A post-quantum end-to-end encryption over smart contract-based blockchain for defeating man-in-the-middle and interception attacks

2020 ◽  
Vol 13 (5) ◽  
pp. 1423-1441 ◽  
Author(s):  
Amir Hassani Karbasi ◽  
Siyamak Shahpasand
Keyword(s):  
Smart Contract ◽  
Man In The Middle ◽  
End To End

scholarly journals Security-Oriented Network Architecture

2021 ◽  
Vol 2021 ◽  
pp. 1-16
Author(s):  
Weiyu Jiang ◽  
Bingyang Liu ◽  
Chuang Wang ◽  
Xue Yang
Keyword(s):  
Network Architecture ◽  
Denial Of Service ◽  
Comprehensive Analysis ◽  
Distributed Denial Of Service ◽  
Arms Races ◽  
Network Attacks ◽  
Security Issues ◽  
Man In The Middle ◽  
Ip Spoofing ◽  
End To End

Internet benefits societies by constantly connecting devices and transmitting data across the world. However, due to the lack of architectural built-in security, the pervasive network attacks faced by the entire information technology are considered to be unending and inevitable. As Internet evolves, security issues are regularly fixed according to a patch-like strategy. Nevertheless, the patch-like strategy generally results in arms races and passive situations, leaving an endless lag in both existing and emerging attacking surface. In this paper, we present NAIS (Network Architecture with Intrinsic Security)—a network architecture towards trustworthiness and security. By solving stubborn security issues like IP spoofing, MITM (man-in-the-middle) attacks, and DDoS (distributed denial of service) attacks at architectural level, NAIS is envisioned to provide the most secure end-to-end communication in the network layer. This paper first presents a comprehensive analysis of network security at Internet range. Then, the system design of NAIS is elaborated with particular design philosophies and four security techniques. Such philosophies and techniques intertwine internally and contribute to a communication environment with authenticity, privacy, accountability, confidentiality, integrity, and availability. Finally, we evaluate the security functionalities on the packet forwarding performance, demonstrating that NAIS can efficiently provide security and trustworthiness in Internet end-to-end communication.

scholarly journals Hybrid Encryption for Messages’ Confidentiality in SOSE-Based IOT Service Systems

2021 ◽  
Vol 11 (2) ◽  
pp. 1-6
Author(s):  
Musa Midila Ahmed
Keyword(s):  
Service Oriented Architecture ◽  
Transport Layer ◽  
Hybrid Encryption ◽  
Heterogeneous Devices ◽  
Security Challenges ◽  
Man In The Middle ◽  
Service Oriented ◽  
Security Challenge ◽  
End To End ◽  
Privacy Issues

Internet of Things (IOT) is an essential paradigm where devices are interconnected into network. The operations of these devices can be through service-oriented software engineering (SOSE) principles for efficient service provision. SOSE is an important software development method for flexible, agile, loose-coupled, heterogeneous and interoperable applications. Despite all these benefits, its adoption for IOT services is slow due to security challenges. The security challenge of integration of IOT with service-oriented architecture (SOA) is man-in-the-middle attack on the messages exchanged. The transport layer security (TLS) creates a secured socket channel between the client and server. This is efficient in securing messages exchanged at the transport layer only. SOSE-based IOT systems needs an end-to-end security to handle its vulnerabilities. This integration enables interoperability of heterogeneous devices, but renders the system vulnerable to passive attacks. The confidentiality problem is hereby addressed by message level hybrid encryption. This is by encrypting the messages by AES for efficiency. However, to enable end-to-end security, the key sharing problem of advanced encryption standard (AES) is handled by RSA public key encryption. The results shows that this solution addressed data contents security and credentials security privacy issues. Furthermore, the solution enables end-to- end security of interaction in SOSE-based IOT systems.

scholarly journals Consortium Blockchain Smart Contracts for Musical Rights Governance in a Collective Management Organizations (CMOs) Use Case

2020 ◽  
Vol 12 (8) ◽  
pp. 134
Author(s):  
Nikolaos Kapsoulis ◽  
Alexandros Psychas ◽  
Georgios Palaiokrassas ◽  
Achilleas Marinakis ◽  
Antonios Litke ◽  
...  
Keyword(s):  
Music Industry ◽  
Use Case ◽  
Smart Contracts ◽  
Non Profit ◽  
Collective Management ◽  
Distributed Ledger ◽  
Smart Contract ◽  
Distributed Ledger Technology ◽  
End To End ◽  
Permissioned Blockchains

Private and permissioned blockchains are conceptualized and mostly assembled for fulfilling corporations’ demands and needs in the context of their own premises. This paper presents a complete and sophisticated end-to-end permissioned blockchain application for governance and management of musical rights endorsed by smart contract development. In a music industry use case, this disclosed solution monitors and regulates conflicting musical rights of diverse entities under a popular permissioned distributed ledger technology network. The proposed implementation couples various and distinct business domains across the music industry organizations and non-profit blockchain associations.

scholarly journals Military Supply Chain Management and Blockchain Development

2021 ◽  
Author(s):  
Syarifah Bahiyah Rahayu ◽  
Sharmelen A/L Vasanthan ◽  
Afiqah M. Azahari ◽  
Joe Chai
Keyword(s):  
Supply Chain ◽  
Supply Chain Management ◽  
Secure Communication ◽  
Chain Management ◽  
Smart Contract ◽  
End To End ◽  
The Military ◽  
Future Work

Blockchain has become a powerful technology and when it comes to supply chain management, blockchain has a lot to offer which could contribute to its development and make the supply chain more effective. The same benefit could be also gained when blockchain is incorporated in the Military Supply Chain Management (MSCM). Theaim of this paper is to develop and integrate blockchain in the MSCM. The developed MSCM is focusing on three (3) main blockchain components, which are transparency, integrity and secure communication. The methodology to develop the MSCM blockchain similar to UnicalCoin. The findings show that incorporating blockchain into the MSCM enables transparency, integrity and secure communication. Thus, blockchain may reduce fraud, improve communication between parties and made end-to-end tracking transparency in MSCM. Future work is to embed a smart contract feature to automate some processes in MSCM.

A Secure Mobile Wallet Framework with Formal Verification

2012 ◽  
Vol 4 (2) ◽  
pp. 1-15 ◽  
Author(s):  
Shaik Shakeel Ahamad ◽  
V. N. Sastry ◽  
Siba K. Udgata
Keyword(s):  
Integrated Circuit ◽  
Mobile Application ◽  
Key Agreement ◽  
Mutual Authentication ◽  
Mobile Payment ◽  
Mobile Payments ◽  
Payment Protocol ◽  
Man In The Middle ◽  
End To End ◽  
Wireless Public Key Infrastructure

This paper proposes a Secure Mobile Wallet Framework (SMWF) using WPKI (Wireless Public Key Infrastructure) and UICC (Universal Integrated Circuit Card) by defining (a) a procedure of personalizing UICC by the client, (b) a procedure of provisioning and personalization (Mutual Authentication and Key Agreement Protocol) of Mobile Payments Application (which is on UICC) by the Bank and (c) our proposed mobile wallet is will have mobile wallet manager managed by CA (acting as TSM), every mobile application is independent, protected by firewalls and encrypted data is stored in the mobile wallet application. Their proposed Mobile Wallet ensures end to end security. The authors’ proposed SMWF is compared with recent works and found to be better in terms of generating client’s credentials, implementation of WPKI in UICC, personalization of mobile payment application by the bank and in ensuring end to end security (i.e., from Mobile Payments Application in UICC to the Bank Server). The proposed mobile payment protocol originating from Mobile Payment Application (which is on UICC) to the Bank Server realizes Fair Exchange ensures Confidentiality, Authentication, Integrity and Non Repudiation, prevents double spending, over spending and money laundering, and withstands replay, Man in the Middle (MITM) and Impersonation attacks. Proposed mobile payment protocol is formally verified using AVISPA and Scyther Tool and presented with results.

scholarly journals Effect Man-In the Middle on the Network Performance in Various Attack Strategies

2021 ◽  
Vol 13 (03) ◽  
pp. 15-26
Author(s):  
Iyas Alodat
Keyword(s):  
Wireless Network ◽  
Packet Loss ◽  
Network Performance ◽  
Simulation Data ◽  
Message Delay ◽  
Man In The Middle ◽  
End To End

In this paper, we examined the effect on network performance of the various strategies an attacker could adopt to launch Man-In The Middle (MITM) attacks on the wireless network, such as fleet or random strategies. In particular, we're focusing on some of those goals for MITM attackers - message delay, message dropping. According to simulation data, these attacks have a significant effect on legitimate nodes in the network, causing vast amounts of infected packets, end-to-end delays, and significant packet loss.

Surgical management of extracranial carotid artery aneurysms

VASA ◽  
2016 ◽  
Vol 45 (3) ◽  
pp. 223-228 ◽  
Author(s):  
Jan Paweł Skóra ◽  
Jacek Kurcz ◽  
Krzysztof Korta ◽  
Przemysław Szyber ◽  
Tadeusz Andrzej Dorobisz ◽  
...  
Keyword(s):  
Carotid Artery ◽  
Surgical Management ◽  
Minor Stroke ◽  
Stroke Rate ◽  
Extracranial Carotid Artery ◽  
Long Term Follow Up ◽  
End To End ◽  
Dacron Patch ◽  
Major Stroke

Abstract. Background: We present the methods and results of the surgical management of extracranial carotid artery aneurysms (ECCA). Postoperative complications including early and late neurological events were analysed. Correlation between reconstruction techniques and morphology of ECCA was assessed in this retrospective study. Patients and methods: In total, 32 reconstructions of ECCA were performed in 31 symptomatic patients with a mean age of 59.2 (range 33 - 84) years. The causes of ECCA were divided among atherosclerosis (n = 25; 78.1 %), previous carotid endarterectomy with Dacron patch (n = 4; 12.5 %), iatrogenic injury (n = 2; 6.3 %) and infection (n = 1; 3.1 %). In 23 cases, intervention consisted of carotid bypass. Aneurysmectomy with end-to-end suture was performed in 4 cases. Aneurysmal resection with patching was done in 2 cases and aneurysmorrhaphy without patching in another 2 cases. In 1 case, ligature of the internal carotid artery (ICA) was required. Results: Technical success defined as the preservation of ICA patency was achieved in 31 cases (96.9 %). There was one perioperative death due to major stroke (3.1 %). Two cases of minor stroke occurred in the 30-day observation period (6.3 %). Three patients had a transient hypoglossal nerve palsy that subsided spontaneously (9.4 %). At a mean long-term follow-up of 68 months, there were no major or minor ipsilateral strokes or surgery-related deaths reported. In all 30 surviving patients (96.9 %), long-term clinical outcomes were free from ipsilateral neurological symptoms. Conclusions: Open surgery is a relatively safe method in the therapy of ECCA. Surgical repair of ECCAs can be associated with an acceptable major stroke rate and moderate minor stroke rate. Complication-free long-term outcomes can be achieved in as many as 96.9 % of patients. Aneurysmectomy with end-to-end anastomosis or bypass surgery can be implemented during open repair of ECCA.

"Man-in-the-Middle."

1969 ◽  
Vol 1 (1) ◽  
pp. 89-90
Author(s):  
Robert W. Balentine
Keyword(s):  
Man In The Middle
Sign in / Sign up

Export Citation Format

Share Document