direkt zum Inhalt springen

direkt zum Hauptnavigationsmenü

Logo der TU Berlin

SE Communication & Security

Modul: Communication & Security (BINF-KT-SE2.S10)
Semester: Wintersemester 2011/12
Art: SE (2 SWS / 3 LP)
LV-Nr.: 0435 L 763
Veranstalter: Dr. Seyit Ahmet Camtepe,
Dr.-Ing. Karsten Bsufka
Dr.-Ing. Aubrey-Derrick Schmidt
Dr. Fikret Sivrikaya
Ort und Zeit: Themenvergabe am 19.10., 18-19 Uhr im TEL 1414

Themen

Bachelor's degree seminer with following topics from Communication and  Security fields:

Securing Android-based Devices


Language: English / German

Trainer: Dr.-Ing. Aubrey-Derrick Schmidt, Leonid Batyuk

Smartphones become more and more popular. As the capabilities (cpu, memory, communication, sensing) of these devices increase, they provide mobile computing power that can be used in variety of critical applications. Resulting security and privacy issues become even more series with android open-platform which permits very short innovation cycle for emerge of new smartphone applications without any proper security measures. Our aim in this seminar topic is to identify weaknesses in the Google Android platform and examine appropriate security architectures that can protect against such vulnerabilities.

Secure Agent Communication

Language: English / German

Trainer: Dennis Grunewald

In Multi-Agent Systems (MAS), software agents communicate with each other and also exchange sensitive data that needs protection. The intention is to hide the data from third parties, i.e. agents that are not directly involved in the communication. Communication comes in basically two forms: (1) between agents on the same platform (e.g. the same host) and (2) between agents on different platforms. While traditional approaches like using simple TLS/SSL communication might be sufficient for stationary agents, mobile agents, which are able to migrate between different platforms, increase the requirements for secure communication. The student reads miscellaneous papers on this topic and sums up the different approaches in a survey paper.

Simulation in Security Research

Language: English / German

Trainer: Dr.-Ing. Karsten Bsufka, Joel Chinnow

Security research, especially intrusion detection, require data for developing and evaluating approaches. This data is either collected in static data sets, generated in test beds or captured in real IT environments. All of these approaches have advantages and disadvantages, one alternative approach is the use of simulation for creating the required data. The aim of this seminar topic is to create an overview of used tools and conducted simulation experiments and to identify the advantages and disadvantages of using simulation.

A Quantitative Methodology for Online IT Risk Management

Language: English / German

Trainer: Stephan Schmidt

Risk management and business process management play an increasingly vital role in contemporary corporate infrastructures due to a multitude of operational, technical and regulatory reasons. Increasingly complex interdependencies as well as flexibility demands in rapidly changing networked environments make this effect even more pronounced for companies which are strongly based in the IT domain. Current risk management methodologies are often static in nature and can not meet the demands of operational practices.

We focus on a quantitative framework for organizational IT risk management. The underlying risk management process splits into three phases. The risk assessment phase quantifies asset values at a high level and threats at a low level of abstraction. Augmented by interdependency analysis rooted in graph theory, these values are correlated at the hardware level where tactical risk mitigation strategies are available. Theoretically optimal and scalable risk mitigation strategies based on game and control theory are applied in risk mitigation phase which minimize the total risk over a given finite time horizon utilizing the given security budget. The risk transfer phase includes strategies for redesigning corporate IT infrastructure based on high-risk interdependencies.

Non-Intrusive User Behavior Analysis Using Computerized Systems

Language: English / German

Trainer: Arik Messerman

There are different ways to authenticate humans to a system. An authentication process consists of the validation of the authorization by any subset of three factors: (i) something you know (password), something you have (smartcard), and something you are (biometrics). Besides classical attacks on password and risk that smartcards can be stolen, biometric have their own disadvantages such as requirement of expensive devices, risk of stolen bio-templates. Moreover existing approaches provide authentication process usually performed only once initially. Non-intrusive and continuous monitoring of user activities emerges as promising solution in hardening authentication process.

Identity Management Mechanisms for Smart Homes

Language: Deutsch / English

Trainer: Tarik Mustafic

Recent developments in Ambient Assisted Living (AAL) technologies suggest that in the near future home environment will be surrounded with networked intelligent devices and sensors bringing more comfort and safety. Technical requirements for implementation of innovative services in home environment are largely met, but these services have to be supported by smart and intelligent identity management solutions. Our aim is to investigate smart identity management mechanisms for smart homes that can be applied for private use.

Security in Smart Grids

Language: Deutsch / English

Trainer: Joel Chinnow

Smart Grid is a key technology for integrating distributed energy resources to meet the increasing energy demands of our society. Thereby, two concepts gained attention: Virtual power plants and smart metering. But, the required communication technology introduces number of security and privacy concerns. Therefore, the protocols have to be analyzed with regard to confidentiality, integrity and availability. Example protocols which are standardized or under standardization process are: Multi Utility Communication (MUC), Smart Message Language (SML) or DIN 43863-4.

Analysis of Multi-step Internet Attacks

Language: English / Deutsch

Trainer: Dr. Seyit Ahmet Camtepe

Due to increased complexity, scale and functionality of Information and telecommunication (IT) infrastructures, every day new exploits and vulnerabilities are discovered. These vulnerabilities are most of the time used by malicious people to penetrate these IT infrastructures for mainly disrupting business or stealing intellectual properties. Our focus is identifying possible attack vectors reflecting likely multi-step attack vectors within an IT infrastructure by using device vulnerabilities and possible exploits listed in public vulnerability and threat databases (NVD, CVE, CPE, CWE, CVSS, etc.) Attack vectors simply provides ordered list of which vulnerabilities should be exploited where and when so that target resource can be compromised. The aim of this seminar topic is to understand existing works in attack modeling and attack analysis, and identify challenges towards realizing automated analysis solutions.

 

Topics on Communications (Language for all seminar reports: English)

 

Survey of the disadvantages of the Internet Protocol; Why the "Future Internet"?

Trainer: Juri Glass

The Future Internet (FI) is a research area dedicated to evolve or revolutionize the existing Internet. The problem FI groups want to solve, is that most of the fundamentals of today's Internet was designed years back, without the anticipation for it's huge success. IP remained consistent throughout the evolution of the Internet, either IPv4 or IPv6.

Objective of this seminar work is to study and investigate the issues associated with IP, as seen from today's perspective. Obviously, the claims within the study should be based on recent FI research papers.

Mobility Management in User-Centric Networks

Trainer: Sebastian Peters

There are various solutions for horizontal and vertical handovers among heterogeneous wireless access technologies. However, they rely mostly on fixed infrastructures. Within the user-centric networking vision, where users share connectivity and network resources and may act as micro-opeartors, traditional network elements are replaced with much more dynamic counterparts. Hence, centralized approaches to mobility management do not fit. This seminar work will focus on te investigation of existing work on distributed/decentralized or peer-to-peer mobility management approaches that can form a basis for mobility support in user-centric networks.

Survey and the taxonomy of learning techniques and strategies

Trainer: Mürsel Yildiz

Future smart communication systems will be characterized by autonomous entities in the network acting as decision making engines (DMEs) for network operation and management. Considering the adaptation issues for new network environments, unpredictable security threats or incompletely observable environment throughout the network, DMEs are supposed to come up with robust solutions not only by performing pre-defined complete and correct algorithms, but also propose an optimized policy and decide under uncertainty. One of the essential blocks of a robust and autonomous DME is learning engines of which task is to develop new actions by reinforcement and other machine learning strategies. In this project, a taxonomy of learning techniques and strategies in the literature is going to be done and a reasonable / theoretical block diagram and flow chart of a robust learning engine will be studied. An example use-case scenario will be examined considering learning engine block diagram providing logical technical suggestions.

Publish Subscribe for the Future Internet

Trainer: Baris Karatas

The information-centric usage of today's Internet has changed our daily lives with regard to content generation, consumption and communication patterns. We can observe that a large share of the Internet's usage today is essentially publish/subscribe (PubSub) in nature. For Example:

  • Dissemination of software updates
  • Delivery of breaking news announcements
  • General media broadcasting (e.g. audio/video)
  • Periodic and aperiodic messaging (e.g. IM, Twitter)

While PubSub systems have been widely studied and employed for specific event-dissemination applications, the host-centric nature of the Internet doesn't support PubSub patterns inherently. For this reason ongoing research investigates the suitability and benefits of moving the PubSub layer downwards into the networking stack to form the future internet. This challenging objective where naming, routing, forwarding and addressing get fresh semantics, should be surveyed during the course of the seminar. The main focus should rely on publications from the EU funded PSIRP project.

Ansprechpersonen

Fikret.Sivrikayadai-labor.de

Ahmet.Camtepedai-labor.de