Peng Zhao,Xuewu Cao,Ping Luo

2003-01-01

Abstract:The RADIUS protocol has a set of vulnerabilities that are either caused by the protocol, or caused by poor client implementation and exacerbated by the protocol. For security reasons, it would be advantageous to push for at least minimal revisions of the widely used RADIUS protocol. This paper mainly deals with some of the characteristics of the base RADIUS protocol and of the User-Password attribute.

XIE Qi,CHEN De-ren,YU Xiu-yuan

IF: 2.034

2010-01-01

Systems Engineering

Abstract:In 2009, Park, et al. proposed an efficient remote user authentication protocol. They claimed that their protocol was the first password and smart card based remote user authentication scheme which can resist the off-line password guessing attack, and had many advantages over existing solutions such as no password tables and timestamp, low communication and computational costs. However, this paper shows that their protocol cannot resist the forgery attack and off-line password guessing attack. To overcome the security weaknesses, two improved schemes based on either nonce or timestamp without affecting the merits of the Park, et al. scheme are proposed. Technical discussions are provided to show that the improved protocol is secure, efficient and practical.

YANG Jian-jun,JIA Chen-jun,RAN Li-xin

DOI: https://doi.org/10.3785/j.issn.1008-973x.2005.02.014

2005-01-01

Abstract:By analyzing the principle of remote authentication dial in user service (RADIUS) protocol and the applied security algorithm, an improved RADIUS protocol was proposed to enhance the security performance of networks.Based on the improved protocol,AAA (authentication,authority and account) architecture was set up for the Internet service providers.The AAA architecture for wireless gateway does not increase the complexity of the communication systems, and is simple and easy to implement.

Jian Song,Fan Hong,Yu Zhang

2006-01-01

Abstract:In mobile ad hoc networks (MANET), various types of denial of service attacks (DoS) are possible because of the inherent limitations of its routing protocols. The attack of initiating/forwarding fake route requests (RREQs) can lead to hogging of network resources and hence denial of service to genuine nodes. This type of attack is hard to detect since malicious nodes mimic normal nodes in all aspects except that they do route discoveries much more frequently than the other nodes. A distrusted filtering mechanism is proposed to mitigate such situations and reduce the loss of throughput. The proposed mechanism could prevent this specific kind of DoS attack and does not use any additional network bandwidth

Shi Biao,Tang Zhen-jun,Li Xian-hua,Jiang Shi-jin,Yu Xin-hua

DOI: https://doi.org/10.1109/wicom.2007.66

2007-01-01

Abstract:Notice of Violation of IEEE Publication Principles"A Simple Subspace-Based Blind Channel Estimation Technique for OFDM Systemsby Shi Biao, Tang Zhen-jun, Li Xian-hua, Jiang Shi-jin, and Yu Xin-huain the Proceedings of the International Conference on Wireless Communications, Networking and Mobile Computing, 2007. WiCom 2007, pp.236-241, Sept. 2007After careful and considered review of the content and authorship of this paper by a duly constituted expert committee, this paper has been found to be in violation of IEEE's Publication Principles.This paper is a duplication of the original text from the paper cited below. The original text was copied without attribution (including appropriate references to the original author(s) and/or paper title) and without permission.Due to the nature of this violation, reasonable effort should be made to remove all past references to this paper, and future references should be made to the following article:"Blind Channel Estimation for MIMO OFDM Systems via Nonredundant Linear Precoding,"by Feifei Gao and A. Nallanathan,in the IEEE Transactions on Signal Processing, Vol. 55, No. 2, February 2007

Jianyong Huang,Willy Susilo,Jennifer Seberry

2004-01-01

Abstract:This paper surveys the security of the message integrity code used in the IEEE802.11 Wireless LANs. To address the security flaws of Wired Equivalent Privacy (WEP), the IEEE802.11i draft defines two data confidentiality and integrity protocols, Temporal Key Integrity Protocol (TKIP) and Counter-Mode-CBCMAC Protocol (CCMP). TKIP is based on RC4, andCCMP is based on the AES cipher. TKIP includes a keyed hash functions, called Michael, as the messag integrity code. The aim of this paper is to summarise the recent research results of Michael and analyse the practicability of two attacks against Michael. Disciplines Physical Sciences and Mathematics Publication Details This conference paper was originally published as Huang, J, Susilo, W and Seberry, J, Observations on the Message Integrity Code in IEEE802.11Wireless LANs, in Proceedings of the 3rd Workshop on the Internet, Telecommunications and Signal Processing (WITSP'04), Adelaide, Australia, 20-22 December 2004, CDROM, 328-332. This conference paper is available at Research Online: http://ro.uow.edu.au/infopapers/511 Observations on the Message Integrity Code in IEEE802.11 Wireless LANs Jianyong Huang, Willy Susilo and Jennifer Seberry School of Information Technology and Computer Science University of Wollongong Australia Email: {jyh33, wsusilo, jennie}@uow.edu.au

Yixin Jiang,Chuang Lin,Hao Yin,Zhen Chen

DOI: https://doi.org/10.1002/wcm.448

2006-01-01

Wireless Communications and Mobile Computing

Abstract:IEEE 802.11 wireless local area networks (WLAN) has been increasingly deployed in various locations because of the convenience of wireless communication and decreasing costs of the underlying technology. However, the existing security mechanisms in wireless communication are vulnerable to be attacked and seriously threat the data authentication and confidentiality. In this paper, we mainly focus on two issues. First, the vulnerabilities of security protocols specified in IEEE 802.11 and 802.1X standards are analyzed in detail. Second, a new mutual authentication and privacy scheme for WLAN is proposed to address these security issues. The proposed scheme improves the security mechanisms of IEEE 802.11 and 802.1X by providing a mandatory mutual authentication mechanism between mobile station and access point (AP) based on public key infrastructure (PKI), offering data integrity check and improving data confidentiality with symmetric cipher block chain (CBC) encryption. In addition, this scheme also provides some other new security mechanisms, such as dynamic session key negotiation and multicast key notification. Hence, with these new security mechanisms, it should be much more secure than the original security scheme. Copyright © 2006 John Wiley & Sons, Ltd.

Yilei Wang,Chao Guo,Tao Li,Qiuliang Xu

DOI: https://doi.org/10.1109/waina.2015.9

2015-01-01

Abstract:Notice of Violation of IEEE Publication Principles "Secure Two-Party Computation in Social Cloud Based on Reputation" by Yilei Wang, Chao Guo, Tao Li, Qiuliang Xu in Proceedings of the 29th International Conference on Advanced Information Networking and Applications Workshop, March 2015, pp. 242-245 After careful and considered review of the content and authorship of this paper by a duly constituted expert committee, this paper has been found to be in violation of IEEE’s Publication Principles. This paper copied text and formulas from the paper cited below. The original text was modified and reused without attribution (including appropriate references to the original author(s) and/or paper title) and without permission. Also, Qiuliang Xu did not agree to be listed as an author. "Socio-Rational Secret Sharing as a New Direction in Rational Cryptography" by Mehrdad Nojoumian, Douglas R. Stinson, in Decision and Game Theory for Security, Vol 7638—Lecture Notes in Computer Science, 2012, pp. 18-37 Parties are expected to be cooperative such that some tasks, e.g. Two-party computation in social cloud, become much easier. It is well known that reputation is an important property to promote cooperation among parties in game theory. Therefore, we consider the effect of reputation when parties interact in social cloud to find a new way realizing mutual cooperation. More specifically, parities in the social cloud are rational who value their reputation. Cooperation can boost their reputation, so they have incentives to cooperate with others such that they may get a higher utility. The basic idea of this paper is to add reputation deriving from social cloudas part of the utility. That is, we describe the architecture and interaction between two rational parties in the social cloud, where two parties receive their opponent's trust or reputation from the social cloud. The computation of trust and reputation is finished in the social cloud. Finally, we prove that given proper parameters in rational secure two-party computation (rational STPC), it is possible to complete the computation in just one round in the second stage of the protocol.

Wu Liu,HaiXin Duan,Ping Ren,Jianping Wu

DOI: https://doi.org/10.1109/ICGCS.2010.5543034

2010-01-01

Abstract:As the rapid development of Internet and information technology, more and more people now access Internet via Wireless Local Area Network (WLAN) with many features such as: mobility, convenience and low-cost, but the security flaws existed in RC4, WEP and WPA lead to security issues in WLAN. In this paper, we present several serious security flaws in these protocols, stemming from misapplication of cryptographic primitives and discuss in detail each of the flaws, the underlying security principle violations, and implement relative attacks to show the weakness of WLAN protocols. © 2010 IEEE.

Jiemin Liu,Hongxing Zou,Jingxin Dou,Yuan Gao

DOI: https://doi.org/10.1109/IIH-MSP.2008.182

2008-01-01

Abstract:Notice of Violation of IEEE Publication Principles "Asymmetric Path Optimization In Mobile Multi-homed SCTP Multimedia Transport" by Jiemin Liu, Hongxing Zou, Jingxin Dou, and Yuan Gao in the Proceedings of the International Conference on Intelligent Information Hiding and Multimedia Signal Processing (IIH-MSP/2008) pp 496-499 After careful and considered review of the content and authorship of this paper by a duly constituted expert committee, this paper has been found to be in violation of IEEE's Publication Principles. This paper contains substantial duplication of original text from the paper cited below. The original text was copied without attribution (including appropriate references to the original author(s) and/or paper title) and without permission. Due to the nature of this violation, reasonable effort should be made to remove all past references to this paper, and future references should be made to the following article: "Asymmetric Path Delay Optimization in Mobile Multi-homed SCTP Multimedia Transport" By Eduardo Parente Ribeiro and Victor C. M. Leung in the Proceedings of the 1st ACM Workshop on Wireless Multimedia Networking and Performance Modeling - WMuNeP/2005, We investigate the optimization of asymmetric path choice in mobile multi-homed SCTP multimedia transport. We find that existing method has some limitation caused by the insufficient of reasonable RTT calculation. Based on this, we make a potential change to standard SCTP by adding RETID (RETransmission IDentifier) chunk and RETID Echo chunk and propose a scheme named Acknowledgement-matched Asymmetric-Path RTT Measurement (AAPRM) to match retransmission TSN with its Ack and to obtain correct RTT of asymmetric path. We also propose an algorithm called Smallest RTT Asymmetric-Path First (SRAPF) for transport path selection that takes into account the dynamic asymmetry over the available routes. The time sequence figure demonstrates ho- asymmetric-path RTT measurement could benefit from AAPRM and an example is provided showing how a multimedia application could benefit from SRAPF.

Yubo Song,Chen Xi,Hu Aiqun

DOI: https://doi.org/10.1109/MINES.2009.209

2009-01-01

Abstract:The WAI (WLAN Authentication Infrastructure), which is composed of mutual certificate authentication and key agreement, is the authentication protocol in the Chinese Wireless LAN standard. In this paper, we analyze the WAI protocol using a finite-state verification tool Mur¿ and find that the authentication protocol can't resist the denial of service attack. Attackers can forge the messages to produce inconsistent keys in peers. Three Denial-of-Service attacks are discussed in this paper. Two of those attacks are occurred in the mutual certificate authentication phase and one is found in the key agreement phase. Furthermore, several amendments are discussed in this paper.

Lei Wang,Baoyu Zheng,Jingwu Cui,Xiaorong Xu

DOI: https://doi.org/10.1109/wcsp.2009.5371439

2009-01-01

Abstract:Notice of Violation of IEEE Publication Principles "Precoder Division Multiplexing Access for Cognitive Radio" by Lei Wang, Baoyu Zheng, Jingwu Cui, Xiaorong Xu in the Proceedings of the International Conference on Wireless Communications & Signal Processing, 2009. WCSP 2009 , November 2009 After careful and considered review of the content and authorship of this paper by a duly constituted expert committee, this paper has been found to be in violation of IEEE's Publication Principles. This paper contains significant portions of text from the paper cited below that were paraphrased without appropriate attribution. "Vandermonde Frequency Division Multiplexing for Cognitive Radio" by Leonard S. Cardoso, Mari Kobayashi, Oyvind Ryan, Merouane Debbah in the Proceedings of the IEEE 9th Workshop on Signal Processing Advances in Wireless Communications, 2008. SPAWC 2008, July 2008, pp. 421-425 In the considered scenario of this paper, a primary user and a secondary user wish to communicate with their corresponding receivers simultaneously over frequency selective channels. Each transmitter has no side information about the other's message and each transmitter only knows its local channels. We propose a precoder division multiplexing access (PDMA) scheme for this scenario, which is based on the orthogonality between the channel and the precoder. Our theoretical analysis and numerical examples show that with the new scheme, users can cancel each other's interference effectively.

Wenting Li,Bin Li,Yiming Zhao,Ping Wang,Fushan Wei

DOI: https://doi.org/10.1155/2018/8539674

2018-01-01

Abstract:Nowadays wireless sensor networks (WSNs) have drawn great attention from both industrial world and academic community. To facilitate real-time data access for external users from the sensor nodes directly, password-based authentication has become the prevalent authentication mechanism in the past decades. In this work, we investigate three foremost protocols in the area of password-based user authentication scheme for WSNs. Firstly, we analyze an efficient and anonymous protocol and demonstrate that though this protocol is equipped with a formal proof, it actually has several security loopholes been overlooked, such that it cannot resist against smart card loss attack and violate forward secrecy. Secondly, we scrutinize a lightweight protocol and point out that it cannot achieve the claimed security goal of forward secrecy, as well as suffering from user anonymity violation attack and offline password guessing attack. Thirdly, we find that an anonymous scheme fails to preserve two critical properties of forward secrecy and user friendliness. In addition, by adopting the "perfect forward secrecy (PFS)" principle, we provide several effective countermeasures to remedy the identified weaknesses. To test the necessity and effectiveness of our suggestions, we conduct a comparison of 10 representative schemes in terms of the underlying cryptographic primitives used for realizing forward secrecy.

Yao Zhao,Sagar Vemuri,Jiazhen Chen,Yan Chen,Hai Zhou,Zhi Fu

DOI: https://doi.org/10.1109/DSN.2009.5270358

2009-01-01

Abstract:Security protocols are not as secure as we assumed. In this paper, we identified a practical way to launch DoS attacks on security protocols by triggering exceptions. Through experiments, we show that even the latest strongly authenticated protocols such as PEAP, EAP-TLS and EAP-TTLS are vulnerable to these attacks. Real attacks have been implemented and tested against TLS-based EAP protocols, the major family of security protocols for wireless LAN, as well as the return routability of mobile IPv6, an emerging lightweight security protocol in new IPv6 infrastructure. DoS attacks on PEAP, one popular TLS-based EAP protocol were performed and tested on a major university's wireless network, and the attacks were highly successful. We further tested the scalability of our attack through a series of ns-2 simulations. Countermeasures for detection of such attacks and improvements of the protocols to overcome these types of DoS attacks are also proposed and verified experimentally.

Jian-fan WEI,Zhong CHEN,Yun-suo DUAN,Li-fu WANG

DOI: https://doi.org/10.3321/j.issn:0372-2112.2005.02.023

2005-01-01

Tien Tzu Hsueh Pao/Acta Electronica Sinica

Abstract:Denial of service has become a major security threat in open communications networks. Authentication and key establishment protocols usually are vulnerable to network DoS attacks. This paper presents a new countermeasure to make authentication protocols without trusted third party resistant against DoS attack. By using this method, the strength of resistance can be adjusted dynamically and most parallel session attacks can be prevented.

Debiao He,Yuanyuan Zhang,Jianhua Chen

DOI: https://doi.org/10.1007/s11277-013-1282-x

IF: 2.017

2013-01-01

Wireless Personal Communications

Abstract:Authentication protocols with anonymity attracted wide attention since they could protect users’ privacy in wireless communications. Recently, Hsieh and Leu proposed an anonymous authentication protocol based on elliptic curve Diffie–Hellman problem for wireless access networks and claimed their protocol could provide anonymity. However, by proposing a concrete attack, we point out that their protocol cannot provide user anonymity. To overcome its weakness, we propose an improved protocol. We also provide an analysis of our proposed protocol to prove its superiority, even though its computational cost is slightly higher.

Xiuqing Chen,Tianjie Cao,Robin Doss,Jingxuan Zhai

DOI: https://doi.org/10.1007/s11277-017-4449-z

IF: 2.017

2017-01-01

Wireless Personal Communications

Abstract:Radio Frequency Identification (RFID) technology is expected to play a key role in the Internet of Things (IoT) and has applications in a wide variety of domains ranging from automation to healthcare systems. Therefore, the security and privacy of RFID communication is critical. In this paper, we analyze two recent RFID protocols proposed by researchers. Specifically we show that the ownership transfer protocol proposed by Wang et al., is vulnerable to tracing attacks while the mutual authentication protocol proposed by Cho et al. is vulnerable to key disclosure and backward traceable attacks. We propose secure improvements to these protocols to address the vulnerabilities, and improve the scalability of these schemes making them suitable for large-scale deployments.

BT Hsieh,HM Sun,T Hwang

DOI: https://doi.org/10.15388/informatica.2003.014

2003-01-01

Informatica

Abstract:In an internet environment, such as UNIX, a remote user has to obtain the access right from a server before doing any job. The procedure of obtaining acess right is called a user authentication protocol. User authentication via user memorable password provides convenience without needing any auxiliary devices, such as smart card. A user authentication protocol via username and password should basically withstand the off-line password guessing attack, the stolen verifier attack, and the DoS attack. Recently, Peyravian and Zunic proposed one password transmission protocol and one password change protocol. Later, Tseng et al. (2001) pointed out that Peyravian and Zunic's protocols can not withstand the off-line password guessing attack, and therefore proposed an improved protocol to defeat the attack. Independently, Hwang and Yeh also showed that Peyravian and Zunic's protocols suffer from some secury flaws, and an improved protocol was also presented. In this paper, we show that both Peyravian and Zunic's protocols and Tseng et al.'s improved protocol are insecure against the stolen verifier attack. Moreover, we show that all Peyravian and Zunic's, Tseng et al.'s, and Hwang and Yeh's protocols are insecure against DoS attack.

Yuxiang Zhao,Qinghua Zhu,Hao Wang

DOI: https://doi.org/10.1109/iciii.2011.405

2011-01-01

Abstract:Notice of Violation of IEEE Publication Principles "Citizen Science: An Emerging Field for Information Related Studies," by Yuxiang Zhao, Qinghua Zhu, Hao Wang, in the Proceedings of the International Conference on Information Management, Innovation Management and Industrial Engineering (ICIII), 2011, Nov. 2011, pp.518-521 After careful and considered review of the content and authorship of this paper by a duly constituted expert committee, this paper has been found to be in violation of IEEE's Publication Principles. The authors miscredited text throughout this paper, using incorrect referencing. Also, due to the absence of quotation marks or offset text, copied material is not clearly referenced or specifically identified. Due to the nature of this violation, reasonable effort should be made to remove all past references to this paper, and future references should be avoided. Citizen Science is a form of research collaboration involving public participants in scientific research projects to solve real-world problems. With the sweeping progress of Web 2.0 technologies and capabilities, the availability of large scientific data sets through the Internet has allowed citizen science projects to engage volunteers in new ways. We believe that information field scholars have a unique position to make significant contributions to this emerging research area. This paper firstly seeks to present the origin and development of citizen science, and pinpoint its conceptualization. Furthermore, the paper identifies several important research directions for information management scholars from four perspectives that remain unaddressed and warrant further study. The research contributes to the Information field and provides insights for iSchool scholars to better understand various issues in citizen science.

Shang-hui Xiao,Zhong-pei Zhang,Qin-min Wang,Zhi-ping Shi

2010-01-01

Abstract:Notice of Violation of IEEE Publication Principles "Coordinated Multi-point Transmission Systems with Dynamical Cell-clustering Strategies" by Shang-hui Xiao, Zhong-pei Zhang, Qin-min Wang, Zhi-ping Shi in the Proceedings of the Fifth International ICST Conference on Communications and Networking in China (CHINACOM), August 2010 After careful and considered review of the content and authorship of this paper by a duly constituted expert committee, this paper has been found to be in violation of IEEE's Publication Principles. This paper contains significant portions of original text paraphrased from the papers cited below. The original text was reused without attribution (including appropriate references to the original author(s) and/or paper titles) and without permission. "Downlink Overhead Reduction for Multi-Cell Cooperative Processing Enabled Wireless Networks" by Agisilaos Papadogiannis, Hans Jorgon Bang, David Gesbert, Eric Hardouin in the Proceedings of the IEEE 19th International Symposium on Personal, Indoor and Mobile Radio Communications, (PIMRC), September 2008 "A Dynamic Clustering Approach in Wireless Networks with Multi-Cell Cooperative Processing" by Agisilaos Papadogiannis, David Gesbert, Eric Hardouin in the Proceedings of the IEEE International Conference on Communications, (ICC), May 2008, pp. 4033-4037 This paper firstly presents the system structure and mathematical signal model for multi-point coordinating downlink transmission, and then gives a detailed discussion on dynamical cell-clustering strategies and scheduling utility metric in forming cooperation cluster of cells based on detected system parameters, where the user is serviced by a cluster selected from a set of clusters. Some simulation results are given to show that dynamical cell-clustering strategies are beneficial to user performance improvement owing to fairness across all the UEs comparing to static cell-clustering me- hod.