Contributions to Preventive Measures in Cyber Security

Karlsson, Linus

Contributions to Preventive Measures in Cyber Security

Mark

Karlsson, Linus ^LU

(2019) In Series of licentiate and doctoral theses

Abstract: Organizations and individuals maintain and use an ever increasing amount of computer systems, either deployed locally, or in the cloud.
These systems often store and handle vast amounts of data, some of which is sensitive and should be kept private.
Regardless of where the data is located, there is a need to prevent data from falling into the wrong hands.
To this end, this dissertation presents contributions to preventive measures in cyber security.

Trusted computing can be used to attest the integrity of code running on a remote computer, and to store data securely using secure storage, for example in a cloud setting.
This dissertation presents contributions regarding the use of the Trusted Platform Module (TPM)... (More); Organizations and individuals maintain and use an ever increasing amount of computer systems, either deployed locally, or in the cloud.
These systems often store and handle vast amounts of data, some of which is sensitive and should be kept private.
Regardless of where the data is located, there is a need to prevent data from falling into the wrong hands.
To this end, this dissertation presents contributions to preventive measures in cyber security.

Trusted computing can be used to attest the integrity of code running on a remote computer, and to store data securely using secure storage, for example in a cloud setting.
This dissertation presents contributions regarding the use of the Trusted Platform Module (TPM) in high-availability systems, both for TPM 1.2 and TPM 2.0.
It also discusses migration of keys from TPM 1.2 to the backwards-incompatible TPM 2.0, while maintaining the same behaviour with regard to authorization mechanisms.
Contributions also include the use of trusted computing to attest the integrity of network elements before they are enrolled into a Software Defined Network, as well as protecting important assets of such network elements by using isolated execution environments.

In the field of cryptography, the dissertation contains contributions regarding the Maximum Degree Monomial (MDM) test, which is related to the construction of distinguishers and nonrandomness detectors.
A new generalized algorithm to find subsets for the MDM test is presented, together with evaluations of the algorithm on several different stream ciphers.

The dissertation also contains contributions in the field of vulnerability assessment using recommender systems.
First, a recommender system for user-specific vulnerability scoring is presented, which scores vulnerabilities based on implicit and explicit user preferences, together with domain-based information unique to the field of vulnerability assessment.
Finally, the dissertation also contains contributions regarding privacy of such recommender systems, by protecting the privacy of user preferences even from the provider of the recommender service.
(Less)

Please use this url to cite or link to this publication: https://lup.lub.lu.se/record/59d91cdd-61c4-4b29-845c-4efc018f44e3

author

Karlsson, Linus ^LU

supervisor

opponent

Professor Ekberg, Jan-Erik, Aalto University, Finland

organization

publishing date

2019-09-30

type

Thesis

publication status

published

subject

Computer Science

in

Series of licentiate and doctoral theses

issue

126

pages

205 pages

publisher

Department of Electrical and Information Technology, Lund University

defense location

Lecture Hall E:1406, , E-Building, Ole Römers väg 3, Lund University, Faculty of Engineering LTH

defense date

2019-10-24 09:15:00

ISSN

1654-790X

ISBN

978-91-7895-295-3

978-91-7895-294-6

project

Säkra mjukvaruuppdateringar för den smarta staden

language

English

LU publication?

yes

id

59d91cdd-61c4-4b29-845c-4efc018f44e3

date added to LUP

2019-09-29 11:54:49

date last changed

2021-12-02 10:10:20

@phdthesis{59d91cdd-61c4-4b29-845c-4efc018f44e3,
  abstract     = {{Organizations and individuals maintain and use an ever increasing amount of computer systems, either deployed locally, or in the cloud.<br/>These systems often store and handle vast amounts of data, some of which is sensitive and should be kept private.<br/>Regardless of where the data is located, there is a need to prevent data from falling into the wrong hands.<br/>To this end, this dissertation presents contributions to preventive measures in cyber security.<br/><br/>Trusted computing can be used to attest the integrity of code running on a remote computer, and to store data securely using secure storage, for example in a cloud setting.<br/>This dissertation presents contributions regarding the use of the Trusted Platform Module (TPM) in high-availability systems, both for TPM 1.2 and TPM 2.0.<br/>It also discusses migration of keys from TPM 1.2 to the backwards-incompatible TPM 2.0, while maintaining the same behaviour with regard to authorization mechanisms.<br/>Contributions also include the use of trusted computing to attest the integrity of network elements before they are enrolled into a Software Defined Network, as well as protecting important assets of such network elements by using isolated execution environments.<br/><br/>In the field of cryptography, the dissertation contains contributions regarding the Maximum Degree Monomial (MDM) test, which is related to the construction of distinguishers and nonrandomness detectors.<br/>A new generalized algorithm to find subsets for the MDM test is presented, together with evaluations of the algorithm on several different stream ciphers.<br/><br/>The dissertation also contains contributions in the field of vulnerability assessment using recommender systems.<br/>First, a recommender system for user-specific vulnerability scoring is presented, which scores vulnerabilities based on implicit and explicit user preferences, together with domain-based information unique to the field of vulnerability assessment.<br/>Finally, the dissertation also contains contributions regarding privacy of such recommender systems, by protecting the privacy of user preferences even from the provider of the recommender service.<br/>}},
  author       = {{Karlsson, Linus}},
  isbn         = {{978-91-7895-295-3}},
  issn         = {{1654-790X}},
  language     = {{eng}},
  month        = {{09}},
  number       = {{126}},
  publisher    = {{Department of Electrical and Information Technology, Lund University}},
  school       = {{Lund University}},
  series       = {{Series of licentiate and doctoral theses}},
  title        = {{Contributions to Preventive Measures in Cyber Security}},
  url          = {{https://lup.lub.lu.se/search/files/70073511/linus_dissertation_final.pdf}},
  year         = {{2019}},
}

Lund University Publications

LUND UNIVERSITY LIBRARIES

Contributions to Preventive Measures in Cyber Security