检索结果-内蒙古大学图书馆

security solution frames and security patterns for authorization in distributed, collaborative systems

COMPUTERS & security 2015年 55卷 193-234页

作者： Uzunov, Anton V. Fernandez, Eduardo B. Falkner, Katrina Univ Adelaide Sch Comp Sci Adelaide SA 5005 Australia Florida Atlantic Univ Dept Comp & Elect Engn & Comp Sci Boca Raton FL 33431 USA

The design of an authorization infrastructure is one of the most important aspects of engineering a secure software system. Unlike other system types, distributed systems - and especially distributed collaborative systems - can require custom, fine-grained authorization models and enforcement approaches that are able to take into account a range of semantic subtleties. In this paper we present a comprehensive, pattern-oriented software engineering approach to authorization for general distributed systems - with particular applicability to distributed collaborative systems - that allows developers to build custom, application-specific conceptual authorization models in a simple yet extensible manner, and to make informed decisions regarding their enforcement in software, as well as how their supporting rule/policy infrastructure should be designed. Our authorization approach is embodied in two instances of a new pattern-based security engineering construct called a security solution frame, which groups together related patterns - both security "product" and micro-process patterns - in different sub-structures, horizontally and vertically, for a single high-level security policy (in our case authorization and policy management). By applying specific micro-process patterns in each solution frame, developers are guided in using relevant "product" patterns to progressively construct a distributed authorization infrastructure - from abstract concepts toward concrete designs, via a number of levels of abstraction implying solution refinement and corresponding to stages of the development life-cycle. The summary-form "product" patterns encapsulated in each frame also help developers to form a holistic, "global" view when analyzing existing infrastructures. We illustrate and evaluate the proposal in the context of greenfield system development by applying our solution frames to design the authorization infrastructure of a (new) distributed system for secure file sharing and

关键词： security engineering Software engineering security patterns Authorization Access control distributed systems distributed systems security security solution frames

来源：评论

学校读者我要写书评

暂无评论

ASE: A comprehensive pattern-driven security methodology for distributed systems

引用

COMPUTER STANDARDS & INTERFACES 2015年 41卷 112-137页

作者： Uzunov, Anton V. Fernandez, Eduardo B. Falkner, Katrina Univ Adelaide Sch Comp Sci Adelaide SA 5005 Australia Florida Atlantic Univ Dept Comp & Elect Engn & Comp Sci Boca Raton FL 33431 USA

Incorporating security features is one of the most important and challenging tasks in designing distributed systems. Over the last decade, researchers and practitioners have come to recognize that the incorporation of security features should proceed by means of a structured, systematic approach, combining principles from both software and security engineering. Such systematic approaches, particularly those implying some sort of process aligned with the development life-cycle, are termed security methodologies. There area number of security methodologies in the literature, of which the most flexible and, according to a recent survey, most satisfactory from an industry-adoption viewpoint are methodologies that encapsulate their security solutions in some fashion, especially via the use of security patterns. While the literature does present several mature pattern-driven security methodologies with either a general or a highly specific system applicability, there are currently no (pattern-driven) security methodologies specifically designed for general distributed systems. Going further, there are also currently no methodologies with mixed specific applicability, e.g. for both general and peer-to-peer distributed systems. In this paper we aim to fill these gaps by presenting a comprehensive pattern-driven security methodology - arrived at by applying a previously devised approach to engineering security methodologies - specifically designed for general distributed systems, which is also capable of taking into account the specifics of peer-to-peer systems as needed. Our methodology takes the principle of encapsulation several steps further, by employing patterns not only for the incorporation of security features (via security solution frames), but also for the modeling of threats, and even as part of its process. We illustrate and evaluate the presented methodology in detail via a realistic example - the development of a distributed system for file sharing and collabo

关键词： Secure software engineering security methodologies distributed systems security security patterns security solution frames

来源：评论

学校读者我要写书评

暂无评论

A Comprehensive Pattern-Driven security Methodology for distributed systems

A Comprehensive Pattern-Driven Security Methodology for Dist...

引用

23rd Australasian Software Engineering Conference (ASWEC)

作者： Uzunov, Anton V. Falkner, Katrina Fernandez, Eduardo B. Univ Adelaide Sch Comp Sci Adelaide SA 5005 Australia Florida Atlantic Univ Dept Comp & Elect Engn & Comp Sci Boca Raton FL 33431 USA

ISBN: (纸本)9781479931491

Incorporating security features is one of the most important and challenging tasks in designing distributed systems. Over the last decade, researchers and practitioners have come to recognize that the incorporation of security features should proceed by means of a systematic approach, combining principles from both software and security engineering. Such systematic approaches, particularly those implying some sort of process aligned with the development life-cycle, are termed security methodologies. One of the most important classes of such methodologies is based on the use of security patterns. While the literature presents a number of pattern-driven security methodologies, none of them are designed specifically for general distributed systems. Going further, there are also currently no methodologies with mixed specific applicability, e.g. for both general and peer-to-peer distributed systems. In this paper we aim to fill these gaps by presenting a comprehensive pattern-driven security methodology specifically designed for general distributed systems, which is also capable of taking into account the specifics of peer-to-peer systems. Our methodology takes the principle of encapsulation several steps further, by employing patterns not only for the incorporation of security features (via security solution frames), but also for the modeling of threats, and even as part of its process. We illustrate and evaluate the presented methodology via a realistic example - the development of a distributed system for file sharing and collaborative editing. In both the presentation of the methodology and example our focus is on the early life-cycle phases (analysis and design).

关键词： secure software engineering security methodologies distributed systems security security patterns threat patterns security solution frames

来源：评论

学校读者我要写书评

暂无评论

The Last Survivor of PoS Pools: Staker's Dilemma

引用

PROCEEDINGS OF THE ACM ON MEASUREMENT AND ANALYSIS OF COMPUTING systems 2025年第1期9卷 1-29页

作者： Huang, Yuming Tang, Jing Cong, Qianhao Ma, Richard T. B. Chen, Lei Chee, Yeow Meng Natl Univ Singapore Singapore Singapore Hong Kong Univ Sci & Technol Guangzhou Peoples R China

In blockchains using the Proof-of-Work (PoW) consensus mechanism, a mining pool is a joint group of miners who combine their computational resources and share the generated revenue. Similarly, when the Proof-of-Stake (PoS) consensus mechanism is adopted, the staking pool imitates the design of the mining pool by aggregating the stakes. However, in PoW blockchains, the pooling approach has been criticized to be vulnerable to the block withholding (BWH) attack. BWH attackers may steal the dividends from victims by pretending to work but making invalid contributions to the victim pools. It is well known that BWH attackers against PoW face the miner's dilemma. To our knowledge, despite the popularity of PoS, we are the first to study the pool BWH attack against PoS. Interestingly, we find that, for a network only consisting of one attacker pool and one victim pool, the attacker will eventually manipulate the network while the victim will vanish by losing the stake ratio gradually. Moreover, in a more realistic scenario with multiple BWH attacker pools and one solo staker who does not join any pools, we show that only one lucky attacker and the solo staker will survive, whereas all the other pools will vanish gradually, revealing the staker's dilemma. These findings indicate that, compared to PoW, the BWH attack on PoS has a much more severe impact due to the attacker's resource aggregation advantage. Our analysis is supported by experiments on massive real blockchain systems and numerical simulations.

关键词： Theory of computation Algorithmic game theory security and privacy distributed systems security Mathematics of computing Stochastic processes

来源：评论

学校读者我要写书评

暂无评论

A Comprehensive Pattern-Driven security Methodology for distributed systems

A Comprehensive Pattern-Driven Security Methodology for Dist...

引用

Australian Software Engineering Conference

作者： Anton V. Uzunov Katrina Falkner Eduardo B. Fernandez School of Computer Science The University of Adelaide Department of Computer and Electrical Engineering and Computer Science Florida Atlantic University

ISBN: (纸本)9781479931507

Incorporating security features is one of the most important and challenging tasks in designing distributed systems. Over the last decade, researchers and practitioners have come to recognize that the incorporation of security features should proceed by means of a systematic approach, combining principles from both software and security engineering. Such systematic approaches, particularly those implying some sort of process aligned with the development life-cycle, are termed security methodologies. One of the most important classes of such methodologies is based on the use of security patterns. While the literature presents a number of pattern-driven security methodologies, none of them are designed specifically for general distributed systems. Going further, there are also currently no methodologies with mixed specific applicability, e.g. for both general and peer-to-peer distributed systems. In this paper we aim to fill these gaps by presenting a comprehensive pattern-driven security methodology specifically designed for general distributed systems, which is also capable of taking into account the specifics of peer-to-peer systems. Our methodology takes the principle of encapsulation several steps further, by employing patterns not only for the incorporation of security features (via security solution frames), but also for the modeling of threats, and even as part of its process. We illustrate and evaluate the presented methodology via a realistic example - the development of a distributed system for file sharing and collaborative editing. In both the presentation of the methodology and example our focus is on the early life-cycle phases (analysis and design).

关键词： Secure software engineering security methodologies distributed systems security security patterns Threat patterns security solution frames

来源：评论

学校读者我要写书评

暂无评论

End-to-End security for distributed Event-driven Enclave Applications on Heterogeneous TEEs

引用

ACM TRANSACTIONS ON PRIVACY AND security 2023年第3期26卷 1-46页

作者： Scopelliti, Gianluca Pouyanrad, Sepideh Noorman, Job Alder, Fritz Baumann, Christoph Piessens, Frank Muhlberg, Jan Tobias Ericsson AB Stockholm Sweden DistriNet Imec Ghent Belgium Katholieke Univ Leuven B-3001 Leuven Belgium Ecole Polytech BEAM B-1050 Brussels Belgium Ecole Polytech Cybersecur Res Ctr B-1050 Brussels Belgium Univ Libre Bruxelles B-1050 Brussels Belgium

This article presents an approach to provide strong assurance of the secure execution of distributed eventdriven applications on shared infrastructures, while relying on a small Trusted Computing Base. We build upon and extend security primitives provided by Trusted Execution Environments (TEEs) to guarantee authenticity and integrity properties of applications, and to secure control of input and output devices. More specifically, we guarantee that if an output is produced by the application, it was allowed to be produced by the application's source code based on an authentic trace of inputs. We present an integrated open-source framework to develop, deploy, and use such applications across heterogeneous TEEs. Beyond authenticity and integrity, our framework optionally provides confidentiality and a notion of availability, and facilitates software development at a high level of abstraction over the platformspecific TEE layer. We support event-driven programming to develop distributed enclave applications in Rust and C for heterogeneous TEE, including Intel SGX, ARM TrustZone, and Sancus. In this article we discuss the workings of our approach, the extensions we made to the Sancus processor, and the integration of our development model with commercial TEEs. Our evaluation of security and performance aspects show that TEEs, together with our programming model, form a basis for powerful security architectures for dependable systems in domains such as Industrial Control systems and the Internet of Things, illustrating our framework's unique suitability for a broad range of use cases which combine cloud processing, mobile and edge devices, and lightweight sensing and actuation.

关键词： Trusted Execution Software Development Kit IoT security distributed systems security

来源：评论

学校读者我要写书评

暂无评论

Integrating PMI services in CORBA applications

引用

COMPUTER STANDARDS & INTERFACES 2003年第4期25卷 391-409页

作者： Lòpez, J Maña, A Ortega, JJ Troya, JM Yagüe, MI Univ Malaga Dept Comp Sci Malaga 29017 Spain

Application-level access control is an important requirement in many distributed environments. For instance, in new scenarios such as e-commerce, access to resources by previously unknown users is an essential problem to be solved. The integration of Privilege Management Infrastructure (PMI) services in the access control system represents a scalable way to solve this problem. Within the CORBA standards, the Resource Access Decision (RAD) facility is a mechanism used by security-aware applications to obtain authorization decisions and to manage access decision policies. This paper presents PMI-RAD, an approach to integrate the services of an external PMI into CORBA applications using the RAD facility. In particular, the integration of the external PMI in the access control system is based on the semantic description of the PMI services. Our RAD implementation requests and verifies attribute certificates from the PMI in a transparent way for CORBA objects. (C) 2003 Elsevier Science B.V. All rights reserved.

关键词： CORBA distributed systems security privilege management infrastructures XML metadata

来源：评论

学校读者我要写书评

暂无评论

An authentication logic with formal semantics supporting synchronization, revocation, and recency

引用

IEEE TRANSACTIONS ON SOFTWARE ENGINEERING 2002年第3期28卷 256-285页

作者： Stubblebine, SG Wright, RN Stubblebine Consulting LLC Madison NJ 07940 USA AT&T Labs Res Florham Pk NJ 07932 USA

distributed systems inherently involve dynamic changes to the value of security-relevant attributes such as the goodness of encryption keys, trustworthiness of participants, and synchronization between principals. Since concurrent knowledge is usually infeasible or impractical, it is often necessary for the participants of distributed protocols to determine and act on beliefs that may not be supported by the current state of the system. Policies for determining beliefs in such situations can range from extremely conservative, such as only believing statements if they are very recent, to extremely optimistic, such as believing all statements that are not yet known to be revoked. Such security policies often are heavily dependent on timing of received messages and on synchronization between principals. We present a logic for analyzing cryptographic protocols that has the capability to specify time and synchronization details. This capability considerably advances the scope of known techniques both for expressing practical authentication policies of protocol participants as constraints and for reasoning about protocol goals subject to these constraints. In the course of reasoning about protocol goals, one is able to exhibit sufficient conditions regarding trust between protocol participants, synchronization between protocol participants, and timeliness of message contents. Our logic is flexible and can support a wide range of security policies including the "recent-secure authentication" policy [19] for enforcing revocation in distributed systems. The ability to reason about the conjunction of individual participant policies and protocols will be especially important as public and private key infrastructures are deployed and new and unanticipated policies are put into use.

关键词： formal methods protocol analysis authentication logic recent-secure authentication revocation reasoning about time security policies security analysis authentication clock synchronization distributed systems security computer security

来源：评论

学校读者我要写书评

暂无评论

Untargeted Poisoning Attack Detection in Federated Learning via Behavior AttestationAl

引用

IEEE ACCESS 2023年 11卷 125064-125079页

作者： Mallah, Ranwa Al Lopez, David Badu-Marfo, Godwin Farooq, Bilal Royal Mil Coll Kingston Kingston ON K7K 7B4 Canada Univ Nacl Autonoma Mexico Inst Ingeneria Mexico City 04510 Mexico Toronto Metropolitan Univ Lab Innovat Transportat Toronto ON M5G 1G3 Canada

Federated Learning (FL) is a paradigm in Machine Learning (ML) that addresses data privacy, security, access rights and access to heterogeneous information issues by training a global model using distributed nodes. Despite its advantages, there is an increased potential for cyberattacks on FL-based ML techniques that can undermine the benefits. Model-poisoning attacks on FL target the availability of the model. The adversarial objective is to disrupt the training. We propose attestedFL, a defense mechanism that monitors the training of individual nodes through state persistence in order to detect a malicious worker in small to medium federation size. A fine-grained assessment of the history of the worker permits the evaluation of its behavior in time and results in innovative detection strategies. We present three lines of defense that aim at assessing if the worker is reliable by observing if the node is truly training, while advancing towards a goal. Our defense exposes an attacker's malicious behavior and removes unreliable nodes from the aggregation process so that the FL process converge faster. attestedFL increased the accuracy of the model in different FL settings, under different attacking patterns, and scenarios e.g., attacks performed at different stages of the convergence, colluding attackers, and continuous attacks.

关键词： Training Behavioral sciences Federated learning Data models Servers security Computational modeling Intrusion detection distributed processing Privacy security and privacy intrusion detection systems distributed systems security federated learning poisoning attack behavior

来源：评论

学校读者我要写书评

暂无评论

Exposing Stealthy Wash Trading on Automated Market Maker Exchanges

引用

ACM TRANSACTIONS ON INTERNET TECHNOLOGY 2024年第4期24卷 1-30页

作者： Gan, Rundong Wang, Le Xue, Liang Lin, Xiaodong Univ Guelph Sch Comp Sci Guelph ON Canada York Univ Sch Informat Technol Toronto ON Canada Univ Guelph Guelph ON Canada

Decentralized Finance (DeFi), a pivotal component of the emerging Web3 landscape, is gaining popularity but remains vulnerable to market manipulations, such as wash trading. Wash trading is an illegal practice, where traders buy and sell assets to themselves within cryptocurrency exchanges to artificially inflate trading volumes and distort market perceptions. However, current research primarily focuses on traditional exchanges based on the Order-book mechanism (similar to stock markets), while ignoring the Automated Market Maker (AMM) exchanges, which dominate over 75% of the market and represent a significant innovation within the DeFi. This study utilizes entity recognition technology to detect wash trading on AMM exchanges within Ethereum-like systems, based on the understanding that colluding addresses (perceived as the same entity) must use ETH for transaction fees and exhibit direct or indirect ETH transfer links. We identify wash trading when addresses with transfer connections almost simultaneously buy and sell assets while their total asset holdings remain nearly constant. This comprehensive blockchain network analysis, compared to focusing solely on transactions within exchanges, unveils covert wash trading activities. Our detection method achieves a 95.9% recall and a 96.7% true negative rate in identifying pools affected by wash trading, demonstrating its superiority over existing methods. Furthermore, we apply our method to 98,945 pools from Uniswap V2 & V3 (the most popular AMM exchanges on Ethereum) and identify 1,070,626 abnormal transactions, totaling $27.51 billion in trading volume. Analysis of these transactions uncovers insights into wash traders' behaviors, including the utilization of multiple addresses and the dual roles of certain addresses as wash traders and liquidity providers. These insights are crucial for developing more effective strategies to combat fraudulent activities in the DeFi ecosystem and enhance financial scrutiny.

关键词： security and privacy Applied computing distributed systems security Economics

来源：评论

学校读者我要写书评

暂无评论

建议与咨询留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

时间限定

文献类型

馆藏选择

核心期刊

语言

文献类型

帮助

文字说明：

检索规则说明：

检索范例：

分类表

所选分类

限定检索结果

文献类型

馆藏范围

日期分布

学科分类号

主题

机构

作者

语言

请选择保存的检索档案：

请选择收藏分类：

通借通还

建议与咨询 留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

时间限定

文献类型

馆藏选择

核心期刊

语言

文献类型

帮助

文字说明：

检索规则说明：

检索范例：

分类表

所选分类

限定检索结果

文献类型

馆藏范围

日期分布

学科分类号

主题

机构

作者

语言

请选择保存的检索档案： 新增检索档案 确定 取消

请选择收藏分类： 新增自定义分类 确定 取消

通借通还

建议与咨询留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

请选择保存的检索档案：

请选择收藏分类：