Security analysis tools for evaluation of performance efficiency of information protection means

the identity authentication is the information society to a commonly used means of information protection, with what kind of identity certification tool is to determine the success or failure of the key authentication, studies show that EEG signal is difficult to counterfeit, therefore the EEG signal is one of the identity certification tool selection. This article uses the wavelet decomposition as data analysis tools, analysis of the EEG signals under normal collected, results show that the acquisition in normal EEG signal, using this method can well identify subjects.

Download Full-text

On Combining Static, Dynamic and Interactive Analysis Security Testing Tools to Improve OWASP Top Ten Security Vulnerability Detection in Web Applications

Applied Sciences ◽

10.3390/app10249119 ◽

2020 ◽

Vol 10 (24) ◽

pp. 9119

Author(s):

Francesc Mateo Tudela ◽

Juan-Ramón Bermejo Higuera ◽

Javier Bermejo Higuera ◽

Juan-Antonio Sicilia Montalvo ◽

Michael I. Argyros

Keyword(s):

Web Applications ◽

Security Analysis ◽

False Positives ◽

Vulnerability Detection ◽

Security Testing ◽

Security Vulnerabilities ◽

Security Vulnerability ◽

Interactive Analysis ◽

Testing Tools ◽

Analysis Tools

The design of the techniques and algorithms used by the static, dynamic and interactive security testing tools differ. Therefore, each tool detects to a greater or lesser extent each type of vulnerability for which they are designed for. In addition, their different designs mean that they have different percentages of false positives. In order to take advantage of the possible synergies that different analysis tools types may have, this paper combines several static, dynamic and interactive analysis security testing tools—static white box security analysis (SAST), dynamic black box security analysis (DAST) and interactive white box security analysis (IAST), respectively. The aim is to investigate how to improve the effectiveness of security vulnerability detection while reducing the number of false positives. Specifically, two static, two dynamic and two interactive security analysis tools will be combined to study their behavior using a specific benchmark for OWASP Top Ten security vulnerabilities and taking into account various scenarios of different criticality in terms of the applications analyzed. Finally, this study analyzes and discuss the values of the selected metrics applied to the results for each n-tools combination.

Download Full-text

An Assessment of Security Analysis Tools for Cyber-Physical Systems

Risk Assessment and Risk-Driven Quality Assurance - Lecture Notes in Computer Science ◽

10.1007/978-3-319-57858-3_6 ◽

2017 ◽

pp. 66-81

Author(s):

Laurens Lemaire ◽

Jan Vossaert ◽

Bart De Decker ◽

Vincent Naessens

Keyword(s):

Security Analysis ◽

Cyber Physical Systems ◽

Physical Systems ◽

Analysis Tools

Download Full-text

The Evaluation of Performance Indicators Development: A Study on Indonesian Financial Transaction Report and Analysis Center (PPATK)

Journal of Accounting and Investment ◽

10.18196/jai.v22i3.11157 ◽

2021 ◽

Vol 22 (3) ◽

pp. 426-459

Author(s):

Dedy Kurniawan ◽

Rusdi Akbar

Keyword(s):

Business Process ◽

Performance Indicators ◽

Monitoring And Evaluation ◽

Regulatory Agencies ◽

Public Organization ◽

Financial Transaction ◽

Evaluation Of Performance ◽

Analysis Tools ◽

Analysis Center ◽

And Performance

Research aims: This research aims to evaluate the development of performance indicators using the performance blueprint analysis tools and know what factors are instrumental in the development of performance indicators for public organizations in Indonesia using Institutional Isomorphism point of view.Design/Methodology/Approach: The study comprised qualitative research undertaken at one public organization, the Indonesian Financial Transaction Reports and Analysis Center (PPATK) in Jakarta.Research findings: This study revealed that the PPATK business process was still not optimally aligned with the performance blueprint analysis tools. This study also uncovered eleven factors that play a role in the development of performance indicators: mindset, business process, comfort zone, technical competence, regulation, activity plan, process, drafting, management commitments, monitoring and evaluation, reward and punishment, and performance data management.Theoretical contribution/Originality: This study contributes to knowledge of the institutional isomorphism’s influence, primarily normative isomorphism at a public organization. Also, this research is the first research to use the performance blueprint more thoroughly, with six types of analysis.Practitioner/Policy implication: This study has implications for ministries/institutions and regulatory agencies to implement the performance blueprint in the development process of performance indicators.Research limitation/Implication: The limitations of this study are that the results of the performance blueprint analysis tools did not yet have the criteria as the basis for assessment of findings, and this research only employed a qualitative method; therefore, the resultant conclusions are still minimum.

Download Full-text

A rare event approach to build security analysis tools when N − k (k >1) analyses are needed (as they are in large scale power systems)

2009 IEEE Bucharest PowerTech ◽

10.1109/ptc.2009.5282223 ◽

2009 ◽

Cited By ~ 4

Author(s):

Florence Fonteneau-Belmudes ◽

Damien Ernst ◽

Louis Wehenkel

Keyword(s):

Power Systems ◽

Large Scale ◽

Security Analysis ◽

Rare Event ◽

Analysis Tools

Download Full-text

A Mutation Framework for Evaluating Security Analysis Tools in IoT Applications

2020 IEEE 27th International Conference on Software Analysis, Evolution and Reengineering (SANER) ◽

10.1109/saner48275.2020.9054853 ◽

2020 ◽

Author(s):

Sajeda Parveen ◽

Manar H. Alalfi

Keyword(s):

Security Analysis ◽

Iot Applications ◽

Analysis Tools

Download Full-text

How to Evaluate Remote Tower Metrics in Connection With Weather Observations

Aviation Psychology and Applied Human Factors ◽

10.1027/2192-0923/a000142 ◽

2018 ◽

Vol 8 (2) ◽

pp. 100-111 ◽

Cited By ~ 1

Author(s):

Maik Friedrich ◽

Christoph Möhlenbrink

Keyword(s):

Traffic Control ◽

Air Traffic Control ◽

Influential Factors ◽

Air Traffic ◽

Weather Event ◽

Evaluation Of Performance ◽

Weather Events ◽

Weather Observations ◽

Validation Experiment ◽

Remote Controller

Abstract. Owing to the different approaches for remote tower operation, a standardized set of indicators is needed to evaluate the technical implementations at a task performance level. One of the most influential factors for air traffic control is weather. This article describes the influence of weather metrics on remote tower operations and how to validate them against each other. Weather metrics are essential to the evaluation of different remote controller working positions. Therefore, weather metrics were identified as part of a validation at the Erfurt-Weimar Airport. Air traffic control officers observed weather events at the tower control working position and the remote control working position. The eight participating air traffic control officers answered time-synchronized questionnaires at both workplaces. The questionnaires addressed operationally relevant weather events in the aerodrome. The validation experiment targeted the air traffic control officer’s ability to categorize and judge the same weather event at different workplaces. The results show the potential of standardized indicators for the evaluation of performance and the importance of weather metrics in relation to other evaluation metrics.

Download Full-text