An autonomous attestation token to secure mobile agents in disaster response

Hein, Daniel; Toegl, Ronald; Kraxberger, Stefan

doi:10.1002/sec.196

Cited by 9 publications

(3 citation statements)

References 33 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Security Monitoring loggers installed on such devices need to rely on an execution environment that is capable of supporting the ADS sensors' functionality and that is protected from malicious entities. To achieve high security in legacy devices, it has been proposed in several works to introduce external security tokens that can be considered trusted [23,[28][29][30]. Having that in mind, extending the work in [2], we propose a Hardware Security Token (HST) that could be used as an external security element on legacy devices in order to instill a level of trust on collected ADS sensor logs and provide a series of security services to an associated host device and user.…”

Section: Proposed Approach For Legacy Systemsmentioning

confidence: 99%

Anomaly Detection Trusted Hardware Sensors for Critical Infrastructure Legacy Devices

Fournaris

Dimopoulos

Λαμπρόπουλος

et al. 2020

Sensors

View full text Add to dashboard Cite

Critical infrastructures and associated real time Informational systems need some security protection mechanisms that will be able to detect and respond to possible attacks. For this reason, Anomaly Detection Systems (ADS), as part of a Security Information and Event Management (SIEM) system, are needed for constantly monitoring and identifying potential threats inside an Information Technology (IT) system. Typically, ADS collect information from various sources within a CI system using security sensors or agents and correlate that information so as to identify anomaly events. Such sensors though in a CI setting (factories, power plants, remote locations) may be placed in open areas and left unattended, thus becoming targets themselves of security attacks. They can be tampering and malicious manipulated so that they provide false data that may lead an ADS or SIEM system to falsely comprehend the CI current security status. In this paper, we describe existing approaches on security monitoring in critical infrastructures and focus on how to collect security sensor–agent information in a secure and trusted way. We then introduce the concept of hardware assisted security sensor information collection that improves the level of trust (by hardware means) and also increases the responsiveness of the sensor. Thus, we propose a Hardware Security Token (HST) that when connected to a CI host, it acts as a secure anchor for security agent information collection. We describe the HST functionality, its association with a host device, its expected role and its log monitoring mechanism. We also provide information on how security can be established between the host device and the HST. Then, we introduce and describe the necessary host components that need to be established in order to guarantee a high security level and correct HST functionality. We also provide a realization–implementation of the HST overall concept in a FPGA SoC evaluation board and describe how the HST implementation can be controlled. In addition, in the paper, two case studies where the HST has been used in practice and its functionality have been validated (one case study on a real critical infrastructure test site and another where a critical industrial infrastructure was emulated in our lab) are described. Finally, results taken from these two case studies are presented, showing actual measurements for the in-field HST usage.

show abstract

Section: Proposed Approach For Legacy Systemsmentioning

confidence: 99%

Anomaly Detection Trusted Hardware Sensors for Critical Infrastructure Legacy Devices

Fournaris

Dimopoulos

Λαμπρόπουλος

et al. 2020

Sensors

View full text Add to dashboard Cite

show abstract

“…The TCG has specified ways of enhancing this direction through the TCG network connect (TNC) scheme which is beyond the scope of this chapter. Furthermore, several researchers have proposed ways of using TPMs for securing mobile agents roaming a network for data collection that also can be used for reputation collection [18][19][20][21][22]. TCG tries to provide a trust establishment solution that uses concepts from both the policy-based trust model and the reputation-based model, infusing them to an HSM (the TPM) characterizing the computer system (since it is soldiered to it) as well as creating all the HSM necessary supported software.…”

Section: Trusted System Realization With Trusted Computing Group Specmentioning

confidence: 99%

From Hardware Security Tokens to Trusted Computing and Trusted Systems

Fournaris

Κεραμίδας

2013

System-Level Design Methodologies for Telecommunication

View full text Add to dashboard Cite

As security attacks are becoming an everyday real-life scenario, security engineers must invent more intricate countermeasures to deal with them. Infusion of strong security to a computer system by recruiting specialized hardware tokens has already an established foothold in the modern information technology (IT) world. However, these tokens nowadays must be appropriately adapted to ensure not only strong security but also trust. Modern security specialists believe that the ultimate security goal is not only to provide a strong security shield but also to guarantee in an undeniable way that a system is trusted (the system always performs its intended functionality).In this chapter, we elaborate on the IT world's transition from security to trust and describe the trusted computing approach to provide trusted systems. Current trends are presented and tools like trusted virtualization approaches are analyzed. The trusted computing technology features are discussed and our critical view on what the trusted computing future will be like is offered.

show abstract

“…The security of mobile agents is an active field of research as analyzed in . In some cases, it has been coupled with trusted computing, as in . Trusted computing has been proposed also to leverage the security of wireless mobile ad hoc networks .…”

Section: Related Workmentioning

confidence: 99%

Protecting mobile agents communications in pervasive networks with a trusted distributed mediator for ID‐based RSA

Maccari

Fantacci

Pecorella

et al. 2013

Security Comm Networks

View full text Add to dashboard Cite

This paper proposes a new method of data authentication and encryption for distributed networks supporting mobile software agents. Software agents are a valuable instrument in wireless distributed monitoring networks, because they can be used to concentrate monitoring efforts in certain areas where an event is taking place. In this way, events can be tracked in a dynamic and efficient way. Mobile agents have to send messages to each other in order to coordinate their actions, and those messages need to be secured by crypto credentials. However, when agents are moved over wireless networks, how can credentials be protected from sniffing by an attacker, besides layer II encryption? Moreover, if a rogue agent is injected in the network, is it possible to limit the damages it can produce? The proposed approach bridges mediated RSA with the trusted platform modules, in order to provide an efficient and secure communication between agents. The communication is secured using indeed Identity based cryptography, while maintaing the compatibility with standard RSA and eliminating the mediator introduced by mediated RSA. We will show that this approach is convenient in terms of traffic overhead, perfectly applicable to existing trusted platform modules specifications and able to limit damages that both external and internal attackers can produce to the network. Copyright © 2013 John Wiley & Sons, Ltd.

show abstract

An autonomous attestation token to secure mobile agents in disaster response

Cited by 9 publications

References 33 publications

Anomaly Detection Trusted Hardware Sensors for Critical Infrastructure Legacy Devices

Anomaly Detection Trusted Hardware Sensors for Critical Infrastructure Legacy Devices

From Hardware Security Tokens to Trusted Computing and Trusted Systems

Protecting mobile agents communications in pervasive networks with a trusted distributed mediator for ID‐based RSA

Contact Info

Product

Resources

About