DAM: A Theoretical Framework for SensorSecurity in IoT Applications

As IoT applications are pervasively deployed across multiple domains, the potential impact of their security vulnerabilities are also accentuated. Sensor nodes represent a critical security vulnerability in the IoT ecosystem as they are exposed to the environment and accessible to hackers. When compromised or manipulated, sensor nodes can transmit incorrect data which can have a damaging impact on the overall operation and effectiveness of the system. Researchers have addressed the security vulnerabilities in sensor nodes with several mechanisms being proposed to address them. This paper presents DAM (Detect, Avoid, Mitigate), a theoretical framework to evaluate the security threats and solutions for sensor security in IoT applications and deployments. The framework leads to the classification of sensor security threats and categorization of available solutions which can be used to either detect vulnerabilities and attacks, recover from them or completely avoid them. The proposed framework will be useful for evaluating sensor security in real-world IoT deployments in terms of potential threats and designing possible solution

Download Full-text

Classification of Cloud Systems Cyber-security Threats and Solutions Directives

Application and Theory of Computer Technology ◽

10.22496/atct20170227147 ◽

2017 ◽

Vol 2 (3) ◽

pp. 1

Author(s):

Hanane Bennasar ◽

Mohammad Essaaidi ◽

Ahmed Bendahmane ◽

Jalel Benothmane

Keyword(s):

Cloud Computing ◽

Cyber Security ◽

Data Security ◽

Denial Of Service ◽

Security Threats ◽

Huge Number ◽

Open Problems ◽

Long Period ◽

Near Future

Cloud computing cyber security is a subject that has been in top flight for a long period and even in near future. However, cloud computing permit to stock up a huge number of data in the cloud stockage, and allow the user to pay per utilization from anywhere via any terminal equipment. Among the major issues related to Cloud Computing security, we can mention data security, denial of service attacks, confidentiality, availability, and data integrity. This paper is dedicated to a taxonomic classification study of cloud computing cyber-security. With the main objective to identify the main challenges and issues in this field, the different approaches and solutions proposed to address them and the open problems that need to be addressed.

Download Full-text

Security Threat Analyses and Attack Models for Approximate Computing Systems

ACM Transactions on Design Automation of Electronic Systems ◽

10.1145/3442380 ◽

2021 ◽

Vol 26 (4) ◽

pp. 1-31

Author(s):

Pruthvy Yellu ◽

Landon Buell ◽

Miguel Mark ◽

Michel A. Kinsy ◽

Dongpeng Xu ◽

...

Keyword(s):

Error Resilience ◽

Security Threats ◽

Approximate Computing ◽

Security Threat ◽

Security Vulnerabilities ◽

Computing Systems ◽

Quantitative Analyses ◽

Resilience Mechanisms ◽

The Impact ◽

Attack Models

Approximate computing (AC) represents a paradigm shift from conventional precise processing to inexact computation but still satisfying the system requirement on accuracy. The rapid progress on the development of diverse AC techniques allows us to apply approximate computing to many computation-intensive applications. However, the utilization of AC techniques could bring in new unique security threats to computing systems. This work does a survey on existing circuit-, architecture-, and compiler-level approximate mechanisms/algorithms, with special emphasis on potential security vulnerabilities. Qualitative and quantitative analyses are performed to assess the impact of the new security threats on AC systems. Moreover, this work proposes four unique visionary attack models, which systematically cover the attacks that build covert channels, compensate approximation errors, terminate normal error resilience mechanisms, and propagate additional errors. To thwart those attacks, this work further offers the guideline of countermeasure designs. Several case studies are provided to illustrate the implementation of the suggested countermeasures.

Download Full-text

A Composite Framework for Behavioral Compliance with Information Security Policies

Journal of Organizational and End User Computing ◽

10.4018/joeuc.2013070103 ◽

2013 ◽

Vol 25 (3) ◽

pp. 32-51 ◽

Cited By ~ 9

Author(s):

Salvatore Aurigemma

Keyword(s):

Information Security ◽

Theory Of Planned Behavior ◽

Theoretical Framework ◽

Composite Model ◽

Security Policies ◽

Future Research ◽

Security Threats ◽

Behavioral Compliance ◽

Weakest Link ◽

Organizational Information

To combat potential security threats, organizations rely upon information security policies to guide employee actions. Unfortunately, employee violations of such policies are common and costly enough that users are often considered the weakest link in information security. This paper presents a composite theoretical framework for understanding employee behavioral compliance with organizational information security policies. Building off of the theory of planned behavior, a composite model is presented that incorporates the strengths of previous studies while minimizing theoretical gaps present in other behavioral compliance models. In building the framework, related operational constructs are examined and normalized to allow better comparison of past studies and help focus future research efforts.

Download Full-text

TSV-based PUF circuit for 3DIC sensor nodes in IoT applications

2015 IEEE International Conference on Electron Devices and Solid-State Circuits (EDSSC) ◽

10.1109/edssc.2015.7285113 ◽

2015 ◽

Cited By ~ 6

Author(s):

Chao Wang ◽

Jun Zhou ◽

Katti Guruprasad ◽

Xin Liu ◽

Roshan Weerasekera ◽

...

Keyword(s):

Sensor Nodes ◽

Iot Applications

Download Full-text

Classification of food security threats

10.18411/lj-09-2020-56 ◽

2020 ◽

Author(s):

O.YU. SHibarshina

Keyword(s):

Food Security ◽

Security Threats

Download Full-text

Threats and Vulnerabilities to IoT End Devices Architecture and suggested remedies

International Journal of Recent Technology and Engineering - 2 ◽

10.35940/ijrte.f9469.038620 ◽

2020 ◽

Vol 8 (6) ◽

pp. 5712-5718

Keyword(s):

Decision Making ◽

Internet Of Things ◽

Data Processing ◽

Trusted Computing ◽

External World ◽

Security Threats ◽

Iot Applications ◽

Trusted Computing Base ◽

Chain Of Trust ◽

New Challenges

Due to decentralization of Internet of Things(IoT) applications and anything, anytime, anywhere connectivity has increased burden of data processing and decision making at IoT end devices. This overhead initiated new bugs and vulnerabilities thus security threats are emerging and presenting new challenges on these end devices. IoT End Devices rely on Trusted Execution Environments (TEEs) by implementing Root of trust (RoT) as soon as power is on thus forming Chain of trust (CoT) to ensure authenticity, integrity and confidentiality of every bit and byte of Trusted Computing Base (TCB) but due to un-trusted external world connectivity and security flaws such as Spectre and meltdown vulnerabilities present in the TCB of TEE has made CoT unstable and whole TEE are being misutilized. This paper suggests remedial solutions for the threats arising due to bugs and vulnerabilities present in the different components of TCB so as to ensure the stable CoT resulting into robust TEE.

Download Full-text

Interobserver reproducibility of The Paris System for Reporting Urinary Cytology

CytoJournal ◽

10.4103/cytojournal.cytojournal_12_17 ◽

2017 ◽

Vol 14 ◽

pp. 17 ◽

Cited By ~ 25

Author(s):

Theresa Long ◽

Lester J. Layfield ◽

Magda Esebua ◽

Shellaine R. Frazier ◽

D. Tamar Giorgadze ◽

...

Keyword(s):

Urothelial Carcinoma ◽

Urinary Cytology ◽

Low Grade ◽

High Grade ◽

Urothelial Cells ◽

Urothelial Carcinomas ◽

Absolute Agreement ◽

Potential Impact ◽

Urine Specimens

Background: The Paris System for Reporting Urinary Cytology represents a significant improvement in classification of urinary specimens. The system acknowledges the difficulty in cytologically diagnosing low-grade urothelial carcinomas and has developed categories to deal with this issue. The system uses six categories: unsatisfactory, negative for high-grade urothelial carcinoma (NHGUC), atypical urothelial cells, suspicious for high-grade urothelial carcinoma, high-grade urothelial carcinoma, other malignancies and a seventh subcategory (low-grade urothelial neoplasm). Methods: Three hundred and fifty-seven urine specimens were independently reviewed by four cytopathologists unaware of the previous diagnoses. Each cytopathologist rendered a diagnosis according to the Paris System categories. Agreement was assessed using absolute agreement and weighted chance-corrected agreement (kappa). Disagreements were classified as low impact and high impact based on the potential impact of a misclassification on clinical management. Results: The average absolute agreement was 65% with an average expected agreement of 44%. The average chance-corrected agreement (kappa) was 0.32. Nine hundred and ninety-nine of 1902 comparisons between rater pairs were in agreement, but 12% of comparisons differed by two or more categories for the category NHGUC. Approximately 15% of the disagreements were classified as high clinical impact. Conclusions: Our findings indicated that the scheme recommended by the Paris System shows adequate precision for the category NHGUC, but the other categories demonstrated unacceptable interobserver variability. This low level of diagnostic precision may negatively impact the applicability of the Paris System for widespread clinical application.

Download Full-text

Classification of Indoor Environments for IoT Applications: A Machine Learning Approach

IEEE Antennas and Wireless Propagation Letters ◽

10.1109/lawp.2018.2869548 ◽

2018 ◽

Vol 17 (12) ◽

pp. 2164-2168 ◽

Cited By ~ 26

Author(s):

Mohamed I. AlHajri ◽

Nazar T. Ali ◽

Raed M. Shubair

Keyword(s):

Machine Learning ◽

Learning Approach ◽

Indoor Environments ◽

Iot Applications ◽

Machine Learning Approach

Download Full-text

Budget Security Threats and Risks within the Framework of the Digital Economy Development

Financial law ◽

10.18572/1813-1220-2021-1-37-39 ◽

2021 ◽

Vol 1 ◽

pp. 37-39

Author(s):

Nadezhda G. Dolmatova ◽

Keyword(s):

Public Relations ◽

Digital Technologies ◽

Legal Framework ◽

Legal Regulation ◽

Digital Economy ◽

Security Threats ◽

Digital Currency

Currently, Russia has begun to form a legal framework for the development of the digital economy. The introduction of digital technologies affects all areas of public relations, including budgetary legal relations. In connection with digitalization, issues of budget security are becoming more relevant. The article substantiates the need to improve the legal regulation of budget relations in terms of ensuring budget security and the use of digital technologies. The author’s classification of budget security threats is given. Legal contradictions in the field of digital currency regulation are revealed. Measures are proposed to eliminate conflicts and gaps in the current legislation regulating budgetary legal relations and relations arising in connection with the use of digital currency.

Download Full-text

A Graph Theoretical Framework for the Strong Gram Classification of Non-negative Unit Forms of Dynkin Type 𝔸n

Fundamenta Informaticae ◽

10.3233/fi-2021-2092 ◽

2022 ◽

Vol 184 (1) ◽

pp. 49-82

Author(s):

Jesús Arturo Jiménez González

Keyword(s):

Theoretical Framework ◽

Line Graphs ◽

Positive Unit ◽

Dynkin Type ◽

Principal Unit

In the context of signed line graphs, this article introduces a modified inflation technique to study strong Gram congruence of non-negative (integral quadratic) unit forms, and uses it to show that weak and strong Gram congruence coincide among positive unit forms of Dynkin type 𝔸n. The concept of inverse of a quiver is also introduced, and is used to obtain and analyze the Coxeter matrix of non-negative unit forms of Dynkin type 𝔸n. With these tools, connected principal unit forms of Dynkin type 𝔸n are also classified up to strong congruence.

Download Full-text