Khalifa Toumi

  • Citations Per Year
Learn More
Access control in a distributed system with external users and various organizations is an important issue in systems’ security. A comparative study between the existing models will help both: (1) researchers to propose new formalisms and models adapted to these requirements and (2) developers to choose the adequate ones for their applications. In this(More)
A Multi-Organization Environment is composed of several players that depend on each other for resources and services. In order to manage the security of the exchange process we introduce the concept of trust. We show how this aspect of the cooperative work allows us to increase some security aspects. In particular, we provide a framework where the concepts(More)
This paper describes a possible implementation for the innovative and highly secure networking architecture dedicated to the Internet of Things (IoT). We propose an infrastructure that works with a new type of tags, supporting the upcoming standard Host Identity Protocol (HIP). Our main concern is to ensure RFID tags privacy, while enabling things to things(More)
WebRTC provides web calling services by enabling communication between browsers in a P2P fashion. To achieve security and enhance user privacy it is essential to define the level of trust between the various entities involved in WebRTC security architecture. The existing P2P trust models are not directly applicable as the characteristics of browser to(More)
Multi-organisations environment (MOE) is composed of several players that depend on each other for resources and services. Having a good access control policy to these resources becomes necessary. Moreover, being able to define a dynamic policy, meaning that it adapts over time, provides us with a more versatile way when administering these systems. In this(More)
Due to the increasing complexity of distributed systems, security testing is becoming increasingly critical in insuring reliability of such systems in relation to their security requirements. . To challenge this issue, we rely in this paper on model based active testing. In this paper we propose a framework to specify security policies and test their(More)
This paper describes the TestGen-IF tool, that allows the automatic generation of test cases based on model based active testing techniques. This paper describes the overall functionality and architecture of the tool, discusses its strengths and weaknesses, and reports our experience with using the tool on a case study, the Dynamic Route Planning (DRP)(More)
A Multi-Organization Environment is composed of several players that depend on each other for resources and services. In order to manage the security of the exchange process the authors introduce the concept of trust. The authors show how adding this aspect of the cooperative work. In particular, the authors provide a framework where the concepts of trust(More)