-
Traffic Centralization and Digital Sovereignty: An Analysis Under the Lens of DNS Servers
Authors:
Demétrio F. Boeira,
Eder J. Scheid,
Muriel F. Franco,
Luciano Zembruzki,
Lisandro Z. Granville
Abstract:
The Domain Name System (DNS) service is one of the pillars of the Internet. This service allows users to access websites on the Internet through easy-to-remember domain names rather than complex numeric IP addresses. DNS acts as a directory that translates the domain names into a corresponding IP address, allowing communication between computers on different networks. However, the concentration of…
▽ More
The Domain Name System (DNS) service is one of the pillars of the Internet. This service allows users to access websites on the Internet through easy-to-remember domain names rather than complex numeric IP addresses. DNS acts as a directory that translates the domain names into a corresponding IP address, allowing communication between computers on different networks. However, the concentration of DNS service providers on the Internet affects user security, privacy, and network accessibility. The reliance on a small number of large DNS providers can lead to (a) risks of data breaches and disruption of service in the event of failures and (b) concerns about the digital sovereignty of countries regarding DNS hosting. In this sense, this work approaches this issue of DNS concentration on the Internet by presenting a solution to measure DNS hosting centralization and digital sovereignty in countries. With the data obtained through these measurements, relevant questions are answered, such as which are the top-10 DNS providers, if there is DNS centralization, and how dependent countries are on such providers.
△ Less
Submitted 3 July, 2023;
originally announced July 2023.
-
SECAdvisor: a Tool for Cybersecurity Planning using Economic Models
Authors:
Muriel Figueredo Franco,
Christian Omlin,
Oliver Kamer,
Eder John Scheid,
Burkhard Stiller
Abstract:
Cybersecurity planning is challenging for digitized companies that want adequate protection without overspending money. Currently, the lack of investments and perverse economic incentives are the root cause of cyberattacks, which results in several economic impacts on companies worldwide. Therefore, cybersecurity planning has to consider technical and economic dimensions to help companies achieve…
▽ More
Cybersecurity planning is challenging for digitized companies that want adequate protection without overspending money. Currently, the lack of investments and perverse economic incentives are the root cause of cyberattacks, which results in several economic impacts on companies worldwide. Therefore, cybersecurity planning has to consider technical and economic dimensions to help companies achieve a better cybersecurity strategy. This article introduces SECAdvisor, a tool to support cybersecurity planning using economic models. SECAdvisor allows to (a) understand the risks and valuation of different businesses' information, (b) calculate the optimal investment in cybersecurity for a company, (c) receive a recommendation of protections based on the budget available and demands, and (d) compare protection solutions in terms of cost-efficiency. Furthermore, evaluations on usability and real-world training activities performed using SECAdvisor are discussed.
△ Less
Submitted 16 April, 2023;
originally announced April 2023.
-
Real-time Tracking of Medical Devices: An Analysis of Multilateration and Fingerprinting Approaches
Authors:
Bruno Rodrigues,
Eder J. Scheid,
Katharina O. E. Müller,
Julius Willems,
Burkhard Stiller
Abstract:
Hospital infrastructures are always in evidence in periods of crisis, such as natural disasters or pandemic events, under stress. The recent COVID-19 pandemic exposed several inefficiencies in hospital systems over a relatively long period. Among these inefficiencies are human factors, such as how to manage staff during periods of high demand, and technical factors, including the management of Por…
▽ More
Hospital infrastructures are always in evidence in periods of crisis, such as natural disasters or pandemic events, under stress. The recent COVID-19 pandemic exposed several inefficiencies in hospital systems over a relatively long period. Among these inefficiencies are human factors, such as how to manage staff during periods of high demand, and technical factors, including the management of Portable Medical Devices (PMD), such as mechanical ventilators, capnography monitors, infusion pumps, or pulse oximeters. These devices, which are vital for monitoring patients or performing different procedures, were found to have a high turnover during high-demand, resulting in inefficiencies and more pressure on medical teams.
Thus, the work PMD-Track evaluates in detail two popular indoor tracking approaches concerning their accuracy, placement of beacons, and economic impacts. The key novelty of PMD-Track relies on using smartphones provided to hospital employees, replacing typical stationary gateways spread across a hospital, functioning as mobile gateways with a front-end that assists staff in locating PMDs. As employees approach tagged PMDs, their smartphone automatically updates the location of spotted PMDs in real-time, providing room-level localization data with up to 83% accuracy for fingerprinting and 35% for multilateration. In addition, fingerprinting is 45% cheaper than multilateration over the course of five years. Practical experiments were evaluated based on two locations in Zürich, Switzerland.
△ Less
Submitted 2 March, 2023;
originally announced March 2023.
-
Failure Mode Analysis in Microsecond UV Laser Annealing of Cu Thin Films
Authors:
Remi Demoulin,
Richard Daubriac,
Louis Thuries,
Emmanuel Scheid,
Fabien Rozé,
Fuccio Cristiano,
Toshiyuki Tabata,
Fulvio Mazzamuto
Abstract:
The need of surface-localized thermal processing is strongly increasing especially w.r.t three-dimensionally (3D) integrated electrical devices. UV laser annealing (UV-LA) technology well addresses this challenge. Particularly UV-LA can reduce resistivity by enlarging metallic grains in lines or thin films, irradiating only the interconnects for short timescales. However, the risk of failure in el…
▽ More
The need of surface-localized thermal processing is strongly increasing especially w.r.t three-dimensionally (3D) integrated electrical devices. UV laser annealing (UV-LA) technology well addresses this challenge. Particularly UV-LA can reduce resistivity by enlarging metallic grains in lines or thin films, irradiating only the interconnects for short timescales. However, the risk of failure in electrical performance must be correctly managed, and that of UV-LA has not been deeply studied yet. In this work microsecond-scale UV-LA is applied on a stack comparable to an interconnect structure (dielectric/Cu/Ta/SiO2/Si) in either melt or sub-melt regime for grain growth. The failure modes such as (i) Cu diffusion into SiO2, (ii) O incorporation into Cu, and (iii) intermixing between Cu and Ta are investigated.
△ Less
Submitted 24 April, 2022;
originally announced April 2022.
-
Copper Large-scale Grain Growth by UV Nanosecond Pulsed Laser Annealing
Authors:
Toshiyuki Tabata,
Pierre-Edouard Raynal,
Fabien Rozé,
Sébastien Halty,
Louis Thuries,
Fuccio Cristiano,
Emmanuel Scheid,
Fulvio Mazzamuto
Abstract:
UV nanosecond pulsed laser annealing (UV NLA) enables both surface-localized heating and short timescale high temperature processing, which can be advantageous to reduce metal line resistance by enlarging metal grains in lines or in thin films, while maintaining the integrity and performance of surrounding structures. In this work UV NLA is applied on a typical Cu thin film, demonstrating a mean g…
▽ More
UV nanosecond pulsed laser annealing (UV NLA) enables both surface-localized heating and short timescale high temperature processing, which can be advantageous to reduce metal line resistance by enlarging metal grains in lines or in thin films, while maintaining the integrity and performance of surrounding structures. In this work UV NLA is applied on a typical Cu thin film, demonstrating a mean grain size of over 1 μm and 400 nm in a melt and sub-melt regime, respectively. Along with such grain enlargement, film resistivity is also reduced.
△ Less
Submitted 15 November, 2021;
originally announced November 2021.
-
Proverum: A Hybrid Public Verifiability and Decentralized Identity Management
Authors:
Christian Killer,
Lucas Thorbecke,
Bruno Rodrigues,
Eder Scheid,
Muriel Franco,
Burkhard Stiller
Abstract:
Trust in electoral processes is fundamental for democracies. Further, the identity management of citizen data is crucial, because final tallies cannot be guaranteed without the assurance that every final vote was cast by an eligible voter. In order to establish a basis for a hybrid public verifiability of voting, this work (1) introduces Proverum, an approach combining a private environment based…
▽ More
Trust in electoral processes is fundamental for democracies. Further, the identity management of citizen data is crucial, because final tallies cannot be guaranteed without the assurance that every final vote was cast by an eligible voter. In order to establish a basis for a hybrid public verifiability of voting, this work (1) introduces Proverum, an approach combining a private environment based on private permissioned Distributed Ledgers with a public environment based on public Blockchains, (2) describes the application of the Proverum architecture to the Swiss Remote Postal Voting system, mitigating threats present in the current system, and (3) addresses successfully the decentralized identity management in a federalistic state.
△ Less
Submitted 22 August, 2020;
originally announced August 2020.
-
WeTrace -- A Privacy-preserving Mobile COVID-19 Tracing Approach and Application
Authors:
A. De Carli,
M. Franco,
A. Gassmann,
C. Killer,
B. Rodrigues,
E. Scheid,
D. Schoenbaechler,
B. Stiller
Abstract:
For the protection of people and society against harm and health threats -- especially for the COVID-19 pandemic -- a variety of different disciplines needs to be involved. The data collection of very basic and health-related data of individuals in today's highly mobile society does help to plan, protect, and identify next steps health authorities and governments can, shall, or need to plan for or…
▽ More
For the protection of people and society against harm and health threats -- especially for the COVID-19 pandemic -- a variety of different disciplines needs to be involved. The data collection of very basic and health-related data of individuals in today's highly mobile society does help to plan, protect, and identify next steps health authorities and governments can, shall, or need to plan for or even implement. Thus, every individual, every human, and every inhabitant of the world is the key player -- very different to many past crises'. And since the individual is involved -- all individuals -- his/her (a) health and (b) privacy shall be considered in a very carefully crafted balance, not overruling one aspect with another one or even prioritizing certain aspects. Privacy remains the key. Thus, the solution of the current pandemic's data collection can be based on a fully privacy-preserving application, which can be used by individuals on their mobile devices, such as smartphones, while maintaining at the same time their privacy. Additionally, respective data collected in such a fully distributed setting does help to confine the pandemic and can be achieved in a democratic and very open, but still and especially privacy-protecting world. Therefore, the WeTrace approach and application as described in this paper utilizes the Bluetooth Low Energy (BTE) communication channel, many modern mobile devices offer, where asymmetric cryptography is being applied to allows for the decyphering of a message for that destination it had been intended for. Since literally every other potential participant only listens to random data, even a brute force attack will not succeed. WeTrace and its Open Source implementation is the only known approach so far, which ensures that any receiver of a message knows that this is for him/her, but does not know who the original sender was.
△ Less
Submitted 19 April, 2020;
originally announced April 2020.