Department of Communications and Networking

Network Security and Trust

The group is focused on creating new networking paradigms, protocols, algorithms, systems and functions for a trustworthy Internet. The group studies both trustworthy distributed solutions and classical and Software Defined Networks. The latter includes for example 5G.
Aalto University, Aki-Pekka Sinikoski

For the Internet context, the new solution should look at:

  1. the interactions between entities, helping to establish a level of trust between the entities such as client hosts, servers, ISPs, applications
  2. the solutions should also help to trace back, block attacks and contain the attacker and, in the long term, make network hacking, spamming and fraud financially less attractive "businesses”. Among the trustworthy distributed solutions a prominent topic is the blockchain.
Department of Communications and Networking / Network Security and Trust

We work on network wide and distributed systems of security and trust, such as cooperative firewalling, distributed ledger applications, including experimentation, applications to use cases, releases of open source software as well as the development of new network algorithms.

For the Internet, 5G and 6G, we have created the technology of Customer Edge Switching that provides cooperative firewalls for customer networks. These firewalls manage all communication based on policy and would dissolve the boundary between open and closed networks. Such firewalls can collect and attribute evidence of network attacks providing an end to end solution for wide area trust management.

We study the feasibility of such a network wide trust management system in terms of technology and economies of adoption. We have created a Proof-of-Concept level communications security policy management system and shown that it is feasible to largely automate policy creation and allow personification of the policies.

We classify our work in terms of deployability – a typical requirement is that an adoption decision of a solution should make sense for a single selfish investor irrespective of what anyone else is doing. We argue that making significant progress on the issues of trust and security is increasing in importance with the advent of 5G and Beyond 5G era when Information technology is used to read the real world and program events it. In this era physical safety will depend on IT and as a result networks are pushed to the forefront of national security.

Visit the group's web page

Contact

The research group is led by Professor Raimo Kantola.

Latest publications

Smart grid evolution and mobile communications - Scenarios on the Finnish power grid

Seppo Borenius, Heikki Hämmäinen, Matti Lehtonen, Petri Ahokangas 2021 Electric Power Systems Research

Sdn-based network slicing mechanism for a scalable 4g/5g core network

Robert Botez, Jose Costa-Requena, Iustin-Alexandru Ivanciu, Vlad Strautiu, Virgil Dobrota 2021 Sensors

QShield: Protecting Outsourced Cloud Data Queries with Multi-User Access Control Based on SGX

Yaxing Chen, Qinghua Zheng, Zheng Yan, Dan Liu 2021 IEEE TRANSACTIONS ON PARALLEL AND DISTRIBUTED SYSTEMS

SuperSketch: A Multi-Dimensional Reversible Data Structure for Super Host Identification

Xuyang Jing, Hui Han, Zheng Yan, Witold Pedrycz 2021 IEEE Transactions on Dependable and Secure Computing

Exploiting Interactions of Multiple Interferences for Their Cooperative Interference Alignment

Zhao Li, Jun Li, Yinghou Liu, Xiujuan Liang, Kang G. Shin, Zheng Yan, Hui Li 2021 IEEE Transactions on Wireless Communications

Game-theoretic analysis of encrypted cloud data deduplication

Xueqin Liang, Zheng Yan, Robert H. Deng, Raimo Kantola, Wenxiu Ding, Xixun Yu, Qinghua Zheng 2021 Data Deduplication Approaches: Concepts, Strategies and Challenges

Investigating the Adoption of Hybrid Encrypted Cloud Data Deduplication with Game Theory

Xueqin Liang, Zheng Yan, Robert Deng, Qinghua Zheng 2021 IEEE TRANSACTIONS ON PARALLEL AND DISTRIBUTED SYSTEMS

SeDID: An SGX-enabled decentralized intrusion detection framework for network trust evaluation

Gao Liu, Zheng Yan, Wei Feng, Xuyang Jing, Yaxing Chen, Mohammed Atiquzzaman 2021 Information Fusion

Improving Data Generalization with Variational Autoencoders for Network Traffic Anomaly Detection

Mehrnoosh Monshizadeh, Vikramajeet Khatri, Marah Gamdou, Raimo Kantola, Zheng Yan 2021 IEEE Access

Redundancy Removing Aggregation Network with Distance Calibration for Video Face Recognition

Zhonghong Ou, Yucheng Hu, Meina Song, Zheng Yan, Hui Pan 2021 IEEE Internet of Things Journal
More information on our research in the Research database.
Research database
  • Published:
  • Updated:
Share
URL copied!