814 Index System R access control model, 577­579 authorization administration, 577­578 content-based access control, 578 extensions, 579 protected objects, 577 view composition operation, 579 view definition query, 579 top-down approach, 587 topology attacks, 433 TOpology-assist Geo-Opportunistic Routing (TO-GO), 742 topology-based metrics, 447 topology-preserving-based techniques, 433­440 cluster-generalization-based techniques, 438­440 defined, 433 K -anonymity-based techniques, 434­438 types of, 433­434 see also Identity anonymization Tor model of, 46­47 user anonymity, 47 Tor directory servers, 32 Tor nodes, 32, 33, 34 TPA (third-party auditor), 394, 398, 399 TPM (trusted platform module), 321­322 tradeoff parameter, 38 traffic analysis attacks, in sensor networks, 253 traffic hijacking attacks, 107 traffic pattern reattack, 86­88 basic ideas, 85 epidemic modeling/analysis, 85­87 traffic pattern-based detection, 89­90 traffic pattern-based strategy, 83 traffic payload signature-based strategy, 82 traitor tracing, 396 transformations abstraction, 337 control, 338­339 data, 337­338 dynamic, 337, 339­340 Transparent Run-time Shadow Stack, 343 Transport Layer Security (TLS), 714 T-RBAC, 581 tree hierarchy, 368 TREKS (Time Reversed Message Extraction and Key Scheduling), 136 TRH (tamper resistant hardware), 669­670 Trojan circuits activation techniques, 308 defined, 306 detection improvement, 310­311 side-channel analysis, 308 testing for, 308 stream cipher, 101­104 TKIP, 102­104 WEP, 101­102 stream-processing engines (SPEs) examples of, 506 query execution, 506 strong authentication, 590 Stuxnet, 643­644 subtractive attacks, 335 super spreader problem, 476 Super-P2P system, 79, 80, 81 supply chain attacks IC, 306, 307 security improvement areas, 325 support vector machines (SVMs) for activity recognition, 499, 501 one-class, 499 suppression point, 247 Surface Encryption Layer (SEL), 370 SVMs. see Support vector machines SWATT (SoftWare-based attestation), 311 sweeping area, 260 Sybil attacks, 191 CDF, 213 channel-based detection, 201­203 defending against, 201­204 defined, 193 detection rate, 214 distance between wireless nodes, 214­215 effectiveness of attack detector, 213­214 experimental evaluation of detection, 213­215 false positive rate, 214, 215 feasibility of launching, 193 identity certificate scheme defense, 196 identity-based attack detection model, 208­209 preventing via authentication, 195­196 radio resource testing for detection, 204 ROC curve, 214, 215 RSSI-based detection, 203 threshold of test statistics, 213 symmetric group key distribution, 160 symmetric-key distribution, 159­160 applications, 159 phases, 159­160 see also Mobile ad hoc networks (MANETs) synchrony structures, 26 system model (cloud computing), 394 T tamper resistant hardware (TRH), 669­670 target IP address occupancy-based strategy, 82­83 TCPF (Trusted Computing Platform Fabric), 419 temporal dynamics, susceptibility measurement, 12 Temporal Key Integrity Protocol (TKIP), 101 encryption, 103 stream cipher, 102­104 weaknesses, 103­104 Wi-Fi Protected Access (WPA), 103 TESLA Ariadne route discovery with, 167 Ariadne use of, 166­167 certificates, 194 defined, 166 in sensor networks, 255 test statistics channel-based Sybil detection, 202 for detection of identity-based attacks, 207­208 spoofing attack threshold, 211 Sybil attack threshold, 213 Test-Net ACL implementations for, 599 defined, 597 illustrated, 596 policy specifications for, 598 third-party auditor (TPA), 394, 398, 399 threshold estimation, online, 540 time decaying aggregates, 473­475 Time Reversed Message Extraction and Key Scheduling (TREKS), 136 Timed Efficient Stream Loss-Tolerant Authentication. see TESLA timed finite state machines (TFSMs), 179, 180 TKIP. see Temporal Key Integrity Protocol TLS (Transport Layer Security), 714 To paths, 32, 33­34