1,804 research outputs found

    BYODCert: Toward a Cross-Organizational BYOD Paradigm

    No full text
    We introduce a novel architectural solution (BYODCert) for managing the Bring Your Own Device paradigm at a cross-organizational level by exploiting mobile device certifications. BYODCert acts as a trusted third party allowing organizations to verify the compliance of their employeesâ personal devices against BYOD security policies. BYO-DCert is implemented as a cloud service that can be adopted by organizations as an external and on-demand BYOD solution

    From HPC to Security: How to Change Research Focus and Survive – A Career Perspective

    No full text
    This talk focuses on discussing a personal research experience through different, and, in principle, disconnected research topics. More specifically, the talk highlights a research path that started from HPC and Grid Computing and has lead to topics related to Computer Security and Privacy. The talk covers a period of 12 years, between 2005 and 2017, with the aim to show how it is possible to start a research career from specific research interests during the Ph.D., and then end up by joining a totally different research community some years later. The talk will also highlight how cross-fertilization among different research areas could positively impact their State-of-the-art

    A cooperative model for resource sharing on grid

    No full text
    fined by the administrators of the physical organizations and of the Grid middleware. This approach does not require support for access control in the middleware, but since changes in the access control policy of the Virtual Organization imply the involvement of one or more administrators, it lacks the flexibility needed in several application scenarios. In this paper we pro- pose a group-based access control model for Grid environments that increases the flexibility of the access control model offered by state-of-the-art Grid platforms without requiring changes in the middleware. The approach is based on collaboration among Grid users and allows them to exchange access permissions to Virtual Resources without the intervention of administrators. We show that our solution can be defined on top of the ac- cess control mechanisms offered by state-of-the-art Grid middleware and illustrate how the proposed model can be implemented as a service in a service-oriented Grid environment

    Cooperative Access Control for the Grid

    No full text
    The access to Grid resources depends on rules defined by the administrators of the physical organizations and of the Grid middleware. This approach does not require support for access control in the middleware, but since changes in the access control policy of the Virtual Organization imply the involvement of one or more administrators, it lacks the flexibility needed in a several application scenarios. In this paper we propose a group-based access control model for Grid environments that increases the flexibility of the access control model offered by state-of-the-art Grid platforms without requiring changes in the middleware. The approach is based on collaboration among Grid users and allows them to exchange access permissions to Virtual Resources without the intervention administrators. We show that our solution can be defined on top of the access control mechanisms offered by state-of-the-art Grid middleware and illustrate how the proposed model can be implemented as a service in a service-oriented Grid environment

    Completely Automated Public Physical test to tell Computers and Humans Apart: A usability study on mobile devices

    No full text
    A very common approach adopted to fight the increasing sophistication and dangerousness of malware and hacking is to introduce more complex authentication mechanisms. This approach, however, introduces additional cognitive burdens for users and lowers the whole authentication mechanism acceptability to the point of making it unusable. On the contrary, what is really needed to fight the onslaught of automated attacks to users data and privacy is to first tell human and computers apart and then distinguish among humans to guarantee correct authentication. Such an approach is capable of completely thwarting any automated attempt to achieve unwarranted access while it allows keeping simple the mechanism dedicated to recognizing the legitimate user. This kind of approach is behind the concept of Completely Automated Public Turing test to tell Computers and Humans Apart (CAPTCHA), yet CAPTCHA leverages cognitive capabilities, thus the increasing sophistication of computers calls for more and more difficult cognitive tasks that make them either very long to solve or very prone to false negatives. We argue that this problem can be overcome by substituting the cognitive component of CAPTCHA with a different property that programs cannot mimic: the physical nature. In past work we have introduced the Completely Automated Public Physical test to tell Computer and Humans Apart (CAPPCHA) as a way to enhance the PIN authentication method for mobile devices and we have provided a proof of concept implementation. Similarly to CAPTCHA, this mechanism can also be used to prevent automated programs from abusing online services. However, to evaluate the real efficacy of the proposed scheme, an extended empirical assessment of CAPPCHA is required as well as a comparison of CAPPCHA performance with the existing state of the art. To this aim, in this paper we carry out an extensive experimental study on both the performance and the usability of CAPPCHA involving a high number of physical users, and we provide comparisons of CAPPCHA with existing flavors of CAPTCHA

    What is Green Security?2011 7th International Conference on Information Assurance and Security (IAS)

    No full text
    Green Security is a new research field defining and investigating security solutions under an energy-aware perspective. Green Security aims at: (1) evaluating the actual security mechanisms in order to assess their energy consumption; (2) building new security mechanisms by considering energy costs from the design phase. In this paper, we first provide a definition of Green Security and formalism to model it, then we provide a use case showing how it is possible to model the energy consumption of two Intrusion Detection System (IDS) strategies, finally we leverage this model to assess the energy leakage due to the late discovery of bad packets

    Beaconing support in publish-subscribe middleware for vehicular applications

    No full text
    Vehicular Ad hoc Network (VANET) is a wireless network formed on the fly among vehicles connected by wireless links. A VANET application can learn about the context by acquiring and parsing beacons periodically broadcasted by other vehicles. In this paper we investigate the requirements of the applications that use vehicle beaconing to increase safety of road transportations and to provide drivers with sensitive information about traffic condition. On this topic, an open issue is related to the analysis and management of the beacon stream by means of a suitable middleware. To this aim, we discuss the design of a Publish-Subscribe based middleware for VANET applications, namely ACME, tailored to accomplish suitable queries over the beacons in a flexible and adaptive way, satisfying the applications requirements. Finally, a prototype implementation of ACME is presented
    corecore