Christophe Gustave

Authenticated names

Currently, most means of communication include some form of identification of the sender/originator, but none of these identifications are securely authenticated (at least not conveniently or in wide use). Legitimate business entities can be misrepresented by their name, and this creates opportunities for various scams known as phishing. We propose a new end-to-end authentication scheme that can be used to authenticate companies over many means of communication including telephony, email, web, and Instant Messaging. The framework is flexible and gives concerned legitimate institutions the ability to delegate their authenticated names to employees outside the office as well as outsourcing companies.

Situation Monitoring and Analysis of Security Risk for Networked Services

This paper discusses a model of security situational analysis that allows for the effective prioritization of security vulnerabilities for action by operations. Key topics include the analysis of the application interdependence at all levels from within the individual systems to the higher level service or mission interdependence. The research associated with this paper is the result of collaboration between Alcatel and Defence R&D Canada (DRDC) under the Defence Industrial Research (DIR) Program. Alcatel would like to express its thanks to DRDC, an agency within the Department of National Defence, for its support and efforts