Extended Description

The overall objective of the Security Expert INITiative (SEINIT) project is to ensure a trusted and dependable information security framework, ubiquitous, working across multiple devices, heterogeneous networks, being organisation independent (inter-operable) and centred around an end-user.

SEINIT is exploring new information security models and building the architecture and components to address our nomadic, pervasive, multi-player communicating world. This new solution uses information gathered by ambient intelligence and then deals with the new threats this entails.

Within the scope of these objectives, SEINIT approach is to:

• Define new trust, security models and security policies that address the current and future threats, and ensure affordable security services, maintaining an adequate security level without infringing a user's right to privacy;
• Design and develop the components to be implemented. Integrate existing and new components on security assessment platforms capable of running real life scenarios;
• Assess the architecture and policy with experimental validation through applications;
• Disseminate the models and the architecture to the Research community, especially the other FP6 projects, and the appropriate organisations in charge of Security policy;
• Deliver the results of SEINIT to the ENISA (European Network and Information Security Agency) and to offer the assistance of the partners for their exploitation towards a new legislative framework;
• Bring the Security approach closer to real life
• taking in the InfoSphere approach;
• Centralised key distribution architecture;
• End-to-end strong encryption.
• Efficiency through Always On Security – before, during and after exchanges;
• Support to IPv6 migration.

The TSSG key role in this project has been in the research of Trust Management. A decision to trust or not trust parties (useful Trust) is based on the result of a computation on a selection of the concepts:

• Experience;
• Reputation;
• Trust a priori;
• Situation (alerts).

More precisely, the calculation is a weighted sum of the numerical representation of these concepts performed during the security negotiation.

The TSSG has undertaken with its project partners a software and hardware security negotiation implementation that integrates:

• Environment considerations, linking intrinsic security level covering ambiance (home network, Internet, etc.) and communication type (Ethernet, Wifi, etc.),
• Changes in the situation with security alerts detected by an Intrustion Detection System,
• Importance of data and then the evaluation of the reachability of needed technological security infrastructure.

We call this Ambient Intelligence of the network infrastructure which is a kind of trust for the given communication environment (for instance a Security Domain). A change in the situation (due to an attack, etc.) of one communication link within the environment has an influence to the ambiance and then on the intrinsic security level of all communication links located within the same environment.

SEINIT is currently Running and is funded by the European Union FP6 IST work programme, under Call 1 to a total of €3.9 million euro. The TSSG assigned budget is €354,000 euro. The project started in December of 2003 and will end in March 2006.

SEINIT outputs

Refereed Academic Papers:

2005

L Ladid, J McGibney, J Ronan, M Ó Foghlú : Security and Privacy with IPv6; IEC Annual Review of Communications (Vol 58), Nov. 2005

Jimmy McGibney , Miguel Ponce de Leon, John Ronan: SEINIT Security for Heterogeneous Mobile Network Services, eChallenges 2005, Ljubljana, Slovenia, October 2005

Jimmy McGibney , Miguel Ponce de Leon, John Ronan: Securing Mobile Services, 1st Euro Conference on Mobile Government, Brighton, UK, July 2005

L Ladid, J McGibney, J Ronan, Security with IPv6, Upgrade – The European Journal for Informatics Professionals, Vol 6, Issue 2, pp 27-30, April 2005
 - Also Spanish language version in: Novática, Issue 174, March-April 2005
 - Upgrade is also published in an Italian language version

 

J McGibney, N Schmidt, A Patel : A service-centric model for intrusion detection in next-generation networks, Computer Standards & Interfaces (Elsevier), Vol 27, Issue 5, pp 513-520, June 2005

 

2004

J Ronan, S Davy, J Rossebø : IPsec deployment performance issues in high & low power devices, Nordic Teletraffic Seminar – Fornebu, Norway, Aug. 2004

S Hearne, J McGibney : Addressing Fraud Detection & Management in Next-Generation Networks; SCI 2004 Conference – Orlando, Florida, July 2004

J. Ronan, S.Davy, P. Malone, M. Ó Foghlu : Performance Implications of IPsec Deployment; Interdomain Performance & Simulation 2004 - Budapest, Hungary

 

Presentations

INET/IGC 2004, Barcelona, Spain, 10 May 2004

“Intrusion Detection Systems & Honeypots”

Jimmy McGibney

http://www.seinit.org/documents/INET04/SEINIT_4_INET04_IDS.pdf

IST 2004, The Hague, Holland, 15-17 November 2004

SEINIT Training Workshop, Paris, France 27-28 April 2005

“Building trust in the networks through Intrusion Detection Systems and Honeypots”

Jimmy McGibney

http://www.seinit.org/documents/Pdfs/SEINIT_IDS.pdf

TRUST and SECURITY in Pervasive Networking, Poznań, Poland, 9 June 2005.

“Trust and management in the networks”

Jimmy McGibney

http://www.seinit.org/documents/tnctutorial/McGibney_Poznan_IDS.pdf