Your search keyword '"Gurtov, A."' showing total 157 results

1. Post Quantum Secure Handover Mechanism for Next Generation Aviation Communication Networks

Author

Khan, Suleman, Singh Gaba, Gurjot, Gurtov, Andrei, Jansen, Leonardus J.A., Mäurer, Nils, Schmitt, Corinna, Khan, Suleman, Singh Gaba, Gurjot, Gurtov, Andrei, Jansen, Leonardus J.A., Mäurer, Nils, and Schmitt, Corinna

Abstract

The L-band Digital Aeronautical Communications System (LDACS) is a key advancement for next-generation aviation networks, enhancing Communication, Navigation, and Surveillance (CNS) capabilities. It operates with VHF Datalink mode 2 (VDLm2) and features a seamless handover mechanism to maintain uninterrupted communication between aircraft and ground stations (GSs), improving safety and efficiency in air traffic management (ATM). However, LDACS’ handover process encounters significant security risks due to inadequate authentication and key agreement between aircraft and ground station controllers (GSCs) during handovers. This vulnerability threatens communications’ confidentiality, integrity, and authenticity, posing risks to flight safety and sensitive data. Therefore, developing and implementing a robust security framework to protect aviation communications is essential. In response, we have proposed a security solution specifically designed to protect LDACS handovers. Our solution uses a mutual authentication and key agreement mechanism tailored for LDACS handovers, ensuring robust security for all types of handovers, including Intra GSC - Intra Aeronautical Telecommunication Network (ATN), Inter GSC - Intra ATN, and Inter GSC - Inter ATN. Our approach utilizes post-quantum cryptography to protect aviation communication systems against potential post-quantum threats, such as unauthorized access to flight data, interception of communication, and spoofing of aircraft identity. Furthermore, our proposed solution has undergone a thorough informal security analysis to ensure its effectiveness in addressing handover challenges and offering robust protection against various threats. It seamlessly integrates with the LDACS framework, delivering low Bit Error Rate (BER) and latency levels, making it a highly reliable approach in practice.

Published

2024

2. Post Quantum Secure Handover Mechanism for Next Generation Aviation Communication Networks

Author

Khan, Suleman, Singh Gaba, Gurjot, Gurtov, Andrei, Jansen, Leonardus J.A., Mäurer, Nils, Schmitt, Corinna, Khan, Suleman, Singh Gaba, Gurjot, Gurtov, Andrei, Jansen, Leonardus J.A., Mäurer, Nils, and Schmitt, Corinna

Abstract

The L-band Digital Aeronautical Communications System (LDACS) is a key advancement for next-generation aviation networks, enhancing Communication, Navigation, and Surveillance (CNS) capabilities. It operates with VHF Datalink mode 2 (VDLm2) and features a seamless handover mechanism to maintain uninterrupted communication between aircraft and ground stations (GSs), improving safety and efficiency in air traffic management (ATM). However, LDACS’ handover process encounters significant security risks due to inadequate authentication and key agreement between aircraft and ground station controllers (GSCs) during handovers. This vulnerability threatens communications’ confidentiality, integrity, and authenticity, posing risks to flight safety and sensitive data. Therefore, developing and implementing a robust security framework to protect aviation communications is essential. In response, we have proposed a security solution specifically designed to protect LDACS handovers. Our solution uses a mutual authentication and key agreement mechanism tailored for LDACS handovers, ensuring robust security for all types of handovers, including Intra GSC - Intra Aeronautical Telecommunication Network (ATN), Inter GSC - Intra ATN, and Inter GSC - Inter ATN. Our approach utilizes post-quantum cryptography to protect aviation communication systems against potential post-quantum threats, such as unauthorized access to flight data, interception of communication, and spoofing of aircraft identity. Furthermore, our proposed solution has undergone a thorough informal security analysis to ensure its effectiveness in addressing handover challenges and offering robust protection against various threats. It seamlessly integrates with the LDACS framework, delivering low Bit Error Rate (BER) and latency levels, making it a highly reliable approach in practice.

Published

2024

3. Post Quantum Secure Handover Mechanism for Next Generation Aviation Communication Networks

Author

Khan, Suleman, Singh Gaba, Gurjot, Gurtov, Andrei, Jansen, Leonardus J.A., Mäurer, Nils, Schmitt, Corinna, Khan, Suleman, Singh Gaba, Gurjot, Gurtov, Andrei, Jansen, Leonardus J.A., Mäurer, Nils, and Schmitt, Corinna

Abstract

The L-band Digital Aeronautical Communications System (LDACS) is a key advancement for next-generation aviation networks, enhancing Communication, Navigation, and Surveillance (CNS) capabilities. It operates with VHF Datalink mode 2 (VDLm2) and features a seamless handover mechanism to maintain uninterrupted communication between aircraft and ground stations (GSs), improving safety and efficiency in air traffic management (ATM). However, LDACS’ handover process encounters significant security risks due to inadequate authentication and key agreement between aircraft and ground station controllers (GSCs) during handovers. This vulnerability threatens communications’ confidentiality, integrity, and authenticity, posing risks to flight safety and sensitive data. Therefore, developing and implementing a robust security framework to protect aviation communications is essential. In response, we have proposed a security solution specifically designed to protect LDACS handovers. Our solution uses a mutual authentication and key agreement mechanism tailored for LDACS handovers, ensuring robust security for all types of handovers, including Intra GSC - Intra Aeronautical Telecommunication Network (ATN), Inter GSC - Intra ATN, and Inter GSC - Inter ATN. Our approach utilizes post-quantum cryptography to protect aviation communication systems against potential post-quantum threats, such as unauthorized access to flight data, interception of communication, and spoofing of aircraft identity. Furthermore, our proposed solution has undergone a thorough informal security analysis to ensure its effectiveness in addressing handover challenges and offering robust protection against various threats. It seamlessly integrates with the LDACS framework, delivering low Bit Error Rate (BER) and latency levels, making it a highly reliable approach in practice.

Published

2024

4. Post Quantum Secure Handover Mechanism for Next Generation Aviation Communication Networks

Author

Khan, Suleman, Singh Gaba, Gurjot, Gurtov, Andrei, Jansen, Leonardus J.A., Mäurer, Nils, Schmitt, Corinna, Khan, Suleman, Singh Gaba, Gurjot, Gurtov, Andrei, Jansen, Leonardus J.A., Mäurer, Nils, and Schmitt, Corinna

Abstract

The L-band Digital Aeronautical Communications System (LDACS) is a key advancement for next-generation aviation networks, enhancing Communication, Navigation, and Surveillance (CNS) capabilities. It operates with VHF Datalink mode 2 (VDLm2) and features a seamless handover mechanism to maintain uninterrupted communication between aircraft and ground stations (GSs), improving safety and efficiency in air traffic management (ATM). However, LDACS’ handover process encounters significant security risks due to inadequate authentication and key agreement between aircraft and ground station controllers (GSCs) during handovers. This vulnerability threatens communications’ confidentiality, integrity, and authenticity, posing risks to flight safety and sensitive data. Therefore, developing and implementing a robust security framework to protect aviation communications is essential. In response, we have proposed a security solution specifically designed to protect LDACS handovers. Our solution uses a mutual authentication and key agreement mechanism tailored for LDACS handovers, ensuring robust security for all types of handovers, including Intra GSC - Intra Aeronautical Telecommunication Network (ATN), Inter GSC - Intra ATN, and Inter GSC - Inter ATN. Our approach utilizes post-quantum cryptography to protect aviation communication systems against potential post-quantum threats, such as unauthorized access to flight data, interception of communication, and spoofing of aircraft identity. Furthermore, our proposed solution has undergone a thorough informal security analysis to ensure its effectiveness in addressing handover challenges and offering robust protection against various threats. It seamlessly integrates with the LDACS framework, delivering low Bit Error Rate (BER) and latency levels, making it a highly reliable approach in practice.

Published

2024

5. A systematic review of cybersecurity assessment methods for HTTPS

Author

Zineddine, Abdelhadi, Chakir, Oumaima, Sadqi, Yassine, Maleh, Yassine, Singh Gaba, Gurjot, Gurtov, Andrei, Dev, Kapal, Zineddine, Abdelhadi, Chakir, Oumaima, Sadqi, Yassine, Maleh, Yassine, Singh Gaba, Gurjot, Gurtov, Andrei, and Dev, Kapal

Abstract

Cybersecurity assessments are critical for ensuring that security measures in organizational infrastructures, systems, and applications meet necessary requirements. Given the significant HTTPS vulnerabilities exposed in recent years, assessing HTTPS deployments is increasingly important. However, there has been no systematic literature review (SLR) comparing different cybersecurity assessment methods specifically for HTTPS deployment security issues. This study aims to address this gap by identifying, analyzing, and comparing various HTTPS deployment assessment methods documented in scientific literature. Our approach involved a structured research methodology with specific inclusion and exclusion criteria for selecting relevant methods. The review utilizes 16 comparison metrics, divided into two categories: critical security metrics, focusing on assessment metrics adopted and the number of vulnerabilities evaluated by each method, and additional metrics assessing the methods’ applicability and effectiveness in real-world scenarios. The findings indicate varied adoption rates of these metrics among the reviewed cybersecurity assessment methods, highlighting the absence of a standardized approach using common, well-defined security metrics for HTTPS deployment assessment. In contrast, merging all the comparison metrics outlined in this review would enable a more in-depth assessment of HTTPS deployment security issues, enhance the quality of reported results, and lead to the development of a more practical assessment method.

Published

2024

6. Towards a federated and hybrid cloud computing environment for sustainable and effective provisioning of cyber security virtual laboratories

Author

Rehaimi, Abdeslam, Sadqi, Yassine, Maleh, Yassine, Singh, Gurjot, Gurtov, Andrei, Rehaimi, Abdeslam, Sadqi, Yassine, Maleh, Yassine, Singh, Gurjot, and Gurtov, Andrei

Abstract

Cloud Computing (CC) and virtualization concepts are two advanced technologies introduced to empower distance and blended learning. Besides, they play a crucial role in equipping learners with practical skills and fostering hands-on experience to defend against cyber-attacks. Many Higher Education Institutions (HEIs) in developed countries have already embraced the promise of CC to raise educational standards. However, the pace of its adoption in developing countries has stagnated. Moreover, existing solutions in the literature are not sustainable. They either rely on on-premise infrastructure or are bound by a single cloud service provider. Consequently, they are likely prone to failures and a sudden outage. To fill this gap, this paper is a first that comprehensively addresses the above issues and introduces a federated hybrid CC system based on an extension of Apache Virtual Computing Lab (VCL). The proposed system provides an independent opensource implementation, greater configuration flexibility, and methodological improvements as compared to existing studies in the literature. In addition, it promotes the sustainability of the CC services, extensible cloud architecture, and fault tolerance. VCL is primarily focused on provisioning Virtual Laboratories (VL) for remote cybersecurity and computer networks education, with potential expansion to other domains of engineering education. In addition, this paper introduces GPT-TerminalPro, a terminal-based tool driven by OpenAI's Generative Pretrained Transformer (GPT-3.5) that provides intelligent assistance to users while performing lab tasks. To experimentally evaluate the VCL's performance, the standard Linux tools as well as the Apache benchmark and httperf HTTP load generators are utilized. VCL has been tested with 30 users and 61 virtual user computing environments provisioning to validate the overall performance. The results are fascinating: the provisioning time including all VCL background tasks is always le

Published

2024

7. A Wireless Caching Helper System Serving Heterogeneous Traffic with Secrecy Constraints

Author

Avgouleas, Ioannis, Pappas, Nikolaos, Gurtov, Andrei, Avgouleas, Ioannis, Pappas, Nikolaos, and Gurtov, Andrei

Abstract

In this paper, we analyze the performance of a wireless caching system with heterogeneous traffic and relaying capabilities satisfying secrecy constraints for one of two receiving users. In this setup, the second user has no secrecy requirements and receives cacheable content either from the relay helper or the core network through a wireless base station. The wireless relay helper can assist both users since it is equipped with finite storage that is split into cacheable and non-cacheable storage. Concurrently, a passive eavesdropper tries to overhear transmissions to the user with secrecy requirements. Consequently, we examine how this relay’s storage split and the eavesdropper affect the performance of the average throughput and delay of the system as the transmission powers, the relay’s transmission probability, and the relay’s cache size vary. © 2023 IEEE., Cited by: 0; Conference name: 2023 IEEE CHILEAN Conference on Electrical, Electronics Engineering, Information and Communication Technologies, ChileCon 2023; Conference date: 5 December 2023 through 7 December 2023; Conference code: 197291

Published

2024

8. INTRUSION DETECTION IN AUTOMATIC DEPENDENT SURVEILLANCE-BROADCAST USING MACHINE LEARNING

Author

Khan, Suleman, Thorn, Joakim, Wahlgren, Alex, Gurtov, Andrei, Khan, Suleman, Thorn, Joakim, Wahlgren, Alex, and Gurtov, Andrei

Abstract

Communication systems in aviation tend to focus on safety rather than security. Protocols such as Automatic Dependent Surveillance-Broadcast (ADS-B) use plain-text, unauthenticated messages and, therefore, open to various attacks. The open and shared nature of the ADS-B protocol makes its messages extremely vulnerable to various security threats, such as jamming, flooding, false information, and false Squawk attacks. To handle this security issue in the ADS-B system, a state-of-the-art dataset is required to train the ADS-B system against these attacks using machine learning algorithms.

Published

2024

9. Trustworthy Device Identifiers For Unmanned Aircraft and Other Mobile Things

Author

Moskowitz, Robert, Card, Stuart W., Wiethuechter, Adam, Khan, Suleman, Gurtov, Andrei, Moskowitz, Robert, Card, Stuart W., Wiethuechter, Adam, Khan, Suleman, and Gurtov, Andrei

Abstract

The US FAA regulations and regulations from other global Civil Aviation Authorities impose significant limitations on secure Broadcast Remote ID strategies for Unmanned Aircraft Systems (UAS). One of the most challenging constraints is configuring messaging within Bluetooth 4 broadcast frames, seemingly limiting the capacity for a reliable Remote ID and trust in UAS communications. However, the Internet Engineering Task Force (IETF) Drone Remote ID Protocol (DRIP) workgroup has adeptly navigated these constraints. They have developed a provably secure Remote ID that authenticates all its messages and can be independently validated without needing an external, internet-based verification service. Remarkably, they achieve this within the stringent message length confines set by Broadcast Remote ID regulations and American Society for Testing and Materials (ASTM) standards. This novel solution, the DRIP Entity Tag (DET), doubles as a legitimate yet non-routable IPv6 address. Beyond its primary application, the DET has promising potential for adoption in broader mobile device ecosystems, fostering interdevice trust. In this paper, we explain the DRIP initiative and its implementation in real-world scenarios and examine its potential use on various mobile devices.

Published

2024

10. Formal Verification and Security Assessment of the Drone Remote Identification Protocol

Author

Khan, Suleman, Singh Gaba, Gurjot, Boeira, Felipe, Gurtov, Andrei, Khan, Suleman, Singh Gaba, Gurjot, Boeira, Felipe, and Gurtov, Andrei

Abstract

The worldwide implementation of Remote Identification (RID) regulations mandates unmanned aircraft systems (UAS), or drones, to openly transmit their identity and real-time location as plain text on the wireless channel. This mandate serves the purpose of accounting for and monitoring drone operations effectively. However, the current RID standard's plain-text transmission exposes it to cyberattacks, including eavesdropping, injection, and impersonation. The Drone Remote Identification Protocol (DRIP) has been proposed to enhance the security of RID. The DRIP ensures information secrecy and confidentiality by using unique session keys while guaranteeing the authenticity of messages and entities through digital signatures. These security features of DRIP make it a preferable alternative to the existing RID standard. However, the lack of verification regarding its security claims raises concerns about its performance in hostile conditions. This paper comprehensively analyzes the DRIP protocol's security features using Tamarin Prover, a formal security verification tool. With its automated reasoning capabilities, Tamarin Prover accurately identifies potential security vulnerabilities within the DRIP protocol while thoroughly verifying its conformance to security properties. Our investigation demonstrates that the DRIP protocol is susceptible to replay attacks. We strongly recommend the inclusion of message freshness components, reducing the lifespan of DET broadcasts, and incorporating a not-after timestamp that is set only a few minutes ahead of the current time. These measures enhance the protocol's defence against replay attacks and ensure message authenticity and Integrity., Funding Agencies|Automation Program II, Trafikverket

Published

2024

11. GAN-Based Evasion Attack in Filtered Multicarrier Waveforms Systems

Author

Zerhouni, Kawtar, Singh Gaba, Gurjot, Hedabou, Mustapha, Maksymyuk, Taras, Gurtov, Andrei, Amhoud, El Mehdi, Zerhouni, Kawtar, Singh Gaba, Gurjot, Hedabou, Mustapha, Maksymyuk, Taras, Gurtov, Andrei, and Amhoud, El Mehdi

Abstract

Generative adversarial networks (GANs), a category of deep learning models, have become a cybersecurity concern for wireless communication systems. These networks enable potential attackers to deceive receivers that rely on convolutional neural networks (CNNs) by transmitting deceptive wireless signals that are statistically indistinguishable from genuine ones. While GANs have been used before for digitally modulated single-carrier waveforms, this study explores their applicability to model filtered multi-carrier waveforms, such as orthogonal frequency-division multiplexing (OFDM), filtered orthogonal FDM (F-OFDM), generalized FDM (GFDM), filter bank multi-carrier (FBMC), and universal filtered MC (UFMC). In this research, an evasion attack is conducted using GAN-generated counterfeit filtered multi-carrier signals to trick the target receiver. The results show that there is a remarkable 99.7% probability of the receiver misclassifying these GAN-based fabricated signals as authentic ones. This highlights the need for urgent investigation into the development of preventive measures to address this concerning vulnerability.

Published

2024

12. AKAASH: A realizable authentication, key agreement, and secure handover approach for controller-pilot data link communications

Author

Khan, Suleman, Gaba, Gurjot Singh, Braeken, An, Kumar, Pardeep, Gurtov, Andrei, Khan, Suleman, Gaba, Gurjot Singh, Braeken, An, Kumar, Pardeep, and Gurtov, Andrei

Abstract

Controller-Pilot Data Link Communications (CPDLC) are rapidly replacing voice-based Air Traffic Control (ATC) communications worldwide. Being digital, CPDLC is highly resilient and bandwidth efficient, which makes it the best choice for traffic-congested airports. Although CPDLC initially seems to be a perfect solution for modern-day ATC operations, it suffers from serious security issues. For instance, eavesdropping, spoofing, man-in-the-middle, message replay, impersonation attacks, etc. Cyber attacks on the aviation communication network could be hazardous, leading to fatal aircraft incidents and causing damage to individuals, service providers, and the aviation industry. Therefore, we propose a new security model called AKAASH, enabling several paramount security services, such as efficient and robust mutual authentication, key establishment, and a secure handover approach for the CPDLC-enabled aviation communication network. We implement the approach on hardware to examine the practicality of the proposed approach and verify its computational and communication efficiency and efficacy. We investigate the robustness of AKAASH through formal (proverif) and informal security analysis. The analysis reveals that the AKAASH adheres to the CPDLC standards and can easily integrate into the CPDLC framework., Funding: Trafikverket, Sweden; Luftfartsverket, Sweden under Automation Program II; Wallenberg AI, Autonomous Systems and Software Program (WASP), Sweden, This work was supported by Trafikverket, Sweden and Luftfartsverket, Sweden under Automation Program II. This work was also partially supported by the Wallenberg AI, Autonomous Systems and Software Program (WASP), Sweden .

Published

2023

13. AKAASH: A realizable authentication, key agreement, and secure handover approach for controller-pilot data link communications

Author

Khan, Suleman, Gaba, Gurjot Singh, Braeken, An, Kumar, Pardeep, Gurtov, Andrei, Khan, Suleman, Gaba, Gurjot Singh, Braeken, An, Kumar, Pardeep, and Gurtov, Andrei

Abstract

Controller-Pilot Data Link Communications (CPDLC) are rapidly replacing voice-based Air Traffic Control (ATC) communications worldwide. Being digital, CPDLC is highly resilient and bandwidth efficient, which makes it the best choice for traffic-congested airports. Although CPDLC initially seems to be a perfect solution for modern-day ATC operations, it suffers from serious security issues. For instance, eavesdropping, spoofing, man-in-the-middle, message replay, impersonation attacks, etc. Cyber attacks on the aviation communication network could be hazardous, leading to fatal aircraft incidents and causing damage to individuals, service providers, and the aviation industry. Therefore, we propose a new security model called AKAASH, enabling several paramount security services, such as efficient and robust mutual authentication, key establishment, and a secure handover approach for the CPDLC-enabled aviation communication network. We implement the approach on hardware to examine the practicality of the proposed approach and verify its computational and communication efficiency and efficacy. We investigate the robustness of AKAASH through formal (proverif) and informal security analysis. The analysis reveals that the AKAASH adheres to the CPDLC standards and can easily integrate into the CPDLC framework., Funding: Trafikverket, Sweden; Luftfartsverket, Sweden under Automation Program II; Wallenberg AI, Autonomous Systems and Software Program (WASP), Sweden, This work was supported by Trafikverket, Sweden and Luftfartsverket, Sweden under Automation Program II. This work was also partially supported by the Wallenberg AI, Autonomous Systems and Software Program (WASP), Sweden .

Published

2023

14. Dew-Cloud-Based Hierarchical Federated Learning for Intrusion Detection in IoMT

Author

Singh, Parminder, Singh, Gurjot, Kaur, Avinash, Hedabou, Mustapha, Gurtov, Andrei, Singh, Parminder, Singh, Gurjot, Kaur, Avinash, Hedabou, Mustapha, and Gurtov, Andrei

Abstract

The coronavirus pandemic has overburdened medical institutions, forcing physicians to diagnose and treat their patients remotely. Moreover, COVID-19 has made humans more conscious about their health, resulting in the extensive purchase of IoT-enabled medical devices. The rapid boom in the market worth of the internet of medical things (IoMT) captured cyber attackers attention. Like health, medical data is also sensitive and worth a lot on the dark web. Despite the fact that the patients health details have not been protected appropriately, letting the trespassers exploit them. The system administrator is unable to fortify security measures due to the limited storage capacity and computation power of the resource-constrained network devices. Although various supervised and unsupervised machine learning algorithms have been developed to identify anomalies, the primary undertaking is to explore the swift progressing malicious attacks before they deteriorate the wellness systems integrity. In this paper, a Dew-Cloud based model is designed to enable hierarchical federated learning (HFL). The proposed Dew-Cloud model provides a higher level of data privacy with greater availability of IoMT critical application(s). The hierarchical long-term memory (HLSTM) model is deployed at distributed Dew servers with a backend supported by cloud computing. Data pre-processing feature helps the proposed model achieve high training accuracy (99.31%) with minimum training loss (0.034). The experiment results demonstrate that the proposed HFL-HLSTM model is superior to existing schemes in terms of performance metrics such as accuracy, precision, recall, and f-score., Funding Agencies|CENIIT Project [17.01]; Excellence Center at Linkoeping-Lund in IT (ELLIIT)

Published

2023

15. An empirical assessment of ensemble methods and traditional machine for web-based attack detection in 5.0

Author

Chakir, Oumaima, Rehaimi, Abdeslam, Sadqi, Yassine, Alaoui, El Arbi Abdellaoui, Krichen, Moez, Singh Gaba, Gurjot, Gurtov, Andrei, Chakir, Oumaima, Rehaimi, Abdeslam, Sadqi, Yassine, Alaoui, El Arbi Abdellaoui, Krichen, Moez, Singh Gaba, Gurjot, and Gurtov, Andrei

Abstract

Cybersecurity attacks that target software have become profitable and popular targets for cybercriminals who consciously take advantage of web-based vulnerabilities and execute attacks that might jeopardize essential industry 5.0 features. Several machine learning-based techniques have been developed in the literature to identify these types of assaults. In contrast to single classifiers, ensemble methods have not been evaluated empirically. To the best of our knowledge, this work is the first empirical evaluation of both homogeneous and heterogeneous ensemble approaches compared to single classifiers for web -based attack detection in industry 5.0, utilizing two of the most realistic public web-based attack data -sets. The authors divided the experiment into three main phases: In the first phase, they evaluated the performance of five well-established supervised machine learning (ML) classifiers. In the second phase, they constructed a heterogeneous ensemble of the three best-performing ML algorithms using max vot-ing and stacking methods. In the third phase, they used four well-known homogeneous ensembles to evaluate the performance of the bagging and boosting method. The results based on the ECML/PKDD 2007 and CSIC HTTP 2010 datasets revealed that bagging, particularly Random Forest, outperformed sin-gle classifiers in terms of accuracy, precision, F-value, FPR, and area of the ROC curve with values of 99.597%, 98.274%, 99.129%, 0.523%, 100 and 99.867%, 99.867%, 99.867%, 0.267%, 100, respectively. In con-trast, single classifiers performed better than boosting and stacking. However, in terms of FPR, the boost-ing exceeded single classifiers. Max voting is appropriate when accuracy, precision, and FPR are the primary concerns, whereas single classifiers can be employed when recall, FNR, training, and prediction times are critical elements. In terms of training time, ensemble approaches are more likely to be affected by data volume than single classifiers. The pape

Published

2023

16. Dew-Cloud-Based Hierarchical Federated Learning for Intrusion Detection in IoMT

Author

Singh, Parminder, Singh, Gurjot, Kaur, Avinash, Hedabou, Mustapha, Gurtov, Andrei, Singh, Parminder, Singh, Gurjot, Kaur, Avinash, Hedabou, Mustapha, and Gurtov, Andrei

Abstract

The coronavirus pandemic has overburdened medical institutions, forcing physicians to diagnose and treat their patients remotely. Moreover, COVID-19 has made humans more conscious about their health, resulting in the extensive purchase of IoT-enabled medical devices. The rapid boom in the market worth of the internet of medical things (IoMT) captured cyber attackers attention. Like health, medical data is also sensitive and worth a lot on the dark web. Despite the fact that the patients health details have not been protected appropriately, letting the trespassers exploit them. The system administrator is unable to fortify security measures due to the limited storage capacity and computation power of the resource-constrained network devices. Although various supervised and unsupervised machine learning algorithms have been developed to identify anomalies, the primary undertaking is to explore the swift progressing malicious attacks before they deteriorate the wellness systems integrity. In this paper, a Dew-Cloud based model is designed to enable hierarchical federated learning (HFL). The proposed Dew-Cloud model provides a higher level of data privacy with greater availability of IoMT critical application(s). The hierarchical long-term memory (HLSTM) model is deployed at distributed Dew servers with a backend supported by cloud computing. Data pre-processing feature helps the proposed model achieve high training accuracy (99.31%) with minimum training loss (0.034). The experiment results demonstrate that the proposed HFL-HLSTM model is superior to existing schemes in terms of performance metrics such as accuracy, precision, recall, and f-score., Funding Agencies|CENIIT Project [17.01]; Excellence Center at Linkoeping-Lund in IT (ELLIIT)

Published

2023

17. An empirical assessment of ensemble methods and traditional machine for web-based attack detection in 5.0

Author

Chakir, Oumaima, Rehaimi, Abdeslam, Sadqi, Yassine, Alaoui, El Arbi Abdellaoui, Krichen, Moez, Singh Gaba, Gurjot, Gurtov, Andrei, Chakir, Oumaima, Rehaimi, Abdeslam, Sadqi, Yassine, Alaoui, El Arbi Abdellaoui, Krichen, Moez, Singh Gaba, Gurjot, and Gurtov, Andrei

Abstract

Cybersecurity attacks that target software have become profitable and popular targets for cybercriminals who consciously take advantage of web-based vulnerabilities and execute attacks that might jeopardize essential industry 5.0 features. Several machine learning-based techniques have been developed in the literature to identify these types of assaults. In contrast to single classifiers, ensemble methods have not been evaluated empirically. To the best of our knowledge, this work is the first empirical evaluation of both homogeneous and heterogeneous ensemble approaches compared to single classifiers for web -based attack detection in industry 5.0, utilizing two of the most realistic public web-based attack data -sets. The authors divided the experiment into three main phases: In the first phase, they evaluated the performance of five well-established supervised machine learning (ML) classifiers. In the second phase, they constructed a heterogeneous ensemble of the three best-performing ML algorithms using max vot-ing and stacking methods. In the third phase, they used four well-known homogeneous ensembles to evaluate the performance of the bagging and boosting method. The results based on the ECML/PKDD 2007 and CSIC HTTP 2010 datasets revealed that bagging, particularly Random Forest, outperformed sin-gle classifiers in terms of accuracy, precision, F-value, FPR, and area of the ROC curve with values of 99.597%, 98.274%, 99.129%, 0.523%, 100 and 99.867%, 99.867%, 99.867%, 0.267%, 100, respectively. In con-trast, single classifiers performed better than boosting and stacking. However, in terms of FPR, the boost-ing exceeded single classifiers. Max voting is appropriate when accuracy, precision, and FPR are the primary concerns, whereas single classifiers can be employed when recall, FNR, training, and prediction times are critical elements. In terms of training time, ensemble approaches are more likely to be affected by data volume than single classifiers. The pape

Published

2023

18. An empirical assessment of ensemble methods and traditional machine for web-based attack detection in 5.0

Author

Chakir, Oumaima, Rehaimi, Abdeslam, Sadqi, Yassine, Alaoui, El Arbi Abdellaoui, Krichen, Moez, Singh Gaba, Gurjot, Gurtov, Andrei, Chakir, Oumaima, Rehaimi, Abdeslam, Sadqi, Yassine, Alaoui, El Arbi Abdellaoui, Krichen, Moez, Singh Gaba, Gurjot, and Gurtov, Andrei

Abstract

Cybersecurity attacks that target software have become profitable and popular targets for cybercriminals who consciously take advantage of web-based vulnerabilities and execute attacks that might jeopardize essential industry 5.0 features. Several machine learning-based techniques have been developed in the literature to identify these types of assaults. In contrast to single classifiers, ensemble methods have not been evaluated empirically. To the best of our knowledge, this work is the first empirical evaluation of both homogeneous and heterogeneous ensemble approaches compared to single classifiers for web -based attack detection in industry 5.0, utilizing two of the most realistic public web-based attack data -sets. The authors divided the experiment into three main phases: In the first phase, they evaluated the performance of five well-established supervised machine learning (ML) classifiers. In the second phase, they constructed a heterogeneous ensemble of the three best-performing ML algorithms using max vot-ing and stacking methods. In the third phase, they used four well-known homogeneous ensembles to evaluate the performance of the bagging and boosting method. The results based on the ECML/PKDD 2007 and CSIC HTTP 2010 datasets revealed that bagging, particularly Random Forest, outperformed sin-gle classifiers in terms of accuracy, precision, F-value, FPR, and area of the ROC curve with values of 99.597%, 98.274%, 99.129%, 0.523%, 100 and 99.867%, 99.867%, 99.867%, 0.267%, 100, respectively. In con-trast, single classifiers performed better than boosting and stacking. However, in terms of FPR, the boost-ing exceeded single classifiers. Max voting is appropriate when accuracy, precision, and FPR are the primary concerns, whereas single classifiers can be employed when recall, FNR, training, and prediction times are critical elements. In terms of training time, ensemble approaches are more likely to be affected by data volume than single classifiers. The pape

Published

2023

19. Dew-Cloud-Based Hierarchical Federated Learning for Intrusion Detection in IoMT

Author

Singh, Parminder, Singh, Gurjot, Kaur, Avinash, Hedabou, Mustapha, Gurtov, Andrei, Singh, Parminder, Singh, Gurjot, Kaur, Avinash, Hedabou, Mustapha, and Gurtov, Andrei

Abstract

The coronavirus pandemic has overburdened medical institutions, forcing physicians to diagnose and treat their patients remotely. Moreover, COVID-19 has made humans more conscious about their health, resulting in the extensive purchase of IoT-enabled medical devices. The rapid boom in the market worth of the internet of medical things (IoMT) captured cyber attackers attention. Like health, medical data is also sensitive and worth a lot on the dark web. Despite the fact that the patients health details have not been protected appropriately, letting the trespassers exploit them. The system administrator is unable to fortify security measures due to the limited storage capacity and computation power of the resource-constrained network devices. Although various supervised and unsupervised machine learning algorithms have been developed to identify anomalies, the primary undertaking is to explore the swift progressing malicious attacks before they deteriorate the wellness systems integrity. In this paper, a Dew-Cloud based model is designed to enable hierarchical federated learning (HFL). The proposed Dew-Cloud model provides a higher level of data privacy with greater availability of IoMT critical application(s). The hierarchical long-term memory (HLSTM) model is deployed at distributed Dew servers with a backend supported by cloud computing. Data pre-processing feature helps the proposed model achieve high training accuracy (99.31%) with minimum training loss (0.034). The experiment results demonstrate that the proposed HFL-HLSTM model is superior to existing schemes in terms of performance metrics such as accuracy, precision, recall, and f-score., Funding Agencies|CENIIT Project [17.01]; Excellence Center at Linkoeping-Lund in IT (ELLIIT)

Published

2023

20. AKAASH: A realizable authentication, key agreement, and secure handover approach for controller-pilot data link communications

Author

Khan, Suleman, Gaba, Gurjot Singh, Braeken, An, Kumar, Pardeep, Gurtov, Andrei, Khan, Suleman, Gaba, Gurjot Singh, Braeken, An, Kumar, Pardeep, and Gurtov, Andrei

Abstract

Controller-Pilot Data Link Communications (CPDLC) are rapidly replacing voice-based Air Traffic Control (ATC) communications worldwide. Being digital, CPDLC is highly resilient and bandwidth efficient, which makes it the best choice for traffic-congested airports. Although CPDLC initially seems to be a perfect solution for modern-day ATC operations, it suffers from serious security issues. For instance, eavesdropping, spoofing, man-in-the-middle, message replay, impersonation attacks, etc. Cyber attacks on the aviation communication network could be hazardous, leading to fatal aircraft incidents and causing damage to individuals, service providers, and the aviation industry. Therefore, we propose a new security model called AKAASH, enabling several paramount security services, such as efficient and robust mutual authentication, key establishment, and a secure handover approach for the CPDLC-enabled aviation communication network. We implement the approach on hardware to examine the practicality of the proposed approach and verify its computational and communication efficiency and efficacy. We investigate the robustness of AKAASH through formal (proverif) and informal security analysis. The analysis reveals that the AKAASH adheres to the CPDLC standards and can easily integrate into the CPDLC framework., Funding: Trafikverket, Sweden; Luftfartsverket, Sweden under Automation Program II; Wallenberg AI, Autonomous Systems and Software Program (WASP), Sweden, This work was supported by Trafikverket, Sweden and Luftfartsverket, Sweden under Automation Program II. This work was also partially supported by the Wallenberg AI, Autonomous Systems and Software Program (WASP), Sweden .

Published

2023

21. AKAASH: A realizable authentication, key agreement, and secure handover approach for controller-pilot data link communications

Author

Khan, Suleman, Gaba, Gurjot Singh, Braeken, An, Kumar, Pardeep, Gurtov, Andrei, Khan, Suleman, Gaba, Gurjot Singh, Braeken, An, Kumar, Pardeep, and Gurtov, Andrei

Abstract

Controller-Pilot Data Link Communications (CPDLC) are rapidly replacing voice-based Air Traffic Control (ATC) communications worldwide. Being digital, CPDLC is highly resilient and bandwidth efficient, which makes it the best choice for traffic-congested airports. Although CPDLC initially seems to be a perfect solution for modern-day ATC operations, it suffers from serious security issues. For instance, eavesdropping, spoofing, man-in-the-middle, message replay, impersonation attacks, etc. Cyber attacks on the aviation communication network could be hazardous, leading to fatal aircraft incidents and causing damage to individuals, service providers, and the aviation industry. Therefore, we propose a new security model called AKAASH, enabling several paramount security services, such as efficient and robust mutual authentication, key establishment, and a secure handover approach for the CPDLC-enabled aviation communication network. We implement the approach on hardware to examine the practicality of the proposed approach and verify its computational and communication efficiency and efficacy. We investigate the robustness of AKAASH through formal (proverif) and informal security analysis. The analysis reveals that the AKAASH adheres to the CPDLC standards and can easily integrate into the CPDLC framework., Funding: Trafikverket, Sweden; Luftfartsverket, Sweden under Automation Program II; Wallenberg AI, Autonomous Systems and Software Program (WASP), Sweden, This work was supported by Trafikverket, Sweden and Luftfartsverket, Sweden under Automation Program II. This work was also partially supported by the Wallenberg AI, Autonomous Systems and Software Program (WASP), Sweden .

Published

2023

22. AKAASH: A realizable authentication, key agreement, and secure handover approach for controller-pilot data link communications

Author

Khan, Suleman, Gaba, Gurjot Singh, Braeken, An, Kumar, Pardeep, Gurtov, Andrei, Khan, Suleman, Gaba, Gurjot Singh, Braeken, An, Kumar, Pardeep, and Gurtov, Andrei

Abstract

Controller-Pilot Data Link Communications (CPDLC) are rapidly replacing voice-based Air Traffic Control (ATC) communications worldwide. Being digital, CPDLC is highly resilient and bandwidth efficient, which makes it the best choice for traffic-congested airports. Although CPDLC initially seems to be a perfect solution for modern-day ATC operations, it suffers from serious security issues. For instance, eavesdropping, spoofing, man-in-the-middle, message replay, impersonation attacks, etc. Cyber attacks on the aviation communication network could be hazardous, leading to fatal aircraft incidents and causing damage to individuals, service providers, and the aviation industry. Therefore, we propose a new security model called AKAASH, enabling several paramount security services, such as efficient and robust mutual authentication, key establishment, and a secure handover approach for the CPDLC-enabled aviation communication network. We implement the approach on hardware to examine the practicality of the proposed approach and verify its computational and communication efficiency and efficacy. We investigate the robustness of AKAASH through formal (proverif) and informal security analysis. The analysis reveals that the AKAASH adheres to the CPDLC standards and can easily integrate into the CPDLC framework., Funding: Trafikverket, Sweden; Luftfartsverket, Sweden under Automation Program II; Wallenberg AI, Autonomous Systems and Software Program (WASP), Sweden, This work was supported by Trafikverket, Sweden and Luftfartsverket, Sweden under Automation Program II. This work was also partially supported by the Wallenberg AI, Autonomous Systems and Software Program (WASP), Sweden .

Published

2023

23. An empirical assessment of ensemble methods and traditional machine for web-based attack detection in 5.0

Author

Chakir, Oumaima, Rehaimi, Abdeslam, Sadqi, Yassine, Alaoui, El Arbi Abdellaoui, Krichen, Moez, Singh Gaba, Gurjot, Gurtov, Andrei, Chakir, Oumaima, Rehaimi, Abdeslam, Sadqi, Yassine, Alaoui, El Arbi Abdellaoui, Krichen, Moez, Singh Gaba, Gurjot, and Gurtov, Andrei

Abstract

Cybersecurity attacks that target software have become profitable and popular targets for cybercriminals who consciously take advantage of web-based vulnerabilities and execute attacks that might jeopardize essential industry 5.0 features. Several machine learning-based techniques have been developed in the literature to identify these types of assaults. In contrast to single classifiers, ensemble methods have not been evaluated empirically. To the best of our knowledge, this work is the first empirical evaluation of both homogeneous and heterogeneous ensemble approaches compared to single classifiers for web -based attack detection in industry 5.0, utilizing two of the most realistic public web-based attack data -sets. The authors divided the experiment into three main phases: In the first phase, they evaluated the performance of five well-established supervised machine learning (ML) classifiers. In the second phase, they constructed a heterogeneous ensemble of the three best-performing ML algorithms using max vot-ing and stacking methods. In the third phase, they used four well-known homogeneous ensembles to evaluate the performance of the bagging and boosting method. The results based on the ECML/PKDD 2007 and CSIC HTTP 2010 datasets revealed that bagging, particularly Random Forest, outperformed sin-gle classifiers in terms of accuracy, precision, F-value, FPR, and area of the ROC curve with values of 99.597%, 98.274%, 99.129%, 0.523%, 100 and 99.867%, 99.867%, 99.867%, 0.267%, 100, respectively. In con-trast, single classifiers performed better than boosting and stacking. However, in terms of FPR, the boost-ing exceeded single classifiers. Max voting is appropriate when accuracy, precision, and FPR are the primary concerns, whereas single classifiers can be employed when recall, FNR, training, and prediction times are critical elements. In terms of training time, ensemble approaches are more likely to be affected by data volume than single classifiers. The pape

Published

2023

24. KDC Placement Problem in Secure VPLS Networks

Author

Borhani, Mohammad, Avgouleas, Ioannis, Liyanage, Madhusanka, Gurtov, Andrei, Borhani, Mohammad, Avgouleas, Ioannis, Liyanage, Madhusanka, and Gurtov, Andrei

Abstract

Virtual Private LAN Service (VPLS) is a VPN technology that connects remote client sites with provider networks in a transparent manner. Session key-based HIPLS (S-HIPLS) is a VPLS architecture based on the Host Identity Protocol (HIP) that provides a secure VPLS architecture using a Key Distribution Center (KDC) to implement security mechanisms such as authentication, encryption etc. It exhibits limited scalability though. Using multiple distributed KDCs would offer numerous advantages including reduced workload per KDC, distributed key storage, and improved scalability, while simultaneously eliminating the single point of failure of S-HIPLS. It would also come with the need for optimally placing KDCs in the provider network. In this work, we formulate the KDC placement (KDCP) problem for a secure VPLS network as an Integer Linear Programming (ILP) problem. The latter is NP-hard, thereby suggesting a high computational cost for obtaining exact solutions especially for large deployments. Therefore, we motivate the use of a primal-dual algorithm to efficiently produce near-optimal solutions. Extensive evaluations on large-scale network topologies, such as the random Internet graph, demonstrate our method’s time-efficiency as well as its improved scalability and usefulness compared to both HIPLS and S-HIPLS., Funding: Graduate School in Computer Science (CUGS); Excellence Center at Linkoping-Lund in Information Technology (ELLIIT)

Published

2023

25. Dew-Cloud-Based Hierarchical Federated Learning for Intrusion Detection in IoMT

Author

Singh, Parminder, Singh, Gurjot, Kaur, Avinash, Hedabou, Mustapha, Gurtov, Andrei, Singh, Parminder, Singh, Gurjot, Kaur, Avinash, Hedabou, Mustapha, and Gurtov, Andrei

Abstract

The coronavirus pandemic has overburdened medical institutions, forcing physicians to diagnose and treat their patients remotely. Moreover, COVID-19 has made humans more conscious about their health, resulting in the extensive purchase of IoT-enabled medical devices. The rapid boom in the market worth of the internet of medical things (IoMT) captured cyber attackers attention. Like health, medical data is also sensitive and worth a lot on the dark web. Despite the fact that the patients health details have not been protected appropriately, letting the trespassers exploit them. The system administrator is unable to fortify security measures due to the limited storage capacity and computation power of the resource-constrained network devices. Although various supervised and unsupervised machine learning algorithms have been developed to identify anomalies, the primary undertaking is to explore the swift progressing malicious attacks before they deteriorate the wellness systems integrity. In this paper, a Dew-Cloud based model is designed to enable hierarchical federated learning (HFL). The proposed Dew-Cloud model provides a higher level of data privacy with greater availability of IoMT critical application(s). The hierarchical long-term memory (HLSTM) model is deployed at distributed Dew servers with a backend supported by cloud computing. Data pre-processing feature helps the proposed model achieve high training accuracy (99.31%) with minimum training loss (0.034). The experiment results demonstrate that the proposed HFL-HLSTM model is superior to existing schemes in terms of performance metrics such as accuracy, precision, recall, and f-score., Funding Agencies|CENIIT Project [17.01]; Excellence Center at Linkoeping-Lund in IT (ELLIIT)

Published

2023

26. An empirical assessment of ensemble methods and traditional machine for web-based attack detection in 5.0

Author

Chakir, Oumaima, Rehaimi, Abdeslam, Sadqi, Yassine, Alaoui, El Arbi Abdellaoui, Krichen, Moez, Singh Gaba, Gurjot, Gurtov, Andrei, Chakir, Oumaima, Rehaimi, Abdeslam, Sadqi, Yassine, Alaoui, El Arbi Abdellaoui, Krichen, Moez, Singh Gaba, Gurjot, and Gurtov, Andrei

Abstract

Cybersecurity attacks that target software have become profitable and popular targets for cybercriminals who consciously take advantage of web-based vulnerabilities and execute attacks that might jeopardize essential industry 5.0 features. Several machine learning-based techniques have been developed in the literature to identify these types of assaults. In contrast to single classifiers, ensemble methods have not been evaluated empirically. To the best of our knowledge, this work is the first empirical evaluation of both homogeneous and heterogeneous ensemble approaches compared to single classifiers for web -based attack detection in industry 5.0, utilizing two of the most realistic public web-based attack data -sets. The authors divided the experiment into three main phases: In the first phase, they evaluated the performance of five well-established supervised machine learning (ML) classifiers. In the second phase, they constructed a heterogeneous ensemble of the three best-performing ML algorithms using max vot-ing and stacking methods. In the third phase, they used four well-known homogeneous ensembles to evaluate the performance of the bagging and boosting method. The results based on the ECML/PKDD 2007 and CSIC HTTP 2010 datasets revealed that bagging, particularly Random Forest, outperformed sin-gle classifiers in terms of accuracy, precision, F-value, FPR, and area of the ROC curve with values of 99.597%, 98.274%, 99.129%, 0.523%, 100 and 99.867%, 99.867%, 99.867%, 0.267%, 100, respectively. In con-trast, single classifiers performed better than boosting and stacking. However, in terms of FPR, the boost-ing exceeded single classifiers. Max voting is appropriate when accuracy, precision, and FPR are the primary concerns, whereas single classifiers can be employed when recall, FNR, training, and prediction times are critical elements. In terms of training time, ensemble approaches are more likely to be affected by data volume than single classifiers. The pape

Published

2023

27. Dew-Cloud-Based Hierarchical Federated Learning for Intrusion Detection in IoMT

Author

Singh, Parminder, Singh, Gurjot, Kaur, Avinash, Hedabou, Mustapha, Gurtov, Andrei, Singh, Parminder, Singh, Gurjot, Kaur, Avinash, Hedabou, Mustapha, and Gurtov, Andrei

Abstract

The coronavirus pandemic has overburdened medical institutions, forcing physicians to diagnose and treat their patients remotely. Moreover, COVID-19 has made humans more conscious about their health, resulting in the extensive purchase of IoT-enabled medical devices. The rapid boom in the market worth of the internet of medical things (IoMT) captured cyber attackers attention. Like health, medical data is also sensitive and worth a lot on the dark web. Despite the fact that the patients health details have not been protected appropriately, letting the trespassers exploit them. The system administrator is unable to fortify security measures due to the limited storage capacity and computation power of the resource-constrained network devices. Although various supervised and unsupervised machine learning algorithms have been developed to identify anomalies, the primary undertaking is to explore the swift progressing malicious attacks before they deteriorate the wellness systems integrity. In this paper, a Dew-Cloud based model is designed to enable hierarchical federated learning (HFL). The proposed Dew-Cloud model provides a higher level of data privacy with greater availability of IoMT critical application(s). The hierarchical long-term memory (HLSTM) model is deployed at distributed Dew servers with a backend supported by cloud computing. Data pre-processing feature helps the proposed model achieve high training accuracy (99.31%) with minimum training loss (0.034). The experiment results demonstrate that the proposed HFL-HLSTM model is superior to existing schemes in terms of performance metrics such as accuracy, precision, recall, and f-score., Funding Agencies|CENIIT Project [17.01]; Excellence Center at Linkoeping-Lund in IT (ELLIIT)

Published

2023

28. Drone Remote Identification Protocol (DRIP) Architecture

Author

Card, Stuart W., Wiethuechter, Adam, Moskowitz, Robert, Zhao, Shuai, Gurtov, Andrei, Card, Stuart W., Wiethuechter, Adam, Moskowitz, Robert, Zhao, Shuai, and Gurtov, Andrei

Abstract

This document describes an architecture for protocols and services to support Unmanned Aircraft System Remote Identification and tracking (UAS RID), plus UAS-RID-related communications. The architecture takes into account both current (including proposed) regulations and non-IETF technical standards. The architecture adheres to the requirements listed in the DRIP Requirements document [RFC9153] and illustrates how all of them can be met, except for GEN-7 QoS, which is left for future work. The requirements document provides an extended introduction to the problem space and use cases. Further, this architecture document frames the DRIP Entity Tag (DET) [RFC9374] within the architecture.

Published

2023

29. DRIP Entity Tag (DET) for Unmanned Aircraft System Remote ID (UAS RID)

Author

Moskowitz, Robert, Card, Stuart W., Wiethuechter, Adam, Gurtov, Andrei, Moskowitz, Robert, Card, Stuart W., Wiethuechter, Adam, and Gurtov, Andrei

Abstract

This document describes the use of Hierarchical Host Identity Tags (HHITs) as self-asserting IPv6 addresses, which makes them trustable identifiers for use in Unmanned Aircraft System Remote Identification (UAS RID) and tracking. Within the context of RID, HHITs will be called DRIP Entity Tags (DETs). HHITs provide claims to the included explicit hierarchy that provides registry (via, for example, DNS, RDAP) discovery for third-party identifier endorsement. This document updates RFCs 7401 and 7343.

Published

2023

30. Peer-to-Peer Misbehavior Reporting Using Non-Interactive Zero-Knowledge Proofs for Intelligent Transport Systems

Author

Nee, Lukas, Singh Gaba, Gurjot, Gurtov, Andrei, Nee, Lukas, Singh Gaba, Gurjot, and Gurtov, Andrei

Abstract

The integration of technologies like the Internet of Things (IoT), Big data, and Artificial Intelligence (AI) has empowered modern vehicles with the ability to communicate with one another for better cooperation on the roads. However, the communication between vehicles exposes the whole intelligent transportation system to new attack vectors. Malicious vehicles can spread misleading information, which, if acted upon, might result in traffic congestion, accidents, chaos, and even fatalities. As a countermeasure, the European Telecommunications Standards Institute (ETSI) proposes a framework, TR 103 460, for reporting abnormal behavior. However, there are many shortcomings, such as the absence of a peer-to-peer (P2P) misbehavior reporting (MR) service and the inability to secure the reporter's identity and reported information. To protect vehicles from abuse, we propose a P2P non-interactive zero-knowledge proof-based privacy-preserving MR framework. Upon testing, we found that the proposed framework prevented the disclosure of the reporter's identity and information and reduced the ITS-Stations' (ITS-Ss) exposure to misbehavior by 67.7% and 79.2% in suburban and highway traffic scenarios, respectively.

Published

2023

31. Enhancing Cybersecurity for LDACS: a Secure and Lightweight Mutual Authentication and Key Agreement Protocol

Author

Khan, Suleman, Singh, Gurjot, Gurtov, Andrei, Maeurer, Nils, Graeupl, Thomas, Schmitt, Corinna, Khan, Suleman, Singh, Gurjot, Gurtov, Andrei, Maeurer, Nils, Graeupl, Thomas, and Schmitt, Corinna

Abstract

The aviation industry faces significant challenges due to rising global air travel demand. Frequency saturation in Air Traffic Management (ATM) leads to communication problems, necessitating the enhancement of traditional systems. The Single European Sky ATM Research (SESAR) initiative, backed by the European Commission, aims to digitize ATM, with the L-band Digital Aeronautical Communications System (LDACS) as a key component. LDACS aims to improve communication, enhance surveillance, and optimize airspace usage for safer, more efficient ATM. Although LDACS is protected against most cyberattacks, a critical security objective, anonymity, is currently overlooked. To strengthen LDACS's security, robust authentication mechanisms, Post-Quantum security, and measures to ensure aircraft anonymity are crucial. Therefore, we propose a comprehensive security framework to enhance LDACS's cybersecurity, focusing on mutual authentication and key agreement. The protocol uses Physical Unclonable Function (PUF) for robust mutual authentication and Bit-flipping Key Encapsulation (BIKE) for secure session key establishment utilizing Post-Quantum Cryptography (PQC). This framework ensures anonymity and secure communication between aircraft and ground stations while minimizing message exchange, latency, and data overhead. An informal security analysis confirms our proposed framework's potential to augment the efficiency and security of ATM operations., Funding Agencies|Trafikverket and Luftfartsverket under Automation Program II; Autonomous Systems and Software Program (WASP)

Published

2023

32. Towards 6G-Enabled Internet of Vehicles: Security and Privacy

Author

Osorio, Diana Pamela Moya, Ahmad, Ijaz, Vega Sanchez, Jose David, Gurtov, Andrei, Scholliers, Johan, Kutila, Matti, Porambage, Pawani, Osorio, Diana Pamela Moya, Ahmad, Ijaz, Vega Sanchez, Jose David, Gurtov, Andrei, Scholliers, Johan, Kutila, Matti, and Porambage, Pawani

Abstract

The conceptualisation of the sixth generation of mobile wireless networks (6G) has already started with some potential disruptive technologies resonating as enablers for driving the emergence of a number of innovative applications. Particularly, 6G will be a prominent supporter for the evolution towards a truly Intelligent Transportation System and the realization of the Smart City concept by fulfilling the limitations of 5G, once vehicular networks are becoming highly dynamic and complex with stringent requirements on ultra-low latency, high reliability, and massive connections. More importantly, providing security and privacy to such critical systems should be a top priority as vulnerabilities can be catastrophic, thus there are huge concerns regarding data collected from sensors, people and their habits. In this paper, we provide a timely deliberation of the role that promissory 6G enabling technologies such as artificial intelligence, network softwarisation, network slicing, blockchain, edge computing, intelligent reflecting surfaces, backscatter communications, terahertz links, visible light communications, physical layer authentication, and cell-free massive multiple-input multiple-output (MIMO) will play on providing the expected level of security and privacy for the Internet of Vehicles.

Published

2022

33. Towards 6G-Enabled Internet of Vehicles: Security and Privacy

Author

Osorio, Diana Pamela Moya, Ahmad, Ijaz, Vega Sanchez, Jose David, Gurtov, Andrei, Scholliers, Johan, Kutila, Matti, Porambage, Pawani, Osorio, Diana Pamela Moya, Ahmad, Ijaz, Vega Sanchez, Jose David, Gurtov, Andrei, Scholliers, Johan, Kutila, Matti, and Porambage, Pawani

Abstract

The conceptualisation of the sixth generation of mobile wireless networks (6G) has already started with some potential disruptive technologies resonating as enablers for driving the emergence of a number of innovative applications. Particularly, 6G will be a prominent supporter for the evolution towards a truly Intelligent Transportation System and the realization of the Smart City concept by fulfilling the limitations of 5G, once vehicular networks are becoming highly dynamic and complex with stringent requirements on ultra-low latency, high reliability, and massive connections. More importantly, providing security and privacy to such critical systems should be a top priority as vulnerabilities can be catastrophic, thus there are huge concerns regarding data collected from sensors, people and their habits. In this paper, we provide a timely deliberation of the role that promissory 6G enabling technologies such as artificial intelligence, network softwarisation, network slicing, blockchain, edge computing, intelligent reflecting surfaces, backscatter communications, terahertz links, visible light communications, physical layer authentication, and cell-free massive multiple-input multiple-output (MIMO) will play on providing the expected level of security and privacy for the Internet of Vehicles.

Published

2022

34. QUIC Throughput and Fairness over Dual Connectivity

Author

Hasselquist, David, Lindstrom, Christoffer, Korzhitskii, Nikita, Carlsson, Niklas, Gurtov, Andrei, Hasselquist, David, Lindstrom, Christoffer, Korzhitskii, Nikita, Carlsson, Niklas, and Gurtov, Andrei

Abstract

Dual Connectivity (DC) is an important lower-layer feature accelerating the transition from 4G to 5G that also is expected to play an important role in standalone 5G radio networks. However, even though the packet reordering introduced by DC can significantly impact the performance of upper-layer protocols, no prior work has studied the impact of DC on QUIC. In this paper, we present the first such performance study. Using a series of throughput and fairness experiments, we show how QUIC is affected by different DC parameters, network conditions, and whether the DC implementation aims to improve throughput or reliability. Results for two QUIC implementations (aioquic, ngtcp2) and two congestion control algorithms (NewReno, CUBIC) are presented under both static and highly time-varying network conditions Our findings provide network operators with insights and understanding into the impacts of splitting QUIC traffic in a DC environment. With reasonably selected DC parameters and increased UDP receive buffers, QUIC over DC performs similarly to TCP over DC and achieves optimal fairness under symmetric link conditions when DC is not used for packet duplication. The insights can help network operators provide modern users with better end-to-end service when deploying DC., Funding Agencies|Swedish Research Council (VR); Wallenberg AI, Autonomous Systems and Software Program (WASP) - Knut and Alice Wallenberg Foundation

Published

2022

35. A user-centric privacy-preserving authentication protocol for IoT-AmI environments

Author

Masud, Mehedi, Singh, Gurjot, Kumar, Pardeep, Gurtov, Andrei, Masud, Mehedi, Singh, Gurjot, Kumar, Pardeep, and Gurtov, Andrei

Abstract

Ambient Intelligence (AmI) in Internet of Things (IoT) has empowered healthcare professionals to monitor, diagnose, and treat patients remotely. Besides, the AmI-IoT has improved patient engagement and gratification as doctors interactions have become more comfortable and efficient. However, the benefits of the AmI-IoT-based healthcare applications are not availed entirely due to the adversarial threats. IoT networks are prone to cyber attacks due to vulnerable wireless mediums and the absentia of lightweight and robust security protocols. This paper introduces computationally-inexpensive privacy-assuring authentication protocol for AmI-IoT healthcare applications. The use of blockchain & fog computing in the protocol guarantees unforgeability, non-repudiation, transparency, low latency, and efficient bandwidth utilization. The protocol uses physically unclonable functions (PUF), biometrics, and Ethereum powered smart contracts to prevent replay, impersonation, and cloning attacks. Results prove the resource efficiency of the protocol as the smart contract incurs very minimal gas and transaction fees. The Scyther results validate the robustness of the proposed protocol against cyber-attacks. The protocol applies lightweight cryptography primitives (Hash, PUF) instead of conventional public-key cryptography and scalar multiplications. Consequently, the proposed protocol is better than centralized infrastructure-based authentication approaches., Funding Agencies|Taif University, Taif, Saudi Arabia [TURSP-2020/10]; CENIIT [17.01]; Excellence Center at Linkping-Lund in IT (ELLIIT)

Published

2022

36. Security of Satellite-Terrestrial Communications : Challenges and Potential Solutions

Author

Ahmad, Ijaz, Suomalainen, Jani, Porambage, Pawani, Gurtov, Andrei, Huusko, Jyrki, Höyhtyä, Marko, Ahmad, Ijaz, Suomalainen, Jani, Porambage, Pawani, Gurtov, Andrei, Huusko, Jyrki, and Höyhtyä, Marko

Abstract

The integration of satellite and terrestrial networks has become inevitable in the next generations of communications networks due to emerging needs of ubiquitous connectivity of remote locations. New and existing services and critical infrastructures in remote locations in sea, on land and in space will be seamlessly connected through a diverse set of terrestrial and non-terrestrial communication technologies. However, the integration of terrestrial and non-terrestrial systems will open up both systems to unique security challenges that can arise due to the migration of security challenges from one to another. Similarly, security challenges can also arise due to the incompatibility of distinct systems or incoherence of security policies. The resulting security implications, thus, can be highly consequential due to the criticality of the infrastructures such as space stations, autonomous ships, and airplanes, for instance. Therefore, in this article we study existing security challenges in satellite-terrestrial communication systems and discuss potential solutions for those challenges. Furthermore, we provide important research directions to encourage future research on existing security gaps., Funding Agencies|CF_Space Project - VTT; AI-NET-ANTILLAS Project - Business Finland; 6G Genesis Flagship Project [318927]; Automation Program II, Trafikverket; EU AiRMOUR Project [101006601]

Published

2022

37. QUIC Throughput and Fairness over Dual Connectivity

Author

Hasselquist, David, Lindstrom, Christoffer, Korzhitskii, Nikita, Carlsson, Niklas, Gurtov, Andrei, Hasselquist, David, Lindstrom, Christoffer, Korzhitskii, Nikita, Carlsson, Niklas, and Gurtov, Andrei

Abstract

Dual Connectivity (DC) is an important lower-layer feature accelerating the transition from 4G to 5G that also is expected to play an important role in standalone 5G radio networks. However, even though the packet reordering introduced by DC can significantly impact the performance of upper-layer protocols, no prior work has studied the impact of DC on QUIC. In this paper, we present the first such performance study. Using a series of throughput and fairness experiments, we show how QUIC is affected by different DC parameters, network conditions, and whether the DC implementation aims to improve throughput or reliability. Results for two QUIC implementations (aioquic, ngtcp2) and two congestion control algorithms (NewReno, CUBIC) are presented under both static and highly time-varying network conditions Our findings provide network operators with insights and understanding into the impacts of splitting QUIC traffic in a DC environment. With reasonably selected DC parameters and increased UDP receive buffers, QUIC over DC performs similarly to TCP over DC and achieves optimal fairness under symmetric link conditions when DC is not used for packet duplication. The insights can help network operators provide modern users with better end-to-end service when deploying DC., Funding Agencies|Swedish Research Council (VR); Wallenberg AI, Autonomous Systems and Software Program (WASP) - Knut and Alice Wallenberg Foundation

Published

2022

38. A user-centric privacy-preserving authentication protocol for IoT-AmI environments

Author

Masud, Mehedi, Singh, Gurjot, Kumar, Pardeep, Gurtov, Andrei, Masud, Mehedi, Singh, Gurjot, Kumar, Pardeep, and Gurtov, Andrei

Abstract

Ambient Intelligence (AmI) in Internet of Things (IoT) has empowered healthcare professionals to monitor, diagnose, and treat patients remotely. Besides, the AmI-IoT has improved patient engagement and gratification as doctors interactions have become more comfortable and efficient. However, the benefits of the AmI-IoT-based healthcare applications are not availed entirely due to the adversarial threats. IoT networks are prone to cyber attacks due to vulnerable wireless mediums and the absentia of lightweight and robust security protocols. This paper introduces computationally-inexpensive privacy-assuring authentication protocol for AmI-IoT healthcare applications. The use of blockchain & fog computing in the protocol guarantees unforgeability, non-repudiation, transparency, low latency, and efficient bandwidth utilization. The protocol uses physically unclonable functions (PUF), biometrics, and Ethereum powered smart contracts to prevent replay, impersonation, and cloning attacks. Results prove the resource efficiency of the protocol as the smart contract incurs very minimal gas and transaction fees. The Scyther results validate the robustness of the proposed protocol against cyber-attacks. The protocol applies lightweight cryptography primitives (Hash, PUF) instead of conventional public-key cryptography and scalar multiplications. Consequently, the proposed protocol is better than centralized infrastructure-based authentication approaches., Funding Agencies|Taif University, Taif, Saudi Arabia [TURSP-2020/10]; CENIIT [17.01]; Excellence Center at Linkping-Lund in IT (ELLIIT)

Published

2022

39. QUIC Throughput and Fairness over Dual Connectivity

Author

Hasselquist, David, Lindstrom, Christoffer, Korzhitskii, Nikita, Carlsson, Niklas, Gurtov, Andrei, Hasselquist, David, Lindstrom, Christoffer, Korzhitskii, Nikita, Carlsson, Niklas, and Gurtov, Andrei

Abstract

Dual Connectivity (DC) is an important lower-layer feature accelerating the transition from 4G to 5G that also is expected to play an important role in standalone 5G radio networks. However, even though the packet reordering introduced by DC can significantly impact the performance of upper-layer protocols, no prior work has studied the impact of DC on QUIC. In this paper, we present the first such performance study. Using a series of throughput and fairness experiments, we show how QUIC is affected by different DC parameters, network conditions, and whether the DC implementation aims to improve throughput or reliability. Results for two QUIC implementations (aioquic, ngtcp2) and two congestion control algorithms (NewReno, CUBIC) are presented under both static and highly time-varying network conditions Our findings provide network operators with insights and understanding into the impacts of splitting QUIC traffic in a DC environment. With reasonably selected DC parameters and increased UDP receive buffers, QUIC over DC performs similarly to TCP over DC and achieves optimal fairness under symmetric link conditions when DC is not used for packet duplication. The insights can help network operators provide modern users with better end-to-end service when deploying DC., Funding Agencies|Swedish Research Council (VR); Wallenberg AI, Autonomous Systems and Software Program (WASP) - Knut and Alice Wallenberg Foundation

Published

2022

40. Security of Satellite-Terrestrial Communications : Challenges and Potential Solutions

Author

Ahmad, Ijaz, Suomalainen, Jani, Porambage, Pawani, Gurtov, Andrei, Huusko, Jyrki, Höyhtyä, Marko, Ahmad, Ijaz, Suomalainen, Jani, Porambage, Pawani, Gurtov, Andrei, Huusko, Jyrki, and Höyhtyä, Marko

Abstract

The integration of satellite and terrestrial networks has become inevitable in the next generations of communications networks due to emerging needs of ubiquitous connectivity of remote locations. New and existing services and critical infrastructures in remote locations in sea, on land and in space will be seamlessly connected through a diverse set of terrestrial and non-terrestrial communication technologies. However, the integration of terrestrial and non-terrestrial systems will open up both systems to unique security challenges that can arise due to the migration of security challenges from one to another. Similarly, security challenges can also arise due to the incompatibility of distinct systems or incoherence of security policies. The resulting security implications, thus, can be highly consequential due to the criticality of the infrastructures such as space stations, autonomous ships, and airplanes, for instance. Therefore, in this article we study existing security challenges in satellite-terrestrial communication systems and discuss potential solutions for those challenges. Furthermore, we provide important research directions to encourage future research on existing security gaps., Funding Agencies|CF_Space Project - VTT; AI-NET-ANTILLAS Project - Business Finland; 6G Genesis Flagship Project [318927]; Automation Program II, Trafikverket; EU AiRMOUR Project [101006601]

Published

2022

41. A user-centric privacy-preserving authentication protocol for IoT-AmI environments

Author

Masud, Mehedi, Singh, Gurjot, Kumar, Pardeep, Gurtov, Andrei, Masud, Mehedi, Singh, Gurjot, Kumar, Pardeep, and Gurtov, Andrei

Abstract

Ambient Intelligence (AmI) in Internet of Things (IoT) has empowered healthcare professionals to monitor, diagnose, and treat patients remotely. Besides, the AmI-IoT has improved patient engagement and gratification as doctors interactions have become more comfortable and efficient. However, the benefits of the AmI-IoT-based healthcare applications are not availed entirely due to the adversarial threats. IoT networks are prone to cyber attacks due to vulnerable wireless mediums and the absentia of lightweight and robust security protocols. This paper introduces computationally-inexpensive privacy-assuring authentication protocol for AmI-IoT healthcare applications. The use of blockchain & fog computing in the protocol guarantees unforgeability, non-repudiation, transparency, low latency, and efficient bandwidth utilization. The protocol uses physically unclonable functions (PUF), biometrics, and Ethereum powered smart contracts to prevent replay, impersonation, and cloning attacks. Results prove the resource efficiency of the protocol as the smart contract incurs very minimal gas and transaction fees. The Scyther results validate the robustness of the proposed protocol against cyber-attacks. The protocol applies lightweight cryptography primitives (Hash, PUF) instead of conventional public-key cryptography and scalar multiplications. Consequently, the proposed protocol is better than centralized infrastructure-based authentication approaches., Funding Agencies|Taif University, Taif, Saudi Arabia [TURSP-2020/10]; CENIIT [17.01]; Excellence Center at Linkping-Lund in IT (ELLIIT)

Published

2022

42. Security of Satellite-Terrestrial Communications : Challenges and Potential Solutions

Author

Ahmad, Ijaz, Suomalainen, Jani, Porambage, Pawani, Gurtov, Andrei, Huusko, Jyrki, Höyhtyä, Marko, Ahmad, Ijaz, Suomalainen, Jani, Porambage, Pawani, Gurtov, Andrei, Huusko, Jyrki, and Höyhtyä, Marko

Abstract

The integration of satellite and terrestrial networks has become inevitable in the next generations of communications networks due to emerging needs of ubiquitous connectivity of remote locations. New and existing services and critical infrastructures in remote locations in sea, on land and in space will be seamlessly connected through a diverse set of terrestrial and non-terrestrial communication technologies. However, the integration of terrestrial and non-terrestrial systems will open up both systems to unique security challenges that can arise due to the migration of security challenges from one to another. Similarly, security challenges can also arise due to the incompatibility of distinct systems or incoherence of security policies. The resulting security implications, thus, can be highly consequential due to the criticality of the infrastructures such as space stations, autonomous ships, and airplanes, for instance. Therefore, in this article we study existing security challenges in satellite-terrestrial communication systems and discuss potential solutions for those challenges. Furthermore, we provide important research directions to encourage future research on existing security gaps., Funding Agencies|CF_Space Project - VTT; AI-NET-ANTILLAS Project - Business Finland; 6G Genesis Flagship Project [318927]; Automation Program II, Trafikverket; EU AiRMOUR Project [101006601]

Published

2022

43. Towards 6G-Enabled Internet of Vehicles: Security and Privacy

Author

Osorio, Diana Pamela Moya, Ahmad, Ijaz, Vega Sanchez, Jose David, Gurtov, Andrei, Scholliers, Johan, Kutila, Matti, Porambage, Pawani, Osorio, Diana Pamela Moya, Ahmad, Ijaz, Vega Sanchez, Jose David, Gurtov, Andrei, Scholliers, Johan, Kutila, Matti, and Porambage, Pawani

Abstract

The conceptualisation of the sixth generation of mobile wireless networks (6G) has already started with some potential disruptive technologies resonating as enablers for driving the emergence of a number of innovative applications. Particularly, 6G will be a prominent supporter for the evolution towards a truly Intelligent Transportation System and the realization of the Smart City concept by fulfilling the limitations of 5G, once vehicular networks are becoming highly dynamic and complex with stringent requirements on ultra-low latency, high reliability, and massive connections. More importantly, providing security and privacy to such critical systems should be a top priority as vulnerabilities can be catastrophic, thus there are huge concerns regarding data collected from sensors, people and their habits. In this paper, we provide a timely deliberation of the role that promissory 6G enabling technologies such as artificial intelligence, network softwarisation, network slicing, blockchain, edge computing, intelligent reflecting surfaces, backscatter communications, terahertz links, visible light communications, physical layer authentication, and cell-free massive multiple-input multiple-output (MIMO) will play on providing the expected level of security and privacy for the Internet of Vehicles.

Published

2022

44. QUIC Throughput and Fairness over Dual Connectivity

Author

Hasselquist, David, Lindstrom, Christoffer, Korzhitskii, Nikita, Carlsson, Niklas, Gurtov, Andrei, Hasselquist, David, Lindstrom, Christoffer, Korzhitskii, Nikita, Carlsson, Niklas, and Gurtov, Andrei

Abstract

Dual Connectivity (DC) is an important lower-layer feature accelerating the transition from 4G to 5G that also is expected to play an important role in standalone 5G radio networks. However, even though the packet reordering introduced by DC can significantly impact the performance of upper-layer protocols, no prior work has studied the impact of DC on QUIC. In this paper, we present the first such performance study. Using a series of throughput and fairness experiments, we show how QUIC is affected by different DC parameters, network conditions, and whether the DC implementation aims to improve throughput or reliability. Results for two QUIC implementations (aioquic, ngtcp2) and two congestion control algorithms (NewReno, CUBIC) are presented under both static and highly time-varying network conditions Our findings provide network operators with insights and understanding into the impacts of splitting QUIC traffic in a DC environment. With reasonably selected DC parameters and increased UDP receive buffers, QUIC over DC performs similarly to TCP over DC and achieves optimal fairness under symmetric link conditions when DC is not used for packet duplication. The insights can help network operators provide modern users with better end-to-end service when deploying DC., Funding Agencies|Swedish Research Council (VR); Wallenberg AI, Autonomous Systems and Software Program (WASP) - Knut and Alice Wallenberg Foundation

Published

2022

45. RFC 9153 : Drone Remote Identification Protocol (DRIP) Requirements and Terminology

Author

W. Card, Stuart, Wiethuechter, Adam, Moskowitz, Robert, Gurtov, Andrei, W. Card, Stuart, Wiethuechter, Adam, Moskowitz, Robert, and Gurtov, Andrei

Abstract

This document defines terminology and requirements for solutions produced by the Drone Remote Identification Protocol (DRIP) Working Group. These solutions will support Unmanned Aircraft System Remote Identification and tracking (UAS RID) for security, safety, and other purposes (e.g., initiation of identity-based network sessions supporting UAS applications). DRIP will facilitate the use of existing Internet resources to support RID and to enable enhanced related services, and it will enable online and offline verification that RID information is trustworthy.

Published

2022

46. POSTER: FL-Guard: A Federated Learning Based Ground-AirSecure Communication Model For Future Aviation Network

Author

Khan, Suleman, Kumar, Pardeep, An, Breaken, Gurtov, Andrei, Khan, Suleman, Kumar, Pardeep, An, Breaken, and Gurtov, Andrei

Abstract

L-band Digital Aeronautical Communication System (LDACS) is a newly proposed modern state-of-the-art system that will enable communication, navigation, and surveillance in the future aviation network. The current LDACS system does not prevent and detect intrusion within the LDACS domain. Therefore, it may suffer from various cyber-attacks, including spoofing, injection and many more attacks. To the best of our knowledge, this paper proposes the first federated learning-based attack detection model, called FL-Guard, for LDACS. Our proposed model exploits a federated learning environment and uses a deep neural network (DNN) to detect possible attacks on LDACS-based Air-Ground communication. FL-Guardis was simulated on a network of four aeroplanes, and the preliminary results show that the proposed model can detect attacks with 89 % accuracy.

Published

2022

47. A Federated Learning Based Privacy-Preserving Intrusion Detection System For The Cpdlc

Author

Khan, Suleman, Singh Gaba, Gurjot, Gurtov, Andrei, Khan, Suleman, Singh Gaba, Gurjot, and Gurtov, Andrei

Abstract

The safety of the passengers and goods in airplanes depends upon a number of combined factors. An airplane's condition and the pilot's experience are pivotal, but another very crucial element is the synchronization among the pilots and the air traffic controller (ATC). The communication link between the two carries many uncertain aspects. The aviation sector often tends to give more priority to safety rather than cybersecurity. Although the controller-pilot data communication link (CPDLC) system has been proposed for consistent and reliable communication recently, it has some serious drawbacks. In this paper, we highlight the shortcomings of the CPDLC system from a cyber security perspective. We propose a federated learning-based privacy-preserving intrusion detection system (IDS) to protect the CPDLC from uplink and downlink cyber attacks. To ensure a realistic and viable solution, we created our own training dataset by eavesdropping on the air-ground communication at a site near Arlanda airport, Sweden. The anomaly detection model constructed through federated learning has achieved higher accuracy, precision, recall and F1 score as compared to the centrally and locally trained models, enabling higher security. Due to the lower training loss and time, the proposed approach is highly suitable for the sensitive aviation communications., Trafikverket and Luftfartsverket under Automation Program II

Published

2022

48. A user-centric privacy-preserving authentication protocol for IoT-AmI environments

Author

Masud, Mehedi, Singh, Gurjot, Kumar, Pardeep, Gurtov, Andrei, Masud, Mehedi, Singh, Gurjot, Kumar, Pardeep, and Gurtov, Andrei

Abstract

Ambient Intelligence (AmI) in Internet of Things (IoT) has empowered healthcare professionals to monitor, diagnose, and treat patients remotely. Besides, the AmI-IoT has improved patient engagement and gratification as doctors interactions have become more comfortable and efficient. However, the benefits of the AmI-IoT-based healthcare applications are not availed entirely due to the adversarial threats. IoT networks are prone to cyber attacks due to vulnerable wireless mediums and the absentia of lightweight and robust security protocols. This paper introduces computationally-inexpensive privacy-assuring authentication protocol for AmI-IoT healthcare applications. The use of blockchain & fog computing in the protocol guarantees unforgeability, non-repudiation, transparency, low latency, and efficient bandwidth utilization. The protocol uses physically unclonable functions (PUF), biometrics, and Ethereum powered smart contracts to prevent replay, impersonation, and cloning attacks. Results prove the resource efficiency of the protocol as the smart contract incurs very minimal gas and transaction fees. The Scyther results validate the robustness of the proposed protocol against cyber-attacks. The protocol applies lightweight cryptography primitives (Hash, PUF) instead of conventional public-key cryptography and scalar multiplications. Consequently, the proposed protocol is better than centralized infrastructure-based authentication approaches., Funding Agencies|Taif University, Taif, Saudi Arabia [TURSP-2020/10]; CENIIT [17.01]; Excellence Center at Linkping-Lund in IT (ELLIIT)

Published

2022

49. QUIC Throughput and Fairness over Dual Connectivity

Author

Hasselquist, David, Lindstrom, Christoffer, Korzhitskii, Nikita, Carlsson, Niklas, Gurtov, Andrei, Hasselquist, David, Lindstrom, Christoffer, Korzhitskii, Nikita, Carlsson, Niklas, and Gurtov, Andrei

Abstract

Dual Connectivity (DC) is an important lower-layer feature accelerating the transition from 4G to 5G that also is expected to play an important role in standalone 5G radio networks. However, even though the packet reordering introduced by DC can significantly impact the performance of upper-layer protocols, no prior work has studied the impact of DC on QUIC. In this paper, we present the first such performance study. Using a series of throughput and fairness experiments, we show how QUIC is affected by different DC parameters, network conditions, and whether the DC implementation aims to improve throughput or reliability. Results for two QUIC implementations (aioquic, ngtcp2) and two congestion control algorithms (NewReno, CUBIC) are presented under both static and highly time-varying network conditions Our findings provide network operators with insights and understanding into the impacts of splitting QUIC traffic in a DC environment. With reasonably selected DC parameters and increased UDP receive buffers, QUIC over DC performs similarly to TCP over DC and achieves optimal fairness under symmetric link conditions when DC is not used for packet duplication. The insights can help network operators provide modern users with better end-to-end service when deploying DC., Funding Agencies|Swedish Research Council (VR); Wallenberg AI, Autonomous Systems and Software Program (WASP) - Knut and Alice Wallenberg Foundation

Published

2022

50. A user-centric privacy-preserving authentication protocol for IoT-AmI environments

Author

Masud, Mehedi, Singh, Gurjot, Kumar, Pardeep, Gurtov, Andrei, Masud, Mehedi, Singh, Gurjot, Kumar, Pardeep, and Gurtov, Andrei

Abstract

Ambient Intelligence (AmI) in Internet of Things (IoT) has empowered healthcare professionals to monitor, diagnose, and treat patients remotely. Besides, the AmI-IoT has improved patient engagement and gratification as doctors interactions have become more comfortable and efficient. However, the benefits of the AmI-IoT-based healthcare applications are not availed entirely due to the adversarial threats. IoT networks are prone to cyber attacks due to vulnerable wireless mediums and the absentia of lightweight and robust security protocols. This paper introduces computationally-inexpensive privacy-assuring authentication protocol for AmI-IoT healthcare applications. The use of blockchain & fog computing in the protocol guarantees unforgeability, non-repudiation, transparency, low latency, and efficient bandwidth utilization. The protocol uses physically unclonable functions (PUF), biometrics, and Ethereum powered smart contracts to prevent replay, impersonation, and cloning attacks. Results prove the resource efficiency of the protocol as the smart contract incurs very minimal gas and transaction fees. The Scyther results validate the robustness of the proposed protocol against cyber-attacks. The protocol applies lightweight cryptography primitives (Hash, PUF) instead of conventional public-key cryptography and scalar multiplications. Consequently, the proposed protocol is better than centralized infrastructure-based authentication approaches., Funding Agencies|Taif University, Taif, Saudi Arabia [TURSP-2020/10]; CENIIT [17.01]; Excellence Center at Linkping-Lund in IT (ELLIIT)

Published

2022