Security Aspects in Information Technology
First International Conference, InfoSecHiComNet 2011, Haldia, India, October 19-22, 2011. Proceedings
Published on 14. October 2011
XIV, 187 pages
978-3-642-24586-2 (ISBN)
Description
This book constitutes the refereed proceedings of the First International Conference on Security Aspects in Information Technology, High-Performance Computing and Networking held in Haldia, India, in October 2011. The 14 full papers presented together with the abstracts of 2 invited lectures were carefully reviewed and selected from 112 sumbissions. The papers address all current aspects in cryptography, security aspects in high performance computing and in networks as well. The papers are divided in topical sections on embedded security; digital rights management; cryptographic protocols; cryptanalysis/side channel attacks; and cipher primitives.
More details
Other editions
Additional editions
Marc Joye | Debdeep Mukhopadhyay | Michael Tunstall
Security Aspects in Information Technology
First International Conference, InfoSecHiComNet 2011, Haldia, India, October 19-22, 2011. Proceedings
Book
09/2011
1st Edition
Springer
€53.49
Shipment within 7-9 days
Content
- Title
- Preface
- Table of Contents
- Invited Talks
- Engineering Trustworthy Systems
- Secure Implementations for the Internet of Things
- Embedded Security
- Model Based Hybrid Approach to Prevent SQL Injection Attacks in PHP
- Introduction
- Related Work
- Classifying SQL Injection Vulnerability
- Attack Based on Tautology
- Attack Based on Union
- Attack Based on Comments
- Static vs Dynamic Approach
- Basic AMNeSIA Model for JSP Web Application and Its Limitation
- Principles
- Limitations and Assumptions of AMNeSIA Model in JSP
- Proposed Solution
- Algorithms
- Examples
- Implementation
- Experimental Setup
- Result and Analysis
- Conclusion and Future Work
- References
- Security of Prime Field Pairing Cryptoprocessor against Differential Power Attack
- Introduction
- Mathematical Background
- Pairing Crytoprocessor (PCP)
- Computation of Doubling Step
- Computation of Addition Step
- Computation of Final Exponentiation
- Cost for Computing Tate Pairing
- Side-Channel Vulnerability
- Weakness of Pairing Computations in Fp
- Proposed DPA Attack
- Mounting the DPA on FPGA Platform
- Proposed Counteracting Technique
- Overhead of DPA Countermeasure
- Conclusion
- References
- Embedded Software Security through Key-Based Control Flow Obfuscation
- Introduction
- Methodology
- Obfuscation Technique
- Obfuscation Example
- Implementation
- Integration with Hardware-Assisted Approaches
- Obfuscation Efficiency and Overheads
- Obfuscation Efficiency
- Computational Overhead of the Obfuscation Technique
- Automation of the Obfuscation Technique
- Results
- Conclusions
- References
- Digital Rights Management
- Reversible Watermarking Using Priority Embedding through Repeated Application of Integer Wavelet Transform
- Introduction
- Background
- Reversible Integer Wavelet Transform
- Watermarking Based on Integer Wavelet Transform
- Proposed Method
- Multi-Bit Hiding
- Watermark Embedding
- Watermark Extraction
- Results
- Conclusions
- References
- Access Policy Based Key Management in Multi-level Multi-distributor DRM Architecture
- Introduction
- Preliminaries
- Definitions and Notations
- Identity Based Encryption (IBE)
- Attribute Based Encryption (ABE)
- Protocol
- Overview of the Proposed Multi-party Multi-level DRM Architecture
- Secure Delivery of Content Key
- Analysis
- Conclusion
- References
- Access Polynomial Based Self-healing Key Distribution with Improved Security and Performance
- Introduction
- Preliminaries
- One-Way Function
- Key Distribution and Self-healing
- Notational Convention
- Security Framework
- Scheme Description
- Protocol Requirements
- Self-healing Session Key Distribution
- Complexity
- Analysis
- Conclusion
- References
- Cryptographic Protocols
- An ID-Based Proxy Multi Signature Scheme without Bilinear Pairings
- Introduction
- Preliminaries
- Background of Elliptic Curve Group
- Complexity Assumption
- Formal Model of Identity-Based Proxy-Multi Signature Scheme
- Identity-Based Proxy Multi Signature Scheme
- Proposed Scheme
- Security Analysis
- Comparative Analysis
- Conclusion
- References
- Distributed Signcryption Schemes with Formal Proof of Security
- Introduction
- Security Model for Distributed Signcryption
- Generic Scheme for Distributed Signcryption
- Security Models for Distributed Signcryption
- Distributed Signcryption Schemes - MVS and GPSS
- Mu and Varadharajan Scheme(MVS) bib:KM03,bib:MV00
- Gupta, Pillai and Saxena Scheme(GPSS) bib:GPS07
- Modifications in Distributed Signcryption Schemes MVS and GPSS
- Modified Mu and Varadharajan Scheme [MMVS]
- Modified Gupta, Pillai and Saxena Scheme [MGPSS]
- Security Analysis of MMVS and MGPSS
- Conclusion
- References
- Identity Based Online/Offline Encryption and Signcryption Schemes Revisited
- Introduction
- Preliminaries
- Bilinear Pairing
- Computational Assumptions
- Identity Based Online/Offline Encryption Schemes(IBOOE)
- Identity Based Online/Offline Signcryption
- Review and Attack of IBOOE in LiuZ09
- Review of of Liu et al.'s Scheme (L-IBOOE) LiuZ09
- Attack on Confidentiality
- A Possible Fix for the Weakness in LiuZ09
- The New IBOOE
- The Scheme
- Review and Attack of IBOOSC Schemes
- Scheme by Sun et al.Susilo08
- Generic Scheme by Sun et al. SunMS08
- The New IBOOSC
- Security Analysis of Our IBOOSC
- References
- Cryptanalysis/Side Channel Attacks
- "Rank Correction": A New Side-Channel Approach for Secret Key Recovery
- Introduction
- Background Knowledge
- Rank-Based SCAs
- Notations
- Key Rank Behaviours
- Rank Corrector: Principle
- Application Field
- Basic Principle
- RC Parameters and Their Evaluation
- Description of the Algorithm
- Example
- Optimization
- Experimental Results
- Conclusion and Perspectives
- References
- A Cache Trace Attack on CAMELLIA
- Introduction
- Preliminaries
- Principle of Cache Attacks
- The CAMELLIA Structure
- The Attack on CAMELLIA
- Determining k1 kw1
- Determining k2 kw2
- Determining k3 kw1 and k4 kw2
- Obtaining the Secret Key
- Practically Mounting the Attack
- Conclusions and Future Directions
- References
- An Improvement of Linearization-Based Algebraic Attacks
- Introduction
- Background
- Algebraic Attack on AES-Like Ciphers
- eXtended Linearization (XL)
- Structured Gaussian Elimination
- eXtended Linearization with Structured Gaussian Elimination (XL_SGE)
- Motivation
- XL_SGE Algorithm
- Experimental Results
- Conclusion
- References
- Cipher Primitives
- Generalized Avalanche Test for Stream Cipher Analysis
- Introduction
- Castro et al Strict Avalanche Criterion Test
- Our Observation on SAC-CAS Test
- Modified SAC-CAS Test
- Generalized Avalanche Test
- Advantage of GAC over Other Avalanche Criteria
- Description of the Toy Cipher
- Comparative Studies and Analysis
- Conclusion
- References
- On Applications of Singular Matrices over Finite Fields in Cryptography
- Introduction
- Exchanging the Seed over Insecure Channel
- Security of the Method
- Conclusion
- References
- Author Index
