Open Access

The paper discusses the process of block parallelization in the Advanced Encryption Standard (AES) cipher, focusing on the Counter (CTR) mode. It details the benefits of this process, including increased data processing performance and effective resource utilization; emphasizes the independent encryption of each data block in CTR mode, which allows for effective parallelization, especially when handling large data volumes. This work outlines the steps involved in the AES operation scheme in CTR mode, from splitting data into blocks to generating the final ciphertext. It further explains the concept of a unique "counter"or "initialization vector"for each block, which, combined with the key, generates a unique encryption key, enabling parallel processing. The idea implementation delves into the programming of the block parallelization algorithm using services on the Java Spring Boot platform. It describes the roles of the purposed Client Service and Server Service in encrypting and transmitting messages and files and decrypting received messages. This work presents an experiment that tests the hypothesis that blocks parallelization in AES cipher using CTR mode increases performance during the processing of large data volumes. The experiment involves different data volumes and compares the processing speeds of the AES algorithm with and without parallelization. The results confirm the hypothesis, showing that block parallelization in AES for large data volumes can double the data processing speed compared to the non-parallel approach. The paper concludes that block parallelization might be effective not only for the AES algorithm but also for any block symmetric algorithm. It also suggests that parallelization allows for more efficient use of multi-core systems and reduces the execution time to complete the encryption operation. © 2021 Copyright for this paper try its authors.

Even though Controller Area Networks (CAN) were originally conceptualized as deeply embedded networks, nowadays they are no longer self-contained. The use of bridges and gateways with access to the Internet opens additional attack surfaces. Therefore, comprehensive countermeasures are required, including the mutual authentication of the communication endpoints using public-key certificates. However, this calls for the continuous availability of credentials in the form of device-granular certificates, private keys, and trust anchors. This paper presents a concept and implementation for credential management in CANopen FD networks throughout the complete life cycle of CANopen FD devices, from their manufacturing over commissioning and operations until their disposal, satisfying the prerequisite for establishing mutually authenticated connections based on certificates. This includes the initial provisioning, continuous renewal, removal, and revocation of credentials. The novel aspect of our paper comprises a complete credential management realization. It is meeting all typical state of the art requirements and is based on similar approaches for Industrial Ethernet networks. Moreover, with our demonstrator implementation we not only show the feasibility of the concept, but also highlight that applicability of public-key infrastructure mechanisms in CANopen FD networks with comparably resource-constrained nodes with limited packet sizes.

Performance benchmarking is crucial for optimizing networks, including 5G Non-Public Networks (5G-NPN). Since one of the major advantages of 5G-NPN is to guarantee Quality of Service (QoS), ensuring optimal performance for their diverse applications is critical. This requires adjustments and testing of various radio-related parameters. Also, performance analysis and benchmarking need to be done based on the evaluation of relevant Key Parameter Indicators (KPIs) in order to identify the parameter set for the optimum performance for each application’s requirements. Many published results on performance benchmarking often lack transparency in their scoring methods. Additionally, QoS benchmarking evaluation for 5G-NPN use cases needs further steps due to the varying ranges of their KPIs. For example Block Error Rate (BLER) is mostly represented by percentage, while Reference Signal Received Power (RSRP) and Reference Signal Received Quality (RSRQ) are negative values.3GPP in TR 103.559 outlines practices for benchmarking network QoS, with a focus on Speech and multimedia Transmission Quality (STQ). This paper extends these outlines to evaluate 5G-NPN performance by defining a multi-objective function. We select a specific 5G-NPN use case as an example and apply four tests with varying network configurations. After each test, we collect most relevant 5G KPIs. To facilitate comparison, all KPIs are rescaled to a common scale. Additionally, we assign weights to each KPI based on its significance in the chosen use case. By combining rescaling and weight assignments, we propose a single metric that effectively characterizes the overall network performance for 5G-NPNs based on their specific use case requirements.

Over the years, the Internet of Things has brought significant benefits to modern society, lives, and industries; however, the technology used has yet to mature sufficiently to provide secure devices and communication. Recently, the number of connected devices rapidly grows, thus adversaries have more opportunities to gain access to IoT devices and use them to launch what is called large-scale attacks. With the rapid proliferation of Internet of Things (IoT) devices, the need for efficient and effective Intrusion Detection System (IDS) tailored for IoT environments has become increasingly paramount. This paper explores various techniques employed in contemporary IoT IDS, including traditional signature-based approaches like Snort and Bro/Zeek, as well as emerging deep learning-based methods.

Die portable C-Implementierung des 6LoWPAN-Protokolls „emb::6“ wird aktuell um das Thread-Protokoll erweitert. Die grundlegenden Kommunikationsfunktionen sind bereits integriert – an der vollständigen Thread-Implementierung kann noch mitgewirkt werden.