وبلاگ بلیان

Foundations and Practice of Security: 14th International Symposium, FPS 2021, Paris, France, December 7–10, 2021, Revised Selected Papers (Lecture Notes in Computer Science, 13291)

معرفی کتاب «Foundations and Practice of Security: 14th International Symposium, FPS 2021, Paris, France, December 7–10, 2021, Revised Selected Papers (Lecture Notes in Computer Science, 13291)» نوشتهٔ Esma Aïmeur, Maryline Laurent, Reda Yaich, Benoît Dupont, Joaquin Garcia-Alfaro، منتشرشده توسط نشر Springer International Publishing AG; Springer در سال 1329. این کتاب در فرمت pdf، زبان انگلیسی ارائه شده است.

This book constitutes the revised selected papers of the 14th International Symposium on Foundations and Practice of Security, FPS 2021, held in Paris, France, in December 2021. The 18 full papers and 9 short paper presented in this book were carefully reviewed and selected from 62 submissions. They cover a range of topics such as Analysis and Detection; Prevention and Efficiency; and Privacy by Design. Chapters “A Quantile-based Watermarking Approach for Distortion Minimization”, “Choosing Wordlists for Password Guessing: An Adaptive Multi-Armed Bandit Approach” and “A Comparative Analysis of Machine Learning Techniques for IoT Intrusion Detection” are available open access under a Creative Commons Attribution 4.0 International License via link.springer.com. Preface Organization Contents Cryptography and Privacy Secure and Robust Cyber Security Threat Information Sharing 1 Introduction 1.1 Illustrative Case-Study 1.2 Our Contributions 1.3 Paper Organization 2 Related Work 2.1 Privacy-Preserving Cyber Security Information Sharing 2.2 ABE Access Control 3 Preliminary 3.1 Bilinear Maps 3.2 Trusted Third Party Free Threshold Secret Sharing 4 System and Security Models 4.1 System Model 4.2 Definition of Our Construction 4.3 Threat Model 4.4 Security Requirements 5 Our Proposed Scheme 6 Security Analysis 7 Conclusion References Revisiting Stream-Cipher-Based Homomorphic Transciphering in the TFHE Era 1 Introduction 2 Tranciphering 3 TFHE 3.1 Learning with Errors 3.2 TLWE/TRLWE Encryption 3.3 Bootstrapping 3.4 Impact on Transciphering 4 Choice of the Symmetric Scheme 5 Trivium/Kreyvium 5.1 Trivium 5.2 Kreyvium 6 Grain128a/Grain128-AEAD 6.1 Grain128a 6.2 Grain128-AEAD 6.3 MAC Computation 6.4 MAC Usage in the Context of Transciphering 7 Experimental Results 7.1 The Cingulata Homomorphic Compiler 7.2 Implementation Details 7.3 Performance Results 8 Other Algorithms 9 Conclusion References Generic Construction for Identity-Based Proxy Blind Signature 1 Introduction 2 Formal Security Definitions and Properties for IDPBS 3 Our IDPBS Construction 4 Security of the Proposed Scheme 5 Analysis of the Construction 6 Conclusion References Optimizing Anonymity and Performance in a Mix Network 1 Introduction 2 Problem 3 Methodology 3.1 Experimental Setup 3.2 Measuring Anonymity with Entropy 3.3 The Mix Simulator 4 Results 4.1 Impact of Sending Rates and Mixing Delay on Anonymity and Performance 4.2 Simulations with Different Packet Sizes 4.3 Finding the Best Combination of Sending Rates and Mixing Delay 5 Conclusion References Homomorphic Evaluation of Lightweight Cipher Boolean Circuits 1 Introduction 2 Related Work 3 Preliminaries 3.1 Authenticated Encryption 3.2 Fully Homomorphic Encryption and Outsourcing Protocol 4 Circuit Complexity of NIST LWC Round 2 Candidates 4.1 Generating Boolean Circuits of Core Primitives 5 Homomorphic Evaluation of Core AEAD Circuits 5.1 Conversion of AEAD Ciphertexts to FHE Ciphertexts 5.2 Experimental Evaluation 6 Conclusions and Future Work References Breaking Black Box Crypto-Devices Using Laser Fault Injection 1 Introduction 2 Laser Setup and Device Under Test 2.1 Device Preparation 2.2 Laser System and Triggering 3 Preceding Search Space Reduction 3.1 General Strategy 3.2 Identifying the AES Core Area 3.3 Identifying the AES Execution Time 4 Laser Fault Injection Scans 4.1 Large Area Scans 4.2 LFI Scan of Memory Blocks 4.3 Laser Parameter Calibration 4.4 Successful DFA 4.5 Repeatability and Fault Model 4.6 Revealing Details About the AES Implementation 5 Conclusion References Authentication and Content Protection Employing Feature Selection to Improve the Performance of Intrusion Detection Systems 1 Introduction 2 Datasets 2.1 UNSW-NB15 2.2 Kyoto 2006+ 2.3 DoHBrw-2020 3 Background 4 Methodology 4.1 Dataset Preprocessing 4.2 Feature Selection 4.3 Model Creation 5 Experiments and Results 5.1 Experiments 5.2 Results and Discussion 6 Related Work 7 Conclusion and Future Works References Implementation of Lightweight Ciphers and Their Integration into Entity Authentication with IEEE 802.11 Physical Layer Transmission 1 Introduction 2 Preliminaries 2.1 Three Lightweight Authenticated Encryption Schemes 2.2 IEEE 802.11i: IEEE 802.11X 4-Way Handshake and Data Protection 2.3 CoAP: DTLS Handshake and Data Protection Protocols 3 Construction and Implementation of KDF and MIC in CoAP and IEEE 802.11i 3.1 ACE, SPIX, and WAGE as Cipher Suites in CoAP and IEEE 802.11i Protocols 3.2 Optimized Microcontroller Implementations of ACE, SPIX and WAGE 4 Implementation of OFDM System, IEEE 802.11X and CoAP in SDR 4.1 Experimental Setup for OFDM Sender and Receiver 4.2 Experiment Setup for the IEEE 802.11X and CoAP Handshaking Mutual Authentication 5 Experiment Results and Comparisons 6 Conclusion and Future Work References HistoTrust: Ethereum-Based Attestation of a Data History Built with OP-TEE and TPM 1 Introduction 2 Related Works 2.1 Secure Data History with Trusted Hardware 2.2 Attestation Scheme 3 System Requirements 3.1 Use Case 3.2 Threat Model 3.3 Requirements 4 Design 4.1 Architecture Design 4.2 Secure Hardware 4.3 Implementation 5 Evaluation 5.1 Performance 5.2 Security and Privacy 6 Conclusion References Automatic Annotation of Confidential Data in Java Code 1 Introduction 2 Background: Graph-Based Representations for Java 3 The Algorithm for Automatic Annotations 3.1 Datalog Facts Extraction 3.2 Confidentiality Policy 3.3 Initial Data Annotation Phase 3.4 Data Annotation Propagation Phase 4 Evaluation 4.1 SecuriBench 4.2 Reconstructing Existing Annotations 5 Discussion and Limitations 5.1 Limitations 5.2 Other Approaches 6 Related Work 7 Conclusion References A Quantile-Based Watermarking Approach for Distortion Minimization 1 Introduction 1.1 Paper Contribution 1.2 Paper Structure 2 Theoretical Background 2.1 Related Work 3 Proposed Approach 3.1 First Action: Mark Embedding Cancellation 3.2 Second Action: Change the Target Distribution 4 Experimental Results 4.1 Experimental Setup 4.2 Watermark Capacity Variations 4.3 Imperceptibility Improvements 4.4 Watermark Robustness Impact 4.5 Benefits of Selecting Meaningful Watermark Sources 5 Conclusions References EXMULF: An Explainable Multimodal Content-Based Fake News Detection System 1 Introduction 2 Related Work 2.1 Multimodal Content-Based Fake News Detection 2.2 Explainable Fake News Detection 3 EXMULF: Explainable Multimodal Content-Based Fake News Detection System 4 Experimental Results and Discussion 4.1 Datasets 4.2 The LDA Topic Modeling 4.3 Multimodal Detector 4.4 Multimodal Explainer 4.5 Discussion of the Results Obtained 5 Conclusion and Future Work References IoT Security A Comparative Analysis of Machine Learning Techniques for IoT Intrusion Detection 1 Introduction 2 Related Work 3 Methods 3.1 Dataset 3.2 Data Preprocessing 3.3 Evaluation Metrics 3.4 Supervised Learning Models 3.5 Unsupervised Learning Models 3.6 Deep Reinforcement Learning Model 4 Results and Discussion 4.1 Binary Classification 4.2 Multi-class Classification 5 Conclusions References An Automatized Identity and Access Management System for IoT Combining Self-Sovereign Identity and Smart Contracts 1 Introduction 2 Background on Self-Sovereign Identity and Open Standards 2.1 Decentralized Identifiers (DID) 2.2 Decentralized Public Key Infrastructure (DPKI) 2.3 Verifiable Credentials (VC) 2.4 DID Authentication Protocol 3 Our System Architecture and Design 3.1 System Model and Vehicle Sharing Use Case 3.2 Functional and Security Requirements 3.3 Design Choices 3.4 The Workflow Description 3.5 Identity Management with Hyperledger Indy 3.6 Access Management with Ethereum 4 Blockchain Interoperability Between Hyperledger Indy and Ethereum 4.1 Interoperability Solutions for Blockchains 4.2 The Proposed Interoperability Solution 5 Conclusion References PERMANENT: Publicly Verifiable Remote Attestation for Internet of Things Through Blockchain 1 Introduction 2 Related Works 2.1 Remote Attestation Using Blockchain 2.2 Blockchain Consensus Protocols 3 System Model 4 Adversary Model and Security Requirements 4.1 Adversary Model 4.2 Security Requirements 5 PERMANENT: Protocol Proposal 5.1 Bootstrap 5.2 Attestation 5.3 Verification 5.4 History-Based Trust Decision 6 Implementation Details and Proof of Concept 6.1 Client 6.2 Transaction Processor 7 Limitations 8 Conclusions and Future Work References Cut It: Deauthentication Attacks on Protected Management Frames in WPA2 and WPA3 1 Introduction 2 Related Work 3 IEEE 802.11w Amendment 3.1 Security Association Query Procedure 4 Deauthentication Attacks on IEEE 802.11w 4.1 Deauthentication Using Unicast Deauthentication Frames 4.2 Deauthentication Using Fake Authentication Session 4.3 Further Result Analysis 5 Conclusion References Lightweight Authentication and Encryption for Online Monitoring in IIoT Environments 1 Introduction 2 Related Work 3 System Architecture 3.1 Use Case 3.2 Threat Model 3.3 Setup and Enrollment 3.4 Authentication 3.5 Encrypted Communication 4 Implementation and Evaluation 4.1 Experimental Setup 4.2 Evaluation 4.3 Discussion on Security and Portability 5 Conclusion References Attacks and Code Security Detecting Attacks in Network Traffic Using Normality Models: The Cellwise Estimator 1 Introduction 2 Related Work 3 Concept 3.1 One-Class SVM 3.2 Cellwise Estimator 3.3 Comparison and Output 4 Evaluation 4.1 Effectiveness of CE 4.2 Comparison of CE and OSVM 4.3 Comparison to Other IDS 5 Conclusion 5.1 Summary 5.2 Future Work References A Modular Runtime Enforcement Model Using Multi-traces 1 Introduction 2 State of the Art in Runtime Enforcement 2.1 Monitor Capabilities 2.2 Transparency Constraints 3 A Modular Runtime Enforcement Pipeline 3.1 Production of Corrected Traces 3.2 Filtering of Valid Traces 3.3 Selection of the Optimal Output Trace 3.4 Merging Valid vs. Corrected Trace 3.5 Event Buffering 4 Discussion 4.1 Use Case 4.2 Design Considerations 4.3 Implementation and Experimental Results 5 Conclusions References A Tight Integration of Symbolic Execution and Fuzzing (Short Paper) 1 Introduction 2 Symbolic Execution 3 Coverage-Based Fuzzing 4 Lightweight Symbolic Execution and Constrained Fuzzing 4.1 Motivating Example 4.2 Our Approach: ConFuzz 4.3 Preliminary Experiments 5 Conclusion References At the Bottom of Binary Analysis: Instructions 1 Introduction 2 Listing the Instructions 2.1 Structure of Assembly Instructions 2.2 Instructions Enumeration 3 Representing the Abstractions: The Automata 3.1 General Automaton Representation 3.2 Examples of Specific Automata 4 Concluding Remarks References K-Smali: An Executable Semantics for Program Verification of Reversed Android Applications 1 Introduction 2 Overview on K Framework 3 K-Smali 3.1 Syntax 3.2 Configuration 3.3 Semantics 4 Program Verification 4.1 Spyware 4.2 SMS Trojan 5 Comparison with Related Work 6 Conclusion References Defense and Analysis Why Anomaly-Based Intrusion Detection Systems Have Not Yet Conquered the Industrial Market? 1 Introduction 2 Low Adoption of ML-Based Detection in the Industry 2.1 Omnipresence of Signature-Based Detection Engines 2.2 Anomaly-Based Challenges for IDS 2.3 Benchmarks and Evaluation Criteria 2.4 New Evaluation Criteria 3 Explainability of IDS Predictions 4 Discussion About ICS 4.1 Higher Cybersecurity Risks and Impacts 4.2 Potentially Effective Network Monitoring 4.3 Strong Need of Anomaly-Based IDS for ICS 5 Conclusion References Creation and Detection of German Voice Deepfakes 1 Introduction 2 Text-to-Speech Synthesis with Tacotron 2 3 Cloning the Voice of a University Professor 3.1 Data Ingestion 3.2 Choosing an Implementation 3.3 Training 3.4 Inference 4 Survey 5 Detection 5.1 Bispectral Analysis 5.2 Anomaly Detection 6 Conclusion References Asset Sensitivity for Aligning Risk Assessment Across Multiple Units in Complex Organizations 1 Introduction 2 Preliminaries 3 Our Methodology 3.1 Determination of the Sensitivity Features 3.2 Preparation and Conduction of a Survey 3.3 Determination of the Sensitivity Impact 4 Validating Our Methodology with a Real-World Data Set 4.1 Data 4.2 Analysis of the Previous Results 4.3 Application of Our Methodology 4.4 Analysis of the Results Obtained with Our Methodology References An Extensive Comparison of Systems for Entity Extraction from Log Files 1 Introduction 2 Log Parsing Techniques for Named Entity Recognition 2.1 IOB Tagging for Named Entity Recognition 2.2 Word-Based Methods 2.3 Graphical Model: Conditional Random Fields 2.4 Sequence to Sequence Learning 2.5 Language Model: BERT 3 In-Scope and Out-of-Scope Datasets 4 Experimental Evaluation 4.1 Performance Assessment Metrics 4.2 Experimental Settings 4.3 Results and Discussion 5 Conclusion and Future Work References Choosing Wordlists for Password Guessing: An Adaptive Multi-armed Bandit Approach 1 Introduction 2 Related Work and Background 3 The Multi-armed Bandit Problem 3.1 Password Guessing: Problem Set-up 3.2 Maximum Likelihood Estimation 3.3 Multi-armed Bandit Design and Validation 4 Password Guessing for Real Password Sets 4.1 Rockyou.com Password Set 5 Identifying Demographics 5.1 Matching Nationality Characteristics 5.2 Password Nationality to Inform Guessing 6 Discussion and Future Work 7 Conclusion References Author Index This book constitutes the carefully refereed and revised selected papers of the 5th International Symposium on Foundations and Practice of Security, FPS 2012, held in Montreal, QC, Canada, in October 2012.The book contains a revised version of 22 full papers, accompanied by 3 short papers. The papers were carefully reviewed and selected from 62 submissions. The papers are organized in topical section on cryptography and information theory, key management and cryptographic protocols, privacy and trust, policies and applications security, and network and adaptive security.
دانلود کتاب Foundations and Practice of Security: 14th International Symposium, FPS 2021, Paris, France, December 7–10, 2021, Revised Selected Papers (Lecture Notes in Computer Science, 13291)