Network and system security : 16th international conference, NSS 2022, Denarau Island, Fiji, December 9-12, 2022 : proceedings
معرفی کتاب «Network and system security : 16th international conference, NSS 2022, Denarau Island, Fiji, December 9-12, 2022 : proceedings» نوشتهٔ Xingliang Yuan, Guangdong Bai, Cristina Alcaraz, Suryadipta Majumdar، منتشرشده توسط نشر Springer International Publishing AG در سال 1378. این کتاب در فرمت pdf، زبان انگلیسی ارائه شده است.
This book constitutes the refereed proceedings of the 16th International Conference on Network and System Security, NSS 2022, held in Denarau Island, Fiji, on December 9-12, 2022. The 23 full and 18 short papers presented in this book were carefully reviewed and selected from 83 submissions. They focus on theoretical and practical aspects of network and system security, such as authentication, access control, availability, integrity, privacy, confidentiality, dependability and sustainability of computer networks and systems. Preface Organization Contents AI for Network Security Vulnerability Detection Using Deep Learning Based Function Classification 1 Introduction 2 Background 2.1 Vulnerability Categories 2.2 Challenges 2.3 Perceptions 3 Method 3.1 Function Processing 3.2 Function Classification 3.3 Vulnerability Detection 4 Experiments and Results 4.1 Experiment Setup 4.2 RQ 1: Function Classification 4.3 RQ2: Vulnerability Detection 4.4 RQ 3: Runtime Cost 4.5 Case Study 4.6 Limitations 5 Related Work 6 Conclusion and Future Work A Additional Vulnerability Cases References RAIDER: Reinforcement-Aided Spear Phishing Detector 1 Introduction 2 Background 2.1 K Nearest Neighbours (KNN) 2.2 Reinforcement Learning (RL) 3 Key Insights: Analysis of Spear Phishing Emails 4 RAIDER System Design 4.1 Threat Model 4.2 Overview of RAIDER 4.3 RAIDER in Detail 5 Evaluation 5.1 Experimental Setup 5.2 Results of RAIDER 6 Discussion and Future Work 6.1 Complexity and Time Overhead 6.2 Contextual Analysis Limitations 6.3 Crafted vs Real Spear Phishing Emails 7 Related Work 8 Conclusion References Network Intrusion Detection Adversarial Attacks for LEO Constellation Networks Based on Deep Learning 1 Introduction 2 Related Work 2.1 Low Earth Orbit Satellite Traffic Simulation Platform 2.2 Malicious Traffic Collection 2.3 Launch Attack 2.4 Traffic Classification Model 2.5 Adversarial Examples 3 Methods 3.1 LEO Traffic Simulation System 3.2 Traffic Adversarial Sample Generate Algorithm 3.3 Datasets 3.4 Traffic Classification Model 3.5 Adversarial Sample Defense Algorithm 4 Experiment 4.1 Defense Model 4.2 Experimental Results 5 Conclusion References A Proof of Concept Implementation of Explainable Artificial Intelligence (XAI) in Digital Forensics 1 Introduction 1.1 Our Contributions 1.2 AI in Digital Forensics: The Current State 2 Background, Dataset, and Models 2.1 What Is XAI? 2.2 The Datasets 2.3 Data Models 3 Forensic Processing 3.1 Target Files 3.2 Parsing Media Data 3.3 File Pre-processing 3.4 Implementing AI and Explainability 4 Results 4.1 Image Classification Results 4.2 Video Classification 4.3 File Metadata Classification 5 Discussion on Results, Limitations, and Future Work 5.1 Limitations 5.2 Avenues for Further Research References Graph Intelligence Enhanced Bi-Channel Insider Threat Detection 1 Introduction 2 Related Works 2.1 Insider Threat Detection 2.2 Graph-Based Insider Threat Detection 3 Methodology 4 A Use Case Implementation 4.1 Dataset and Pre-processing 4.2 Inner-User Channel Feature Extraction 4.3 Inter-User Channel Feature Extraction 5 Experiments 5.1 Comparison Between B-CITD and Inner-User Channel 5.2 Comparison Between B-CITD and Inter-user Channel 5.3 Discussion 6 Conclusion References Network Security Exploiting Redundancy in Network Flow Information for Efficient Security Attack Detection 1 Introduction 2 Literature Review 3 Methodology 3.1 Background Techniques 3.2 Sampling Based Frameworks 4 Experiments 4.1 General Experiment Settings 4.2 Results and Analysis 5 Conclusion References A Learning Methodology for Line-Rate Ransomware Mitigation with P4 Switches 1 Introduction 2 Related Work 3 Ransomware Threat Model 4 Proposed Methodology 4.1 Overview and Intuition 4.2 Data Processing 4.3 RF Implementation 5 Evaluation 6 Concluding Remarks and Future Directions References Reducing Intrusion Alert Trees to Aid Visualization 1 Introduction 1.1 Our Contributions 1.2 Related Work 1.3 Paper Outline 2 Problem Formalization 2.1 Setting and Terminology 2.2 Intuitive Problem Statement 2.3 Data Structures 2.4 Formalizing Intuitive Problems as Research Questions 3 Methods 3.1 Merging Sibling Leaves 3.2 Merging Sibling Branches 3.3 Truncating Hypotrees 4 Case Study 4.1 Evaluation Metrics 4.2 Results 4.3 Answering Research Questions 5 Discussion 6 Conclusion References Attacker Attribution via Characteristics Inference Using Honeypot Data 1 Introduction 2 Background and Related Work 3 Methodology 3.1 Data Collection and Processing 3.2 Basic Methodology 3.3 Generalized Methodology 4 Evaluation 4.1 Replication of Results 4.2 Generalized Results 5 Discussion 6 Conclusion References Detecting Contradictions from CoAP RFC Based on Knowledge Graph 1 Introduction 2 Background and Related Work 2.1 Background 2.2 Related Work 3 Problem Definition 3.1 Entity, Rule and Relation 3.2 Contradictions 4 RFCKG Approach 4.1 Rule Statement Extraction 4.2 Knowledge Graph Construction 4.3 Contradiction Detection 5 Evaluation 5.1 Knowledge Graph Construction 5.2 Contradiction Detection 6 Discussion and Future Directions 7 Conclusion References Mobile Security A First Look at Android Apps' Third-Party Resources Loading 1 Introduction 2 Background and Methodology 2.1 Third-Party Ecosystem 2.2 Collecting App Metadata from Google Play 2.3 Extracting Apps' Resource Dependency Chains 2.4 Resource Dependency Dataset 2.5 Meta-data Collection from VirusTotal 3 Analysis of Apps' Resource Dependency Chains 3.1 Characterizing Apps' Implicit Trust 3.2 Characterizing the Types of Resources 4 Analyzing Malicious Resource Dependency Chains of Apps 4.1 Do Apps Load Suspicious Third-Parties? 4.2 Do Apps' Dependency Chains Contain Suspicious Parties? 4.3 How Widespread Are Suspicious Parties? 4.4 Which Suspicious Third-Parties Are Most Prevalent? 4.5 At Which Level Do Suspicious Third-Parties Occur? 5 Related Work 6 Concluding Remarks References Comprehensive Mobile Traffic Characterization Based on a Large-Scale Mobile Traffic Dataset 1 Introduction 2 Related Work 3 Mobile Traffic Dataset 4 Mobile Traffic Characterization 4.1 Basic Information 4.2 Domain Name Usage 4.3 HTTP/TLS Usage 4.4 Traffic Flow 5 Discussion 5.1 Network Operator 5.2 Mobile Traffic Researcher 6 Conclusion References DOT-M: A Dual Offline Transaction Scheme of Central Bank Digital Currency for Trusted Mobile Devices 1 Introduction 1.1 Design Principles 1.2 Related Work 1.3 Our Contribution 2 System Model and Assumptions 2.1 Notation 2.2 System Model 2.3 Security Assumptions and Threat Model 3 DOT-M Scheme for Mobile Devices 3.1 Security Solution on Mobile Device 3.2 Design of Data Structure 3.3 The Details of Dual Offline Transaction Scheme 4 Implementation and Evaluation 4.1 Implementation 4.2 Efficiency and Performance Evaluation 5 Conclusion References A Beyond-5G Authentication and Key Agreement Protocol 1 Introduction 2 Preliminaries 2.1 5G Terms and Acronyms 2.2 Key Encapsulation Mechanisms 2.3 Post-Quantum Cryptography 2.4 Used Symmetric Primitives 3 Related Work 4 Contributions 5 Our Protocol 5.1 Phase A: The Identification Phase 5.2 Phase B: The Authentication Phase 5.3 Remarks on the Enhancements Required by Our Protocol 6 The Case of GUTI 7 Security Analysis 7.1 Threat Model 7.2 Formal Verification 7.3 Further Security Features 8 Feasibility of Our Protocol 9 Conclusion References IoT Security A Survey on IoT Vulnerability Discovery 1 Introduction 2 Taxonomy and Research Methodology 2.1 Taxonomy 2.2 Research Methodology 3 IoT Vulnerability Discovery with Code Intelligence 3.1 Physical Device 3.2 Operation Rule 3.3 Communication 4 Research Challenges 5 Conclusion References Differentiated Security Architecture for Secure and Efficient Infotainment Data Communication in IoV Networks 1 Introduction 2 Related Work 2.1 Internet-of-Vehicles 2.2 Caching with Named Data Networking 2.3 Attribute-Based Encryption 2.4 Blockchain 3 Overview of System Architecture 3.1 Data Classification 3.2 Design Considerations 3.3 Proposed Approach for Infotainment Data Exchange 3.4 Subscribed User Revocation 4 Time-Sensitive KP-ABE Scheme 4.1 Model Evaluation 5 Conclusion A Summary of Math Notation and Symbols References An Efficient Authenticated Group Key Agreement Protocol with Dynamic Batch Verification for Secure Distributed Networks 1 Introduction 1.1 Related Work 1.2 Main Contributions 1.3 Organization 2 Preliminaries 2.1 Group Key Agreement Protocol 2.2 BLS Multi-Signatures 2.3 Protocol Transformation 2.4 Notations 3 System Model 4 The Proposed Protocol 4.1 Authenticated Group Key Agreement Protocol 4.2 The Proposed Protocol with Precomputation 4.3 Dynamic Batch Verification 5 Conclusion References Leveraging Frame Aggregation in Wi-Fi IoT Networks for Low-Rate DDoS Attack Detection 1 Introduction 2 Feature Design 2.1 Frame Aggregation Overview 2.2 Frame Aggregation for Attack Detection 2.3 ampdu Characteristics Extraction 2.4 Normalization of ampdu Characteristics 3 Threat Model 4 Framework Overview 5 Results and Discussion 6 Related Work 7 Conclusion References Supporting Cyber-Attacks and System Anomaly Detection Research with an Industry 4.0 Dataset 1 Introduction 2 Literature Review 3 Industry 4.0 Testbed 3.1 Testbed Introduction 3.2 Schematic and Process 3.3 Network Architecture 4 Attacks Details 4.1 Denial of Service (DoS) 4.2 Man-in-the-middle Attack (MITM) 4.3 Malware 4.4 Disgruntled Employee or System Malfunction 5 Data Collection 5.1 Dataset Overview 5.2 Physical Data 5.3 Network Data 6 Evaluation Using Machine Learning 6.1 Evaluation Set up and Result of Physical Data 6.2 Evaluation Set Up and Result of Network Data 7 Conclusion References Privacy-Preserving Machine Learning Protocols and Systems The Force of Compensation, a Multi-stage Incentive Mechanism Model for Federated Learning*-10pt 1 Introduction 2 Related Works 3 The Multi-stage Incentive Mechanism Model 3.1 The Model 3.2 Research Findings 4 Experimental Evaluation 4.1 Experiment Settings 4.2 Experimental Result and Discussion 5 Conclusion and Future Works References A Privacy-Preserving Distributed Machine Learning Protocol Based on Homomorphic Hash Authentication 1 Introduction 1.1 Our Contributions 2 Related Work 3 Background 3.1 Secret Sharing 3.2 Secret Sharing with Homomorphic Hash Authentication 3.3 Homomorphic Hash Authentication 4 Privacy Preserving Protocol 4.1 Correctness Analysis 4.2 Security Analysis 4.3 Performance Analysis 5 Evaluation and Results 5.1 Experimental Setup 5.2 Experimental Results and Discussion 6 Conclusion References An Efficient Clustering-Based Privacy-Preserving Recommender System*-12pt 1 Introduction 2 Preliminaries 2.1 Collaborative Filtering 2.2 ElGamal 2.3 K-means Clustering 3 Our Model 3.1 Overview 3.2 Data Structure 3.3 Adversary Model 4 Our Privacy-Preserving Collaborative Filtering Protocols 4.1 Offline Stage 4.2 Online Stage 5 Security Analysis 6 Evaluation 6.1 Experimental Settings 6.2 Performance of Secure Clustering 6.3 Performing Item-to-Item Similarity Computations 6.4 Generating a Recommendation 6.5 Analysing the Recommendation Accuracy 7 Related Work 8 Conclusion References A Differential Privacy Mechanism for Deceiving Cyber Attacks in IoT Networks*-12pt 1 Introduction 2 Related Work 3 Proposed Approach 4 System, Attack and Defence Models 4.1 System Model 4.2 Attack Model 4.3 Defence Model 5 Evaluation 5.1 Simulation Setup 5.2 Deception Cost 5.3 Strategies to Deploy Defence Mechanisms 6 Conclusion A Proof of Proposition 1 References Privacy-Preserving Networked Systems and Protocols Privacy-Preserving Online Ride-Hailing Matching System with an Untrusted Server 1 Introduction 2 Related Works 3 Preliminaries 3.1 Road Network Embedding 3.2 Pseudo-Random Function 3.3 Property-Preserving Hash 4 Problem Statements 4.1 System Model 4.2 Threat Model 5 Proposed System 5.1 Secure Distance Calculation from PRF-based PPH 5.2 Passenger-Driver Matching 5.3 Early Stopping in Distance Calculation 6 Security Analysis 6.1 Leakage Definition 6.2 Analysis 6.3 Discussion About the Difference Leakage 7 Experimental Evaluation 7.1 Experiment Setup 7.2 Performance 8 Conclusion References Efficient and Fine-Grained Sharing of Signed Healthcare Data in Smart Healthcare 1 Introduction 1.1 Related Work 1.2 Contribution 1.3 Paper Organization 2 Preliminaries 2.1 General Notations 2.2 Access Structure 2.3 Monotone Span Program 2.4 Linear Secret Sharing Scheme 2.5 Bilinear Pairings 3 Redactable Signature Scheme 3.1 Syntax 3.2 Security Notion 4 Our Construction 5 Analysis of Our Construction 5.1 Security Analysis 5.2 Efficiency Analysis 6 Conclusion References Enabling Secure Deduplication in Encrypted Decentralized Storage 1 Introduction 2 Background and Preliminaries 3 System Overview 3.1 System Model 3.2 Threat Model and Assumptions 4 Our Proposed Design 4.1 Design Intuition 4.2 Data Structures and Functions 4.3 Secure Deduplication in Public Blockchain 4.4 Security Analysis 5 Experimental Evaluation 5.1 Setup 5.2 Datasets and Test Setting 5.3 Evaluation Results 6 Related Work 7 Conclusion References Geometric Range Searchable Encryption with Forward and Backward Security 1 Introduction 2 Related Work 3 Preliminaries 3.1 Set-Constrained Pseudorandom Function (SC-PRF) 3.2 Hierarchical Encoding 3.3 Hilbert Curve 3.4 Prefix Member Verification 4 DSSE Definition And Security Definitions 4.1 Dynamic Searchable Symmetric Encryption 4.2 Security Model 4.3 Forward Privacy 4.4 Backward Privacy 5 Construction 5.1 Overview 5.2 Description 5.3 Comparison 5.4 Security Analysis 6 Performance Evaluation 6.1 Comparison with Previous Solutions 7 Conclusion A Appendix References Blockchain Security Towards Secure and Trustworthy Flash Loans: A Blockchain-Based Trust Management Approach 1 Introduction 1.1 Background and Motivation 1.2 Related Works 1.3 Contribution and Novelty 2 Preliminary of Flash Loan 2.1 Flash Loan Platforms on Ethereum 2.2 Flash Loan Platforms on Binance Smart Chain 2.3 Atomicity of Flash Loan 3 Application of Flash Loan in DeFi 4 Flash Loan Attacks 4.1 Bidding up Arbitrage 4.2 Manipulating Oracle Machine 4.3 Reentrant Attack 4.4 Technical Vulnerability and Sociology Vulnerability 5 The Existing Credit Scoring Systems 6 Relevant Models 6.1 Role-Based Trust Assessment Model 6.2 Periodic Node Behavior Trust Evaluation Model 6.3 RFM Model 7 On Building Trustworthy System for Flash Loan 7.1 The Improved RFM Model Based on User On-Chain Behavior 7.2 The Improved RFM Model Combined with Role-Based Trust Assessment Model 7.3 The Improved RFM Model Combined with Periodic Node Behavior Trust Evaluation Model 8 The Future of Flash Loan 9 Conclusion References Forward Traceability for Product Authenticity Using Ethereum Smart Contracts 1 Introduction 2 Related Work 3 Forward Traceability 4 A Proof of Concept Implementation 4.1 Requirements 4.2 Design 4.3 Informal Security Argument 5 Evaluation 5.1 Setup 5.2 Results 6 Conclusion References BSB: Bringing Safe Browsing to Blockchain Platform 1 Introduction 2 Preliminaries 2.1 Ethereum and Smart Contract 2.2 Dapp and Wallet 2.3 Elliptic Curve Cryptography 3 System Overview 4 Design 4.1 Data Processing 4.2 Contract Owner Notify 4.3 User Warning 5 Implementation 5.1 BSB Handler 5.2 BSB Server 5.3 BSB Client 6 Evaluation 6.1 BSB Handler 6.2 BSB Server 6.3 BSB Client 7 Discussion 8 Conclusion References Blockchain-Powered Systems Practical Anonymous Multi-hop Locks for Lightning Network Compatible Payment Channel Networks 1 Introduction 1.1 Our Contributions 2 Preliminaries 2.1 Anonymous Multi-hop Lock (AMHL) 2.2 Non-interactive Zero-Knowledge 3 Security Model 4 Construction 5 Performance Evaluation 6 Conclusion References Blockchain Based Regulatory Technology Deployment for Real Estate Transaction 1 Introduction 2 Background 2.1 Four Categories of Challenges in the Real Estate Industry 2.2 Current State-of-the-Art Blockchain Deployments 2.3 Concerns About Current Blockchain Deployments 2.4 Importance of the Research 3 Research Methodology 4 Findings and Analysis 4.1 In-Depth Study of Mortgage-Related Issues 4.2 Desired Attributes of Ideal Mortgage Process 5 Blockchain-Based RegTech Solution 5.1 Regulatory Framework for Mortgage Process 5.2 Solution Phase 1: Pre-mortgage Inquiry Phase 5.3 Solution Phase 2: Mortgage Phase 5.4 Discussion 6 Limitations 7 Conclusion References CVallet: A Blockchain-Oriented Application Development for Education and Recruitment*-12pt 1 Introduction 1.1 Motivations 1.2 Low-Adoption Factors 1.3 Contribution 2 Background 2.1 Related Work 2.2 Comparison Framework 3 Methodology 3.1 BOSE 3.2 Co-design 3.3 Our Adapted Approach 4 CVallet Development 4.1 Preliminary Design Stage 4.2 Architecture Design Stage 4.3 CVallet Prototype Implementation 5 Conclusion and Future Directions References Decentralized Access Control for Secure Microservices Cooperation with Blockchain*-12pt 1 Introduction 2 Related Work 3 Motivation and Requirements 3.1 System Model 3.2 Threat Model 4 Decentralized Access Control for Secure Microservices Cooperation with Blockchain 4.1 Permission Extraction 4.2 Decision-Making Phase 5 Experiments 5.1 Experiment Platform 5.2 Security 5.3 Efficiency 5.4 Performance 6 Conclusion References Blockchain-Based Access Control for Secure Smart Industry Management Systems 1 Introduction 2 Related Work 3 Proposed Framework 3.1 Overview of the Proposed Framework 3.2 System Model 3.3 Role-Based Access Control Using Smart Contract 4 Experimental Results 4.1 Experimental Setup 4.2 Results and Performance Evaluation 4.3 Discussion 5 Conclusion References Attacks Driver Locations Harvesting Attack on pRide 1 Introduction 1.1 Comparison with ORide ch36ORidePaper Protocol 1.2 Our Contribution 2 Overview of pRide Protocol 2.1 pRide Protocol 2.2 Threat Model 3 Our Attack 3.1 Retrieving Distances 3.2 Retrieving Driver Locations 3.3 Analysis of Our Attack 4 Experiments and Results 4.1 Experiment Details 4.2 Results 5 Related Works 6 Conclusions References Rebound Attacks on SKINNY Hashing with Automatic Tools 1 Introduction 2 Preliminaries 2.1 SKINNY MMO Hashing 2.2 The Rebound Attack 2.3 Collision Attacks and Its Variants 2.4 Quantum Computing 3 Merging Multiple Inbound Phase 4 Improved Free-Start Collision Attack on SKINNY-128-384 MMO in Classical Setting 5 Free-Start Collision Attack on SKINNY-128-256 MMO 5.1 17-Round Quantum Free-Start Collision Attack 5.2 15-Round Classical Free-Start Collision Attack 6 Conclusions A Figures on the Quantum and Classical Collision Attack on SKINNY MMO Hashing References A Combination Reduction Algorithm and Its Application 1 Introduction 1.1 Lattice Reduction Algorithm 2 Preliminaries 2.1 Lattice and Discrete Gaussian Distribution 2.2 NTRU Public Key Encryption Scheme 2.3 LWE Public Key Cryptosystem 2.4 Subversion Attack 2.5 Lattice Reduction Algorithms 3 Combination Reduction Algorithm 3.1 ISIS Problem And Solutions 3.2 Combination Reduction Algorithm 4 Subversion Attack on LWE Encryption Scheme 4.1 Application of Combination Algorithm in Subversion Attack 4.2 The Property of Subversion Attack 5 Experiment Analysis 6 Conclusion A Appendix References Cryptographic Algorithms and Protocols Evaluating the Security of Merkle-Damgård Hash Functions and Combiners in Quantum Settings 1 Introduction 1.1 Our Contributions 2 Basic Quantum Algorithms for Collision and Search 2.1 Merkle-Damgård Hash Construction 2.2 QRAM 2.3 Grover's Search Algorithm 2.4 Quantum Collision Finding Algorithms 2.5 Quantum Walk Algorithm For The Element Distinctness Problem 3 Collision-Search-Based Tools And Their Quantum Versions 3.1 Multi-Collision (MC ch39C:Joux04). 3.2 Expandable Message (EM ch39EC:KelSch05). 3.3 Diamond Structure (DS ch39EC:KelKoh06). 3.4 Interchange Structure (IS ch39EC:LeuWan15) 4 Security Of Merkle-Damgård Structure in Quantum Settings 4.1 Multi-Collision Attack 4.2 Preimage And Second-Preimage Attack 4.3 Herding Attack 5 Security of Hash Combiners in Quantum Settings 5.1 Preimage Attack on XOR Combiners in Quantum Settings 5.2 Collision Attack, Preimage Attack, and Second-Preimage attack on Concatenation Combiners in Quantum Settings 5.3 Herding Attack on Concatenation Combiners in Quantum Settings 6 Conclusions References An Efficient Lattice-Based Encrypted Search Scheme with Forward Security 1 Introduction 1.1 Related Works 1.2 Organization 2 Preliminaries 2.1 Notations 2.2 Lattice 2.3 Hardness Assumption 2.4 Lattice Algorithms 3 Syntax of Forward Secure Public-Key Encryption with Keywords Search 3.1 System Model 3.2 Security Model 4 PEKS Scheme from Lattice 4.1 Binary Tree for time Periods Enroll and Update 4.2 Our Construction 4.3 Correctness and Parameters 4.4 Security Analysis 4.5 Performance Comparison 5 Conclusion References Strengthening the Security of AES Against Differential Fault Attack 1 Introduction 2 Background 2.1 Existing Related Research 3 MixColumn-Plus: An Additional Diffusion Layer to AES 4 Strengthening AES with MixColumn-Plus 4.1 Analysis of MixColumn-Plus 4.2 Results 5 Security Analysis 6 Conclusion References Author Index
دانلود کتاب Network and system security : 16th international conference, NSS 2022, Denarau Island, Fiji, December 9-12, 2022 : proceedings