Publications

@article{almenarez005,

title = {PECEVA: An adaptable and energy-saving credential validation solution for pervasive networks},

author = {Florina Almenarez and M. Francisca Hinarejos and Andrés Marín and Josep Lluís Ferrer-Gomila and Daniel Díaz Sánchez},

url = {https://www.sciencedirect.com/science/article/abs/pii/S0020025516301578?via%3Dihub},

doi = {https://doi.org/10.1016/j.ins.2016.03.010},

issn = {0020-0255},

year  = {2016},

date = {2016-03-12},

urldate = {2016-03-12},

journal = {INFORMATION SCIENCES},

volume = {354},

pages = {41-59},

abstract = {Wireless, mobile, and context-awareness applications are considered to be the epitome of pervasive computing, but they bring with them the inherent security challenges of mobile ad-hoc networking. Mobile ad-hoc networks are mainly formed by mobile users, which can belong to different trust domains, in order to leverage the wealth of pervasive resources and available capabilities. The use of digital certificates is suitable for pervasive networking because of its decentralized and dynamic nature. Nevertheless, the validation of such certificates can become a more complex and costly process than it is in fixed-infrastructure networks. This is because pervasive networks face challenges such as environments that change with a certain degree of randomness, ad-hoc interactions with foreign devices, temporal disconnections that make it difficult to access updated and required information, and limited devices running costly processes. For these reasons, we propose a user-centric architecture that extends the validation of digital certificates in an adaptive way. The main contribution consists of a decision engine that takes advantage of the specific local and external resources in an opportunistic fashion. The solution preserves the security level required for each application and the resource consumption of the user device.



},

keywords = {Certificate validation efficiency, Decision engine, inrisco, Pervasive networks, PKIX, Trust management},

pubstate = {published},

tppubtype = {article}

}

@article{ariascabarcos001,

title = {A Metric-Based Approach to Assess Risk for "On Cloud" Federated Identity Management},

author = {Patricia Arias-Cabarcos and Florina Almenárez-Mendoza and Andrés Marín-López and Daniel Díaz-Sánchez and Rosa Sánchez-Guerrero },

url = {https://link.springer.com/article/10.1007/s10922-012-9244-2},

doi = {https://doi.org/10.1007/s10922-012-9244-2},

issn = {1573-7705},

year  = {2012},

date = {2012-07-04},

urldate = {2012-07-04},

journal = {Journal of Network and Systems Management},

volume = {20},

issue = {4},

pages = {513-533},

abstract = {The cloud computing paradigm is set to become the next explosive revolution on the Internet, but its adoption is still hindered by security problems. One of the fundamental issues is the need for better access control and identity management systems. In this context, Federated Identity Management (FIM) is identified by researchers and experts as an important security enabler, since it will play a vital role in allowing the global scalability that is required for the successful implantation of cloud technologies. However, current FIM frameworks are limited by the complexity of the underlying trust models that need to be put in place before inter-domain cooperation. Thus, the establishment of dynamic federations between the different cloud actors is still a major research challenge that remains unsolved. Here we show that risk evaluation must be considered as a key enabler in evidence-based trust management to foster collaboration between cloud providers that belong to unknown administrative domains in a secure manner. In this paper, we analyze the Federated Identity Management process and propose a taxonomy that helps in the classification of the involved risks in order to mitigate vulnerabilities and threats when decisions about collaboration are made. Moreover, a set of new metrics is defined to allow a novel form of risk quantification in these environments. Other contributions of the paper include the definition of a generic hierarchical risk aggregation system, and a descriptive use-case where the risk computation framework is applied to enhance cloud-based service provisioning.

},

keywords = {Cloud computing, consequence, federation, risk assessment, SAML, servicioseguridad, Trust management},

pubstate = {published},

tppubtype = {article}

}

@article{almenarez002,

title = {fedTV: Personal Networks Federation for IdM in Mobile DTV},

author = {Florina Almenárez and Patricia Arias and Daniel Díaz-Sánchez and Andrés Marín and Rosa Sánchez.},

url = {https://ieeexplore.ieee.org/document/5955185

https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=5955185},

doi = {https://doi.org/10.1109/TCE.2011.5955185},

issn = {0098-3063},

year  = {2011},

date = {2011-05-03},

urldate = {2011-05-03},

journal = {IEEE TRANSACTIONS ON CONSUMER ELECTRONICS},

volume = {57},

issue = {2},

pages = {499 - 506},

abstract = {Mobile Social TV and Mobile Video Blogging are new challenging scenarios arising from mobile and online DTV. They will allow for new interactions, and dynamically share content and delegate services. That requires the dynamic discovery, joining, and establishing new federations, emerging the trust management as an important facet for that. Such trust management should be autonomous, user-centric, and dynamic to cope with forthcoming applications. We propose an enhanced mobile client to support federated environments for cooperation in mobile DTV scenarios. Our proposal extends the Enhanced Client Profile defined in SAML v2, incorporating a trust management layer inside user's consumer electronic devices' software.},

keywords = {anot, anotacionsemantica, authentication, Digital TV, identity management, Mobile communication, Mobile computing, mobile DTV, Mobile handsets, Personal Network Federation, SAML, Trust management},

pubstate = {published},

tppubtype = {article}

}

@article{almenarez001,

title = {Trust management for multimedia P2P applications in autonomic networking},

author = {Florina Almenárez and Andrés Marín and Daniel Díaz and Alberto Cortés and Celeste Campo and Carlos García-Rubio},

url = {https://doi.org/10.1016/j.adhoc.2010.09.005

https://www.sciencedirect.com/science/article/abs/pii/S1570870510001459?via%3Dihub

https://www.sciencedirect.com/science/article/pii/S1570870510001459/pdfft?md5=57c716d20dd2bb1db25f81c4cc063ebb&pid=1-s2.0-S1570870510001459-main.pdf},

doi = {https://doi.org/10.1016/j.adhoc.2010.09.005},

issn = {1570-8705},

year  = {2010},

date = {2010-10-01},

urldate = {2010-10-01},

journal = {Ad Hoc Networks},

volume = {9},

issue = {4},

pages = {687-697},

abstract = {In the last years, trust management has become a fundamental basis for facilitating the cooperation between different users in peer-to-peer (P2P) multimedia applications within autonomic networks. In these networks and applications, trust management should fulfill certain requirements (i.e. decentralisation, dynamism, simplicity, interoperability, etc.) for being functional. In this paper, we propose an evolutionary model of trust management that captures dynamic entities’ behaviour over time. Likewise, we explain protection mechanisms against several attacks, which are based on the cooperative behaviour of the entities, trust relationship properties, and trust rules. Finally, we successfully validate our model from several scenarios and compare it with other proposals in this field.},

keywords = {anotacionsemantica, Autonomic networking, ITACA, Multimedia P2P applications, Trust attacks, Trust management},

pubstate = {published},

tppubtype = {article}

}