Collaborative Proposal: Security Services in Open Telecommunications Networks

合作提案：开放电信网络中的安全服务

• 批准号: 0905406
• 负责人: Henning Schulzrinne
• 金额: $ 40.44万
• 依托单位: Columbia University
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2009
• 资助国家: 美国
• 起止时间: 2009-09-15 至 2013-08-31
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=0905406&HistoricalAwards=false
• 关键词: Collaborative; Proposal; Security; Services; Open

This award is funded under the American Recovery and Reinvestment Act of 2009 (Public Law 111-5). The nature of telecommunications networks is rapidly changing. Commodity smart mobile phone frameworks such as Android and Openmoko invite developers and end users to build applications, modify the behavior of the phone, and use network services in novel ways. However, while simultaneously spurring incredible innovation, the move to open systems alters the underlying performance and security assumptions upon which the network was designed. Such changes invite vulnerabilities ranging from merely vexing phone glitches to catastrophic network failures. The current infrastructure lacks the basic protections needed to protect an increasingly open network, and it is unclear what new stresses and threats open systems and services will introduce.This research analytically and experimentally investigates defensive infrastructure addressing vulnerabilities in open cellular operating systems and telecommunications networks. In this, we are exploring the requirements and design of such defenses in three coordinated efforts; a) extending and applying formal policy models for telecommunication systems, and provide tools for phone manufacturer, provider, developer, and end-user policy compliance verification, b) building a security-conscious distribution of the open-source Android operating system, and c) explore the needs and designs of overload controls in telecommunications networks needed to absorb changes in mobile phone behavior, traffic models, and the diversity of communication end- points.This research symbiotically supports educational goals at the constituent institutions by supporting graduate and undergraduate student research, and is integral to the security and network curricula. This award is funded under the American Recovery and Reinvestment Act of 2009 (Public Law 111-5).

该奖项是根据2009年美国复苏和再投资法案（公法111-5）资助的。电信网络的性质正在迅速变化。商用智能移动电话框架（如Android和Openmoko）邀请开发人员和最终用户构建应用程序，修改手机的行为，并以新颖的方式使用网络服务。然而，在刺激不可思议的创新的同时，向开放系统的转变改变了网络设计所基于的基本性能和安全假设。这样的变化会带来各种漏洞，从令人烦恼的电话故障到灾难性的网络故障。目前的基础设施缺乏保护日益开放的网络所需的基本保护，而且尚不清楚开放系统和服务将带来什么新的压力和威胁。本研究对开放式蜂窝操作系统和电信网络中的防御基础设施漏洞进行了分析和实验研究。在这方面，我们在三个协调的努力中探索这种防御的要求和设计；a)扩展和应用电信系统的正式策略模型，并为手机制造商、提供商、开发者和最终用户的策略遵从性验证提供工具；b)建立一个安全意识的开源Android操作系统分布；c)探索电信网络中过载控制的需求和设计，以吸收移动电话行为、流量模型和通信端点多样性的变化。这项研究通过支持研究生和本科生的研究，共生地支持组成机构的教育目标，并且是安全和网络课程的组成部分。该奖项是根据2009年美国复苏和再投资法案（公法111-5）资助的。