scholarly journals Design and Deployment of Network Testbed for Web Data Security

2021 ◽  
Author(s):  
Shishir Kumar Shandilya
Keyword(s):  
Cyber Security ◽  
Vital Role ◽  
Cyber Attacks ◽  
Adaptive Security ◽  
Security Measures ◽  
Adaptive Responses ◽  
Network Testbeds ◽  
Library Support ◽  
Proactive Security ◽  
Effective Analysis

In recent years, the cyber security scenario has transformed predominantly from conventional response-based security mechanisms to proactive security strategies. And this transformation is still continuing which is shifting it from proactive security strategies to cyber immunity which eliminates the cyber threats by introducing stringent and adaptive security measures. In the process of developing new security algorithms/procedures, accurate modelling and effective simulation play a vital role for the robustness and effectiveness of proposed system. It is also necessary to analyze the behaviour of proposed system against multiple types of known cyber attacks. This paper focuses on the existing network testbeds for an effective analysis and monitoring while proposing a new network testbed for examining new security concepts like cyber immunity. The proposed network testbed is designed to incorporate the methods and procedures of Nature-inspired Cyber Security to accommodate the adaptive responses against the sophisticated and ever-advancing cyber attacks. The proposed testbed provides customizable analytical tool to design, test and examine the new security algorithms through a rich set of attack scenarios. It also allows developers to design, implement, and evaluate their defensive techniques with library support.

An investigation into the effect of cybersecurity on attack prevention strategies

2020 ◽  
pp. 53-60
Author(s):  
Mohammed I. Alghamdi ◽  
Keyword(s):  
Information Technology ◽  
Computer Networks ◽  
Cyber Security ◽  
Information Technologies ◽  
Vital Role ◽  
Cyber Attacks ◽  
Security Threats ◽  
Prevention Strategies ◽  
Sufficient Knowledge ◽  
Simplified Solution

Our economy, infrastructure and societies rely to a large extent on information technology and computer networks solutions. Increasing dependency on information technologies has also multiplied the potential hazards of cyber-attacks. The prime goal of this study is to critically examine how the sufficient knowledge of cyber security threats plays a vital role in detection of any intrusion in simple networks and preventing the attacks. The study has evaluated various literatures and peer reviewed articles to examine the findings obtained by consolidating the outcomes of different studies and present the final findings into a simplified solution.

scholarly journals UNIVERSITY CYBER SECURITY AS A METHOD FOR ANTI-FISHING FRAUD

2020 ◽  
pp. 59-67
Author(s):  
Irina Tatomur
Keyword(s):  
Cyber Security ◽  
Educational Institution ◽  
Visual Presentation ◽  
Academic Community ◽  
Cyber Attacks ◽  
Asia Pacific ◽  
Economic Losses ◽  
Educational Institutions ◽  
Security Measures ◽  
Phishing Attacks

Introduction. With the rapid adoption of computer and networking technologies, educational institutions pay insufficient attention to the implementation of security measures to ensure the confidentiality, integrity and accessibility of data, and thus fall prey to cyber-attacks. Methods. The following methods were used in the process of writing the article: methods of generalization, analogy and logical analysis to determine and structure the motives for phishing attacks, ways to detect and prevent them; statistical analysis of data – to build a chronological sample of the world's largest cyber incidents and determine the economic losses suffered by educational institutions; graphical method – for visual presentation of results; abstraction and generalization – to make recommendations that would help reduce the number of cyber scams. Results. The article shows what role cyber security plays in counteracting phishing scams in the educational field. The motives for the implementation of phishing attacks, as well as methods for detecting and preventing them, have been identified and regulated. The following notions as "phishing", "submarine" and "whaling" are evaluated as the most dangerous types of fraud, targeting both small and large players in the information chain of any educational institution. An analytical review of the educational services market was conducted and a chronological sampling of the largest cyber incidents that occurred in the period 2010-2019 was made. The economic losses incurred by colleges, research institutions and leading universities in the world were described. It has been proven that the US and UK educational institutions have been the most attacked by attackers, somewhat inferior to Canada and countries in the Asia-Pacific region. It is found that education has become the top industry in terms of the number of Trojans detected on devices belonging to educational institutions and the second most listed among the most affected by the ransomware. A number of measures have been proposed to help reduce the number of cyber incidents. Discussion. The obtained results should be taken into account when formulating a strategy for the development of educational institutions, as well as raising the level of awareness of the representatives of the academic community in cybersecurity. Keywords: phishing, cyber security, cyber stalkers, insider threat, rootkit, backdoor.

Application of Cyber Security in Emerging C4ISR Systems

2013 ◽  
pp. 1705-1738
Author(s):  
Ashfaq Ahmad Malik ◽  
Athar Mahboob ◽  
Adil Khan ◽  
Junaid Zubairi
Keyword(s):  
Cyber Security ◽  
Oil And Gas ◽  
Information Assurance ◽  
System Of Systems ◽  
Cyber Attacks ◽  
Security Measures ◽  
Oil And Gas Exploration ◽  
Civil Sector ◽  
C4isr System ◽  
Network Of Networks

C4ISR stands for Command, Control, Communications, Computers, Intelligence, Surveillance & Reconnaissance. C4ISR systems are primarily used by organizations in the defense sector. However, they are also increasingly being used by civil sector organizations such as railways, airports, oil, and gas exploration departments. The C4ISR system is a system of systems and it can also be termed as network of networks and works on similar principles as the Internet. Hence it is vulnerable to similar attacks called cyber attacks and warrants appropriate security measures to save it from these attacks or to recover if the attack succeeds. All of the measures put in place to achieve this are called cyber security of C4ISR systems. This chapter gives an overview of C4ISR systems focusing on the perspective of cyber security warranting information assurance.

scholarly journals Deterrence by Denial approach for the most known State Cyber Vulnerabilities

2020 ◽  
Author(s):  
Nasser AlAzwani ◽  
Tom Chen
Keyword(s):  
Cyber Security ◽  
Vital Role ◽  
Cyber Attacks ◽  
Nuclear Deterrence ◽  
Space Model ◽  
Security Technologies ◽  
Cyber Threats ◽  
Proposed Model ◽  
Cyber Space ◽  
Cyber Deterrence

Cyber deterrence by denial strategy can be practised by the state by making it hard for adversaries to succeed any attempt of attacking. It was practised during nuclear deterrence strategies as well as in many other conventional deterrence. This paper argues the functionality of cyber deterrence by denial in deterring cyber threats. In this paper, our attempt is to define cyber deterrence by denial, model it, explore operational roles of cyber security technologies in approaching deterrence by denial within cyber space. Model analysis shed lights over practicing deterrence by denial and its vital role in understanding how efficiently denial can work in maximize failure of any attack which will impact in maximizing cost of cyber attacks to the attacker. Due to limitations in cyber security technologies, unknown cyber threat might not be deterred with assumed approach. Proposed model confirmed that deterrence by denial strategy might works in deterring known cyber threats within instrumental model. As for the benefit of enhancing deterrence in cyber space there is a serious need to reduce the tendency to ignore exploring this strategy.

scholarly journals Cyber Security Issues in Navigation Systems of Marine Vessels From a Control Perspective

2017 ◽  
Author(s):  
Vahid Hassani ◽  
Naveena Crasta ◽  
António M. Pascoal
Keyword(s):  
Cyber Security ◽  
Cyber Attacks ◽  
Gps Data ◽  
Positioning System ◽  
Navigation Systems ◽  
State Variables ◽  
Security Measures ◽  
Security Issues ◽  
Linear Control Theory ◽  
Marine Vessels

Autonomous marine vessels are the way forward to revolutionize maritime operations. However, the safety and success of autonomous missions depend critically on the availability of a reliable positioning system and time information generated using global positioning system (GPS) data. GPS data are further used for guidance, navigation, and control (GNC) of vehicles. At a mission planning level GPS data are commonly assumed to be reliable. From this perspective, this article aims to highlight the perils of maritime navigation attacks, showing the need for the enhancement of standards and security measures to intercept any serious threats to marine vessels emanating from cyber attacks and GPS spoofing. To this end, we consider a case where a cyber attacker blocks the real GPS signals and dupes the GPS antennas on board the marine vehicle with fake signals. Using the Nomoto model for the steering dynamics of a marine vessel and exploiting tools from linear control theory we show analytically, and verify using numerical simulations, that it is possible to influence the state variables of the marine vessel by manipulating the compromised GPS data.

scholarly journals Deterrence by Denial approach for the most known State Cyber Vulnerabilities

2020 ◽  
Author(s):  
Nasser AlAzwani ◽  
Tom Chen
Keyword(s):  
Cyber Security ◽  
Vital Role ◽  
Cyber Attacks ◽  
Nuclear Deterrence ◽  
Space Model ◽  
Security Technologies ◽  
Cyber Threats ◽  
Proposed Model ◽  
Cyber Space ◽  
Cyber Deterrence

Cyber deterrence by denial strategy can be practised by the state by making it hard for adversaries to succeed any attempt of attacking. It was practised during nuclear deterrence strategies as well as in many other conventional deterrence. This paper argues the functionality of cyber deterrence by denial in deterring cyber threats. In this paper, our attempt is to define cyber deterrence by denial, model it, explore operational roles of cyber security technologies in approaching deterrence by denial within cyber space. Model analysis shed lights over practicing deterrence by denial and its vital role in understanding how efficiently denial can work in maximize failure of any attack which will impact in maximizing cost of cyber attacks to the attacker. Due to limitations in cyber security technologies, unknown cyber threat might not be deterred with assumed approach. Proposed model confirmed that deterrence by denial strategy might works in deterring known cyber threats within instrumental model. As for the benefit of enhancing deterrence in cyber space there is a serious need to reduce the tendency to ignore exploring this strategy.

scholarly journals A Study of Cyber Security and Cyber Threats

2020 ◽  
Vol 3 (1) ◽  
pp. 154-157
Author(s):  
Khushpreet Kaur
Keyword(s):  
Cyber Security ◽  
Technological Development ◽  
Vital Role ◽  
Cyber Attacks ◽  
Application Security ◽  
Cyber Threats ◽  
Secure Information ◽  
Internet Users ◽  
Security Network ◽  
Day By Day

Cybersecurity has a vital role in Information Technology. The cybersecurity security involves the security on data/information stored in various devices present on different networks. However, it is very difficult to secure information in today’s world because of the increasing number of devices like computer systems, mobile phones, televisions, etc. for technological development. The data can be in many forms like data of employees in the organization, an individual’s data present on a social media website, the data stored in mobile devices or on the cloud. This data is stored mostly on networks including the company’s websites, servers, the cloud which is the main reason for data to be hacked. Numerous cyber threats are increasing day by day and to ensure cybersecurity and privacy of internet users various challenges have been faced by IT industries. Those challenges include data security, mobile security, network security, Application Security, Biometric authentication. The elaboration of these cybersecurity challenges and cyberattacks will be discussed in this paper. Cyber attacks are not only harmful to organizations, but it is also dangerous for individuals. Those attacks are the attacks done by cyber attackers for their advantage or to harm individuals for their revenge. Some common cyber threats are phishing, ransomware attack, malware, etc. whose description is given below in the ‘Types of cyber-attacks’ section. Moreover, this paper includes cybersecurity techniques that will be helpful to reduce data breaches, identity theft, or other cyber threats. Awareness of those cyber techniques will help both individuals and organizations to protect their information from various types of cyberattacks.

A Community-Oriented Approach to CIIP in Developing Countries

2014 ◽  
pp. 849-871
Author(s):  
Ian Ellefsen ◽  
Sebastiaan von Solms
Keyword(s):  
Developing Countries ◽  
Computer Security ◽  
Cyber Security ◽  
Information Infrastructure ◽  
Cyber Attacks ◽  
Security Measures ◽  
Developing Regions ◽  
Infrastructure Protection ◽  
Internal Structures ◽  
Oriented Approach

Developing countries are fast becoming players in an increasingly interconnected world. Many developing countries are making use of technological solutions to address unique challenges. However, in many cases, this growth is not accompanied with the development of appropriate information infrastructure protection structures. As technological solutions are deployed in developing countries, there will be a large number of new users gaining access to Internet-based systems. In many cases, these new users might lack the skills necessary to identify computer security threats. Inadequate cyber security measures can increase the risk and impact of cyber attacks. The development of internal structures to address Critical Information Infrastructure Protection (CIIP) is dependent on the environment in which it will be deployed. Therefore, traditional CIIP structures might not adequately address the technological challenges found in developing countries. In this chapter, the authors aim to address the development of CIIP structures in developing regions by elaborating on the set of unique challenges that exist. Furthermore, they aim to present a community-oriented structure aimed at providing CIIP, in what they refer to as a “bottom-up” manner. The larger aim of CIIP structures in developing regions is to support the future development and deployment of cyber security mechanisms and to allow developing countries to play a trusted role in global cyber security efforts.

A Community-Oriented Approach to CIIP in Developing Countries

2013 ◽  
pp. 240-261
Author(s):  
Ian Ellefsen ◽  
Sebastiaan von Solms
Keyword(s):  
Developing Countries ◽  
Computer Security ◽  
Cyber Security ◽  
Information Infrastructure ◽  
Cyber Attacks ◽  
Security Measures ◽  
Developing Regions ◽  
Infrastructure Protection ◽  
Internal Structures ◽  
Oriented Approach

Developing countries are fast becoming players in an increasingly interconnected world. Many developing countries are making use of technological solutions to address unique challenges. However, in many cases, this growth is not accompanied with the development of appropriate information infrastructure protection structures. As technological solutions are deployed in developing countries, there will be a large number of new users gaining access to Internet-based systems. In many cases, these new users might lack the skills necessary to identify computer security threats. Inadequate cyber security measures can increase the risk and impact of cyber attacks. The development of internal structures to address Critical Information Infrastructure Protection (CIIP) is dependent on the environment in which it will be deployed. Therefore, traditional CIIP structures might not adequately address the technological challenges found in developing countries. In this chapter, the authors aim to address the development of CIIP structures in developing regions by elaborating on the set of unique challenges that exist. Furthermore, they aim to present a community-oriented structure aimed at providing CIIP, in what they refer to as a “bottom-up” manner. The larger aim of CIIP structures in developing regions is to support the future development and deployment of cyber security mechanisms and to allow developing countries to play a trusted role in global cyber security efforts.

Application of Cyber Security in Emerging C4ISR Systems

2011 ◽  
pp. 223-258 ◽  
Author(s):  
Ashfaq Ahmad Malik ◽  
Athar Mahboob ◽  
Adil Khan ◽  
Junaid Zubairi
Keyword(s):  
Cyber Security ◽  
Oil And Gas ◽  
Information Assurance ◽  
System Of Systems ◽  
Cyber Attacks ◽  
Security Measures ◽  
Oil And Gas Exploration ◽  
Civil Sector ◽  
C4isr System ◽  
Network Of Networks

C4ISR stands for Command, Control, Communications, Computers, Intelligence, Surveillance & Reconnaissance. C4ISR systems are primarily used by organizations in the defense sector. However, they are also increasingly being used by civil sector organizations such as railways, airports, oil, and gas exploration departments. The C4ISR system is a system of systems and it can also be termed as network of networks and works on similar principles as the Internet. Hence it is vulnerable to similar attacks called cyber attacks and warrants appropriate security measures to save it from these attacks or to recover if the attack succeeds. All of the measures put in place to achieve this are called cyber security of C4ISR systems. This chapter gives an overview of C4ISR systems focusing on the perspective of cyber security warranting information assurance.

Sign in / Sign up

Export Citation Format

Share Document