The Impacts of DNS Protocol Security Weaknesses

2020 ◽  
pp. 722-728
Author(s):  
Willian A. Dimitrov ◽  
◽  
Galina S. Panayotova
Keyword(s):  
Statistical Analysis ◽  
Cyber Security ◽  
Short Review ◽  
The Internet ◽  
Protocol Security ◽  
Security Standards ◽  
Security Incidents

Global DNS infrastructure is a major component for the services exposed in the internet. The purpose of the study is understanding the cyber security status of DNS ecosystem. As part of the research, a statistical analysis based on vulnerability repositories has been created to provide a view toward the level of DNS security in general. It can help organizations to understand, assess and mitigate DNS risks. It's made short review of most used attacks against DNS and mitigation: amplification, reflection, floods, DNS exploits, and analysis for the DNS security incidents trend. The statistics implicitly reflect the degree of adoption of new DNS security standards and technologies.

Solving the Internet Jurisdiction Puzzle

2017 ◽  
Author(s):  
Dan Jerker B. Svantesson
Keyword(s):  
International Law ◽  
Cyber Security ◽  
Data Privacy ◽  
Modern World ◽  
The Internet ◽  
Private International Law ◽  
Reform Initiatives ◽  
Legal Principles ◽  
Privacy Law ◽  
History Of

Internet jurisdiction has emerged as one of the greatest and most urgent challenges online, severely affecting areas as diverse as e-commerce, data privacy, law enforcement, content take-downs, cloud computing, e-health, Cyber security, intellectual property, freedom of speech, and Cyberwar. In this innovative book, Professor Svantesson presents a vision for a new approach to Internet jurisdiction––for both private international law and public international law––based on sixteen years of research dedicated specifically to the topic. The book demonstrates that our current paradigm remains attached to a territorial thinking that is out of sync with our modern world, especially, but not only, online. Having made the claim that our adherence to the territoriality principle is based more on habit than on any clear and universally accepted legal principles, Professor Svantesson advances a new jurisprudential framework for how we approach jurisdiction. He also proposes several other reform initiatives such as the concept of ‘investigative jurisdiction’ and an approach to geo-blocking, aimed at equipping us to solve the Internet jurisdiction puzzle. In addition, the book provides a history of Internet jurisdiction, and challenges our traditional categorisation of different types of jurisdiction. It places Internet jurisdiction in a broader context and outlines methods for how properly to understand and work with rules of Internet jurisdiction. While Solving the Internet Puzzle paints a clear picture of the concerns involved and the problems that needs to be overcome, this book is distinctly aimed at finding practical solutions anchored in a solid theoretical framework.

Modeling a multi-layered blockchain framework for digital services that governments can implement

2021 ◽  
pp. 1-13
Author(s):  
Fernando Rebollar ◽  
Rocío Aldeco-Perez ◽  
Marco A. Ramos
Keyword(s):  
Statistical Analysis ◽  
General Population ◽  
Information Security ◽  
High Rate ◽  
The Internet ◽  
Sufficient Information ◽  
Electronic Network ◽  
Digital Services ◽  
Different Types ◽  
Cryptographic Techniques

The general population increasingly uses digital services, meaning services which are delivered over the internet or an electronic network, and events such as pandemics have accelerated the need of using new digital services. Governments have also increased their number of digital services, however, these digital services still lack of sufficient information security, particularly integrity. Blockchain uses cryptographic techniques that allow decentralization and increase the integrity of the information it handles, but it still has disadvantages in terms of efficiency, making it incapable of implementing some digital services where a high rate of transactions are required. In order to increase its efficient, a multi-layer proposal based on blockchain is presented. It has four layers, where each layer specializes in a different type of information and uses properties of public blockchain and private blockchain. An statistical analysis is performed and the proposal is modeled showing that it maintains and even increases the integrity of the information while preserving the efficiency of transactions. Besides, the proposal can be flexible and adapt to different types of digital services. It also considers that voluntary nodes participate in the decentralization of information making it more secure, verifiable, transparent and reliable.

scholarly journals Cyber security detection and monitoring at IHEP private cloud for web services

2019 ◽  
Vol 214 ◽  
pp. 07016 ◽  
Author(s):  
Tian Yan ◽  
Shan Zeng ◽  
Mengyao Qi ◽  
Qingbao Hu ◽  
Fazhi Qi
Keyword(s):  
Web Services ◽  
Cyber Security ◽  
Security Threats ◽  
Cloud Platform ◽  
Private Cloud ◽  
Data Store ◽  
Open Source Data ◽  
Source Data ◽  
System Maintenance ◽  
Security Incidents

To improve hardware utilization and save manpower in system maintenance, most of the web services in IHEP have been migrated to a private cloud build upon OpenStack. However, cyber security attacks becomes a serious threats to the cloud progressively. Therefore, a cyber security detection and monitoring system is deployed for this cloud platform. This system collects various security related logs as data sources, and processes them in a framework composed of open source data store, analysis and visualization tools. With this system, security incidents and events can be handled in time and rapid response can be taken to protect cloud platform against cyber security threats.

scholarly journals Online promotion of the Encyclopedia of Modern Ukraine (results of user’s survey study)

2021 ◽  
Vol 13 ◽  
pp. 21-45
Author(s):  
Mykola Zhelezniak
Keyword(s):  
Statistical Analysis ◽  
Online Version ◽  
Survey Study ◽  
The Internet ◽  
Sociological Study ◽  
20Th Anniversary

The article is dedicated to the 20th anniversary of beginning the Encyclopedia of Modern Ukraine (EMU), the first volume of which was published in 2001. On this occasion, scholars of NASU Institute of Encyclopedic Research conducted a sociological study of people that are being used the online version of the EMU. In this article, the author presents the results of this study processed by methods of statistical analysis, and offers some discussions based on the results. Acquired information is important for the further progression of the EMU on the Internet, because it allows getting feedback from encyclopedia users.

scholarly journals VOCATIONAL SCHOOL LABORATORY ON THE BASIS OF CYBER SECURITY IN THE FIELD OF THE INTERNET OF THINGS (IOT)

2019 ◽  
Author(s):  
Э.Д. Алисултанова ◽  
Л.К. Хаджиева ◽  
М.З. Исаева
Keyword(s):  
Internet Of Things ◽  
Cyber Security ◽  
Legal Aspects ◽  
Smart Manufacturing ◽  
The Internet ◽  
Iot Security ◽  
Career Opportunities ◽  
School Laboratory ◽  
Basic Ideas ◽  
The Internet Of Things

Данная статья посвящена созданию профориентационной (умной) лаборатории, которая призвана сформировать у школьников базовые представления о технологии Интернет вещей (IoT), угрозах кибербезопасности в этой сфере, мотивировать к получению в будущем профильного образования и построению карьеры в области обеспечения безопасности Интернет вещей (IoT) при функционировании умного производства. Обучение школьников в профориентационной лаборатории, построенное на основе применения интерактивных электронных образовательных ресурсов, прежде всего будет позиционировать карьерные возможности будущих специалистов в сфере обеспечения безопасности Интернет вещей (IoT) при функционировании умного производства. В рамках функционирования лаборатории особое внимание обучающихся сконцентрировано на тематиках правовых аспектов обеспечения кибербезопасности, главных тенденциях развития киберугроз в современном глобальном информационном пространстве и мерах, необходимых для их нейтрализации. This article is devoted to the creation of a career-oriented (smart) laboratory, which is designed to formulate in schoolchildren basic ideas about the Internet of Things (IoT) technology, cyber security threats in this area, motivate to receive specialized education in the future and build a career in the field of Internet things (IoT) security) with the functioning of smart manufacturing. The training of schoolchildren in a vocational guidance laboratory, based on the use of interactive electronic educational resources, will primarily position the career opportunities of future specialists in the field of Internet of Things (IoT) security in the operation of smart manufacturing. Within the framework of the functioning of the laboratory, special attention of students is concentrated on the topics of the legal aspects of ensuring cyber security, the main trends in the development of cyber threats in the modern global information space and the measures necessary to neutralize them.

scholarly journals Revealing and Sharing Malware Profile Using Malware Threat Intelligence Platform

2021 ◽  
Vol 6 (1) ◽  
pp. 72-82
Author(s):  
Faiz Iman Djufri ◽  
Charles Lim
Keyword(s):  
Cyber Security ◽  
Security Threats ◽  
Cyber Intelligence ◽  
Intelligence Sharing ◽  
Signature Detection ◽  
Threat Intelligence ◽  
User Data ◽  
Self Discovery ◽  
New Generation ◽  
Security Incidents

Cyber Security is an interchange between attackers and defenders, a non-static balancing force. The increasing trend of novel security threats and security incidents, which does not seem to be stopping, prompts the need to add another line of security defences. This is because the risk management and risk detection has become virtually impossible due to the limited access towards user data and the variations of modern threat taxonomies. The traditional strategy of self-discovery and signature detection which has a static nature is now obsolete in facing threats of the new generation with a dynamic nature; threats which are resilient, complex, and evasive. Therefore, this thesis discusses the use of MISP and The Triad Investigation approach to share the Indicator of Compromise on Cyber Intelligence Sharing Platform to be able to address the newt threats.

scholarly journals A conceptual framework for cyber security awareness and education in SA

2014 ◽  
Vol 52 ◽  
Author(s):  
Noluxolo Kortjan ◽  
Rossouw Von Solms
Keyword(s):  
South Africa ◽  
Cyber Security ◽  
Developed Countries ◽  
The Internet ◽  
Security Awareness ◽  
Key Factors ◽  
Primary Research ◽  
Daily Lives ◽  
Internet Users ◽  
Positive Effect

The Internet is becoming increasingly interwoven in the daily lives of many individuals, organisations and nations. It has, to a large extent, had a positive effect on the way people communicate. It has also introduced new avenues for business; and it has offered nations an opportunity to govern online. Nevertheless, although cyberspace offers an endless list of services and opportunities, it is also accompanied by many risks, of which many Internet users are not aware. As such, various countries have developed and implemented cyber-security awareness and education measures to counter the perceived ignorance of the Internet users. However, there is currently a definite lack in South Africa (SA) in this regard; as there are currently, little government-led and sponsored cyber-security awareness and education initiatives. The primary research objective of this paper, therefore, is to propose a cyber-security awareness and education framework for SA that would assist in creating a cyber-secure culture in SA among all of the users of the Internet. This framework will be developed on the basis of key factors extrapolated from a comparative analysis of relevant developed countries.

scholarly journals The Role of Blockchain in Cyber Security

2021 ◽  
Vol 3 (1) ◽  
Author(s):  
Dylan Rafferty ◽  
Kevin Curran
Keyword(s):  
Data Storage ◽  
Cyber Security ◽  
Board Members ◽  
The Internet ◽  
Network Architectures ◽  
General Data Protection Regulation ◽  
Security Breaches ◽  
General Data ◽  
The Internet Of Things

Cyber security breaches are on the rise globally. Due to the introduction of legislation like the EU’s General Data Protection Regulation (GDPR), companies are now subject to further financial penalties if they fail to meet requirements in protecting user information.  In 2018, 75% of CEOs and board members considered cyber security and technology acquisitions among their top priorities, and blockchain based solutions were among the most considered options. Blockchain is a decentralised structure that offers multiple security benefits over traditional, centralised network architectures. These two approaches are compared in this chapter in areas such as data storage, the Internet of Things (IoT) and Domain Name System (DNS) in order to determine blockchain’s potential in the future of cyber security.

scholarly journals Anti-WebShell PHP Backdoor Scanner pada Linux Server

2020 ◽  
Vol 12 (2) ◽  
pp. 143-153
Author(s):  
Christian Ronaldo Sopaheluwakan ◽  
Dian Widiyanto Chandra
Keyword(s):  
Experimental Method ◽  
Cyber Security ◽  
Web Application ◽  
False Positives ◽  
The Internet ◽  
Application Software ◽  
Malicious Software ◽  
The Past ◽  
The World ◽  
Heuristic Analysis

Backdoor or commonly also known as web shell is one of the malicious software that hackers use to maintain access systems that they have entered. Relatively few programs like Anti Web-Shell, PHP Backdoor Scanner circulating on the Internet, and can be obtained free of charge to deal with the issues above. But most of these programs have no actual database of signature behavior to deal with PHP backdoor / Shell nowadays. Then comes the contemporary Anti Web-Shell program that can deal with today's backdoor shell. This study uses an experimental method concerning previous similar studies and is implemented directly into the world of cyber security professional industries. By enriching the Regex dictionary signature and String Array Matching the actualized Anti Web-Shell program can detect more backdoor than similar programs that have existed in the past. The results of this study are in the form of a web application software in PHP extension. The application can minimize 100% of false positives and is twice as fast in scanning files because it is more specific in heuristic analysis scan.

Sign in / Sign up

Export Citation Format

Share Document