Security and Privacy in Communication Networks
15th EAI International Conference, SecureComm 2019, Orlando, FL, USA, October 23-25, 2019, Proceedings, Part II
Published on 10. December 2019
XVII, 509 pages
978-3-030-37231-6 (ISBN)
Description
This two-volume set LNICST 304-305 constitutes the post-conference proceedings of the 15
th
International Conference on Security and Privacy in Communication Networks, SecureComm 2019, held in Orlando, FL, USA, in October 2019.
The 38 full and 18 short papers were carefully reviewed and selected from 149 submissions. The papers are organized in topical sections on blockchains, internet of things, machine learning, everything traffic security communicating covertly, let's talk privacy, deep analysis, systematic theory, bulletproof defenses, blockchains and IoT, security and analytics, machine learning, private, better clouds, ATCS workshop.
More details
Series
Language
English
Place of publication
Cham
Switzerland
Publishing group
Springer International Publishing
Product notice
Reflowable
Illustrations
XVII, 509 p. 174 illus., 113 illus. in color.
File size
29,18 MB
ISBN-13
978-3-030-37231-6 (9783030372316)
DOI
10.1007/978-3-030-37231-6
Schweitzer Classification
Other editions
Additional editions
Songqing Chen | Kim-Kwang Raymond Choo | Xinwen Fu
Security and Privacy in Communication Networks
15th EAI International Conference, SecureComm 2019, Orlando, FL, USA, October 23-25, 2019, Proceedings, Part II
Book
12/2019
Springer
€53.49
Shipment within 7-9 days
Content
- Intro
- Preface
- Organization
- Contents - Part II
- Contents - Part I
- Deep Analytics
- TL
- DR Hazard: A Comprehensive Study of Levelsquatting Scams
- 1 Introduction
- 2 Background
- 3 Finding levelsquatting Domains
- 3.1 System Overview
- 3.2 Implementation of Checkers
- 4 Evaluation
- 5 Measurement
- 5.1 Datasets
- 5.2 Impact of Levelsquatting
- 5.3 Infrastructure
- 6 Characterization
- 6.1 Types of Malicious Activities
- 6.2 Visiting Strategies
- 6.3 An Example of Fake Search Engine
- 7 Browser UI Vulnerabilities
- 8 Discussion
- 9 Related Work
- 10 Conclusion
- References
- Account Lockouts: Characterizing and Preventing Account Denial-of-Service Attacks
- 1 Introduction
- 2 Background and Related Work
- 2.1 Other Application-Layer Availability Attacks
- 2.2 Active Directory (AD)
- 2.3 Middleboxes for Security
- 3 System Overview
- 3.1 Assumptions and Threat Model
- 4 Characterizing the Account Lockout Problem
- 4.1 Case Study: Identifying the Attack Surface in Production
- 4.2 Case Study: Testing Account Lockouts in Production
- 4.3 Characterizing the Risk with Internet Measurements
- 5 Discussion of Potential Countermeasures
- 5.1 Distinct Authentication Pools
- 5.2 Protecting Requests from Residential Networks
- 5.3 Supporting Private Usernames
- 6 Evaluation of the Authentication Pools System
- 6.1 Implementation and Experimental Setup
- 6.2 Security Effectiveness
- 6.3 Performance Evaluation
- 7 Conclusion
- References
- Application Transiency: Towards a Fair Trade of Personal Information for Application Services
- 1 Introduction
- 2 Background
- 2.1 Android OS Overview
- 2.2 Sensitive Resource Access Control
- 3 Application Transiency Design Goals
- 4 Application Transiency Implementation
- 4.1 Enforcing Transiency
- 4.2 Making Transiency Intuitive
- 4.3 Applying Transiency to Popular Applications
- 4.4 Android Implementation: Transiency Launcher
- 5 Evaluation
- 5.1 Characterization of Market Applications
- 5.2 Classification Through Google Play Categories
- 5.3 Implementation Performance
- 6 Case Study: Measuring Impact of Transiency on Data Collection
- 6.1 Metis, the Knowledge Sharing App
- 6.2 Data Collection: Transient vs. Non-transient
- 7 Discussion
- 8 Future Work
- 9 Conclusion
- References
- CustomPro: Network Protocol Customization Through Cross-Host Feature Analysis
- 1 Introduction
- 2 Motivation
- 3 System Overview
- 4 Feature Identification
- 4.1 Execution Tracing
- 4.2 Cross-Host Packet Tainting
- 4.3 Guided Symbolic Execution
- 5 Feature Rewriting
- 5.1 Instruction Identification
- 5.2 Binary Rewriting
- 5.3 Verification
- 6 Implementation
- 7 Evaluation
- 7.1 Customizing OpenSSL
- 7.2 Customizing MQTT
- 8 Discussion
- 9 Related Work
- 10 Conclusion
- References
- Systematic Theory
- On the Security of TRNGs Based on Multiple Ring Oscillators
- 1 Introduction
- 2 Related Work
- 3 Proposed Entropy Estimation Method
- 3.1 Notation and Definitions
- 3.2 Entropy Estimation for SRO-TRNG
- 3.3 Probability Calculation for MRO-TRNG
- 3.4 Lower Bound of Minimum Entropy for MRO-TRNG
- 3.5 Lower Bound of Entropy for MRO-TRNG
- 3.6 Approximate Lower Bound of Entropy
- 3.7 Security Design Parameters
- 4 Simulation Verification
- 4.1 Verification of the Worst Case
- 4.2 MRO-TRNG with Jitter-Free
- 5 Hardware Verification on FPGA
- 5.1 Phase Interlock
- 5.2 Verification
- 6 Conclusion
- A Appendix
- References
- Secrecy on a Gaussian Relay-Eavesdropper Channel with a Trusted Relay
- 1 Introduction
- 2 Preliminaries
- 3 Lower Bounds on the Secrecy Capacity of the Gaussian Relay-Eavesdropper Channel
- 3.1 Direct-Transmission Lower Bound
- 3.2 Multi-hop Lower Bound
- 3.3 Decode-Forward Lower Bound
- 4 The Cut-Set Bound on the Secrecy Capacity
- 5 Conclusion
- References
- Target Information Trading - An Economic Perspective of Security
- 1 Introduction
- 2 Related Work
- 3 System Model and Problem Formulation
- 4 Single Attacker Model
- 4.1 Not Buy Information
- 4.2 Buy Information
- 4.3 Optimal Pricing Decisions of the Data Broker
- 5 Competition Model
- 5.1 Games of Attacking
- 5.2 Games of Purchasing
- 5.3 Optimal Pricing Decisions of the Data Broker
- 6 Extension-Partial Information Model
- 6.1 Games of Attacking
- 6.2 Games of Purchasing
- 6.3 Optimal Pricing Decisions of the Data Broker
- 7 Conclusion
- References
- Cyber Threat Analysis Based on Characterizing Adversarial Behavior for Energy Delivery System
- 1 Introduction
- 2 Overview of Threat Indicators
- 3 Framework
- 3.1 Attack Graph and Action State Model
- 3.2 Mapping to Technique-Tactics
- 4 Path Complexity and Effort Estimation
- 4.1 Vulnerable Component Risk
- 4.2 Technique Priority Score
- 4.3 Correlation Coefficient Calculation
- 4.4 Hardness of a Path
- 5 Implementation and Results
- 6 Conclusion and Future Work
- References
- Bulletproof Defenses
- The Disbanding Attack: Exploiting Human-in-the-Loop Control in Vehicular Platooning
- 1 Introduction
- 1.1 A Motivating Example
- 1.2 Related Work
- 1.3 Organization
- 2 System Model
- 2.1 Vehicle and Platoon Models
- 2.2 Threat Model
- 3 Human-in-the-Loop Attacks
- 3.1 Finding Optimal Disbanding Attack
- 3.2 Simulation Setup
- 3.3 Results
- 4 Attack Mitigation
- 4.1 Optimal Mitigation
- 4.2 Efficient Heuristic Mitigation
- 4.3 Results and Discussion
- 5 Experimental Validation
- 5.1 Hardware Setup
- 5.2 Experimental Results
- 6 Conclusion
- References
- Generic Construction of ElGamal-Type Attribute-Based Encryption Schemes with Revocability and Dual-Policy
- 1 Introduction
- 1.1 Contribution
- 1.2 Outline
- 2 Preliminaries
- 2.1 Notations
- 2.2 Bilinear Map
- 2.3 Access Structure and Monotone Span Program
- 2.4 Definition of ElGamal Type Cryptosystem
- 2.5 Candidates of ElGamal Type Cryptosystem
- 2.6 Tree-Based Revocation Mechanism
- 3 Definition of Revocable ABE and Dual-Policy ABE
- 3.1 Revocable ABE
- 3.2 Security Model of RABE
- 3.3 Definition of DP-ABE
- 3.4 Security Model of DP-ABE
- 4 Proposed Schemes
- 4.1 Generic Construction of Revocable ABE
- 4.2 Generic Construction of Parallel DP-ABE
- 4.3 Generic Construction of Sequential DP-ABE
- 5 Instantiations Based on ElGamal Type Cryptosystem
- 5.1 Instantiations of RABE
- 5.2 An Instantiation of Parallel DP-ABE
- 5.3 An Instantiation of Sequential DP-ABE
- 6 Efficiency Analysis
- 7 Conclusion
- References
- Online Cyber Deception System Using Partially Observable Monte-Carlo Planning Framework
- 1 Introduction
- 2 Security Model
- 2.1 Exploit Dependency Graph
- 2.2 Deploy Fake Nodes
- 2.3 POMDP Model
- 3 Defender's Actions
- 3.1 Utility Function
- 3.2 Cost Function
- 4 Online Deception Algorithm
- 5 Experimental Results and Discussion
- 6 Conclusion
- References
- SEVGuard: Protecting User Mode Applications Using Secure Encrypted Virtualization
- 1 Introduction
- 1.1 Contribution
- 1.2 Related Work
- 1.3 Outline
- 2 Background
- 2.1 Secure Encrypted Virtualization
- 2.2 The KVM API
- 3 Design of SEVGuard
- 3.1 Architectural Overview
- 3.2 Virtual Machine Layout
- 3.3 Host Call Interface
- 4 Implementation
- 4.1 Control Flow Redirections
- 4.2 System Call Trapping
- 4.3 Reserved Guest Area
- 5 Evaluation
- 5.1 Correctness
- 5.2 Performance
- 6 Conclusion and Future Work
- 6.1 Future Work
- 6.2 Conclusion
- References
- Blockchains and IoT
- A Behavior-Aware Profiling of Smart Contracts
- 1 Introduction
- 2 Datasets
- 3 Profiling Without the Consideration of Categories
- 4 Profiling with the Consideration of Categories
- 5 Implications and Discussion
- 6 Related Work
- 7 Conclusion
- References
- A Performance-Optimization Method for Reusable Fuzzy Extractor Based on Block Error Distribution of Iris Trait
- 1 Introduction
- 1.1 Our Contribution
- 1.2 Road Map
- 2 Preliminaries
- 2.1 Entropy
- 2.2 Reusable Fuzzy Extractors
- 2.3 Block Error Distribution
- 2.4 Hadamard Code
- 3 Analysis of Fuzzy Extractor Scheme
- 3.1 Description
- 3.2 Security
- 3.3 Formal Analysis of Performance
- 4 Block Error Distribution and Our Scheme
- 4.1 Analysis of Block Error Distribution
- 4.2 Our Construction
- 5 Experimental Results
- 6 Conclusion
- References
- Detecting Root-Level Endpoint Sensor Compromises with Correlated Activity
- 1 Introduction
- 2 Background and Related Work
- 2.1 OpenFlow and Software-Defined Networking (SDN)
- 2.2 Host-Based SDN
- 2.3 Detecting Compromises on Endpoints
- 3 Correlated Host-Based OpenFlow Sensor Enforcement
- 3.1 Example Endpoint Sensor Compromises
- 3.2 System Overview and Threat Model
- 3.3 Corroborated Sensing Deployment Scenarios
- 3.4 Uncorroborated Data in Endpoint Sensors
- 4 Implementing the CHOSE System
- 4.1 Host Agent for Microsoft Windows
- 4.2 OpenFlow Controller Customization
- 5 Evaluating the Security and Performance of CHOSE
- 5.1 Experiment Setup
- 5.2 Performance Evaluation
- 5.3 Security Evaluation
- 6 Conclusion
- References
- Footprints: Ensuring Trusted Service Function Chaining in the World of SDN and NFV
- 1 Introduction
- 2 Related Work
- 3 Background and Challenges
- 3.1 SFC Working Principles
- 3.2 Challenges
- 4 Problem Statement
- 4.1 System Model
- 4.2 Threat Model
- 5 Proposed Solution
- 5.1 Design Properties
- 5.2 Construction Methodology
- 6 Implementation and Evaluation
- 6.1 Implementation Details
- 6.2 Performance Evaluation
- 7 Conclusion
- References
- Security and Analytics
- Hecate: Automated Customization of Program and Communication Features to Reduce Attack Surfaces
- 1 Introduction
- 2 Hecate Design Overview
- 2.1 Challenges
- 2.2 Problem Statement
- 2.3 Approach and System Architecture
- 3 Feature Identification
- 3.1 Function Recognition
- 3.2 Function Mapping
- 4 Feature Tailoring
- 4.1 Feature Tailoring
- 4.2 Binary Rewriting
- 5 Evaluation
- 5.1 Experiment Setup
- 5.2 Accuracy of Function Mapping
- 5.3 Impact on Program Security
- 6 Related Work
- 7 Conclusion, Future Work and Opportunities
- References
- Phish-Hook: Detecting Phishing Certificates Using Certificate Transparency Logs
- 1 Introduction
- 2 Background
- 2.1 Phishing Attacks
- 2.2 Certificate Transparency
- 3 Related Work
- 4 Phish-Hook
- 4.1 Data Collection
- 4.2 Feature Selection
- 4.3 Classification Workflow
- 4.4 Learning Phase
- 5 Evaluation
- 5.1 Training Dataset
- 5.2 Metrics
- 5.3 Results
- 5.4 Discussion
- 6 Conclusions
- References
- IIFA: Modular Inter-app Intent Information Flow Analysis of Android Applications
- 1 Introduction
- 2 Background
- 2.1 Android Components
- 2.2 Android Intents
- 3 Methodology
- 3.1 Analysis Phase
- 3.2 Reporting Phase
- 4 Evaluation
- 4.1 RQ1: Precision and Soundness of IIFA
- 4.2 RQ2: Evaluating the Scalability of IIFA
- 5 Related Work
- 6 Conclusion
- References
- Power Analysis and Protection on SPECK and Its Application in IoT
- 1 Introduction
- 2 Preliminaries
- 2.1 Specification of SPECK
- 2.2 Power Analysis Attacks
- 3 Correlation Power Analysis on Non-linear Layer of SPECK
- 3.1 Attack Method
- 3.2 Experimental Results
- 4 Correlation Power Analysis on Linear Layer of SPECK
- 5 Countermeasure Against Power Attacks
- 6 Conclusion
- References
- Machine Learning, Privately
- Adversarial False Data Injection Attack Against Nonlinear AC State Estimation with ANN in Smart Grid
- 1 Introduction
- 2 Preliminaries
- 3 ANN-Based AC SE
- 4 Adversarial Model and Attack Formulation
- 4.1 Adversarial Model
- 4.2 Attack Formulation
- 5 Attack Methodology
- 5.1 Solving the Proposed Attack with DE
- 5.2 Solving the Proposed Attack with SLSQP
- 6 Attack Evaluation
- 6.1 Any k Meter Attack
- 6.2 Specific k Meter Attack
- 7 Conclusions
- References
- On Effectiveness of Adversarial Examples and Defenses for Malware Classification
- 1 Introduction
- 2 Background
- 2.1 Threat Model
- 2.2 Adversarial Examples
- 3 Experiments
- 3.1 Datasets
- 3.2 The Victim Model
- 3.3 Feature Selection
- 4 Attack Mechanisms
- 4.1 Jacobian-Based Saliency Maps Attack (JSMA)
- 4.2 Feature Enabling and Disabling
- 4.3 Fast Gradient Sign Method (FGSM)
- 4.4 MalGAN
- 4.5 Attack Effectiveness
- 5 Defense Mechanisms
- 5.1 Distillation
- 5.2 Adversarial Training
- 5.3 Ensembles
- 5.4 Random Feature Nullification
- 6 Discussion
- 7 Related Work
- 8 Conclusion
- References
- PrivC-A Framework for Efficient Secure Two-Party Computation
- 1 Introduction
- 1.1 Our Contribution
- 1.2 Outline
- 2 Related Work
- 3 Preliminaries
- 3.1 Notation
- 3.2 Oblivious Transfer
- 4 Algorithms
- 4.1 Arithmetic Circuit
- 4.2 Yao's Garbled Circuit
- 4.3 Sharing Conversions
- 5 Design of PrivC
- 5.1 Operators
- 5.2 Notes for Fix64
- 6 Evaluation
- 6.1 Experimental Settings
- 6.2 Workloads
- 6.3 Benchmarking of Atomic Operations
- 6.4 Application Performance
- 7 Conclusion
- References
- CoRide: A Privacy-Preserving Collaborative-Ride Hailing Service Using Blockchain-Assisted Vehicular Fog Computing
- 1 Introduction
- 2 Problem Statement
- 2.1 System Model
- 2.2 Security Model
- 2.3 Design Goals
- 3 The Proposed Scheme CoRide
- 3.1 System Initialization
- 3.2 Entity Registration
- 3.3 C-Ride Requesting
- 3.4 C-Ride Responding
- 3.5 C-Ride Termination
- 3.6 User Tracking
- 4 Security and Privacy Analysis
- 5 Performance Analysis
- 5.1 Implementation Details
- 5.2 Experiments on Simulated Network
- 5.3 Comparison with Existing Work
- 6 Conclusion
- References
- Better Clouds
- Non-Interactive MPC with Trusted Hardware Secure Against Residual Function Attacks
- 1 Introduction
- 2 Related Work
- 3 Preliminaries
- 3.1 GNIOT for Non-interactivity and Covert Security
- 3.2 Justification of Using TPMs
- 3.3 Definitions
- 4 High-Level Description of Our Protocol
- 5 Our Protocol
- 6 Proofs
- 6.1 Proof of Correctness and Security
- 7 Conclusions and Future Work
- References
- A Study of the Multiple Sign-in Feature in Web Applications
- 1 Introduction
- 1.1 Contribution
- 2 Background
- 2.1 Multiple Accounts
- 2.2 Capability-Based Access Control: Sharing a File via a Link
- 3 Threat Model
- 4 Google Multiple Accounts
- 5 Dropbox Multiple Accounts
- 5.1 How Dropbox Multiple Accounts Works
- 5.2 Main Problem
- 6 Defense
- 6.1 Server Side Defense
- 6.2 Client Side Defense
- 7 Related Work
- 8 Conclusion
- References
- Authenticated LSM Trees with Minimal Trust
- 1 Introduction
- 2 Preliminaries
- 2.1 LSM Trees and Write-Intensive Workloads
- 2.2 Authenticated Data Structures
- 2.3 Intel Software Guard eXtension (SGX)
- 3 System Overview and Motivation
- 3.1 System Model and Security Goals
- 4 LPAD Protocol: Scheme and Constructions
- 4.1 Design Motivation
- 4.2 Model of LSM Tree
- 4.3 LPAD Scheme and Security
- 4.4 LPAD Construction by a Forest of Merkle Trees
- 5 LPAD Systems
- 5.1 System Design and Implementation
- 5.2 Security Analysis
- 6 Evaluation
- 6.1 Implementation and Enclave Code Size
- 6.2 Performance Evaluation
- 7 Conclusion
- References
- Modern Family: A Revocable Hybrid Encryption Scheme Based on Attribute-Based Encryption, Symmetric Searchable Encryption and SGX
- 1 Introduction
- 2 Related Work
- 3 Architecture
- 4 Cryptographic Primitives
- 5 Modern Family (MF)
- 5.1 Formal Construction
- 6 Security Analysis
- 6.1 SGX Security
- 7 Conclusion
- References
- ATCS Workshop
- A Nature-Inspired Framework for Optimal Mining of Attribute-Based Access Control Policies
- 1 Introduction
- 2 Related Work
- 3 The Problem of ABAC Policy Mining with Minimal Perturbation
- 3.1 Policy Mining Problem
- 3.2 A Measure for Goodness of an ABAC State
- 3.3 A Measure for Minimal Perturbation.
- 4 Methodology
- 4.1 A Particle Swarm Optimization Algorithm for ABAC Policy Mining
- 5 Experiments
- 5.1 Comparison of PSO Performance with the State of the Art
- 5.2 Updating an ABAC Model
- 6 Conclusion and Future Work
- References
- Author Index
