Trade-offs in a Secure Jini Service Architecture

Hasselmeyer, Peer; Kehr, Roger; Voß, Marco

doi:10.1007/10722515_16

Cited by 10 publications

(16 citation statements)

References 5 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Some typical research works on the improvement of Jini system security are as shown in [18][19][20]. The following shows some security requirements for Jini system commonly suggested by these works:…”

Section: Related Workmentioning

confidence: 99%

“…Reference [18] suggests a Jini service architecture to solve the establishment of trust between Lookup servers, service proxies, and servers and the requirements for access control, by implementing service in charge of authentication and permission-granting in the center of Jini federation. Reference [19] suggests a Jini security architecture and a method that establishes an authentication and authorization chain that connects server, service proxy, and user by using the certificate of SPKI (Simple Public Key Infrastructure).…”

Section: Related Workmentioning

confidence: 99%

“…Reference [19] suggests a Jini security architecture and a method that establishes an authentication and authorization chain that connects server, service proxy, and user by using the certificate of SPKI (Simple Public Key Infrastructure). Reference [20] suggests a Jini security architecture similar to the architecture of [18], but the security mechanism is different from those of other researches, in a way of providing confidentiality and integrity of communication channels. Besides, to provide security transparency for the implementation of a client, a great deal of security function depends on service proxy.…”

Section: Related Workmentioning

confidence: 99%

See 2 more Smart Citations

Reducing Security Overhead to Enhance Service Delivery in Jini IoT

Kim

Min

2015

International Journal of Distributed Sensor Networks

View full text Add to dashboard Cite

Jini security framework that is being maintained in Apache River project requires roughly 3 sequential tasks in every connection to cope with security threats in communication between clients and servers in the IoT sensor application. These tasks are sequentially proxy preparation, certification of identity and its credential for mutual authentication, and cryptographic operation for session encryption. Since the proxy preparation task is time spent on preparing a secure and trustable stub for both client/server sides, it is not one of the substantial communication-delay factors. We propose a method of improving proxy preparation reducing service connection delay by completing the preparation of mutual authentication data and session key while on proxy preparation task. Through experiments on a test-bed, we have confirmed that service connection delay time can be reduced by about 2.6 times in proportion to the message sizes through our proposed method. Our work presents an approach to reduce the additional overhead that would be paid for by applying the Jini security framework to the development of sensor application based on Jini IoT.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Reducing Security Overhead to Enhance Service Delivery in Jini IoT

Kim

Min

2015

International Journal of Distributed Sensor Networks

View full text Add to dashboard Cite

show abstract

“…Nothing should be able to alter the state of the proxy object, either by intention or by fault. That means that the integrity of the proxy object must be ensured (Hasselmeyer et. al, 2000a).…”

Section: Proxy Object Issuesmentioning

confidence: 99%

“…Therefore the integrity and confidentiality of the communication has to be preserved, since the communication link might be intercepted, altered, or simulated by someone with malicious intentions. The privacy and anonymity of the client may be abused, because the client can not be ensured that the proxy does indeed provide the functionality it claims (Hasselmeyer et. al, 2000a).…”

Section: Proxy Object Issuesmentioning

confidence: 99%

Towards an Alternative Way of Verifying Proxy Objects in Jini

Papamichail¹,

Vasiu²

2004

Proceedings of the First International Conference on E-Business and Telecommunication Networks

View full text Add to dashboard Cite

Jini networking technology represents an exciting paradigm in distributed systems. Its elegant approach in computer networking possesses immense advantages, but also generates security problems. Extensive research has been undertaken and existing security methodologies have been applied to provide a safe execution environment. However the unique nature of Jini has made it hard for traditional security mechanisms to be applied effectively. Part of the problem lies within the downloaded code and in the lack of centralised control. Current solutions are based on assumptions; therefore they are inadequate for enforcing the security requirements of the system. The goal of our research is to increase the security of the Jini model without altering its initial characteristics. We present our preliminary research efforts in providing an alternative, fault tolerant security architecture that uses a trusted local verifier in order to evaluate and certify the correctness of remote calls.

show abstract

E-business and Telecommunication Networks

Ascenso¹,

Vasiu²,

Belo³

et al. 2007

Communications in Computer and Information Science

View full text Add to dashboard Cite

This book contains the best papers of the Second International Conference on E-business and Telecommunication Networks (ICETE), which was held, in 2005, at the Microsoft Research Centre -Reading, in the UK. The conference was organized by INSTICC (Institute for Systems and Technologies of Information, Communication and Control) in collaboration with the University of Westminster/WITRC, UK.ICETE reflects a continuing effort to increase the exchange of expertise among professionals who work in the fields of e-business and telecommunication networks, including aspects related to security, wireless systems, signal processing, and all sorts of applications, who are bringing new services and technologies into the lives of ordinary consumers. The major goal of this conference was thus to bring together researchers and developers from academia and industry working in areas related to e-business to stimulate a debate with a special focus on telecommunication networks.Four simultaneous tracks were held, covering different aspects, namely: "Global Communication Information Systems and Services", "Security and Reliability in Information Systems and Networks", "Wireless Communication Systems and Networks" and "Multimedia Signal Processing". Each of these tracks appealed to a global audience of engineers, scientists, business people and policy experts, interested in the research topics of ICETE. All tracks focused on specific topics of research and real world applications and relied on contributions from industry, with different solutions for end-user applications and enabling technologies, in a diversity of communication environments. The papers accepted and presented at the conference demonstrated a number of new and innovative solutions for e-business and telecommunication networks, showing that the technical problems in both fields are challenging and worthwhile.The conference received 151 paper submissions in total, with contributions from 38 different countries, from all continents, which really shows the global dimension of the conference. To evaluate each submission, a double blind paper evaluation method was used: each paper was reviewed by at least two internationally known experts from our Program Committee. In the end, 85 papers were selected for oral presentation and publication in the proceedings, corresponding to a 56% acceptance ratio. Then, a short list including only the very best and most significant papers was selected to appear in this book.We hope that you will find these papers interesting and that they will prove a helpful reference in the future for all those who need to address the areas of e-business and telecommunication networks.

show abstract

Trade-offs in a Secure Jini Service Architecture

Cited by 10 publications

References 5 publications

Reducing Security Overhead to Enhance Service Delivery in Jini IoT

Reducing Security Overhead to Enhance Service Delivery in Jini IoT

Towards an Alternative Way of Verifying Proxy Objects in Jini

E-business and Telecommunication Networks

Contact Info

Product

Resources

About