A Combination of Timing Attack and Statistical Method to Reduce Computational Complexities of SSL/TLS Side-Channel Attacks

Wang, Jing; Yang, Ying Jie; Chen, Lijuan; Yang, Guang; Chen, Zhenya; Wen, Liqiang

doi:10.1109/cis.2015.103

Cited by 8 publications

(4 citation statements)

References 17 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Alwarafy et al [114] Simulation technique by inserting fake packets. Wang et al [115] Cipher block chaining encryption. Park et al [116] CAD tool framework.…”

Section: Table IX Defenses Against Side-channel Attackmentioning

confidence: 99%

See 1 more Smart Citation

An investigation of cyber-attacks and security mechanisms for connected and autonomous vehicles

Gupta¹,

Maple²

2023

Preprint

View full text Add to dashboard Cite

<p>Edge Computing-based Connected Autonomous Vehicles (EC-CAVs) can fulfill the emerging demand for smart transportation on a global scale. Such innovations to transportation ecosystems can bring manyfold benefits from fully autonomous driving services to proactive vehicle monitoring and traffic management. Given the complexity involved in the deployment of EC-CAVs, zero-tolerance safety and security measures must be incorporated to avert vehicle immobilization, road accidents, disclosure of sensitive data, or any potential threats. This paper presents a reference architecture of EC-CAVs to investigate existing and emerging cyber-threats for deriving a common attack taxonomy for the EC-CAVs ecosystem. Subsequently, a comprehensive survey of security mechanisms is presented that can ensure safe and secure transportation of passengers from one destination to another using an EC-CAVs ecosystem.</p>

show abstract

“…Alwarafy et al [114] Simulation technique by inserting fake packets. Wang et al [115] Cipher block chaining encryption. Park et al [116] CAD tool framework.…”

Section: Table IX Defenses Against Side-channel Attackmentioning

confidence: 99%

“…Wang et al [115] studied the cryptographic operation of SSL/TLS Record Protocol in cipher block chaining (CBC)mode encryption. Park et al [116] proposed a CAD tool framework for automatic timing attack vulnerability evaluation associated algorithms and metrics at the early design stage.…”

Section: Table IX Defenses Against Side-channel Attackmentioning

confidence: 99%

An investigation of cyber-attacks and security mechanisms for connected and autonomous vehicles

Gupta¹,

Maple²

2023

Preprint

View full text Add to dashboard Cite

show abstract

“…Lavaud et al [177] survey the class of side-channel attacks that include both non-electromagnetic or electromagnetic and their countermeasures. Wang et al [172] study the cryptographic operation of SSL/TLS Record Protocol in cipher block chaining (CBC)mode encryption. Park et al [173] propose a CAD tool framework for automatic timing attack vulnerability evaluation and associated algorithms and metrics at the early design stage.…”

Section: ) Defenses Against Side-channel Attackmentioning

confidence: 99%

An Investigation of Cyber-Attacks and Security Mechanisms for Connected and Autonomous Vehicles

Gupta,

Maple,

Passerone

2023

IEEE Access

View full text Add to dashboard Cite

Connected and autonomous vehicles (CAVs) can fulfill the emerging demand for smart transportation on a global scale. Such innovations for transportation can bring manyfold benefits, from fully autonomous driving services to proactive vehicle monitoring and traffic management. However, given the complexity involved in the deployment of CAVs, zero-tolerance safety, and security measures must be incorporated to avert vehicle immobilization, road accidents, disclosure of sensitive data, or any potential threats. In this article, we conceive a reference architecture for a CAVs ecosystem to derive a common attack taxonomy for the investigation of existing and emerging cyber threats. Subsequently, we discuss security mechanisms for the CAVs ecosystem that can be useful for the safe and secure transportation of passengers from one destination to another based on comprehensive studies of academic literature and industry white papers. Our work can provide valuable insights to security engineers and system architects for investigating security problems using a top-to-bottom approach and can aid in envisioning robust security solutions to ensure seamless CAVs operations.

show abstract

“…Indeed, an alternative protocol should be considered. As the time of writing this paper, TLS is the better alternative [25]. IoT in low power consumption sensor environments does not use TCP/IP, but rather User Datagram Protocol (UDP) [33].…”

Section: Introductionmentioning

confidence: 99%

A Security Architecture for the Internet of Things

2017

KSII TIIS

View full text Add to dashboard Cite

This paper demonstrates a case for an end-to-end pure Application Security Layer for reliable and confidential communications within an Internet of Things (IoT) constrained environment. To provide a secure key exchange and to setup a secure data connection, Transport Layer Security (TLS) is used, which provides native protection against replay attacks. TLS along with digital signature can be used to achieve non-repudiation within app-to-app communications. This paper studies the use of TLS over the JavaScript Object Notation (JSON) via a The Constrained Application Protocol (CoAP) RESTful service to verify the hypothesis that in this way one can provide end-to-end communication flexibility and potentially retain identity information for repudiation. As a proof of concept, a prototype has been developed to simulate an IoT software client with the capability of hosting a CoAP RESTful service. The prototype studies data requests via a network client establishing a TLS over JSON session using a hosted CoAP RESTful service. To prove reputability and integrity of TLS JSON messages, JSON messages was intercepted and verified against simulated MITM attacks. The experimental results confirm that TLS over JSON works as hypothesised.

show abstract

A Combination of Timing Attack and Statistical Method to Reduce Computational Complexities of SSL/TLS Side-Channel Attacks

Cited by 8 publications

References 17 publications

An investigation of cyber-attacks and security mechanisms for connected and autonomous vehicles

An investigation of cyber-attacks and security mechanisms for connected and autonomous vehicles

An Investigation of Cyber-Attacks and Security Mechanisms for Connected and Autonomous Vehicles

A Security Architecture for the Internet of Things

Contact Info

Product

Resources

About