User Centric Security Model for Tamper-Resistant Devices

Akram, Raja Naeem; Markantonakis, Konstantinos; Mayes, Keith

doi:10.1109/icebe.2011.69

Cited by 11 publications

(6 citation statements)

References 76 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This model gives the full power to the issuer [10] allowing him to pre-install, install, remove and manage the applications on the device. This model is service oriented.…”

Section: Icom Modelmentioning

confidence: 99%

Trusted mobile computing: An overview of existing solutions

Bouazzouni

Conchon

Peyrard

2018

Future Generation Computer Systems

View full text Add to dashboard Cite

“…This model gives the full power to the issuer [10] allowing him to pre-install, install, remove and manage the applications on the device. This model is service oriented.…”

Section: Icom Modelmentioning

confidence: 99%

Trusted mobile computing: An overview of existing solutions

Bouazzouni

Conchon

Peyrard

2018

Future Generation Computer Systems

View full text Add to dashboard Cite

“…Akram et al [7][8][9][10] aim to solve similar problem by different means -they propose a new paradigm to hand over the control and management of smartcard applications to the end-user. Similarly, Global Platform specifies a consumer-centric provisioning model where the user has more control over their isolated execution environments [28].…”

Section: Related Workmentioning

confidence: 99%

Market-Driven Code Provisioning to Mobile Secure Hardware

Dmitrienko

Heuser

Nguyen

et al. 2015

Financial Cryptography and Data Security

View full text Add to dashboard Cite

Today, most smartphones feature different kinds of secure hardware, such as processor-based security extensions (e.g., TrustZone) and dedicated secure co-processors (e.g., SIM-cards or embedded secure elements). Unfortunately, secure hardware is almost never utilized by commercial third party apps, although their usage would drastically improve security of security critical apps. The reasons are diverse: Secure hardware stakeholders such as phone manufacturers and mobile network operators (MNOs) have full control over the corresponding interfaces and expect high financial revenue; and the current code provisioning schemes are inflexible and impractical since they require developers to collaborate with large stakeholders. In this paper we propose a new code provisioning paradigm for the code intended to run within execution environments established on top of secure hardware. It leverages market-based code distribution model and overcomes disadvantages of existing code provisioning schemes. In particular, it enables access of third party developers to secure hardware; allows secure hardware stakeholders to obtain revenue for usage of hardware they control; and does not require third party developers to collaborate with large stakeholders, such as OS and secure hardware vendors. Our scheme is compatible with Global Platform (GP) specifications and can be easily incorporated into existing standards.

show abstract

“…2). Recently, we are experimenting in utilizing very small computing platforms [6] as sensors, such as the Raspberry Pi [7]. A deployable bootable image is also under development.…”

Section: The Sensorsmentioning

confidence: 99%

A Network Telescope for Early Warning Intrusion Detection

Chatziadam

Askoxylakis

Fragkiadakis

2014

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Proactive cyber-security tools provide basic protection as today's cyber-criminals utilize legitimate traffic to perform attacks and remain concealed quite often until it is too late. As critical resources, hidden behind layers of cyber-defenses, can still become compromised with potentially catastrophic consequences, it is of paramount significance to be able to identify cyber-attacks and prepare a proper defense as early as possible. In this paper we will go over the architecture, deployment and usefulness of a distributed network of honeypots that relies on darknets to obtain its data. As we have envisioned that such a system has the potential to detect large scale events as early as possible we have adopted the name Early Warning Intrusion System (EWIS).

show abstract

User Centric Security Model for Tamper-Resistant Devices

Cited by 11 publications

References 76 publications

Trusted mobile computing: An overview of existing solutions

Trusted mobile computing: An overview of existing solutions

Market-Driven Code Provisioning to Mobile Secure Hardware

A Network Telescope for Early Warning Intrusion Detection

Contact Info

Product

Resources

About