Un événement

GDR Sécurité Informatique Région Hauts de France

organisé par 

Université de Lille CRIStAL
Toward Context-aware Security for Individual Information Systems
Van-Tien Nguyen  1, 2, 3, *@  , Guillaume Doyen  3, *@  , Renzo Navas  3, *@  , Eric Alata  1, *@  , Daniela Dragomirescu  2, *@  
1 : Équipe Tolérance aux fautes et Sûreté de Fonctionnement informatique
Laboratoire d'Analyse et d'Architecture des systèmes
2 : Équipe MIcro et Nanosystèmes pour les Communications sans fil
Laboratoire d'Analyse et d'Architecture des systèmes
3 : Self-prOtecting The futurE inteRNet
IMT Atlantique, RÉSEAUX, TÉLÉCOMMUNICATION ET SERVICES
* : Auteur correspondant

For a few decades, the multiplicity of Internet services humans consume are increasing, leading people to actually manage their own Individual-oriented Information System (IIS), whose server sides are spread over the internet and operated by different service providers. The security of such systems is essentially service-centric while the user is the focal point of all their usage. If some user-centric solutions exist to date, they are either (1) restricted to some particular services, ignoring a global user activity, (2) intrusive, by requiring a complete instrumentation of user-side terminals, or (3) too specific by requiring the cooperation between the client interface and the server side. To cope with these limitations, we propose to develop a novel approach which consists in monitoring encrypted network flows issued by a user terminal and correlating this network activity with some external contextual information related to the user activity. Due to the lack of existing comprehensive datasets, our ongoing work consists in designing a long-term measurement campaign with real users using smartphones augmented with body sensors while facing security breaches such as malware activity or smartphone theft.



  • Poster
Personnes connectées : 2 Vie privée
Chargement...