[신간의 별자리x] 우리/미술, 그리고 ‘슬픔의 박물관’

https://minerva-access.unimelb.edu.au/bitstream/handle/11343/197439/1207.0203v1.pdf

Internet of Things (IoT): A vision, architectural elements, and future directions

Trust: The Social Virtues and the Creation of Prosperity

Praise for the Third Edition: "This is one of the best books available. Its excellent organizational structure allows quick reference to specific models and its clear presentation . . . solidifies the understanding of the concepts being presented."IIE Transactions on Operations EngineeringThoroughly revised and expanded to reflect the latest developments in the field, Fundamentals of Queueing Theory, Fourth Edition continues to present the basic statistical principles that are necessary to analyze the probabilistic nature of queues. Rather than presenting a narrow focus on the subject, this update illustrates the wide-reaching, fundamental concepts in queueing theory and its applications to diverse areas such as computer science, engineering, business, and operations research.This update takes a numerical approach to understanding and making probable estimations relating to queues, with a comprehensive outline of simple and more advanced queueing models. Newly featured topics of the Fourth Edition include:Retrial queuesApproximations for queueing networksNumerical inversion of transformsDetermining the appropriate number of servers to balance quality and cost of serviceEach chapter provides a self-contained presentation of key concepts and formulae, allowing readers to work with each section independently, while a summary table at the end of the book outlines the types of queues that have been discussed and their results. In addition, two new appendices have been added, discussing transforms and generating functions as well as the fundamentals of differential and difference equations. New examples are now included along with problems that incorporate QtsPlus software, which is freely available via the book's related Web site.With its accessible style and wealth of real-world examples, Fundamentals of Queueing Theory, Fourth Edition is an ideal book for courses on queueing theory at the upper-undergraduate and graduate levels. It is also a valuable resource for researchers and practitioners who analyze congestion in the fields of telecommunications, transportation, aviation, and management science.

Fundamentals of Queueing Theory

The objective of this paper is to give a comprehensive introduction to applied cryptography with an engineer or computer scientist in mind. The emphasis is on the knowledge needed to create practical systems which supports integrity, confidentiality, or authenticity. Topics covered includes an introduction to the concepts in cryptography, attacks against cryptographic systems, key use and handling, random bit generation, encryption modes, and message authentication codes. Recommendations on algorithms and further reading is given in the end of the paper. This paper should make the reader able to build, understand and evaluate system descriptions and designs based on the cryptographic components described in the paper.

[서평]「Applied Cryptography」

In this paper, a privacy-preserving chatting scheme is proposed to secure vehicular communication and achieve user privacy preservation in vehicular peer- to-peer networks. In specific, we first introduce identity-based-encryption technique which can protect the confidentiality of chatting content. Furthermore, to preserve user privacy, our scheme employs ring signature technique, which not only provides message authentication but also guarantees unconditional source anonymity. With the proposed scheme, vehicles change their pseudo identities periodically and make attackers unable to link users' transactions in different periods. As a result, the proposed scheme can achieve data confidentiality, efficient authentication, and privacy violation elimination. In addition, through detailed security and efficiency analyses, it is demonstrated the proposed scheme resists most of existing attacks in vehicular peer-to-peer networks and provides efficient sending and receiving operations.

PPC: Privacy-Preserving Chatting in Vehicular Peer-to-Peer Networks

Industrial Control System (ICS) security has become increasingly important as attacks targeting ICSs are more prominent. Although many off-the-shelf industrial network intrusion detection mechanisms have been presented in the past, attackers have always found unique disguisable ways to bypass detections and disrupt actual industrial control processes. To mitigate this deficiency, we present a novel scheme for the detection of industrial process control attacks, called SHADOWPLCS. Specifically, the scheme first automatically analyzes the PLC control code, then extracts key parameters of the PLCs including valid register addresses, valid range of values, and control logic rules as a basis for evaluating attacks. The attack behavior is detected in real-time from different perspectives through active communication with PLCs and passive monitoring of the network traffic. We implemented a prototype system with Siemens S7-300 series PLCs as a case study. Our scheme was evaluated using two Siemens S7-300 PLCs deployed on a gas pipeline network platform. Experiments demonstrate that the presented scheme can accurately detect process control attacks in real-time without affecting the normal operations of PLCs. Compared with the other four representative detection models, our scheme has better detection performance with detection accuracy of 97.3%.

ShadowPLCs: A Novel Scheme for Remote Detection of Industrial Process Control Attacks

Recently, vehicular ad hoc network (VANET) has emerged as a promising approach for road safety and traffic efficiency improvement through a variety of vehicle applications enabled by communications between vehicles such as emergency braking warning, etc. However, due to its unique characteristics, such as intermittent connectivity due to high-speed mobility of the network nodes (or vehicles), also known as vehicular delay tolerant network, it poses a major challenge to the realization of those applications. In this paper, we propose a new roadside unit (RSU) aided bundle forwarding protocol for vehicular delay tolerant networks. Furthermore, with the assistance from those RSUs deployed at some critical points on the road, for example, intersections, the proposed protocol can increase the network performance in terms of delivery ratio. At the same time, since vehicle-to-vehicle (V2V) and vehicle-to-RSU (V2R) privacy-preserving authentications are guaranteed, the black (gray) hole attacks can be avoided. Extensive simulations demonstrate the effectiveness of the proposed protocol. Copyright © 2010 John Wiley & Sons, Ltd.

(In this paper, we propose a new roadside unit (RSU) aided bundle forwarding protocol for vehicular delay tolerant networks. With the assistance from those RSUs deployed at some critical points on the road, for example, intersections, the proposed protocol can increase the network performance in terms of delivery ratio. At the same time, analysis shows that this protocol is of good security and privacy.)

A secure and efficient RSU-aided bundle forwarding protocol for vehicular delay tolerant networks

In a smart advertising network ( SAN ), a broker builds user profiles from its wealth of user data, manages advertisements for retailers, and disseminates the advertisements through multiple channels. However, the broker sometimes provides insufficient transparency explanations of advertising activities, which may result in the increasing popularity of ad-blocking software and lower advertising investments from retailers. In this paper, we propose a blockchain-based Smart Advertising Network with Privacy-preserving Accountability ( SANPA ). Specifically, we design a composite Succinct Non-interactive Argument ( SNARG ) system, that commits advertising policies as cryptographic authenticators in a smart contract. By doing so, SANPA is compatible with the existing SAN without posing prohibitive implementation cost over the blockchain architecture. Users or retailers can require explanations of an advertising activity by sending a challenge to the smart contract. With the succinctness and privacy preservation of the SNARG system, the smart contract can efficiently verify whether the challenged advertising activity follows committed advertising policies without exposing user profile privacy. If any misconduct is identified, the contract enforces public accountability on the misbehaving party by confiscating its cryptocurrency deposits. We conduct extensive experiments to provide both on-chain and off-chain benchmarks, which demonstrates the application feasibility of SANPA .

Blockchain-Based Smart Advertising Network With Privacy-Preserving Accountability

Although intrusion detection systems (IDSs) are playing significant roles in defending information systems against attacks, they can only partially reflect the true system states due to false alarms, low detection rate, inaccurate reports, and inappropriate responses. Automated response component built upon such systems therefore must consider the imperfect picture inferred from them and take actions accordingly. This paper presents a stat- based approach to measuring intrusion impacts on the basis of IDS reports, and analyzing costs and benefits of response polices supposed to be taken. Specifically, assuming the system evolves as a Markov process conditioned upon the current system state, imperfect observation and action, a partially observable Markov decision process to model the efficacy of IDSs (as well as alert correlation technology) as providing a probabilistic assessment of the state of system assets, and to maximize rewards (cost and benefit) by taking appropriate actions in response to the estimated states. The objective is to move the system towards more secure states with respect to particular security metrics. We use a real trace benchmark data to evaluate our approach, and demonstrate its promising performance.

Xiaodong Lin

Papers

PPC: Privacy-Preserving Chatting in Vehicular Peer-to-Peer Networks

ShadowPLCs: A Novel Scheme for Remote Detection of Industrial Process Control Attacks

A secure and efficient RSU-aided bundle forwarding protocol for vehicular delay tolerant networks

Blockchain-Based Smart Advertising Network With Privacy-Preserving Accountability

Measuring Intrusion Impacts for Rational Response: A State-based Approach