- Cyber Security Challenges and Opportunities in the Context of Pakistan - 2015-03-04
- Papers presented in ICOSST held at UET Lahore - 2014-12-18
- A Journal Paper Accepted in The computer Journal, Oxford Journals - 2014-12-08
- SpringerOpen journal Paper published - 2014-11-11
- NUST Intra Research Conference - 2014-11-08
Successful Master Thesis Defense of Amir Ali -- 2015-10-01
We are pleased to announce that Mr. Amir Ali has successfully defended his MS-CCS thesis titled "GARD: Generic access Right Delegation framework in collaborative Environment ". He was able to complete his thesis with in the allotted time. Congratulations Mr. Amir, on your accomplishment. We wish you good luck with your future endeavors.
Successful Master Thesis Defense of Yasir Mehmood -- 2015-07-15
We are pleased to announce that Mr. Yasir Mehmood has defended his MS-CCS thesis titled "Distributed Intrusion detection System Using Mobile Agents in Cloud Computing Environment ". He was able to complete his thesis with in the allotted time. During his thesis, he also published a research paper titled “Intrusion Detection System in Cloud Computing: Challenges and Opportunities”. Congratulations Mr. Yasir, on this achievement.
Successful Master Thesis Defense of Anam Zahid -- 2015-06-04
We are pleased to announce that Ms. Anam Zahid has defended her MS-IT thesis titled "Secure Sharding and Key management in cloud ". She also got her paper published, titled, “Security of Sharded NoSQL Databases: A Comparative Analysis”. She completed her thesis with in the allotted time. Best wishes to Ms. Anam in all of her future endeavors.
Successful Master Thesis Defense of Irfan Azhar -- 2015-05-06
We are happy to announce that Mr. Irfan Azhar has defended his MSc thesis titled "Keeping crypto keys secret in accessible hardware ". During his thesis, he also published a research paper titled “Keeping Secret Keys Secret in Open Systems”. He was able to complete his thesis with in the allotted time.
Congratulations Mr. Irfan, on your achievement and all the best for your future.
Successful Master Thesis Defense of Osama Bin Fardoon -- 2015-03-20
We are pleased to announce that Osama Bin Fardoon has defended his MSc thesis titled "Design and Implementation of security protocol for NFC based financial applications ". He was able to complete his thesis well within the allotted time. Congratulations Osama, on this achievement.
Successful Master Thesis Defense of Fowz Masood -- 2015-02-13
We are very pleased to announce that Fowz Masood has defended his MSc thesis titled "Enhancing Trust in Cloud Federation ". He was able to complete his thesis well with in the allotted time. We are proud of his accomplishments. Congratulations Fowz, on your achievement! Wish you good luck for your future endeavors.
Successful Master Thesis Defense of Faria Mehak -- 2015-02-11
We are extremely pleased to announce that Faria Mehak has defended her MSc thesis titled "Security-as-a-Service for Column-Oriented NoSQL Databases in Cloud ". Faria’s accomplishments during her MSc studies are remarkable with numerous peer-reviewed presentations, abstracts and published articles in various prestigious confrences and journals. She was able to complete her thesis with in the allotted time. Her work simply is at the forefront of the field and we are extremely proud of her accomplishments.
Congratulations Faria, you surely deserve every honour that you have received!
Successful Master Thesis Defense of Naveed Ahmed -- 2015-01-07
KTH - AIS Lab is pleased to announce the successful Masters' thesis defense of Mr. Naveed Ahmad. His thesis titled "Secure Migration of Virtual Machine (SV2M) in Cloud Federation using Enhanced Key Management", aims toward providing a comprehensive system for secure migration of VM in the Cloud environment. After performing a thorough security requirement analysis of the VM migration process, the proposed SV2M provides security features such as authorization, confidentiality, replay protection, integrity, mutual authentication and source non-repudiation with negligible modifications in existing infrastructure. He has also enhanced the key manager of Cloud provider by introducing new features for the management and storage of keys, involved in the SV2M solution. Furthermore, he has also incorporated the SV2M in a widely-used, open source Cloud platform, and evaluated it with respect to performance and security. Naveed's accomplishments during his MS thesis are two publications at well-reputed conferences of IEEE & Springer. We congratulate Naveed on this achievement.
Successful Master Thesis Defense of Misbah Irum -- 2014-09-07
KTH - AIS Lab would like to congratulate Ms. Misbah Irum on her successful thesis defense. In her thesis titled “Secure User Centric Access Control Policy Management Framework for Cloud Applications”, she proposed new approach for access control in Cloud which externalizes access control from Cloud applications and enables users to create and manage access control policies on their resources according to their own security and access control requirements. The framework also provides users with a central control point and a standard policy definition language to specify and manage access control on all their resources scattered across the Cloud. she presented the framework and described the protocol which defines the interaction between different components of the system to specify and enforce User-Centric policies using XACML standards. To show the applicability of the designed framework she developed a prototype using Google spreadsheet as the Cloud application. The evaluation of the prototype verifies the claims of the user centric access control framework in providing users with the control to define access control policies according to their requirements on their resources. Real world Cloud application is used to show the applicability and integration of the designed framework with existing Cloud applications. Best wishes to Misbah in all of her endeavors!
Successful Final Year Project Completion of BS Students -- 2014-06-01
The KTH-AIS Lab would like to congratulate Mr. Ummair Asghar, Mr. Salman Ansari, Mr. Jawad Hussain, Mr. Junaid Sarfraz, Mr. Sadiq Alvi and Mr. Qazi Amir Hamza, students of Bachelors in Software Engineering (BESE) on successful completion of their Final Year Projects. Their projects are part of ICT R&D funded research project entitled “Extensible Access Control Framework for Cloud Based Applications” and was carried out under the supervision of Lab Director, Dr. Awais Shibli. Their work highlights the solution for SaaS security issues in terms of authorization. They provided high-level of extensibility and security by incorporating multiple access control models pertaining to the needs of Cloud service consumers (organizations) and provided a generic platform to specify and manage complex access control policies in a flexible manner. Thus enterprises will be facilitated by transforming their security policies to security implementation without having expensive and error-prone work. The artifact is enclosed an implementation of three standardized and commonly used access control models (ABAC, UCON, FGAC). These models are implemented using Extensible Access Control Markup Language (XACML) providing a challenging research area. This project required proficiency in Java, J2SE, J2EE, JSP, Servlets, Web services, XML, SAML, Apache Tomcat Server and Cryptographic techniques.
Successful Master Thesis Defense of Sehar Iqbal -- 2014-05-08
KTH - AIS Lab would like to congratulate Ms. Sehar Iqbal on her successful thesis defense. In her thesis titled “Quantifying the impact of randomness in simulation based studies”, she performed scientific studies in Wireless Sensor Networks rely on simulations. Simulations are heavily dependent on random numbers and researchers generally use random numbers generated through common random number generating APIs of programming languages. Thus, in this research, she studied the impact of using different types of random numbers in a simulation based study of WSN. She used eight different types of random numbers generated through various algorithms. These random numbers are first evaluated using standard random number testing procedures such as Run Test, Serial Test, and Chi square Test. Then she used the same random numbers in a Markov chain based probabilistic study of Wireless Sensor Networks. We congratulate Sehar on this achievement.
Successful Master Thesis Defense of Umer Khalid -- 2014-04-04
KTH - AIS Lab would like to congratulate Mr. Umer Khalid on his successful thesis defense. In his thesis titled “Secure and Privacy Enhanced Authentication & Authorization in Cloud”, he provides the design and implementation of an anonymous authentication and authorization protocol as a solution to these problems. The solution consists of carefully selected components such as, FIPS 196 for a proven and robust authentication mechanism, whereas, XACML based Policy Enforcement Point (PEP) for authorization. An identity management system (IDMS) is chosen in order to maintain a record of the registered users. For anonymity, the designed protocol uses traceable anonymous certificates (TAC’s) instead of simple public key certificates generated using anonymous identities (AID). A client side application passes these certificates as initial parameters for authentication to a strong authentication server (SA server). Certificates are modified further such that they do not leak any Personal Identifiable Information (PII) about the users. Authorization is provided using standard XACML based access control policies which are binded to the anonymous identities of the registered users instead of real identities. Hence using this protocol, threats such as identity theft and leakage can be mitigated with minimal changes to existing setups. In order to validate the designed protocol, Scyther is used. Congratulations Umer for your successful thesis defense! We wish you continued success in your career.
Successful Master Thesis Defense of Muhammad Kazim -- 2014-04-01
Successful Master Thesis Defense of Umme Habiba -- 2014-03-17
KTH - AIS Lab would like to congratulate Ms. Umme Habiba on her successful thesis defense. In her thesis titled “Cross-domain Identity Management System for Cloud Environments”, she addressed the issues of handling and sharing of Identity credentials across multiple Cloud service providers and consumers. Identity credentials are generally considered to be the most sensitive information since its unauthorized disclosure may lead to many serious consequences. She addressed the existing identity managemnt issues by first structuring the domain of identity management in the form of a well-organized taxonomy, and then by implementing a cross-domain identity management system for Cloud. Furthermore, she enhanced SCIM protocol by adding an encryption module that help ensures the confidentiality of identity credentials. During her thesis, she also published a research papers titled “Assessment Criteria for Cloud Identity Management Systems” in 19th IEEE Pacific Rim International Symposium on Dependable Computing (PRDC), IEEE, Vancouver, British Columbia, Canada. Best wishes to Habiba in all of her future endeavors.
Successful Master Thesis Defense of Ayesha Kanwal -- 2014-03-16
KTH - AIS Lab is extremely pleased to announce that Ms. Ayesha Kanwal has defended her MSc thesis titled "Evaluation and Establishment of Trust in Cloud Federation". In her thesis wok, she proposed and implemented a trust evaluation system for establishment of trust between home and foreign CSPs participating in Cloud federation. Cloud federation, brings remarkable advancement in Cloud services by extending the existing infrastructure for sharing of resources. Besides various advantages, Cloud federation has many challenges. Trust is one of the challenging issues that limit the adoption of Cloud federation by service providers. In order to assure the security of data at foreign CSP platform, there is need to evaluate and establish trust between both participating Cloud providers. Ayesha’s accomplishments during her MSc studies are remarkable with numerous presentations, demos and published research articles in various prestigious confrences. We congratulate Ayesha on this achievement.
Successful Master Thesis Defense of Faiza Fakhar -- 2014-02-01
The KTH-AIS Lab Group would like to congratulate Ms. Faiza Fakhar on her successful thesis defense! In her thesis entitled “Symmetric Cryptographic Key Management in Cloud Based Environment”, she carried out the research in three main directions, firstly, Secure Data Storage on Cloud which offers a mechanism for secure storage of sensitive data on Cloud. This storage scheme can be further utilized in any type of data storage. Using secure protocol user can share cryptographic key with Cloud to manipulate encrypted data. Secondly, Symmetric Cryptographic Key as Cloud Service which provides symmetric cryptographic key as Cloud service and user may embed this service in other utilities such as mobile/PDAs digital signature utilities etc. and thirdly, Secure Data Access which ensure key access security. She also has two relevant research publications in prestigious conferences. Best wishes to Faiza in all of her endeavors!
Successful Master Thesis Defense of Faisal Karim Bhutta -- 2014-01-01
KTH - AIS Lab would like to congratulate Mr. Faisal Karim Bhutta on his successful thesis defense. In his thesis titled “Smartphone based Authentication & Authorization Protocol for Smart Physical Access Control System (SPACS)”, he designed architecture for PACS along with security protocol for smartphone that is used for identity verification, authentication and authorization in PACS. The designed authentication protocol is an extension of two-factor authentication protocol described in FIPS-196 standard. Furthermore, the usage of symmetric key cryptography provides an efficient solution to achieve confidentiality of messages exchanged between components of designed PACS. In order to ensure the presence of the legitimate user in the premises, the system uses a pass-code feature that is only valid for one time usage. Hence using designed protocol, user’s smartphone can act as authenticator in the system. Since, the solution may be used by the non-technical persons so it is designed that it should be user friendly and require minimum efforts for configuration of security parameters. In order to validate the security of designed protocol, automated protocol verification tool Scyther is used. After validation, it is verified that our security protocol resists against Man-in-the-Middle, replay and attacks on confidentiality of user’s credentials. Good wishes to Faisal for future endeavors.
Successful Master Thesis Defense of Amna Joiya -- 2013-12-01
KTH - AIS Lab would like to congratulate Ms. Amna Joiya on her successful thesis defense. In her thesis titled “Secure and Privacy Enhanced Email System as a Cloud Service”, she addressed the security issues faced by email systems and proposed a system which is based on proxy architecture to provide standard email services along with extended and innovative features. Some of the extended features are: (a) protection of email headers using standard cryptographic format, (b) transparent handling of anonymous identities belonging to different domains, (c) protection of inboxes from unauthorized emails. The designed system is implemented in the form of a service using standard techniques so it can be deployed easily in the cloud environment as a service. The system also supports cross domain exchange of email letters. It transparently and securely exchanges user’s private information across the domain after developing infrastructure level trust between them. After designing and implementing, he verified the system using automated verification tool; Scyther. Heartiest congratulations to Amna on this commendable achievement and best wishes for all of your future prospects.
Successful Final Year Project Completion of Arjumand Fatima and Yumna Ghazi -- 2013-08-01
The KTH-AIS Lab would like to congratulate Ms. Arjumand Fatima and Ms. Yumna Ghazi, students of Bachelors in Information & Communication Systems Engineering (BICSE) on successful completion of their Final Year Project. Their project entitled “Design and Implementation of Identity Control and Access Management for Cloud-based Environment” was carried out under the supervision of Lab Director, Dr. Awais Shibli. Their work highlights the solution of identity management challenges in cloud computing by providing an implementation of Web Single Sign-on (SSO) using SAML, according to the Federal ICAM’s specifications. They successfully developed an effective SSO mechanism which centralizes authorization and identity management in the cloud and eliminates the need for multiple identities, consequently reducing the possibility of identity theft and making the cloud experience more secure. This project required proficiency in Java, J2SE, J2EE, JSP, Servlets, Web services, XML, SAML, Apache Tomcat Server and Cryptographic techniques.
Currently, Ms. Arjumand Fatima and Ms. Yumna Ghazi are working as Research Associates at KTH-SEECS AIS Lab in an ongoing funded project named “Extensible Access Control Framework for Cloud based Applications”.
Successful Master Thesis Defense of Hirra Anwar -- 2013-07-01
We are extremely pleased to announce that Hirra Anwar has defended her MSc thesis titled "Secure Access Control System for Digital Repositories - DSpace as a case study". Hirra’s accomplishments during her MSc studies are remarkable with numerous peer-reviewed presentations, abstracts and published articles in various prestigious confrences and journals. She was able to complete her thesis with in the allotted time. Her work simply is at the forefront of the field and we are extremely proud of her accomplishments. We are also very excited to have Hirra as a faculty member in Department of Computer Science at NUST-SEECS.
Congratulations Hirra, you surely deserve every honour that you have received!
Successful Master Thesis Defense of Rahat Masood -- 2013-05-01
KTH - AIS Lab is extremely pleased to announce that Ms. Rahat Masood has defended her MSc thesis titled "Fine-Grained Access Control for Database Management Systems". In her thesis work, she proposed a fine-grained access control scheme, to enhance the security of Database Management Systems. The advancement in database technology (mainly including Object-Oriented and NoSQL) has made traditional security controls no longer adequate for providing effective security measures, since design and principles of such databases are completely different from those of traditional databases. In order to provide the strong shield of protection in Database Management Systems, a fine-grained access control scheme, to control access at the row and column level or even at cell-level, should be effectively implemented for the traditional and the latest database paradigms. Rahat’s accomplishments during her MSc studies were outstanding with various published research articles in IEEE, ACM and Springer prestigious confrences along with a publication in a journal paper. We congratulate Rahat on this achievement.
Successful Master Thesis Defense of Imraan Shamoon -- 2013-05-01
The KTH-AIS Lab Group would like to congratulate Mr. Imraan Shamoon on his successful thesis defense! In his thesis entitled “Access Control Lists Conflict Detection and Resolution System”, he carried out the research in two main directions, where firstly he proposed ACL conflict detection and resolution algorithm, which resolve conflicts with user interaction. Secondly, he used XACML policy specification language to convert the conflict free ACLs to XACML policy after which the request evaluator used the XACML policy to response the access request. During his thesis, he published one research paper titled “Policy Conflict Management using XACML” in 2nd International Conference on Communication and Information Sciences, IEEE Proceedings. Best wishes to Imraan in all of his endeavors!
Successful Master Thesis Defense of Khalid Hafeez -- 2013-04-12
Khalid Hafeez successfully defended his thesis work entitled "Interoperability among Access Control Models” on April 12, 2013. Khalid completed his dissertation research in making access control models interoperable among different organizations. His solution shows the sharing of valuable resources between different organizations in a secure, reliable and efficient manner with no or minimal changes to their existing infrastructure. The proposed solution converts the existing access control policies of collaborating organizations into Attribute based Access Control (ABAC) Model by a Model Transformation Utility (MTU). As a case-study, policies of Role based Access Control (RBAC) model are transformed into ABAC policies using MTU and using Extensible Access Control Markup Language (XACML). Khalid designed number of test cases to verify the correctness of policies transformation. Congratulations Khalid for your successful thesis defense! We wish you continued success in your career.
New Research Initiatives for MS Students -- 2013-04-12
KTH-Applied Information Security Lab offers thesis research in the areas of Cloud Security. Currently, we are working on multidisciplinary areas of information security, particularly including Cloud and Database security. In order to expand our knowledge on Cloud security domain, we are proposing several research thesis ideas on the design and development of solutions for secure Cloud environments. Through these new initiatives, we aim to meet the security challenges that Cloud Computing is facing today.
We welcome all students in search of a Master thesis to identify an area of interest from our given research initiatives and to communicate this to us whenever possible. Besides the possibility of working on predefined thesis topics, we can also specify custom topics related to the interests of students (however, topics should only be from Cloud security area). We will be glad to discuss and form your ideal thesis topic. Please click the Research Initiatives to read about our ideas.
If you decide to work on any of the ideas, please let us know. Thesis topics can be discussed with Lab Director - Dr. Muhammad Awais Shibli during office hours. To learn more about available topics, contact us at firstname.lastname@example.org
Successful Master Thesis Defense of Um-e-Ghazia -- 2013-03-27
The KTH-AIS Lab Group would like to congratulate Miss Um-e-Ghazia on her successful thesis defense! Her thesis titled “Usage based Access Control for Web based Applications” was carried out in two main directions where she explored the applicability of Usage based access control model in different applications and environments. Her theoretical work highlights the essential features that must be incorporated in access control models to cater dynamism of Cloud environment. She analyzed and compared number of Cloud based access control models through NIST defined access control metrics. Her results indicate that UCON model is the most appropriate model that can perform better according to specifications of Cloud environment. She has proposed the UCON profile in eXtensible access control markup language (XACML). This UCON profile has been formulated by the addition of newly created attributes and identifiers in XACML that enable organizations to deploy this model in different scenarios. During her thesis, she published two research papers titled “Comparative Analysis of Access Control Systems on Cloud” and “Usage Control Model Specification in XACML Policy Language”. We will sorely miss her intelligence, enthusiasm and mentorship in the lab, and although we weigh her departure with a heavy heart, we anticipate great things in her future. Best wishes to Ghazia in all of her endeavors!
Successful Master Thesis Defense of Muhammad Asif -- 2013-01-02
KTH - AIS Lab would like to congratulate Mr. Muhammad Asif on his successful thesis defense. In his thesis titled “Generic Light Weight Certificate Management Protocol”, he designed Generic Light Weight Certificate Management Protocol (GLCMP). He adopted a holistic approach in order to solve complex certificate management task. In order to achieve desired objectives, proxy based architecture has been adopted to offload computational intensive operations from mobile devices. In GLCMP, the trust between mobile device and proxy server is developed without exchanging any secret information on network. In addition, GLCMP is designed and developed by using the concept of generic security objects. The claimed security properties (authentication, confidentiality and non-repudiation) of the protocol are formally verified by employing formal Z-Notation modeling. In Z-Notation modeling, different attacks are formalized on messages exchanged between components and discussed all possible scenarios in which an attacker can attack the protocol. Congratulations Asif and best wishes for future.