Practical Measures for Securing Government Networks

2008 ◽  
pp. 386-394
Author(s):  
Stephen K. Aikins
Keyword(s):  
Information Security ◽  
Denial Of Service ◽  
Cost Effective ◽  
Internet Security ◽  
The State ◽  
Sensitive Information ◽  
Dos Attacks ◽  
Security Vulnerabilities ◽  
Internal Resources ◽  
State And Local

The modern network and Internet security vulnerabilities expose state and local government networks to numerous threats such as denial of service (DoS) attacks, computer viruses, unauthorized access, confidentiality breaches, and so forth. For example, in June 2005, the state of Delaware saw a spike of 141,000 instances of “suspicious activity” due to a variant of the mytopb worm, which could have brought the state’s network to its knees had appropriate steps not been taken (Jarrett, 2005; National Association of State Chief Information Officers [NASCIO], 2006b). On an average day, the state of Michigan blocks 22,059 spam e-mails, 21,702 e-mail viruses, 4,239 Web defacements, and six remote computer takeover attempts. Delaware fends off nearly 3,000 attempts at entering the state’s network daily (NASCIO, 2006b). Governments have the obligation to manage their information security risks by securing mission- critical internal resources such as financial records and taxpayer sensitive information on their networks. Consequently, public-sector information security officers are faced with the challenge to contain damage from compromised systems, prevent internally and Internet-launched attacks, provide systems for logging and intrusion detection, and build frameworks for administrators to securely manage government networks (Oxlenhandler, 2003). This chapter discusses some of the cost-effective measures needed to address government agency information security vulnerabilities and related threats.

Multi-Aspect DDOS Detection System for Securing Cloud Network

2019 ◽  
pp. 1952-1983
Author(s):  
Pourya Shamsolmoali ◽  
Masoumeh Zareapoor ◽  
M.Afshar Alam
Keyword(s):  
Cloud Computing ◽  
Detection System ◽  
Denial Of Service ◽  
Complex Form ◽  
Internet Security ◽  
Detection Methods ◽  
Ddos Attacks ◽  
Dos Attacks ◽  
Ddos Detection ◽  
Cloud Network

Distributed Denial of Service (DDoS) attacks have become a serious attack for internet security and Cloud Computing environment. This kind of attacks is the most complex form of DoS (Denial of Service) attacks. This type of attack can simply duplicate its source address, such as spoofing attack, which defending methods do not able to disguises the real location of the attack. Therefore, DDoS attack is the most significant challenge for network. In this chapter we present different aspect of security in Cloud Computing, mostly we concentrated on DDOS Attacks. The Authors illustrated all types of Dos Attacks and discussed the most effective detection methods.

Vulnerability Analysis and Defenses in Wireless Networks

2008 ◽  
pp. 129-144
Author(s):  
Lawan A. Mohammed ◽  
Biju Issac
Keyword(s):  
Wireless Networks ◽  
Defense Mechanisms ◽  
Denial Of Service ◽  
Denial Of Service Attacks ◽  
Critical Component ◽  
Dos Attacks ◽  
Security Vulnerabilities ◽  
Wired Networks ◽  
Security Challenges ◽  
Network Vulnerabilities

This chapter shows that the security challenges posed by the 802.11 wireless networks are manifold and it is therefore important to explore the various vulnerabilities that are present with such networks. Along with other security vulnerabilities, defense against denial of service attacks is a critical component of any security system. Unlike wired networks where denial of service attacks has been extensively studied, there is a lack of research for preventing such attacks in wireless networks. In addition to various vulnerabilities, some factors leading to different types of denial of service (DoS) attacks and some defense mechanisms are discussed in this chapter. This can help to better understand the wireless network vulnerabilities and subsequently more techniques and procedures to combat these attacks may be developed by researchers.

A Survey of Botnet-Based DDoS Flooding Attacks of Application Layer

2016 ◽  
pp. 52-79 ◽  
Author(s):  
Esraa Alomari ◽  
Selvakumar Manickam ◽  
B. B. Gupta ◽  
Mohammed Anbar ◽  
Redhwan M. A. Saad ◽  
...  
Keyword(s):  
Denial Of Service ◽  
Internet Security ◽  
Sensitive Information ◽  
Distributed Denial Of Service ◽  
Cyber Attack ◽  
Open Problems ◽  
Ddos Attack ◽  
Flooding Attacks ◽  
Cyber Espionage ◽  
Detection Mechanisms

A Botnet can be used to launch a cyber-attack, such as a Distributed Denial of Service (DDoS) attack, against a target or to conduct a cyber-espionage campaign to steal sensitive information. This survey analyzes and compares the most important efforts carried out in an application-based detection area and this survey extended to cover the mitigation approaches for the Botnet-based DDoS flooding attacks. It accomplishes four tasks: first, an extensive illustration on Internet Security; second, an extensive comparison between representative detection mechanisms; third, the comparison between the mitigation mechanisms against Botnet-based DDoS flooding and fourth, the description of the most important problems and highlights in the area. We conclude that the area has achieved great advances so far, but there are still many open problems.

scholarly journals Study on the Problems and Countermeasures of Information Security

2012 ◽  
Vol 6-7 ◽  
pp. 107-111
Author(s):  
Cong Jun Rao ◽  
Qing Zhang ◽  
Jian Ping Gan
Keyword(s):  
Information Security ◽  
National Security ◽  
Internet Security ◽  
The State ◽  
Major Aspect ◽  
New Science ◽  
State Security ◽  
Information Safety ◽  
National Power ◽  
The Stability

Information has become a significant resource of strategy. The selection, the handling and the ability to keep safety of the information constitute an important section of a country’s comprehensive national power. The information security counters about the stability of society, even the state security. Thus, it’s time to take measures to guarantee our nation’s information security. Recent years, the area of information security has acquired more new science results, which develops fast. Through discussing about Internet security, the major aspect of information safety, this dissertation points out the defections in our national security, and then presents some countermeasures to solve the problems.

A Mitigation Technique for DoS Attack in Wireless Network Based Gradient Matrix and Firefly

2018 ◽  
Vol 8 (1) ◽  
pp. 136
Author(s):  
Jeewanjot Kaur ◽  
Taranjit Singh Aulakh
Keyword(s):  
Research Effort ◽  
Denial Of Service ◽  
Traffic Monitoring ◽  
Internet Security ◽  
Cyber Attack ◽  
Dos Attack ◽  
Dos Attacks ◽  
Network Resource ◽  
Denial Of Service Attack ◽  
Service Attack

In computing, a denial-of-service attack (DoS attack) is a cyber-attack where the perpetrator seeks to make a machine or network resource unavailable to its intended users by temporarily or indefinitely disrupting services of a host connected to the Internet. In a distributed denial-of-service attack (DDoS attack), the incoming traffic flooding the victim originates from many different sources. This effectively makes it impossible to stop the attack simply by blocking a single source. In this research a generalized model for detection has been created by studying the existing models and algorithms on DoS attacks. Internet security is vital to facilitate e-commerce transactions, and there has been continued research effort to provision network traffic monitoring at high speeds. In the proposed technique a threshold is also defined so that any other node id which is greater than that threshold may be prevented. In case of any intrusion IP backtracking and packet logging is used to detect the intruder and mitigate it. From result it may be clear that the QoS parameters are improved using proposed approach and there are improved by approx 15-18% from the existing approach.

Multi-Aspect DDOS Detection System for Securing Cloud Network

2017 ◽  
pp. 222-252
Author(s):  
Pourya Shamsolmoali ◽  
Masoumeh Zareapoor ◽  
M.Afshar Alam
Keyword(s):  
Cloud Computing ◽  
Detection System ◽  
Denial Of Service ◽  
Complex Form ◽  
Internet Security ◽  
Detection Methods ◽  
Ddos Attacks ◽  
Dos Attacks ◽  
Ddos Detection ◽  
Cloud Network

Distributed Denial of Service (DDoS) attacks have become a serious attack for internet security and Cloud Computing environment. This kind of attacks is the most complex form of DoS (Denial of Service) attacks. This type of attack can simply duplicate its source address, such as spoofing attack, which defending methods do not able to disguises the real location of the attack. Therefore, DDoS attack is the most significant challenge for network. In this chapter we present different aspect of security in Cloud Computing, mostly we concentrated on DDOS Attacks. The Authors illustrated all types of Dos Attacks and discussed the most effective detection methods.

scholarly journals Two-Level-Composite-Hashing Facilitating Highly Efficient Anonymous IoT and D2D Authentication

Electronics ◽  
2021 ◽  
Vol 10 (7) ◽  
pp. 789
Author(s):  
Hung-Yu Chien
Keyword(s):  
High Efficiency ◽  
Denial Of Service ◽  
Resource Limitation ◽  
Sensitive Information ◽  
Dos Attacks ◽  
Anonymous Authentication ◽  
Public Keys ◽  
Identity Privacy ◽  
Authentication Schemes ◽  
Iot Devices

Resource limitation is quite popular in many Internet of Things (IoT) devices and eavesdropping on the identities of IoT devices could reveal the sensitive information; therefore, high efficiency (computation and communication) and anonymity protection are two desirable properties in IoT authentication and in device-to-device (D2D) authentication. Conventionally, dynamic pseudonyms are widely adopted to protect the device identity privacy in IoT authentication and in D2D communications; however, the conventional mechanisms of pseudonym-renewing and pseudonym-bound-public-keys updating could be very costly or be vulnerable to the desynchronization-based denial-of-service (DoS) attacks. In this paper, we propose a novel 2-level composite hashing (2LCH) mechanism to mitigate the problems, and propose the 2LCH-based anonymous IoT and D2D authentication schemes. The schemes simultaneously achieve high efficiency and strong anonymity for such environments; once two devices successfully complete one instance of the server-assist anonymous authentication, they can run several instances of the direct D2D anonymous authentication without the involvement of the server. The merits of the schemes include: (1) high efficiency in terms of computation and communication; (2) easy and efficient generation/synchronization of dynamic pseudonyms; (3) robustness to both desynchronization-based DoS attacks and the unreliable connections; (4) easy application to the existent IoT architectures and standards; and (5) formal security verification.

Is This the Care We Need?: An Examination of Childcare Policy in Pennsylvania

Commonwealth ◽  
2017 ◽  
Vol 19 (2) ◽  
Author(s):  
Jennie Sweet-Cushman ◽  
Ashley Harden
Keyword(s):  
United States ◽  
Child Care ◽  
Current System ◽  
The United States ◽  
The State ◽  
Federal State ◽  
Women And Politics ◽  
Richard Nixon ◽  
State And Local ◽  
Childcare Policy

For many families across Pennsylvania, child care is an ever-present concern. Since the 1970s, when Richard Nixon vetoed a national childcare program, child care has received little time in the policy spotlight. Instead, funding for child care in the United States now comes from a mixture of federal, state, and local programs that do not help all families. This article explores childcare options available to families in the state of Pennsylvania and highlights gaps in the current system. Specifically, we examine the state of child care available to families in the Commonwealth in terms of quality, accessibility, flexibility, and affordability. We also incorporate survey data from a nonrepresentative sample of registered Pennsylvania voters conducted by the Pennsylvania Center for Women and Politics. As these results support the need for improvements in the current childcare system, we discuss recommendations for the future.

ALGORITHM FOR DETERMINING THE DEGREE VALUES OF CONFIDENTIAL DOCUMENTS OF THE ORGANIZATION

2017 ◽  
pp. 80-88
Author(s):  
Sergey Valerevich Belov ◽  
Irina Mikhalovna Kosmacheva ◽  
Irina Vyacheslavovna Sibikina
Keyword(s):  
Information Security ◽  
Russian Federation ◽  
Value Of Information ◽  
Weighting Factor ◽  
State Regulation ◽  
The State ◽  
Information Security Management ◽  
Pair Comparison ◽  
The Russian Federation ◽  
Properties Of Information

To solve the problem of information security management the method was proposed that allows determining the degree of importance of confidential documents of the organization. The urgency of the proposed algorithm was substantiated taking into account the requirements of the legislation of the Russian Federation in the sphere of information security. The stages prior to the formation of the list of confidential documents of the organization were described. A review of the main documents of the legal and regulatory framework was carried out including documents relating to the state regulation of relations in the sphere of information security. The classes of protected information for the accessing categories were considered. The criteria changes of the value of information in the process of time were represented. The algorithm of formation of the list of confidential documents of the organization based on the properties of information was offered. The algorithm is based on an expert method of pair comparison of alternatives. The result of the use of this method is a number of confidential documents, ranked in descending order of importance. For each document the weighting factor of importance can be calculated. The verification stage of the degree of expert consistency was included in the methodology to eliminate the use of erroneous expert data. The application of the methodology is illustrated by a calculated example.

Sign in / Sign up

Export Citation Format

Share Document