Peter Stavroulakis, “Special Issue on Multimedia Information Security”, InderSience, International Journal of Multimedia Intelligence and Security, Vol. 1 No. 4, 2010.
Five years after the appearance of the first publications on CIS in International technical Journals and the creation of the IEEE TC-CIS, the multimedia field was open for a revisit from the security point of view. Cloud computing security thus became the main new research challenge.  An attempt has been made to fill this void by this special issue. Advanced techniques such as fuzzy logic, Hidden Marcov Models, the zero knowledge principle and chaotic techniques are presented to show that Multimedia Information Security can be dealt with as an integral part of CIS.

Hsiao-Hwa Chen (Ed.), “Security and Communication Networks”, Wiley, ISSN 1939-0122.
Security and Communication Networks is an international journal publishing original research and review papers on security and cryptographic mechanisms applied to all types of information and communication networks, including wired, wireless and optical transmission platforms. The journal provides a prestigious forum for the R&D community in academia and industry working at the inter-disciplinary nexus of next generation communications technologies with physical and upper layer network security implementations. Answering the highly practical and commercial importance of network security R&D, submissions of applications-oriented papers describing case studies and simulations are encouraged as well as research analysis-type papers.

Sabu M. Thampi (Ed.), “International Journal of Trust Management in Computing and Communications”, InderScience, ISSN 2048-8378.
The volatile growth of the internet and globalization that influences every facet of life are fuelled by the rapid acceleration of computing/communication technologies. Although security is a major concern, we must also protect ourselves from false/misleading information provided by some information/service providers. Traditional security mechanisms cannot protect against this type of threat. Trust management mechanisms on the other hand can provide protection. IJTMCC provides a forum for discussion on theoretical and practical aspects of the latest developments in this area.

Stamatios Kartalopoulos, “Security of Information and Communication Networks”, IEEE/Wiley, 2009, ISBN 978-0470290255.
This CHOICE awarded book provides a complete conceptual treatment of securing information and transporting it over a secure network in a manner that does not require a strong mathematical background. It stresses why information security is important, what is being done about it, how it applies to networks, and an overview of its key issues. It is written for anyone who needs to understand these important topics at a conceptual rather than a technical level.

Anestis Karasaridis, “DNS Security”, Amazon (KDP), 2012.
The objective of this book is to give the reader an in-depth understanding of how the Domain Name System (DNS) works, its security vulnerabilities, how to monitor and detect security related events and how to prevent and mitigate attacks. After reading the book, the reader will be able to recognize the major issues around DNS security, and know the best practices to setup, operate, and protect DNS service. The book also explores active areas of research and development in anomaly detection, authentication, and attack mitigation. Sections of the book can be used in academic courses as assigned readings.

Mohssen Mohammed and Al-Sakib Khan Pathan, “Automatic Defense against Zero-day Polymorphic Worms in Communication Networks”, CRC Press, Taylor & Francis Group, 2013, ISBN 978-1466557277.
Able to propagate quickly and change their payload with each infection, polymorphic worms have been able to evade even the most advanced intrusion detection systems. And, because zero-day worms require only seconds to launch flooding attacks on your servers, using traditional methods such as manually creating and storing signatures to defend against these threats is just too slow. Bringing together critical knowledge and research on the subject, this book details a new approach for generating automated signatures for unknown polymorphic worms. It presents experimental results on a new method for polymorphic worm detection and examines signature-generation algorithms and double-honeynet systems.

Shafiullah Khan and Al-Sakib Khan Pathan, “Wireless Networks and Security: Issues, Challenges and Research Trends”, Springer Series: Signals and Communication Technology, 2013, ISBN 978-3-642-36168-5.
Wireless Networks and Security provides a broad coverage of wireless security issues including cryptographic coprocessors, encryption, authentication, key management, attacks and countermeasures, secure routing, secure medium access control, intrusion detection, epidemics, security performance analysis, security issues in applications. The contributions identify various vulnerabilities in the physical layer, MAC layer, network layer, transport layer, and application layer, and focus on ways of strengthening security mechanisms and services throughout the layers. This carefully edited monograph is targeting for researchers, post-graduate students in universities, academics, and industry practitioners or professionals. 

Al-Sakib Khan Pathan, “Security of Self-Organizing Networks: MANET, WSN, WMN, VANET”, Auerbach Publications, CRC Press, Taylor & Francis Group, 2010, ISBN 978-1-4398-1919-7.
Reflecting recent advancements, Security of Self-Organizing Networks: MANET, WSN, WMN, VANET explores wireless network security from all angles. It begins with a review of fundamental security topics and often-used terms to set the foundation for the following chapters. Examining critical security issues in a range of wireless networks, the book proposes specific solutions to security threats. Ideal for those with a basic understanding of network security, the text provides a clear examination of the key aspects of security in self-organizing networks and other networks that use wireless technology for communications.

Tansu Alpcan and Tamer Başar, “Network Security: A Decision and Game Theoretic Approach”, Cambridge University Press, 2010, ISBN 978-0521119320.
Covering attack detection, malware response, algorithm and mechanism design, privacy, and risk management, this comprehensive work applies unique quantitative models derived from decision, control, and game theories to understanding diverse network security problems. It provides the reader with a system-level theoretical understanding of network security, and is essential reading for researchers interested in a quantitative approach to key incentive and resource allocation issues in the field. It also provides practitioners with an analytical foundation that is useful for formalizing decision-making processes in network security.

Andrei Gurtov, “Host Identity Protocol (HIP): Towards the Secure Mobile Internet”, Wiley, 2008, ISBN 978-0-470-99790-1.
One of the challenges facing the current Internet architecture is the incorporation of mobile and multi-homed terminals (hosts), and an overall lack of protection against Denial-of-Service attacks and identity spoofing. The Host Identity Protocol (HIP) is being developed by the Internet Engineering Task Force (IETF) as an integrated solution to these problems. The book presents a well-structured, readable and compact overview of the core protocol with relevant extensions to the Internet architecture and infrastructure. The covered topics include IPsec, Overlay Routable Cryptographic Hash Identifiers, extensions to the Domain Name System, IPv4 and IPv6 interoperability, and support for legacy applications.

Lynn Batten, “Public Key Cryptography: Applications and Attacks”, IEEE/Wiley, 2013, ISBN 978-1118317129.
This book describes in depth all major public-key cryptosystems in current use, including ElGamal, RSA, Elliptic Curve, and digital signature schemes. It explains the underlying mathematics needed to build these schemes, and examines the most common techniques used in attacking them. The book includes many examples, and it provides a solid foundation for professionals in government, service providers, and large enterprises that use public-key systems to secure their data.

Peter Stavroulakis and Mark Stamp (Eds.), “Handbook of Information and Communication Security”, Springer, 2010, ISBN 978-3-642-04117-4.
This Handbook  covers for the first time in a compact and integral form  all   the latest  advances in fundamentals, cryptography ,intrusion detection,  access control, networking, software,  forensics including extensive  sections on optics as well as legal  issues  and thus setting the conceptual  definition of the field of CIS. In addition the topics covered are highly relevant to the real world practice of information security which makes it a valuable resource for working IT professionals as well as academics and active researchers.

Peter Stavroulakis (Ed.), “TErrestrial Trunked RAdio - TETRAA Global Security Tool”, Springer, 2007, ISBN 978-3-540-71190-2.
Terrestrial Trunked Radio (TETRA) until recently was considered as a medium for only public safety applications. In the book new advances in in Channel assignment  and multiple access techniques , video transmission, wireless LAN integration, and the establishment  of multiple  wireless  mesh networks   are  examined from the security point of view and is shown that TETRA  can be used  for large scale systems security such  as  Olympic Games  and thus become the vehicle for a Global Security tool.

Peter Stavroulakis (Ed.), “Chaos Applications in Telecommunications”, CRC Taylor and Francis, 2006, ISBN 8493-3832-8.
Up until this book was published, Chaos was not considered as a technique that enhances greatly security. Besides   showing how classical   transmission and reception   methods can be put on a more secure framework by using chaotic techniques, it is shown that it even outperforms the other classical method for security which is based on spread spectrum. This volume provides the essential  information for those  who wish  to have an integrated view  on how  an established  concept  such as  chaos  can open  new roads  in the CIS field.

Xiali Hei and Xiaojiang Du, “Security in Wireless Implantable Medical Devices”, Springer, 2013, ISBN 978-1-4614-7152-3.
In the treatment of chronic diseases, wireless Implantable Medical Devices (IMDs) are commonly used to communicate with an outside programmer (reader). Such communication raises serious security concerns, such as the ability for hackers to gain access to a patient’s medical records. This book provides an overview of such attacks and the new security challenges, defenses, design issues, modeling and performance evaluation in wireless IMDs. 

Yang Xiao, Xuemin Shen and Dingzhu Du, “Wireless Network Security”, Series: Signals and Communication Technology, Springer, 2007, ISSN 0387280405.
This timely volume, Wireless Network Security, provides broad coverage of wireless security issues including cryptographic coprocessors, encryption, authentication, key management, attacks and countermeasures, secure routing, secure medium access control, intrusion detection, epidemics, security performance analysis, security issues in applications, and much more. The contributions identify various vulnerabilities in the physical layer, MAC layer, IP layer, transport layer, and application layer, and focus on ways for strengthening security mechanisms and services throughout the layers.

Seok-Yee Tang, Peter Mueller and Hamid R. Sharif (Eds.), “WiMAX Security and Quality of Service”, Wiley and Sons, 2010, ISBN 978-1-119-95620-4.
WiMAX is the first standard technology to deliver true broadband mobility at speeds that enable powerful multimedia applications such as Voice over Internet Protocol (VoIP), online gaming, mobile TV, and personalized infotainment. WiMAX Security and Quality of Service, focuses on the interdisciplinary subject of advanced Security and Quality of Service (QoS) in WiMAX wireless telecommunication systems including its models, standards, implementations, and applications. Split into 4 parts, Part A of the book is an end-to-end overview of the WiMAX architecture, protocol, and system requirements. Security is an essential element in the wireless world and Part B is fully dedicated to this topic. Part C provides an in depth analysis of QoS, including mobility management in WiMAX. Finally, Part D introduces the reader to advanced and future topics.

Alessandro Acquisti, Stefanos Gritzalis, Costos Lambrinoudakis and Sabrina De Capitani di Vimercati (Eds.), “Digital Privacy: Theory, Technologies and Practices”, Auerbach Publications, Taylor & Francis, 2007, ISBN 978-1420052176.
Throughout recent years, a continuously increasing amount of personal data has been made available through different Web sites around the world. Although the availability of personal information has created several advantages, it can be easily misused and may lead to violations of privacy. Privacy, as a fundamental human right, must be protected. With growing interest in this area, Digital Privacy: Theory, Technologies, and Practices addresses this timely issue, providing information on state-of-the-art technologies, best practices, and research results, as well as legal, regulatory, and ethical issues. This book features contributions from top experts in academia, industry, and government.

H. Mouratidis (Ed.), “Software Engineering for Secure Systems: Industrial and Research Perspectives”, IGI Global, 2011, ISBN 978-1615208371.
Software Engineering for Secure Systems: Industrial and Research Perspectives presents the most recent and innovative lines of research and industrial practice related to secure software engineering. The book provides coverage of recent advances in the area of secure software engineering that address the various stages of the development process from requirements to design to testing to implementation. Contributions offer a comprehensive understanding secure software engineering, inspire and motivate further research and development, and bridge the gap between academic research and industrial practice.

Matthieu Bloch and João Barros, “Physical-Layer Security: From Information Theory to Security Engineering ”, Cambridge University Press, 2011, ISBN 978-0521516501.
This complete guide to physical-layer security presents the theoretical foundations, practical implementation, challenges and benefits of a groundbreaking new model for secure communication. Using a bottom-up approach, it provides essential practical tools that enable graduate students, industry professionals and researchers to build more secure systems by exploiting the noise inherent to communications channels. The book begins with a self-contained explanation of the information-theoretic limits of secure communications at the physical layer. It then goes on to develop practical coding schemes, enabling readers to understand the challenges and opportunities related to the design of physical layer security schemes.

Jun Yan, Yihai Zhu, Haibo He, and Yan Sun, “Multi-Contingency Cascading Analysis of Smart Grid Based on Self-Organizing Map”, IEEE Transactions on Information Forensics and Security, vol. 8, no. 4, pp. 646-656, 2013.     
Cyber Attack  Growing energy demands and environment concerns have significantly increased the interest of academia, industry and governments in development of a smart and secure electrical power grid. The goal of this paper is to advance methods of vulnerability analysis and to develop innovative responses to maintain the integrity of power grids under complex attacks (both cyber-attacks and physical failures). Specifically, in this study, we propose an integrated approach combining the spatial analysis based on self-organizing map (SOM) with electrical characteristics (load) to assess the vulnerability and cascading efforts of multiple component sets in the power grid. The results find in this paper could hopefully contribute to developing robust, secure, and reliable future grid systems.

Li, Xiaohui Liang, Rongxing Lu, Xuemin Shen, Xiaodong Lin, and Haojin Zhu, “Securing Smart Grid: Cyber Attacks, Countermeasures and Challenges”, IEEE Communication Magazine, Vol. 50, No. 8, pp. 38-45, 2012.
Smart grid has emerged as the next-generation power grid via the convergence of power system engineering and information and communication technology. In this article, we describe smart grid goals and tactics, and present a three-layer smart grid network architecture. Following a brief discussion about major challenges in smart grid development, we elaborate on smart grid cyber security issues. We define a taxonomy of basic cyber-attacks, upon which sophisticated attack behaviors may be built. We then introduce fundamental security techniques. By discussing some interesting open problems, we finally expect to trigger more research efforts in this emerging area.

Lin, Rongxing Lu, Xuemin Shen, Yoshiaki Nemoto, and Nei Kato, “Sage: A Strong Privacy-preserving Scheme against Global Eavesdropping for Ehealth Systems”,  IEEE Journal on Selected Areas in Communications, Vol. 27, No. 4, pp. 365-378, 2009.
The eHealth system is envisioned as a promising approach to improving health care through information technology, where security and privacy are crucial for its success and large-scale deployment. This paper proposes a strong privacy-preserving scheme against global eavesdropping, named SAGE, for eHealth systems. The SAGE can achieve not only the content oriented privacy but also the contextual privacy against a strong global adversary. Extensive analysis demonstrates the effectiveness and practicability of the proposed scheme.

Hyoungsuk Jeon, Jinho Choi, Steven W. McLaughlin, and Jeongseok Ha, “Channel aware encryption and decision fusion for wireless sensor networks”, IEEE   Trans. Inform. Forensics Security, vol. 8, no. 4, pp. 619-625, 2013.  
This paper studies a simple and efficient physical-layer security to prevent passive eavesdropping on transmitting data from sensors to an ally fusion center. The paper proposes a novel encryption scheme and decision fusion rules for a parallel access channel model by employing a low complexity and energy efficient modulation technique, noncoherent binary frequency shift keying. The proposed scheme takes advantage of a free natural resource, i.e., randomness of wireless channels, to encrypt the binary local decision of each sensor. The proposed scheme achieves perfect secrecy with a simple structure that is suited for sensors of limited complexity.

Abror Abduvaliyev, Al-Sakib Khan Pathan, Jianying Zhou, Rodrigo Roman, “On the Vital Areas of Intrusion Detection Systems in Wireless Sensor Networks”, IEEE Communications Surveys and Tutorials, Vol. 5, No. 3, pp.1223-1237, 2013.
This paper surveys recently proposed works on Intrusion Detection Systems (IDS) in WSNs, and presents a comprehensive classification of various IDS approaches according to their employed detection techniques. The three main categories explored in this paper are anomaly detection, misuse detection, and specification-based detection protocols. We give a description of existing security attacks in WSNs and the corresponding proposed IDS protocols to tackle those attacks. We analyze the works with respect to the network structure of WSNs.

K. M. M. Vieira, A. SCHULTER, C. B. Westphall; C. M. Westphall, “Intrusion Detection for Grid and Cloud Computing”, IEEE IT Professional Magazine, Vol. 12, No. 4, pp. 38-43, 2010.
Providing security in a distributed system requires more than user authentication with passwords or digital certificates and confidentiality in data transmission. The Grid and Cloud Computing Intrusion Detection System integrates knowledge and behavior analysis to detect intrusions.

Sherali Zeadally, Al-Sakib Khan Pathan, Cristina Alcaraz, and Mohamad Badra, “Towards Privacy Protection in Smart Grid”, Wireless Personal Communications, Springer, pp. 1-25, 2012.
The smart grid is an electronically controlled electrical grid that connects power generation, transmission, distribution, and consumers using information communication technologies. In this paper, we present an analysis of recently proposed smart grid privacy solutions and identify their strengths and weaknesses in terms of their implementation complexity, efficiency, robustness, and simplicity.

Daojing He, Chun Chen, Jiajun Bu, Sammy Chan, Yan Zhang and Mohsen Guizani, “Secure Service Provision in Smart Grid Communications”, IEEE Communications Magazine, vol. 50, no. 8, pp. 53-61, 2012.
The smart grid provides a platform for third-party service providers to remotely monitor and manage energy usage for consumers. At the same time, the involvement of service providers brings a new set of security threats to the smart grid. In this article, we first identify the cyber security challenges on service provision in the smart grid. Then we present two main security issues related to service provision and provide potential solutions. Finally, we suggest directions of future work on secure service provision by describing several open issues.

Daojing He, Chun Chen, and Jiajun Bu, Sammy Chan, Yan Zhang, “Security and Efficiency in Roaming Services for Wireless Networks: Challenges, Approaches, and Prospects”, IEEE Communications Magazine, vol. 51, no. 2, pp. 142-150, 2013.
Seamless roaming over wireless networks is highly desirable to mobile users, but ensuring the security and efficiency of this process is challenging. In this article, we first identify the challenges unique to roaming services as a set of mandatory and optional requirements. Next, we provide a brief state-of-the-art survey of existing work and point out their limitations in securing roaming services. To complement the security provided by the existing work, we then propose some mechanisms that can meet the aforementioned security and efficiency requirements. Finally, we present challenges that need to be addressed in roaming authentication.

Xu Li, Rongxing Lu, Xiaohui Liang, Xuemin Shen, Jiming Chen, and Xiaodong Lin, “Smart Community: an Internet of Things Application”, IEEE Communication Magazine, Vol. 49, No. 11, pp. 68-75, 2011.
In this article, we introduce an Internet of Things application, smart community, which refers to a paradigmatic class of cyber-physical systems with cooperating objects (i.e., networked smart homes). We then define the smart community architecture, and describe how to realize secure and robust networking among individual homes. We present two smart community applications, Neighborhood Watch and Pervasive Healthcare, with supporting techniques and associated challenges, and envision a few value-added smart community services.

Rongxing Lu, Xiaohui Liang, Xu Li, Xiaodong Lin, and Xuemin Shen, “EPPA: An Efficient and Privacy-Preserving Aggregation Scheme for Secure Smart Grid Communications”, IEEE Transactions on Parallel and Distributed Systems, Vol. 23, No. 9, pp. 1621-1632, 2012.
In this paper, we propose an efficient and privacy-preserving aggregation scheme, named EPPA, for smart grid communications. EPPA uses a super-increasing sequence to structure multidimensional data and encrypt the structured data by the homomorphic Paillier cryptosystem technique. For data communications from user to smart grid operation center, data aggregation is performed directly on ciphertext at local gateways without decryption, and the aggregation result of the original data can be obtained at the operation center. Through extensive analysis, we demonstrate that EPPA resists various security threats and preserve user privacy, and has significantly less computation and communication overhead than existing approaches.

Hyoungsuk Jeon, Daesung Hwang, Jinho Choi, Hyuckjae Lee, and Jeongseok Ha, “Secure type-based multiple access”, IEEE Trans. Inform. Forensics Security, Vol. 6, No. 3, pp. 763-747, 2011.
This paper considers data confidentiality in a distributed detection scenario with a type-based multiple-access (TBMA) protocol where a large set of sensors sends local measurements to an ally fusion center (FC) over an insecure wireless medium called the main channel. The proposed TBMA protocol, called secure TBMA, activates sensors having strong and weak main channel gains and makes the sensors follow different reporting rules based on the magnitudes of their channel gains. The proposed scheme delivers unconditional/perfect secrecy without assuming any superiority of the ally FC over the enemy FC in terms of computational capability, secret key, and so on.

Benjamin Fabian, Seda Gürses, Maritta Heisel, Thomas Santen and Holger Schmidt, “A Comparison of Security Requirements Engineering Methods”, Special Issue: Security Requirements Engineering, Springer, Vol. 15, No. 1, pp. 7-40, 2010.
This paper presents a conceptual framework for security engineering, with a strong focus on security requirements elicitation and analysis. This conceptual framework establishes a clear-cut vocabulary and makes explicit the interrelations between the different concepts and notions used in security engineering. Further, we apply our conceptual framework to compare and evaluate current security requirements engineering approaches, such as the Common Criteria, Secure Tropos, SREP, MSRA, as well as methods based on UML and problem frames. We review these methods and assess them according to different criteria, such as the general approach and scope of the method, its validation, and quality assurance capabilities. Finally, we discuss how these methods are related to the conceptual framework and to one another.

M. Bloch, J. Barros, M. R. D. Rodrigues. S. W. McLaughlin, “Wireless Information-Theoretic Security”, IEEE Trans. Inf. Theory, Vol. 54, No. 6, pp. 2515-2534, 2008.
This paper considers the transmission of confidential data over wireless channels. Based on an information-theoretic formulation, the important role of fading is characterized in terms of average secure communication rates and outage probability. A practical secure communication protocol is developed, based on multilevel coding and optimized low-density parity-check (LDPC) codes, which allows to achieve communication rates close to the fundamental security limits in several relevant instances. Finally, a set of metrics for assessing average secure key generation rates is established, and it is shown that the protocol is effective even in the presence of imperfect channel state information.