-
strideSEA: A STRIDE-centric Security Evaluation Approach
Authors:
Alvi Jawad,
Jason Jaskolka,
Ashraf Matrawy,
Mohamed Ibnkahla
Abstract:
Microsoft's STRIDE methodology is at the forefront of threat modeling, supporting the increasingly critical quality attribute of security in software-intensive systems. However, in a comprehensive security evaluation process, the general consensus is that the STRIDE classification is only useful for threat elicitation, isolating threat modeling from the other security evaluation activities involve…
▽ More
Microsoft's STRIDE methodology is at the forefront of threat modeling, supporting the increasingly critical quality attribute of security in software-intensive systems. However, in a comprehensive security evaluation process, the general consensus is that the STRIDE classification is only useful for threat elicitation, isolating threat modeling from the other security evaluation activities involved in a secure software development life cycle (SDLC). We present strideSEA, a STRIDE-centric Security Evaluation Approach that integrates STRIDE as the central classification scheme into the security activities of threat modeling, attack scenario analysis, risk analysis, and countermeasure recommendation that are conducted alongside software engineering activities in secure SDLCs. The application of strideSEA is demonstrated in a real-world online immunization system case study. Using STRIDE as a single unifying thread, we bind existing security evaluation approaches in the four security activities of strideSEA to analyze (1) threats using Microsoft threat modeling tool, (2) attack scenarios using attack trees, (3) systemic risk using NASA's defect detection and prevention (DDP) technique, and (4) recommend countermeasures based on their effectiveness in reducing the most critical risks using DDP. The results include a detailed quantitative assessment of the security of the online immunization system with a clear definition of the role and advantages of integrating STRIDE in the evaluation process. Overall, the unified approach in strideSEA enables a more structured security evaluation process, allowing easier identification and recommendation of countermeasures, thus supporting the security requirements and eliciting design considerations, informing the software development life cycle of future software-based information systems.
△ Less
Submitted 24 March, 2025;
originally announced March 2025.
-
Open Source Horizontal IoT Platforms: A Comparative Study on Functional Requirements
Authors:
Ali Farhat,
Abdelrahman Eldosouky,
Jason Jaskolka,
Mohamed Ibnkahla,
Ashraf Matrawy
Abstract:
The growth in the deployment of Internet of Things (IoT) devices in various industries required the use of IoT platforms to manage, automate and control devices. This introduced different commercial and open source IoT platforms for developers and researchers to deploy. As a result, selecting one of these platforms for a specific application and use case became a challenge. In this study, a guidel…
▽ More
The growth in the deployment of Internet of Things (IoT) devices in various industries required the use of IoT platforms to manage, automate and control devices. This introduced different commercial and open source IoT platforms for developers and researchers to deploy. As a result, selecting one of these platforms for a specific application and use case became a challenge. In this study, a guideline for selecting an open source platform is presented. The process starts by identifying a list of functional requirements that would reflect the requirements of an IoT system in general. This list of requirements is used to compare between four major open source platforms: 1) OM2M (OneM2M standard), 2) IoTivity (OCF standard), LwM2M (OMA SpecWorks LwM2M standard), and 4) FIWARE (FIWARE standard). The purpose of this comparison is to indicate the capability and limitations of the different platforms and how they satisfy each requirement. Afterwards, two examples are presented to demonstrate how this guideline is used to select the most suitable platform for an e-health and a smart city use case. This includes how to define each use case and all the required information that could affect the process of selecting the most suitable platform for the development of the IoT platform.
△ Less
Submitted 13 September, 2022;
originally announced September 2022.
-
Multiband Spectrum Sensing: Challenges and Limitations
Authors:
Ghaith Hattab,
Mohamed Ibnkahla
Abstract:
Multiband spectrum access presents the next generation of cognitive radio networks (CRNs), where multiple bands are sensed and accessed to enhance the network's throughput, improve spectrum's maintenance, and reduce handoff frequency and data transmission interruptions due to the activities of the primary users. In this paper, we discuss the challenges and limitations of the major multiband spectr…
▽ More
Multiband spectrum access presents the next generation of cognitive radio networks (CRNs), where multiple bands are sensed and accessed to enhance the network's throughput, improve spectrum's maintenance, and reduce handoff frequency and data transmission interruptions due to the activities of the primary users. In this paper, we discuss the challenges and limitations of the major multiband spectrum sensing techniques. Particularly, we highlight the edge-detection problem and examine several issues of the state-of-the-art wavelet-based techniques. We also study the compressive sensing problem. Finally, we highlight the promises of utilizing the angle-domain for the CRNs.
△ Less
Submitted 22 September, 2014;
originally announced September 2014.
-
Enhanced Pilot-Based Spectrum Sensing Algorithm
Authors:
Ghaith Hattab,
Mohamed Ibnkahla
Abstract:
In this paper, we develop an enhanced pilot-based spectrum sensing algorithm for cognitive radio. Unlike conventional pilot-based detectors which merely detect the presence of pilot signals, the proposed detector also utilizes the presence of the signal that carries the actual information. We analytically compare the performance of the proposed detector with the conventional one, and we show that…
▽ More
In this paper, we develop an enhanced pilot-based spectrum sensing algorithm for cognitive radio. Unlike conventional pilot-based detectors which merely detect the presence of pilot signals, the proposed detector also utilizes the presence of the signal that carries the actual information. We analytically compare the performance of the proposed detector with the conventional one, and we show that the detection performance is significantly improved.
△ Less
Submitted 22 September, 2014;
originally announced September 2014.
-
Reconfigurable Wireless Networks
Authors:
Amr El-Mougy,
Mohamed Ibnkahla,
Ghaith Hattab,
Waleed Ejaz
Abstract:
Driven by the advent of sophisticated and ubiquitous applications, and the ever-growing need for information, wireless networks are without a doubt steadily evolving into profoundly more complex and dynamic systems. The user demands are progressively rampant, while application requirements continue to expand in both range and diversity. Future wireless networks, therefore, must be equipped with th…
▽ More
Driven by the advent of sophisticated and ubiquitous applications, and the ever-growing need for information, wireless networks are without a doubt steadily evolving into profoundly more complex and dynamic systems. The user demands are progressively rampant, while application requirements continue to expand in both range and diversity. Future wireless networks, therefore, must be equipped with the ability to handle numerous, albeit challenging requirements. Network reconfiguration, considered as a prominent network paradigm, is envisioned to play a key role in leveraging future network performance and considerably advancing current user experiences. This paper presents a comprehensive overview of reconfigurable wireless networks and an in-depth analysis of reconfiguration at all layers of the protocol stack. Such networks characteristically possess the ability to reconfigure and adapt their hardware and software components and architectures, thus enabling flexible delivery of broad services, as well as sustaining robust operation under highly dynamic conditions. The paper offers a unifying framework for research in reconfigurable wireless networks. This should provide the reader with a holistic view of concepts, methods, and strategies in reconfigurable wireless networks. Focus is given to reconfigurable systems in relatively new and emerging research areas such as cognitive radio networks, cross-layer reconfiguration and software-defined networks. In addition, modern networks have to be intelligent and capable of self-organization. Thus, this paper discusses the concept of network intelligence as a means to enable reconfiguration in highly complex and dynamic networks. Finally, the paper is supported with several examples and case studies showing the tremendous impact of reconfiguration on wireless networks.
△ Less
Submitted 21 September, 2014;
originally announced September 2014.
-
Multiband Spectrum Access: Great Promises for Future Cognitive Radio Networks
Authors:
Ghaith Hattab,
Mohammed Ibnkahla
Abstract:
Cognitive radio has been widely considered as one of the prominent solutions to tackle the spectrum scarcity. While the majority of existing research has focused on single-band cognitive radio, multiband cognitive radio represents great promises towards implementing efficient cognitive networks compared to single-based networks. Multiband cognitive radio networks (MB-CRNs) are expected to signific…
▽ More
Cognitive radio has been widely considered as one of the prominent solutions to tackle the spectrum scarcity. While the majority of existing research has focused on single-band cognitive radio, multiband cognitive radio represents great promises towards implementing efficient cognitive networks compared to single-based networks. Multiband cognitive radio networks (MB-CRNs) are expected to significantly enhance the network's throughput and provide better channel maintenance by reducing handoff frequency. Nevertheless, the wideband front-end and the multiband spectrum access impose a number of challenges yet to overcome. This paper provides an in-depth analysis on the recent advancements in multiband spectrum sensing techniques, their limitations, and possible future directions to improve them. We study cooperative communications for MB-CRNs to tackle a fundamental limit on diversity and sampling. We also investigate several limits and tradeoffs of various design parameters for MB-CRNs. In addition, we explore the key MB-CRNs performance metrics that differ from the conventional metrics used for single-band based networks.
△ Less
Submitted 20 September, 2014;
originally announced September 2014.
