Communication Cost Optimized Session Key Transmission Scheme for WSN Based on Non-Perfect Secret Sharing

With the extensively applying of Wireless Sensor Networks (WSN), its' security drew more and more attention. In all the security issues in WSN, session key is fundamental one with great challenge. Due to the constraints of limited hardware resources and computational capabilities, use asymmetric encryption mechanisms in session key are not suitable for WSN. And there are usually a puzzle for existing symmetric encryption mechanisms that they produced heavy communication cost. In this paper, we presented a session key transmission scheme based on an algorithm ofData Partitioning with Coding, namedDPC. By using of non-perfect secret sharing, we optimized the communication costs significantly and keep the security in high level. The analysis and simulations prove that our scheme has good performance.

Download Full-text

THREE DIMENSIONAL GRID STRUCTURE FOR EFFICIENT ACCESS OF REPLICATED DATA

Journal of Interconnection Networks ◽

10.1142/s0219265901000415 ◽

2001 ◽

Vol 02 (03) ◽

pp. 317-329 ◽

Cited By ~ 5

Author(s):

MUSTAFA MAT DERIS ◽

ALI MAMAT ◽

PUA CHAI SENG ◽

MOHD YAZID SAMAN

Keyword(s):

Distributed System ◽

Three Dimensional ◽

Data Replication ◽

High Availability ◽

Communication Cost ◽

Data Availability ◽

Grid Structure ◽

Communication Costs ◽

Replicated Data ◽

Efficient Access

This article addresses the performance of data replication protocol in terms of data availability and communication costs. Specifically, we present a new protocol called Three Dimensional Grid Structure (TDGS) protocol, to manage data replication in distributed system. The protocol provides high availability for read and write operations with limited fault-tolerance at low communication cost. With TDGS protocol, a read operation is limited to two data copies, while a write operation is required with minimal number of copies. In comparison to other protocols. TDGS requires lower communication cost for an operation, while providing higher data availability.

Download Full-text

Research of JMS Security Mechanism

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.635-637.1171 ◽

2014 ◽

Vol 635-637 ◽

pp. 1171-1174

Author(s):

Xin Hua Li

Keyword(s):

Digital Signature ◽

Security Mechanism ◽

Session Key ◽

Message Transmission ◽

Asymmetric Encryption ◽

Message Middleware ◽

And Storage ◽

Time Overhead

According to the characteristics of the message middleware and JMS specification, this paper introduces several methods to improve the performance of the security of the JMS message middleware. The basic idea is to use two-way digital signature authentication information, and in the process of message transmission, to use negotiated session key and asymmetric encryption technology to encrypt messages. Using this mechanism can effectively protect the safety of the message transmission and storage, and to achieve a smaller time overhead associated with acceptable performance.

Download Full-text

Users’ attitude on perceived security of enterprise systems mobility: an empirical study

Information and Computer Security ◽

10.1108/ics-05-2020-0069 ◽

2021 ◽

Vol ahead-of-print (ahead-of-print) ◽

Author(s):

Ramaraj Palanisamy ◽

Yang Wu

Keyword(s):

Cloud Computing ◽

Best Practices ◽

Empirical Study ◽

Mobile Systems ◽

Mobile Technologies ◽

Content Type ◽

Security Issues ◽

Study Results ◽

Perceived Security ◽

High Level

Purpose This study/ paper aims to empirically examine the user attitude on perceived security of enterprise systems (ES) mobility. Organizations are adopting mobile technologies for various business applications including ES to increase the flexibility and to gain sustainable competitive advantage. At the same time, end-users are exposed to security issues when using mobile technologies. The ES have seen breaches and malicious intrusions thereby more sophisticated recreational and commercial cybercrimes have been witnessed. ES have seen data breaches and malicious intrusions leading to more sophisticated cybercrimes. Considering the significance of security in ES mobility, the research questions in this study are: What are the security issues of ES mobility? What are the influences of users’ attitude towards those security issues? What is the impact of users’ attitude towards security issues on perceived security of ES mobility? Design/methodology/approach These questions are addressed by empirically testing a security model of mobile ES by collecting data from users of ES mobile systems. Hypotheses were evolved and tested by data collected through a survey questionnaire. The questionnaire survey was administered to 331 users from Chinese small and medium-sized enterprises (SME). The data was statistically analysed by tools such as correlation, factor analysis, regression and the study built a structural equation model (SEM) to examine the interactions between the variables. Findings The study results have identified the following security issues: users’ attitude towards mobile device security issues; users’ attitude towards wireless network security issues; users’ attitude towards cloud computing security issues; users’ attitude towards application-level security issues; users’ attitude towards data (access) level security issues; and users’ attitude towards enterprise-level security issues. Research limitations/implications The study results are based on a sample of users from Chinese SMEs. The findings may lack generalizability. Therefore, researchers are encouraged to examine the model in a different context. The issues requiring further investigation are the role of gender and type of device on perceived security of ES mobile systems. Practical implications The results show that the key security issues are related to a mobile device, wireless network, cloud computing, applications, data and enterprise. By understanding these issues and the best practices, organizations can maintain a high level of security of their mobile ES. Social implications Apart from understanding the best practices and the key issues, the authors suggest management and end-users to work collaboratively to achieve a high level of security of the mobile ES. Originality/value This is an empirical study conducted from the users’ perspective for validating the set of research hypotheses related to key security issues on the perceived security of mobile ES.

Download Full-text

Techniques and Trends Towards Various Dimensions of Robust Security Testing in Global Software Engineering

Human Factors in Global Software Engineering - Advances in Systems Analysis, Software Engineering, and High Performance Computing ◽

10.4018/978-1-5225-9448-2.ch009 ◽

2019 ◽

pp. 219-251

Author(s):

Muhammad Sulleman Memon ◽

Mairaj Nabi Bhatti ◽

Manzoor Ahmed Hashmani ◽

Muhammad Shafique Malik ◽

Naveed Murad Dahri

Keyword(s):

Complete Analysis ◽

Security Testing ◽

Safety Issues ◽

Software Vulnerabilities ◽

Security Issues ◽

Evaluation Strategies ◽

Software Program ◽

High Level ◽

Technical Assessment ◽

Global Software Engineering

With the growth of software vulnerabilities, the demand for security integration is increasingly necessary to more effectively achieve the goal of secure software development globally. Different practices are used to keep the software intact. These practices should also be examined to obtain better results depending on the level of security. The security of a software program device is a characteristic that permeates the whole system. To resolve safety issues in a software program security solutions have to be implemented continually throughout each web page. The motive of this study is to offer a complete analysis of safety, wherein protection testing strategies and equipment can be categorized into: technical evaluation strategies and non-technical assessment strategies. This study presents high-level ideas in an easy form that would help professionals and researchers solve software security testing problems around the world. One way to achieve these goals is to separate security issues from other enforcement issues so that they can be resolved independently and applied globally.

Download Full-text

Participant attack and improving dynamic quantum secret sharing using d-dimensional GHZ state

Modern Physics Letters A ◽

10.1142/s0217732320500248 ◽

2019 ◽

Vol 35 (06) ◽

pp. 2050024

Author(s):

Chun-Wei Yang ◽

Chia-Wei Tsai

Keyword(s):

Secret Sharing ◽

Quantum Secret Sharing ◽

Ghz State ◽

Secret Key ◽

Security Issue ◽

Security Issues ◽

Participant Attack ◽

Sharing Function

In 2017, Qin and Dai [Quantum Inf. Process. 16, 64 (2017). https://doi.org/10.1007/s11128-017-1525-y ], proposed a dynamic quantum secret sharing (DQSS) scheme based on the d-dimensional state. However, as shown in this study, a malicious participant can reveal the secret key of other participants without being detected. Furthermore, this study identifies a security issue in Qin and Dai’s DQSS protocol pertaining to the honesty of a revoked participant. Without considering these security issues, the DQSS protocol could fail at providing secret-sharing function. Therefore, two improvements are proposed to circumvent these problems.

Download Full-text

High-Level Security Issues in Multimedia/Hypertext Systems

IFIP Advances in Information and Communication Technology - Communications and Multimedia Security II ◽

10.1007/978-0-387-35083-7_2 ◽

1996 ◽

pp. 13-24 ◽

Cited By ~ 2

Author(s):

Eduardo B. Fernandez ◽

Krishnakumar R. Nair ◽

Maria M. Larrondo-Petrie ◽

Yan Xu

Keyword(s):

Security Issues ◽

High Level

Download Full-text

Hybrid Botnet Detection Based on Host and Network Analysis

Journal of Computer Networks and Communications ◽

10.1155/2020/9024726 ◽

2020 ◽

Vol 2020 ◽

pp. 1-16

Author(s):

Suzan Almutairi ◽

Saoucene Mahfoudh ◽

Sultan Almutairi ◽

Jalal S. Alowibdi

Keyword(s):

Cyber Security ◽

False Positive Rate ◽

General Technique ◽

Botnet Detection ◽

Security Issues ◽

Positive Rate ◽

Communication Traffic ◽

And Performance ◽

High Level ◽

And Control

Botnet is one of the most dangerous cyber-security issues. The botnet infects unprotected machines and keeps track of the communication with the command and control server to send and receive malicious commands. The attacker uses botnet to initiate dangerous attacks such as DDoS, fishing, data stealing, and spamming. The size of the botnet is usually very large, and millions of infected hosts may belong to it. In this paper, we addressed the problem of botnet detection based on network’s flows records and activities in the host. Thus, we propose a general technique capable of detecting new botnets in early phase. Our technique is implemented in both sides: host side and network side. The botnet communication traffic we are interested in includes HTTP, P2P, IRC, and DNS using IP fluxing. HANABot algorithm is proposed to preprocess and extract features to distinguish the botnet behavior from the legitimate behavior. We evaluate our solution using a collection of real datasets (malicious and legitimate). Our experiment shows a high level of accuracy and a low false positive rate. Furthermore, a comparison between some existing approaches was given, focusing on specific features and performance. The proposed technique outperforms some of the presented approaches in terms of accurately detecting botnet flow records within Netflow traces.

Download Full-text

Elliptic Curve Blended Cross Chaos Based Secure Image Communication

International Journal of Recent Technology and Engineering - 2 ◽

10.35940/ijrte.c6807.098319 ◽

2019 ◽

Vol 8 (3) ◽

pp. 4481-4484

Keyword(s):

Elliptic Curve ◽

Image Encryption ◽

Elliptic Curve Cryptography ◽

Secure Communication ◽

Chaotic Map ◽

Chaotic Sequence ◽

Symmetric Encryption ◽

Image Communication ◽

Chaotic Sequences ◽

Asymmetric Encryption

Image encryption has proven a successful method to communicate the confidential information. Some of the images may or may not be confidential. So there is a need to secure the confidential images. Initially, symmetric encryption is used for security purpose. But it has the problem that if the key is revealed the interceptors can immediately decode it. To make the key transformation more secure, asymmetric encryption is introduced. In this two different keys are used for encoding and decoding. So even the interceptors hacked the key it cannot be possible to decode. In this project Elliptic Curve Cryptography (ECC) is utilized for generating the keys and the cross chaotic map used for generating the chaotic sequence. These chaotic sequences are utilized to encode the image for secure communication.

Download Full-text

An investigation of visual cryptography and its applications in secure communications

10.7287/peerj.preprints.2682v1 ◽

2017 ◽

Author(s):

Elham Shahab ◽

Hadi Abdolrahimpour

Keyword(s):

Visual System ◽

Secret Sharing ◽

Human Visual System ◽

Visual Cryptography ◽

Input Image ◽

Secure Communications ◽

Security Issues ◽

Main Input ◽

To Receive ◽

Distinguishing Features

Secret sharing approach and in particular Visual Cryptography (VC) try to address the security issues in dealing with images. In fact, VC is a powerful technique that combines the notions of perfect ciphers and secret sharing in cryptography. VC takes an image (secret) as an input and encrypts (divide) into two or more pieces (shares) that each of them can not reveal any information about the main input. The decryption way in this scenario is done through superimposing shares on top of each other to receive the input image. No computer participation is required, thus showing one of the distinguishing features of VC. It is claimed that VC is a unique technique in the sense that the encrypted message can be decrypted directly by the human visual system.

Download Full-text

Efficient Local Secret Sharing for Distributed Blockchain Systems

International Journal for Research in Applied Science and Engineering Technology ◽

10.22214/ijraset.2021.35445 ◽

2021 ◽

Vol 9 (VI) ◽

pp. 2043-2048

Author(s):

G. Latha

Keyword(s):

Secret Sharing ◽

Distributed Storage ◽

Denial Of Service ◽

Distributed Database ◽

Storage Efficiency ◽

Communication Costs ◽

Transaction Data ◽

Private Key ◽

Information Dispersal ◽

High Storage

Blockchain system store transaction data in the form of a distributed database where each peer is to maintain an identical copy. Blockchain systems resemble repetition codes, incurring high storage cost. Recently, distributed storage blockchain (DSB) systems have been proposed to improve storage efficiency by incorporating secret sharing, private key encryption, and information dispersal algorithms. However, the DSB results in significant communication cost when peer failures occur due to denial of service attacks. In this project, we propose a new DSB approach based on a local secret sharing (LSS) scheme with a hierarchical secret structure of one global secret node and several local secret nodes. The proposed DSB approach with LSS improves the storage and recovery communication costs.

Download Full-text