Characteristic-based security analysis of personal networks

Proceedings of the 2014 ACM International Joint Conference on Pervasive and Ubiquitous Computing: Adjunct Publication Pub Date : 2014-09-13 DOI:10.1145/2638728.2641549

Andrew J. Paverd, F. El-Moussa, I. Brown

{"title":"Characteristic-based security analysis of personal networks","authors":"Andrew J. Paverd, F. El-Moussa, I. Brown","doi":"10.1145/2638728.2641549","DOIUrl":null,"url":null,"abstract":"The Personal Network (PN) is a logical network of interconnected components used by an individual. It encompasses the home network, the Personal Area Network (PAN), and the Vehicular Area Network (VAN) and includes cloud-based services. Previous security analyses, including ITU-T Recommendation X.1111, have focussed on the individual physical networks rather than the PN itself. By consolidating and structuring previous work, we propose an updated and enhanced security analysis for the PN. In our characteristic-based approach we identify the primary characteristics of the PN and its components and use these to develop an abstract PN asset model. From this, we derive the main attacker objectives and a list of attack vectors through which these could be achieved. We propose a mapping between the attack vectors and the PN component characteristics that can be used to determine the specific attacks to which a particular component is vulnerable. In this paper, we present a summary of this analysis and discuss its usage.","PeriodicalId":20496,"journal":{"name":"Proceedings of the 2014 ACM International Joint Conference on Pervasive and Ubiquitous Computing: Adjunct Publication","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2014-09-13","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 2014 ACM International Joint Conference on Pervasive and Ubiquitous Computing: Adjunct Publication","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/2638728.2641549","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

Abstract

The Personal Network (PN) is a logical network of interconnected components used by an individual. It encompasses the home network, the Personal Area Network (PAN), and the Vehicular Area Network (VAN) and includes cloud-based services. Previous security analyses, including ITU-T Recommendation X.1111, have focussed on the individual physical networks rather than the PN itself. By consolidating and structuring previous work, we propose an updated and enhanced security analysis for the PN. In our characteristic-based approach we identify the primary characteristics of the PN and its components and use these to develop an abstract PN asset model. From this, we derive the main attacker objectives and a list of attack vectors through which these could be achieved. We propose a mapping between the attack vectors and the PN component characteristics that can be used to determine the specific attacks to which a particular component is vulnerable. In this paper, we present a summary of this analysis and discuss its usage.

查看原文本刊更多论文

基于特征的个人网络安全分析

个人网络(PN)是由个人使用的相互连接的组件组成的逻辑网络。它包括家庭网络、个人局域网(PAN)和车辆局域网(VAN)，并包括基于云的服务。以前的安全分析，包括ITU-T建议X.1111，关注的是单个物理网络，而不是PN本身。通过整合和构建以前的工作，我们提出了一个更新和增强的PN安全性分析。在我们基于特征的方法中，我们确定了PN及其组成部分的主要特征，并使用这些特征来开发抽象的PN资产模型。由此，我们得出了攻击者的主要目标和攻击向量列表，通过这些攻击向量可以实现这些目标。我们提出了攻击向量和PN组件特征之间的映射，可用于确定特定组件易受攻击的特定攻击。本文对这一分析进行了总结，并对其应用进行了讨论。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings of the 2014 ACM International Joint Conference on Pervasive and Ubiquitous Computing: Adjunct Publication

自引率

0.00%

发文量