Filtyp
Data analytics is regarded as an important function of 5G networks. The Network Data Analytics Function (NWDAF) is standardized in 3GPP to enhance 5G network performance by analyzing data from network functions and user equipment. Abnormal behavior detection, which is part of the NWDAF framework, has the potential to be a powerful tool to improve 5G network security. Despite this, only limited res
Established approaches to data aggregation in wirelesssensor networks (WSNs) do not cover the variety of new usecases developing with the advent of the Internet of Things. In particular,the current push towards fog computing, in which control,computation, and storage are moved to nodes close to the networkedge, induces a need to collect data at multiple sinks, ratherthan the single sink typically
Correlation attacks apply mainly to stream ciphers and can be considered as an extension of the idea of distinguishing attacks to collect information on secret key bits. The original correlation attack was proposed by Siegenthaler on nonlinear combination generators. In a nonlinear combination generator, the keystream is generated as the output of a Boolean function with inputs being sequences fro
This book constitutes the refereed proceedings of the 14th International Workshop on Post-Quantum Cryptography, PQCrypto 2022, held in College Park, MD, USA, in August 14–18, 2023.The 25 full papers presented in this book were carefully reviewed and selected from 51 submissions. They are categorized in the following topical sections: code-based cryptography; group-action-based cryptography; isogen
Pseudo-random functions are a fundamental building block in many cryptographic applications. In certain scenarios, a weaker notion (where security is restricted to uniformly random input), but more computationally efficient, called weak pseudo-random functions, is sufficient. In this work, we present new differential attacks on the main binary weak pseudo-random function constructions, namely the
The Agenda 2030 Graduate School invites you to join us for a full day networking and study visit to the Sustainable Science Center (SSC) and UN City on the 22nd of November 2022. In the morning we will visit the SSC, which is a centre that brings together strong disciplinary traditions of several faculties in order to address problems of sustainable development and globalization. The centre provid
https://www.sustainability.lu.se/form/study-visit-sustainable-science-center-ssc-and-un-city-22nd-november-2022 - 2026-06-07
To systematically address non-technical engineering skills (NTES), six mandatory "Engineering Days" (Ing-dagar) were introduced in two bachelor programmes. The students were also allowed to perform voluntary activities leading to a Certification of Non-technical Engineering Competences, a certificate the students can attach to their CVs. To be certified, the student must have performed activities
In this paper, we show that a software implementation of IND-CCA-secure Saber key encapsulation mechanism protected by first-order masking and shuffling can be broken by deep learning-based power analysis. Using an ensemble of deep neural networks trained at the profiling stage, we can recover the session key and the secret key from 257 × N and 24 × 257 × N traces, respectively, where N is the num
Connected and automated vehicles (CAVs) will be a key component of future cooperative intelligent transportation systems (C-ITS). Since the adoption of C-ITS is not foreseen to happen instantly, not all of its elements are going to be connected at the early deployment stages. We consider a scenario where vehicles approaching a traffic light are connected to each other, but the traffic light itself
Whereas theoretical attacks on standardized crypto primitives rarely lead to actual practical attacks, the situation is different for side-channel attacks. Improvements in the performance of side-channel attacks are of utmost importance.In this paper, we propose a framework to be used in key-recovery side-channel attacks on CCA-secure post-quantum encryption schemes. The basic idea is to construct
We demonstrate a tool for identifying, prioritizing and evaluating vulnerabilities in software. The tool aims to improve security in products by making maintenance more efficient and robust. Software components and release versions are matched with vulnerability information from open resources. The results are visualized on several different levels, ranging from product portfolio and individual prWe demonstrate a tool for identifying, prioritizing and evaluating vulnerabilities in software. The tool aims to improve security in products by making maintenance more efficient and robust. Software components and release versions are matched with vulnerability information from open resources. The results are visualized on several different levels, ranging from product portfolio and individual pr
The inherent flexibility of 5G networks come with a high degree of configuration and management complexity. This makes the performance outcome for UEs, more than ever, dependent on intricate configurations and interplay between algorithms at various network components. In this paper, we take initial steps towards a performance exposure system at the base station using a data-driven approach for pr
Beyond 5G/6G communication systems promise to significantly impact the development of a New Generation of CCAM. Reconfigurable Intelligent Metasurfaces (RIM) are by now established as a key enabling technology for 6G Systems. They have been extensively investigated the last few years, as they possess exotic properties allowing for precise control over any aspect of an impinging wave. As such, they
In this paper, we present novel key-recovery attacks on Approximate Homomorphic Encryption schemes, such as CKKS, when employing noise-flooding countermeasures based on non-worst-case noise estimation. Our attacks build upon and enhance the seminal work by Li and Micciancio at EUROCRYPT 2021. We demonstrate that relying on average-case noise estimation undermines noise-flooding countermeasures, ev
Side-channel resilience is a crucial feature when assessing whether a postquantum cryptographic proposal is sufficiently mature to be deployed. In this paper, we propose a generic and efficient adaptive approach to improve the sample complexity (i.e., the required number of traces) of plaintext-checking (PC) oracle-based sidechannel attacks (SCAs), a major class of key recovery chosen-ciphertext S
The Internet of Things (IoT) is a large network of connected devices. In IoT, devices can communicate with each other or back-end systems to transfer data or perform assigned tasks. Communication protocols used in IoT depend on target applications but usually require low bandwidth. On the other hand, IoT devices are constrained, having limited resources, including memory, power, and computational
Student engagement is an important factor when it comes to the learning process. Students who do not feel engaged in their studies risk surface learning, are more likely to fail their exams and might even drop out of their education. The teaching community has tried different methods in order to increase student engagement. One of them is the Contributing Student Pedagogy (CSP), where students con
In this thesis, we address three main security problems related to cryptography andcloud storage. To tackle the challenge posed by a quantum computer, we needencryption that is resistant to quantum computers. This category of cryptographyis called post-quantum cryptography. In the first paper, we solve a challengein one of the lattice-based cryptographic protocols called Nth-degree Truncatedpolyno
We study the notion of anonymous credentials with Publicly Auditable Privacy Revocation (PAPR). PAPR credentials simultaneously provide conditional user privacy and auditable privacy revocation. The first property implies that users keep their identity private when authenticating unless and until an appointed authority requests to revoke this privacy, retroactively. The second property enforces th
