was held June 23-25, 2010 at the Department of Informatics ( IFI), University of Zurich, Switzerland and which was driven by the theme "Mechanisms for Autonomous Management of networks and services''. Furthermore, the report also synopsizes ISSNSM 2010, which was run June 21-23, 2010 at the same location and which offered a practical summer school on selected topics in network and service management.

关键词： network management service management Autonomous infrastructures security

来源：评论

学校读者我要写书评

暂无评论

Report on the 4th international conference on Autonomous Infrastructures, Management, and security (AIMS 2010) and the international Summer School on network and service Management (ISSNSM 2010)

Report on the 4th International Conference on Autonomous Inf...

引用

作者： Stiller, Burkhard De Turck, Filip Morariu, Cristian Waldburger, Martin University of Zürich CSG at IFI Binzmühlestrasse 14 CH-8050 Zürich Switzerland Ghent University-IBBT Gaston Crommenlaan 8 Ghent 9050 Belgium

This article contains the report on AIMS 2010, which was held June 23-25, 2010 at the Department of Informatics (IFI), University of Zürich, Switzerland and which was driven by the theme "Mechanisms for Autonomous Management of networks and services". Furthermore, the report also synopsizes ISSNSM 2010, which was run June 21-23, 2010 at the same location and which offered a practical summer school on selected topics in network and service management. © 2010 Springer Science+Business Media, LLC.

关键词： network management

来源：评论

学校读者我要写书评

暂无评论

Zero Trust network Access (ZTNA) Architecture: A Novel Perspective to Cloud security 3rd

Zero Trust Network Access (ZTNA) Architecture: A Novel Persp...

引用

3rd international conference on network security and Blockchain Technology

作者： Das, Priyanka Ray, Sangram Govil, Mahesh Chandra Natl Inst Technol Sikkim Dept Comp Sci & Engn Ravangla 737139 Sikkim India

ISBN: (纸本)9789819780501;9789819780518

Cloud computing is the development drift of the IT industry. This modern cloud computing has grabbed remarkable attention in recent days owing to its high-quality on-demand service accessibility and flexible nature. It not only has huge advantages but also has numerous security shortcomings that no organization can afford to overlook. The security perspective of cloud computing infrastructure is often viewed to be the prime element, as data and services of the cloud are not confined to a single organization. Therefore, cloud security plays a crucial role to establish trust among the cloud service providers and the multiple cloud service consumers. Subsequently, trust management ensures both security and privacy in the cloud computing infrastructure. However, in the traditional cloud computing infrastructure all the cloud entities once authorized can get access to the cloud services throughout the life cycle of the session. As a result, it is vulnerable to insider attack. Therefore, in this paper, we have proposed a Zero Trust network Access (ZTNA) architecture that intends to continuously verify a cloud entity throughout the lifecycle of the session, regardless of the fact that the entity is inside/outside the cloud computing infrastructure. Further, we have analyzed the security aspects of the proposed architecture that ensure our architecture is well-secured against relevant security attacks.

关键词： Cloud computing security Privacy Trust Computing resources

来源：评论

学校读者我要写书评

暂无评论

A method of service content prefetching based on node portrait 4

A method of service content prefetching based on node portra...

引用

4th international conference on network Communication and Information security, ICNCIS 2024

作者： Jia, Feng Kong, Lei Guo, Le-Meng Sun, Kai College of Information and Communication National University of Defence Technology Wuhan430000 China

ISBN: (数字)9781510688261

ISBN: (纸本)9781510688254

Focusing on the service access requirements of edge nodes, aiming at the problems of narrow network bandwidth, poor network quality and low transmission rate of the edge nodes, a node service dynamic demand prediction model based on a forgetting curve is established by mapping the node service demand degree through a node service flow image, and a large-flow service content prefetching strategy is proposed based on the characteristics of the node service flow image, so as to shorten the node user access time to the maximum extent and improve the user access efficiency. © 2025 SPIE.

关键词： Statistical analysis Modeling Image quality Data acquisition Data communications Data transmission Image transmission Reflection Statistical modeling Superposition

来源：评论

学校读者我要写书评

暂无评论

引用

4th international conference on network Communication and Information security, ICNCIS 2024

作者： Ren, Xuwei Jin, Zhexue Li, Yongzhen Network Security Laboratory Yanbian University Yanji China

ISBN: (数字)9781510688261

ISBN: (纸本)9781510688254

Aiming at the shortcomings of current location privacy protection methods for internet of vehicles (IoV) in terms of balancing location privacy and service availability, high communication overhead, and susceptibility to inference attacks, a k-anonymity location privacy protection method for IOV based on service similarity is proposed to effectively defend against inference attacks. The concept of service similarity is introduced to generate a service similarity map, and based on the service similarity degree, the partition where the vehicle is located is merged with other partitions to form the Anonymous candidate area that meets the service quality requirements of the vehicle. When selecting the k-anonymity set, the anonymity entropy is used to quantify the user's enquiry probability, and the k-anonymity set with the largest entropy is generated to effectively undercut the inference attack. A greedy algorithm is used to randomly select a location point in the anonymity set to request the service in order to reduce the resource overhead. And experimental results and analysis show that the method reduces the communication overhead by an average of 48.75% and improves the privacy preservation degree and service availability by an average of 42.99% and 45.84% compared to the comparison method. The proposed method improves the privacy preservation degree and service availability, reduces the resource overhead and is effective against inference attacks. © 2025 SPIE.

关键词： Anonymity

来源：评论

学校读者我要写书评

暂无评论

FlowShredder: A Protocol-Independent in-network security service in the Cloud 22nd

FlowShredder: A Protocol-Independent in-Network Security Ser...

引用

22nd international conference on service Oriented Computing

作者： Song, Bin Sun, Bin Fu, Qiang Li, Hao Xi An Jiao Tong Univ Xian Peoples R China RMIT Univ Melbourne Vic Australia

ISBN: (纸本)9789819608041;9789819608058

Cloud services increasingly generates enormous Internet traffic. Much of it such as rich media traffic is not highly sensitive, but prefers some sort of protection. The traditional end-to-end encryption such as TLS is costly and has issues such as increased latency, while the simple anonymity solutions cannot resist traffic analysis attacks. In this paper, we propose FlowShredder, a protocol-independent and in-network service to secure such traffic in the cloud. FlowShredder aims to break the association between packets, data flow and hosts by obfuscating the packet header (some payload if needed). Without the context of flow and hosts, packets are of little value to the adversary. The operation is carried out at cloud gateways, without encrypting the payload. Its simple logic can therefore be executed within a single pipeline of the Tofino programmable switch, to ensure wire-speed performance without the scalability issue. Being protocol-independent and operating in-network at wire speed make FlowShredder a practical and generic security service to protect the cloud traffic. In addition, FlowShredder can work with end-to-end encryption such as 0-RTT TLS for enhanced protection. We implement FlowShredder in P4 switches. Experiments show that FlowShredder can effectively resist the traffic analysis attack with supervised learning techniques.

关键词： Cloud security

来源：评论

学校读者我要写书评

暂无评论

Detecting Distributed Denial of service (DDoS) Attacks in a Multi-controller SDN Environment Utilizing Machine Learning 5th

Detecting Distributed Denial of Service (DDoS) Attacks in a ...

引用

5th international conference on Computing Science, Communication and security

作者： Sanghani, Nishant Vaghela, Gunjani Borisaniya, Bhavesh Gujarat Technol Univ Ahmadabad India Atmiya Univ Rajkot India Shantilal Shah Engn Coll Bhavnagar India

ISBN: (纸本)9783031751691;9783031751707

Software Define network is a platform for network architecture used to create and design the virtual network hardware components, so it can be modified with dynamic connection settings with ease of implementation. The SDN controller is in charge of executing various network applications and preserving network services and functions. Due to the complication of the SDN architecture, the SDN faces numerous security challenges despite all of its incredible advantages. Because of its centralized and complex architecture, distributed denials of service (DDoS) attacks are frequent against SDN, particularly at the control layer where they can affect the entire network by using multiple resources at particular interval of time. Machine learning methods are utilized to quickly detect these types of threats. In current work, machine learning approach is proposed to detect the DDoS attack in multi-controller SDN environment of SDN. Experimental results shows that machine learning technique provides better accuracy and detection rate.

关键词： SDN DDoS SDN controller Multi-controller RSMQ Machine learning

来源：评论

学校读者我要写书评

暂无评论

Short Paper: Onion Messages on Leash 28th

Short Paper: Onion Messages on Leash

引用

28th international conference on Financial Cryptography and Data security

作者： Bashiri, Amin Khabbazian, Majid Univ Alberta Edmonton AB Canada

ISBN: (纸本)9783031786785;9783031786792

Onion messages (OMs) are private messages sent between nodes in the Lightning network (LN) using onion routing. While they are intended to enable interesting applications such as static invoices, refunds, and asynchronous payments, onion messages may also be used for unintended applications such as streaming or spam. To mitigate this, LN nodes can impose a rate limit on forwarding onion messages. However, if not carried out carefully, the rate limit can expose the network to a denial of service (DoS) attack, where an adversary may disrupt or degrade the OM service by flooding the network. This DoS threat is particularly concerning because, under current specifications, a single OM can traverse through hundreds of nodes, affecting all the nodes on its way. In addition, the adversary can hide their true identity thanks to the privacy-preserving feature of onion routing. To address this threat, we propose a simple solution with two main components. The first component limits the distance over which OMs can travel. For this purpose, we propose two methods: a hard leash and a soft leash. The hard leash imposes a strict limit on how far OMs can travel, while the soft leash makes it exponentially more difficult for OMs to traverse long distances. While the first method requires changes in the message format, the second method can easily be adopted without altering OMs. The second component of our solution consists of a set of simple yet effective forwarding and routing rules. We demonstrate that when these rules and the proposed leashes are applied, an adversary cannot degrade the onion messaging service, assuming that the adversary does not control a significant fraction of funds in the network.

关键词： Lightning network Onion Messages Denial of service

来源：评论

学校读者我要写书评

暂无评论

Choreography-Defined networks: A Case Study on DoS Mitigation 22nd

Choreography-Defined Networks: A Case Study on DoS Mitigatio...

引用

22nd international conference on service Oriented Computing

作者： Giallorenzo, Saverio Mauro, Jacopo Melis, Andrea Montesi, Fabrizio Peressotti, Marco Prandini, Marco Univ Bologna Bologna Italy INRIA Sophia Antipolis France Univ Southern Denmark Odense Denmark

ISBN: (纸本)9789819608072;9789819608089

Software-defined networking and network function virtualization have brought unparalleled flexibility in defining and managing network architectures. With the widespread diffusion of cloud platforms, more resources are available to execute virtual network functions concurrently, but the current approach to defining networks in the cloud development is held back by the lack of tools to manage the composition of more complex flows than simple sequential invocations. In this paper, we advocate for the usage of choreographic programming for defining the multiparty workflows of a network. When applied to the composition of virtual network functions, this approach yields multiple advantages: a single program expresses the behavior of all components, in a way that is easier to understand and check;a compiler can produce the executable code for each component, guaranteeing correctness properties of their interactions such as deadlock freedom;and the bottleneck of a central orchestrator is removed. We describe the proposed approach and show its feasibility via a case study where different functions cooperatively solve a security monitoring task.

关键词： Software-defined networks Virtual network Functions Choreographic Programming network security Denial-of-service

来源：评论

学校读者我要写书评

暂无评论

建议与咨询留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

时间限定

文献类型

馆藏选择

核心期刊

语言

文献类型

帮助

文字说明：

检索规则说明：

检索范例：

分类表

所选分类

限定检索结果

文献类型

馆藏范围

日期分布

学科分类号

主题

机构

作者

语言

请选择保存的检索档案：

请选择收藏分类：

通借通还

建议与咨询 留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

时间限定

文献类型

馆藏选择

核心期刊

语言

文献类型

帮助

文字说明：

检索规则说明：

检索范例：

分类表

所选分类

限定检索结果

文献类型

馆藏范围

日期分布

学科分类号

主题

机构

作者

语言

请选择保存的检索档案： 新增检索档案 确定 取消

请选择收藏分类： 新增自定义分类 确定 取消

通借通还

建议与咨询留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

请选择保存的检索档案：

请选择收藏分类：