Security and Privacy in Communication Networks
16th EAI International Conference, SecureComm 2020, Washington, DC, USA, October 21-23, 2020, Proceedings, Part I
Published on 11. December 2020
XVII, 529 pages
978-3-030-63086-7 (ISBN)
Description
This two-volume set LNICST 335 and 336 constitutes the post-conference proceedings of the 16
th
International Conference on Security and Privacy in Communication Networks, SecureComm 2020, held in Washington, DC, USA, in October 2020. The conference was held virtually due to COVID-19 pandemic.
The 60 full papers were carefully reviewed and selected from 120 submissions. The papers focus on the latest scientific research results in security and privacy in wired, mobile, hybrid and ad hoc networks, in IoT technologies, in cyber-physical systems, in next-generation communication systems in web and systems security and in pervasive and ubiquitous computing.
More details
Series
Edition
1st ed. 2020
Language
English
Place of publication
Cham
Switzerland
Publishing group
Springer International Publishing
Product notice
Reflowable
Illustrations
XVII, 529 p. 193 illus., 157 illus. in color.
File size
35,33 MB
ISBN-13
978-3-030-63086-7 (9783030630867)
DOI
10.1007/978-3-030-63086-7
Schweitzer Classification
Other editions
Additional editions
Noseong Park | Kun Sun | Sara Foresti
Security and Privacy in Communication Networks
16th EAI International Conference, SecureComm 2020, Washington, DC, USA, October 21-23, 2020, Proceedings, Part I
Book
12/2020
Springer
€106.99
Shipment within 7-9 days
Content
- Intro
- Preface
- Organization
- Contents - Part I
- Contents - Part II
- Email Address Mutation for Proactive Deterrence Against Lateral Spear-Phishing Attacks
- 1 Introduction
- 2 Related Work
- 3 Threat Model
- 3.1 Attack Taxonomy
- 3.2 Attack Model
- 4 Email Mutation System
- 4.1 Overview
- 4.2 Architecture
- 4.3 Algorithm
- 4.4 Protocol
- 4.5 Identifying Lateral Spear-Phishing Attack
- 5 Email Mutation - Challenges and Solutions
- 6 Scalable Implementation and Security Measurement
- 6.1 Email Mutation Agent
- 6.2 Email Mutation Gateway
- 7 Email Mutation Verification and Evaluation
- 7.1 System Verification
- 7.2 Performance Evaluation
- 8 Limitations and Future Work
- 9 Conclusion
- References
- ThreatZoom: Hierarchical Neural Network for CVEs to CWEs Classification
- 1 Introduction
- 1.1 Motivation Example
- 1.2 Related Works
- 1.3 Challenges
- 1.4 Contribution
- 2 Methodology
- 2.1 Preprocessing
- 2.2 Feature Extraction
- 2.3 Hierarchical Decision-Making
- 3 Results
- 3.1 Dataset Specification
- 3.2 Experiments
- 4 Discussion
- 4.1 ThreatZoom and Unlabeled CVEs
- 4.2 More Fine-Grain Classification by ThreatZoom
- 5 Conclusion and Future Work
- References
- Detecting Dictionary Based AGDs Based on Community Detection
- 1 Introduction
- 2 Methodology
- 2.1 Word Graph
- 2.2 Community Detection on Word Graph
- 3 Experiments and Results
- 3.1 Dataset
- 3.2 Experiments
- References
- On the Accuracy of Measured Proximity of Bluetooth-Based Contact Tracing Apps
- 1 Introduction
- 2 Background
- 2.1 BLE-based Contact Tracing
- 2.2 Proximity Measurement in BLE-based Contact Tracing
- 3 Analysis of BLE Software Configurations
- 4 Analysis of Proximity Measurement Approaches
- 4.1 Data Collected for Proximity Measurement
- 4.2 Data Used in Distance Calculation
- 5 Discussion
- 6 Related Work
- 7 Conclusion
- References
- A Formal Verification of Configuration-Based Mutation Techniques for Moving Target Defense
- 1 Introduction
- 2 Preliminaries
- 2.1 System Modeling Language
- 2.2 Duration Calculus
- 3 RHM Protocol
- 4 Verification Methodology
- 5 RHM Components Modeling
- 5.1 Moving Target Gateway
- 5.2 Moving Target Controller
- 6 MTD Verification
- 6.1 Evaluation Methodology
- 6.2 Properties Verification
- 6.3 Evaluation
- 7 Related Work
- 8 Conclusions
- References
- Coronavirus Contact Tracing App Privacy: What Data Is Shared by the Singapore OpenTrace App?
- 1 Introduction
- 2 Threat Model: What Do We Mean by Privacy?
- 3 Measurement Setup
- 3.1 Viewing Content of Encrypted Web Connections
- 3.2 Hardware and Software Used
- 3.3 Test Design
- 3.4 Finding Identifiers in Network Connections
- 4 Google Firebase
- 5 Cryptography
- 6 Measurements of Data Transmitted by OpenTrace App
- 6.1 Data Sent on Initial Startup
- 6.2 Data Sent upon Phone Number Entry
- 6.3 Data Sent When Permissions Are Granted
- 6.4 Data Sent When Sitting Idle at Main Screen
- 6.5 Data Sent by TraceTogether (v1.0.33)
- 7 Summary and Conclusions
- References
- The Maestro Attack: Orchestrating Malicious Flows with BGP
- 1 Introduction
- 2 Background
- 2.1 Border Gateway Protocol
- 2.2 BGP Poisoning
- 2.3 Link Flooding Attacks
- 3 Can Botnets Target Any Link?
- 3.1 Simulation Methodology
- 3.2 Vulnerability Experiments
- 4 The Maestro Attack
- 4.1 Poison Selection Algorithm
- 4.2 Evaluation
- 5 Internet Experiments
- 6 Attack Scope and Vulnerability
- 7 Towards Defenses
- 8 Related Work
- 9 Conclusion
- References
- pyDNetTopic: A Framework for Uncovering What Darknet Market Users Talking About
- 1 Introduction
- 2 Related Work
- 3 Background
- 3.1 LDA
- 3.2 BTM
- 3.3 GSDMM
- 4 Filtered Bi-Term Topic Model
- 4.1 Motivation
- 4.2 Methodology
- 5 Framework Architecture
- 5.1 Data Extraction and Preprocessing
- 5.2 Topic Models
- 5.3 Relevance Metric
- 6 Experiment
- 6.1 Evaluation Metrics
- 6.2 Performance Comparison
- 6.3 Result Analysis
- 7 Conclusion
- A List of Additional Stop Words
- B Full Topic Results of Agora Forums in 2014
- References
- MisMesh: Security Issues and Challenges in Service Meshes
- 1 Introduction
- 2 Background
- 3 Threat Model and Experimental Design
- 4 Evaluation of Modern Service Meshes
- 5 Related Work
- 6 Conclusions
- References
- The Bitcoin Hunter: Detecting Bitcoin Traffic over Encrypted Channels
- 1 Introduction
- 2 Background on Bitcoin Traffic and Its Network Traffic
- 3 Characterizing Bitcoin Traffic
- 3.1 Proportion and Distribution of Messages
- 3.2 Shape of Traffic
- 4 Designing Bitcoin Classifiers
- 4.1 Size-Based Classifier
- 4.2 Shape-Based Classifier
- 4.3 Neural Network-Based Classifier (NN-Based)
- 4.4 Combined Classifier
- 5 Experimental Setup
- 5.1 Datasets
- 5.2 Metrics
- 5.3 Modeling Normal Users
- 6 Results
- 6.1 User Profiles and False Data
- 6.2 Size-Based Classifiers
- 6.3 Shape-Based Classifier
- 6.4 Neural Network-Based Classifier
- 6.5 Combined Classifier
- 6.6 Summary and Comparison of the Results
- 7 Countermeasures
- 7.1 Bitcoin over Tor
- 7.2 Evaluating Bitcoin Over Tor
- 8 Related Work
- 8.1 Protocol Classification
- 8.2 Attacks on Bitcoin Cryptocurrency
- 9 Conclusions
- References
- MAAN: A Multiple Attribute Association Network for Mobile Encrypted Traffic Classification
- 1 Introduction
- 2 Background
- 2.1 SSL/TLS Basics
- 2.2 Related Work
- 3 Architecture of MAAN
- 3.1 Segment Preprocessor
- 3.2 Message Feature Extractor
- 3.3 Flow Feature Extractor
- 3.4 Dense Layer
- 3.5 Classification Layer
- 4 Experiment
- 4.1 Dataset
- 4.2 Experiment Setting
- 4.3 Comparisons with Existing Approaches
- 4.4 Analysis of MAAN
- 4.5 The Efficiency of MAAN
- 5 Discussion
- 6 Conclusion
- A Parameters Selection
- References
- Assessing Adaptive Attacks Against Trained JavaScript Classifiers
- 1 Introduction
- 2 Problem Overview
- 2.1 Existing Classification Approaches
- 2.2 Objectives and Challenges
- 3 Threat Models
- 4 Attacks
- 4.1 Subtree Editing Mimicry Attack
- 4.2 Script Stitching Mimicry Attack
- 4.3 Gadget Composition Mimicry Attack
- 4.4 Correctness
- 5 Implementation
- 6 Experimental Evaluation
- 6.1 Dataset and Infrastructure
- 6.2 Baseline Classifier Performance
- 6.3 Evaluation of Attacks
- 6.4 Per-domain Analysis
- 6.5 Knowledge of Dataset vs Model
- 6.6 Impact of Adversarial Training
- 6.7 Execution Times
- 6.8 Analysis of Results
- 7 Related Work
- 8 Conclusion
- References
- An Encryption System for Securing Physical Signals
- 1 Introduction
- 2 Related Work
- 3 Cryptographic Model
- 4 The Vernam Physical Signal Cipher
- 4.1 Noise Mitigation
- 4.2 Key Sharing
- 5 Cryptanalysis
- 6 Signal Synchronization
- 7 Complexity and Performance
- 8 Evaluation
- 8.1 Wireless - Simulation
- 8.2 Wired - Proof of Concept
- 9 Conclusion
- 10 Appendix - Additional Figures
- References
- A Cooperative Jamming Game in Wireless Networks Under Uncertainty
- 1 Introduction
- 1.1 Related Works
- 1.2 Summary of Contributions
- 2 System Model and Game Formulation
- 2.1 System Model
- 2.2 Formulation of the Game
- 3 Best Response Functions
- 4 Nonzero-Sum Game Under Uncertainty
- 5 Numerical Illustrations
- 6 Conclusions and Future Research
- References
- SmartSwitch: Efficient Traffic Obfuscation Against Stream Fingerprinting
- 1 Introduction
- 2 Background
- 3 Stream Fingerprinting Attack
- 4 SmartSwitch: Our Proposed Defense Mechanism
- 5 Which Packets Are More Significant?
- 5.1 Permutation Feature Importance
- 5.2 Mutual-Information-Based Algorithms
- 6 Evaluation of Feature Selection
- 7 Evaluation of SmartSwitch
- 7.1 Defense Performance of NDSS19 on YouTube Dataset
- 7.2 Defense Performance of SmartSwitch on YouTube Dataset
- 8 Related Work
- 9 Conclusion
- References
- Misreporting Attacks in Software-Defined Networking
- 1 Introduction
- 2 Background
- 3 Attacking the Load Balancer
- 3.1 Threat Model and Overview
- 3.2 Attack Model
- 3.3 Max-Flooding Attack
- 3.4 Stealthy Attack
- 3.5 Assessing the Impact
- 4 Evaluation
- 4.1 Experimental Setup
- 4.2 Experimental Results
- 4.3 Effects on Network Performance
- 4.4 Discussion
- 5 Conclusion
- References
- A Study of the Privacy of COVID-19 Contact Tracing Apps
- 1 Introduction
- 2 Background
- 2.1 Digital Contact Tracing
- 2.2 BLE in Proximity Tracing
- 2.3 Centralized vs. Decentralized Mobile Contact Tracing
- 3 Methodology
- 3.1 Scope and Overview
- 3.2 Contact Tracing Relevant API Recognition
- 3.3 Privacy Information Identification
- 3.4 Cross-Platform Comparison
- 4 Evaluation
- 4.1 COVID-19 Mobile App Collection
- 4.2 Evaluation Result
- 4.3 Evaluation Result of Cross-Platform Comparison
- 5 Discussion
- 5.1 Limitations
- 5.2 Mitigation on the Privacy Issues Identified
- 6 Related Work
- 7 Conclusion
- References
- Best-Effort Adversarial Approximation of Black-Box Malware Classifiers
- 1 Introduction
- 2 Background and Threat Model
- 2.1 Model Approximation Attacks
- 2.2 Threat Model and Problem Statement
- 3 Approach
- 3.1 Approximation Set Labeling
- 3.2 Representation Mapping
- 3.3 Progressive Approximation
- 3.4 Similarity Comparison
- 4 Evaluation
- 4.1 Datasets
- 4.2 Experimental Setup
- 4.3 Progressive Approximation Results
- 4.4 Similarity Comparison Results
- 5 Related Work
- 6 Conclusion
- References
- Review Trade: Everything Is Free in Incentivized Review Groups
- 1 Introduction
- 2 Background
- 2.1 Incentivized Reviews
- 2.2 Verified Purchase
- 2.3 Incentivized Review Group
- 3 Data Collection
- 3.1 Dataset
- 3.2 Product Collection
- 4 Measurement
- 4.1 Group Members
- 4.2 Review Requests
- 4.3 Products
- 4.4 Strategies to Evade Detection
- 5 Detecting Incentivized Review Groups with Co-review Graphs
- 5.1 Model
- 5.2 Community Detection
- 5.3 Reviewer Profiles
- 5.4 A Retrospect of Amazon Dataset
- 6 Related Work
- 6.1 Spam Review Detection
- 6.2 Reputation Manipulation
- 7 Conclusion
- References
- Integrity: Finding Integer Errors by Targeted Fuzzing
- 1 Introduction
- 2 Background
- 2.1 Integer Arithmetic Errors
- 2.2 Fuzzing
- 3 Design
- 3.1 Exploitation
- 3.2 Exploration
- 4 Implementation
- 5 Evaluation
- 5.1 Juliet Test Suite
- 5.2 Real World Applications
- 5.3 Which Non-crashing Error Is Harmful?
- 5.4 Comparison with Angora + UBSan
- 5.5 Instrumentation Reduction
- 6 Related Work
- 6.1 Detecting Integer Overflow
- 6.2 Coverage-Directed Fuzzers
- 6.3 Bug-Directed Fuzzers
- 7 Conclusion
- References
- Improving Robustness of a Popular Probabilistic Clustering Algorithm Against Insider Attacks
- 1 Introduction
- 2 Related Work
- 3 Background Material
- 3.1 EEHCA
- 3.2 Two Common Operations on Point Processes
- 3.3 Parametric Statistical Tests
- 3.4 Bernoulli CUSUM Test
- 4 Attack Models
- 4.1 Attack Model 1
- 4.2 Attack Model 2
- 5 Anomaly Detection
- 5.1 Design Details and Simulation Results
- 6 Conclusions
- A Proof of Theorem 1
- B Proof of Theorem 2
- C Proof of Theorem 3
- References
- Automated Bystander Detection and Anonymization in Mobile Photography
- 1 Introduction
- 2 Related Work
- 3 System Overview
- 4 Feature-Based Bystander Classifier
- 4.1 Feature Identification
- 4.2 Feature Extraction and Computation
- 4.3 Supervised Learning Model Consideration
- 5 CNN-Based Bystander Classifier
- 5.1 Network Architecture
- 6 Model Evaluation
- 6.1 Dataset
- 6.2 Feature-Based Bystander Classification
- 6.3 CNN-Based Bystander Classification
- 7 Anonymizing Bystander Faces
- 7.1 Implementation of Obfuscation Methods
- 7.2 Survey of Users on Face Anonymization
- 8 Conclusion and Future Work
- A Performance Characteristics of Classifiers
- B Detailed Survey Results
- References
- SmartWiFi: Universal and Secure Smart Contract-Enabled WiFi Hotspot
- 1 Introduction
- 2 Background and Key Insights
- 2.1 Blockchain and Smart Contracts
- 2.2 Threat Model
- 2.3 Overview of Key Insights
- 3 The SmartWiFi System
- 3.1 SmartWiFi Setup
- 3.2 Hansa Handshake Session
- 3.3 Hansa Service Session
- 3.4 DupSet Speed Measurement
- 3.5 SmartWiFi Smart Contract
- 3.6 Payment and Refund
- 4 Security Analysis
- 5 Implementation
- 6 Evaluation
- 6.1 Delays
- 6.2 Fees
- 6.3 Smart Contract Storage
- 6.4 DupSet Measurement and Overhead
- 6.5 Scalability
- 6.6 SmartWiFi Communication Overhead
- 7 Related Work
- 8 Conclusion
- References
- ByPass: Reconsidering the Usability of Password Managers
- 1 Introduction
- 2 Background
- 2.1 Security of Password Managers
- 2.2 Usability of Password Managers
- 2.3 Proposals for New Password Managers
- 3 ByPass: Design and Implementation
- 3.1 Design Overview and Goals
- 3.2 ByPass Features
- 3.3 Implementation Details
- 4 Security and Attack Mitigation
- 5 Usability Evaluation
- 5.1 Cognitive Walkthrough
- 5.2 User Study
- 6 Results
- 6.1 Time
- 6.2 Errors
- 6.3 Usability Perceptions
- 7 Discussion
- 7.1 An Abstraction Layer for Accounts
- 7.2 Control vs Automation
- 7.3 Testing a Password Manager
- 8 Conclusion
- References
- Anomaly Detection on Web-User Behaviors Through Deep Learning
- 1 Introduction
- 2 Approach
- 3 Evaluation
- 3.1 Experiment Setup
- 3.2 Effectiveness of WebLearner
- 4 Related Work
- 5 Conclusion
- References
- Identity Armour: User Controlled Browser Security
- 1 Introduction
- 2 Overview
- 2.1 Policy Language
- 2.2 Implementation Details
- 2.3 System Workflow
- 3 Analysis and Evaluation
- 3.1 Performance Evaluation
- 3.2 Attack Analysis
- 4 Related Work
- 5 Conclusion
- References
- Connecting Web Event Forecasting with Anomaly Detection: A Case Study on Enterprise Web Applications Using Self-supervised Neural Networks
- 1 Introduction
- 2 Workflow of DeepEvent
- 2.1 Event Extraction
- 2.2 Context-Based Modeling
- 2.3 Anomaly Detection
- 3 Methodology of Context-Based Modeling
- 3.1 Self-attention Based Modeling
- 3.2 Bi-LSTM Based Modeling
- 3.3 LSTM-Attention Based Modeling
- 4 Evaluation
- 4.1 Experimental Setup
- 4.2 Evaluation of DeepEvent on Web Event Forecast
- 4.3 Evaluation of DeepEvent on Anomaly Detection
- 4.4 Neural Network Comparison
- 4.5 Evaluation of Different Model Settings
- 5 Related Work
- 5.1 Web Event Forecasting
- 5.2 Web Anomaly Detection
- 5.3 Deep Neural Networks for Log Data Analysis
- 6 Conclusion
- References
- Performance Analysis of Elliptic Curves for VoIP Audio Encryption Using a Softphone
- 1 Introduction
- 2 Motivation
- 3 Methodology
- 3.1 Key Exchange Phase of Real-Time Audio Encryption
- 3.2 Replacement of SRTP's Existing AES Scheme by ECC
- 4 Results of the Experiments
- 4.1 Suitable Elliptic Curves for Real-Time Media Encryption
- 4.2 New Secure Elliptic Curve for Real-Time Media Encryption
- 5 Conclusion
- References
- TCNN: Two-Way Convolutional Neural Network for Image Steganalysis
- 1 Introduction
- 2 The Proposed TCNN
- 2.1 Motivation
- 2.2 TCNN Architecture
- 3 Experiments
- 3.1 Experiment Setup
- 3.2 Comparison with Other State-of-the-Art Methods
- 4 Conclusion
- References
- PrivyTRAC - Privacy and Security Preserving Contact Tracing System
- 1 Introduction
- 2 Current Smartphone Location-Based Contact Tracing Methods
- 3 PrivyTRAC Approach
- 3.1 System Architecture
- 3.2 Infection Risk Map Computation
- 4 Simulation Experiment Results
- 5 Model Refinement
- 6 Conclusions
- References
- Author Index
