| |
Almenarez, F., Díaz, D., & Marín, A. (2004). Secure Ad-Hoc mBusiness: Enhancing WindowsCE Security. Lecture Notes In Computer Sciences, , 9099–9999.
Abstract: Nowadays we can perform business transactions with remote servers interconnected to Internet using our personal devices. These transactions can also be possible without any infrastructure in pure ad-hoc networks. In both cases, interacting parts are often unknown, therefore, they require some mechanism to establish ad-hoc trust relationships and perform secure transactions. Operating systems for mobile platforms support secure communication and authentication, but this support is based on hierarchical PKI. For wireless communications, they use the (in)secure protocol WEP. This paper presents a WCE security enhanced architecture allowing secure transactions, mutual authentication, and access control based on dynamic management of the trusted certificate list. We have successfully implemented our own CSP to support the new certificate management and data ciphering.
|
|
Díaz-Sánchez, D., Marín-Lopez, A., & Almenárez-Mendoza, F. (2006). A Smart Card Solution for Access Control and Trust Management for Nomadic Users. In Smart Card Research and Advanced Applications (pp. 62–77). Springer Berlin Heidelberg.
Abstract: Increasing efforts are placed on security solutions for nomadic users. Solutions based on smart cards offer physical and logical portability, robustness, low cost, and high security. Nevertheless, such solutions concentrate only on offering the cryptographical capabilities of the smart card, together with key and user certificate storage. Advanced trust management and access control are not addressed. In this article, we propose a scheme to include trust management and attribute certificates for authorization in two widely used cryptographic APIs: Microsoft CryptoAPI and RSA labs PKCS#11.
|
|
|
Díaz-Sánchez, D., Marín, A., & Alménarez, F. (2005). A framework for authorization and delegation in ubiquitous computing. In UCAMI 2005: Ubiquitous Computing and Ambient Intelligence. Congreso Español De Informatica (pp. 1–10).
|
|
Díaz, D., Marín, A., Almenárez, F., García-Rubio, C., & Campo, C. (2006). Context Awareness in Network Selection for Dynamic Environments. In Personal Wireless Communications (Vol. 4217, pp. 216–227). Springer Berlin Heidelberg.
Abstract: Mobile devices of new generation are able to connect to multiple networks and to constitute new infrastructureless networks. These dynamic environments require new security paradigms and automatic mechanisms to minimize user intervention. Our goal is the definition of a new concept of distance that considers the current domain constraints and the user preferences. This paper addresses some of the problems of these complex environments by using Multidimensional Scaling (MDS) techniques. We also propose collaborative mechanisms for automatic environment marking. Based on these ideas we have developed PervsIM, a decision mechanism that selects the most appropriate network or peer to interact with. Besides we have defined an embedded access control module which ensures that PervsIM decisions are followed by all applications. Furthermore, several simulation results and implementation details outline how these results can be incorporated in today’s mobile devices.
|
|
Campo, C., Almenárez, F., Díaz, D., García-Rubio, C., & López, A. M. (2006). Secure Service Discovery based on Trust Management for ad-hoc Networks. Journal of Universal Computer Science, 12(3), 340–356.
Abstract: In ad-hoc networks, mobile devices communicate via wireless links without the aid of any fixed networking infrastructure. These devices must be able to discover services dynamically and share them safely, taking into account ad-hoc networks requirements such as limited processing and communication power, decentralised management, and dynamic network topology, among others. Legacy solutions fail in addressing these requirements. In this paper, we propose a service discovery protocol with security features, the Secure Pervasive Discovery Protocol. SPDP is a fully distributed protocol in which services offered by devices can be discovered by others, without a central server. It is based on an anarchy trust model, which provides location of trusted services, as well as protection of confidential information, secure communications, or access control.
|
|
|
