Download Enhancing the Security and Capacity of Collaborative Software for

Survey
yes no Was this document useful for you?
   Thank you for your participation!

* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project

page
1
page
2
page
3
page
4
page
5
Document related concepts

Quantum key distribution wikipedia , lookup

Computer and network surveillance wikipedia , lookup

Deep packet inspection wikipedia , lookup

Next-Generation Secure Computing Base wikipedia , lookup

Wireless security wikipedia , lookup

Airport security wikipedia , lookup

Cracking of wireless networks wikipedia , lookup

Distributed firewall wikipedia , lookup

Mobile security wikipedia , lookup

Diffie–Hellman key exchange wikipedia , lookup

Security printing wikipedia , lookup

Cyber-security regulation wikipedia , lookup

Post-quantum cryptography wikipedia , lookup

Computer security wikipedia , lookup

Security-focused operating system wikipedia , lookup

Secure multi-party computation wikipedia , lookup

Transcript 
Enhancing the Security, Effectiveness, Capacity of Collaborative Software for First
Responder
A proposal for NISSC Grants related to Homeland Security and Homeland Defense
We are submitting a proposal to NISSC on “Enhancing the security and efficient of
groupware for first responder”. The idea is to design a framework for enhancing the
security, effectness, and capacity of the collaborative software tools for first responders
and large task forces. An application of such framework will be enhancing some existing
instant messenger and decision support system.
For security, we propose to integrate the security model such Bell LaPadula Model so
that only persons with proper security clearance or category can see the documents or
information distributed.
The ability for first responders to utilize secure and efficient groupware will be
significantly determined through interactions between environmental conditions (e.g.,
hazard factors), social psychological variables (e.g., perceived group norms relating to
the utility of this technology), and psychological factors (e.g., perceived mastery over
using the technology). Specifically, this proposal will investigate the perceived norms
and capability for utilizing the new technology and how this influences security factors
and ability to use the groupware. This will be tested under non-stressed and stressed
conditions.
Groupware such IM are limited to small number of participants. To increase the
capability and efficiency of the group communication, we propose to research group
dynamic in the usage of groupware, apply the state of art behavior study results, and
build middleware to filter, authenticate, aggregate, and distribute vast of information
among a large group of participants. For demonstrating the research results, we propose
to enhance the popular groupware such as instant messengers using the developed
framework and integrate with the group dynamic research results.
Secure Multicasting[1]
Multicasting is a way to send messages to a group of recipients. This is in contrast with
unicast, which is used to transmit a message to one recipient, and broadcast, which is
used to transmit the message to all nodes in the network. Multicast has many
applications, for instance, in audio and video conferencing, computer supported cooperative work (CSCW), distributed databases, video and audio distribution and finding
network services. The key management for secure multicast requires quite a lot more
traffic compared to the key management for unicast. First, the common group key should
be distributed to each group member and all the senders. If the traffic should also be
authenticated, each sender has to distribute his or her authentication key to all of the
group members.
Reliable Multicast Protocol [2] is a reliable multicast transport protocol offering a variety
of services of different quality. It is used in the reduction of multicast retransmission and
congestion avoidance. Figure 1 shows a layered architecture of RMTP.
The RMP makes use of the IP Security Architecture [3].
Figure 1 Communication model in the TCP/IP stack
Since the RMTP Executes controls over Internet protocols (UDP/IP), RMP makes use of
the IP Security Architecture.
Flow Control and Design
RMP does not require a special multicast server or a group manager. It is based on a
token rotating scheme and a mix of negative and positive acknowledgements. The token
rotates in the whole recipient group and the token owner acknowledges all the packets it
has received while it holds the token. The token passes and ACKs are sent usually as
multicasts. When other group members discover that they are missing some packets, they
can send NACKs to the original sender.
Each member in the multicast group keeps the access control list, a list of members and
possible external senders. An external node can send messages to the multicast group
only by sending them via a member of the RMP token ring. A join request can be sent to
any of the group members.
Figure 2 Communication procedures in the RMTP
The multi-rounds selective retransmission scheme is used for retransmitting only those
packets that have been lost using a token ring scheme. The sequence is as follows:
- A server sends all data packets.
- Receivers detect packet loss
- One ACK/NACK per each receiver for a round of transmission
- Repeat retransmission until completion or meeting some conditions.
Figure 3 Retransmission scheme
Goal
We plan to develop a group communication tool using the Jabber[4] XML protocol.
Jabber is an open XML protocol developed for the real-time exchange of messages and
presence over the Internet. Some of the advantages of using Jabber are :
 It is open source and thus not bound to any proprietary source
 It is extensible
 It is decentralized with people being able to run their own Jabber servers
 Security has been incorporated.
References
[1] http://www.tml.hut.fi/Opinnot/Tik-110.501/1995/multicast.html#Mon
Todd Montgomery. RMP - Reliable Multicast
<http://research.ivv.nasa.gov/projects/RMP/RMP.html>
Protocol
version
2.
[2] Reliable Multicast Transport Charter
http://www.ietf.org/html.charters/rmt-charter.html
[3] Randall Atkinson. Security Architecture for the Internet Protocol. RFC-1825, August
1995
[4] Jabber Software Foundation www.jabber.org
Related documents
Chapter 39 - Personal Web Pages
Chapter 39 - Personal Web Pages
lesson15
lesson15
ShapeShifter - Computer Science
ShapeShifter - Computer Science
PowerPoint 프레젠테이션
PowerPoint 프레젠테이션
Distributed Systems Chapter.2 Communication
Distributed Systems Chapter.2 Communication
Scalability
Scalability
Network Layer 3 - Google Project Hosting
Network Layer 3 - Google Project Hosting
mMOM: Efficient Mobile Multicast Support Based on the Mobility of
mMOM: Efficient Mobile Multicast Support Based on the Mobility of
Figure 15.1 A distributed multimedia system
Figure 15.1 A distributed multimedia system
Overlay networks
Overlay networks
3. issues on ip multicast-based push - EECG Toronto
3. issues on ip multicast-based push - EECG Toronto
The Spread Wide Area Group Communication System
The Spread Wide Area Group Communication System