I.    Critical Infrastructure Protection

            Security for Critical Infrastructures: Security Metrics, Risk Assessment and Standards, M.S. Project Report, S. S. Moily

     I.    Role of hardware in security

      Reading

    1. Secure Embedded Processing through Hardware-assisted Run-time Monitoring
    2. Course at GWU on “Advanced topics in Information Assurance

 

   II.    Security Quantification for Optimization: Modeling Security Policies for Efficient Resource Management within QoS Constraints

Secure systems can be broadly classified into a set of configurations based on available resources and associated characteristics, such as computation power and system architecture, available memory and hierarchy, and communication channel bandwidth and error rate. Similarly, usage patterns and characteristics can also be broadly classified into a set of profiles based on the requirements of users and applications, such as latency, security level, and data characteristics. This research focuses on the design of configuration-driven, light-weight, and energy-efficient security protocols with tunable security profiles. Each protocol instance will be suitable for a range of devices with identical configuration and can be further fine tuned based upon properties of the profiles. Such adaptive schemes will minimize energy wastage, maximize efficient resource utilization, and enhance the overall user experience.

 

  1. Prototype interface
  2. Publications
    1. Piyush Mishra, “Quantifying security for energy optimization,” Under preparation for submission to IEEE DAC 2006.
    2. Ramesh Karri and Piyush Mishra, “Optimizing the energy consumed by secure wireless sessions – Wireless Transport Layer Security case study”, Journal of Mobile Networks and Applications (MONET), Kluwer Academic Publishers, April 2003, Vol. 8, No. 2, pp. 177-185. (Abstract) (Paper)
    3. Ramesh Karri and Piyush Mishra, “Investigation into the energy consumption characteristics of secure wireless session establishment and management,” IEEE Global Communications Conference, San Francisco, Dec 2003, pp. 3488-3492. (Abstract) (Paper) (Presentation)
    4. Ramesh Karri and Piyush Mishra, “Analysis of energy consumed by secure session negotiation protocols in wireless networks,” International Workshop on Power and Timing Modeling, Optimization and Simulation, Torino, Italy, Sep 2003, Springer-Verlag Lecture Notes in Computer Science, Integrated Circuit and System Design, LNCS 2799, pp. 358-368. (Abstract) (Paper) (Presentation)
    5. Ramesh Karri and Piyush Mishra, “Design of energy efficient secure wireless networks using network simulators,” Proceedings, IEEE International Conference on Communication (ICC), Alaska, May 2003, Vol. 1, pp. 61-65. (Abstract) (Paper) (Presentation)
    6. Khary Alexander, Ramesh Karri, Igor Minkin, Kaijie Wu, Piyush Mishra, and Xuan Li, “Towards 10-100 Gbps Cryptographic Architectures,” Proceedings, International Symposium on Computer and Information Science (ISCIS), Orlando, Florida, October 2002, pp. 25-30. (Abstract) (Paper) (Presentation)
    7. Ramesh Karri and Piyush Mishra, “Minimization of energy consumption of secure wireless session with QoS constraints,” Proceedings, IEEE International Conference on Communication (ICC), New York, April 2002, Vol.4, pp. 2053-2057. (Abstract) (Paper) (Presentation)
  1. References
    1. Common protocols and standards

                                                    i.     WEP

1.     WEP Flaws

2.     Pre-Shared Key based Key Establishment

3.     WEP IPSec

                                                  ii.     802.11i

1.     802.11i_Analysis

                                                iii.     802.1x

1.     802.1x/802.11 issues

2.     802.1x vs. AKE comparison

3.     802.1x_Misuses

4.     802.1x_PreAuthentication

                                                iv.     Radius

                                                  v.     EAP-TLS

                                                vi.     IPSec vs. SSL VPNs

                                              vii.     Application Security and Solutions

                                            viii.     Address Resolution Protocol Spoofing and Man in The Middle (MITM) Attack

                                                 ix.     Entity Authentication and Key Distribution

                                                   x.     Network Monitoring

                                                 xi.     Optional MAC Security

                                               xii.     Secure Roaming

                                             xiii.     Serial Authentication

                                             xiv.     SSID Hiding

    1. Relevant papers

                                                    i.     Kerry McKay M.S. Thesis

                                                  ii.     N. R. Potlapally, S. Ravi, A. Raghunath, N. K. Jha, “Analyzing the energy consumption of security protocols,” Proceedings, International symposium on Low power electronics and design (2003), ACM Press, pp. 30–35

                                                iii.     M. Stemm and R. H. Katz, “Measuring and reducing energy consumption of network interfaces in hand-held devices,” IEICE Transactions on Communications (Aug. 1997), Vol. E80-B(8), pp. 1125–31

                                                iv.     R. Chandramouli, S. Bapatla, K. P. Subbalakshmi, R. N. Uma, “Battery power-aware encryption,” ACM Transactions on Information and System Security (TISSEC)

  1. Past projects
    1. DREAM-IT

The research focuses on transmission of video information in three applications settings: background file transfers, streaming, and real-time. It considers the two communications systems that will carry the majority of traffic in wireless Internets: cellular networks and wireless local area networks (WLAN). Examining four technologies that affect battery life - source compression, channel coding, encryption, and radio transmission - the research maximizes battery life while meeting quality of service (QoS) targets. It considers three platforms for implementing signal processing algorithms: general microprocessors, digital signal processors, and field programmable gate arrays (FPGA).

  1. Miscellaneous