Model-based Evaluation of Scalability and Security Tradeoffs: a Case Study on a Multi-Service Platform

Montecchi, Leonardo; Nostro, Nicola; Ceccarelli, Andrea; Vella, G.; Caruso, Antonio; Bondavalli, Andrea

doi:10.1016/j.entcs.2014.12.015

Cited by 11 publications

(8 citation statements)

References 19 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…DOMINO runs the tests for each node by tracking each node's transmissions in the network. Therefore, the way the tests are computed might become time and resource consuming when the number of nodes is increased [12]. DOMINO's performance is assessed through the simulator NS.…”

Section: Related Workmentioning

confidence: 99%

A data fusion technique to detect wireless network virtual jamming attacks

Escudero-Andreu¹,

Kyriakopoulos²,

Aparicio-Navarro³

et al. 2015

2015 IEEE International Workshop on Measurements &Amp; Networking (M&N)

View full text Add to dashboard Cite

Section: Related Workmentioning

confidence: 99%

A data fusion technique to detect wireless network virtual jamming attacks

Escudero-Andreu¹,

Kyriakopoulos²,

Aparicio-Navarro³

et al. 2015

2015 IEEE International Workshop on Measurements &Amp; Networking (M&N)

View full text Add to dashboard Cite

“…Jamming attacks have been widely investigated in the literature. Multiple authors have proposed several solutions to tackle the problem for a wide range of jamming attacks [7][8][9][10][11][12]. In [7], the authors present DOMINO, a piece of software installed in or near an Access Point (AP) in order to detect MAC layer greedy behaviour in 802.11 hotspots.…”

Section: Related Workmentioning

confidence: 99%

“…A number of Network Intrusion Detection Systems (NIDSs) have been presented in the literature to detect a wide range of jamming threats [7][8][9][10][11][12]. A NIDS can be classified as a signature-based NIDS (also known as misuse-based NIDS) or an anomaly-based NIDS.…”

Section: Introductionmentioning

confidence: 99%

A hybrid intrusion detection system for virtual jamming attacks on wireless networks

et al. 2017

View full text Add to dashboard Cite

Newcastle University ePrints -eprint.ncl.ac.uk Santoro D, Escudero-Andreu G, Kyriakopoulos KG, Aparicio-Navarro FJ, Parish DJ, Vadursi M. A hybrid intrusion detection system for virtual jamming attacks on wireless networks. Measurement 2017, 109, 79-87. Abstract-Wireless communications are vulnerable to certain number of cyber-attacks and intrusion attempts due to the intrinsic openness of the communication channel. Virtual jamming attack stands out among other attacks. This type of attack is easy to implement, energy-efficient to be launched, and represents one of the most important threats to the security of wireless networks. As the complexity of the attacks keeps increasing, new and more robust detection mechanisms need to be developed. A number of Network Intrusion Detection Systems (NIDSs) have been presented in the literature to detect this type of attack. To tackle the problem of virtual jamming attacks on IEEE 802.11 networks, we present a novel Hybrid-NIDS (H-NIDS) based on Dempster-Shafer (DS) Theory of Evidence. The proposed method aims at combining the advantages of signature-based and anomaly-based NIDSs. The performance of the proposed solution has been experimentally evaluated with multiple scenarios in an IEEE 802.11 network.

show abstract

“…However, the authentication server is one of the (powerful) nodes of the Secure! framework, which has been built with scalability [17] in mind so that its nodes can be easily adapted to sustain high computational loads.…”

Section: 4mentioning

confidence: 99%

Continuous User Identity Verification for Trusted Operators in Control Rooms

Schiavone

Ceccarelli

Bondavalli

2015

Algorithms and Architectures for Parallel Processing

Self Cite

View full text Add to dashboard Cite

Abstract. Human operators in control rooms are often responsible of issuing critical commands, and in charge of managing sensitive data. Insiders must be prevented to operate on the system: they may benefit of their position in the control room to fool colleagues, and gain access to machines or accounts. This paper proposes an authentication system for deterring and detecting malicious access to the workstations of control rooms. Specifically tailored for the operators in the control room of the crisis management system Secure!, the solution aims to guarantee authentication and non-repudiation of operators, reducing the risk that unauthorized personnel (including intruders) misuses a workstation. A continuous multi-biometric authentication mechanism is developed and applied in which biometric data is acquired transparently from the operator and verified continuously through time. This paper presents the authentication system design and prototype, its execution and experimental results.

show abstract

Model-based Evaluation of Scalability and Security Tradeoffs: a Case Study on a Multi-Service Platform

Cited by 11 publications

References 19 publications

A data fusion technique to detect wireless network virtual jamming attacks

A data fusion technique to detect wireless network virtual jamming attacks

A hybrid intrusion detection system for virtual jamming attacks on wireless networks

Continuous User Identity Verification for Trusted Operators in Control Rooms

Contact Info

Product

Resources

About