Trustworthy Clients: Extending TNC for Integrity Checks in Web-Based Environments (2008)
Type of ContentTheses / Dissertations
Thesis DisciplineComputer Science
Degree NameMaster of Science
PublisherUniversity of Canterbury. Computer Science and Software Engineering
Web-based services are vulnerable to a number of attacks. While providers of these services employ countermeasures (such as firewalls, encryption, and authentication systems) to reduce security risks, some of these security measures can be rendered useless if the PC of a user that accesses such a web-based service is not properly secured. Malicious software that is installed on a user’s PC, for example, can potentially circumvent existing protection measures by recording login credentials and impersonating the victim. To counter threats that are arising through client PCs, many providers of security sensitive web-based services have introduced usage policies for their services. These policies require users to ensure that their PCs are in a proper security state (e.g. the PC is equipped with an up-to-date anti-virus application, a personal firewall, and all security updates have been installed). However, service providers have no possible means of enforcing these policies and they have to rely on users to check the security state of their PCs manually. This thesis presents a mechanism that allows a service provider to remotely measure the security state of a user’s PC. This mechanism is based on Trusted Network Connect (TNC). TNC is a network access control mechanism that takes the security state of an access requesting party into account before making an access decision. However, TNC is currently limited to closed environments such as LANs and VPNs. This thesis proposes solutions based on authentication standards for enabling TNC in open, web-based scenarios. In particular, an architectural model for TNC is proposed that takes additional security and privacy requirements into account. Furthermore, a communication scheme is proposed that is based on standardised protocols and message formats. These protocols and message formats have been leveraged to allow web-based TNC checks to be triggered through aWeb browser and TNC messages to be exchanged. These building blocks have been combined into a prototype implementation which has been evaluated using a test bed approach. This prototype successfully demonstrated that TNC can be adapted to web-based environments where it provides assurance as to the security state of clients accessing security sensitive web-based services.
RightsCopyright Sasha Rehbock
Showing items related by title, author, creator and subject.
Extended Policy-Based Management Framework to Provide Always Best Connected Services in Heterogeneous Mobile Environments. Keshariya, Mayank (University of Canterbury. Computer Science and Software Engineering, 2009)The growth in the popularity of Internet services, increasing demands of mobile users together with a wide range of access technologies and mobile-networked devices, introduces the notion of integration and inter-working ...
An integrated platform enabling optogenetic illumination of Caenorhabditis elegans neurons and muscular force measurement in microstructured environments Qiu, Z.; Tu, L.; Huang, L.; Zhu, T.; Nock, V.; Yu, E.; Liu, X.; Wang, W. (University of Canterbury. Electrical and Computer EngineeringUniversity of Canterbury. Biomolecular Interaction Centre, 2015)Optogenetics has been recently applied to manipulate the neural circuits of Caenorhabditis elegans (C. elegans) to investigate its mechanosensation and locomotive behavior, which is a fundamental topic in model biology. ...
An integrated platform enabling optogenetic illumination of Caenorhabditis elegans neurons and muscular force measurement in microstructured environments Qiu Z; Tu L; Huang L; Zhu T; Nock V; Yu E; Liu X; Wang W (AIP Publishing, 2015)Optogenetics has been recently applied to manipulate the neural circuits of Caenorhabditis elegans (C. elegans) to investigate its mechanosensation and locomotive behavior, which is a fundamental topic in model biology. ...
Appearance of a robot affects the impact of its behaviour on perceived trustworthiness and empathy Złotowski J; Sumioka H; Nishio S; Glas DF; Bartneck, Christoph; Ishiguro H (Walter de Gruyter GmbH, 2016)An increasing number of companion robots have started reaching the public in the recent years. These robots vary in their appearance and behavior. Since these two factors can have an impact on lasting human-robot relationships, ...
Trustworthy and participatory community-based disaster communication : a case study of Jalin Merapi in the 2010 Merapi eruption in Indonesia. Gultom, Dwie Irmawaty (University of Canterbury, 2016)Less attention has been paid to the information receivers in disaster communication, particularly the way disaster information is considered to be trustworthy by the affected community and how it can increase collective ...
Adhikari, Bipulendra (University of Canterbury, 2020)This research focuses on the trustworthiness of information shared through Twitter in a post- disaster event, particularly focusing on the Nepal earthquake, 2015. It explores how Twitter users access and verify tweets by ...