http://hdl.handle.net/10016/5552 2013-05-18T10:54:09Z http://hdl.handle.net/10016/14479 Title: Trends, problems and misconceptions on testing Network Intrusion Detection Systems effectiveness Author(s): Orfila, Agustín; Estévez-Tapiador, Juan M.; Ribagorda, Arturo Abstract: Network Intrusion Detection Systems (NIDS) are hardware or software systems that are used to identify and respond to intrusions in computer networks. An intrusion is a deliberate or accidental unauthorized access to or activity against any of the elements of the network. Evaluation of how effective different intrusion detection technologies are becomes mandatory, in order to know which is the one that better fits in a particular scenario. Nevertheless this is not an easy task. This chapter reviews the main problems regarding testing effectiveness: the absence of standard test methodologies and metrics, the drawbacks of current datasets, the different requirements for testing different technologies, etc. These conditions make evaluation difficult not only for the industry but also for researchers. Scientific proposals are often näively compared. We focus on providing evidence of this situation by means of supporting examples. Some guidelines for the future are finally proposed. 2008-12-31T23:00:00Z http://hdl.handle.net/10016/14434 Title: L–PEP: a logic to reason about privacy–enhancing cryptography protocols Author(s): Alcaide, Almudena; Abdallah, Ali; González-Tablas, Ana Isabel; Fuentes, José María de Abstract: In recent years, many cryptography protocols have been designed, for many different scenarios, with the purpose of preserving security of communications as well as privacy and anonymity of participant entities. In general, every proposed solution has possed a real challenge to the existing formal methods of protocol analysis and verification. The main goal of this work is the proposal of a logic to reason about privacy-enhancing monotonic and non-monotonic cryptography protocols. The new logic will be called L-PEP and it extends the existing Rubin's logic of beliefs. Description: Proceedings of: 5th International Workshop, DPM 2010 and 3rd International Workshop, SETOP 2010, Athens, Greece, September 23, 2010. 2010-12-31T23:00:00Z http://hdl.handle.net/10016/14431 Title: Nature-inspired synthesis of rational protocols Author(s): Alcaide, Almudena; Estévez-Tapiador, Juan M.; Hernández-Castro, Julio C.; Ribagorda, Arturo Abstract: Rational cryptography is an emerging field which combines aspects traditionally related to security with concepts described in economic theoretical frameworks. For example, it applies game theory concepts to address security problems arising when executing cryptographic protocols. The aim is to replace the assumption of a worst-case attacker by the notion of rational agents that try to maximize their payoffs. In this work, we define a formal framework and a meta--heuristic technique for the automated synthesis of multi-party rational exchange security (M-RES) protocols. We provide experimental results for a simple scenario where a 3-party rational exchange protocol is automatically designed. Description: Proceedings of: 10th International Conference on Parallel Problem Solving from Nature (PPSN 2008), Dortmund, Germany, September 13-17, 2008. 2007-12-31T23:00:00Z http://hdl.handle.net/10016/13138 Title: Towards a privacy-respectful telematic verification system for vehicle & driver authorizations Author(s): González-Tablas, Ana Isabel; Alcaide, Almudena; Suárez-Tangil, Guillermo; Fuentes, José María de; Barroso-Pérez, Israel Abstract: The use of ubiquitous technologies to implement a telematic on-the-road verification of driver and vehicle authorizations would provide significant benefits regarding road safety, economic costs and convenience. Privacy-aware digital credentials would enable such a service although some challenges exist. The goal of this on-going work is to address these challenges. The first contribution herein presented is an enhanced data model of driver and vehicle authorizations. Secondly, we provide an analysis of existing privacy-aware digital credential systems that may support the implementation of the system. Description: Poster of: Eighth Annual International Conference on Mobile and Ubiquitous Systems: Computing, Networking and Services (MobiQuitous 2011), Copenhagen, Denmark, 2011 2010-12-31T23:00:00Z