1,721,094 research outputs found
From HPC to Security: How to Change Research Focus and Survive – A Career Perspective
No full textThis talk focuses on discussing a personal research experience through different, and, in principle, disconnected research topics. More specifically, the talk highlights a research path that started from HPC and Grid Computing and has lead to topics related to Computer Security and Privacy. The talk covers a period of 12 years, between 2005 and 2017, with the aim to show how it is possible to start a research career from specific research interests during the Ph.D., and then end up by joining a totally different research community some years later. The talk will also highlight how cross-fertilization among different research areas could positively impact their State-of-the-art
BYODCert: Toward a Cross-Organizational BYOD Paradigm
No full textWe introduce a novel architectural solution (BYODCert) for managing the Bring Your Own Device paradigm at a cross-organizational level by exploiting mobile device certifications. BYODCert acts as a trusted third party allowing organizations to verify the compliance of their employeesâ personal devices against BYOD security policies. BYO-DCert is implemented as a cloud service that can be adopted by organizations as an external and on-demand BYOD solution
A cooperative model for resource sharing on grid
No full textfined by the administrators of the physical organizations and of the Grid middleware. This approach does not require support for access control in the middleware, but since changes in the access control policy of the Virtual Organization imply the involvement of one or more administrators, it lacks the flexibility needed in several application scenarios. In this paper we pro- pose a group-based access control model for Grid environments that increases the flexibility of the access control model offered by state-of-the-art Grid platforms without requiring changes in the middleware. The approach is based on collaboration among Grid users and allows them to exchange access permissions to Virtual Resources without the intervention of administrators. We show that our solution can be defined on top of the ac- cess control mechanisms offered by state-of-the-art Grid middleware and illustrate how the proposed model can be implemented as a service in a service-oriented Grid environment
Modeling the energy consumption of Distributed IDS: a step towards Green Security
No full textABSTRACT – Due to the proliferation of wideband and Internet technologies in the last decade, the risk of security threats hidden in single packets arose. This had taken ISP networks to the adoption of Intrusion Detection Systems, enhancing the basic routing with packets inspection, in order to provide a secure connection service. Currently, packet analysis is provided by almost each ISP but it has a high impact in term of performance and energy consumption; this makes the choice of the optimal IDS strategy both a key and non-trivial issue. To this aim, IDS strategies have been deeply investigated in term of performance, while the assessment of the energy consumption is quite unexplored. In this paper, we propose the first attempt towards the assessment of the energy impact of security solutions. In particular, we provide a general model for evaluating the energy cost of distributed packet inspection in IDS and we show how it can be applied to two sample IDS strategies, in order to evaluate the energy leakage due to a late discovery of rogue packets
Measuring and estimating power consumption in Android to support energy-based intrusion detection
No full textThis paper investigates the feasibility of constructing power-consumption-based sensors for the identification of security threats (e.g. battery-drain attacks) on Android based mobile devices. In particular, this paper proposes a measurement methodology and high-level models for the energy consumption of two very important hardware subsystems in a mobile device, namely the Wi-Fi and the CPU. The measuring methodology and the high-level models are then compared to others described in the literature and validated through actual experiments. Finally, the proposed methodology is tested with an energy oriented variant of the ping-flood attack performed while a legitimate application is running. Experimental results show that the measurement methodology is sound, precise and reliable in detecting the onset of an attack
- …
