检索结果-内蒙古大学图书馆

2011 IEEE Conference on computer Communications Workshops, INFOCOM WKSHPS 2011

作者： Feng, Jingyu Zhang, Yuqing Chen, Shenglong Fu, Anmin Key Lab of Computer Networks and Information Security Ministry of Education Xidian University Xi'an 710071 China National Computer Network Intrusion Protection Center Graduate University Chinese Academy of Sciences Beijing 100049 China

ISBN: (纸本)9781457702488

Reputation systems are having increasing influence on guarding P2P networks. However, reputation systems themselves are vulnerable to attack. Due to the nature of aggregating ratings, the reputation scores of certain peers can be manipulated intentionally by adversaries. In this paper, we report the discovery of a novel attack, named RepHi (Reputation Hijack), against rating-based reputation systems, such as those used in P2P networks. In RepHi, attackers disguise as routers to hijack and modify ratings. This attack can cause multi-dimensional damage, that is, undermining reputation systems, manipulating reputation and hurting the credibility of raters. We conduct an investigation on RepHi, including basic ideas and case studies. Compared with other known attacks, the RepHi attackers require less efforts to achieve the similar goals. © 2011 IEEE.

关键词： Peer to peer networks

来源：评论

学校读者我要写书评

暂无评论

A Provably Secure Identity-based Authentication Multiple Key Agreement Protocol

引用

China Communications 2011年第2期8卷 26-33页

作者：谭作文 School of Information Technology Jiangxi University of Finance and Economics Key Lab of Network Security and Cryptology School of Mathematics and Computer ScienceFujian Normal University

An authentication multiple key agreement protocol allows the users to compute more than one session keys in an authentication way. In the paper,an identity-based authentication multiple key agreement protocol is proposed. Its authentication part is proven secure against existential forgery on adaptively chosen message and ID attacks under the random oracle model upon the CDH assumptions. The session keys are proven secure in a formal CK security model under the random oracle model upon the CBDH assumptions. Compared with the previous multiple key agreement protocols,it requires less communication cost.

关键词： authentication identity-based key agreement

来源：评论

学校读者我要写书评

暂无评论

A privilege separation method for security commercial transactions

A privilege separation method for security commercial transa...

引用

作者： Chen, Yasha Hu, Jun Gai, Xinmao Sun, Yu Department of Electrical and Information Engineering Naval University of Engineering Wuhan Hubei 430033 China Key Lab of Information Network Security Ministry of Public Security Shanghai 201204 China School of Computer Beijing University of Technology Beijing 100124 China School of Computer National University of Defense Technology Changsha Hunan 410073 China

ISBN: (纸本)9783642236013

Privilege user is needed to manage the commercial transactions, but a super-administrator may have monopolize power and cause serious security problem. Relied on trusted computing technology, a privilege separation method is proposed to satisfy the security management requirement for information systems. It authorizes the system privilege to three different managers, and none of it can be interfered by others. Process algebra Communication Sequential Processes is used to model the three powers mechanism, and safety effect is analyzed and compared. © 2011 ICST Institute for computer Science, Social Informatics and Telecommunications Engineering.

关键词： Separation

来源：评论

学校读者我要写书评

暂无评论

Walsh spectrum of cryptographically concatenating functions and its applications in constructing resilient Boolean functions

引用

Journal of Computational information Systems 2011年第4期7卷 1074-1081页

作者： Gao, Sheng Ma, Wenping Zhao, Yongbin Zhuo, Zepeng Key Lab. of Computer Network and Information Security Ministry of Education Xidian University Xi'an 710071 China

Resilient Boolean functions have many applications in fault-tolerant distributed computing and quantum cryptographic key. Construction of this class functions with more cryptographic criteria such as high nonlinearity and high algebraic degree is an important problem in design of the stream cipher systems. As is known to all, the Walsh spectrum is the fundamental tool in analysis of cryptographic Boolean functions. In this paper, we use the Walsh transform as a basic tool to investigate cryptographic functions. Firstly, the exact Walsh spectrum relationship between a Boolean function and its subfunctions is obtained. Then by using this result, we propose a novel method of constructing new disjoint spectra functions from the old ones. Furthermore, an algorithm for recursively constructing highly nonlinear resilient functions is presented, which is suitable for parallel processing. The experimental results show the correctness and efficiency of the proposed algorithm. Copyright © 2011 Binary information Press.

关键词： Cryptography

来源：评论

学校读者我要写书评

暂无评论

Unicode-proof code injection attack on Windows CE A novel approach of evading intrusion detection system for mobile network

Unicode-proof code injection attack on Windows CE A novel ap...

引用

IEEE International Conference on Communication Software and networks

作者： Song, Yang Zhang, Yuqing Sun, Yingfei Yan, Jingbo National Computer Network Intrusion Protection Center Graduate University Chinese Academy of Sciences Beijing China School of Information Science and Engineering Graduate University Chinese Academy of Sciences Beijing China Key Lab of Computer Networks and Information Security Ministry of Education Xidian University Xian China

ISBN: (纸本)9781612844855

Code injection attack is a major way of spreading malware on network. The key section of code injection attack is a small piece of code, called shellcode, which performs unauthorized operations when it is injected into software as part of valid data. On Windows CE, input data are often encoded using Unicode before being processed. In such cases, shellcode should be built in a way that bypasses such encoding;that is, it should be Unicode-proof. Unicode-proof shellcode also has great advantage of evading instruction detection system. However, it is quite difficult to build Unicode-proof shellcode for the ARM architecture, on which most embedded devices are developed, because the subset of instructions that can be used to write Unicode-proof shellcode is very limited. Moreover, the instruction cache in the ARM processor restricts the application of self-modifying code, which is frequently used in shellcode writing. This novel research proposes an approach to building ARM Unicode-proof shellcode on Windows CE under these constraints. The approach applies to all versions of ARM processors and Windows CE, including systems evolved from Windows CE, such as Windows Mobile and Windows Phone. The shellcode is tested on three currently available devices. © 2011 IEEE.

关键词： Malware

来源：评论

学校读者我要写书评

暂无评论

Securing low-cost RFID systems: An unconditionally secure approach

Securing low-cost RFID systems: An unconditionally secure ap...

引用

作者： Alomair, Basel Lazos, Loukas Poovendran, Radha Center of Excellence in Information Assurance King Saud University Riyadh Saudi Arabia Network Security Lab University of Washington Seattle WA United States Electrical and Computer Engineering Department University of Arizona Tucson AZ United States

In this paper, we explore a new direction towards solving the identity authentication problem in RFID systems. We break the RFID authentication process into two main problems: message authentication and random number generation. For parties equipped with a good source of randomness and a secure cryptographic primitive to authenticate messages, the literature of cryptography is rich with well-studied solutions for secure identity authentication. However, the two operations, random number generation and message authentication, can be expensive for low-cost RFID tags. In this paper, we lay down the foundations of a new direction towards solving these problems in RFID systems. We propose an unconditionally secure direction for authenticating RFID systems. We use the fact that RFID readers are computationally powerful devices to design a protocol that allows RFID readers to deliver random numbers to RFID tags in an unconditionally secure manner. Then, by taking advantage of the information-theoretic security of the transmitted messages, we develop a novel unconditionally secure message authentication code that is computed with a single multiplication operation. The goal of this work is to bring more research to the design of such unconditionally secure protocols, as opposed to the computationally secure protocols that have been proposed extensively, for the purpose of suiting the stringent computational capabilities of low-cost devices. © 2011 IOS Press and the authors. All rights reserved.

关键词： Radio frequency identification (RFID)

来源：评论

学校读者我要写书评

暂无评论

Low-cost authentication protocol of RFID system using One block Hash function

Low-cost authentication protocol of RFID system using One bl...

引用

International Conference on computer Sciences and Convergence information Technology (ICCIT)

作者： Shi-mei Jin Mo You Yong-zhen Li Network & Information Security Lab. Department of Computer Science and Technology Yanbian University Yanji Jilin China

RFID has been widely used in personal life. To the security problems of RFID, there are many different kinds of strategies and protocol, This article point out the disadvantages of these protocols, then come up with One block Hash function, and make a comparison with the most popular MD5 algorithm, improve the RFID authentication protocol by One block Hash function, and show the comparison with the now most popular algorithm on the security, computation and memory capability. This RFID authentication protocol based on one block Hash function can guarantee the safety, meanwhile, reduce the amount of computation of the tag, and achieve the function of low-power in authentic process of tags. It has resolved the two shackles in the development of the RFID system.

关键词： Protocols Radiofrequency identification Databases Authentication Privacy Safety

来源：评论

学校读者我要写书评

暂无评论

Two Quantum Dialogue Schemes Based on Bell States and Two-Qutrit Entangled States Without information Leakage

Two Quantum Dialogue Schemes Based on Bell States and Two-Qu...

引用

中国密码学会2011年会

作者： He Wang Yu-Qing Zhang Yu-Pu Hu Yang-Li Tian Zhen-Chao Zhu Key Lab of Computer Networks and Information Security of Ministry of Education Xidian University X National Computer Network Intrusion Protection Center GUCAS Beijing 100049 China Key Lab of Computer Networks and Information Security of Ministry of Education Xidian University X

1 Introduction With the development of QSDC, the bidirectional QSDC protocol[8] was proposed in 2004, in which the two communicators can exchange their secret messages simultaneously, it is also called quantum ***, there is a serious problem called "information leakage" or "classical correlation" in some of these quantum dialogue protocols[8-10], which is pointed out by Gao et al.[16]and Tan [17]independently.

关键词：

来源：评论

学校读者我要写书评

暂无评论

Design of bijective S-boxes satisfying the strict avalanche criterion

引用

Journal of Computational information Systems 2011年第6期7卷 1967-1973页

作者： Gao, Sheng Ma, Wenping Shen, Dongsu School of Telecommunications Engineering Xidian University Xi'an 710071 China Key Lab. of Computer Network and Information Security Xidian University Xi'an 710071 China

Much of the security of many block ciphers depends on the cryptographic properties of the substitution boxes (S-boxes). Although many design methods of S-boxes with desirable properties have been studied, there are few constructive methods for S-boxes satisfying the strict avalanche criterion (SAC) which is one of the most important cryptographic criteria for an S-box. In this paper, we combine our previous construction method of SAC S-boxes and the existing one to design bijective S-boxes with the SAC property. The new method is simple yet effective and overcomes the disadvantage of our previous work that could not assure that the SAC S-boxes with the same magnitudes of input and output have the bijective property. Finally, Some examples on how to construct the bijective SAC S-boxes are given. Copyright © 2011 Binary information Press.

关键词： Cryptography

来源：评论

学校读者我要写书评

暂无评论

On balanced semi-bent functions with high algebraic degrees

引用

IEICE Transactions on Fundamentals of Electronics, Communications and computer Sciences 2011年第3期E94-A卷 1019-1022页

作者： YeFeng, H.E. WenPing, M.A. Ministry of Education Key Lab Computer Network and Information Security Xidian University Xi'an 710071 China School of Telecommunications and Information Engineering Xi'an Institute of Posts and Telecommunications Xi'an 710121 China

A class of balanced semi-bent functions with an even number of variables is proposed. It is shown that they include one subclass of semi-bent functions with maximum algebraic degrees. Furthermore, an example of semi-bent functions in a small field is given by using the zeros of some Kloosterman sums. Based on the result given by S. Kim et al., an example of infinite families of semi-bent functions is also obtained. © 2011 The Institute of Electronics, information and Communication Engineers.

关键词： Boolean functions

来源：评论

学校读者我要写书评

暂无评论

建议与咨询留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

时间限定

文献类型

馆藏选择

核心期刊

语言

文献类型

帮助

文字说明：

检索规则说明：

检索范例：

分类表

所选分类

限定检索结果

文献类型

馆藏范围

日期分布

学科分类号

主题

机构

作者

语言

请选择保存的检索档案：

请选择收藏分类：

通借通还

建议与咨询 留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

时间限定

文献类型

馆藏选择

核心期刊

语言

文献类型

帮助

文字说明：

检索规则说明：

检索范例：

分类表

所选分类

限定检索结果

文献类型

馆藏范围

日期分布

学科分类号

主题

机构

作者

语言

请选择保存的检索档案： 新增检索档案 确定 取消

请选择收藏分类： 新增自定义分类 确定 取消

通借通还

建议与咨询留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

请选择保存的检索档案：

请选择收藏分类：