Anonymously Establishing Digital Provenance in Reseller Chains

10.26686/wgtn.16999267.v1 ◽

2021 ◽

Author(s):

◽

Benjamin Philip Palmer

Keyword(s):

Security Analysis ◽

Security Requirements ◽

Model Checker ◽

Extended Version ◽

Design Development ◽

Provenance Information ◽

Security Properties ◽

History Of ◽

Sequential Processes ◽

A Chain

<p>An increasing number of products are exclusively digital items, such as media files, licenses, services, or subscriptions. In many cases customers do not purchase these items directly from the originator of the product but through a reseller instead. Examples of some well known resellers include GoDaddy, the iTunes music store, and Amazon. This thesis considers the concept of provenance of digital items in reseller chains. Provenance is defined as the origin and ownership history of an item. In the context of digital items, the origin of the item refers to the supplier that created it and the ownership history establishes a chain of ownership from the supplier to the customer. While customers and suppliers are concerned with the provenance of the digital items, resellers will not want the details of the transactions they have taken part in made public. Resellers will require the provenance information to be anonymous and unlinkable to prevent third parties building up large amounts of information on the transactions of resellers. This thesis develops security mechanisms that provide customers and suppliers with assurances about the provenance of a digital item, even when the reseller is untrusted, while providing anonymity and unlinkability for resellers . The main contribution of this thesis is the design, development, and analysis of the tagged transaction protocol. A formal description of the problem and the security properties for anonymously providing provenance for digital items in reseller chains are defined. A thorough security analysis using proofs by contradiction shows the protocol fulfils the security requirements. This security analysis is supported by modelling the protocol and security requirements using Communicating Sequential Processes (CSP) and the Failures Divergences Refinement (FDR) model checker. An extended version of the tagged transaction protocol is also presented that provides revocable anonymity for resellers that try to conduct a cloning attack on the protocol. As well as an analysis of the security of the tagged transaction protocol, a performance analysis is conducted providing complexity results as well as empirical results from an implementation of the protocol.</p>

Download Full-text

Proof-of-PUF Enabled Blockchain: Concurrent Data and Device Security for Internet-of-Energy

Sensors ◽

10.3390/s21010028 ◽

2020 ◽

Vol 21 (1) ◽

pp. 28

Author(s):

Rameez Asif ◽

Kinan Ghanem ◽

James Irvine

Keyword(s):

Hybrid Approach ◽

Future Research ◽

Data Provenance ◽

Data Generation ◽

Cyber Attack ◽

Design Development ◽

Seamless Integration ◽

Device Identification ◽

Physical Unclonable Functions ◽

History Of

A detailed review on the technological aspects of Blockchain and Physical Unclonable Functions (PUFs) is presented in this article. It stipulates an emerging concept of Blockchain that integrates hardware security primitives via PUFs to solve bandwidth, integration, scalability, latency, and energy requirements for the Internet-of-Energy (IoE) systems. This hybrid approach, hereinafter termed as PUFChain, provides device and data provenance which records data origins, history of data generation and processing, and clone-proof device identification and authentication, thus possible to track the sources and reasons of any cyber attack. In addition to this, we review the key areas of design, development, and implementation, which will give us the insight on seamless integration with legacy IoE systems, reliability, cyber resilience, and future research challenges.

Download Full-text

Word Order in Old and Middle English

Diachronica ◽

10.1075/dia.26.1.03wes ◽

2009 ◽

Vol 26 (1) ◽

pp. 65-102 ◽

Cited By ~ 13

Author(s):

Marit Westergaard

Keyword(s):

Language Development ◽

Middle English ◽

Word Order ◽

Information Structure ◽

Extended Version ◽

Major Parameter ◽

Language Data ◽

Gradual Development ◽

History Of ◽

Mixed Systems

In the history of English one finds a mixture of V2 and non-V2 word order in declaratives for several hundred years, with frequencies suggesting a relatively gradual development in the direction of non-V2. Within an extended version of a cue-based approach to acquisition and change, this paper argues that there are many possible V2 grammars, differing from each other with respect to clause types, information structure, and the behavior of specific lexical elements. This variation may be formulated in terms of micro-cues. Child language data from present-day mixed systems show that such grammars are acquired early. The apparent optionality of V2 in the history of English may thus be considered to represent several different V2 grammars in succession, and it is not necessary to refer to competition between two major parameter settings. Diachronic language development can thus be argued to occur in small steps, reflecting the loss of micro-cues, and giving the impression that change is gradual.

Download Full-text

MODEL CHECKING FOR VERIFICATION OF MANDATORY ACCESS CONTROL MODELS AND PROPERTIES

International Journal of Software Engineering and Knowledge Engineering ◽

10.1142/s021819401100513x ◽

2011 ◽

Vol 21 (01) ◽

pp. 103-127 ◽

Cited By ~ 18

Author(s):

VINCENT C. HU ◽

D. RICHARD KUHN ◽

TAO XIE ◽

JEEHYUN HWANG

Keyword(s):

Access Control ◽

Test Cases ◽

Covering Array ◽

Model Checker ◽

Challenging Problem ◽

Automated Generation ◽

Mandatory Access Control ◽

Access Control Models ◽

Security Properties ◽

Property Verification

Mandatory access control (MAC) mechanisms control which users or processes have access to which resources in a system. MAC policies are increasingly specified to facilitate managing and maintaining access control. However, the correct specification of the policies is a very challenging problem. To formally and precisely capture the security properties that MAC should adhere to, MAC models are usually written to bridge the rather wide gap in abstraction between policies and mechanisms. In this paper, we propose a general approach for property verification for MAC models. The approach defines a standardized structure for MAC models, providing for both property verification and automated generation of test cases. The approach expresses MAC models in the specification language of a model checker and expresses generic access control properties in the property language. Then the approach uses the model checker to verify the integrity, coverage, and confinement of these properties for the MAC models and finally generates test cases via combinatorial covering array for the system implementations of the models.

Download Full-text

The First Korean Garden in Russia

проект байкал ◽

10.51461/projectbaikal.69.1860 ◽

2021 ◽

pp. 102-112

Author(s):

Victor Kuzevanov ◽

Alexey Ponomarev ◽

Sergey Kalyuzhny ◽

Yong-Shik Kim

Keyword(s):

Science Education ◽

International Cooperation ◽

Climatic Conditions ◽

State University ◽

Design Development ◽

Botanic Garden ◽

Garden Design ◽

Natural Heritage ◽

History Of ◽

Selection Of

The history of the first «Korean Garden» design, development and establishment within the Irkutsk State University Botanic Garden in the harsh climatic conditions of Baikalian Siberia is described. The peculiarities of the selection of plants and landscape arrangements represent this garden as a unique ethnobotanical object – the cultural and natural heritage of Korea, an ecological and humanitarian resource for science, education and international cooperation.

Download Full-text

Making (Implicit) Security Requirements Explicit for Cyber-Physical Systems: A Maritime Use Case Security Analysis

Communications in Computer and Information Science - Database and Expert Systems Applications ◽

10.1007/978-3-030-27684-3_11 ◽

2019 ◽

pp. 75-84 ◽

Cited By ~ 1

Author(s):

Tope Omitola ◽

Abdolbaghi Rezazadeh ◽

Michael Butler

Keyword(s):

Security Analysis ◽

Cyber Physical Systems ◽

Security Requirements ◽

Use Case ◽

Physical Systems

Download Full-text

Selective Service Provenance in the VRESCo Runtime

Web Service Composition and New Frameworks in Designing Semantics ◽

10.4018/978-1-4666-1942-5.ch017 ◽

2012 ◽

pp. 372-394

Author(s):

Anton Michlmayr ◽

Florian Rosenberg ◽

Philipp Leitner ◽

Schahram Dustdar

Keyword(s):

Performance Evaluation ◽

Information Systems ◽

Web Service ◽

Scientific Workflows ◽

Data Provenance ◽

Provenance Information ◽

Selective Service ◽

Runtime Environment ◽

Service Oriented ◽

History Of

In general, provenance describes the origin and well-documented history of a given object. This notion has been applied in information systems, mainly to provide data provenance of scientific workflows. Similar to this, provenance in Service-oriented Computing has also focused on data provenance. However, the authors argue that in service-centric systems the origin and history of services is equally important. This paper presents an approach that addresses service provenance. The authors show how service provenance information can be collected and retrieved, and how security mechanisms guarantee integrity and access to this information, while also providing user-specific views on provenance. Finally, the paper gives a performance evaluation of the authors’ approach, which has been integrated into the VRESCo Web service runtime environment.

Download Full-text

A Secure and Efficient Lightweight Vehicle Group Authentication Protocol in 5G Networks

Wireless Communications and Mobile Computing ◽

10.1155/2021/4079092 ◽

2021 ◽

Vol 2021 ◽

pp. 1-12

Author(s):

Junfeng Miao ◽

Zhaoshun Wang ◽

Xue Miao ◽

Longyue Xing

Keyword(s):

Vehicular Networks ◽

Chinese Remainder Theorem ◽

Chaotic Map ◽

Security Analysis ◽

High Mobility ◽

Authentication Protocol ◽

Security Requirements ◽

Vehicle Group ◽

Communication Overhead ◽

5G Networks

When mobile network enters 5G era, 5G networks have a series of unparalleled advantages. Therefore, the application of 5G network technology in the Internet of Vehicles (IoV) can promote more intelligently vehicular networks and more efficiently vehicular information transmission. However, with the combination of 5G networks and vehicular networks technology, it requires safe and reliable authentication and low computation overhead. Therefore, it is a challenge to achieve such low latency, security, and high mobility. In this paper, we propose a secure and efficient lightweight authentication protocol for vehicle group. The scheme is based on the extended chaotic map to achieve authentication, and the Chinese remainder theorem distributes group keys. Scyther is used to verify the security of the scheme, and the verification results show that the security of the scheme can be guaranteed. In addition, through security analysis, the scheme can not only effectively resist various attacks but also guarantee security requirements such as anonymity and unlinkability. Finally, by performance analysis and comparison, our scheme has less computation and communication overhead.

Download Full-text

Efficient Multifactor Two-Server Authenticated Scheme under Mobile Cloud Computing

Wireless Communications and Mobile Computing ◽

10.1155/2018/9149730 ◽

2018 ◽

Vol 2018 ◽

pp. 1-14 ◽

Cited By ~ 2

Author(s):

Ziyi Han ◽

Li Yang ◽

Shen Wang ◽

Sen Mu ◽

Qiang Liu

Keyword(s):

Cloud Computing ◽

Information Disclosure ◽

Mobile Cloud Computing ◽

User Authentication ◽

High Reliability ◽

Security Analysis ◽

Security Requirements ◽

Mobile Payment ◽

Mobile Cloud ◽

User Privacy

Because the authentication method based on username-password has the disadvantage of easy disclosure and low reliability and the excess password management degrades the user experience tremendously, the user is eager to get rid of the bond of the password in order to seek a new way of authentication. Therefore, the multifactor biometrics-based user authentication wins the favor of people with advantages of simplicity, convenience, and high reliability. Now the biometrics-based (especially the fingerprint information) authentication technology has been extremely mature, and it is universally applied in the scenario of the mobile payment. Unfortunately, in the existing scheme, biometric information is stored on the server side. As thus, once the server is hacked by attackers to cause the leakage of the fingerprint information, it will take a deadly threat to the user privacy. Aiming at the security problem due to the fingerprint information in the mobile payment environment, we propose a novel multifactor two-server authenticated scheme under mobile cloud computing (MTSAS). In the MTSAS, it divides the authentication method and authentication means; in the meanwhile, the user’s biometric characteristics cannot leave the user device. Thus, MTSAS avoids the fingerprint information disclosure, protects user privacy, and improves the security of the user data. In the same time, considering user actual requirements, different authentication factors depending on the privacy level of authentication are chosen. Security analysis proves that MTSAS has achieved the authentication purpose and met security requirements by the BAN logic. In comparison with other schemes, the result shows that MTSAS not only has the reasonable computational efficiency, but also keeps the superior communication cost.

Download Full-text

25. A chain vowel raising in the early history of Chinese

Morphology and Language History - Current Issues in Linguistic Theory ◽

10.1075/cilt.298.30zhu ◽

2008 ◽

pp. 349-354

Author(s):

Xiaonong Zhu

Keyword(s):

Early History ◽

Vowel Raising ◽

History Of ◽

A Chain

Download Full-text