Department of Communications and Networking

Network Security and Trust

The group is focused on creating new networking paradigms, protocols, algorithms, systems and functions for a trustworthy Internet. The group studies both trustworthy distributed solutions and classical and Software Defined Networks. The latter includes for example 5G.
Aalto University, Aki-Pekka Sinikoski

For the Internet context, the new solution should look at:

  1. the interactions between entities, helping to establish a level of trust between the entities such as client hosts, servers, ISPs, applications
  2. the solutions should also help to trace back, block attacks and contain the attacker and, in the long term, make network hacking, spamming and fraud financially less attractive "businesses”. Among the trustworthy distributed solutions a prominent topic is the blockchain.
Department of Communications and Networking / Network Security and Trust

We work on network wide and distributed systems of security and trust, such as cooperative firewalling, distributed ledger applications, including experimentation, applications to use cases, releases of open source software as well as the development of new network algorithms.

For the Internet, 5G and 6G, we have created the technology of Customer Edge Switching that provides cooperative firewalls for customer networks. These firewalls manage all communication based on policy and would dissolve the boundary between open and closed networks. Such firewalls can collect and attribute evidence of network attacks providing an end to end solution for wide area trust management.

We study the feasibility of such a network wide trust management system in terms of technology and economies of adoption. We have created a Proof-of-Concept level communications security policy management system and shown that it is feasible to largely automate policy creation and allow personification of the policies.

We classify our work in terms of deployability – a typical requirement is that an adoption decision of a solution should make sense for a single selfish investor irrespective of what anyone else is doing. We argue that making significant progress on the issues of trust and security is increasing in importance with the advent of 5G and Beyond 5G era when Information technology is used to read the real world and program events it. In this era physical safety will depend on IT and as a result networks are pushed to the forefront of national security.

Visit the group's web page


The research group is led by Professor Raimo Kantola.

Latest publications

QShield: Protecting Outsourced Cloud Data Queries with Multi-User Access Control Based on SGX


SuperSketch: A Multi-Dimensional Reversible Data Structure for Super Host Identification

Xuyang Jing, Hui Han, Zheng Yan, Witold Pedrycz 2021 IEEE Transactions on Dependable and Secure Computing

Game-theoretic analysis of encrypted cloud data deduplication

Xueqin Liang, Zheng Yan, Robert H. Deng, Raimo Kantola, Wenxiu Ding, Xixun Yu, Qinghua Zheng 2021 Data Deduplication Approaches: Concepts, Strategies and Challenges

Investigating the Adoption of Hybrid Encrypted Cloud Data Deduplication with Game Theory

Xueqin Liang, Zheng Yan, Robert Deng, Qinghua Zheng 2021 IEEE TRANSACTIONS ON PARALLEL AND DISTRIBUTED SYSTEMS

SeDID: An SGX-enabled decentralized intrusion detection framework for network trust evaluation

Gao Liu, Zheng Yan, Wei Feng, Xuyang Jing, Yaxing Chen, Mohammed Atiquzzaman 2021 Information Fusion

Improving Data Generalization with Variational Autoencoders for Network Traffic Anomaly Detection

Mehrnoosh Monshizadeh, Vikramajeet Khatri, Marah Gamdou, Raimo Kantola, Zheng Yan 2021 IEEE Access

Qualifying 5G SA for L4 Automated Vehicles in a Multi-PLMN Experimental Testbed

Giancarlo Pastor Figueroa, Edward Mutafungwa, Jose Costa Requena, Xuebing Li, Oussama El Marai, Norshahida Saba, Aziza Zhanabatyrova, Yu Xiao, Timo Mustonen, Matthieu Myrsky, Lauri Lammi, Umar Zakir Abdul Hamid, Marta Boavida, Sergio Catalano, Hyunbin Park, Pyry Vikberg, Viljami Lyytikäinen 2021 IEEE Vehicular Technology Conference

Physical Layer Key Generation between Backscatter Devices over Ambient RF Signals

Pu Wang, Long Jiao, Kai Zeng, Zheng Yan 2021 INFOCOM 2021 - IEEE Conference on Computer Communications

Interpretation-enabled Software Reuse Detection Based on a Multi-Level Birthmark Model

Xi Xu, Qinghua Zheng, Zheng Yan, Ming Fan, Ang Jia, Ting Liu 2021 The 43rd IEEE/ACM International Conference on Software Engineering (ICSE 2021)

Social-Chain: Decentralized Trust Evaluation Based on Blockchain in Pervasive Social Networking

Zheng Yan, Li Peng, Wei Feng, Laurence T. Yang 2021 ACM Transactions on Internet Technology
More information on our research in the Research database.
Research database
  • Published:
  • Updated:
URL copied!