检索结果-南通市图书馆

Identity Governance Framework for Privileged Users

在线全文

维普期刊数据库

学校读者我要写书评

暂无评论

Computer Systems Science & Engineering 2022年第3期40卷 995-1005页

作者： Mansour Hammoud Alruwies Shailendra Mishra Mohammed Abdul Rahman AlShehri Department of Information Technology College of Computer and Information SciencesMajmaah UniversityAl-Majmaah11952Saudi Arabia Department of Computer Engineering College of Computer and Information SciencesMajmaah UniversityMajmaah11952Saudi Arabia

Information technology companies have grown in size and recognized the need to protect their valuable assets.As a result,each IT application has its authentication mechanism,and an employee needs a username and password.As the number of applications increased,as a result,it became increasingly complex to manage all identities like the number of usernames and passwords of an employee.All identities had to be retrieved by users.Both the identities and the access rights associated with those identities had to be protected by an administrator.Management couldn’t even capture such access rights because they couldn’t verify things like privacy and security.Identity management can help solve this problem.The concept behind identity management is to centralize identity management and manage access identity centrally rather than multiple applications with their authentication and authorization mechanisms.In this research work,we develop governance and an identity management framework for information and technology infrastructures with privileged access management,consisting of cybersecurity policies and strategies.The results show the efficiency of the framework compared to the existing information security components.The integrated identity and access management and privileged access management enable organizations to respond to incidents and facilitate compliance.It can automate use cases that manage privileged accounts in the real world.

关键词： Privileged access management(PAM) lightweight directory access protocol(LDAP) identity management access control cyber-attack

attack-resilient Distributed Control for Islanded Single-/three-phase Microgrids Based on Distributed Adaptive Observers

在线全文

维普期刊数据库

学校读者我要写书评

暂无评论

Journal of Modern Power Systems and Clean Energy 2022年第1期10卷 109-119页

作者： Jianguo Zhou Yinliang Xu Lun Yang Hongbin Sun Tsinghua-Berkeley Shenzhen Institute(TBSI) Tsinghua Shenzhen International Graduate School(TsinghuaSIGS)Tsinghua UniversityShenzhen 518055China Department of Electrical Engineering State Key Laboratory of Power SystemsTsinghua UniversityBeijing 100084China

This paper investigates the power sharing and voltage regulation issues of islanded single-/three-phase microgrids(S/T-MGs)where both sources and loads are unbalanced and the presence of adversarial cyber-attacks against sensors of distributed generator(DG)units is considered.Firstly,each DG unit is modeled as a heterogeneous linear dynamic agent with disturbances caused by sources and loads,then the problem is formulated as a distributed containment control problem.After that,to guarantee satisfactory power sharing and voltage control performance asymptotically achieved for the S/T-MGs,an attack-resilient distributed secondary control approach is developed by designing a distributed adaptive observer.With this approach,the effect of the cyber-attacks can be neutralized to ensure system stability and preserve bounded voltage synchronization.Simulation results are presented to demonstrate the effectiveness of the proposed control approach.

关键词： Single-/three-phase microgrid cyber-attack resilient distributed control distributed observer power sharing

Organizational Data Breach:Building Conscious Care Behavior in Incident Response

维普期刊数据库

同方期刊数据库评论

在线全文

学校读者我要写书评

暂无评论

Computer Systems Science & Engineering 2022年第2期40卷 505-515页

作者： Adlyn Adam Teoh Norjihan Binti Abdul Ghani Muneer Ahmad Nz Jhanjhi Mohammed A.Alzain Mehedi Masud Department of Information Systems Faculty of Computer Science&Information TechnologyUniversiti Malaya50603Kuala LumpurMalaysia School of Computer Science and Engineering SCE Taylor’s UniversitySubang Jaya47500Malaysia Department of Information Technology College of Computers and Information TechnologyTaif UniversityTaif21944Saudi Arabia Department of Computer Science College of Computers and Information TechnologyTaif UniversityTaif21944Saudi Arabia

Organizational and end user data breaches are highly implicated by the role of information security conscious care behavior in respective incident responses.This research study draws upon the literature in the areas of information security,incident response,theory of planned behaviour,and protection motivation theory to expand and empirically validate a modified framework of information security conscious care behaviour formation.The applicability of the theoretical framework is shown through a case study labelled as a cyber-attack of unprecedented scale and sophistication in Singapore’s history to-date,the 2018 SingHealth data breach.The single in-depth case study observed information security awareness,policy,experience,attitude,subjective norms,perceived behavioral control,threat appraisal and self-efficacy as emerging prominently in the framework’s applicability in incident handling.The data analysis did not support threat severity relationship with conscious care behaviour.The findings from the above-mentioned observations are presented as possible key drivers in the shaping information security conscious care behaviour in real-world cyber incident management.

关键词： End user computing organizational behavior incident response data breach computer emergency response team cyber-attack

Aperiodic Sampled-Data Control of Distributed Networked Control Systems Under Stochastic cyber-attacks

在线全文

维普期刊数据库

学校读者我要写书评

暂无评论

IEEE/CAA Journal of Automatica Sinica 2020年第4期7卷 1064-1073页

作者： Kritika Bansal Pankaj Mukhija the Department of Electrical and Electronics Engineering National Institute of Technology DelhiDelhi 110040India

This paper examines the stabilization problem of a distributed networked control system under the effect of cyberattacks by employing a hybrid aperiodic triggering mechanism.The cyber-attack considered in the paper is a stochastic deception attack at the sensor-controller end. The probability of the occurrence of attack on a subsystem is represented using a random variable. A decentralized hybrid sampled-data strategy is introduced to save energy consumption and reduce the transmission load of the network. In the proposed decentralized strategy, each subsystem can decide independently whether its state should be transmitted to the controller or not. The scheme of the hybrid triggering mechanism for each subsystem composed of two stages: In the first stage, the next sampling instant is computed using a self-triggering strategy. Subsequently, in the second stage, an event-triggering condition is checked at these sampling instants and the control signal is computed only if the event-triggering condition is violated. The self-triggering condition used in the first stage is dependent on the selection of eventtriggering condition of the second stage. Finally, a comparison of the proposed approach with other triggering mechanisms existing in the literature is presented in terms of the sampling instants,transmission frequency and performance measures through simulation examples.

关键词： cyber-attack distributed networked control system event-triggered control hybrid aperiodic sampled-data control selftriggered control

Concept and Research Framework for Coordinated Situation Awareness and Active Defense of cyber-physical Power Systems Against cyber-attacks

维普期刊数据库

同方期刊数据库评论

在线全文

学校读者我要写书评

暂无评论

Journal of Modern Power Systems and Clean Energy 2021年第3期9卷 477-484页

作者： Ming Ni Manli Li Jun’e Li Yingjun Wu Qi Wang the NARI Group Corporation(State Grid Electric Power Research Institute) NARI Technology Co.Ltd.and the State Key Laboratory of Smart Grid Protection and ControlNanjing 211106China the School of cyber Science and Engineering Wuhan Universityand the Key Laboratory of Aerospace Information Security and Trusted Computing of the Ministry of EducationWuhan 430072China the College of Energy and Electrical Engineering Hohai UniversityNanjing 211100China the School of Electrical Engineering Southeast UniversityNanjing 210096China

Due to the tight coupling between the cyber and physical sides of a cyber-physical power system(CPPS),the safe and reliable operation of CPPSs is being increasingly impacted by cyber security.This situation poses a challenge to traditional security defense systems,which considers the threat from only one side,i.e.,cyber or physical.To cope with cyberattacks,this paper reaches beyond the traditional one-side security defense systems and proposes the concept of cyber-physical coordinated situation awareness and active defense to improve the ability of CPPSs.An example of a regional frequency control system is used to show the validness and potential of this concept.Then,the research framework is presented for studying and implementing this concept.Finally,key technologies for cyber-physical coordinated situation awareness and active defense against cyber-attacks are introduced.

关键词： cyber-physical power system(CPPS) cyber security cyber-attack situation awareness active defense

Modelling an Efficient URL Phishing Detection Approach Based on a Dense Network Model

维普期刊数据库

同方期刊数据库评论

在线全文

学校读者我要写书评

暂无评论

Computer Systems Science & Engineering 2023年第11期47卷 2625-2641页

作者： A.Aldo Tenis R.Santhosh Department of Computer Science and Engineering Faculty of EngineeringKarpagam Academy of Higher EducationCoimbatoreTamil NaduIndia

The social engineering cyber-attack is where culprits mislead the users by getting the login details which provides the information to the evil server called phishing.The deep learning approaches and the machine learning are compared in the proposed system for presenting the methodology that can detect phishing websites via Uniform Resource Locator(URLs)analysis.The legal class is composed of the home pages with no inclusion of login forms in most of the present modern solutions,which deals with the detection of phishing.Contrarily,the URLs in both classes from the login page due,considering the representation of a real case scenario and the demonstration for obtaining the rate of false-positive with the existing approaches during the legal login pages provides the test having URLs.In addition,some model reduces the accuracy rather than training the base model and testing the latest URLs.In addition,a feature analysis is performed on the present phishing domains to identify various approaches to using the phishers in the campaign.A new dataset called the MUPD dataset is used for evaluation.Lastly,a prediction model,the Dense forward-backwards Long Short Term Memory(LSTM)model(d−FBLSTM),is presented for combining the forward and backward propagation of LSMT to obtain the accuracy of 98.5%on the initiated login URL dataset.

关键词： cyber-attack URL phishing attack attention model prediction accuracy

A cyber Kill Chain Approach for Detecting Advanced Persistent Threats

在线全文

维普期刊数据库

学校读者我要写书评

暂无评论

Computers, Materials & Continua 2021年第5期67卷 2497-2513页

作者： Yussuf Ahmed A.Taufiq Asyhari Md Arafatur Rahman School of Computing and Digital Technology Birmingham City UniversityBirminghamUK Faculty of Computing IBM CoEERASUniversity Malaysia PahangPahangMalaysia

The number of cybersecurity incidents is on the rise despite significant investment in security measures.The existing conventional security approaches have demonstrated limited success against some of the more complex cyber-attacks.This is primarily due to the sophistication of the attacks and the availability of powerful tools.Interconnected devices such as the Internet of Things(IoT)are also increasing attack exposures due to the increase in vulnerabilities.Over the last few years,we have seen a trend moving towards embracing edge technologies to harness the power of IoT devices and 5G networks.Edge technology brings processing power closer to the network and brings many advantages,including reduced latency,while it can also introduce vulnerabilities that could be exploited.Smart cities are also dependent on technologies where everything is interconnected.This interconnectivity makes them highly vulnerable to cyber-attacks,especially by the Advanced Persistent Threat(APT),as these vulnerabilities are amplified by the need to integrate new technologies with legacy systems.cybercriminals behind APT attacks have recently been targeting the IoT ecosystems,prevalent in many of these cities.In this paper,we used a publicly available dataset on Advanced Persistent Threats(APT)and developed a data-driven approach for detecting APT stages using the cyber Kill Chain.APTs are highly sophisticated and targeted forms of attacks that can evade intrusion detection systems,resulting in one of the greatest current challenges facing security professionals.In this experiment,we used multiple machine learning classifiers,such as Naïve Bayes,Bayes Net,KNN,Random Forest and Support Vector Machine(SVM).We used Weka performance metrics to show the numeric results.The best performance result of 91.1%was obtained with the Naïve Bayes classifier.We hope our proposed solution will help security professionals to deal with APTs in a timely and effective manner.

关键词： Advanced persistent threat APT cyber Kill Chain data breach intrusion detection cyber-attack attack prediction data-driven security and machine learning

The Knowledge of cyber-Security Vulnerabilities in an Institution of Higher and University Education. A Case of ISP-Bukavu (Institut Supérieur Pédagogique de Bukavu) (TTC = Teachers’ Training College)

在线全文

维普期刊数据库

学校读者我要写书评

暂无评论

Journal of Computer and Communications 2023年第4期11卷 12-32页

作者： Dominique Wasso Kiseki Vincent Havyarimana Therence Niyonsaba Désiré Lumonge Zabagunda Walumbuka Ilundu Wail Thabo Semong Computer Engineering University of Burundi (UB) Bujumbura Burundi Ecole Normale Supérieure (ENS) Bujumbura Burundi University Research Laboratory in Modeling and Applied Statistical Engineering (LURMISTA) Nyamugerera Bujumbura Department of Physics and Technology ISP Bukavu Democratic Republic of Congo Department of Management Computer Science ISP Bukavu Democratic Republic of Congo Departement of Computer science and Information System Bostwana International University of Science and Technology Palapye Bostwana

This study pursues the objective of analyzing and verifying the knowledge of the agents of the Institut Supérieur Pédagogique/ISP-Bukavu (TTC = Teachers’ training College) in relation to the practical flaws resulting from the lack of knowledge of the observable rules in information system security. In a clearer way, it aims to verify the level of knowledge of the vulnerabilities, to verify the level of use of the antivirus software, to analyze the frequency of use of Windows update, the use of an anti-spyware software as well as a firewall software on the computer. Through a survey conducted on a sample of 100 agents of the Institut Supérieur Pédagogique/ISP-Bukavu (TTC = Teachers’ training College), the results revealed that 48% of the sample has no knowledge on computer vulnerabilities;for the use of antivirus software: 47% do not use the antivirus;for Windows update: 29% never update the Windows operating system;for anti-spyware: 48% never use;for the firewall: 50% are not informed. In fine, our results proposed a protection model VMAUSP (Vulnerability Measurability Measures Antivirus, Update, Spyware and Firewall) to users based on the behavioral approach, learning how the model works.

关键词： Threats Vulnerabilities cybersecurity Anti-Spyware Firewall cyber-attack Antivirus

Quantitative Evaluation of cyber-attacks on a Hypothetical School Computer Network

在线全文

维普期刊数据库

学校读者我要写书评

暂无评论

Journal of Information Security 2019年第3期10卷 103-116页

作者： Akinjide A. Akinola Adeyemi A. Adekoya Ayoade O. Kuye Abiodun Ayodeji University of Lagos Lagos Nigeria Virginia State University Petersburg VA USA University of Port Harcourt Port Harcourt Nigeria Nuclear Power Plant Development Directorate Nigeria Atomic Energy Commission Abuja Nigeria

This paper presents the attack tree modeling technique of quantifying cyber-attacks on a hypothetical school network system. attack trees are constructed by decomposing the path in the network system where attacks are plausible. Considered for the network system are two possible network attack paths. One network path represents an attack through the Internet, and the other represents an attack through the Wireless Access Points (WAPs) in the school network. The probabilities of success of the events, that is, 1) the attack payoff, and 2) the commitment of the attacker to infiltrate the network are estimated for the leaf nodes. These are used to calculate the Returns on attacks (ROAs) at the Root Nodes. For Phase I, the “As Is” network, the ROA values for both attack paths, are higher than 7 (8.00 and 9.35 respectively), which are high values and unacceptable operationally. In Phase II, countermeasures are implemented, and the two attack trees reevaluated. The probabilities of success of the events, the attack payoff and the commitment of the attacker are then re-estimated. Also, the Returns on attacks (ROAs) for the Root Nodes are re-assessed after executing the countermeasures. For one attack tree, the ROA value of the Root Node was reduced to 4.83 from 8.0, while, for the other attack tree, the ROA value of the Root Node changed to 3.30 from 9.35. ROA values of 4.83 and 3.30 are acceptable as they fall within the medium value range. The efficacy of this method whereby, attack trees are deployed to mitigate computer network risks, as well as using it to assess the vulnerability of computer networks is quantitatively substantiated.

关键词： cyber-attack Quantitative Vulnerability Assessment attack Trees Return on attack Countermeasures