检索结果-内蒙古大学图书馆

IEEE Annual International computer Software and Applications Conference (COMPSAC)

作者： Liangxing Liu Weili Han Elisa Bertino Tao Zhou Xinyi Zhang Software School Fudan University Shanghai China Ministry of Public Security Key Lab of Information Network Security Shanghai China Department of Computer Science Purdue University West Lafayette USA

Performance is a key issue in the implementation of tools for policy-based management of large and complex networked systems. When a system is characterized by millions of policies, the policy decision point is usually a performance bottleneck for the whole system. Although a few researchers have proposed cache-based methods to improve the efficiency of the policy decision point, the mutable variables, e.g., time, location, and temperature, are usually hard to be dealt with. The reason is that when applicable policies contain mutable variables, the policy decision point has to re-evaluate conditions in policies for events with the same targets. This paper thus proposes a novel Mutable Variable Aware Cache mechanism, by which the entries in the cache are aware of the mutable variables. The conditions or sub-conditions that do not contain mutable variables in the applicable policies will be evaluated once during the life cycle of a policy decision point for specific events, and the evaluation results will be appended to the cache. This optimization can greatly reduce the cost of fetching the values of mutable variables and evaluating the conditions or sub-conditions. It can, therefore, improve the performance of the policy decision point. We classify the possible situations and propose key algorithms. We also conduct a performance evaluation, which shows that the Mutable Variable Aware Cache mechanism can significantly improve the efficiency of a policy decision point.

关键词： Temperature sensors Monitoring Temperature measurement Context modeling Access control

来源：评论

学校读者我要写书评

暂无评论

Improvement on Ahn et al.'s RSA P-homomorphic signature scheme

Improvement on Ahn et al.'s RSA P-homomorphic signature sche...

引用

8th International ICST Conference on security and Privacy in Communication networks, SecureComm 2012

作者： Wang, Zhiwei College of Computer Nanjing University of Posts and Telecommunications Nanjing Jiangsu 210003 China State Key Laboratory of Information Security Institute of Information Engineering Chinese Academy of Sciences Beijing 100190 China Jiangsu High Technology Research Key Laboratory for Wireless Sensor Networks Nanjing Jiangsu 210003 China Key Lab. of Broadband Wireless Communication and Sensor Network Technology Nanjing University of Posts and Telecommunications Ministry of Education Jiangsu Province Nanjing Jiangsu 210003 China

ISBN: (纸本)9783642368820

P-homomorphic signature is a general framework for computing on authenticated data, which is recently proposed by Ahn et al. With P-homomorphic signature, any third party can derive a signature on the object message m′ from a signature of m, if m′ and m satisfy P(m,m′) = 1 for some predicate P which denotes the authenticatable relationship between m′ and m. Ahn et al. proposed a RSA P-homomorphic signature scheme by using a RSA accumulator, which is very efficient in space. However, the computational cost of verification and derivation is very heavy. We present an improved P-homomorphic signature scheme based on factoring problem. In our construction, the time efficiency of both verification and derivation are much better than Ahn's scheme. © 2013 ICST Institute for computer Science, Social Informatics and Telecommunications Engineering.

关键词： Authentication

来源：评论

学校读者我要写书评

暂无评论

Hybrid relaying and jamming for secure two-way relay networks with passive eavesdroppers

Hybrid relaying and jamming for secure two-way relay network...

引用

IEEE International Symposium on Personal, Indoor and Mobile Radio Communications (PIMRC)

作者： Hui-Ming Wang Xiang-Gen Xia Qinye Yin Pengcheng Mu School of Electronic and Information Engineering Key Lab for Intelligent Networks and Network Security Xi'an Jiaotong University Xi'an Shaanxi P. R. China Department of Electrical and Computer Engineering Chonbuk National University Jeonju DE Korea

Exploiting the idea of cooperative communications is an efficient way to improve the physical-layer security of a wireless transmission in the presence of passive eavesdroppers. In this paper, we propose a hybrid cooperative relaying and jamming scheme to enhance the security of a two-way relay network, where some intermediate nodes help to relay the signal to the legitimate terminals via distributed beamforming and the others jam the eavesdropper simultaneously. In such a way, both two cooperative phases of the data transmission are protected. Subjected to the more practical per-node power constraint of each node and without the channel state information (CSI) of the eavesdropper, we propose a scheme to enhance the secrecy of the two terminals. It is shown that the problem can be transformed into a semidefinite programming (SDP) problem with an additional rank-1 constraint. We then develop a penalty function method and an iterative algorithm to solve such a problem efficiently, instead of the popular semi-definite relaxation (SDR) and randomization techniques proposed in the previous literatures. Simulations show that the proposed hybrid scheme greatly improves the security of the two-way relay networks.

关键词： Relays Jamming security Noise Array signal processing Optimization Wireless communication

来源：评论

学校读者我要写书评

暂无评论

Microblog bursty feature detection based on dynamics model

Microblog bursty feature detection based on dynamics model

引用

2012 International Conference on Systems and Informatics, ICSAI 2012

作者： Du, Yanyan Wu, Wei He, Yanxiang Liu, Nan School of Computer Wuhan University Wuhan China Key Lab of Information Network Security Ministry of Public Security Shanghai 201204 China

ISBN: (纸本)9781467301992

Microblog is becoming more and more popular in our life. Due to the numerous information on this platform, it is very useful to detect bursty topic in real-time to help people get essential information quickly. As a necessary stage, detecting busty feature effectively is important for bursty topic detection. Based on dynamics model, we propose a new microblog bursty feature detection method. Firstly, we compute term weight taking account of both term frequency and tweet weight, where tweet weight factors include retweet number, comments number and time fading factor. After computing all terms' weight, a bursty feature detection method is proposed based on dynamics model. On the analogy of physical dynamics model, we compute each term's momentum by using MACD (Moving Average Convergence/Divergence) and determine whether it is a bursty feature in a given time interval. We employ our method to detect the bursty terms of Sina tweets with a series of experiments. It is demonstrated that our method is able to detect bursts for news terms accurately and efficiently. © 2012 IEEE.

关键词： Dynamics

来源：评论

学校读者我要写书评

暂无评论

Robust evidence detection of copy-rotate-move forgery in image based on singular value decomposition

Robust evidence detection of copy-rotate-move forgery in ima...

引用

14th International Conference on information and Communications security, ICICS 2012

作者： Yong, Liu Meishan, Huang Bogang, Lin College of Mathematics and Computer Science Fuzhou University Fuzhou 350108 China Key Lab. of Information Security of Network Systems Fuzhou 350108 China

ISBN: (纸本)9783642341281

Region Copy-Move forgery, in which a part of the image is copied and then pasted to another part of the same image. Some important goals and sensitive objects can be hidden imperceptibly;this forgery is at the rather important position in a variety of forensic technology research. But the literatures published merely are confined without geometric distortion. And some algorithms focus on the special forgery's model. In order to improve the accuracy of the current algorithms, a new detection is proposed by constructing the circles rather than the traditional ways which were based on the square. The seven characterizes are constructed according to singular value decomposition. Using main rotation angle based on the radial moment and the proportion of constraint remove the error mark. Finally the dictionary-ordering method is applied to save the time-consuming. The experiment shows that this newly characteristic can locate the area where was tampered. © 2012 Springer-Verlag.

关键词： Singular value decomposition

来源：评论

学校读者我要写书评

暂无评论

The Double-System Architecture for Trusted OS

引用

Physics Procedia 2012年 25卷 2006-2013页

作者： Yong Zhao Yu Li Jing Zhan College of Computer Science and Technology Beijing University of Technology Beijing 100124 China Key Lab of Information Network Security Ministry of Public Security Shanghai 201204 China

With the development of computer science and technology, current secure operating systems failed to respond to many new security challenges. Trusted operating system (TOS) is proposed to try to solve these problems. However, there are no mature, unified architectures for the TOS yet, since most of them cannot make clear of the relationship between security mechanism and the trusted mechanism. Therefore, this paper proposes a double-system architecture (DSA) for the TOS to solve the problem. The DSA is composed of the Trusted System (TS) and the security System (SS). We constructed the TS by establishing a trusted environment and realized related SS. Furthermore, we proposed the Trusted information Channel (TIC) to protect the information flow between TS and SS. In a word, the double system architecture we proposed can provide reliable protection for the OS through the SS with the supports provided by the TS.

关键词： Double System Architecture Trusted information Channel Trusted Operating System Trusted Computing

来源：评论

学校读者我要写书评

暂无评论

The Double-System Architecture for Trusted OS

The Double-System Architecture for Trusted OS

引用

2012 International Conference on Solid State Devices and Materials Science(SSDMS 2012)

作者： Yong Zhao Yu Li Jing Zhan College of Computer Science and Technology Beijing University of Technology Key Lab of Information Network Security Ministry of Public Security

With the development of computer science and technology, current secure operating systems failed to respond to many new security challenges. Trusted operating system(TOS) is proposed to try to solve these problems. However, there are no mature, unified architectures for the TOS yet, since most of them cannot make clear of the relationship between security mechanism and the trusted mechanism. Therefore, this paper proposes a double-system architecture(DSA) for the TOS to solve the problem. The DSA is composed of the Trusted System(TS) and the security System(SS). We constructed the TS by establishing a trusted environment and realized related SS. Furthermore, we proposed the Trusted information Channel(TIC) to protect the information flow between TS and SS. In a word, the doublesystem architecture we proposed can provide reliable protection for the OS through the SS with the supports provided by the TS.

关键词： Double System Architecture Trusted information Channel Trusted Operating System Trusted Computing

来源：评论

学校读者我要写书评

暂无评论

Secure Authentication Protocol of RFID System Based on Access Control

Secure Authentication Protocol of RFID System Based on Acces...

引用

2012 3rd International Conference on information Technology for Manufacturing Systems(ITMS 2012)

作者： Gui-Chao Wang Ai-Li Zhang Yong-Zhen Li Network & information Security Lab. Dept.of Computer Science & Technology Yanbian University

The security and privacy problem of low-cost RFID system is one of the most difficult conundrums in the RFID research field. A protocol based on access control was proposed in this paper, which used the reader access, partial ID, XOR operation, etc. By using of the reader authority distribution method, the unauthorized tag`s information was prevented give-away and it can avoid the lawful reader attack, location privacy attack, etc. Function of the reader was fully used. At the same time, the back-end database`s load and the time of the tag`s answer were reduced. Compared with several traditional security authentication protocols, this protocol is more security, lower energy consumption and more suitable for low-cost RFID system.

关键词： Authentication Protocol RFID System Access Control

来源：评论

学校读者我要写书评

暂无评论

Efficient (t, n) secret sharing scheme against cheating

引用

Journal of Computational information Systems 2012年第9期8卷 3815-3821页

作者： Liu, Yanxiao Zhang, Yuqing Hu, Yupu Key Lab. of Computer Networks and Information Security of Ministry of Education Xidian University China National Computer Network Intrusion Protection Center GUCAS China

A (t, n) secret sharing (SS) scheme can be divided into two protocols: share generation protocol and secret reconstruction protocol. In share generation protocol, a mutually trusted dealer selects a secret and distributes shares to shareholders secretly;in secret reconstruction protocol, a group of t qualified shareholders pool their shares together to reconstruct the secret. However, in secret reconstruction protocol, dishonest shareholders (i.e., cheaters) can pool forged shares to fool honest shareholders. By this way, the cheaters can recover the legitimate secret exclusively, and the honest shareholders get nothing but a fake secret. In this paper, we propose a (t, n)SS that is capable of detecting such cheating fact efficiently. Our scheme is an extension of Shamir's (t, n)SS that uses a symmetric bivariate polynomial. In addition, our scheme adopts no security assumption, it is unconditional secure. © 2011 by Binary information Press.

关键词： Shareholders

来源：评论

学校读者我要写书评

暂无评论

Research on Separation of Three Powers Architecture for Trusted OS

引用

Physics Procedia 2012年 25卷 1168-1175页

作者： Yu Li Yong Zhao Siyuan Xin College of Computer Science and Technology Beijing University of Technology Beijing 100124 China Key Lab of Information Network Security Ministry of Public Security Shanghai 201204 China Institute of Electronic Technology the PLA Information Engineering University

The privilege in the operating system (OS) often results in the break of confidentiality and integrity of the system. To solve this problem, several security mechanisms are proposed, such as Role-based Access Control, Separation of Duty. However, these mechanisms can not eliminate the privilege in OS kernel layer. This paper proposes a Separation of Three Powers Architecture (STPA). The authorizations in OS are divided into three parts: System Management Subsystem (SMS), security Management Subsystem (SEMS) and Audit Subsystem (AS). Mutual support and mutual checks and balances which are the design principles of STPA eliminate the administrator in the kernel layer. Furthermore, the paper gives the formal description for authorization division using the graph theory. Finally, the implementation of STPA is given. Proved by experiments, the Separation of Three Powers Architecture we proposed can provide reliable protection for the OS through authorization division.

关键词： Separation of Three Powers Architecture Authorization Graph Separation of Privilege Trusted Operating System

来源：评论

学校读者我要写书评

暂无评论

建议与咨询留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

时间限定

文献类型

馆藏选择

核心期刊

语言

文献类型

帮助

文字说明：

检索规则说明：

检索范例：

分类表

所选分类

限定检索结果

文献类型

馆藏范围

日期分布

学科分类号

主题

机构

作者

语言

请选择保存的检索档案：

请选择收藏分类：

通借通还

建议与咨询 留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

时间限定

文献类型

馆藏选择

核心期刊

语言

文献类型

帮助

文字说明：

检索规则说明：

检索范例：

分类表

所选分类

限定检索结果

文献类型

馆藏范围

日期分布

学科分类号

主题

机构

作者

语言

请选择保存的检索档案： 新增检索档案 确定 取消

请选择收藏分类： 新增自定义分类 确定 取消

通借通还

建议与咨询留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

请选择保存的检索档案：

请选择收藏分类：