Abstract:
In traditional computer systems, security is typically provided in a one-or-nothing manner; the system is either secure or insecure. Such an approach is insufficient for pervasive environments that contain heterogenous devices with varying computing resources. The small, portable hand-held devices are often left unsecured due to their limited computing power. The approach is also inadequate for multimedia applications that require security as a controllable service attribute to maintain performance quality of service to levels that are acceptable to the users. Hence, we need a tunable and differentiable security framework. In this thesis, we present a Quality of Protec-tion(QoP) framework that resolves the inadequacies of the one-or-nothing approach by providing differential security levels for different device, user and application security requirements and pref-erences. We show that our QoP framework is necessary for multimedia applications to achieve the best possible security and performance levels in pervasive environments. We validate our QoP framework with a mobile multimedia application which uses both the wired ethernet and wireless 802.11b network. In the application, the complexity and strength of different authentication and encryption algorithms are varied according to user choice and the amount of computation resources
Citations
|
494
|
Applied Cryptography: Protocols, Algorithms and Source Code in C
– Schneier
- 1995
|
|
194
|
Intercepting Mobile Communications: The Insecurity of 802.11
– Borisov, Goldberg, et al.
- 2001
|
|
39
|
A Secure PLAN
– Hicks, Keromytis
- 1999
|
|
30
|
The Price of Safety in an Active Network
– Alexander, Menage, et al.
- 2001
|
|
10
|
Secure quality of service handling (SQoSH
– Alexander, Arbaugh, et al.
- 2000
|
|
9
|
Management for Multicast: Issues and Architecture
– Key
- 1997
|
|
5
|
Securing the node of an active network
– Liu, Campbell, et al.
- 2000
|
|
5
|
Mickunas. An agent based architecture for supporting application level security
– Liu, Naldurg, et al.
- 2000
|
|
5
|
2KQ+: An Integrated Approach of QoS Compilation and Component-Based, Runtime Middleware for the Unified QoS Management Framework
– Wichadakul, Nahrstedt, et al.
- 2001
|
|
3
|
Streaming Protocol: An Adaptive Protocol for the Delivery of Audio and Video over the Internet
– Media
- 1998
|
|
3
|
Mobile ID Protocol: A Badge-activated Application Level Handoff of a Multimedia Streaming To Support User Mobility
– Zou
- 2000
|
|
2
|
Adding Security to Quality of Service Architectures
– Lindskog, Jonsson
- 2002
|
|
2
|
Handbook of Applied Cryptography. Available from http://www.cacr.math.uwaterloo.ca/hac
– Menezes, Oorschot, et al.
|
|
2
|
A QoS-aware, secure architecture for supporting user identification and user mobility
– Talwar
- 2001
|
|
2
|
MobAudio: Architecture of distributed audio on demand services with user mobility support
– Wang
- 2002
|
|
1
|
Available from http://airsnort.shmoo.com
– AirSnort
|
|
1
|
Dynamic Interoperable Security Architecture for Active Networks. Available from http://devius.cs.uiuc.edu/Security/seraphim
– Seraphim
|
|
1
|
Avaiable from http://sourceforge.net/projects/wepcrack
– WEPCrack
|
|
1
|
Secure Broadband Wireless Internet Access in Public Places
– Bahl, Balachandran, et al.
- 2001
|
