Design and Analysis of Security Protocol for Communication
Description
More details
Other editions
Additional editions
Persons
Dinesh Goyal received his PhD in 2014 on "Secure Video Transmission in a Cloud Network" and is now Dean of Academics as well as a member of the Dept. of Computer Science & Engineering, Suresh Gyan Vihar University, India. His research interests are related to information & network security, image processing, data analytics and cloud computing.
S. Balamurugan is the Director of Research and Development, Intelligent Research Consultancy Services(iRCS), Coimbatore, Tamilnadu, India. He also serves as R&D Consultant for many companies, startups, SMEs and MSMEs. He has published 40 books, 200+ articles in international journals/conferences as well as 27 patents. He is Editor-in-Chief of Information Science Letters and International Journal of Robotics and Artificial Intelligence. His research interests include artificial intelligence, IoT, big data analytics, cloud computing, industrial automation and wearable computing. He is a life member of IEEE, ACM, ISTE and CSI.
Sheng-Lung Peng is a Professor of the Department of Computer Science and Information Engineering at National Dong Hwa University, Hualien, Taiwan. He received PhD degree in Computer Science from the National Tsing Hua University, Taiwan. He is an honorary Professor of Beijing Information Science and Technology University of China, a supervisor of the Chinese Information Literacy Association and of the Association of Algorithms and Computation Theory. His research interests are in designing and analyzing algorithms for bioinformatics, combinatorics, data mining, and networks. He has published more than 100 international conference and journal papers.
O. P. Verma is the Principal at GB Pant Govt. Engineering College, New Delhi, India. Previously, he was at the Department of Computer Science & Engineering, Delhi Technical University, New Delhi, India. His research interests include image processing, soft computing, machine learning, evolutionary computing.
Content
Preface xiii
1 History and Generations of Security Protocols 1
Bright Keswani, Poonam Keswani and Rakhi Purohit
1.1 Introduction 2
1.2 Network Security 2
1.3 Historical Background of Network Security and Network Timeline 4
1.4 Internet Architecture and Security Aspects 5
1.4.1 IPv4 and IPv6 Architecture 6
1.4.1.1 Structure of IPv4 6
1.4.1.2 IPv6 Architecture 7
1.4.2 Attack Through IPv4 8
1.4.2.1 Internet Attacks Common Methods 8
1.4.2.2 Internet Security Technology 10
1.4.3 IPv6 IP Security Issues 11
1.5 Different Aspects of Security of the Network 12
1.6 Evolution of Security Protocols for Network 13
1.6.1 Understanding the Key Components of Network Security 13
1.6.2 A Deep Defense Strategy 14
1.6.3 How Does the Next Generation Network Security System Work Best 15
1.7 Network Security Protocols 17
1.7.1 Application Layer 17
1.7.1.1 Good Privacy (PGP) 17
1.7.1.2 Email/Multipurpose Security (S/MIME) 18
1.7.1.3 HTTP Secure (S-HTTP) 18
1.7.1.4 Hypertext Transfer Protocol (HTTPS) in Secure Sockets Layer 19
1.7.1.5 Secure E-Commerce (SET) 19
1.7.1.6 Kerberos 19
1.7.2 Transport Layer 20
1.7.2.1 Secure Sockets Layer (SSL) 20
1.7.2.2 Transport Layer Security (TLS) 21
1.7.3 Network Layer 21
1.7.3.1 Internet Protocol Security (IPSec) 22
1.7.3.2 Virtual Private Network (VPN) 23
1.7.4 Data Link Layer 24
1.7.4.1 Point-to-Point Protocol (PPP) 24
1.7.4.2 Remote Authentication User Service (RADIO) 24
1.7.4.3 Terminal System Access Control Access Control Equipment (TACACS +) 25
1.8 Current Evolution of Red Security 25
1.8.1 Hardware Development 25
1.8.2 Software Development 27
1.9 Future Security Trends 27
References 27
2 Evolution of Information Security Algorithms 29
Anurag Jagetiya and C. Rama Krishna
2.1 Introduction to Conventional Encryption 30
2.2 Classical Encryption Techniques 31
2.2.1 Substitution Based 32
2.2.1.1 Caesar Cipher 32
2.2.1.2 Monoalphabetic Cipher 32
2.2.1.3 Playfair Cipher 33
2.2.1.4 Polyalphabetic Cipher 35
2.2.2 Transposition Based 36
2.2.2.1 Simple Columnar 36
2.2.2.2 Rail Fence Cipher 37
2.3 Evolutions of Modern Security Techniques 38
2.3.1 Stream Cipher Algorithms 38
2.3.1.1 One Time Pad (OTP) 40
2.3.1.2 RC-4 41
2.3.1.3 A5/1 43
2.3.2 Block Cipher Algorithms 44
2.3.2.1 Feistel Cipher Structure 46
2.3.2.2 Data Encryption Standard (DES) 48
2.3.2.3 Triple Data Encryption Standard (TDES) 56
2.3.2.4 International Data Encryption Algorithm (IDEA) 58
2.3.2.5 Blowfish 60
2.3.2.6 CAST-128 62
2.4 Conclusion 66
References 67
Practice Set 67
Review Questions and Exercises 70
3 Philosophy of Security by Cryptostakes Schemes 79
Hemant Kumar Saini
3.1 Philosophy of Public Key Cryptosystems (p-k Cryptography) 79
3.2 RSA Algorithm 81
3.3 Security Analysis of RSA 84
3.4 Exponentiation in Modular Arithmetic 85
3.5 Distribution of Public Keys 87
3.6 Distribution of Secret Keys Using Public Key Cryptosystems 89
3.7 Discrete Logarithms 91
3.8 Diffie-Hellman Key Exchange 91
3.9 Review Exercise 93
References 94
4 Zero-Share Key Management for Secure Communication Across a Channel 95
P. R. Mahalingam and K. A. Fasila
4.1 Introduction 95
4.2 Background 96
4.3 Zero-Share Key Management System 98
4.4 Simulation 100
4.5 Complexity and Analysis 103
4.6 Conclusion and Future Trends 106
References 107
5 Soft Computing-Based Intrusion Detection System With Reduced False Positive Rate 109
Dharmendra G. Bhatti and Paresh V. Virparia
5.1 Introduction 109
5.1.1 Soft Computing for Intrusion Detection 111
5.1.2 False Positive 112
5.1.3 Reasons of False Positive 113
5.2 Existing Technology and Its Review 115
5.3 Research Design 118
5.3.1 Conceptual Framework 118
5.3.2 Preprocessing Module 121
5.3.3 Alert Monitoring Module 123
5.4 Results With Implications 124
5.4.1 Preprocessing Module Benchmark 126
5.4.2 Alert Monitoring Module Benchmark 129
5.4.3 Overall Benchmark 130
5.4.4 Test Bed Network Benchmark 131
5.5 Future Research and Conclusion 133
References 135
6 Recursively Paired Arithmetic Technique (RPAT): An FPGA-Based Block Cipher Simulation and Its Cryptanalysis 141
Rajdeep Chakraborty and J.K. Mandal
6.1 Introduction 141
6.2 Recursively Paired Arithmetic Technique (RPAT) 142
6.2.1 An Example of RPAT 144
6.2.2 Options of RPAT 145
6.2.3 Session Key Generation 146
6.3 Implementation and Simulation 147
6.4 Cryptanalysis 150
6.5 Simulation Based Results 152
6.6 Applications 152
6.7 Conclusion 153
Acknowledgment 153
References 153
7 Security Protocol for Multimedia Streaming 155
N. Brindha, S. Deepa and S. Balamurugan
7.1 Introduction 156
7.1.1 Significance of Video Streaming 156
7.2 Existing Technology and Its Review 162
7.3 Methodology and Research Design 166
7.4 Findings 167
7.5 Future Research and Conclusion 169
References 169
8 Nature Inspired Approach for Intrusion Detection Systems 171
Mohd Shahid Husain
8.1 Introduction 171
8.1.1 Types of Intrusion Detection Systems 172
8.2 Approaches Used for Intrusion Detection Systems 173
8.2.1 Intrusion Detection and Prevention Systems 173
8.2.2 Performance Criteria of Intrusion Detection Systems 174
8.3 Intrusion Detection Tools 175
8.4 Use of Machine Learning to Build Dynamic IDS/IPS 176
8.5 Bio-Inspired Approaches for IDS 178
8.6 Conclusion 179
References 181
9 The Socio-Behavioral Cipher Technique 183
Harshit Bhatia, Rahul Johari and Kalpana Gupta
9.1 Introduction 183
9.2 Existing Technology 184
9.3 Methodology 186
9.3.1 Key Arrangement 187
9.3.2 Key Selection 188
9.3.3 Mathematical Operations 189
9.3.4 Algorithm 191
9.3.5 Encryption Operation 192
9.3.6 Decryption Operation 193
9.3.7 Mathematical Modeling 201
9.4 Conclusion: Future Scope and Limitations 205
References 208
10 Intrusion Detection Strategies in Smart Grid 211
P. Ponmurugan, C. Venkatesh, M. Divya Priyadharshini and S. Balamurugan
10.1 Introduction 212
10.2 Role of Smart Grid 212
10.3 Technical Challenges Involved in Smart Grid 213
10.4 Intrusion Detection System 216
10.5 General Architecture of Intrusion Detection System 217
10.6 Basic Terms in IDS 218
10.7 Capabilities of IDS 219
10.8 Benefits of Intrusion Detection Systems 219
10.9 Types of IDS 220
10.10 IDS in a Smart Grid Environment 222
10.10.1 Smart Meter 223
10.10.2 Metering Module 223
10.10.3 Central Access Control 224
10.10.4 Smart Data Collector 224
10.10.5 Energy Distribution System 225
10.10.6 SCADA Controller 225
10.11 Security Issues of Cyber-Physical Smart Grid 225
10.12 Protecting Smart Grid From Cyber Vulnerabilities 227
10.13 Security Issues for Future Smart Grid 229
10.14 Conclusion 230
References 230
11 Security Protocol for Cloud-Based Communication 235
R. Suganya and S. Sujatha
11.1 Introduction 236
11.2 Existing Technology and Its Review 237
11.3 Methodology (To Overcome the Drawbacks of Existing Protocols) 238
11.4 Findings: Policy Monitoring Techniques 238
11.5 Future Research and Conclusion 240
Reference 241
12 Security Protocols for Mobile Communications 243
Divya Priyadharshini M., Divya R., Ponmurugan P. and Balamurugan S.
12.1 Introduction 244
12.2 Evolution of Mobile Communications 246
12.3 Global System for Mobiles (GSM) 248
12.4 Universal Mobile Telecommunications System (UMTS) 250
12.5 Long Term Evolution (LTE) 251
12.6 5G Wireless Systems 254
12.7 LoRA 257
12.8 5G Integrated With LoRA 258
12.9 Physical Layer Security and RFID Authentication 259
12.10 Conclusion 259
References 260
13 Use of Machine Learning in Design of Security Protocols 265
M. Sundaresan and D. Boopathy
13.1 Introduction 266
13.2 Review of Related Literature 269
13.3 Joint and Offensive Kinetic Execution Resolver 271
13.3.1 Design of JOKER Protocol 273
13.3.2 Procedure 276
13.3.3 Procedure 278
13.3.4 Simulation Details and Parameters 279
13.3.4.1 Packet Delivering Ratio Calculation 279
13.3.4.2 Packet Loss Ratio Calculation 279
13.3.4.3 Latency (Delay) Calculation 279
13.3.4.4 Throughput Calculation 280
13.4 Results and Discussion 280
13.5 Conclusion and Future Scope 283
References 283
14 Privacy and Authentication on Security Protocol for Mobile Communications 287
Brajesh Kumar Gupta "Mewadev"
14.1 Introduction 288
14.2 Mobile Communications 289
14.3 Security Protocols 291
14.4 Authentication 294
14.5 Next Generation Networking 298
14.6 Conclusion 302
References 303
15 Cloud Communication: Different Security Measures and Cryptographic Protocols for Secure Cloud Computing 305
Anjana Sangwan
15.1 Introduction 305
15.2 Need of Cloud Communication 306
15.3 Application 309
15.4 Cloud Communication Platform 310
15.5 Security Measures Provided by the Cloud 310
15.6 Achieving Security With Cloud Communications 312
15.7 Cryptographic Protocols for Secure Cloud Computing 314
15.8 Security Layer for the Transport Protocol 315
15.9 Internet Protocol Security (IPSec) 317
15.9.1 How IPsec Works 318
15.10 Kerberos 320
15.11 Wired Equivalent Privacy (WEP) 326
15.11.1 Authentication 326
15.12 WiFi Protected Access (WPA) 327
15.13 Wi-Fi Protected Access II and the Most Current Security Protocols 328
15.13.1 Wi-Fi Protected Access 329
15.13.2 Difference between WEP, WPA: Wi-Fi Security Through the Ages 329
15.14 Wired Equivalent Privacy (WEP) 329
15.15 Wi-Fi Protected Access (WPA) 330
15.16 Conclusions 330
References 331
Index 333
1
History and Generations of Security Protocols
Bright Keswani1┼, Poonam Keswani2* and Rakhi Purohit3╬
1 Department of Computer Applications, Suresh Gyan Vihar University, Jaipur, India
2 Akashdeep PG College, Jaipur, India
3 Global Institute of Technology, Jaipur, India
Abstract
For personal computers, organizations and military users, network security has become more important. Due to the recent arrival of the internet in network, and security now a key issue, the safety record maybe availability as well all people understand very good requirements security technologies in communications. Knowing the attack method can generate enough security. Many companies testing protection auto using some techniques of the network internet through download programs firewalls and some mechanisms encryption in itself company origin it has a special internal network known as "Intranet" to maintain in contact internet access from outside also safe from any threatening state. All the security of the network is huge as well in stage specific development for evaluation. It is a theme that consists of date summary for the security that shows in internet assets security, as well development internet current techniques security. To understand the ongoing investigation, understand previous for the internet, and level his from weak points from attacks, and also methods attack different via network internet known, as well security technologies what they are very mission a lot they are need as well to be reviewed and analysis.
Keywords: Network security, security protocols, attacks collective, security techniques
1.1 Introduction
Due to advent of the Internet and ever changing network technologies, the world is increasingly interconnected day by day. There are many personal, commercial, military, and government information in the creation of infrastructure networks around the world. Network security has become very important because intellectual property can be easily accessible via the efficient use of Internet and related tools. Although there are various types of networks but two fundamentally different networks, i.e., data networks and synchronous networks consisting of switches. The Internet is seen as a data network. From its current data network, information can be obtained through special procedures by router-based computers such as planting in the router "Trojan Horse". Data is not stored by switches of a synchronous network; therefore it is not compromised by attackers. That is why security is emphasized in data networks such as the Internet, as well as in various aspects of the Internet connection proposed by other networks.
For clear understanding, this chapter is divided into the following Sections. Further, each section is discussed in brief.
- Network Security
- The History and Security of the Network
- Common Methods of Attack
- Network Security Technology
- Evolution of Network Security Protocols
- Network Security Protocol
1.2 Network Security
When thinking about network security, we should know that the network should be a secure place. The network security does not affect the security of the client computers at any of the point of the connection chain [2]. So, when transferring the data from the communications channel which does not be attacked, there will be a potential intruder can indicate to a specific communication channel, which access data and decrypt and also re-encrypt the message, which is falsified. The task of repairing a network is as important as obtaining a computer and encrypting a message.
The system and some network technologies are the key technologies for various applications in network. Network security is critical for the specific network and the applications of network [1]. Network security is a prerequisite for emerging networks; also it is easy to implement a very secure approach for networking.
At time of development of secure network, there are some of the factors considered accordingly, i.e., "Access", which provide authorized users with the methods to communicate with specific network; "Confidentiality", which ensures that information/data flow on the network will remains private; "Authentication", which makes sure that the users of the network are what they call people; "Integrity", which feature makes sure that the message is not modified during transmission, and "Do not repudiate", which makes sure that the user does not refute their use of the network [1].
The crimes committed by Kevin Mitnick have fueled the recent interest in security. Kevin Mitnick committed the greatest cybercrime in the history of the United States [3]. Losses of property and intellectual property of several companies amount to $80 million [3]. Since then, information security has become the focus of attention. The public network is called to provide personal as well as financial information. Security of such information must also evolve due to the development of information which is available online. Due to an attack Kevin Mitnick, The Company emphasizes the security of system. The Internet always works as main part behind data security.
Development of an effective security plan on the Internet require to address primarily to understand security issues, about the potential attackers, the level of security required, and about various factors that make the network insecure and vulnerable. Following are the steps to learn how to configure a secure network, the Internet, or other aspects during the search process.
In order to minimize the weaknesses from one device to another, many products are available which includes various tools for encryption of data and information, effective mechanisms for user authentication, intrusion detection and, security management. Companies around the world use a variety of these tools. The intranet connects and protects The Internet in a reasonable way. The same structure of the Internet may create weaknesses in the network. Internet security has greatly improved the development of new security mechanism and methods for networks including Internet as well as Intranet access.
It is also necessary to study the types of attacks online so that they can detect and prevent these attacks. Intrusion detection systems rely on the most common types of attacks.
Previous Internet protocols were not developed for assurance. In the TCP/IP communication stack, no security protocol is applied. This led to an attack on the Internet. Due to advancement in the Internet architecture information communications became more secure.
1.3 Historical Background of Network Security and Network Timeline
The Internet was first introduced in 1969, when the Department of Defense (ARPANET) conducted a network survey. Since the beginning of the year, ARPANET has been successful. The original design was intended easy access to remote computers so that scientists to share data and, it will become one of the most popular email for ARPANET to become a high-speed digital communication, which can be used to research various topics of interest and discuss. Collaboration in international network work is the first of many rules for entities that operate a growing network. He was the first president of INWG of Winton Joseph and became known as the "father of the Internet."
In the 1980s, TCP/IP was created by Bob Kent and Winton Joseph who were the main members of the TCP/IP team. TCP/IP is the general language for all computers to connect to the Internet. The loose network that makes the ARPANET known as today's "Internet". During 1980s, this kind of boom appeared in the computer industry. Combining low-cost desktops with powerful servers allows companies to communicate with their customers and business partners with the use of Internet.
In 1990, due to advent of World Wide Web [WWW] the Internet made accessible to everyone. Netscape Navigator and Microsoft Internet Explorer like search engines came into existence. Many important events have contributed to the development of computer security and networks. The timetable can be started in advance in 1930 to invent a Polish programmer's jigsaw machine in 1918 to convert simple information into cipher text. In 1930, the shocking mathematician Alan Turing broke the Enigma code. Make sure the connection is very important to the images of World War II. In 1960, it was launched by many students at the Massachusetts Institute of Technology (MIT) and the Department of Defense in the term "piracy", which is a popular electronic data and information exchange pipeline [3]. Telnet protocol was developed in 1970s. This led to the widespread use of data networks, initially limited to government contractors and academic researchers [3]. In the 1980s, online piracy and cybercrime began to emerge. After nine days of carnival, the authorities conducted an accidental search and penetrated into a highly confidential system. The 1986, Act of Fraud and Abuse was created, and computer crime Ian Murphy stole information from military computers. After graduation, Robert Morris was judged to launch more than 6,000 weak computers connected to the Internet. In the 1990s, the Internet became public and security issues increased dramatically. Today, about 950 million people worldwide use the Internet [3]. On any given day, there are approximately 225 important security violations [3]. These security...
