Work Package 4 Security and Privacy Issues

D 4.0 State of the Art in Wireless Network Security
Abstract
This document describes the state of the art in network security with special emphasis on personal networks. WP4 is responsible for formulating a methodology that will allow secure and reliable communications in a personal network (PN). In presenting the state of the art in network security technology, the gaps vis-à-vis personal networks will also come to light. This document will therefore be the springboard from which the work in PN security will be launched.
[ State of the Art in Wireless Network Security ]

D4.1.1 State of the art and Security and Privacy Requirements of PN
Abstract
This document describes the security requirements imposed on the MAGNET systems. In specifying the requirement we look as the different layers involved in establishing a PN, the different usage scenarios and interactions. Further, the document presents a general security framework for a PN system and the requirements such a framework should fulfill.
[ State of the art and Security and Privacy Requirements of PN ]

D4.1.2 Conceptual secure PN architecture (common deliverable with WP4)
Abstract
This deliverable describes the preliminary conceptual secure Personal Network (PN) Architecture in IST project MAGNET. The architecture is composed of abstraction levels covering connectivity at the link layer, networking of devices and nodes at the network layer, and a service abstraction level. The document proposes a number of solutions to achieve secure formation of the wireless bubble around the user and establishment of the PN to support secure access to personal and public services. This deliverable is also the place holder for the project terminology and a number of technical scenarios encompassing most of the challenges expected in the definition of the architecture and in the provision of services for personal networks.
[ Conceptual secure PN architecture (common deliverable with WP4) ]

D4.2.1 State of the art and Functional Specification of Network-Level Security Architecture
Abstract
Securing personal networks involves aspects of securing the applications running on top of the personal networks as well as securing the networking components and protocols constituting the personal networks. Task 4.2 is dedicated to aspects of securing application level communication in personal networks. In this context his deliverable is dealing with the aspects of secure service discovery and service management, secure access to applications and services provided by other PNs or by foreign service providers over the public network as well as provisioning of service in personal area networks and denial of service detection and prevention. For each of those areas, architectural building blocks are proposed and investigated with regard to security and privacy.
[ State of the art and Functional Specification of Network-Level Security Architecture ]

D4.2.2 Final version of the Service-Level Security Architecture Specification
Abstract
This deliverable is the functional specification of deliverable D4.2.1. It provides the complete specification for securing the MAGNET architecture on the service level. The deliverable is structured as follows:

• MAGNET service discovery architecture is described, as well as the security mechanisms, which protect security requests and advertisements. Then, a reputation-based trust management solution is proposed for inter-PN interaction.
• A profile management and AAA solution is described. Detailed Profile data and metadata is provided, as well as a security adaptation solution, which helps optimizing security at application level.
• Interaction between the personal nodes and public service providers is discussed through three levels: network access, web services access and Multimedia services access.

[ Final version of the Service-Level Security Architecture Specification ]

D4.2.3 Implementation and Evaluation of the Service-Level Security Architecture
Abstract
The main objective of the present deliverable is to provide the implementation specification, document test scenarios, and present the simulation results of the service-level security components, which were defined in deliverable D4.2.2. Simulation and functional tests are the two evaluation tools used in this context. The studies reported in this deliverable evolve almost in parallel with the evaluation of the network-level security architecture, contributing together to a first evaluation of the main decisions MAGNET has made with respect to PN security.
[ Implementation and Evaluation of the Service-Level Security Architecture ]

D4.3.1 State of the art and Functional Specification of Network-Level Security Architecture
Abstract
The purpose of this deliverable is to provide a fruitful and comprehensive knowledge about the critical security aspects on the network level of the personal networks architecture. The structure of this deliverable is as follows: Firstly, a state of the art is provided. This section was derived from an extended research at the networking elements, such as the routing process and the cross layer security. Secondly, the previous work on the state of the art is extended with the provision of the functional specifications of each networking element. The functional specifications are supposed to become the initial feed for the following deliverables.
[ State of the art and Functional Specification of Network-Level Security Architecture ]

D4.3.2 Final version of the Network-Level Security Architecture Specification
Abstract
This deliverable is the functional continuation of the D4.3.1. It provides a concrete and complete specification of the critical security aspects on the network level of the MAGNET architecture. There are main four sections, each focusing on various networking elements, namely:

• Security in personal network (PN), where a security model for PN is defined.
• The security mechanisms and protocols of PN and P-PAN, where protocols for authentication, key exchange and key management are introduced. A protocol implementation procedure is also proposed.
• Secure routing for PN communications, where securing processes and protocols for packet forwarding and route discovery are researched.
• In cross layer security, the Universal Convergence Layer and the PHY protection are discussed and further analysed.

[ Final version of the Network-Level Security Architecture Specification ]

D4.3.3 Implementation and Evaluation of the Network-Level Security Architecture
Abstract
The main objective of the present deliverable is to provide the implementation specification, document test scenarios, and present the simulation results of the critical security aspects on the network level of the MAGNET architecture, which were defined in deliverable D4.3.2. Simulation and functional tests are the two evaluation tools used in this context. The studies reported in this deliverable evolve almost in parallel with the evaluation of the service-level security architecture, contributing together to a first evaluation of the main decisions MAGNET has made with respect to PN security. There are main three sections, each focusing on various networking elements which are implemented, evaluated and tested:

• The security mechanisms and protocols of PN and P-PAN, where protocols for authentication, key exchange and key management.
• Secure routing for PN communications.
• In cross layer security, the Universal Convergence Layer and the PHY protection.

[ Implementation and Evaluation of the Network-Level Security Architecture ]