More Like this

1. Decentralized Action Integrity for Trigger-Action IoT Platforms

   https://doi.org/10.14722/ndss.2018.23119  

   Fernandes, Earlence; Rahmati, Amir; Jung, Jaeyeon; Prakash, Atul (February 2018, Proceedings 2018 Network and Distributed System Security Symposium)

   Trigger-Action platforms are web-based systems that enable users to create automation rules by stitching together online services representing digital and physical resources using OAuth tokens. Unfortunately, these platforms introduce a longrange large-scale security risk: If they are compromised, an attacker can misuse the OAuth tokens belonging to a large number of users to arbitrarily manipulate their devices and data. We introduce Decentralized Action Integrity, a security principle that prevents an untrusted trigger-action platform from misusing compromised OAuth tokens in ways that are inconsistent with any given user’s set of trigger-action rules. We present the design and evaluation of Decentralized Trigger-Action Platform (DTAP), a trigger-action platform that implements this principle by overcoming practical challenges. DTAP splits currently monolithic platform designs into an untrusted cloud service, and a set of user clients (each user only trusts their client). Our design introduces the concept of Transfer Tokens (XTokens) to practically use finegrained rule-specific tokens without increasing the number of OAuth permission prompts compared to current platforms. Our evaluation indicates that DTAP poses negligible overhead: it adds less than 15ms of latency to rule execution time, and reduces throughput by 2.5%. 

   more » « less
2. A Cross-Layer Security Approach for Multi-Node Gaussian Wiretap Channels

   Tran, Nghi (May 2025, 7th International Symposium on Signal Processing Systems)

   In this work, we propose a new approach to examine the joint effect of physical layer security (PhySec) and encryption. Our idea relies on the concept of rate-equivocation regions and can be used to study the tradeoff between encryption strength, allowed leakage, and transmission rate. By considering encryption, it is possible to achieve transmission rates beyond the secrecy capacity that is achievable by conventional physical layer security. Toward our goal, we exploit the fact that cryptography undermines the ability of the eavesdropper to access the plaintext. We then relax the design of physical layer security schemes without compromising the security of the system. To validate our new approach, we consider a multi-node Gaussian wiretap channel consisting of a legitimate transmitter, a legitimate receiver, an eavesdropper and multiple trusted relays assisting transmission from the transmitter to the receiver. Under this wireless network, we illustrate that encryption awareness not only complements traditional PhySec methods but also achieves superior secrecy performance. An encryption-aware secrecy capacity was also obtained from the rate-equivocation regions under different channel state information conditions. 

   more » « less
3. APECS: A Distributed Access Control Framework for Pervasive Edge Computing Services

   https://doi.org/10.1145/3460120.3484804  

   Dougherty, Sean; Tourani, Reza; Panwar, Gaurav; Vishwanathan, Roopa; Misra, Satyajayant; Srikanteswara, Srikathyayani (November 2021, 2021 ACM SIGSAC Conference on Computer and Communications Security, Virtual Event, Republic of Korea, November 15 - 19, 2021)

   Edge Computing is a new computing paradigm where applications operate at the network edge, providing low-latency services with augmented user and data privacy. A desirable goal for edge computing is pervasiveness, that is, enabling any capable and authorized entity at the edge to provide desired edge services--pervasive edge computing (PEC). However, efficient access control of users receiving services and edge servers handling user data, without sacrificing performance is a challenge. Current solutions, based on "always-on" authentication servers in the cloud, negate the latency benefits of services at the edge and also do not preserve user and data privacy. In this paper, we present APECS, an advanced access control framework for PEC, which allows legitimate users to utilize any available edge services without need for communication beyond the network edge. The APECS framework leverages multi-authority attribute-based encryption to create a federated authority, which delegates the authentication and authorization tasks to semi-trusted edge servers, thus eliminating the need for an "always-on" authentication server in the cloud. Additionally, APECS prevents access to encrypted content by unauthorized edge servers. We analyze and prove the security of APECS in the Universal Composability framework and provide experimental results on the GENI testbed to demonstrate the scalability and effectiveness of APECS. 

   more » « less
4. Trusted IP Solution in Multi-tenant Cloud FPGA Platform

   https://doi.org/10.1109/WF-IoT54382.2022.10152167  

   Ahmed, Muhammed Kawser; Saha, Sujan Kumar; Bobda, Christophe (October 2022, 2022 IEEE 8th World Forum on Internet of Things (WF-IoT))

   Because FPGAs outperform traditional processing cores like CPUs and GPUs in terms of performance per watt and flexibility, they are being used more and more in cloud and data center applications. There are growing worries about the security risks posed by multi-tenant sharing as the demand for hardware acceleration increases and gradually gives way to FPGA multi-tenancy in the cloud. The confidentiality, integrity, and availability of FPGA-accelerated applications may be compromised if space-shared FPGAs are made available to many cloud tenants. We propose a root of trust-based trusted execution mechanism called TrustToken to prevent harmful software-level attackers from getting unauthorized access and jeopardizing security. With safe key creation and truly random sources, TrustToken creates a security block that serves as the foundation of trust-based IP security. By offering crucial security characteristics, such as secure, isolated execution and trusted user interaction, TrustToken only permits trustworthy connection between the non-trusted third-party IP and the rest of the SoC environment. The suggested approach does this by connecting the third-party IP interface to the TrustToken Controller and running run-time checks on the correctness of the IP authorization(Token) signals. With an emphasis on software-based assaults targeting unauthorized access and information leakage, we offer a noble hardware/software architecture for trusted execution in FPGA-accelerated clouds and data centers. 

   more » « less
5. SigAttack: New High-level SAT-based Attack on Logic Encryptions

   https://doi.org/10.23919/DATE.2019.8714924  

   Shen, Yuanqi; Li, You; Kong, Shuyu; Rezaei, Amin; Zhou, Hai (March 2019, Design, Automation, Testing in Europe (DATE))

   Logic encryption is a powerful hardware protection technique that uses extra key inputs to lock a circuit from piracy or unauthorized use. The recent discovery of the SAT-based attack with Distinguishing Input Pattern (DIP) generation has rendered all traditional logic encryptions vulnerable, and thus the creation of new encryption methods. However, a critical question for any new encryption method is whether security against the DIP-generation attack means security against all other attacks. In this paper, a new high-level SAT-based attack called SigAttack has been discovered and thoroughly investigated. It is based on extracting a key-revealing signature in the encryption. A majority of all known SAT-resilient encryptions are shown to be vulnerable to SigAttack. By formulating the condition under which SigAttack is effective, the paper also provides guidance for the future logic encryption design. 

   more » « less