检索结果-内蒙古大学图书馆

Routing-Aware and Malicious Node Detection in a Concealed Data Aggregation for WSNs

ACM TRANSACTIONS ON SENSOR NETWORKS 2019年第2期15卷 18-18页

作者： Alghamdi, Wael Rezvani, Mohsen Wu, Hui Kanhere, Salil S. Taif Univ Fac Comp Sci & Informat Technol Airport Rd At Taif 26571 Mecca Province Saudi Arabia Shahrood Univ Technol Fac Comp Engn Shahrood Iran Univ New South Wales Sch Comp Sci & Engn Sydney NSW Australia

Data aggregation in Wireless Sensor Networks (WSNs) can effectively reduce communication overheads and reduce the energy consumption of sensor nodes. A WSN needs to be not only energy efficient but also secure. Various attacks may make data aggregation unsecure. We investigate the reliable and secure end-to-end data aggregation problem considering selective forwarding attacks and modification attacks in homogeneous WSNs, and propose two data aggregation approaches. Our approaches, namely Sign-Share and Sham-Share, use secret sharing and signatures to allow aggregators to aggregate the data without understanding the contents of messages and the base station to verify the aggregated data and retrieve the raw data from the aggregated data. To the best of our knowledge, this is the first lightweight en-routing malicious node detection in concealed data aggregation. We have performed an extensive simulation to compare our approaches and the two state-of-the-art approaches PIP and RCDA-HOMO. The simulation results show that both Sign-Share and Sham-Share consume a reasonable amount of time in processing and aggregating the data. The simulation results show that our first approach achieved an average network lifetime of 102.33% over PIP and average aggregation energy consumption of 74.93%. In addition, it achieved an average aggregation processing time and sensor data processing time of 95.4% and 90.34% over PIP and 98.7% and 92.07% over RCDA-HOMO, respectively, and it achieved an average network delay of 71.95% over PIP. Although RCDA-HOMO is completely a different technique, a comparison was performed to measure the computational overhead.

关键词： Secret sharing concealed data aggregation signature message authentication code

来源：评论

学校读者我要写书评

暂无评论

Super-strong RKA secure MAC, PKE and SE from tag-based hash proof system

引用

DESIGNS codeS AND CRYPTOGRAPHY 2018年第7期86卷 1411-1449页

作者： Han, Shuai Liu, Shengli Lyu, Lin Shanghai Jiao Tong Univ Dept Comp Sci & Engn Shanghai 200240 Peoples R China State Key Lab Cryptol POB 5159 Beijing 100878 Peoples R China Westone Cryptol Res Ctr Beijing 100070 Peoples R China

F-related-key attacks (RKA) on cryptographic systems consider adversaries who can observe the outcome of a system under not only the original key, say k, but also related keys f(k), with f adaptively chosen from by the adversary. In this paper, we define new RKA security notions for several cryptographic primitives including message authentication code (MAC), public-key encryption (PKE) and symmetric encryption (SE). This new kind of RKA notions are called super-strong RKA securities, which stipulate minimal restrictions on the adversary's forgery or oracle access, thus turn out to be the strongest ones among existing RKA security requirements. We present paradigms for constructing super-strong RKA secure MAC, PKE and SE from a common ingredient, namely Tag-based hash proof system (THPS). We also present constructions for THPS based on the k-linear and the DCR assumptions. When instantiating our paradigms with concrete THPS constructions, we obtain super-strong RKA secure MAC, PKE and SE schemes for the class of restricted affine functions , of which the class of linear functions is a subset. To the best of our knowledge, our MACs, PKEs and SEs are the first ones possessing super-strong RKA securities for a non-claw-free function class in the standard model and under standard assumptions. Our constructions are free of pairing and are as efficient as those proposed in previous works. In particular, the keys, tags of MAC and ciphertexts of PKE and SE all consist of only a constant number of group elements.

关键词： Related-key attack Hash proof system message authentication code Public-key encryption Symmetric encryption

来源：评论

学校读者我要写书评

暂无评论

MAC Based Energy Efficiency in Cooperative Cognitive Radio Network in the Presence of Malicious Users

引用

IEEE ACCESS 2018年 6卷 5666-5677页

作者： Dai, Jianxin Liu, Juan Pan, Cunhua Wang, Jiangzhou Cheng, Chonghu Huang, Zhiliang Nanjing Univ Posts & Telecommun Sch Sci Nanjing 210023 Jiangsu Peoples R China Nanjing Univ Posts & Telecommun Coll Telecommun & Informat Engn Nanjing 210003 Jiangsu Peoples R China Queen Mary Univ London London E1 4NS England Univ Kent Sch Engn & Digital Arts Canterbury CT2 7NZ Kent England Zhejiang Normal Univ Coll Math Phys & Informat Engn Jinhua 321004 Peoples R China

In cognitive radio networks, cooperative spectrum sensing (CSS) is generally adopted for improving spectrum sensing accuracy to increase spectrum utilization and avoid interference with the primary users. However, some malicious secondary users (SUs) may affect the CSS performance by inducing false observation bits for fusion. The message authentication code (MAC) is a promising technique to avoid the damage from the spectrum sensing data falsification (SSDF) attacks. In this paper, as both the more spectrum sensing nodes and the MAC reporting bits result in extra energy consumption, we propose an energy efficiency model to capture the effects of the length of MAC and the number of cooperative SUs under independent and collaborative SSDF attacks, respectively, and analyze the existence of the optimal length of MAC and the optimal number of cooperative SUs that can achieve the maximum value of energy efficiency, respectively. Simulation results are provided to show that the CSS scheme based on MAC can resist SSDF attacks and the accuracy of the theoretical analysis is also validated.

关键词： Cooperative spectrum sensing spectrum sensing data falsification (SSDF) attack message authentication code energy efficiency

来源：评论

学校读者我要写书评

暂无评论

An Improved Authenticated Compressive Sensing Imaging 12

An Improved Authenticated Compressive Sensing Imaging

引用

12th IEEE International Conference on Semantic Computing (ICSC)

作者： Wu, Tao Ruland, Christoph Univ Siegen Chair Data Commun Syst Siegen Germany

ISBN: (纸本)9781538644072

Compressive Sensing (CS) is a hot topic in mathematics, computer science and electronics area in recent years. Imaging system takes fully advantage of this novel theory, i. e. Compressive Sensing based Imaging (CSI) cameras could construct N pixel image with only M measurements with M << N and the sampling bandwidth of sensors would be no more limited. As we known, image should be authenticated, in order to be transmitted through insecure channel. However, CSI method senses and compresses directly scene information into measurement, which cannot be protected by conventional image authentication mechanisms. In 2017, Wu and Ruland have proposed an authenticated CSI system, which can solve this issue and support content-based (semantic) authentication. This paper follows Wu's work, and bases on the shortcomings, such as training method, tag extraction and verification etc., to improve the authenticated CSI method. Afterwards, the improved system illustrates a good performance of security and robustness.

关键词： Compressive Sensing based imaging image authentication semantic authentication message authentication code

来源：评论

学校读者我要写书评

暂无评论

Enabling Authenticated Data Exchanges in Industrial Control Systems 6

Enabling Authenticated Data Exchanges in Industrial Control ...

引用

6th International Symposium on Digital Forensic and Security (ISDFS)

作者： Duka, Adrian-Vasile Genge, Bela Haller, Piroska Petru Maior Univ Tirgu Mures Dept Elect Engn & Comp Sci 1 N Iorga St Tirgu Mures Mures 540088 Romania Petru Maior Univ Tirgu Mures Dept Informat 1 N Iorga St Tirgu Mures Mures 540088 Romania

ISBN: (纸本)9781538634493

In the context of the ever more increasing number of cyber attacks targeted against Industrial Control Systems, the protection of data (e.g., process variables) commonly exchanged between the system's components (e.g., between Programmable Logic Controllers - PLCs, and Human Machine Interfaces - HMIs), is of greatest importance. In spite of their modest computational resources, we show that, when compared to other computer systems (e.g., traditional PCs), it is possible to enhance the control programs running within PLCs with message authentication codes (MACs) constructions. These enable to authenticate the exchanged data, therefore providing a means to simultaneously verify both the data integrity and the authentication of process variables. This paper presents PLC specific details for several MAC implementations and assesses their efficiency, in terms of execution time, as tested on Phoenix Contact's ILC 350 PN controller.

关键词： industrial control systems cryptography data authentication message authentication code hash functions

来源：评论

学校读者我要写书评

暂无评论

An Authenticated Encrypted Compressive Sensing based Imaging Mechanism 9

An Authenticated Encrypted Compressive Sensing based Imaging...

引用

9th IFIP International Conference on New Technologies, Mobility and Security (NTMS)

作者： Wu, Tao Ruland, Christoph Univ Siegen Chair Data Commun Syst Siegen Germany

ISBN: (纸本)9781538636626

Compressive Sensing (CS) based imaging (CSI) method can recover N pixel information from only M measurements with N >> M, if the source information is sparse in some domain. With help of CSI mechanism an imaging system could capture information directly, meanwhile, the confidentiality could be also supported with some configuration due to the random projection, i.e., CSI method integrates sensing, compression and encryption in one step. However, image should he also protected against tampering and forgery, which could be realized by providing the origin and integrity. Since CSI method captures measurements instead of pixel information, the authenticity should he provided in an unconventional but semantic way. This paper introduces an Authenticated Encrypted Compressive Sensing based Imaging (AE-CSI) mechanism, which is constructed by the existed CSMAC and improved CSI mechanism, such that the system provides the origin, integrity and confidentiality of the target image while the sensing process.

关键词： Compressive Sensing imaging image authentication semantic authentication message authentication code authenticated encryption

来源：评论

学校读者我要写书评

暂无评论

PASTA: PASsword-based Threshold authentication 18

PASTA: PASsword-based Threshold Authentication

引用

ACM SIGSAC Conference on Computer and Communications Security (CCS)

作者： Agrawal, Shashank Miao, Peihan Mohassel, Payman Mukherjee, Pratyay Visa Res Palo Alto CA 94306 USA Univ Calif Berkeley Berkeley CA 94720 USA

ISBN: (纸本)9781450356930

Token-based authentication is commonly used to enable a single-sign-on experience on the web, in mobile applications and on enterprise networks using a wide range of open standards and network authentication protocols: clients sign on to an identity provider using their username/password to obtain a cryptographic token generated with a master secret key, and store the token for future accesses to various services and applications. The authentication server(s) are single point of failures that if breached, enable attackers to forge arbitrary tokens or mount offline dictionary attacks to recover client credentials. Our work is the first to introduce and formalize the notion of password-based threshold token-based authentication which distributes the role of an identity provider among n servers. Any t servers can collectively verify passwords and generate tokens, while no t - 1 servers can forge a valid token or mount offline dictionary attacks. We then introduce PASTA, a general framework that can be instantiated using any threshold token generation scheme, wherein clients can "sign-on" using a two-round (optimal) protocol that meets our strong notions of unforgeability and password-safety. We instantiate and implement our framework in C++ using two threshold message authentication codes (MAC) and two threshold digital signatures with different trade-offs. Our experiments show that the overhead of protecting secrets and credentials against breaches in PASTA, i.e. compared to a naive single server solution, is extremely low (1-5%) in the most likely setting where client and servers communicate over the internet. The overhead is higher in case of MAC-based tokens over a LAN (though still only a few milliseconds) due to public-key operations in PASTA. We show, however, that this cost is inherent by proving a symmetric-key only solution impossible.

关键词： passwords token-based authentication threshold cryptography digital signature message authentication code oblivious pseudorandom function

来源：评论

学校读者我要写书评

暂无评论

車用控制器區域網路安全防護系統

NCS 2019 全国计算机会议

引用

NCS 2019 全国计算机会议 2019年 546-553页

作者：林亞吟魯家瑜楊明豪羅嘉寧吳章銘

现代汽车不再仅仅只是机械设备，而是一个由多个电子控制单元（Electronic Control Unit, ECU）组成的车载网络。这些ECU负责车辆中的大多数功能，包括车辆控制和机动性。但是在他们的底层协议中并未实现安全性，例如用於传输即时的关... 详细信息

现代汽车不再仅仅只是机械设备，而是一个由多个电子控制单元（Electronic Control Unit, ECU）组成的车载网络。这些ECU负责车辆中的大多数功能，包括车辆控制和机动性。但是在他们的底层协议中并未实现安全性，例如用於传输即时的关键讯息如引擎转速和煞车系统控制命令的控制器区域网络（Controller Area Network, CAN）。CAN上传送的讯息缺乏完整性保护和资料身份认证，因此容易受到注入和窜改攻击。在本论文中，我们提出一套方法并将其实作－安全防护系统，能够辨识讯息的来源，并丢弃来源不明的讯息，并且能够保护资料的完整性，以期达到防止骇客窜改、伪造讯息恶意控制汽车的目的。

关键词： Controller Area Network Impersonation Attack Instruction Prevention system message authentication code

来源：评论

学校读者我要写书评

暂无评论

A secure image sharing scheme with high quality stego-images based on steganography

引用

MULTIMEDIA TOOLS AND APPLICATIONS 2017年第6期76卷 7677-7698页

作者： He, Junhui Lan, Weiqiang Tang, Shaohua South China Univ Technol Sch Comp Sci & Engn Guangzhou Higher Educ Mega Ctr Guangzhou 510006 Guangdong Peoples R China

Image sharing can be utilized to protect important commercial, military or private images against a single point of failure. Many existing image sharing schemes may have one or more of the security weaknesses as follows: First, noise-like image shares may easily arouse the attackers' attention;Second, cheating in the recovery of the secret image cannot be prevented effectively;Third, the requisite size of cover images may be very large;Finally, poor quality of the stego-images may lessen camouflage effects. In this paper, a novel secure image sharing scheme with high quality stego-images is proposed. With the use of LOCO-I compression as a preprocessing approach, the statistical correlations between neighboring pixels of a secret image drop significantly, which may greatly enhance the visual security of the proposed scheme. And the necessary size of cover images is reduced. Moreover, the PSNR values of stego-images are much higher than the related works. In order to detect three kinds of deception during secret image reconstruction, the hash-based message authentication codes of an image share, the value of argument x and the identity ID of a participant are embedded into a cover image together with the image share. In addition, the application of dynamic embedding with a random strategy further enhance the security of our scheme.

关键词： Image sharing Steganography LOCO-I compression message authentication code Dynamic embedding

来源：评论

学校读者我要写书评

暂无评论

Mini-MAC: Raising the bar for vehicular security with a lightweight message authentication protocol

引用

VEHICULAR COMMUNICATIONS 2017年 9卷 188-196页

作者： Schmandt, Jackson Sherman, Alan T. Banerjee, Nilanjan UMBC CSEE Dept Mobile Pervas Sensor Syst Lab Baltimore MD 21250 USA UMBC CSEE Dept Cyber Def Lab Baltimore MD 21250 USA

We propose Mini-MAC, a new message authentication protocol that works in existing automotive computer networks without delaying any message or increasing network traffic. Deployed in many vehicles, the CAN bus is a low-speed network connecting electronic control units, including those that control critical functionality such as braking and acceleration. The CAN bus is extremely vulnerable to malicious actors with bus access, including wireless access. Traditionally, message authentication codes (MACs) help authenticate the sender of a message, and variants prevent message replay attacks;however, standard MACs are unsuitable for use on the CAN bus because of small payload sizes. Restrictions of the CAN bus, including the need not to delay messages or increase bus traffic, severely limit how well this network can be protected. Mini-MAC is based on a counter-seeded keyed-Hash MAC (HMAC), augmented with message history and truncated to fit available message space. It does not increase bus traffic and incurs a very small performance penalty relative to the provably secure HMAC. It is the first proposal to combine these two tenets for vehicle networks. The message history feature protects against all transient attackers, even if they know the keys. Though the CAN bus cannot be properly secured against a dedicated attacker, Mini-MAC meaningfully raises the bar of vehicular security, enhancing the safety of drivers and others. (C) 2017 Published by Elsevier Inc.

关键词： CAN bus Automotive security message authentication code Mini-MAC Vehicle security Applied cryptography

来源：评论

学校读者我要写书评

暂无评论

建议与咨询留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

时间限定

文献类型

馆藏选择

核心期刊

语言

文献类型

帮助

文字说明：

检索规则说明：

检索范例：

分类表

所选分类

限定检索结果

文献类型

馆藏范围

日期分布

学科分类号

主题

机构

作者

语言

请选择保存的检索档案：

请选择收藏分类：

通借通还

建议与咨询 留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

时间限定

文献类型

馆藏选择

核心期刊

语言

文献类型

帮助

文字说明：

检索规则说明：

检索范例：

分类表

所选分类

限定检索结果

文献类型

馆藏范围

日期分布

学科分类号

主题

机构

作者

语言

请选择保存的检索档案： 新增检索档案 确定 取消

请选择收藏分类： 新增自定义分类 确定 取消

通借通还

建议与咨询留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

请选择保存的检索档案：

请选择收藏分类：