Wei Sun,Xiangwei Kong,Dequan He,Xingang You

DOI: https://doi.org/10.1109/ISECS.2008.147

2008-01-01

Abstract:The purpose of this paper is to resolve information security problem in the mobile electronic commerce industry chain. We analyze information security based on evolutionary game theory. In this paper, we set up the information security game model with penalty parameter, calculate replicator dynamics, and analyze the evolutionary stable strategy of the game model. The result reveals that reducing the investment cost is the key factor to promote information security investment. If this condition can not be satisfied, the regulation of penalty parameter will help to promote the investment. The research method in this paper provides a new thought for the solution of information security in the mobile electronic commerce chain.

Qi XIE,XiuYuan YU,WenHao LIU,DeRen CHEN,GuiLin WANG,JiYi WU

DOI: https://doi.org/10.1360/112011-915

2012-01-01

Scientia Sinica Informationis

Abstract:Mutual authentication between the user and the public cloud is essential requirement for the user to access the public cloud in cloud computing. In 2011, Juang et al. proposed a first authentication scheme based on proxy signature. The advantage of the scheme is that the user only needs to register on his home service cloud (HSC), and can pass through the authentication of the public cloud with the help of his HSC. However, their scheme has three weaknesses: 1) the users HSC needs to update the users public key in each session to protect the users privacy; 2) HSC may suffer from network jam when many users in the same HSC need to register on different public clouds simultaneously; and 3) a secret key should be shared between HSC and visiting cloud. To overcome these weaknesses, a provably secure convertible proxy signcryption for privacy preserving is proposed. Based on this scheme, a novel one-round authentication protocol is proposed, which the user only needs to register on his HSC, and can pass through the authentication of the visiting cloud without the help of his HSC. On the other hand, the proposed protocol can provide some nice properties, such as user privacy protection, non-repudiation, without updating the users public key, and secret key does not have to be shared between HSC and visiting cloud. In addition, the proposed scheme is provably secure in the random oracle model, and is more efficient than Juang et al.s scheme.

Wenjuan Li,Lingdi Ping,Xuezeng Pan

DOI: https://doi.org/10.1109/iceie.2010.5559829

2010-01-01

Abstract:Security and interoperability is the biggest challenge to promote cloud computing currently. Trust has proved to be one of the most important and effective alternative means to construct security in distributed systems. In order to efficiently and safely construct entities' trust relationship in cloud and cross-clouds environment, this paper proposed a novel cloud trust model and a new cloud security framework. The propose trust model is domain-based. It divides one cloud provider's resource nodes into the same trust domain. It designs different trust strategies for different roles. Trust recommendation is treated as one type of cloud services just like computation or storage. Based on the proposed trust model, it introduced a novel cloud security framework with an independent trust management module. Using the proposed security model, it introduced some trust-based security mechanisms. Results of simulation experiments show that the proposed security model can achieve high transaction success rate with high trust accuracy.

Zhi-Yu Peng,Shan-Ping Li

DOI: https://doi.org/10.1109/icmlc.2008.4620616

2008-01-01

Abstract:As pervasive computing leading to an increased collection of information in the computational world as well as the real world, privacy leaking becomes a serious issue. Although privacy protection has drawn great attention in recent years, the privacy-preserving trust management has not been brought forward. Credential chain discovery problem is the key issue in trust management, and traditionally credentials are full open in the whole system. This could expose users' access control policies as well as other private information, and leads to a great risk of being cheated by malicious users. This paper advocates a privacy-preserving credential chain discovery mechanism, in which credentials are no longer available to everyone. By merely learning credentials of one's logic neighbors, this mechanism still achieves good results. The simulations show that this mechanism is practical.

Chaoyang Zhu,Qing Ding,Xiangzhou Chen,Zhu Shi

DOI: https://doi.org/10.22323/1.299.0070

2017-01-01

Abstract:With the trend of Mobile Cloud Computing, the establishment of trust between mobile consumers and cloud service providers become the primary issue as it relates to the cloud platform security. Subjective or objective trust model are typically adopted in the Cloud environment; however, none of these models can easily go for MCC because they only cover a few aspects of trust establishment and do not support all the essential features. In this paper, a Service Level Agreements (SLAs) server assisted distributed trust management framework is designed for such networks that enables mobile users to quickly adapt itself to change local conditions. Based on this architecture, an innovative trust model is presented which integrates objective and subjective trust aggregated in a distributed manner. The simulation results demonstrate that this model can be effective to differentiate trustworthy and untrustworthy Cloud Service Providers (CSP) and the service users in the presence of few untrustworthy nodes. In particular, it provides a more effective method to meet the mobile users' individualization requirement.

LIU Jianhua,LI Minglu,LI Dazhi,LI Luqun

DOI: https://doi.org/10.11959/j.issn.1000-0801.2017125

2017-01-01

Abstract:Industrial wireless sensor networks and production equipments are deployed in unattended and distributed intelligent manufacturing system (IMS).Sensor-cloud as a potential technology can effectively integrate distributed equipments as a service and provide it to mobile robots.However,when the mobile robots access the remote devices via sensor-cloud platform,because potential attackers easily intercept keys and eavesdrop equipment operation contents through wireless channels,which makes the key management and the control of equipment operation permission become crucial to the safe and reliable operation of 1MS.Therefore,the utility function of game players were formalized,the adaptive trust update process was analyzed,and an adaptive trust management mechanism based on evolutionary game was proposed.Simulation results show that the proposed method can effectively improve the security of sensor-cloud network systems and equipments.

Ling Xiong,Fagen Li,Mingxing He,Zhicai Liu,Tu Peng

DOI: https://doi.org/10.1109/tcc.2020.3029878

IF: 5.697

2022-01-01

IEEE Transactions on Cloud Computing

Abstract:In the last few years, mobile cloud computing (MCC) gains a huge development because of the popularity of mobile applications and cloud computing. User authentication and access control are two indispensable security components in the MCC environment. To the best of our knowledge, they are generally designed in different procedures. Access control can be executed after the authentication completes successfully. In order to improve efficiency, this article constructs an integrated scheme of authentication and hierarchical access control using self-certified public key cryptography (SCPKC) and the Chinese remainder theorem (CRT) for MCC environment. The proposed scheme can achieve mutual authentication while determining the access rights of mobile users without storing any access control list in the MCC service provider side. Besides, we also give a dynamic adding or deletion of MCC service provider to efficiently address potential changes in the hierarchy. The security of our proposed scheme is proved by the random oracle model. Compared with recently related multi-server authentication schemes for the MCC environment, the proposed scheme not only adds a new function of hierarchical access control but also has better computation and communication efficiencies. Therefore, the proposed scheme is more suitable for real-life MCC applications.

Yan Li,Jinqiang Ren,Huiping Sun,Haining Luo,Zhong Chen

DOI: https://doi.org/10.1007/978-3-642-10240-0_8

2009-01-01

Abstract:With development of grid technology, sensitive data protection becomes a difficult task for accesses from heterogeneous domains. Moreover, anonymity and unknown peers worsen security problems. Traditional access control mechanisms are not suitable to distributed environment. Several models and mechanisms make use of trust evaluation to assist access control decision. But few explicitly consider trust and risk as two separate factors which affect interactions between peers. In this paper, we present an access control mechanism which considers both trust and risk as two vital parameters. We also introduce static game model with incomplete information to analyze the optimal decision. In addition, a new model of trust evaluation is proposed to represent the confidence in the peer. To appease people's anxiety about loss, a model of risk assessment is also presented to indicate impacts on resources. At the end of this paper, to describe how our mechanism works, a scenario is provided.

Bo LIU,Yu-Yang ZHOU,Fei HU,Fa-Gen LI

DOI: https://doi.org/10.13868/j.cnki.jcr.000224

2018-01-01

Abstract:With the rapid development of E-commerce, network service providers usually provide users with a wide range of services running on different servers. Thus, multi-server model has been widely used. Meanwhile, more and more people access network services more quickly through the mobile phones or other mobile devices, this is the current mobile client-multi-server model which has been very popular. On one hand, mobile devices bring convenience to our lives. On the other hand, the openness of mobile Internet makes its security issues more serious. It is necessary to design a user authentication and key agreement protocol for the mobile client-multi-server model. However, compared with personal computers, mobile devices have resource-constrained features. So how to design a protocol that combines security and efficiency is not an easy task. In order to solve this problem, this study proposes a user authentication and key agreement protocol under the mobile client-multi-server model. Certificateless public key cryptography can solve the problem of certificate management in traditional public key systems and the inherent key escrow problem in identity-based public key cryptography, it has the advantages of both high efficiency and security. In addition, the mobile devices have the characteristics of resource constraints, so the certificateless public key cryptography is very suitable for designing a security protocol for mobile devices which have limited resources. In this paper, it is proved that the proposed protocol can provide mutual authentication and secure key agreement services in the random oracle model. Compared with other protocols of the same type,the proposed protocol in this paper has a better computational efficiency.

S. Jebarani Evangeline,Ajit Kumar Singh Yadav,V. R. Balaji,D. Sivaganesan,A. Senthil Kumar,S. S. Sivaraju

DOI: https://doi.org/10.1142/s1793962324410216

2024-09-01

International Journal of Modeling Simulation and Scientific Computing

Abstract:International Journal of Modeling, Simulation, and Scientific Computing, Ahead of Print. The cloud-based gaming services have given rise to an abundance of fresh worries around data protection and safety. The present cloud gaming security solutions suffer from a key issue in that they do not include a comprehensive framework. This framework would take into consideration the dynamic and interactive nature of the data center environment. When trying to mitigate risks in today's continuously moving cyber threat scenario, it is imperative to consider all relevant factors, including the health of the system, individual costs, and potential advantages. The existing works address about how game theory might be used to improve the safety of cloud-based gaming. The purpose of this research is to overcome the research gap by developing a novel model that captures the multiple linkages between security measures and potential attacks, supplying a more holistic perspective on cloud gaming security in the process. In this line of investigation, a Noncooperative Game-Theoretic Model is used to investigate the dynamics of predators and prey. In this research, a Noncooperative Game-Theoretic Model is presented with the purpose of analysing and perfecting security measures inside the dynamic data-center environment of cloud gaming. Precautionary safety measures take on the role of a predator, while potential threats take on the role of prey. The results prove that the Noncooperative Game-Theoretic Model is an effective tool for enhancing safeguards in cloud-based online gaming environments.

mathematics, interdisciplinary applications,multidisciplinary sciences

Xiaolan Liu,Bin Yang,Xiaohong Jiang

DOI: https://doi.org/10.1109/nana.2017.53

2017-01-01

Abstract:This paper investigates data uploading in cellular networks with the consideration of social trust relationship. A trust-aware data uploading scheme is proposed for a real network scenario by leveraging device-to-device (D2D) communications to minimize the total data uploading time. In this scheme, mobile devices cooperate with the trustworthy devices in the neighborhood to form the multi-hop D2D chains for uploading data, where the devices with the poor uplink channel quality are first considered to join D2D cooperation and the bottom to top mode is adopted to construct the D2D chains. To model the D2D chain formation, a coalition game is first developed, and then we devise a coalition formation algorithm to implement the formulated coalitional game. Simulation results show that our proposed scheme can effectively reduce the total data uploading time compared with the state-of-the-art scheme under the real network scenario.

Jakir Hossain,Chunxiang Xu,Chuang Li

DOI: https://doi.org/10.1109/ICCWAMTIP51612.2020.9317383

2020-01-01

Abstract:Authentication schemes employing identity-based encryption are widely used in mobile cloud computing environments. It enables users to get umpteen services from different cloud servers by registering only once with a third-party. However, in existing schemes, the security against chosen-ciphertext attacks and malicious private key generator is not well-considered. These security pitfalls may cause security and privacy issues in some application scenarios since an active attacker can send a number of adaptively chosen ciphertext and tries to distinguish the target ciphertext; succeeds may cause the exposure of the underlying secret key. In this paper, we propose a secure and efficient authentication scheme for mobile cloud computing with security against chosen-ciphertext attacks and malicious private key generator based on adaptive one-wayness trapdoor function and learning-parity with noise hardness assumption. Our comprehensive security proof demonstrates that our scheme is indistinguishable against chosen-ciphertext attacks.

Li Kuang,Yingjie Xia,Caijun Sun,Jiaming Wu,Liangdi Bao

DOI: https://doi.org/10.19026/rjaset.5.4738

2013-01-01

Abstract:With wide adoption of Service Computing and Mobile Computing, people tend to invoke services with mobile devices, requiring accurate and real-time feedback from services at any time and any place. Among these services, some are private to limited users and require identity authorization before use; hence secure access control in wireless network should be provided. To address the challenge, in this study, we propose the architecture and protocols of a system of access to private services for mobile clients, which combines the technologies of trusted computing, Diffie-Hellman key agreement protocol, digital certificate, DES data encryption algorithm and twice verification. We further show the implementation of the proposed system, in which we have realized the authentication and authorization of mobile clients and then secure data transfer between mobile clients in the unsafe Internet and private services in the Intranet. © 2013 Maxwell Scientific Organization.

Jing Wang,Bao Yang,Lili Zhai

DOI: https://doi.org/10.1155/2022/6922627

IF: 1.4

2022-01-29

Discrete Dynamics in Nature and Society

Abstract:Due to the existence of limited rationality and information asymmetry, trust between enterprises in the cloud manufacturing environment is characterized by significant complexity. In this paper, to promote the formation of a better trust relationship between enterprises and to ensure the efficient service and stable operation of the manufacturing process to a greater extent, we take into account the subjective cognition of the game parties from the perspective of service combination, introduce the prospect theory, construct an evolutionary game model of “service demander-service provider-platform supervisor,” analyze the evolutionary stabilization strategy, and explore the influence of different factors on the interenterprise trust relationship in the cloud manufacturing environment through numerical simulation. The results show that enhancing the synergy between multiple service providers has a significant impact on improving trust between cloud manufacturing enterprises. The rewards and punishments of the cloud manufacturing platform are conducive to improving interenterprise trust. There exists a critical value dividing opportunistic behavior into explicit and implicit behaviors. When it is less than the critical value, opportunistic behavior is implicit and the service demander trusts the service provider and the transaction continues; when it is greater than the critical value, opportunistic behavior is explicit and the service demander no longer trusts until the service provider is fully trustworthy. The inhibitory effect of good transaction history on opportunistic behavior is evident. Finally, the reasons and effects of the above factors and the subjective perceptions of the game parties in cloud manufacturing are discussed, as well as their concrete manifestations in the CASICloud (China Aerospace Science&Industry Cloud) and relevant suggestions are put forward.

mathematics, interdisciplinary applications,multidisciplinary sciences

Peiyun Zhang,Mengchu Zhou,Yang Kong

DOI: https://doi.org/10.1109/tsmc.2019.2906310

2021-03-01

IEEE Transactions on Systems, Man, and Cybernetics: Systems

Abstract:In the last ten years, cloud services provided many applications in various areas. Most of them are hosted in a heterogeneous distributed large-scale cloud computing environment and face inherent uncertainty, unreliability, and malicious attacks that trouble both service users and providers. To solve the problems of malicious attacks (including solo and collusion deception ones) in a public cloud computing environment, we for the first time propose a double-blind anonymous evaluation-based trust model. Based on it, cloud service providers and users are anonymously matched according to user requirements. It can be used to effectively handle some malicious attacks that intend to distort trust evaluations. Providers may secretly hide gain-sharing information into service results and send the results to users to ask for higher trust evaluations than their deserved ones. This paper proposes to adopt checking nodes to help detect such behavior. It then conducts gain–loss analysis for providers who intend to perform provider–user collusion deception. The proposed trust model can be used to effectively help one recognize collusion deception behavior and allow policy-makers to set suitable loss to punish malicious providers. Consequently, provider-initiated collusion deception behavior can be greatly discouraged in public cloud computing systems. Simulation results show that the proposed method outperform two updated methods, i.e., one based on fail-stop signature and another based on fuzzy mathematics in terms of malicious node detection ratio and speed.

English Else

Jiaqing Mo,Zhongwang Hu,Hang Chen,Wei Shen

DOI: https://doi.org/10.1155/2019/4520685

2019-01-01

Wireless Communications and Mobile Computing

Abstract:Nowadays, due to the rapid development and wide deployment of handheld mobile devices, the mobile users begin to save their resources, access services, and run applications that are stored, deployed, and implemented in cloud computing which has huge storage space and massive computing capability with their mobile devices. However, the wireless channel is insecure and vulnerable to various attacks that pose a great threat to the transmission of sensitive data. Thus, the security mechanism of how the mobile devices and remote cloud server authenticate each other to create a secure session in mobile cloud computing environment has aroused the interest of researchers. In this paper, we propose an efficient and provably secure anonymous two-factor user authentication protocol for the mobile cloud computing environment. The proposed scheme not only provides mutual authentication between mobile devices and cloud computing but also fulfills the known security evaluation criteria. Moreover, utilization of ECC in our scheme reduces the computing cost for mobile devices that are computation capability limited and battery energy limited. In addition, the formal security proof is given to show that the proposed scheme is secure under random oracle model. Security analysis and performance comparisons indicate that the proposed scheme has reasonable computation cost and communication overhead at the mobile client side as well as the server side and is more efficient and more secure than the related competitive works.

Jun Du,Chunxiao Jiang,Kwang-Cheng Chen,Yong Ren,H. Vincent Poor

DOI: https://doi.org/10.1109/tifs.2017.2758756

IF: 7.231

2018-01-01

IEEE Transactions on Information Forensics and Security

Abstract:Social networks have attracted billions of users and supported a wide range of interests and practices. Users of social networks can be connected with each other by different communities according to professions, living locations, and personal interests. With the development of diverse social network applications, academic researchers, and practicing engineers pay increasing attention to the related technology. As each user on the social network platforms typically stores and shares a large amount of personal data, the privacy of such user-related information raises serious concerns. Most research on privacy protection relies on specific information security techniques such as anonymization or access control. However, the protection of privacy depends heavily on the incentive mechanisms of social networks, like users' psychological decisions on security execution and socio-economic considerations. For example, the desire to influence the behaviors of other people may change a user's choice of security setting. In this paper, a game theoretic framework is established to model users' interactions that influence users' decisions as to whether to undertake privacy protection or not. To model the relationship of user communities, community-structured evolutionary dynamics are introduced, in which interactions of users can only happen among those users who have at least one community in common. Then the dynamics of the users' strategies to take a specific privacy protection or not is analyzed based on the proposed community structured evolutionary game theoretic framework. Experiments show that the proposed framework is effective in modeling the users' relationships and privacy protection behaviors. Moreover, results can also help social network managers to design appropriate security service and payment mechanisms to encourage their users to take the privacy protection, which can promote the spreading of privacy behavior throughout the network.

Xumin Huang,Rong Yu,Jiawen Kang,Jiefei Ding,Sabita Maharjan,Stein Gjessing,Yan Zhang

DOI: https://doi.org/10.1109/uic-atc-scalcom-cbdcom-iop.2015.155

2015-01-01

Abstract:Mobile cloud computing is a new paradigm to improve the quality of mobile services, which has drawn considerable attentions in both industrial and academic fields. In this paper, we consider the resource management and sharing problems for radio and computing resources to support mobile applications in mobile cloud computing. In such an environment, service providers can cooperate to form coalition to share their idle resources with each other. We propose a coalition game model based on two-sided matching theory. The coalition game model efficiently reflects the scalable cooperation among the service providers for sharing their idle resources. As a result, the resources can be better utilized and the quality of service for users can be improved. The simulation results indicate that our scheme can optimize the resource utilization and significantly improve the quality of service of the users.

Qichao Xu,Zhou Su,Shui Yu,Ying Wang

DOI: https://doi.org/10.1109/tbdata.2017.2764925

2022-01-01

IEEE Transactions on Big Data

Abstract:Recently, mobile social cloud (MSC), formed by mobile users with social ties, has been advocated to allocate tasks of big data applications instead of relying on the conventional cloud systems. However, due to the dynamic topology of networks and social features of users, how to optimally allocate tasks to mobile users based on the trust becomes a new challenge. Therefore, this paper proposes a novel incentive scheme based on the trust of mobile users in the MSC to allocate the tasks of big data. First, a social trust degree is defined according to the social tie among users, the importance of task, and the available resources of networks. With the social trust degree, the task owner can select a group of mobile users as the candidates for task allocation. Second, a reverse auction game model is developed to study the interactions among the task owner and the candidates. With the reverse auction game model, the optimal strategy of task allocation can be obtained with a low cost for the task owner where the selected candidate of mobile users can also obtain the high profit. Finally, simulation experiments are carried out to prove that the proposal can outperform other existing methods with a low delay and a high efficiency to allocate tasks in the MSC.

Chuanyi Liu,Xiaoyong Li,Mingliang Sun,Yali Gao,Jie Yuan,Shaoming Duan

DOI: https://doi.org/10.1109/tcc.2020.2978810

IF: 5.697

2022-01-01

IEEE Transactions on Cloud Computing

Abstract:As a complementary technology to traditional network security, trust computing scheme has been playing an increasingly important role in providing cloud service. However, many organizations constantly face trust computing challenges; moreover, establishing a highly trustworthy cloud ecosystem can be costly and time-consuming. In this article, we originally propose the conceptual model and formal definitions for a trustworthy collaboration service ecosystem, and construct a Bi-trustworthy cloud collaboration service ( Bi-TCCS ), which is a scheme based on an innovative bilateral social feedback (referred to as “bi-feedback”) scheme. First, a trust-aware collaboration service model is proposed based on cloud service brokerages (CSBs), which can provide intermediation and aggregation capabilities to enable organizations to deploy their services across a collaborative cloud environment. Then, we propose a bi-feedback scheme based on the inherent social relationship among three network communities, which are composed of three types of network entities: cloud users, CSBs, and cloud service providers. The proposed scheme is effective and reliable against garnished and bad-mouthing attacks resulting from the traditional social feedback scheme. Moreover, we innovatively adopt an aggregating method for overall trust based on deviation analysis. This method can minimize errors and overcome the limitations of traditional schemes, where trust attributes are weighted manually. Theoretical analysis and experiments verify the effectiveness of Bi-TCCS . Compared with existing approaches, the service successful ratio of Bi-TCCS increased by 12 percent under highly dishonest cloud environment. These results also indicate that Bi-TCCS is more adaptable both in the random walk and cheating profiles, which represents a substantial improvement in tracking the dynamic behavior of cloud services.