Inaktiv platsannons

Thesis - Access control in Information-centric Networking i Stockholm, Sweden

Ericsson is the driving force behind the Networked Society where every person and every industry is empowered to reach their full potential. We make a difference, do you wanna shape the world with us?

Om tjänsten

Date: Sep 11, 2018

Background

The main use of the Internet today has shifted toward distribution of content. New Internet architecture designs are underway to rethink how content should be distributed and stored in the Internet. One promising approach is Information-centric Networking (ICN), a candidate of next generation Internet architecture. The main idea of ICN is to support content-based data dissemination through in-network caching and request-based content retrieval. Data objects can be cached in ICN routers, this way the requests can be served directly from the router caches and not only from the original source. This architecture design is different from traditional host-based end-to-end communication. It is more scalable and efficient in the distribution of data objects.

 

Description

This thesis work is intended to combine and extend three previous thesis works. Two of the previous works have already been integrated into a network solution for disaster scenarios. It is aimed at distribute cached information in the network in such a way that when network connectivity breaks (unexpectedly) and partition the network, most data will still be available in the fragments of the network. This is achieved by predicting were the network might fragment and making sure that each fragment has a Content Tracker (CT) that tries to make sure that relevant data is stored within the fragment.

The third thesis work is about the use of Attribute Based Encryption ABE) for access control.

 

The task of this thesis work is to introduce and implement the ABE based access control in the disaster ready ICN network and evaluate it compared to other access control mechanisms such as group key encryption or token based access control systems.

 

ICN decouples data from the source and allows data objects to be stored anywhere. To allow storing data on untrusted nodes and transporting it over untrusted links ICN relies on object security. When multiple access groups shall have access to the same data object it is a big advantage if it is not necessary to encrypt the same object multiple times. ABE can support complex access policies that make it possible to encrypt the data object only once.

 

Objectives:

  • Design and implement an app that can be used to request and publish information objects (App should be uploaded to an Appstore)
    • The App should be able to decrypt retrieved objects for which  the user can present the required attributes.
    • The App should have functionality to define access policies for published objects.
  • A simple attribute management system should be implemented to make it possible to provide users with attributes from multiple attribute authorities.
  • The App should be able to communicate using device-to-device communication, e.g. Bluetooth, Direct WiFi.
  • The App should also be able to communicate directly with IoT devices that use CCN/NDN natively over e.g. 802.15.4.

 

In ICN each node has a cache where it can store information objects. This means that objects can be made available to other users at a later time, even if the original source is no longer available or offline. In a disaster scenario where no infrastructure is available this makes all nodes capable to function as “data mules”.  To be able to find data that might be stored on some nearby node. There are several challenges to achieve this. If time permits some of these challenges might also be part of the thesis work.

  • How to find out which nearby nodes do exist?
  • Which node has what in its cache?
  • Which interfaces should be used for which communication at which time?
  • On which interfaces should Interest messages be sent?
  • When should a node allow for transit traffic?
  • Which objects should be stored in the cache and which should be removed?

 

The main goal of this thesis work is to introduce and implement the ABE based access control in the disaster ready ICN network and evaluate it compared to other access control mechanisms such as group key encryption or token based access control systems. The work will be carried out in a number of phases.

 

  1. Perform a literature study to find out the state of the art for how to perform access control for ICN in disaster scenarios.
  2. Select/create a concrete disaster scenario to be used in this thesis work.
  3. Create an information model and access policies that can be used in the selected scenario.
  4. Develop the App.
  5. Set up a lab environment where the App can be tested. This environment will include ICN enabled sensor devices, ad-hoc infrastructure ICN-WiFi base stations (e.g. based on Raspberry Pies) and possibly some resource servers.
  6. Evaluate the advantages of using ABE compared to existing access control technologies.

 

 

Description of the work

 

  • Preparations and reading: information centric networking (ICN), disaster scenario work done for ICN, Attribute Based Encryption (ABE)
  • Implement a disaster App that provides ABE access control and necessary support systems, e.g. an attribute management system
  • Evaluate the advantages of using ABE compared to other access control technologies.
  • Report writing
  • Code documentation and packaging

 

Qualifications

You should be self-motivated and used to working with others in project teams. The positions also require you to be fluent in English, both written and spoken. In return, you will get to perform you thesis work with cutting-edge technology in a stimulating learning environment with a friendly atmosphere.

 

You should have good programming skills. Likely programming environment include Linux, C, Android and Java.

 

The Thesis is for a Master of Science Degree in Electrical Engineering, Computer Science or equivalent.

 

Ericsson provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, sexual orientation, marital status, pregnancy, parental status, national origin, ethnic background, age, disability, political opinion, social status, veteran status, union membership or genetics.

Ericsson complies with applicable country, state and all local laws governing nondiscrimination in employment in every location across the world in which the company has facilities. In addition, Ericsson supports the UN Guiding Principles for Business and Human Rights and the United Nations Global Compact.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, training and development.

Ericsson expressly prohibits any form of workplace harassment based on race, color, religion, sex, sexual orientation, marital status, pregnancy, parental status, national origin, ethnic background, age, disability, political opinion, social status, veteran status, union membership or genetic information.

 

Primary country and city: Sweden (SE) || || Stockholm || Stud&YP

Req ID: 256594

Publicerad den

28-02-2024

Extra information

Status
Stängd
Ort
Stockholm, Sweden
Typ av kontrakt
Heltidsjobb (förstajobb)
Typ av jobb
Civilingenjör / Arkitekt, IT
Körkort önskas
Nej
Tillgång till bil önskas
Nej
Personligt brev krävs
Nej

Civilingenjör / Arkitekt | IT | Heltidsjobb (förstajobb)