@misc{SianiparSukmanaMeinel2019,
  author    = {Sianipar, Johannes Harungguan and Sukmana, Muhammad Ihsan Haikal and Meinel, Christoph},
  title     = {Moving sensitive data against live memory dumping, spectre and meltdown attacks},
  series = {26th International Conference on Systems Engineering (ICSEng)},
  journal   = {26th International Conference on Systems Engineering (ICSEng)},
  publisher = {IEEE},
  address   = {New York},
  isbn      = {978-1-5386-7834-3},
  pages     = {8},
  year      = {2019},
  abstract  = {The emergence of cloud computing allows users to easily host their Virtual Machines with no up-front investment and the guarantee of always available anytime anywhere. But with the Virtual Machine (VM) is hosted outside of user's premise, the user loses the physical control of the VM as it could be running on untrusted host machines in the cloud. Malicious host administrator could launch live memory dumping, Spectre, or Meltdown attacks in order to extract sensitive information from the VM's memory, e.g. passwords or cryptographic keys of applications running in the VM. In this paper, inspired by the moving target defense (MTD) scheme, we propose a novel approach to increase the security of application's sensitive data in the VM by continuously moving the sensitive data among several memory allocations (blocks) in Random Access Memory (RAM). A movement function is added into the application source code in order for the function to be running concurrently with the application's main function. Our approach could reduce the possibility of VM's sensitive data in the memory to be leaked into memory dump file by 2 5\% and secure the sensitive data from Spectre and Meltdown attacks. Our approach's overhead depends on the number and the size of the sensitive data.},
  language  = {en}
}
@article{KayemWolthusenMeinel2018,
  author    = {Kayem, Anne Voluntas dei Massah and Wolthusen, Stephen D. and Meinel, Christoph},
  title     = {Power Systems},
  series = {Smart Micro-Grid Systems Security and Privacy},
  volume    = {71},
  journal   = {Smart Micro-Grid Systems Security and Privacy},
  publisher = {Springer},
  address   = {Dordrecht},
  isbn      = {978-3-319-91427-5},
  doi       = {10.1007/978-3-319-91427-5_1},
  pages     = {1 -- 8},
  year      = {2018},
  abstract  = {Studies indicate that reliable access to power is an important enabler for economic growth. To this end, modern energy management systems have seen a shift from reliance on time-consuming manual procedures, to highly automated management, with current energy provisioning systems being run as cyber-physical systems. Operating energy grids as a cyber-physical system offers the advantage of increased reliability and dependability, but also raises issues of security and privacy. In this chapter, we provide an overview of the contents of this book showing the interrelation between the topics of the chapters in terms of smart energy provisioning. We begin by discussing the concept of smart-grids in general, proceeding to narrow our focus to smart micro-grids in particular. Lossy networks also provide an interesting framework for enabling the implementation of smart micro-grids in remote/rural areas, where deploying standard smart grids is economically and structurally infeasible. To this end, we consider an architectural design for a smart micro-grid suited to low-processing capable devices. We model malicious behaviour, and propose mitigation measures based properties to distinguish normal from malicious behaviour.},
  language  = {en}
}