 |
|
 |
|
 |
|
 |
|
 |
|
 |
|
 |
|
 |
|
Abstracts of the papers
Invited paper
Session 2: Wireless Networking
Next Generation Communications and Secure Seamless Handover
Anand R. Prasad, Alf Zugenmaier, and Peter Schoo
DoCoMo Communications Lab Europe GmbH
Abstract:
The next generation communications system will constitute of a heterogeneous access network technologies under a common IP layer. This next generation is often called beyond third generation, B3G. The heterogeneity present in these networks leads to security challenges not present in homogeneous networks. Besides the security issues there is also the issue of providing fast handover such that the user does not perceive any change in service quality or in other words seamless handover.
In this paper we will first define B3G systems and present some of the issues related to it. Next we will propose approaches to secure and seamless handover in a B3G system.
Paper#0011
Session 1: Broadband Networking Applications
Security Analysis and Solutions for Impacts from IP Telephony on Critical Infrastructure
Feng Cao and Saadat Malik
Critical Infrastructure Assurance Group Cisco Systems, INC
Abstract:
Voice over IP (VoIP) is being adopted to replace the traditional circuit switched infrastructure for telephony services. This trend has an enormous impact on the Critical Infrastructure sectors which will progressively become more dependent in part or as a whole on VOIP services. Phone communications and its security is a relevant concern for most critical infrastructure sector organizations today. With passage of time this concern will morph into a new set of challenges and opportunities brought forward by the deployment of VOIP in these organizations.
This study attempts to outline the potential security issues faced by the Critical Infrastructure sectors as they transform their traditional phone systems into VOIP systems. Security analysis is provided to understand various impacts of VoIP security challenges in the new convergent network paradigm. Some recommendations are made on how to address many issues of VoIP security along the process of adopting IP Telephony into critical infrastructure.
Paper#0014
Session 3: Security Protocols and Trust Management
Caching Alternatives for a MANET-Oriented OCSP Scheme
Dr Giannis F. Marias, K. Papapanagiotou and P. Georgiadis
Dept. of Informatics and Telecommunications, University of Athens, Greece
Abstract:
Even though mobile ad hoc networks (MANETs) have been receiving increasing attention for more than a decade, many issues still remain unsolved, including the implementation and design of adequate security and trust mechanisms. The infrastructure-less nature of MANETs renders trust establishment a rather complex issue. Many solutions using public key cryptography and digital certificates have been proposed in this direction. However, the problem of certificate revocation and certificate status information distribution in MANETs has not yet been fully addressed. ADOPT (Ad-hoc Distributed OCSP for Trust) proposes the deployment of a lightweight, distributed, on-demand scheme based on cached OCSP responses, which can efficiently provide up-todate certificate status information. As accurate and current revocation information is critical for any application based on public key certificates, ADOPT's caching mechanism should ensure that cached responses are updated regularly. This paper discusses caching issues and time parameters concerning ADOPT and proposes various alternatives that fit into different scenarios.
Paper#0018
Session 1: Broadband Networking Applications
Design and Implementation of a Tunable Encryption Service for Networked Applications
Stefan Lindskog and Anna Brunstrom
Department of Computer Science - Karlstad University
Abstract:
To achieve the best possible QoS tradeoff between security and performance for networked applications, a tunable and differential treatment of security is required. In this paper, we present the design and implementation of a tunable encryption service. The proposed service is based on a selective encryption paradigm in which the applications can request a desired encryption level. Encryption levels are selected by the applications at the inception of sessions, but can be changed at any time during their lifetime. A prototype implementation is described along with an initial performance evaluation. The experimental results demonstrate that the proposed service offers a high degree of security adaptiveness at a low cost.
Paper#0095
Session 2: Wireless Networking
New Approach for Selfish Nodes Detection in Mobile Ad hoc Networks
Djamel Djenouri
Basic Software Laboratory, CERIST Center of Research, Algiers, Algeria
Nadjib Badache
Computer Science Department, USTHB University, Algiers, Algeria
Abstract:
A mobile ad hoc network (MANET) is a temporary infrastructureless network, formed by a set of mobile hosts that dynamically establish their own network on the fly without relying on any central administration. Mobile hosts used inMANET have to ensure the services that were ensured by the powerful fixed infrastructure in traditional networks, the packet forwarding is one of these services.
The resource limitation of nodes used in MANET, particulary the energy limitation along with the multi-hop nature of this network may cause a new phenomena which does not exist in traditional networks. To save its energy a node may behave selfishly and uses the forwarding service of other nodes without correctly forwarding packets for them. This deviation from the correct behavior represents a potential threat against the service availability, one of the most important security requirements. Some solutions have been recently proposed, but almost all these solutions rely on the watchdog technique which suffers from many problems. In this paper we propose a new approach to mitigate some of these problems, and we assess its performance by simulation.
Paper#0096
Session 2: Wireless Networking
Comparison of security protocols in Mobile Wireless Environments:
Tradeoffs between level of security obtained and battery life
Fernando C. Colón Osorio, Kerry McKay and Emmanuel Agu
Computer Science Department, Worcester Polytechnic Institute - USA
Abstract:
As the popularity of wireless networks increases, so does the need to protect them. In recent years, many researchers have studied the limitations of the security mechanisms that protect wireless networks. Technologies such as CPU and memory are increasing and so is their need for power, but battery technology is increasing at a much slower rate, forming a "battery gap".
Because of this, battery capacity plays a major role in the usability of the devices. Although the effect of the network communication card on a mobile device's battery has been widely researched, there has been less research on the effect of adding security mechanisms to mobile devices and their impact on energy usage.
This is a particularly important when one considers, for example, that mobile wireless devices are susceptive to attacks where an attacker can drain a device's battery by simply having it repeadly execute energy intensive programs. In this manuscript, we examine a method for analyzing trade-offs between energy and security proposed by Colón Osorio et al.
This research describes a method to identify the most appropriate security profile for a given application, given battery constraints.
The same method can also be used to discover the minimum battery capacity to maintain a minimum-security profile for a predefined amount of time.
Our results are based both on analytical, as well as experimental studies where current and proposed wireless protocols were evaluated using a representative Internet workload.
Paper#0111
Session 3: Security Protocols and Trust Management
A Security Framework with Trust Management for Sensor Networks
Zhiying Yao, Daeyoung Kim and Insun Lee
Information and Communications - University (ICU), Korea
Kiyoung Kim, Jongsoo Jang
Electronics and Telecommunications Research Institute (ETRI), Korea
Abstract:
Wireless sensor networks are prone to security attacks, which are either common to conventional networks or unique for themselves due to the resource-constraint, susceptibility to physical capture, and wireless nature. Security solutions using cryptographical schemes are not enough, and sometimes not efficient. In this paper, we develop a security framework with trust management, i.e. establishment of trustworthy network environment, to secure sensor networks. For trust management, we explore a distributed trust model, enabling recommendation-based trust and trust-based recommendation, to build reasonable trust relationship among network entities, represented by numerical values, i.e. trust values. And our security framework fully relies on the values to execute security-related actions aiming at the tradeoff between security and network performance.
Paper#0112
Session 2: Wireless Networking
FIrDA-SSL: Experiments with securing communication in PANs
Diana Berbecaru
Dip. di Automatica e Informatica, POLITO, Italy
Abstract:
PANs denote several components in the proximity of a person that are interconnected via wireless connections and that are able also to access broader networks. In PANs, a Personal Operating Space (POS) surrounds the person up to 10 meters in all directions and contains several types of wireless devices that transparently and continuously exchange data. Since a POS "bubble" is also in motion, security is seen as a "big issue" both for intra and inter-PAN communication.
Sensitive data must be protected from becoming accessible to the ever-waiting PAN connections but this must be supported also by the device at a speed that does not force the user to wait for a long time thus reducing as much as possible the explicit user attention. In some cases anonymity is required too.
Clearly one of the first issues to be addressed in PANs is to transfer information securely and we provide a practical approach for this issue. In practice, we want to enable the exchange of "personal" data only to authenticated parties and doing this with standard protocols, client software or commercial products available at the moment.
We developed a tool named FIrDA-SSL (Footprint Irda SSL transfer) for secure transfer of small amounts of data, like a credit card number, frequent flier number or a personal identification information, between devices with infrared ports. We've compared the performance obtained when running FIrDA-SSL on a HP Jornada 720 Windows CE-enabled and having a StrongARM processor at 206 MHz, with the ones on 'powerful' Windows 2000/XP-enabled laptops. FIrDA-SSL connection latency was also confronted with the experiments run in other related work, e.g. on a Palm Pilot platform at 20 MHz running Java 2 MicroEdition (J2ME).
Paper#0115
Session 3: Security Protocols and Trust Management
Full Agreement in BAN Kerberos
Aybek Mukhamedov
University of Birmingham
Abstract:
The paper analyzes BAN Kerberos - a timestamp based key distribution protocol with mutual agent authentication. The protocol is formalized in the strand spaces model and it is shown that BAN Kerberos with minor adjustments guarantees the strongest form of authentication in Lowe's hierarchy of authentication specifications [6] - full agreement on all data items.
Paper#0116
Session 1: Broadband Networking Applications
Advanced Authentication and Authorization for Quality of Service Signaling
Tseno Tsenov and Hannes Tschofenig
Siemens AG
Xiaoming Fu
University of Göttingen, Institute for Informatics
Eckhart Körner
University of Applied Sciences Mannheim
Abstract:
One of the key requirements of today's and future network infrastructures is to provide Quality of Service (QoS) support for end-to-end applications, by distinguishing the application flows and properly handling them in network nodes. As an important component to achieve Internet QoS, explicit signaling schemes for resource reservation have been proposed, which deal with admission, installation and refreshment of QoS reservation state information. To be useful, any QoS signaling protocol should provide a capability for authentication and authorization of the QoS requests, especially in environments where the end points are not trusted by the network nodes. However, existing protocols for QoS signaling encounter a number of authentication and authorization issues, which limit their application scenarios. The advent of NSIS QoS Signaling Layer Protocol (QoS NSLP) offers the prospect to overcome some of these issues. After describing the overall design of QoS NSLP, we present an approach to support advanced authentication and authorization capabilities by using the Extensible Authentication Protocol (EAP). In comparison with existing approaches, this approach, combined with the support for effective interaction with the Authentication, Authorization and Accounting (AAA) infrastructure, provides flexible and extensible authentication and authorization methods for the QoS signaling.
Paper#0119
Session 1: Broadband Networking Applications
Vulnerabilities in SOHO VoIP Gateways
Peter Thermos and Guy Hadsall
The VoPSecurity.org Forum
Abstract:
The technological advancements and equipment cost reductions, aid in the rapid evolution of residential networks, which evolved in to an autonomous ecosystem with more elaborate services and capabilities than previously experienced. The elements in the residential networks are using a combination of hardware, software and communication protocols with inherent security vulnerabilities due to this new configuration. One such component is the Voice Over IP (VoIP) gateway, which in many cases is replacing the current Internet gateway thus providing network as well as VoIP connectivity. The new VoIP gateways are required to provide greater robustness and security than the current Internet gateways since they need to support critical services such as E911 and real-time multimedia applications. This paper reflects the results of a research study that aimed at identifying security issues associated with residential VoIP gateways, including signaling and media routing, implementation, operation, and network management in order to understand their impact on end users and service providers. The findings suggest that attacks such as message, replay, amplification (i.e. Denial of Service or "DoS" ), annoyance (SPIT), and eavesdropping along with misconfiguration and several other weaknesses can have a severe impact on the subscriber's ability to communicate in an emergency or disclosure of sensitive information.
Paper#0122
Session 3: Security Protocols and Trust Management
A Policy-based Approach to Wireless LAN Security Management
George Lapiotis, Byungsuk Kim, Subir Das and Farooq Anjum
Telcordia Technologies, Applied Research
Abstract:
Wireless Ethernet (or Wi-Fi) security management is a challenging area of increased interest due to the widespread deployment of Wireless LANs (WLANs) and their well-known vulnerabilities to various types of attacks, as well as stringent scalability requirements in the dynamic wireless domain. Until the adoption of the latest security standards is complete, users and network assets on deployed WLANs, such as 802.11a/b/g networks, need to be protected from existing security threats without depending on the latest features. In addition, while new standards can protect the unauthorized use of network resource for outsiders, they do not deal with the misuse or misbehaviors by insiders. In this paper we present a hierarchically distributed policy-based system architecture and prototype implementation for WLAN security management. The architecture includes a central Policy Engine that validates policies and computes new configuration settings for network elements when access policies are violated, distributed Wireless Domain Policy Managers with consistent local policy autonomy that coordinate dedicated Local Monitors so as to monitor and control multi-vendor WLAN Access Points (APs). The Local Monitors include wireless intrusion detection modules and wireless AP interface adaptors. Although in this paper we focus on wireless security aspects, the overall architecture can be applied to end-to-end security management of wireline and wireless networks.
Paper#0127
Session 3: Security Protocols and Trust Management
Trust, the "Wisdom of Crowds", and Societal Norms: the Creation, Maintenance, and Reasoning about Trust in Peer Networks
F.C. Colón Osorio and Justin Whitney
Department of Computer Science - Worcester Polytechnic Institute, Worcester
Abstract:
In a peer network environment, which is typical in ad-hoc wireless networks, nodes collaborate to achieve some collective end. There is no hierarchy within the network, all nodes being given equal authority. No channel to nodes outside of the peer network is assumed to exist. In this untraditional environment we must provide traditional security properties and assure fairness in order to enable the secure, collaborative success of the network. One solution is to form a Trusted Domain, and exclude perceived dishonest and unfair members.
Such solutions have previously been intolerant of masquerading, and have su_ered from a lack of precise control over the allocation and exercise of privileges within the Trusted Domain. We introduce a model based on the work of Yang et.al. 2002 and Narasimha et.al. 2003 that provides granular control over privileges, and guards against masquerading. Continued good behavior is rewarded by an escalation of privileges, while requiring an increased commitment of resources. Bad behavior results in expulsion from the Trusted Domain. In colluding with malicious nodes, well behaved nodes risk losing privileges gained over time; collusion is thereby discouraged.
Paper#0128
Session 1: Broadband Networking Applications
Preventing Theft of QoS on Open Platforms
Kwang-Hyun Baek and Sean W. Smith
Department of Computer Science - Dartmouth College - Hanover
Abstract:
As multiple types of traffic converge onto one network (frequently wireless), enterprises face a tradeoff between effectiveness and security. Some types of traffic, such as voice-over-IP (VoIP), require certain quality of service (QoS) guarantees to be effective. The end client platform is in the best position to know which packets deserve this special handling. In many environments (such as universities), end users relish having control over their own machines. However, if end users administer their own machines, nothing stops dishonest ones from marking undeserving traffic for high QoS. How can an enterprise ensure that only appropriate traffic receives high QoS, while also allowing end users to retain control over their own machines?
In this paper, we present the design and prototype of a solution, using SELinux, TCPA/TCG hardware, Diffserv, 802.1x, and EAP-TLS.