Jiming Chen,Vijay Gupta,Daniel E. Quevedo,Pietro Tesi

DOI: https://doi.org/10.1002/rnc.5051

IF: 3.8973

2020-01-01

International Journal of Robust and Nonlinear Control

Abstract:Due to advances in computing and communication technologies, there has been a growing interest in cyberphysical systems (CPS). These are systems where physical devices are monitored/controlled via embedded computers and networks. By exploiting sensing, computation, and networking capabilities, CPS are paving the way for a new generation of engineering systems, which enable automatic decision‐making processes in fields ranging from customized manufacturing and transportation to health care and energy. Integration of information technology methods with a physical system such as a power grid, transportation system, and supply chain to form a “smart” infrastructure holds the promise of greater efficiency, reliability, and sustainability. However, any such coupling introduces privacy and security issues. The “systems and control” community has contributed to the CPS agenda, addressing issues like estimation, control, and coordination under information constraints. However, a deep understanding of the privacy and security requirements in CPS and their influence on classical control‐theoretic paradigms is still missing...

Xukai Zou,Yuan-shun Dai,Yi Pan

DOI: https://doi.org/10.1142/9789812790880

2008-01-01

Abstract:Computer networks are compromised by various unpredictable factors, such as hackers, viruses, spam, faults, and system failures, hindering the full utilization of computer systems for collaborative computing one of the objectives for the next generation of the Internet. It includes the functions of data communication, resource sharing, group cooperation, and task allocation. One popular example of collaborative computing is grid computing. This monograph considers the latest efforts to develop a trusted environment with the high security and reliability needed for collaborative computing. The important modules treated include secure group communication, access control, dependability, grid computing, key management, intrusion detection, and trace back. In addition, a real project for developing a nationwide medical information system with high dependability and security is described. Contents: Secure Group Communication (SGC); Cryptography Based Access Control; Intrusion Detection and Defence; Security in Grid Computing; Trusted and Seamless Medical Information Systems.

Qinghuai Zeng,Changqin Huang,Deren Chen,Hualiang Hu

DOI: https://doi.org/10.1109/CACWD.2004.1349224

2004-01-01

Abstract:In grid environments, the dynamic and multi-institutional nature introduces challenging security issues. In this paper, we propose subtask-based authorization service (SAS) architecture to fully secure a type of application oriented to engineering and scientific computing. We minimize privileges for task by decomposing the parallel task and re-allotting the privileges required for each subtask. Community authorization module describes and applies community policies of resource permission and privilege for resource usage or task management. It separates proxy credentials from identity credentials. We adopt a relevant policy and task management delegation to describe rules for task management. The ultimate privileges are formed by the combination of relevant proxy credential, subtask-level privilege certificate and community policy for this user, as well as they conform to resource policy. To enforce the architecture, we extend the RSL specification and the proxy certificate, modify Globus' gatekeeper, jobmanager and the GASS library to allow authorization callouts, and evaluate the user's job management requests and job's resource request in the context of policies.

HL Hu,D Chen,CQ Huang

DOI: https://doi.org/10.1109/icsmc.2004.1401072

2004-01-01

Abstract:The idea of role has been widely applied to solving the authority, responsibility, function and interaction, which are associated with member station in organizations. Access control is a key security issue in distributed collaboration systems. After analyzing corresponding security requirements and the present status of security in distributed collaboration system, this paper presents an extensive role-based access control (ERBAC) architecture based on differentiated domain management. In this architecture, security management is classified into inter-domain one and infra-domain one, whilst, it can integrate new security policies. Based on definition of role permission type, the paper introduces a function of permission type change to make ERBAC architecture flexible. In addition, the authors discuss the methods by which the security can be implemented in an agent-based framework. The practices signify that this system can be flexibly applied various existing policy languages and protocols.

Stephen S. Yau

DOI: https://doi.org/10.1109/ftdcs.2008.8

2008-01-01

Abstract:Distributed computing systems are frequently part of many critical applications of computing and information technology. During the last several decades, various major advances in distributed computing systems have been made, but many challenges still lie ahead. In this panel, we have four well-known scholars and experts who have made great contributions in various aspects of distributed computing systems, such as information security and privacy, pervasive computing, grid computing, service computing, internet and various network technologies. Each of these panelists will present their ideas on certain grand challenges for distributed computing systems to revolutionize the important applications of information technology for humanity. 12th IEEE International Workshop on Future Trends of Distributed Computing Systems

YF Xu,L Korba,LH Wang,Q Hao,WM Shen,S Lang

DOI: https://doi.org/10.1109/indin.2003.1300269

2003-01-01

Abstract:In today's globalized business world, outsourcing, joint ventures, and cross-border collaborations have led to work environments that are geographically distributed across organizational and national boundaries. There are critical research needs to develop highly secured collaborative work environments and security solutions for deployment, configuration, monitoring, and device control of interoperating services. We present a well-shaped security framework for distributed system control with a focus on device-level system control, monitoring and services reconfiguration in open and dynamic environments. The characteristics of portability, reconfigurability, interoperability, and interchangeability of these new environments are considered as key factors to produce new security risks and challenges. By adopting public key cryptography, software agent and XML binding technologies, the major security problems of authenticity, integrity, confidentiality, and safe execution are addressed in this framework. The core modules for secure task delivery and execution are presented in detail.

Stephen S. Yau

DOI: https://doi.org/10.4018/978-1-59140-588-7.ch013

2006-01-01

Abstract:Collaborative Pervasive Computing Applications (COPCAs) can greatly improve the investigative capabilities and productivity of scientists and engineers. Users of COPCAs usually form groups to collaboratively perform their tasks using various computing devices, including desktop computers, pocket PCs, and/or smart phones, over Mobile Ad hoc Networks (MANET), LAN, and the Internet. These users usually share various types of data, including research ideas (documents), experimental and statistical data (numerical data, graphics, stream audio/video). A very important issue for sharing data in Collaborative Pervasive Computing Environments (COPCEs) is trustworthiness. To support trustworthy data sharing among groups of users of COPCAs, secure group communication, trustworthyshared data discovery, flexible access control mechanisms, effective data replication, data quality assurance mechanisms, and intrusion detection mechanisms are needed. In this chapter, the challenges, current state-of-the-art, and future research directions for trustworthy data sharing in COPCEs are presented. In particular, discussions will be focused on research issues and future research directions for trustworthy shared data discovery and flexible access control in service-based COPCAs.

Stephen S. Yau

DOI: https://doi.org/10.1109/hpcc.2011.151

2011-01-01

Abstract:Due to the rapid progress in computer hardware, software, internet, sensor networks, mobile communications, and multimedia technologies, distributed computing systemshave recently evolved drastically to improve and expand various applications with better quality of services and lower cost, especially those involving human factors.Recent development in services and cloud computing are good examples. However, the challenges for distributed computing systems to satisfy increasing demands for various applications become also greater. Besides reliability, performance and availability, many other attributes, such as security, privacy, trustworthiness, situation awareness, flexibility and rapid development of various applications, have also become important.We have invited an excellent panel to discuss the challenges and future trends of distributed computing systems to meet these challenges from various perspectives. Each panelist will give a brief presentation at the beginning of the session, and then we will open the discussions from the floor.

Zhenfu Cao,Keqiu Li,Xu Li,Patrick McDaniel,Radha Poovendran,Guojun Wang,Yang Xiang

2013-01-01

Abstract:IN modern computing paradigms, most computing systems, e.g., cluster computing, grid computing, cloud computing, the Internet, telecommunication networks, Cyber-Physical Systems (CPS), and Machine-to-Machine communication networks (M2M), are parallel and distributed systems. While providing improved expandability, manageability, efficiency, and reliability, parallel and distributed systems increase their security weaknesses to an unprecedented scale. As the system devices are widely connected, their vulnerabilities are shared by the entire system. Because tasks are allocated to, and information is exchanged among the system devices that may belong to different users, trust, security, and privacy issues have yet to be resolved. This special issue of the IEEE Transactions on Parallel and Distributed Systems (TPDS) highlights recent advances in trust, security, and privacy for emerging parallel and distributed systems. This special issue was initiated by Dr. Xu Li, Dr. Patrick McDaniel, Dr. Radha Poovendran, and Dr. Guojun Wang. Due to a large number of submissions, Dr. Zhenfu Cao, Dr. Keqiu Li, and Dr. Yang Xiang were later invited to the editorial team. Dr. Xu Li was responsible for coordinating the paper review process. In response to the call for papers, we received 150 effective submissions, out of which 24 are included in this special issue after rigorous review and careful revision, presenting an acceptance ratio of 16 percent. The accepted papers are divided into three groups, covering issues related to trust, security, and privacy, respectively. The first group includes five papers on trust issues. The paper “Verifying Keys through Publicity and Communities of Trust: Quantifying Off-Axis Corroboration” proposes to achieve robust verification with a novel theoretical model, called Public Data, which treats operational deployments as communities of trust and makes them the verification substrate. The paper “Trustworthy Operations in Cellular Networks: The Case of PF Scheduler” proposes a trustworthy version of the proportional fair scheduler for cellular networks to mitigate the effects of DoS attacks, where malicious UEs disrupt service by intelligently faking their CQI and ARQ feedback reports. The paper “Traffic Pattern-Based Content Leakage Detection for Trusted Content Delivery Networks” addresses content leakage during video streaming and proposes a content-leakage detection scheme that is robust to the variation of video length by exploiting the relation between video length and content similarity. The paper “Enabling Trustworthy Service Evaluation in Service-Oriented Mobile Social Networks” proposes a trustworthy service evaluation system to enable service review sharing in mobile social networks. It identifies three service review attacks and develops sophisticated security mechanisms to deal with these attacks. The paper “ReDS: A Framework for Reputation-Enhanced DHTs” presents a framework for enhancing lookups in redundant Distributed Hash Table (DHTs) in peerto-peer network by tracking how well nodes service lookup requests and study the collaborative identification and removal of bad lookup paths in a way that does not rely on the sharing of reputation score. The second group contains six papers addressing privacy issues. The paper “Certificateless Remote Anonymous Authentication Schemes for Wireless Body Area Networks” presents a pair of light-weight authentication protocols, based on an efficient and secure certificateless signature scheme, to enable remote wireless body area network users to anonymously enjoy healthcare service. The paper “LocaWard: A Security and Privacy Aware Location-Based Rewarding System” proposes a locationbased rewarding system for location-based services, where mobile users can collect and redeem location-based tokens for beneficial rewards. A security and privacy aware rewarding protocol is developed for the system, along with correctness and completeness proofs. IEEE TRANSACTIONS ON PARALLEL AND DISTRIBUTED SYSTEMS, VOL. 25, NO. 2, FEBRUARY 2014 279

Kouichi Sakurai,Amiya Nayak,Haojin Zhu,Arindam Pal

DOI: https://doi.org/10.1109/waina.2016.215

2016-01-01

Abstract:Distributed computer networked systems and services have become a crucial infrastructure element for the organization of modern society. These networks and services are required to be more and more open and new technology is designed to facilitate the inter-operation between these networks composed of heterogeneous, communicating devices. Guaranteeing that they inter-operate securely has become a major concern for individuals, enterprises and governments. Since the environment may be potentially hostile and contain malicious components, it is crucial to define frameworks adapted to distributed systems to enforce security and privacy. By distributed systems, we mean all systems that are composed of more than one communicating device such as telecommunication networks, cloud computer environment, smart communities, internet of things, distributed operating systems and middleware, big data etc.

H. M. N. Dilum Bandara,Anura P. Jayasumana

DOI: https://doi.org/10.1007/s12083-012-0157-3

2012-07-07

Abstract:Emerging collaborative Peer-to-Peer (P2P) systems require discovery and utilization of diverse, multi-attribute, distributed, and dynamic groups of resources to achieve greater tasks beyond conventional file and processor cycle sharing. Collaborations involving application specific resources and dynamic quality of service goals are stressing current P2P architectures. Salient features and desirable characteristics of collaborative P2P systems are highlighted. Resource advertising, selecting, matching, and binding, the critical phases in these systems, and their associated challenges are reviewed using examples from distributed collaborative adaptive sensing systems, cloud computing, and mobile social networks. State-of-the-art resource discovery/aggregation solutions are compared with respect to their architecture, lookup overhead, load balancing, etc., to determine their ability to meet the goals and challenges of each critical phase. Incentives, trust, privacy, and security issues are also discussed, as they will ultimately determine the success of a collaborative P2P system. Open issues and research opportunities that are essential to achieve the true potential of collaborative P2P systems are discussed.

Distributed, Parallel, and Cluster Computing,Cryptography and Security,Networking and Internet Architecture

Ching‐Hsien Hsu,Jong Hyuk Park,Laurence T. Yang,Mário M. Freire

DOI: https://doi.org/10.1002/dac.1057

2009-01-01

International Journal of Communication Systems

Abstract:In the last few years, we have observed an explosive growth of ubiquitous computing, which is emerging as the next generation information technology. This new paradigm has been embodied into tremendous service models through numerous ubiquity-related technologies, such as web, ad hoc, sensor networks, and ambient intelligence to provide computing and communication services anytime and anywhere. Parallel to this, wireless communication technologies have evolved to a stage where they are capable of connecting cyber and physical domains. In such an era, computers in the traditional sense gradually fade from view, making information and communication mediated by computers available anywhere and anytime through devices that are embedded in our environment, completely interconnected, intuitive, effortlessly portable, and constantly available. Although ubiquitous service presents exciting enabling opportunities, the benefits will only be reaped if security aspects and data management can be appropriately addressed. As a result, to realize the advantages of ambient intelligence and services in ubiquitous environments, it requires the security issues and data management to be suitable for its applications. Therefore, secure communication and data management are important challenges for commerce, the public sector, academia and for the individuals. For example, threats exploiting infirmities of user interfaces, operating systems, networks, and wireless communications give rise to new concerns about loss of confidentiality, integrity, privacy, and availability. How can these risks be avoided to an acceptable level? This special issue is intended to foster the dissemination of state-of-the-art research in the area of secure ubiquitous services including security models, security systems, secure data management, and novel applications associated with its utilization wherein security and privacy are the indefeasible rights of individuals to control the ways in which personal information is obtained, processed, distributed, shared, and used by any other entity. This special issue includes eight papers from researchers in Taiwan, China, Tunisia, Canada, Korea, Germany, Hong Kong, and Mexizo, who have demonstrated the effectiveness and efficiency

Weiming Shen,Yinsheng Li,Anne James

DOI: https://doi.org/10.1016/j.jnca.2011.06.012

IF: 7.574

2012-01-01

Journal of Network and Computer Applications

Abstract:Evolving from parallel computing, cluster computing, grid computing, to nowadays cloud computing, the distributed computing paradigm has been shifting from parallelization, distribution, sharing, to be able to support full-scale collaboration between systems and people. This new computing paradigm can be called collaborative computing, composing of technologies and techniques to facilitate people, software, and hardware working together via computer-assisted means. A number of well-known technologies are contributing to the emergence of this new computing paradigm, including computer supported cooperative work (CSCW) and groupware, software agents and multi-agent systems, web services and semantic web, social networks and ad-hoc networks. This collaborative computing paradigm and related technologies have seen wide applications in many areas. At the same time, it also offers a lot of research and development opportunities across a number of disciplines and has attracted a lot of attention of many researchers around the world. This Special Issue includes original research papers that report recent advances in collaborative computing technologies and applications.

Shangwei Guo,Xu Zhang,Fei Yang,Tianwei Zhang,Yan Gan,Tao Xiang,Yang Liu

DOI: https://doi.org/10.48550/arXiv.2112.10183

2021-12-20

Abstract:With the rapid demand of data and computational resources in deep learning systems, a growing number of algorithms to utilize collaborative machine learning techniques, for example, federated learning, to train a shared deep model across multiple participants. It could effectively take advantage of the resources of each participant and obtain a more powerful learning system. However, integrity and privacy threats in such systems have greatly obstructed the applications of collaborative learning. And a large amount of works have been proposed to maintain the model integrity and mitigate the privacy leakage of training data during the training phase for different collaborative learning systems. Compared with existing surveys that mainly focus on one specific collaborative learning system, this survey aims to provide a systematic and comprehensive review of security and privacy researches in collaborative learning. Our survey first provides the system overview of collaborative learning, followed by a brief introduction of integrity and privacy threats. In an organized way, we then detail the existing integrity and privacy attacks as well as their defenses. We also list some open problems in this area and opensource the related papers on GitHub: <a class="link-external link-https" href="https://github.com/csl-cqu/awesome-secure-collebrative-learning-papers" rel="external noopener nofollow">this https URL</a>.

Cryptography and Security

Z Shi,H Ghenniwa,WM Shen

2004-01-01

Abstract:A major challenge in deploying collaborative agent-based distributed systems in open environments is how to deal with trust and security issues. Traditional security strategies that use system-based control to verify the identity of individual agent are inadequate for the increased flexibility, In this paper, we examine current security approaches for managing trust and propose a new model for trust and trust management for collaborative agent-based systems. We present an approach using a trust facilitator, which can provide trust values of interacting agents to help request agents make trust-related decisions.

Christopher Gorog

DOI: https://doi.org/10.48550/arXiv.2103.14783

2021-03-27

Cryptography and Security

Abstract:This paper outlines an approach for IEEE to take leadership for digital privacy to align many existing IEEE Societies and efforts in the areas of computer systems & applications security, organizational & global architectures, policy-supporting legislation, originating new standards, integrating compliance into technologies, and helping design decision-board infrastructures for governance bodies. Much of the current emphasis on evolving privacy technologies centers on big corporate enterprises and institutions, causing the industry to support corporate assets protection mainly. Fostering technology to empower individual privacy-enabling tools has lagged, and personal privacy has diminished because corporate big data applications have made sizable investments into exploiting private data. As one of the largest individual-member-based organizations, IEEE is urged to develop a collaborative approach for digital privacy with privacy-enabling technologies to benefit its members. The recommendations outlined define a prospective course that could result in future global individualized privacy capabilities which employ a combination of synergistic technologies such as distributed ledgers, differential privacy, homomorphic encryption, secure distributed multi-party computation, zero-trust architectures, proof-of-origin of data, software, or other techniques. Such an effort would involve community engagement and outreach, academic peer-review events, the establishment of governance bodies, coordination & expansion of existing standards, and the development of publicly-accessible prototypes. Collaboration with other IEEE-sponsored efforts for transactive energy systems, confidentiality and security of healthcare records and devices, and other IEEE-funded projects will help magnify digital privacy investments already in progress in these applications of emerging technologies.

Jia Xu,Jia Yan,Liang He,Purui Su,Dengguo Feng

DOI: https://doi.org/10.1109/CloudCom.2010.16

2010-01-01

Abstract:Massive Internet invasions implemented through the distributed platform fabricated by rapid diffusion of malwares, has become a significant issue in network security. We argue that the notion of “Collaborative Security” is an emerging trend in resisting distributed attacks originated from malware. Therefore, this paper proposes a new architecture: CloudSEC, for composing collaborative security-related services in clouds, such as correlated intrusion analysis, anti-spam, anti-DDOS, automated malware detection and containment. CloudSEC is modeled as a dynamic peer-to-peer overlay hierarchy with three types of top-down architectural components. Based on, this architecture, both data distribution and task scheduling overlays can be simultaneously implemented in a loosely coupled fashion, which can efficiently retrieve data resources from heterogeneous network security facilities, and harness distributed collection of computational resources to process data-intensive tasks. Hence, CloudSEC endues the network security infrastructure with the capability of dynamic adaptation and collaboration on an inter-organizational scale. The results of preliminary evaluation demonstrate that, CloudSEC not only delivers a sample service of distributed intrusion correlation with high scalability and robustness, but also achieves remarkable effectiveness in data sharing and task scheduling.

Sheng Zhong,Tingting Chen

2011-01-01

Abstract:In today’s society, advanced cyber-infrastructure are connecting a huge number of mutually unfamiliar people, and forming a computing environment with untrusted parties. The human factors of untrusted parties, especially the considerations of privacy, security and incentives, bring new challenges in designing our systems, services and software with distributed computations. This thesis addresses the incentive and privacy issues in distributed computing with untrusted parties.Wireless networks with recent technical advances have become one of the most popular platforms for computing with untrusted parties. However, in civilian wireless networks, nodes often belong to different users and those users may be selfish. Existing protocols that were designed without considering user incentives often require nodes to spend their own resources for others. Hence selfish users may deviate from these protocols, in order to maximize their benefits. It causes serious problems to performance and even functioning of wireless networks. So, it is of great importance to provide incentives to those selfish users in wireless networks. First part of this thesis focuses on designing incentive-compatible packet forwarding protocols for three different types of wireless networks, i.e., ad hoc wireless networks, wireless networks using network coding and vehicular ad hoc networks. First, for traditional ad hoc wireless networks, the first reputation system that has rigorous analysis and guaranteed incentive compatibility in a practical model is proposed, to enhance the cooperation among nodes in forwarding packets for others. Second, for newly emerging wireless networks using network coding, the first-ever enforceable incentive scheme to stimulate packet forwarding is proposed that uses a combination of game theoretic and cryptographic techniques. Third, the problem on how to stimulate message forwarding in vehicular ad hoc networks that have no end-to-end connections is solved, and an incentive scheme with rigorous analysis based on coalitional game theory is proposed.In the distributed computing environments with untrusted parties, besides incentive issues, privacy concerns from the participants also impede the process of obtaining better computation results. To address the privacy concerns, the second part of this thesis focuses on designing privacy preserving distributed data mining protocols, when the input data comes from different parties. In particular, the first privacy preserving back-propagation learning algorithms for multi-layer neural networks with vertically partitioned data, using cryptographic tools, with provable security is proposed. Furthermore, a privacy preserving algorithm for growing neural gas with input data from two parties is also presented. This algorithm allows two parties to jointly conduct grow neural gas algorithm without revealing any party’s data.

Ke Yan,Wen Shen,Qun Jin,Huijuan Lu

DOI: https://doi.org/10.1109/access.2019.2894344

IF: 3.9

2019-01-01

IEEE Access

Abstract:<p>Fast development of shared services has become a crucial part of the cyber-enabled world construction process, as sharing services reinvent how people exchange and obtain goods or services. However, privacy leakage or disclosure remains a key concern during the sharing service development process. While significant efforts have been undertaken to address various privacy issues in recent years, there is a surprising lack of review for privacy concerns in the cyber-enabled sharing world. To bridge the gap, in this paper, we survey and evaluate existing and emerging privacy issues relating to sharing services from various perspectives. Differing from existing similar works on surveying sharing practices in various fields, our work comprehensively covers six branches of sharing services in the cyber-enabled world and selects solutions mostly from the recent five to six years. We conclude the issues and solutions from three perspectives, namely, from users', platforms' and service providers' perspectives. Hot topics and less discussed (cold) topics are identified, which provides hints to researchers for their future studies.</p>

computer science, information systems,telecommunications,engineering, electrical & electronic

Rodrigo Roman,Jianying Zhou,Javier Lopez

DOI: https://doi.org/10.1016/j.comnet.2012.12.018

IF: 5.493

2013-07-01

Computer Networks

Abstract:In the Internet of Things, services can be provisioned using centralized architectures, where central entities acquire, process, and provide information. Alternatively, distributed architectures, where entities at the edge of the network exchange information and collaborate with each other in a dynamic way, can also be used. In order to understand the applicability and viability of this distributed approach, it is necessary to know its advantages and disadvantages – not only in terms of features but also in terms of security and privacy challenges. The purpose of this paper is to show that the distributed approach has various challenges that need to be solved, but also various interesting properties and strengths.

computer science, information systems,telecommunications,engineering, electrical & electronic, hardware & architecture