Meikang Qiu,Sun-Yuan Kung,Qing Yang

DOI: https://doi.org/10.1109/TSUSC.2018.2882011

2019-01-01

IEEE Transactions on Sustainable Computing

Abstract:The booming development of cloud computing has resulted in a remarkable growth of multiple industries in which dramatic demands of green computing and sustainability are addressed. The platform of smart computing has provided an efficient approach for connecting various infrastructure such that many new technologies are eventually formed, such as Internet-of-Thing and ubiquitous computing. The con...

Karl Andersson,Xiaofeng Chen,Christian Esposito,Eric Rondeau

DOI: https://doi.org/10.1109/tsusc.2019.2912235

2020-01-01

Abstract:The accepted papers in this special issue focus on cryptography and data security in sustainable computing. With the proliferation of several kinds of attacks towards ICT infrastructures and the relative effects caused by a successful compromise of them, data security is of pivotal importance in our current society. As a practical example, health-related data is rapidly being digitalized passing from paper-based communications among patients and physicians to computer-based ones. However, the occurrence of data leakage is increasing, with the consequence of stealing sensitive personal information from the leaked health-related data. In order to protect the ICT infrastructures from these attacks, several solutions have been proposed, where cryptography plays a key role. Despite being able to provide a suitable degree of security and privacy, such solutions have not been designed by taking care of their energy consumption and resource usage. Therefore, they are not optimal in the case of resource-constrained systems, such as sensor networks, and are under radical rethinking in order to be effectively adopted in such context. Moreover, the recent increasing attention to climate changes and environmental issues are leading a considerable debate on how changing the current computing technologies so as to have less severe effects on the global warming and resource usage. Such a debate involves also the current cryptosystems and the other widely-accepted solutions to provide data security, so as to modify them by considering their sustainability. Thus, this special issue aims at collecting updated outstanding papers that illustrate the latest achievements and development updates concerning cryptography and data security solutions, issues, applications, trends, and implementations in sustainable computing. This special issue section consists of six of the 12 accepted papers and focuses on a trust inference framework in MANETs, data security in health care remote locations, encryption using information fusion techniques, a key exchange protocol for roaming, privacy enhanced location sharing, and 3D polarized beamforming in power domain NOMA Systems: - TSUSC-2017-07-0063: A Novel Light-Weight Subjective Trust Inference Framework in MANETs, - TSUSC-2017-08-0067: A Sustainable Solution to Support Data Security in High Bandwidth Health Care Remote Locations by Using TCP CUBIC Mechanism, - TSUSC-2017-09-0101: An Encryption Approach Using Information Fusion Techniques Involving Prime Numbers and Face Biometrics, - TSUSC-2017-09-0086: A Mobile Intelligent Terminal Based Anonymous Authenticated Key Exchange Protocol for Roaming Service in Global Mobility Networks, - TSUSC-2017-07-0061: Privacy Enhanced Location Sharing for Mobile Online Social Networks, and - TSUSC-2017-09-0085: Inter-Beam Interference Cancellation and Physical Layer Security Constraints by 3D Polarized Beamforming in Power Domain NOMA Systems.

Yulei Wu,Yi Pan,Nektarios Georgalas,Geyong Min

DOI: https://doi.org/10.1109/tsusc.2019.2962575

2020-01-01

IEEE Transactions on Sustainable Computing

Abstract:The ten papers in this special section are devoted to the most recent developments and research outcomes addressing the related theoretical and practical aspects of computational intelligence solutions in sustainable computing and aims at presenting latest innovative ideas targeted at the corresponding key challenges, either from a methodological or from an application perspective.

Javid Taheri,Schahram Dustdar,Massimo Villari

DOI: https://doi.org/10.1109/tsusc.2022.3160401

2022-01-01

IEEE Transactions on Sustainable Computing

Abstract:The papers in this special section focus on sustainability of edge computing systems. Edge computing is an emerging architectural and technical approach aimed at addressing various shortcomings in traditional cloud computing paradigms and responding to today's constantly increasing data-demanding services such as Internet-of-Things, 5G embedded artificial intelligence and smart cities. In Fog/Edge Computing, nodes at the edge of a network are equipped with processing, storage, networking, etc. capabilities to take over several tasks that were used to be sent to cloud services. Pre-filtering and aggregation of data as well as online processing and actuation are sample procedures envisaged/dedicated to fog/ edge nodes.

L. Y. Por,Jing Yang,Chin Soon Ku,A. Khan

DOI: https://doi.org/10.3390/app13106042

2023-05-15

Applied Sciences

Abstract:In today’s increasingly connected world, the demand for secure computing and data protection is soaring [...]

Martin Wynn,Kamal Bechkoum

DOI: https://doi.org/10.3390/su16177364

IF: 3.9

2024-08-28

Sustainability

Abstract:This Special Issue includes papers on various aspects of emerging technologies and cybersecurity, and the theme of sustainable engineering is also interwoven within some of these articles [...]

environmental sciences,environmental studies,green & sustainable science & technology

Lei Wang,K. Kant

DOI: https://doi.org/10.1109/TETC.2014.2334251

2014-07-28

IEEE Transactions on Emerging Topics in Computing

Abstract:The articles in this special section focus on computational sustainability. The growing field of sustainability science and technology focuses on the design of products, processes, and services to meet economic and societal needs with minimal impact on the global ecosystem. An important emerging area of sustainability science is to develop computational models, methods and tools for decision making for a broad range of sustainability related applications such as conservation of natural resources and ecosystem, enhancing human health and well-being, minimizing impact of human activities on the environment, intelligent management and conservation of scarce resources, reducing impact of disasters, managing stress on urban infrastructures, e c. Solutions to these sustainability problems often depend on advances in computational areas, including optimization, modeling, data management and analytics, advanced sensing techniques, human computer interaction, and intelligent systems. The sustainability of computing itself is an important topic of concern and relates to effective management of energy consumption, operation under energy constraints, and dealing with environmental impact of rapid obsolescence of electronic devices and systems. The computational sustainability is woven into many areas, including system design, computer architecture, programming language, compilers, networking, etc.

Computer Science

Ching‐Hsien Hsu,Jong Hyuk Park,Laurence T. Yang,Mário M. Freire

DOI: https://doi.org/10.1002/dac.1057

2009-01-01

International Journal of Communication Systems

Abstract:In the last few years, we have observed an explosive growth of ubiquitous computing, which is emerging as the next generation information technology. This new paradigm has been embodied into tremendous service models through numerous ubiquity-related technologies, such as web, ad hoc, sensor networks, and ambient intelligence to provide computing and communication services anytime and anywhere. Parallel to this, wireless communication technologies have evolved to a stage where they are capable of connecting cyber and physical domains. In such an era, computers in the traditional sense gradually fade from view, making information and communication mediated by computers available anywhere and anytime through devices that are embedded in our environment, completely interconnected, intuitive, effortlessly portable, and constantly available. Although ubiquitous service presents exciting enabling opportunities, the benefits will only be reaped if security aspects and data management can be appropriately addressed. As a result, to realize the advantages of ambient intelligence and services in ubiquitous environments, it requires the security issues and data management to be suitable for its applications. Therefore, secure communication and data management are important challenges for commerce, the public sector, academia and for the individuals. For example, threats exploiting infirmities of user interfaces, operating systems, networks, and wireless communications give rise to new concerns about loss of confidentiality, integrity, privacy, and availability. How can these risks be avoided to an acceptable level? This special issue is intended to foster the dissemination of state-of-the-art research in the area of secure ubiquitous services including security models, security systems, secure data management, and novel applications associated with its utilization wherein security and privacy are the indefeasible rights of individuals to control the ways in which personal information is obtained, processed, distributed, shared, and used by any other entity. This special issue includes eight papers from researchers in Taiwan, China, Tunisia, Canada, Korea, Germany, Hong Kong, and Mexizo, who have demonstrated the effectiveness and efficiency

Yang Xiang,Javier López,Haining Wang,Wanlei Zhou

DOI: https://doi.org/10.1002/cpe.1703

2011-01-01

Abstract:With decades of progress toward ubiquitous networks and systems, distributed computing systems have played an increasingly important role in the industry and society. However, not many distributed networks and systems are secure and reliable in the sense of defending against different attacks and tolerating failures automatically, thus guaranteeing properties such as performance, and offering security against intentional threats. This special issue focuses on securing distributed networks and systems. We are delighted to present to you nine technical papers dealing with cutting-edge research and technology related to this topic. These papers were selected out of 149 submissions from 30 countries in the third International Conference on Network and System Security (NSS 2009). The selection has been very rigorous and only the best papers in the conference were selected. In the first paper, ‘Specifying and Enforcing the Principle of Least Privilege in Role-Based Access Control’ 1, Ma et al. formally define the basic principle of least privilege and present different variations, called the δ-approx principle of least privilege and the minimizing-approx principle of least privilege. They prove that all least privilege problems are NP-complete. They show that the principle of the least privilege problem can be reduced to minimal cost set covering (MCSC) problem. In the second paper, ‘Architecture Design of High Efficient and Non-memory AES Crypto Core for WPAN’ 2, Chen et al. present the architecture design of a high efficient and non-memory Advanced Encryption Standard (AES) crypto core to fit WPAN security requirement. The proposed basis transformation approach from Galois Field (28) to Galois Field GF(((22)2)2) can significantly reduce the hardware complexity of the SubBytes Transformation (S-box). In the third paper, ‘Secure Mobile Agents with Controlled Resources’ 3, Zhang et al. propose two schemes achieving host authentication with controlled resources, where only selected hosts can be included in the agent network. The second scheme offers a smaller data size. They also define security models and provide rigorous security proofs to the schemes. In the fourth paper, ‘Self-Similar Characteristics of Network Intrusion Attempts and the Implications for Predictability’ 4, Wahid et al. observe that the persistence of hosts that attempt network intrusions obey a power-law relationship such that the overwhelming majority of hosts are short-lived while a small number are highly persistent. The distribution of hosts in the IP address space is broadly identical regardless of different categories of lifetimes and intrusion attempts. They find that there is a scale invariant diurnal cycle with long range dependence in the number of unique hosts observed per unit time. In the fifth paper, ‘A Generic Framework for Constructing Cross-Realm C2C-PAKA Protocols Based on the Smart Card’ 5, Xu et al. present a generic framework for constructing a cross-realm C2CPAKA protocol from any secure smart card-based password authentication (PA-SC) protocol. The security proof of the construction can be derived from the underlying PA-SC protocol employing the same assumptions. Compared with similar protocols, the instantiation of this construction achieves improved efficiency. In the sixth paper, ‘A Cryptographically t-Private Auction System’ 6, Hinkelmann et al present a cryptographically t-private protocol for electronic auctions whose low resource demands make it viable for practical use. This construction is based on Yao's garbled circuits and pseudorandom number generators (PRNG). This protocol involves a field of (t + 1)2 parties for the generation of the garbled circuit and permits an arbitrarily large number of bidders. In the seventh paper, ‘A Secure and Efficient Data Aggregation Scheme for Wireless Sensor Networks’ 7, Zhu et al. propose a secure and efficient aggregation scheme, in which the base station composes a secret configuration matrix and each sensor node is pre-loaded with a limited part of the matrix known as a secret share containing certain local instructions. This scheme avoids the interactive verification phase which existent protocols typically take to ensure the aggregation integrity, and thus observably lowers the communication overhead. In the eighth paper, ‘Secure SCADA Framework for the Protection of Energy Control Systems’ 8, Alcaraz et al. provide a framework that shows how the integration of different state-of-the-art technologies in an energy control system, such as Wireless Sensor Networks (WSNs), Mobile Ad Hoc Networks (MANETs) and the Internet, can bring some interesting benefits such as status management and anomaly prevention, while maintaining the security of the whole system. In the last paper, ‘Achieving Fine-grained Access Control for Secure Data Sharing on Cloud Servers’ 9, Wang et al. propose a conjunctive precise and fuzzy identity-based encryption (PFIBE) scheme for secure data sharing on cloud servers, which allows the encryption of data by specifying a recipient identity (ID) set, or a disjunctive normal form (DNF) access control policy over attributes, so that only the user whose ID belongs to the ID set or attributes satisfying the DNF access control policy can decrypt the corresponding data. We sincerely hope that you will enjoy reading these papers and find them useful. We thank all the international reviewers for their professional services. We deeply thank Professor Geoffrey Fox, the Editor-in-Chief, for providing the opportunity to publish this special issue. With his continuous support, encouragement and guidance throughout this publishing project, this special issue has been very successful.

Peter Mueller,Der‐Chyuan Lou,Xinyi Huang

DOI: https://doi.org/10.1002/sec.874

IF: 1.968

2013-01-01

Security and Communication Networks

Abstract:Cryptographic mechanisms are the foundation of security defense and play a key role in ensuring security against network attacks. The developments of information and communication networks continously introduce new security issues and challenges. As an example, Smart Grid is highly dependent on digital communication networks to improve the efficiency and reliability of electrical power delivery. Security mechanisms for Smart Grid need to accommodate “real-time security”, since security-related operations and communications must execute within a few milliseconds in some applications. This calls for the urgent need to consider and develop new cryptographic mechanisms to mitigate new adversarial activities and satisfy specific requirements. The purpose of this special issue is to present recent advances on Applied Cryptography for Information and Communication Networks. We are pleased to present to you eight papers dealing with cutting-edge research and technology related to this topic. The selection was carried out by reviewers all around the world and the process has been rigorous. Telecare Medical Information System (TMIS) has evolved as an effective tool to provide quality healthcare services. In the first paper, “Cryptanalysis and Improvement of ‘An Efficient and Secure Dynamic ID-based Authentication Scheme for Telecare Medical Information Systems’ ” 1, Khan and Kumari present a new user authentication scheme for TMIS, which is an improvement of the scheme of Chen et al. for TMIS. The proposed scheme is free from various security problems existing in the scheme of Chen et al. The security analysis and comparison supports enhanced applicability of the proposed scheme for secure access to healthcare services In the second paper, “Publishing and Sharing Encrypted Data with Potential Friends in Online Social Networks” 2, Shuai and Zhu propose a full-fledged access control scheme called Masque+ for online social networks employing attribute-based encryption. With Masque+, one can publish and share his encrypted data with potential new friends who have the same interests just as in a masquerade with various themes. Data security and personal privacy are protected in Masque+ because all published files are specifically encrypted and only users satisfying the embedded access control structure can decrypt the content. In the third paper, “Signer-Admissible Strong Designated Verifier Signature from Bilinear Pairings” 3, Wang proposes a new concept of signer-admissible strong designated verifier signature (SDVS). By utilizing bilinear pairings and the modified ElGamal signature, he designs an efficient identity-based SDVS scheme with signer-admission property. Compared with existing identity-based SDVS schemes, the new scheme is efficient and supports the property of signer-admission. Homomorphic Message Authentication Code (MAC) is a novel authentication method for network coding and has received much attention. In the fourth paper, “A Generic Homomorphic MAC Construction for Authentication in Network Coding” 4, Wang and Hu propose a generic homomorphic MAC scheme on the basis of linear mapping over finite fields. This scheme has an advantage over the previous ones based on either inner product or trace function over finite fields, due to its flexible algebraic structure. By using it, one can optimize some existing schemes based on the vector inner product or the trace function. In the fifth paper, “Secure Universal Designated Verifier Identity-based Signcryption” 5, Lin et al. propose the notion of universal designated verifier signcryption without secure channels. They give formal definitions and a concrete construction of universal designated verifier identity-based signcryption scheme by combining the notions of universal designated verifier signcryption and signcryption. They also give formal security proofs for the proposed scheme under the random oracle model. In the sixth paper, “Efficient Certificateless Encryption Withstanding Attacks from Malicious KGC Without using Random Oracles” 6, Yang and Zhang show the insecurity of the Certificateless Encryption (CLE) scheme, as presented by Zhang and Wang (ZW scheme). Then, they introduce a new efficient CLE scheme and prove its security under adaptive chosen-ciphertext attacks without using random oracles. The new scheme not only gets rid of the security drawbacks of ZW scheme but also keeps its most distinctive feature of a short public key length. The formal security proofs of the new scheme are presented in the standard model assuming the hardness of the decisional truncated q-ABDHE problem and the hardness of the decisional bilinear Diffie–Hellman problem. Handoff and lightweight re-authentication are required to achieve a high quality of real-time applications and low network load caused by re-authentication. In the seventh paper, “A Local Joint Fast Handoff Scheme in Cognitive Wireless Mesh Networks” 7, He et al. propose a solution to mitigate the communication interruption time and extra authentication flows caused by handoff for cognitive wireless mesh networks. They propose a handoff authentication protocol based on proxy signature schemes, in which the mesh router is capable of authorizing the handoff of the mesh client through proxy signatures. In the last paper, “Efficient Public Key Encryption with Revocable Keyword Search” 8, Yu et al. propose the notion of public key encryption with revocable keyword search (PERKS) and develop a concrete construction by dividing the whole life of the system into distinct time periods to prevent the untrusted server from searching the data all the time. The proposed scheme achieves the properties of IND-CKA security under the Co-DBDH assumption in the given security model. Compared with two other similar schemes, the new scheme offers much better performance in terms of computational cost. We sincerely hope that you will enjoy reading these papers. We thank all the international reviewers for their professional services. We deeply thank Professor Hsiao-Hwa Chen, the Editor-in-Chief, for providing the opportunity to create this special issue. His continuous support, encouragement, and guidance through the whole publication project has been invaluable.

Xueqi Cheng,Jinhong Yuan,Ali Tajer,Aiqun Hu,Wanlei Zhou

DOI: https://doi.org/10.1002/sec.579

IF: 1.968

2014-01-01

Security and Communication Networks

Abstract:Rapid advances in network and information security technologies are gradually making the dream of ubiquitous high-speed network access a reality. At the same time, however, such ubiquitous network access allows vandals and criminals to exploit vulnerabilities in networked systems on a widespread basis. This situation makes network and information security critical and challenging. In recent years, new topics and ideas in network and information security are flourishing, such as cloud computing, green radio, Internet of things, and heterogeneous networking. This special issue focuses on bringing in recent and novel research works on information and coding theory, network and information security, and designing best defenses and countermeasures to achieve more secure networks, protocols, systems, and applications. The topics of this special issue interest include trust computing, secure communication techniques, malicious code analysis, and privacy-preserving systems. After a very careful review of the many highly qualified submissions, the editorial committee accepted a total of eight papers in this special issue. Among these, one paper is related to trust computing, one relating to privacy-preserving system architecture, two relating to secure communication, one relating to encryption algorithms, and three relating to malicious code analysis. The first paper is contributed by Li Tao and Hu Aiqun. They constructed an efficient trust chain model in system booting and running time to ensure security for mobile terminals. Lei Jiang et al. in the second paper designed an efficient sparse matrix format and developed a regular expression matching architecture to accelerate regular expression matching on field-programmable gate arrays. Xian Liu in the third paper derived the closed-form expressions of the probability of strictly positive secrecy capacity for two wireless communication systems. The fourth paper is contributed by Jian Li et al. They proposed a quantum secure direct communication protocol by the use of a four-qubit cluster state to enhance the efficiency of eavesdropping detection. Shengbao Wang et al. in the fifth paper presented an identity-based encryption scheme in multiple private key generator environments, which met chosen ciphertext security in a random oracle model. Lejun Fan et al. in the sixth paper modeled the collaborative behaviors between different malicious functionality modules with Privacy Petri Net to analyze the behaviors of privacy theft malware. The seventh paper is contributed by Buyun Qu et al. They empirically investigated the impact of network traffic morphing techniques on the actual traffic classification performance. The last paper is contributed by Cui Xiang et al. They analyzed the essential property of a persistent bot behavior and proposed a new mitigation strategy to protect users. On behalf of the editorial committee, we express our sincere thanks to all authors and reviewers for their grate contribution in this special issue. We are also very grateful to Professor Chen Hsiao Hwa, the editor-in-chief, and to the editorial staff for their excellent help and assistance. Without all of the contributions of these dedicated people, it would have been impossible to produce this special issue. We hope this special issue will inspire interested scholars to get involved in this promising and active research area.

Daniel Benevides da Costa,Muhammad Ali Imran,Trung Q. Duong,Hui-Ming Wang,Mustapha Benjillali,Richard Demo Souza,Amine Maaref

DOI: https://doi.org/10.1109/access.2018.2805558

IF: 3.9

2018-01-01

IEEE Access

Abstract:Wireless communications and networking have experienced explosive growth during the last years so that security issues are a crucial aspect for networks and system design. Thus, the purpose of this Special Section in IEEE Access was to publish innovative and theoretically-grounded research tackling the fundamental and practical challenges of wireless communications and networking security. This Special Section brought together leading researchers and developers from both industry and academia to discuss and present their views on the current trends, challenges, and state-of-the-art solutions addressing various issues related to security in wireless communications and networking. We received a total of 28 submissions, and after a rigorous review process, 13 articles have been selected for publication, which are briefly discussed next.

Fatos Xhafa,Xiaofeng Chen,Leonard Barolli

DOI: https://doi.org/10.1007/s12652-015-0324-5

IF: 3.662

2015-01-01

Journal of Ambient Intelligence and Humanized Computing

Abstract:With the fast development of Internet technologies, the information and communication systems are continuously facing new security, trust and privacy challenges. Indeed, the potentially invasive nature of the information has implications on privacy of the users and their online activity such as transactions. Likewise, the implicit reliance on technology to make decisions on one’s behalf makes essential to study new mechanisms for expressing and reasoning about trust. This special issue brings together research articles covering diverse aspects of security, privacy and trust in computer and networked-based information systems, including privacy concerns, tools to help secure information, methods for development and assessment of trustworthy systems, analysis of vulnerabilities and attacks, trends and new developments, secure operating systems and applications, security issues in wireless networks and pervasive systems, design and test strategies for secure and survivable systems, and cryptology, among others. The papers of the special issue are selected based on strict review results, where papers went through three rounds of review and revision. As a result, nine papers were selected and are arranged in the special issue as follows. Xiong et al. in the first paper ‘‘The finite volume element method for a parameter identification problem’’ use finite volume element method to solve a parameter identification problem of parabolic equations with over-specified data. The authors provide the numerical scheme of the unknown function and control parameters and obtain the error estimates of approximate solution. The proposed method is experimentally evaluated and compared with the exact solution to confirm the good accuracy of the presented scheme. The second paper by Chen et al. ‘‘An Opinion Mining Framework For Cantonese Reviews’’, analyze opinion mining for Cantonese language. The authors motivate the need to construct a particular lexical database for Cantonese and explore some Cantonese special written-tradition rules and incorporate them into the feature-based opinion summarization system framework. The experimental results show that the proposed framework significantly outperforms the traditional Mandarin sentiment analysis method using ICTCLAS. In the third paper ‘‘A Secure Remote Data Integrity Checking Cloud Storage System from Threshold Encryption’’, Yao et al. study the confidentiality and integrity issues in cloud storage system. The authors address the privacy issue of decentralized cloud storage system using threshold cryptography. The threshold encryption scheme is therefore integrated with a secure decentralized erasure code to form a secure cloud storage system. Zhang et al. in the fourth paper ‘‘How to build a faster private information retrieval protocol’’, propose a secure multi-bit homomorphic encryption scheme based on Learning With Errors over Rings (RLWE) assumption. The authors use canonical embedding to transform ring & Fatos Xhafa fatos@cs.upc.edu

Jie Li,Jinsong Wu,Periklis Chatzimisios,Majed Haddad,Kun Yang

DOI: https://doi.org/10.1109/access.2016.2592806

IF: 3.9

2016-01-01

IEEE Access

Abstract:With the rapid growth of data in the past decades, information and communication technologies have made significant impacts on global environments on both positive and negative aspects. In recent years, international efforts have made advance green technology initiatives to support sustainable systems for technical, economic and societal developments [1] , [2] . Generation of huge amounts of data, called big data, across different sectors such as banking, healthcare, retail, and education, among others, is creating the needs for efficient tools to manage the data [3] . Conventional database management tools do not have the capability to manage surging volumes of unstructured data. For example, more than 80% of data is unstructured in the form of videos, tweets, GPS (Global Positioning System) coordinates and emails, which means that decisions need to be made at high velocity. The amount of data is expected to exponentially grow through data collections via pervasive sensors and/or the Internet, which also leads to new emerging challenges that have the potential to create more accurate solutions for science and technologies. We believe that big data have significant impacts on green communications and computing, which aims to provide energy-sustainable, resource-saving, and environment-friendly solutions. Recently, as a panoramic investigations on this direction, two relevant works have been recently published to provide some in-depth understandings in this area [4] , [5] . The goal of this Special Section is therefore to provide insights and views into the developments in the area of big data for green communications and computing, as well as to provide directions for research in the field.

Xiaojiang Du,Hsiao-Hwa Chen,Liehuang Zhu,Jiangli Li,Zheng Chang

DOI: https://doi.org/10.1109/MWC.2018.8600750

IF: 12.777

2018-01-01

IEEE Wireless Communications

Abstract:The 13 articles in this special section focus on security and privacy in wireless Internet of Things (IoT). IoT is a paradigm that involves networked physical objects with embedded technologies to collect, communicate, sense, and interact with the external environment through wireless or wired connections. With rapid advancements in IoT technology, the number of IoT devices is expected to surpass ...

Jaydip Sen,Javier Franco-Contreras,Gouenou Coatrieux,Nilay K Sangani,Haroot Zarger,Faouzi Jaidi,Bob Duncan,Alfred Bratterud,Andreas Happe,Chin-Feng Lin,Che-Wei Liu,Walid Elgeanidi,Muftah Fraifer,Thomas Newe,Eoin OConnell,Avijit Mathur,Ruolin Zhang,Eric Filiol

DOI: https://doi.org/10.5772/65228

2017-07-29

Abstract:In the era of Internet of Things (IoT) and with the explosive worldwide growth of electronic data volume, and associated need of processing, analysis, and storage of such humongous volume of data, several new challenges are faced in protect-ing privacy of sensitive data and securing systems by designing novel schemes for secure authentication, integrity protection, encryption, and non-repudiation. Lightweight symmetric key cryptography and adaptive network security algo-rithms are in demand for mitigating these challenges. This book presents some of the state-of-the-art research work in the field of cryptography and security in computing and communications. It is a valuable source of knowledge for re-searchers, engineers, practitioners, graduates, and doctoral students who are working in the field of cryptography, network security, and security and privacy issues in the Internet of Things (IoT). It will also be useful for faculty members of graduate schools and universities.

Cryptography and Security

Xiuzhen Cheng,Miroslaw Kutylowski,Kuai Xu,Haojin Zhu

DOI: https://doi.org/10.1002/sec.1646

IF: 1.968

2016-01-01

Security and Communication Networks

Abstract:The recent advances in cutting-edge electronic and computer technologies and wireless communications have paved the way for the proliferation of wireless networks, encompassing cellular, vehicular, body area, underwater, mobile ad hoc, and sensor networks. Wireless networks, allowing communications from any device, anywhere and anytime, bring a wide range of emerging and disruptive applications in manufacturing, healthcare, military, personal entertainment, safety, and rescue. However, the increasing sophistication and scale of cyber security and crimes in wireless networks have challenged traditional techniques of securing devices, applications, and traffic of wireless networks. Particularly, as the threats and vulnerabilities continue to grow in ubiquitous wireless networks, devices, and applications, it is crucial and imperative for researchers and practitioners of wireless networks to understand the entire cyber-attack and crime spectrum on wireless networks and applications and explore new technologies to mitigate and thwart these attacks, as well as to monitor, capture, and analyze security attacks via forensics analysis. The editorial committees have accepted 12 submissions in this special issue and all the papers have gone through a regular reviewing process. Among these accepted papers, four of them are related to Cloud Computing security. In the paper titled ‘PIMRS: achieving privacy and integrity-preserving multi-owner ranked-keyword search over encrypted cloud data’, Li et al. propose a privacy and integrity-preserving multi-owner ranked-keyword search scheme named PIMRS, where an asymmetric scalar-product encryption function is adopted to preserve data privacy and to obtain more precise search results. In the paper titled ‘MEDAPs: Secure Multi-Entities Delegated Authentication Protocols for Mobile Cloud Computing’, three secure multi-entities delegated authentication protocols are proposed for mobile cloud computing. In these protocols, multiple mobile data owners can authorize a group-designated cloud server with signing rights. Irfan et al. present a framework based on security information and event management to efficiently collect evidence for crime investigation, which can benefit cloud forensics in their paper ‘A framework for cloud forensics evidence collection and analysis using security information and event management’. In the paper ‘Efficient Keyword Search over Encrypted Data in Multi-cloud Setting’, Miao et al. propose two keyword search schemes over encrypted data in multi-cloud setting scenarios. The proposed schemes can guarantee data privacy and reliability. Furthermore, the experimental results indicate that the proposed schemes are feasible and efficient in practical applications. Besides cloud computing security, this special issue also involves another 8 papers covering a wide variety of topics. In the paper titled ‘Secure the Internet, one home at a time’, Xu et al. propose a Bloom-filter based analytics framework to capture persistent threats towards the same home routers and to identify correlated attacks towards distributed home networks. This work is the first one to characterize cyber threats towards home networks. In the paper titled ‘Secure multi-unit sealed first-price auction mechanisms’, Li et al. propose three secure, multi-unit, sealed-bid, and first-price auction schemes. An auctioneer is able to verify that the winners have paid the correct amounts in these three schemes. Theoretical analysis is provided to evaluate the security properties, computational complexity, and communication complexity of the auctions. Zhang et al. propose a data aggregation approach where an untrustful aggregator in mobile sensing can collect statistic data from mobile users in their paper titled ‘An Efficient Privacy Preserving Data Aggregation Approach for Mobile Sensing’. This approach preserves user privacy and can perform data integrity verification. Lai et al. propose a secure and privacy-preserving group setup framework, SPGS, for platoon-based VCPS in their paper titled ‘SPGS: A Secure and Privacy-Preserving Group Setup Framework for Platoon-Based Vehicular Cyber-Physical Systems’. Two authentication protocols are also provided accordingly. The security feature and efficiency of SPGS are verified by the thorough analysis. In the paper titled ‘Multi-proxy multi-signature binding positioning protocol’, Xue et al. propose a multi-proxy multi-signature binding positioning protocol, based on which a multi-proxy multi-signature binding positioning protocol is designed. The correctness and security features of the proposed protocols are analyzed. Qi et al. propose an effective steganography attacking method which is not limited by the types of the steganography method in their paper titled ‘Generic attack against robust steganography based on spring transform and geometrization’. The experiment results indicate that the peak signal-to-noise ratio of images can be above 32 dB Q4 while the stego data are destroyed. In the paper titled ‘Active jamming for multi-user information security improvement with the access statuses of users’, Xu et al. propose a novel physical layer scheme for improving multiple users' information security in the next-generation communication systems. The proposed scheme is linear without iteration and it is feasible for multi-user security enhancement. In the paper titled ‘Secured measurement fusion scheme against deceptive ECM attack in radar network’, in order to prevent electronic countermeasure attacks in radar networks, Yang et al. propose a new measurement fusion scheme, which shows better security performance when a DECM attack happens. The authors also perform simulations to demonstrate the superior of their novel scheme. On behalf of the editorial committee, we would like to thank all the authors for contributing their high quality papers to this special issue. We also want to thank all the reviewers for volunteering their time to review the papers and providing valuable comments, which help with improving the quality of the papers. We are also grateful to Prof. Hsiao-Hwa Chen and Prof. Hamid R. Sharif, who are the Editor-in-Chiefs of Security and Communication Networks, for providing us the opportunity to organize this special issue and for their support during the whole publication process.

Guandong Xu,Wen-Chih Peng,Yan Wang,Jianmin Li,Ying Zhong,Shunzhi Zhu,Danhuai Guo,Shuo Shang,Hongzhi Yin,Guanfeng Liu,Qun Shi,Kai Zheng,An Liu,Zhixu Li,Xiaofang Zhou,Bolong Zheng,Peter Scheuermann,Quoc Viet Hung Nguyen,Chenliang Li,Saeid Hosseini,Shazia Sadiq,Mohammad Reza Kangavari,Ngai-Man Cheung,Xiangjie Kong,Menglin Li,Jianxin Li,Kaiqi Tian,Xiping Hu,Zhiwei Liu,Yang Yang,Zi Huang,Fumin Shen,Dongxiang Zhang,Heng Tao Shen,Yongjun Li,You Peng,Zhen Zhang,Yuan Yao,Hanghang Tong,Guo Yan,Feng Xu,Xiang Zhang,Boleslaw K. Szymanski

DOI: https://doi.org/10.1007/s11280-019-00665-1

2019-01-01

World Wide Web

Abstract:Editor's Note - Special Issue on Geo-Social Computing. Full Text. Editor's Note - Special Issue on Geo-Social Computing # Springer Science+Business Media, LLC, part of Springer Nature 2019 World Wide Web gratefully acknowledges the editorial work of the scholars listed below on the special issue entitled “Geo-Social Computing.” Guandong Xu University of Technology Sydney Australia guandong.Xu@uts.edu.au Wen-Chih Peng National Chiao Tung University Taiwan wcpeng@cs.nctu.edu.tw Hongzhi Yin The University of Queensland Australia h.yin1@uq.edu.au Zi (Helen) Huang The University of Queensland Australia huang@itee.uq. edu.au This special issue contains the following eight papers: & Discovery of accessible locations …

Gang Li,Wenjia Niu,Li Guo,Lynn Batten,Yinlong Liu,Guoyong Cai

DOI: https://doi.org/10.1002/cpe.3753

2015-01-01

Abstract:Cyberspace, the ubiquitous space that exists in relation to the Internet, is usually referred to as a dynamic broad domain ranging from Internet and its infrastructures to social networks. More research work in security has been extended from securing computers to securing Cyberspace, which includes the physical-level security, the network-level security, and the application-level security and addresses improvements in Cyberspace management. As a result, recent years have witnessed increasing research attention on securing Cyberspace, and many interesting methods have been proposed to locate suspicious IP, detect gossip content, prevent illegal information publication and distribution, manage social software and applications, and profile user behavior and opinion. This trend has provided the motivation to launch this special issue. Based on an open call in this area and invited best papers from The Fifth International Conference on Applications and Techniques for Information Security (ATIS 2014) and The first International Workshop on Curbing Cyber-Crimes (C3 2014), five submissions have been accepted to best illustrate the main development and perspectives. The papers in this issue report a variety of methods used to tackle the security issues in cyberspace. They aim at improving security in applications ranging from RFID systems, location based service, discovery of software vulnerability to private medical records, and outsourcing in Multi-Cloud. The problems discussed in these papers are also related to disciplines including data mining, network security, digital forensics, and behavioral and psychological sciences. Here, we provide an integrative perspective of this special issue by summarizing each contribution contained therein. In 1, to address security and privacy issue in RFID systems, a new off-line reading order-independent grouping-proof protocol is proposed to generate a proof that a group of tags have been scanned simultaneously in the range of a reader. The proposed protocol defines an ideal grouping-proof functionality aiming at capturing the secure grouping-proof generation for a group of RFID tags in the UC framework. The new protocol maintains its security properties when composed concurrently with an unbounded number of instances of arbitrary protocol. In addition, the protocol conforms to the computational constraints of EPC Class-Gen-2 passive RFID tags. It is suitable for low-cost passive RFID tags, which are widely used in practical applications. In 2, the authors proposed an algorithm to address the problem of preserving privacy for individual users in location-aware applications. They define a novel distance measurement that combines the semantic and Euclidean distance to address the privacy-preserving issue. They conduct performance experiments on the proposed algorithm and distance metric, and results suggest that they can successfully retain the utility of the location services. In 3, to discover software vulnerability, an effective and efficient mechanism is proposed. The method also helps programmers to write secure code to avoid the existence of vulnerability at the early stage of software development. The proposed mechanism uses code clone verification to discover vulnerability in software programs and reduces the false positive of detection by combining the advantages of static and dynamic analysis. In addition, it also mitigates the path explosion problem in the testing process when verifying the existence of vulnerability. As a result, the proposed approach effectively improves the security of software systems, applications, and utilities in various areas of Cyberspace. In particular, it helps to create a reliable environment for the communications of all the social media participants. In 4, the authors analyze the security of Fair Remote Retrieval (FRR) model that is used to ensure the integrity of remote medical records. They show that FRR model fails to achieve its security goals, therefore present an improved protocol, called IFR2̂, to fix the security minor faults while preserving all the properties of FRR. The paper analyzes the correctness and security of IFR2̂ and experimentally verifies the efficiency in terms of computational and communication cost of the model. In 5, the authors propose an identity based storage management and integrity verification protocol for secure outsourcing in Multi-Cloud. The paper aims to fill the gap on guaranteeing fair results on two-party storage checking protocols without third party audit in multi-cloud computing. Specifically, the authors prove the security and efficiency of their protocol by theoretical analysis and simulation experiments without using any trusted organizer. Furthermore, the protocol enjoys many security attributes including prevention of various attacks, user anonymity, and local password verification. Preparation of this issue would have been impossible without the hard work of anonymous reviewers and the authors. Special thanks go to Prof. Geoffrey Fox, editor-in-chief of the journal, for his great support.

Cristina Alcaraz,M. Burmester,Jorge Cuéllar,Xinyi Huang,P. Kotzanikolaou,M. Psarakis

DOI: https://doi.org/10.1109/jiot.2019.2940394

2019-01-01

Abstract:The Internet of Things (IoT) creates new technological opportunities for a wide range of systems, such as industrial control systems, smart power grids, vehicular networks (VNs) and intelligent transportation systems, body area networks and healthcare monitoring and control systems and smart homes. At the same time, IoT also increases the threat surface for potential adversaries targeting critical interconnected systems that may depend on embedded IoT systems, such as supervisory control and data acquisition (SCADA) systems. At this point, attackers could take advantage from the incorporation of the paradigm to exploit new security gaps, probably caused by unforeseen interoperability and adaptability problems. Indeed, the deployment of Internet-enabled embedded devices that are distributed over major critical domains may create indirect and nonobvious interconnections with the underlying critical infrastructures (CIs). There is a need to further explore the security issues related to IoT technologies and to assure the resilience of CIs against advanced IoT-enabled attacks. The focus of this special issue is therefore to provide readers with the latest advances in securing the interaction between embedded IoT devices and CIs in order to increase their resilience to advanced IoT-enabled threats.