Information and Communications Security
17th International Conference, ICICS 2015, Beijing, China, December 9-11, 2015, Revised Selected Papers
Published on 8. March 2016
XVIII, 486 pages
978-3-319-29814-6 (ISBN)
Description
This book constitutes the thoroughly refereed post-conference proceedings of the 17th International Conference on Information and Communications Security, ICISC 2015, held in Beijing, China, in December 2015.
The 24 revised full papers and 19 short papers presented were carefully selected from 148 submissions. The papers provide the latest results in research and development in the field of information security and applied cryptology.
The 24 revised full papers and 19 short papers presented were carefully selected from 148 submissions. The papers provide the latest results in research and development in the field of information security and applied cryptology.
More details
Series
Edition
1st ed. 2016
Language
English
Place of publication
Cham
Switzerland
Publishing group
Springer International Publishing
Product notice
Reflowable
Illustrations
XVIII, 486 p. 133 illus. in color.
File size
23,16 MB
ISBN-13
978-3-319-29814-6 (9783319298146)
DOI
10.1007/978-3-319-29814-6
Schweitzer Classification
Other editions
Additional editions
Sihan Qing | Eiji Okamoto | Kwangjo Kim
Information and Communications Security
17th International Conference, ICICS 2015, Beijing, China, December 9-11, 2015, Revised Selected Papers
Book
03/2016
Springer
€53.49
Shipment within 10-15 days
Content
- Intro
- Preface
- Organization
- Abstracts
- Challenges in Post Quantum Cryptography Standardization
- Usable Security - A Personal Perspective
- Contents
- Minimizing Databases Attack Surface Against SQL Injection Attacks
- 1 Introduction
- 2 Proposed Framework
- 2.1 SQL Statements Identification
- 2.2 SQL Statements Randomization
- 3 Evaluation
- 4 Related Work
- 5 Conclusions and Future Work
- References
- Ensuring Kernel Integrity Using KIPBMFH
- Abstract
- 1 Introduction
- 2 Problem Overview
- 3 Kernel Integrity Protection
- 3.1 Memory Forensics Based on EPT
- 3.2 Time Randomization Based Measurement Time Distribution Method
- 4 Experimental Results and Analysis
- 4.1 Effectiveness Evaluation
- 4.2 Performance Evaluation
- 5 Conclusion
- References
- Bitsliced Implementations of the PRINCE, LED and RECTANGLE Block Ciphers on AVR 8-Bit Microcontrollers
- 1 Introduction
- 1.1 Related Work
- 1.2 Our Contributions
- 2 Our AVR Implementations, Considering Scenarios and Performance Measurement
- 3 PRINCE AVR Implementations
- 3.1 The PRINCE Cipher
- 3.2 PRINCE AVR Implementations
- 4 LED AVR Implementations
- 4.1 The LED Cipher
- 4.2 LED AVR Implementations
- 5 RECTANGLE AVR Implementations
- 5.1 The RECTANGLE Cipher
- 5.2 RECTANGLE AVR Implementations
- 6 Results Summary and Comparisons
- References
- On Promise Problem of the Generalized Shortest Vector Problem
- 1 Introduction
- 2 Preliminaries
- 3 The Transference Theorems for GAPSAM
- 3.1 The Variants of Cai's Transference Theorems
- 3.2 Relationships Between GAPSAM and Other Lattice Problems
- 4 The Rank and Approximation Preserving Reductions
- 5 Conclusions
- References
- Secret Key Extraction with Quantization Randomness Using Hadamard Matrix on QuaDRiGa Channel
- 1 Introduction
- 2 A Basic Model
- 2.1 System Model
- 2.2 Adversarial Model
- 3 Methodology of Quantization Randomness
- 3.1 Hadamard Matrix
- 3.2 Random and Random_inverse
- 3.3 Secret Key Extraction with Quantization Randomness
- 4 Numerical Results
- 4.1 Performance Evaluation
- 4.2 Simulation Results
- 5 Conclusion
- References
- Practical Lattice-Based Fault Attack and Countermeasure on SM2 Signature Algorithm
- 1 Introduction
- 2 Preliminaries
- 2.1 SM2 Signature Algorithm
- 2.2 Lattice Attack Basis
- 3 Lattice-Based Fault Attack on SM2
- 3.1 Experimental Condition
- 3.2 Fault Attack Against SM2
- 3.3 Model of Lattice Attack Against SM2
- 3.4 Attack Results
- 4 Countermeasure to Resist Lattice-Based Fault Attack
- 4.1 SM2 with Countermeasure
- 4.2 Provable Security Against Lattice Attack
- 5 Conclusion
- References
- The Security of Polynomial Information of Diffie-Hellman Key
- 1 Introduction
- 2 Preliminaries
- 3 The Security of Polynomial Information of DH Key
- 3.1 The Polynomial Information from an Imperfect Oracle
- 3.2 Further Discussions on Another Two Cases
- 4 Some Variants of DH Problem and Their Polynomial Information Security
- 4.1 DH Problem DHg(2,gy)
- 4.2 The n-DH Problem
- 4.3 Multiple DH Problem
- 5 Conclusion
- References
- How to Vote Privately Using Bitcoin
- 1 Introduction
- 1.1 Other Related Work
- 2 Preliminaries
- 3 Our Protocols
- 3.1 Vote Commitment
- 3.2 Vote Casting via Claim-or-Refund
- 3.3 Vote Casting via Joint Transaction
- 4 Experiment
- 5 Conclusion
- Appendix
- A Figures
- References
- Multidimensional Zero-Correlation Linear Cryptanalysis on 23-Round LBlock-s
- 1 Introduction
- 2 A Brief Description of LBlock-s
- 2.1 Notation
- 2.2 Overview of LBlock-s
- 3 Zero-Correlation Linear Approximation
- 4 Multidimensional Zero-Correlation Linear Cryptanalysis on 23-round LBlock-s
- 5 Conclusions
- References
- Traceable CP-ABE on Prime Order Groups: Fully Secure and Fully Collusion-Resistant Blackbox Traceable
- 1 Introduction
- 1.1 Our Results
- 2 Augmented CP-ABE Definitions
- 2.1 Definitions and Security Models
- 2.2 The Reduction of Traceable CP-ABE to Augmented CP-ABE
- 3 An Augmented CP-ABE Construction on Prime Order Groups
- 3.1 Preliminaries
- 3.2 AugCP-ABE Construction
- 3.3 Security of the AugCP-ABE Construction
- 4 Conclusion
- References
- Generic Construction of Audit Logging Schemes with Forward Privacy and Authenticity
- 1 Introduction
- 2 Preliminaries
- 3 Audit Logging Scheme with Privacy and Authenticity
- 3.1 Scheme
- 3.2 Security
- 4 Generic Construction
- 4.1 Time-Driven Setting
- 4.2 Event-Driven Setting
- 5 Provable Security of Generic Construction
- 5.1 Time-Driven Setting
- 5.2 Event-Driven Setting
- 6 Conclusion
- References
- A Novel Post-processing Method to Improve the Ability of Reconstruction for Video Leaking Signal
- Abstract
- 1 Introduction
- 2 The Principle of Novel Method
- 3 The Proposed Method
- 3.1 Sparse Representation of Received Data
- 3.2 Data Shrink
- 3.3 Data Repair
- 4 Experimental Results
- 5 Conclusion
- Acknowledgment
- References
- TMSUI: A Trust Management Scheme of USB Storage Devices for Industrial Control Systems
- 1 Introduction
- 2 Related Work
- 3 Overview
- 3.1 System Architecture
- 3.2 Threat Model and Assumptions
- 3.3 Design Principles
- 4 Trust Management Scheme
- 4.1 Execution Process
- 4.2 Detailed Phases
- 4.3 Security Rules
- 5 Security Analysis
- 6 Implementation and Evaluation
- 7 Discussion
- 8 Conclusion
- References
- Characterization of the Third Descent Points for the k-error Linear Complexity of 2n-periodic Binary Sequences
- 1 Introduction
- 2 Preliminaries
- 3 Counting Functions for 2n-periodic Binary Sequences with Given 5-error Linear Complexity as the Third Descent Point
- 4 Conclusion
- References
- QRL: A High Performance Quadruple-Rail Logic for Resisting DPA on FPGA Implementations
- 1 Introduction
- 2 Related Work
- 3 Quadruple-Rail Logic
- 3.1 The Low Performance and Precharge Mechanism
- 3.2 QRL Architecture
- 3.3 QRL Register Exemplar
- 3.4 Generalized QRL
- 4 Implementation and Security Evaluation
- 4.1 Implementation
- 4.2 Security Evaluation and Attack Results
- 4.3 Cost and Performance Evaluation
- 5 Conclusion
- References
- Strategy of Relations Collection in Factoring RSA Modulus
- 1 Introduction
- 2 Preliminaries
- 3 The Proposed Module of Relations Collection
- 4 Investigated Algorithm
- 4.1 Basic Definitions
- 4.2 The Main Idea of the Algorithm
- 4.3 The Feasibility of the Proposed Algorithm
- 5 Hardware Implementation and Synthesis Results
- 6 Estimates of Factoring
- 7 Conclusion
- A Proof of Lemmas
- References
- Ultra High-Performance ASIC Implementation of SM2 with SPA Resistance
- 1 Introduction
- 2 Mathematical Background
- 3 Proposed ECC Processor
- 3.1 Optimization for Point Multiplication
- 3.2 Optimization for Finite Field Arithmetic
- 3.3 Optimization for Point Addition and Point Double
- 3.4 SM2 Architecture
- 4 Comparison and Conclusion
- References
- Multi-input Functional Encryption and Its Application in Outsourcing Computation
- 1 Introduction
- 1.1 Related Work
- 1.2 Our Contribution
- 1.3 Technique Outline
- 2 Preliminaries
- 2.1 Multikey Fully Homomorphic Encryption
- 2.2 Garbled Circuit
- 2.3 Two-Outcome Attribute-Based Encryption
- 2.4 Multi-input Functional Encryption
- 2.5 Multi-client Outsourcing Computation Scheme
- 3 Our Construction
- 3.1 Multi-input Functional Encryption
- 3.2 Correctness and Security Proof
- 4 Multi-client Outsourcing Computation Scheme
- 4.1 Correctness and Security Proof
- 5 Conclusion
- References
- A Multivariate Encryption Scheme with Rainbow
- 1 Introduction
- 1.1 Motivation and Background
- 1.2 Previous Work and Challenging Issues
- 1.3 Contribution
- 1.4 Comparison with Related Works
- 2 Background
- 2.1 A Signature Scheme, Rainbow
- 3 Our Proposed Scheme
- 3.1 Key Generation
- 3.2 Encryption
- 3.3 Decryption
- 3.4 Probability of Decryption Failure
- 4 Security Analysis
- 4.1 Direct Attack
- 4.2 Differential attack
- 4.3 Rank Attacks
- 4.4 Other Attacks against Rainbow
- 5 Practical Parameters and Implementation
- 6 Conclusion
- A Decryption Algorithm for Square
- B Injectivity of G and F
- References
- Efficient and Secure Many-to-One Signature Delegation
- 1 Introduction
- 2 Preliminaries
- 3 Proposed IBPMS Scheme
- 3.1 Setup
- 3.2 Extraction
- 3.3 Proxy Key Generation
- 3.4 Proxy Multi-signature
- 3.5 Verification:
- 4 Analysis of the Proposed Scheme
- 4.1 Correctness
- 4.2 Security Analysis
- 5 Efficiency Analysis
- References
- Fully Secure IBE with Tighter Reduction in Prime Order Bilinear Groups
- 1 Introduction
- 2 Preliminaries
- 2.1 Identity-Based Encryption Definition
- 2.2 Security Model
- 2.3 Dual Pairing Vector Spaces
- 2.4 Complexity Assumption
- 3 Identity-Based Encryption
- 3.1 Our Construction
- 3.2 Correctness
- 3.3 Proof of Security
- 4 Conclusions
- References
- A Secure Route Optimization Mechanism for Expressive Internet Architecture (XIA) Mobility
- Abstract
- 1 Introduction
- 2 Background and Requirement
- 2.1 XIA Overview
- 2.2 Mobility Support in XIA
- 2.3 Requirements of Security in Route Optimization
- 3 Route Optimization Protocol for XIA Mobility
- 3.1 Cryptographic Notation
- 3.2 Protocol Design
- 3.3 Protocol Operation
- 4 Protocol Analysis
- 4.1 Security Analysis
- 4.2 Efficiency Analysis
- 5 Conclusion
- References
- An Entropy Based Encrypted Traffic Classifier
- 1 Introduction
- 2 Related Work
- 3 Dataset and Preprocessing
- 4 Experiment and Results
- 4.1 Feature Selection
- 4.2 Result Discussion
- 4.3 Evaluation and Validation
- 5 Conclusion
- References
- Modelling and Analysis of Network Security - a Probabilistic Value-passing CCS Approach
- 1 Introduction
- 2 Modelling Network Security Based on PVCCS
- 2.1 Reactive Model for PVCCS (PVCCSR)
- 2.2 Network Security Model Based on PVCCSR
- 3 Analyzing Properties as Graph Theory Approach
- 3.1 NES and SOS
- 3.2 Algorithms
- 4 Case Study
- 5 Conclusion
- References
- An Improved NPCUSUM Method with Adaptive Sliding Window to Detect DDoS Attacks
- 1 Introduction
- 2 Proposed Detection Algorithm
- 2.1 Transform Pcap Packets Data to Netflow Flows Data
- 2.2 Select Features for Detection
- 2.3 Choose Interval Time and Compute the Features Value
- 2.4 Compute Cumulative Sum by the Improved NPCUSUM Method
- 2.5 Compare Cumulative Sum to Thresholds and Detect Attacks
- 2.6 Updated Thresholds and SASW's Size
- 3 Experiment and Analysis
- 3.1 Results
- 4 Conclusion
- References
- Dynamic Hybrid Honeypot System Based Transparent Traffic Redirection Mechanism
- Abstract
- 1 Introduction
- 2 Related Work
- 3 System Overview
- 3.1 Honeypot Deployment Tools
- 3.2 Honeybrid Gateway
- 4 Experiments
- 5 Conclusion and Future Work
- Acknowledgement
- References
- Leveraging Static Probe Instrumentation for VM-based Anomaly Detection System
- 1 Introduction
- 2 Related Work
- 3 Architectural Framework
- 3.1 Data Collection Process
- 3.2 Feature Extraction Process
- 3.3 Anomaly Prediction Process
- 3.4 Threat Model and Limitations
- 4 Evaluation
- 4.1 General Setup
- 4.2 Feasibility with Limited Data
- 4.3 Effectiveness Against Diverse Attacks
- 4.4 Efficiency and Scalability
- 4.5 Performance Impact
- 5 Discussion
- 5.1 Windowing to Increase Accuracy
- 5.2 Reducing False Positives
- 5.3 Opportunity for Further Improvements
- 6 Conclusion
- References
- MB-DDIVR: A Map-Based Dynamic Data Integrity Verification and Recovery Scheme in Cloud Storage
- Abstract
- 1 Introduction
- 2 Scheme Overview
- 2.1 System Model
- 2.2 Thread Model
- 2.3 Design Goals
- 3 Key Solutions on MB-DDIVR
- 3.1 Recovery Method
- 3.2 Map-Based Dynamic Storage Table
- 3.3 Collusion Attack
- 4 Implementation of MB-DDIVR
- 4.1 File Distribution Preparation
- 4.2 Integrity Verification
- 4.3 Dynamic Data Operation
- 5 Experiment and Evaluation
- 5.1 Time Analysis
- 5.2 Recovery Performance Analysis
- 6 Related Works
- 7 Conclusion
- Acknowledgment
- References
- Chameleon: A Lightweight Method for Thwarting Relay Attacks in Near Field Communication
- 1 Introduction
- 2 Background and Preliminaries
- 3 Chameleon
- 4 Evaluations and Discussion
- 4.1 Experiment
- 4.2 Analysis
- 5 Related Works
- 6 Conclusion
- References
- A Solution of Code Authentication on Android
- 1 Introduction
- 2 Preliminary
- 2.1 Application Signature Generation Process
- 2.2 Application Signature Verifying Process
- 3 Analysis
- 4 Design Details
- 4.1 Certificate Issue
- 4.2 APP Upload and Download
- 4.3 Certificate Authentication in Android
- 5 Conclusion
- References
- Verifiable Proxy Re-encryption from Indistinguishability Obfuscation
- 1 Introduction
- 1.1 Related Works
- 1.2 Organization
- 2 Verifiable Proxy Re-encryption
- 3 Preliminaries
- 3.1 Indistinguishability Obfuscation
- 3.2 Puncturable Pseudorandom Functions
- 3.3 Randomness Extractor
- 4 Construction
- 5 Conclusion
- A Preliminaries (Cont.)
- A.1 Non-interactive Witness Indistinguishable Proofs
- A.2 Commitment Schemes
- References
- Higher-Order Masking Schemes for Simon
- 1 Introduction
- 2 Preliminaries
- 2.1 Simon
- 2.2 Higher-Order Boolean Masking
- 2.3 Higher-Order Boolean Masking of SIMON
- 3 The First Scheme: Partition Based Masking Scheme
- 3.1 Description
- 3.2 Security Analysis
- 3.3 Implementation Aspect
- 4 The Second Scheme: Linearity Based Masking Scheme
- 4.1 Description
- 4.2 Security Analysis
- 4.3 Comparison with CPRR Scheme
- 5 Implementation Result
- 6 Conclusion
- References
- An ORAM Scheme with Improved Worst-Case Computational Overhead
- 1 Introduction
- 1.1 Our Contribution
- 2 Preliminaries
- 3 Our Scheme
- 3.1 Overview
- 3.2 Server Storage
- 3.3 Client Storage
- 3.4 Detailed Scheme Description
- 3.5 Security Analysis
- 3.6 Parametres and Complexities
- 4 Discussion
- 5 Conclusion
- References
- A Self-Matching Sliding Block Algorithm Applied to Deduplication in Distributed Storage System
- Abstract
- 1 Introduction
- 2 Deduplication Problem in Distributed Storage
- 3 SMSB Algorithm
- 3.1 Description
- 3.2 Matching Table
- 3.3 Create and Maintain Matching Table
- 3.4 Self-matching
- 4 Experimental Results
- 4.1 Deduplication Rate Test
- 4.2 Disk Space Utilization Test
- 4.3 The Data Processing Rate Test
- 4.4 Summary of Results
- 5 Conclusion
- Acknowledgment
- References
- Suffix Type String Matching Algorithms Based on Multi-windows and Integer Comparison
- Abstract
- 1 Introduction
- 2 Accelerating Method: Multi-window and Integer Comparison
- 3 Improved Algorithms Based on QS, Tuned BM and BMHq
- 4 Experiment and Results
- 5 Conclusion
- 6 Acknowledgements
- References
- Security-Enhanced Reprogramming with XORs Coding in Wireless Sensor Networks
- 1 Introduction
- 1.1 Motivation
- 1.2 Our Approach and Contributions
- 2 Related Work
- 2.1 Basic Reprogramming Protocols
- 2.2 Secure Reprogramming Protocols
- 3 Background
- 3.1 One-Way Hash Chain
- 3.2 Merkle Hash Tree
- 4 Our Approach
- 4.1 System Initialization Phase
- 4.2 Packets Processing
- 4.3 Packets Verification
- 5 Performance and Analysis
- 5.1 Performance of Encode-then-encrypt
- 5.2 Enhanced Confidentiality with Light-Weighted Mechanism
- 5.3 Efficiency and Resistance to DoS Attacks
- 5.4 Out of Order Tolerance
- 5.5 Integrity and Data Freshness
- 6 Conclusion
- References
- Preserving Context Privacy in Distributed Hash Table Wireless Sensor Networks
- 1 Introduction
- 2 Distributed Hash Table
- 3 Onion Routing
- 4 Onion Routing over DHT Wireless Sensor Networks
- 4.1 Privacy Analysis
- 5 Conclusion
- References
- Prior Classification of Stego Containers as a New Approach for Enhancing Steganalyzers Accuracy
- 1 Introduction
- 2 Binary Classification
- 2.1 The Problem
- 2.2 Ensemble Classifier and Base Learners
- 3 Common Background and Designations
- 3.1 Images
- 3.2 Features
- 3.3 Base Learners
- 3.4 Embedding Algorithm
- 3.5 State-of-the-Art
- 4 Prior Classification
- 4.1 Basic Idea
- 4.2 Method 1: Naive Splitting
- 4.3 Method 2: Single Classification
- 4.4 Method 3: Combined Classification
- 4.5 Prior Classification On-The-Fly
- 5 Possible Applications and Future Work
- 5.1 Increasing the Practical Significance of Weak Detectors
- 5.2 Spreading Images Between Different Detectors
- 5.3 Splitting Image Sets into Subsets with Different Properties
- 5.4 Potential Enhancement of Steganalytic Detectors
- 5.5 Extended Definition of the Accuracy
- 6 Conclusion
- References
- Eavesdropper: A Framework for Detecting the Location of the Processed Result in Hadoop
- Abstract
- 1 Introduction
- 2 Background
- 3 Vulnerability and Threat
- 4 Detection Framework
- 4.1 Detailed Eavesdropper
- 4.2 The Design of Probing Module
- 4.3 The Design of Analysis Module
- 5 Implementation and Experimental Results
- 5.1 Implementation
- 5.2 Experiment Results
- 6 Conclusion
- Acknowledgment
- References
- Secret Picture: An Efficient Tool for Mitigating Deletion Delay on OSN
- 1 Introduction
- 2 Background
- 2.1 Problem Statement
- 2.2 Countermeasures
- 3 Our Conceptual Privacy Preserving Tool
- 3.1 Our Approach
- 3.2 Our Prototype
- 4 Evaluation
- 4.1 Experiment Setup
- 4.2 Evaluation Result
- 5 Conclusion
- References
- A De-anonymization Attack on Geo-Located Data Considering Spatio-temporal Influences
- 1 Introduction
- 2 Related Work
- 3 User Hidden Markov Model
- 4 The New De-anonymization Attack
- 5 Experiments
- 5.1 Dataset
- 5.2 The De-anonymization Methods to be Evaluated
- 5.3 The Experimental Results
- 6 Conclusion
- References
- Author Index
