Collaborative Proposal: Security Services in Open Telecommunications Networks

合作提案：开放电信网络中的安全服务

• 批准号: 0905406
• 负责人: Henning Schulzrinne
• 金额: $ 40.44万
• 依托单位: Columbia University
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2009
• 资助国家: 美国
• 起止时间: 2009-09-15 至 2013-08-31
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=0905406&HistoricalAwards=false
• 关键词: Collaborative; Proposal; Security; Services; Open

This award is funded under the American Recovery and Reinvestment Act of 2009 (Public Law 111-5). The nature of telecommunications networks is rapidly changing. Commodity smart mobile phone frameworks such as Android and Openmoko invite developers and end users to build applications, modify the behavior of the phone, and use network services in novel ways. However, while simultaneously spurring incredible innovation, the move to open systems alters the underlying performance and security assumptions upon which the network was designed. Such changes invite vulnerabilities ranging from merely vexing phone glitches to catastrophic network failures. The current infrastructure lacks the basic protections needed to protect an increasingly open network, and it is unclear what new stresses and threats open systems and services will introduce.This research analytically and experimentally investigates defensive infrastructure addressing vulnerabilities in open cellular operating systems and telecommunications networks. In this, we are exploring the requirements and design of such defenses in three coordinated efforts; a) extending and applying formal policy models for telecommunication systems, and provide tools for phone manufacturer, provider, developer, and end-user policy compliance verification, b) building a security-conscious distribution of the open-source Android operating system, and c) explore the needs and designs of overload controls in telecommunications networks needed to absorb changes in mobile phone behavior, traffic models, and the diversity of communication end- points.This research symbiotically supports educational goals at the constituent institutions by supporting graduate and undergraduate student research, and is integral to the security and network curricula. This award is funded under the American Recovery and Reinvestment Act of 2009 (Public Law 111-5).

该奖项是根据2009年《美国复苏与再投资法》（公法111-5）资助的。电信网络的性质正在迅速变化。商品智能手机框架（例如Android和OpenMoko）邀请开发人员和最终用户构建应用程序，修改电话的行为，并以新颖的方式使用网络服务。但是，虽然同时激发了令人难以置信的创新，但开放系统的举动改变了网络设计的基本性能和安全假设。此类更改邀请漏洞从仅仅使电话故障到灾难性网络故障。当前的基础设施缺乏保护日益开放网络所需的基本保护，目前尚不清楚开放系统和服务将引入哪些新的压力和威胁。这项研究通过分析和实验研究了防御性基础设施，以解决开放式蜂窝操作系统和电信网络中的脆弱性。在这三个协调的努力中，我们正在探索此类防御的要求和设计。 a）扩展和应用正式的电信系统政策模型，并为电话制造商，提供商，开发人员，开发人员和最终用户政策策略合规性验证提供工具，b）构建开放源代码Android操作系统的安全意识分布，以及c）探索在电信网络中的最终沟通网络中超负荷控制的需求和名称。共生通过支持研究生和本科生研究来支持组成机构的教育目标，并且是安全和网络课程不可或缺的一部分。该奖项是根据2009年《美国复苏与再投资法》（公法111-5）资助的。