Privacy and Secure Communications in Mobile Edge Computing

Detalhes bibliográficos
Autor(a) principal: Lopes, Hugo Alexandre Alves Afonso
Data de Publicação: 2022
Tipo de documento: Dissertação
Idioma: eng
Título da fonte: Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
Texto Completo: http://hdl.handle.net/10362/166573
Resumo: Cloud computing has been in constant growth since it appeared and, more recently, the Edge computing paradigm arose in an effort to provide a better service for the users. This, combined with an ever increasing number of devices connected to the internet, brings new challenges, specifically those in the field of security. Some of those challenges are the user Authentication, the Access Control and the Data Confidentiality. EdgeGarden is a content sharing system for mobile edge environments. Up to this work, it did not provide any security or privacy guarantees. To address such limitation, the main purpose of this thesis was to equip EdgeGarden with mechanisms that would make it secure and respectful of its user’s privacy. The proposed solution requires users to be authenticated by applying a token-based authentication scheme. Moreover, it encrypts the contents published in the system to provide data confidentiality, making use of a symmetric-key-based algorithm and provides access control, by leveraging on the tokens and the symmetry of the encryption keys. We implemented and fully test our solution to assess its effectiveness and performance. Such tests included a comparison of two encryption options (a stream cipher and AES in CBC mode) to select the best one. By the end of this work, EdgeGarden provides security and data privacy guarantees although a vulnerability has been found, nevertheless we do provide a possible solution to tackle such issue. We have concluded the performance is affected by the introduc- tion of security but this reduction in performance is not the same throughout all sys- tem’s operations. Overall, depending on the most common operation, the system can be more or less affected. It was also concluded the inferior performance on the AES en- crypting/decrypting operations is not significant when compared with the stream cipher, being even more secure.
id RCAP_2610260c2991bbbe9bc71aaa24ae2bf2
oai_identifier_str oai:run.unl.pt:10362/166573
network_acronym_str RCAP
network_name_str Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
repository_id_str https://opendoar.ac.uk/repository/7160
spelling Privacy and Secure Communications in Mobile Edge ComputingMobile Edge ComputingSecurityAuthenticationAccess ControlData ConfidentialityStream CipherDomínio/Área Científica::Engenharia e Tecnologia::Engenharia Eletrotécnica, Eletrónica e InformáticaCloud computing has been in constant growth since it appeared and, more recently, the Edge computing paradigm arose in an effort to provide a better service for the users. This, combined with an ever increasing number of devices connected to the internet, brings new challenges, specifically those in the field of security. Some of those challenges are the user Authentication, the Access Control and the Data Confidentiality. EdgeGarden is a content sharing system for mobile edge environments. Up to this work, it did not provide any security or privacy guarantees. To address such limitation, the main purpose of this thesis was to equip EdgeGarden with mechanisms that would make it secure and respectful of its user’s privacy. The proposed solution requires users to be authenticated by applying a token-based authentication scheme. Moreover, it encrypts the contents published in the system to provide data confidentiality, making use of a symmetric-key-based algorithm and provides access control, by leveraging on the tokens and the symmetry of the encryption keys. We implemented and fully test our solution to assess its effectiveness and performance. Such tests included a comparison of two encryption options (a stream cipher and AES in CBC mode) to select the best one. By the end of this work, EdgeGarden provides security and data privacy guarantees although a vulnerability has been found, nevertheless we do provide a possible solution to tackle such issue. We have concluded the performance is affected by the introduc- tion of security but this reduction in performance is not the same throughout all sys- tem’s operations. Overall, depending on the most common operation, the system can be more or less affected. It was also concluded the inferior performance on the AES en- crypting/decrypting operations is not significant when compared with the stream cipher, being even more secure.A computação em cloud tem crescido sempre desde o seu aparecimento e, mais recen- temente, surgiu o paradigma da computação Edge num esforço de fornecer um melhor serviço aos utilizadores. Isto, associado ao aumento do número de dispositivos móveis ligados à Internet, traz novos desafios relacionados com segurança. Alguns deles são a Autenticação, o Controlo de Acessos e a Confidencialidade dos Dados. O EdgeGarden é um sistema de partilha de conteúdos próprio para o âmbiente Edge direcionado para dispositivos móveis. Até à realização deste trabalho, este sistema não proporcionava quaisquer garantias de segurança ou privacidade. Para colmatar estas limitações, o principal objetivo deste trabalho foi a introdução de mecanismos que tornem o EdgeGarden seguro, respeitando a privacidade dos utilizadores. A solução proposta requer que os utilizadores sejam autenticados, para isso, foi usado um esquema à base de tokens. Além disso, a solução cifra os conteúdos publicados no sistema para proporcionar confidencialidade dos dados, através de um algoritmo de chave simétrica, bem como assegura o controlo de acessos fazendo uso dos tokens de autenticação e do facto das chaves criptográficas serem simétricas. A solução foi implementada e testada para verificar a sua eficácia e performance, incluindo a comparação entre dois algoritmo de cifra (um de cifra em stream e o AES em modo CBC) com o intuito de selecionar o mais adequado. Finalizado o trabalho, o EdgeGarden proporciona garantias de privacidade e segu- rança embora tenha sido identificada uma vulnerabilidade para a qual é sugerida uma solução. Concluímos que a performance é afetada pela introdução de segurança mas, essa redução de performance não acontece de igual forma em todas as operações do sistema. Dependendo das operações mais frequentes no sistema, essa perda de performance pode ser mais ou menos significativa. Concluiu-se também que o inferior desempenho do AES na cifra/decifra de conteúdos não é significativo quando comparado com a cifra em straem, embora sendo mais seguro.Paulino, HervéRUNLopes, Hugo Alexandre Alves Afonso2024-04-24T10:48:58Z2022-122022-12-01T00:00:00Zinfo:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/masterThesisapplication/pdfhttp://hdl.handle.net/10362/166573enginfo:eu-repo/semantics/openAccessreponame:Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)instname:FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologiainstacron:RCAAP2024-05-22T18:20:42Zoai:run.unl.pt:10362/166573Portal AgregadorONGhttps://www.rcaap.pt/oai/openaireinfo@rcaap.ptopendoar:https://opendoar.ac.uk/repository/71602025-05-28T17:51:18.579804Repositórios Científicos de Acesso Aberto de Portugal (RCAAP) - FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologiafalse
dc.title.none.fl_str_mv Privacy and Secure Communications in Mobile Edge Computing
title Privacy and Secure Communications in Mobile Edge Computing
spellingShingle Privacy and Secure Communications in Mobile Edge Computing
Lopes, Hugo Alexandre Alves Afonso
Mobile Edge Computing
Security
Authentication
Access Control
Data Confidentiality
Stream Cipher
Domínio/Área Científica::Engenharia e Tecnologia::Engenharia Eletrotécnica, Eletrónica e Informática
title_short Privacy and Secure Communications in Mobile Edge Computing
title_full Privacy and Secure Communications in Mobile Edge Computing
title_fullStr Privacy and Secure Communications in Mobile Edge Computing
title_full_unstemmed Privacy and Secure Communications in Mobile Edge Computing
title_sort Privacy and Secure Communications in Mobile Edge Computing
author Lopes, Hugo Alexandre Alves Afonso
author_facet Lopes, Hugo Alexandre Alves Afonso
author_role author
dc.contributor.none.fl_str_mv Paulino, Hervé
RUN
dc.contributor.author.fl_str_mv Lopes, Hugo Alexandre Alves Afonso
dc.subject.por.fl_str_mv Mobile Edge Computing
Security
Authentication
Access Control
Data Confidentiality
Stream Cipher
Domínio/Área Científica::Engenharia e Tecnologia::Engenharia Eletrotécnica, Eletrónica e Informática
topic Mobile Edge Computing
Security
Authentication
Access Control
Data Confidentiality
Stream Cipher
Domínio/Área Científica::Engenharia e Tecnologia::Engenharia Eletrotécnica, Eletrónica e Informática
description Cloud computing has been in constant growth since it appeared and, more recently, the Edge computing paradigm arose in an effort to provide a better service for the users. This, combined with an ever increasing number of devices connected to the internet, brings new challenges, specifically those in the field of security. Some of those challenges are the user Authentication, the Access Control and the Data Confidentiality. EdgeGarden is a content sharing system for mobile edge environments. Up to this work, it did not provide any security or privacy guarantees. To address such limitation, the main purpose of this thesis was to equip EdgeGarden with mechanisms that would make it secure and respectful of its user’s privacy. The proposed solution requires users to be authenticated by applying a token-based authentication scheme. Moreover, it encrypts the contents published in the system to provide data confidentiality, making use of a symmetric-key-based algorithm and provides access control, by leveraging on the tokens and the symmetry of the encryption keys. We implemented and fully test our solution to assess its effectiveness and performance. Such tests included a comparison of two encryption options (a stream cipher and AES in CBC mode) to select the best one. By the end of this work, EdgeGarden provides security and data privacy guarantees although a vulnerability has been found, nevertheless we do provide a possible solution to tackle such issue. We have concluded the performance is affected by the introduc- tion of security but this reduction in performance is not the same throughout all sys- tem’s operations. Overall, depending on the most common operation, the system can be more or less affected. It was also concluded the inferior performance on the AES en- crypting/decrypting operations is not significant when compared with the stream cipher, being even more secure.
publishDate 2022
dc.date.none.fl_str_mv 2022-12
2022-12-01T00:00:00Z
2024-04-24T10:48:58Z
dc.type.status.fl_str_mv info:eu-repo/semantics/publishedVersion
dc.type.driver.fl_str_mv info:eu-repo/semantics/masterThesis
format masterThesis
status_str publishedVersion
dc.identifier.uri.fl_str_mv http://hdl.handle.net/10362/166573
url http://hdl.handle.net/10362/166573
dc.language.iso.fl_str_mv eng
language eng
dc.rights.driver.fl_str_mv info:eu-repo/semantics/openAccess
eu_rights_str_mv openAccess
dc.format.none.fl_str_mv application/pdf
dc.source.none.fl_str_mv reponame:Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
instname:FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologia
instacron:RCAAP
instname_str FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologia
instacron_str RCAAP
institution RCAAP
reponame_str Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
collection Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
repository.name.fl_str_mv Repositórios Científicos de Acesso Aberto de Portugal (RCAAP) - FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologia
repository.mail.fl_str_mv info@rcaap.pt
_version_ 1833597015270883328

Registros relacionados