Informatik VIII: Lehrstuhl für
Netzarchitekturen und Netzdienste 
Layout: 
Sie sind hier: Forschung → Network Security
 
Startseite
Mitarbeiter
Projekte
Forschung
Network Security
Measurement and Monitoring
Peer-to-Peer and Overlay networks
Mobile Communications
Future Internet
Publikationen
Veranstaltungen
Lehre
DA, SEP, MA und BA
Stellenangebote
Kontakt
Interne Seiten
 

Research on Network Security

Current staff:  Ali Fessi, Marc Fouquet, Dirk Haage, Andreas Klenk, Heiko Niedermayer, Gerhard Münz

We are working on different aspects of security, especially intrusion detection, anonymous communication as well as classical security in special networks, say overlay Peer-to-Peer networks.

Network Anomaly and Attack Detection  (Münz)

Security and Trust in Peer-to-Peer networks (Niedermayer)

Anonymity and Traffic Analysis (Niedermayer)

Perimeter Access Control (Klenk)

Automated Trust Negotiation (Klenk)

Adaptive Security (Klenk, Niedermayer)

 

Projects

IST-FP6 Project Diadem Firewall (Münz, Fessi, Haage)

Landesstiftung BW Project Semobis (Klenk, Niedermayer)

DFG LUPUS (Münz)

 

 

Network Anomaly and Attack Detection Gerhard Münz

Distributed Denial-of-Service attacks aim at injecting bursts of load to resources in networks. A consequence could be that the resource is overloaded and rendered useless. Anomaly detection tries to detect such kinds of unusual behaviour (attack) without knowing the exact attack pattern.

We are particularily studying statistical methods and data mining methods for their application in network anomaly and attack detection.
Security and Trust in Peer-to-Peer networks Heiko Niedermayer

The decentrality of Peer-to-Peer networks is a fundamental problem for their security. We are interested in way to secure Peer-to-Peer networks that add as little as possible centralized or external resources. In this context we are also studying trust metrics that can be used to evaluate nodes.
Anonymity and Traffic Analysis Heiko Niedermayer

We are working on research on the design and components on anonymous systems. Systems that focus on providing anonymous communication for special applications are of particular interested for us.
Perimeter Access Control Andreas Klenk

This research deals with the shortcomings of current firewall technology and aims at providing new and flexible means for access control. Access control at network perimeter can filter malicious access and help to protect services in the network from unauthorized access and intrusions.
Automated Trust Negotiation Andreas Klenk

The method to establish a mutual agreement between two parties in an autonomic fashion is termed Automated Trust Negotiation. Disclosure policies control the startegy of the negotiation and the exchange of credentials. These policies prevent the unintentional disclosure of private information.
Adaptive Security Andreas Klenk, Heiko Niedermayer

Adaptive security is a new way to autonomously negotiate end to end security configurations based on performance and security requirements. This technology allows to deprecate vulnerable protocol configurations and to introduce new protocols without changing the applications. The Extensible Security Adapatation Framework supports currently the auto-configuration and exchangeability of IPSec, TLS and SSL.

Security in Beyond 3G networks Marc Fouquet, Ali Fessi

We are investing 3G architectures / IMS / SAE Networks for weaknesses that could be used for DoS attacks. We also work on DDoS detection and -defense in Beyond 3G networks.

 
 
© copyright 2009 TUM Informatik VIII: Lehrstuhl für Netzarchitekturen und Netzdienste Impressum