An Intrusion Detection and Response Scheme for CP-ABE-Encrypted IoT Networks

Submitted by aekwall on Mon, 01/20/2020 - 11:56am

Title	An Intrusion Detection and Response Scheme for CP-ABE-Encrypted IoT Networks
Publication Type	Conference Paper
Year of Publication	2019
Authors	Laaboudi, Younes, Olivereau, Alexis, Oualha, Nouha
Conference Name	2019 10th IFIP International Conference on New Technologies, Mobility and Security (NTMS)
Date Published	jun
Keywords	Access Control, anomaly-based detection engines, attribute-based encryption, ciphertext-policy, composability, Computer architecture, CP-ABE, CP-ABE-encrypted IoT networks, cryptography, Encryption, group encryption, IDS, Internet of Things, Intrusion detection, intrusion detection system, Intrusion Detection Systems, intrusion response system, network intrusion detection system, pubcrawl, Resiliency, response ability, response scheme, Servers, shared key encryption
Abstract	This paper introduces a new method of applying both an Intrusion Detection System (IDS) and an Intrusion Response System (IRS) to communications protected using Ciphertext-Policy Attribute-based Encryption (CP-ABE) in the context of the Internet of Things. This method leverages features specific to CP-ABE in order to improve the detection capabilities of the IDS and the response ability of the network. It also enables improved privacy towards the users through group encryption rather than one-to-one shared key encryption as the policies used in the CP-ABE can easily include the IDS as an authorized reader. More importantly, it enables different levels of detection and response to intrusions, which can be crucial when using anomaly-based detection engines.
DOI	10.1109/NTMS.2019.8763840
Citation Key	laaboudi_intrusion_2019

Groups:

Science of Security VO