Earticle

The face recognition algorithm has been investigated as a robust solution for biometric authentication. It is used in a wide range of applications such as surveillance, access control, airport immigration system and application of user recognition in a smartphone, etc. (The security of face recognition system can be trusted, because they were used unique biometric data) Face recognition system tends to give a higher degree of recognition performance only when image acquisition process was restricted environment. In this paper, we explore face detection and face recognition algorithms for smartphone environment. The basic requirements include appropriate data format and collection of feature data to achieve efficiency of algorithm. Our experiment presents a face detection and recognition algorithm for smartphone environment. The essential part for proposed system includes; (1) integer representation from floating point calculation on desktop computer and smartphone, (2) optimization of memory management scheme and (3) efficient face detection performance on complex background scene by Modified Census Transform.

In this paper, we propose a formally verified protocol to securely manage vertical handovers heterogeneous networks (HetNets), even when different cryptographic algorithms are used in the infrastructure. The protocol presentation goes with a review of the current propositions of security mechanisms and procedures dedicated to manage vertical handovers. From a critical analysis, the HetNets are positioned in the context of wireless security to describe the possible attacks that afflict this new kind of infrastructure. From this analysis, it is revealed that the different entities involved in the management of handovers are surrounded by new security challenges. This challenges and the positioning of HetNets helps to deliver a new suited protection. Securing vertical handovers means to deal with the different cryptographic algorithms from the security architecture of the different technologies that protect the sessions of communications.

With the recent development of IT society, the value of knowledge information has been focused more importantly. However, the accidents of personal and corporate secrets being leaked frequently happen, and also the damage is getting bigger day by day. The important information of individuals and businesses is leaked or processed by outside attacks or personal mistakes, thus misused, and thereby considerable damage is occurring. For this reason, the necessity of how to effectively manage personal and corporate information is emerging. This study intends to suggest a method that can protect servers and media information, which requires security. The access control method suggested here uses a way that grants users authority by grade and authenticates users through Two-Factor Authentication method. This study suggests a way that can reinforce access itself, through Multi-Factor authentication method which falls into users’ grade in EDMS(Electronic Document Management System). In addition, when users have access to documents, it identifies users’ security grade and the related department, thus limiting the access to the related documents and media. Through the method suggested in this study, we can control access effectively and safely, and can enhance the security of documents and media.

In wireless environments, the issue of mutual authentication and key agreement with user anonimity is challenging. Recently, Mun et al. proposed an efficient anonymous authentication scheme for roaming services in wireless enviroments. Unfortunately, Kim et al. pointed out that Mun et al.’s anonymous authentication scheme suffers from replay attacks and man-in-the-middle attacks. They propose an improved secure anonymous authentication scheme for roaming services. Kim et al. claimed that their protocol removed the weaknesses of the Mun et al.’s scheme. However, we show that Kim et al.'s scheme fails to achieve anonymity. In addition, Kim et al.'s scheme is vulnerable to replay attacks and impersonation attacks and is impractical in the real-life implementation. We then propose an enhanced privacy-preserving authentication scheme. We demonstrate that our scheme overcomes the aforementioned weaknesses.

Privacy is a major concern in RFID systems, especially with widespread deployment of wireless enabled interconnected personal devices. In this paper, we consider privacy issues in RFID system where the authorized readers must be able to identify tags without an adversary being able to trace them, and provide a formal security model for privacy in RFID system. Under this model, we analyze the recently proposed RFID authentication protocol named anonymous RFID authentication protocol and show attacks on them that compromise the privacy.

Firewalls are an essential part of any information security system being the rst defense line against security attacks. The sea-saw eect between rewalls and network performance is most concerning to network users; where strict security settings result in weak network performance and permeant security settings allow for a stronger one. Hence, evaluating rewall platforms and their impact on network performance is important when assessing the eectiveness of network security. In this paper, we present an assessment methodol- ogy to analyze the performance of dierent rewalls platforms. The analysis considers the following metrics: delay, jitter, throughput, and packet loss. Moreover, the information security of the rewalls is also tested by applying a set of attacks and observing the reaction of the rewalls. The proposed assessment methodology is tested by performing real exper- iments on dierent types of rewalls including those that are personal and network-based. Moreover, a quantitative study is conducted to explore the level of knowledge among the educated category in the community, represented by a sample of college students, on the importance of rewall and their use.

Development of hacking techniques demands more and more network security. For this reason, Major facilities as well as government agencies divide the Protected Network from Internet Network Physically. However, if Internal/external network is divided, file transfer and work efficiency is reduced. To solve this problem and to transfer data between the Internet Network and protected Network, Unidirectional Security Gateway System was born. This paper analyzes unidirectional Security Gateway and suggests a protection profile based on the CC V3.1 to help develop and evaluation of unidirectional Security Gateway.

In this work, we design a method for efficient revocation within Ciphertext-Policy Attribute-Based Encryption scheme. Our main technical innovation is based on linear secret sharing and binary tree techniques, every user in system is assigned with both a set of attributes and a unique identifier. Any user can also be efficiently revoked by using this identifier. Furthermore, this technique resulted in two key contributions: the size of the cryptographic key material is smaller and encryption/decryption cannot be affected with an unbounded number of revoked users. Then, the scheme is proved to be secure under the q-MEBDH assumption in the standard model. The efficiency is also optimized that the size of user’s private key has only a constant increase. The revocation information is embedded in the ciphertext so that the fine-grained access control is more flexible.