subject:(Computer networks Security measures)

Nelson Mandela Metropolitan University

1. Naudé, Kevin Alexander. Assessing program code through static structural similarity.

Degree: MSc, Faculty of Science, 2007, Nelson Mandela Metropolitan University

► Learning to write software requires much practice and frequent assessment. Consequently, the use of computers to assist in the assessment of computer programs has been… (more)

▼ Learning to write software requires much practice and frequent assessment. Consequently, the use of computers to assist in the assessment of computer programs has been important in supporting large classes at universities. The main approaches to the problem are dynamic analysis (testing student programs for expected output) and static analysis (direct analysis of the program code). The former is very sensitive to all kinds of errors in student programs, while the latter has traditionally only been used to assess quality, and not correctness. This research focusses on the application of static analysis, particularly structural similarity, to marking student programs. Existing traditional measures of similarity are limiting in that they are usually only effective on tree structures. In this regard they do not easily support dependencies in program code. Contemporary measures of structural similarity, such as similarity flooding, usually rely on an internal normalisation of scores. The effect is that the scores only have relative meaning, and cannot be interpreted in isolation, ie. they are not meaningful for assessment. The SimRank measure is shown to have the same problem, but not because of normalisation. The problem with the SimRank measure arises from the fact that its scores depend on all possible mappings between the children of vertices being compared. The main contribution of this research is a novel graph similarity measure, the Weighted Assignment Similarity measure. It is related to SimRank, but derives propagation scores from only the locally optimal mapping between child vertices. The resulting similarity scores may be regarded as the percentage of mutual coverage between graphs. The measure is proven to converge for all directed acyclic graphs, and an efficient implementation is outlined for this case. Attributes on graph vertices and edges are often used to capture domain specific information which is not structural in nature. It has been suggested that these should influence the similarity propagation, but no clear method for doing this has been reported. The second important contribution of this research is a general method for incorporating these local attribute similarities into the larger similarity propagation method. An example of attributes in program graphs are identifier names. The choice of identifiers in programs is arbitrary as they are purely symbolic. A problem facing any comparison between programs is that they are unlikely to use the same set of identifiers. This problem indicates that a mapping between the identifier sets is required. The third contribution of this research is a method for applying the structural similarity measure in a two step process to find an optimal identifier mapping. This approach is both novel and valuable as it cleverly reuses the similarity measure as an existing resource. In general, programming assignments allow a large variety of solutions. Assessing student programs through structural similarity is only feasible if the diversity in the solution space can… Advisors/Committee Members: Greyling, Jean Prof, Vogts, Dieter.

Subjects/Keywords: Computer networks – Security measures; Internet – Security measures

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Naudé, K. A. (2007). Assessing program code through static structural similarity. (Masters Thesis). Nelson Mandela Metropolitan University. Retrieved from http://hdl.handle.net/10948/578

Chicago Manual of Style (16^th Edition):

Naudé, Kevin Alexander. “Assessing program code through static structural similarity.” 2007. Masters Thesis, Nelson Mandela Metropolitan University. Accessed July 20, 2019. http://hdl.handle.net/10948/578.

MLA Handbook (7^th Edition):

Naudé, Kevin Alexander. “Assessing program code through static structural similarity.” 2007. Web. 20 Jul 2019.

Vancouver:

Naudé KA. Assessing program code through static structural similarity. [Internet] [Masters thesis]. Nelson Mandela Metropolitan University; 2007. [cited 2019 Jul 20]. Available from: http://hdl.handle.net/10948/578.

Council of Science Editors:

Naudé KA. Assessing program code through static structural similarity. [Masters Thesis]. Nelson Mandela Metropolitan University; 2007. Available from: http://hdl.handle.net/10948/578

2. Fragkos, Grigorios. Near real-time threat assessment using intrusion detection system's data.

Degree: PhD, University of Glamorgan, 2012, University of South Wales

URL: http://hdl.handle.net/10265/569

► The concept of Intrusion Detection (ID) and the development of such systems have been a major concern for scientists since the late sixties. In recent… (more)

▼ The concept of Intrusion Detection (ID) and the development of such systems have been a major concern for scientists since the late sixties. In recent computer networks, the use of different types of Intrusion Detection Systems (IDS) is considered essential and in most cases mandatory. Major improvements have been achieved over the years and a large number of different approaches have been developed and applied in the way these systems perform Intrusion Detection. The purpose of the research is to introduce a novel approach that will enable us to take advantage of the vast amounts of information generated by the large number of different IDSs, in order to identify suspicious traffic, malicious intentions and network attacks in an automated manner. In order to achieve this, the research focuses upon a system capable of identifying malicious activity in near real-time, that is capable of identifying attacks while they are progressing. The thesis addresses the near real-time threat assessment by researching into current state of the art solutions. Based on the literature review, current Intrusion Detection technologies lean towards event correlation systems using different types of detections techniques. Instead of using linear event signatures or rule sets, the thesis suggests a structured description of network attacks based on the abstracted form of the attacker’s activity. For that reason, the design focuses upon the description of network attacks using the development of footprints. Despite the level of knowledge, capabilities and resources of the attacker, the system compares occurring network events against predefined footprints in order to identify potential malicious activity. Furthermore, based on the implementation of the footprints, the research also focuses upon the design of the Threat Assessment Engine (TAE) which is capable of performing detection in near real-time by the use of the above described footprints. The outcome of the research proves that it is possible to have an automated process performing threat assessment despite the number of different ongoing attacks taking place simultaneously. The threat assessment process, taking into consideration the system’s architecture, is capable of acting as the human analyst would do when investigating such network activity. This automation speeds up the time-consuming process of manually analysing and comparing data logs deriving from heterogeneous sources, as it performs the task in near real-time. Effectively, by performing the this task in near real-time, the proposed system is capable of detecting complicated malicious activity which in other cases, as currently performed, it would be difficult, maybe impossible or results would be generated too late.

Subjects/Keywords: Computer networks Security measures; 005.8

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Fragkos, G. (2012). Near real-time threat assessment using intrusion detection system's data. (Doctoral Dissertation). University of South Wales. Retrieved from http://hdl.handle.net/10265/569

Chicago Manual of Style (16^th Edition):

Fragkos, Grigorios. “Near real-time threat assessment using intrusion detection system's data.” 2012. Doctoral Dissertation, University of South Wales. Accessed July 20, 2019. http://hdl.handle.net/10265/569.

MLA Handbook (7^th Edition):

Fragkos, Grigorios. “Near real-time threat assessment using intrusion detection system's data.” 2012. Web. 20 Jul 2019.

Vancouver:

Fragkos G. Near real-time threat assessment using intrusion detection system's data. [Internet] [Doctoral dissertation]. University of South Wales; 2012. [cited 2019 Jul 20]. Available from: http://hdl.handle.net/10265/569.

Council of Science Editors:

Fragkos G. Near real-time threat assessment using intrusion detection system's data. [Doctoral Dissertation]. University of South Wales; 2012. Available from: http://hdl.handle.net/10265/569

University of North Carolina – Greensboro

3. Zou, Xiaocheng. Ant-based evidence distribution with periodic broadcast in attacked wireless network.

Degree: 2011, University of North Carolina – Greensboro

URL: http://libres.uncg.edu/ir/listing.aspx?styp=ti&id=7548

► In order to establish trust among nodes in large wireless networks, the trust certicates need to be distributed and be readily accessible. However, even so,… (more)

Subjects/Keywords: Computer networks – Security measures

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Zou, X. (2011). Ant-based evidence distribution with periodic broadcast in attacked wireless network. (Masters Thesis). University of North Carolina – Greensboro. Retrieved from http://libres.uncg.edu/ir/listing.aspx?styp=ti&id=7548

Chicago Manual of Style (16^th Edition):

Zou, Xiaocheng. “Ant-based evidence distribution with periodic broadcast in attacked wireless network.” 2011. Masters Thesis, University of North Carolina – Greensboro. Accessed July 20, 2019. http://libres.uncg.edu/ir/listing.aspx?styp=ti&id=7548.

MLA Handbook (7^th Edition):

Zou, Xiaocheng. “Ant-based evidence distribution with periodic broadcast in attacked wireless network.” 2011. Web. 20 Jul 2019.

Vancouver:

Zou X. Ant-based evidence distribution with periodic broadcast in attacked wireless network. [Internet] [Masters thesis]. University of North Carolina – Greensboro; 2011. [cited 2019 Jul 20]. Available from: http://libres.uncg.edu/ir/listing.aspx?styp=ti&id=7548.

Council of Science Editors:

Zou X. Ant-based evidence distribution with periodic broadcast in attacked wireless network. [Masters Thesis]. University of North Carolina – Greensboro; 2011. Available from: http://libres.uncg.edu/ir/listing.aspx?styp=ti&id=7548

4. Fragkos, Grigorios. Near real-time threat assessment using intrusion detection system's data.

Degree: PhD, 2011, University of South Wales

URL: https://pure.southwales.ac.uk/en/studentthesis/near-realtime-threat-assessment-using-intrusion-detection-systems-data(96a9528f-f319-4125-aaf0-71593bb61b56).html ; https://ethos.bl.uk/OrderDetails.do?uin=uk.bl.ethos.541659

► The concept of Intrusion Detection (ID) and the development of such systems have been a major concern for scientists since the late sixties. In recent… (more)

▼ The concept of Intrusion Detection (ID) and the development of such systems have been a major concern for scientists since the late sixties. In recent computer networks, the use of different types of Intrusion Detection Systems (IDS) is considered essential and in most cases mandatory. Major improvements have been achieved over the years and a large number of different approaches have been developed and applied in the way these systems perform Intrusion Detection. The purpose of the research is to introduce a novel approach that will enable us to take advantage of the vast amounts of information generated by the large number of different IDSs, in order to identify suspicious traffic, malicious intentions and network attacks in an automated manner. In order to achieve this, the research focuses upon a system capable of identifying malicious activity in near real-time, that is capable of identifying attacks while they are progressing. The thesis addresses the near real-time threat assessment by researching into current state of the art solutions. Based on the literature review, current Intrusion Detection technologies lean towards event correlation systems using different types of detections techniques. Instead of using linear event signatures or rule sets, the thesis suggests a structured description of network attacks based on the abstracted form of the attacker’s activity. For that reason, the design focuses upon the description of network attacks using the development of footprints. Despite the level of knowledge, capabilities and resources of the attacker, the system compares occurring network events against predefined footprints in order to identify potential malicious activity. Furthermore, based on the implementation of the footprints, the research also focuses upon the design of the Threat Assessment Engine (TAE) which is capable of performing detection in near real-time by the use of the above described footprints. The outcome of the research proves that it is possible to have an automated process performing threat assessment despite the number of different ongoing attacks taking place simultaneously. The threat assessment process, taking into consideration the system’s architecture, is capable of acting as the human analyst would do when investigating such network activity. This automation speeds up the time-consuming process of manually analysing and comparing data logs deriving from heterogeneous sources, as it performs the task in near real-time. Effectively, by performing the this task in near real-time, the proposed system is capable of detecting complicated malicious activity which in other cases, as currently performed, it would be difficult, maybe impossible or results would be generated too late.

Subjects/Keywords: 005.8; Computer networks Security measures

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Fragkos, G. (2011). Near real-time threat assessment using intrusion detection system's data. (Doctoral Dissertation). University of South Wales. Retrieved from https://pure.southwales.ac.uk/en/studentthesis/near-realtime-threat-assessment-using-intrusion-detection-systems-data(96a9528f-f319-4125-aaf0-71593bb61b56).html ; https://ethos.bl.uk/OrderDetails.do?uin=uk.bl.ethos.541659

Chicago Manual of Style (16^th Edition):

Fragkos, Grigorios. “Near real-time threat assessment using intrusion detection system's data.” 2011. Doctoral Dissertation, University of South Wales. Accessed July 20, 2019. https://pure.southwales.ac.uk/en/studentthesis/near-realtime-threat-assessment-using-intrusion-detection-systems-data(96a9528f-f319-4125-aaf0-71593bb61b56).html ; https://ethos.bl.uk/OrderDetails.do?uin=uk.bl.ethos.541659.

MLA Handbook (7^th Edition):

Fragkos, Grigorios. “Near real-time threat assessment using intrusion detection system's data.” 2011. Web. 20 Jul 2019.

Vancouver:

Fragkos G. Near real-time threat assessment using intrusion detection system's data. [Internet] [Doctoral dissertation]. University of South Wales; 2011. [cited 2019 Jul 20]. Available from: https://pure.southwales.ac.uk/en/studentthesis/near-realtime-threat-assessment-using-intrusion-detection-systems-data(96a9528f-f319-4125-aaf0-71593bb61b56).html ; https://ethos.bl.uk/OrderDetails.do?uin=uk.bl.ethos.541659.

Council of Science Editors:

Fragkos G. Near real-time threat assessment using intrusion detection system's data. [Doctoral Dissertation]. University of South Wales; 2011. Available from: https://pure.southwales.ac.uk/en/studentthesis/near-realtime-threat-assessment-using-intrusion-detection-systems-data(96a9528f-f319-4125-aaf0-71593bb61b56).html ; https://ethos.bl.uk/OrderDetails.do?uin=uk.bl.ethos.541659

Nelson Mandela Metropolitan University

5. Reid, Rayne. Guidelines for cybersecurity education campaigns.

Degree: 2017, Nelson Mandela Metropolitan University

URL: http://hdl.handle.net/10948/14091

► In our technology- and information-infused world, cyberspace is an integral part of modern-day society. As the number of active cyberspace users increases, so too does… (more)

▼ In our technology- and information-infused world, cyberspace is an integral part of modern-day society. As the number of active cyberspace users increases, so too does the chances of a cyber threat finding a vulnerable target increase. All cyber users who are exposed to cyber risks need to be educated about cyber security. Human beings play a key role in the implementation and governing of an entire cybersecurity and cybersafety solution. The effectiveness of any cybersecurity and cybersafety solutions in a societal or individual context is dependent on the human beings involved in the process. If these human beings are either unaware or not knowledgeable about their roles in the security solution they become the weak link in these cybersecurity solutions. It is essential that all users be educated to combat any threats. Children are a particularly vulnerable subgroup within society. They are digital natives and make use of ICT, and online services with increasing frequency, but this does not mean they are knowledgeable about or behaving securely in their cyber activities. Children will be exposed to cyberspace throughout their lifetimes. Therefore, cybersecurity and cybersafety should be taught to children as a life-skill. There is a lack of well-known, comprehensive cybersecurity and cybersafety educational campaigns which target school children. Most existing information security and cybersecurity education campaigns limit their scope. Literature reports mainly on education campaigns focused on primary businesses, government agencies and tertiary education institutions. Additionally, most guidance for the design and implementation of security and safety campaigns: are for an organisational context, only target organisational users, and mostly provide high-level design recommendations. This thesis addressed the lack of guidance for designing and implementing cybersecurity and cybersafety educational campaigns suited to school learners as a target audience. The thesis aimed to offer guidance for designing and implementing education campaigns that educate school learners about cybersecurity and cybersafety. This was done through the implementation of an action research process over a five-year period. The action research process involved cybersecurity and cybersafety educational interventions at multiple schools. A total of 18 actionable guidelines were derived from this research to guide the design and implementation of cybersecurity and cybersafety education campaigns which aim to educate school children.

Subjects/Keywords: Computer security; Computer networks – Security measures

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Reid, R. (2017). Guidelines for cybersecurity education campaigns. (Thesis). Nelson Mandela Metropolitan University. Retrieved from http://hdl.handle.net/10948/14091

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Chicago Manual of Style (16^th Edition):

Reid, Rayne. “Guidelines for cybersecurity education campaigns.” 2017. Thesis, Nelson Mandela Metropolitan University. Accessed July 20, 2019. http://hdl.handle.net/10948/14091.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

MLA Handbook (7^th Edition):

Reid, Rayne. “Guidelines for cybersecurity education campaigns.” 2017. Web. 20 Jul 2019.

Vancouver:

Reid R. Guidelines for cybersecurity education campaigns. [Internet] [Thesis]. Nelson Mandela Metropolitan University; 2017. [cited 2019 Jul 20]. Available from: http://hdl.handle.net/10948/14091.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Council of Science Editors:

Reid R. Guidelines for cybersecurity education campaigns. [Thesis]. Nelson Mandela Metropolitan University; 2017. Available from: http://hdl.handle.net/10948/14091

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Rhodes University

6. Mayisela, Simphiwe Hector. Data-centric security : towards a utopian model for protecting corporate data on mobile devices.

Degree: Faculty of Science, Computer Science, 2014, Rhodes University

URL: http://hdl.handle.net/10962/d1011094

► Data-centric security is significant in understanding, assessing and mitigating the various risks and impacts of sharing information outside corporate boundaries. Information generally leaves corporate boundaries… (more)

▼ Data-centric security is significant in understanding, assessing and mitigating the various risks and impacts of sharing information outside corporate boundaries. Information generally leaves corporate boundaries through mobile devices. Mobile devices continue to evolve as multi-functional tools for everyday life, surpassing their initial intended use. This added capability and increasingly extensive use of mobile devices does not come without a degree of risk - hence the need to guard and protect information as it exists beyond the corporate boundaries and throughout its lifecycle. Literature on existing models crafted to protect data, rather than infrastructure in which the data resides, is reviewed. Technologies that organisations have implemented to adopt the data-centric model are studied. A utopian model that takes into account the shortcomings of existing technologies and deficiencies of common theories is proposed. Two sets of qualitative studies are reported; the first is a preliminary online survey to assess the ubiquity of mobile devices and extent of technology adoption towards implementation of data-centric model; and the second comprises of a focus survey and expert interviews pertaining on technologies that organisations have implemented to adopt the data-centric model. The latter study revealed insufficient data at the time of writing for the results to be statistically significant; however; indicative trends supported the assertions documented in the literature review. The question that this research answers is whether or not current technology implementations designed to mitigate risks from mobile devices, actually address business requirements. This research question, answered through these two sets qualitative studies, discovered inconsistencies between the technology implementations and business requirements. The thesis concludes by proposing a realistic model, based on the outcome of the qualitative study, which bridges the gap between the technology implementations and business requirements. Future work which could perhaps be conducted in light of the findings and the comments from this research is also considered.

Subjects/Keywords: Computer security; Computer networks – Security measures; Business enterprises – Computer networks – Security measures; Mobile computing – Security measures; Mobile communication systems – Security measures

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Mayisela, S. H. (2014). Data-centric security : towards a utopian model for protecting corporate data on mobile devices. (Thesis). Rhodes University. Retrieved from http://hdl.handle.net/10962/d1011094

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Chicago Manual of Style (16^th Edition):

Mayisela, Simphiwe Hector. “Data-centric security : towards a utopian model for protecting corporate data on mobile devices.” 2014. Thesis, Rhodes University. Accessed July 20, 2019. http://hdl.handle.net/10962/d1011094.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

MLA Handbook (7^th Edition):

Mayisela, Simphiwe Hector. “Data-centric security : towards a utopian model for protecting corporate data on mobile devices.” 2014. Web. 20 Jul 2019.

Vancouver:

Mayisela SH. Data-centric security : towards a utopian model for protecting corporate data on mobile devices. [Internet] [Thesis]. Rhodes University; 2014. [cited 2019 Jul 20]. Available from: http://hdl.handle.net/10962/d1011094.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Council of Science Editors:

Mayisela SH. Data-centric security : towards a utopian model for protecting corporate data on mobile devices. [Thesis]. Rhodes University; 2014. Available from: http://hdl.handle.net/10962/d1011094

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

University of Hong Kong

7. Yeung, Cheuk-yu. Towards secure, privacy-preserving, and trusted analytic about ad hoc network data.

Degree: PhD, 2017, University of Hong Kong

URL: http://hdl.handle.net/10722/250759

►

The boom of Big Data and Internet of Things (IoT) trends induces lots of hot topics including data security, users privacy, devices connectivity and usage… (more)

▼

The boom of Big Data and Internet of Things (IoT) trends induces lots of hot topics including data security, users privacy, devices connectivity and usage of analytic. We put our focus on security and privacy of ad hoc network data. Ad hoc network can be applied in many different domains, especially vehicular network. Nowadays, even though the hardware capability of ad hoc network is ready, the design of systems are not mature enough when compared to traditional wired network. This creates the uncertainty of whether additional problems may arise in the security, privacy and trust in ad hoc network. In this thesis, the diversified cases of the ad hoc network are summarized to a general ad hoc data analytic framework. We apply this framework to the vehicular network domain. Three major problems are defined: 1) Attacks on batch verifications, 2) Single Point of Failure (SPOF) problem and 3) Anonymous Counting Problem from Vehicular ad hoc network (VANET). We provide novel attacks and solutions for these problems. This study makes the design of ad hoc network data analysis systems move towards to the directions of secure, privacy-preserving and trusted analytic. Fine-grained data are becoming more reliable in the analysis, and it gives higher chance to produce accurate and meaningful analysis results. The proposed solution for 1) False acceptance on batch verifications allows an adversary to pass verifications on pseudo identities and signatures. We show that the attacks are valid for some previous work. We propose a solution with randomized property to ensure the authenticity of the vehicular messages as well as protecting the privacy of drivers. Our proposed solution is secure and the additional overhead is small. The proposed solution for 2) SPOF problem allows vehicles to broadcast vehicular data to adjacent vehicles as another backup. No specific node becomes the only connecting point of the system. This scheme enables trusted authority to reveal those data from recipients. We ensure the integrity and confidentiality of vehicular messages as well as the privacy of drivers. We show that our scheme is secure and the performance is feasible through probability analysis and network simulation. We also propose collision avoidance system as an example. The proposed solution for 3) Anonymous Counting problem achieves conditional anonymity to avoid over-counting and applies flexible time-slotted pseudo identities to minimize the influence of the adversary. The major technical difficulty of designing this scheme is to avoid using any same hash identity digest to achieve high privacy standard but still allow counting at the same time. We explain how our design, which adopts the suggested trust level calculation methods in other publications, achieves a more meaningful trust level calculation. We also explain how to set the time slot and threshold by trust level performance simulation.

published_or_final_version

Computer Science

Doctoral

Doctor of Philosophy

Advisors/Committee Members: Hui, CK.

Subjects/Keywords: Security measures - Ad hoc networks (Computer networks)

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Yeung, C. (2017). Towards secure, privacy-preserving, and trusted analytic about ad hoc network data. (Doctoral Dissertation). University of Hong Kong. Retrieved from http://hdl.handle.net/10722/250759

Chicago Manual of Style (16^th Edition):

Yeung, Cheuk-yu. “Towards secure, privacy-preserving, and trusted analytic about ad hoc network data.” 2017. Doctoral Dissertation, University of Hong Kong. Accessed July 20, 2019. http://hdl.handle.net/10722/250759.

MLA Handbook (7^th Edition):

Yeung, Cheuk-yu. “Towards secure, privacy-preserving, and trusted analytic about ad hoc network data.” 2017. Web. 20 Jul 2019.

Vancouver:

Yeung C. Towards secure, privacy-preserving, and trusted analytic about ad hoc network data. [Internet] [Doctoral dissertation]. University of Hong Kong; 2017. [cited 2019 Jul 20]. Available from: http://hdl.handle.net/10722/250759.

Council of Science Editors:

Yeung C. Towards secure, privacy-preserving, and trusted analytic about ad hoc network data. [Doctoral Dissertation]. University of Hong Kong; 2017. Available from: http://hdl.handle.net/10722/250759

Hong Kong University of Science and Technology

8. Guo, Ziyang ECE. Cyber-physical systems security : a control-theoretic approach.

Degree: 2018, Hong Kong University of Science and Technology

URL: https://doi.org/10.14711/thesis-991012637167503412 ; http://repository.ust.hk/ir/bitstream/1783.1-96011/1/th_redirect.html

► This thesis investigates security issues for remote state estimation in the context of cyber-physical systems. Different problems are studied from the perspective of either a… (more)

▼ This thesis investigates security issues for remote state estimation in the context of cyber-physical systems. Different problems are studied from the perspective of either a malicious attacker or a system designer. In the problem from the attacker's perspective, a sensor monitors a dynamic process and transmits its measurement to a remote estimator through a wireless network where a malicious attacker may intercept and modify the transmitted data. A false-data detector is adopted to monitor system behaviors and check data anomalies. We propose an innovation-based integrity attack and present the feasibility constraint which guarantees the attack stealthiness. Under the proposed attack, the recursion of the remote estimation error covariance is derived. A closed-form expression of the optimal attack strategy that maximizes the remote estimation error covariance is obtained. The problem is then generalized from the following two aspects. On the one hand, we consider an ∈-stealthy innovation-based integrity attack, where the Kullback-Leibler divergence is used as a stealthiness metric. Based on the evolution of remote estimation error covariance, a two-stage optimization problem is formulated to investigate the optimal attack strategy. We first prove that the optimal attack is Gaussian distributed and provide a closed-form expression of the corresponding covariance matrix. Then, the optimal attack is obtained by semi-definite programming. On the other hand, we consider an innovation-based integrity attack under different information sets. It is assumed that the attacker is not only able to compromise the transmitted data but also able to measure the system state itself. The attack strategy thus can be designed based on the intercepted data, the sensing data, or alternatively the combined information. For each attack scenario, we analyze the remote estimation performance and obtain the optimal attack strategy. For scalar systems, we further derive the closed-form expressions of the optimal attacks and compare the attack consequences between different information sets. The secure state estimation problem from the system's perspective is studied in a multi-sensor system. Suppose there are N sensors measuring the same dynamic process and a subset of the sensors can potentially be compromised by an attacker. To locate the compromised sensors and obtain a robust state estimate, we propose a Gaussian-mixture-model-based detection algorithm. It is able to cluster the local state estimate autonomously and provide a belief for each sensor, based on which measurements from different sensors can be fused accordingly. The performance of the proposed detection algorithm is evaluated by the remote estimation performance and the average belief. The applications of the proposed detection algorithm to other attack scenarios are also discussed.

Subjects/Keywords: Computer networks; Security measures; Wireless sensor networks

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Guo, Z. E. (2018). Cyber-physical systems security : a control-theoretic approach. (Thesis). Hong Kong University of Science and Technology. Retrieved from https://doi.org/10.14711/thesis-991012637167503412 ; http://repository.ust.hk/ir/bitstream/1783.1-96011/1/th_redirect.html

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Chicago Manual of Style (16^th Edition):

Guo, Ziyang ECE. “Cyber-physical systems security : a control-theoretic approach.” 2018. Thesis, Hong Kong University of Science and Technology. Accessed July 20, 2019. https://doi.org/10.14711/thesis-991012637167503412 ; http://repository.ust.hk/ir/bitstream/1783.1-96011/1/th_redirect.html.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

MLA Handbook (7^th Edition):

Guo, Ziyang ECE. “Cyber-physical systems security : a control-theoretic approach.” 2018. Web. 20 Jul 2019.

Vancouver:

Guo ZE. Cyber-physical systems security : a control-theoretic approach. [Internet] [Thesis]. Hong Kong University of Science and Technology; 2018. [cited 2019 Jul 20]. Available from: https://doi.org/10.14711/thesis-991012637167503412 ; http://repository.ust.hk/ir/bitstream/1783.1-96011/1/th_redirect.html.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Council of Science Editors:

Guo ZE. Cyber-physical systems security : a control-theoretic approach. [Thesis]. Hong Kong University of Science and Technology; 2018. Available from: https://doi.org/10.14711/thesis-991012637167503412 ; http://repository.ust.hk/ir/bitstream/1783.1-96011/1/th_redirect.html

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Nelson Mandela Metropolitan University

9. Frauenstein, Edwin Donald. A framework to mitigate phishing threats.

Degree: Faculty of Engineering, the Built Environment and Information Technology, 2013, Nelson Mandela Metropolitan University

URL: http://hdl.handle.net/10948/d1021208

► We live today in the information age with users being able to access and share information freely by using both personal computers and their handheld… (more)

Subjects/Keywords: Computer networks – Security measures; Mobile computing – Security measures; Online social networks – Security measures

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Frauenstein, E. D. (2013). A framework to mitigate phishing threats. (Thesis). Nelson Mandela Metropolitan University. Retrieved from http://hdl.handle.net/10948/d1021208

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Chicago Manual of Style (16^th Edition):

Frauenstein, Edwin Donald. “A framework to mitigate phishing threats.” 2013. Thesis, Nelson Mandela Metropolitan University. Accessed July 20, 2019. http://hdl.handle.net/10948/d1021208.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

MLA Handbook (7^th Edition):

Frauenstein, Edwin Donald. “A framework to mitigate phishing threats.” 2013. Web. 20 Jul 2019.

Vancouver:

Frauenstein ED. A framework to mitigate phishing threats. [Internet] [Thesis]. Nelson Mandela Metropolitan University; 2013. [cited 2019 Jul 20]. Available from: http://hdl.handle.net/10948/d1021208.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Council of Science Editors:

Frauenstein ED. A framework to mitigate phishing threats. [Thesis]. Nelson Mandela Metropolitan University; 2013. Available from: http://hdl.handle.net/10948/d1021208

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

10. Joshuva, Justin. Identifying users on social networking using pattern recognition in messages.

Degree: 2017, University of Tennessee – Chattanooga

URL: https://scholar.utc.edu/theses/539

► Online social networks, such as Facebook and Twitter, have become a huge part of many people's lives, often as their main means of communication with… (more)

Subjects/Keywords: Online social networks – Security measures; Computer networks – Security measures

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Joshuva, J. (2017). Identifying users on social networking using pattern recognition in messages. (Masters Thesis). University of Tennessee – Chattanooga. Retrieved from https://scholar.utc.edu/theses/539

Chicago Manual of Style (16^th Edition):

Joshuva, Justin. “Identifying users on social networking using pattern recognition in messages.” 2017. Masters Thesis, University of Tennessee – Chattanooga. Accessed July 20, 2019. https://scholar.utc.edu/theses/539.

MLA Handbook (7^th Edition):

Joshuva, Justin. “Identifying users on social networking using pattern recognition in messages.” 2017. Web. 20 Jul 2019.

Vancouver:

Joshuva J. Identifying users on social networking using pattern recognition in messages. [Internet] [Masters thesis]. University of Tennessee – Chattanooga; 2017. [cited 2019 Jul 20]. Available from: https://scholar.utc.edu/theses/539.

Council of Science Editors:

Joshuva J. Identifying users on social networking using pattern recognition in messages. [Masters Thesis]. University of Tennessee – Chattanooga; 2017. Available from: https://scholar.utc.edu/theses/539

University of Johannesburg

11. Van Buuren, Suzi. Information security in a distributed banking environment, with specific reference to security protocols.

Degree: 2012, University of Johannesburg

URL: http://hdl.handle.net/10210/6484

►

M.Comm.

The principal aim of the present dissertation is to determine the nature of an electronicbanking environment, to determine the threats within such an environment… (more)

Subjects/Keywords: Banks and banking - Security measures; Intranets (Computer networks) - Security measures; Internet - Security measures; Computer networks - Security measures

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Van Buuren, S. (2012). Information security in a distributed banking environment, with specific reference to security protocols. (Thesis). University of Johannesburg. Retrieved from http://hdl.handle.net/10210/6484

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Chicago Manual of Style (16^th Edition):

Van Buuren, Suzi. “Information security in a distributed banking environment, with specific reference to security protocols.” 2012. Thesis, University of Johannesburg. Accessed July 20, 2019. http://hdl.handle.net/10210/6484.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

MLA Handbook (7^th Edition):

Van Buuren, Suzi. “Information security in a distributed banking environment, with specific reference to security protocols.” 2012. Web. 20 Jul 2019.

Vancouver:

Van Buuren S. Information security in a distributed banking environment, with specific reference to security protocols. [Internet] [Thesis]. University of Johannesburg; 2012. [cited 2019 Jul 20]. Available from: http://hdl.handle.net/10210/6484.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Council of Science Editors:

Van Buuren S. Information security in a distributed banking environment, with specific reference to security protocols. [Thesis]. University of Johannesburg; 2012. Available from: http://hdl.handle.net/10210/6484

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Nelson Mandela Metropolitan University

12. Coertze, Jacques Jacobus. A framework for information security governance in SMMEs.

Degree: Faculty of Engineering, the Built Environment and Information Technology, 2012, Nelson Mandela Metropolitan University

URL: http://hdl.handle.net/10948/d1014083

► It has been found that many small, medium and micro-sized enterprises (SMMEs) do not comply with sound information security governance principles, specifically the principles involved… (more)

Subjects/Keywords: Business – Data processing – Security measures; Management information systems – Security measures; Computer networks – Security measures

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Coertze, J. J. (2012). A framework for information security governance in SMMEs. (Thesis). Nelson Mandela Metropolitan University. Retrieved from http://hdl.handle.net/10948/d1014083

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Chicago Manual of Style (16^th Edition):

Coertze, Jacques Jacobus. “A framework for information security governance in SMMEs.” 2012. Thesis, Nelson Mandela Metropolitan University. Accessed July 20, 2019. http://hdl.handle.net/10948/d1014083.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

MLA Handbook (7^th Edition):

Coertze, Jacques Jacobus. “A framework for information security governance in SMMEs.” 2012. Web. 20 Jul 2019.

Vancouver:

Coertze JJ. A framework for information security governance in SMMEs. [Internet] [Thesis]. Nelson Mandela Metropolitan University; 2012. [cited 2019 Jul 20]. Available from: http://hdl.handle.net/10948/d1014083.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Council of Science Editors:

Coertze JJ. A framework for information security governance in SMMEs. [Thesis]. Nelson Mandela Metropolitan University; 2012. Available from: http://hdl.handle.net/10948/d1014083

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

University of Johannesburg

13. Diakite, Soumaila Dit Moule. WISP: a wireless information security portal.

Degree: 2010, University of Johannesburg

URL: http://hdl.handle.net/10210/3060

►

M.Sc.

Wireless networking is a fairly new technology that is important in information technology (IT). Hotels, Airports, Coffee shops, and homes are all installing wireless… (more)

▼

M.Sc.

Wireless networking is a fairly new technology that is important in information technology (IT). Hotels, Airports, Coffee shops, and homes are all installing wireless networks at a record pace, making wireless networks the best choice for consumers. This popularity of wireless networks is because of the affordability of wireless networks devices, and the easy installation [11]. In spite of the popularity of the wireless networks, one factor that has prevented them from being even more widespread can be summed up in a single word: security. It comes as no surprise that these two – wireless and security – converge to create one of the most important topics in the IT industry today [11]. Wireless networks by nature bring about new challenges unique to its environment. One example of these new challenges is: “Signal overflow beyond physical walls”, and with these kinds of new challenges unique to wireless networks, we have new security risks. Hence wireless networks lend themselves to a host of attack possibilities and risks. That is because wireless networks provide a convenient network access point for an attacker, potentially beyond the physical security controls of the organization [7]. Therefore it is challenging for managers to introduce wireless networks and properly manage the security of wireless networks, Security problems of wireless networks are the main reason for wireless networks not being rolled out optimally [1]. In this dissertation, we aim to present to both specialist and non–specialists in the IT industry the information needed to protect a wireless network. We will first identify and discuss the different security requirements of wireless networks. After that we shall examine the technology that helps make wireless networks secure, and describe the type of attacks against wireless networks and defense techniques to secure wireless networks. The research will concentrate on wireless LANs (Local Area Networks), and leading wireless LAN protocols and standards. The result of the research will be used to create WISP (A Wireless Information Security Portal). WISP will be a tool to support the management of a secure wireless network, and help assure the confidentiality, integrity, and availability of the information systems in a wireless network environment.

Subjects/Keywords: Wireless communication systems security measures; Wireless LANs security measures; Computer networks security measures

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Diakite, S. D. M. (2010). WISP: a wireless information security portal. (Thesis). University of Johannesburg. Retrieved from http://hdl.handle.net/10210/3060

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Chicago Manual of Style (16^th Edition):

Diakite, Soumaila Dit Moule. “WISP: a wireless information security portal.” 2010. Thesis, University of Johannesburg. Accessed July 20, 2019. http://hdl.handle.net/10210/3060.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

MLA Handbook (7^th Edition):

Diakite, Soumaila Dit Moule. “WISP: a wireless information security portal.” 2010. Web. 20 Jul 2019.

Vancouver:

Diakite SDM. WISP: a wireless information security portal. [Internet] [Thesis]. University of Johannesburg; 2010. [cited 2019 Jul 20]. Available from: http://hdl.handle.net/10210/3060.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Council of Science Editors:

Diakite SDM. WISP: a wireless information security portal. [Thesis]. University of Johannesburg; 2010. Available from: http://hdl.handle.net/10210/3060

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

University of Johannesburg

14. Van der Merwe, Jacobus. Information security using intelligent software agents.

Degree: PhD, 2012, University of Johannesburg

URL: http://hdl.handle.net/10210/6231

► Many organisations are starting to make large parts of their information resources publicly accessible. For example, many organisations publish information using the Internet. Some organisations… (more)

▼ Many organisations are starting to make large parts of their information resources publicly accessible. For example, many organisations publish information using the Internet. Some organisations allow non-employees to connect to their systems and retrieve information - many banks allow customers to retrieve account statements via the Internet. There is a trend towards more open information systems and more distributed processing such as client/server processing. The above are just some of the trends in computer information processing that creates new and complex problems in providing information systems that are both secure and manageable. To add to the complexity of the information security problem, organisations use the Internet to conduct some of their business and use many different applications, each with its own unique access control mechanisms. Central management of information security in a heterogeneous and distributed environments, such as the Internet has become a nightmare. There is a need for an information security model that will allow organisations to make use of the new trends in information processing, but still have confidence that they have adequate security and that the management of their information security systems is fairly easy. In this thesis we propose a model that satisfies the above requirements. We call this model the Intelligent Security Agent Model (ISAM). The ISAM model is based on two technologies: intelligent software agents and distributed objects. The main component of the model is Intelligent Security Agents that act as security brokers for its users in a distributed environment. In chapter 2 of the thesis, we design an Intelligent Security Agent which provides various information security services in open client/server environments. The Intelligent Security Agent Model addresses certain problems/requirements, such as single sign-on, in information security. These problems and possible solutions are described in chapter 4 to chapter 10 of this thesis. An Intelligent Security Agent must be protected from unauthorised modification, theft, etc. Chapter 3 shows how an Intelligent Security Agent is secured by implementing it as a distributed object. We show that the combination of intelligent software agents and distributed objects creates an agent that was not possible before, and solves many information security problems.In short, this thesis documents the results of a study in computer information security. The result of the study is a new information security model in which intelligent software agents and distributed objects are combined to create a security agent which acts on behalf of a user in open environments such as client/server systems and the Internet. The agent provides a set of services to its user and handles all information security related requests on behalf of its user.

Subjects/Keywords: Computer security; Computer networks - Security measures; Internet - Security measures; Intelligent agents (Computer software)

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Van der Merwe, J. (2012). Information security using intelligent software agents. (Doctoral Dissertation). University of Johannesburg. Retrieved from http://hdl.handle.net/10210/6231

Chicago Manual of Style (16^th Edition):

Van der Merwe, Jacobus. “Information security using intelligent software agents.” 2012. Doctoral Dissertation, University of Johannesburg. Accessed July 20, 2019. http://hdl.handle.net/10210/6231.

MLA Handbook (7^th Edition):

Van der Merwe, Jacobus. “Information security using intelligent software agents.” 2012. Web. 20 Jul 2019.

Vancouver:

Van der Merwe J. Information security using intelligent software agents. [Internet] [Doctoral dissertation]. University of Johannesburg; 2012. [cited 2019 Jul 20]. Available from: http://hdl.handle.net/10210/6231.

Council of Science Editors:

Van der Merwe J. Information security using intelligent software agents. [Doctoral Dissertation]. University of Johannesburg; 2012. Available from: http://hdl.handle.net/10210/6231

Drexel University

15. Huang, Tingshan. Adaptive Sampling and Statistical Inference for Anomaly Detection.

Degree: 2015, Drexel University

URL: http://hdl.handle.net/1860/idea:6647

► Given the rising threat of malware and the increasing inadequacy of signature-based solutions, online performance monitoring has emerged as a critical component of the security… (more)

▼ Given the rising threat of malware and the increasing inadequacy of signature-based solutions, online performance monitoring has emerged as a critical component of the security infrastructure of data centers and networked systems. Most of the systems that require monitoring are usually large-scale, highly dynamic and time-evolving. These facts add to the complexity of both monitoring and the underlying techniques for anomaly detection. Furthermore, one cannot ignore the costs associated with monitoring and detection which can interfere with the normal operation of a system and deplete the supply of resources available for the system. Therefore, securing modern systems calls for efficient monitoring strategies and anomaly detection techniques that can deal with massive data with high efficiency and report unusual events effectively. This dissertation contributes new algorithms and implementation strategies toward a significant improvement in the effectiveness and efficiency of two components of security infrastructure: (1) system monitoring and (2) anomaly detection. For system monitoring purposes, we develop two techniques which reduce the cost associated with information collection: i) a non-sampling technique and ii) a sampling technique. The non-sampling technique is based on compression and employs the best basis algorithm to automatically select the basis for compressing the data according to the structure of the data. The sampling technique improves upon compressive sampling, a recent signal processing technique for acquiring data at low cost. This enhances the technique of compressive sampling by employing it in an adaptive-rate model wherein the sampling rate for compressive sampling is adaptively tuned to the data being sampled. Our simulation results on measurements collected from a data center show that these two data collection techniques achieve small information loss with reduced monitoring cost. The best basis algorithm can select the basis in which the data is most concisely represented, allowing a reduced sample size for monitoring. The adaptive-rate model for compressive sampling allows us to save 70% in sample size, compared with the constant-rate model. For anomaly detection, this dissertation develops three techniques to allow efficient detection of anomalies. In the first technique, we exploit the properties maintained in the samples of compressive sampling and apply state-of-the-art anomaly detection techniques directly to compressed measurements. Simulation results show that the detection rate of abrupt changes using the compressed measurements is greater than 95% when the size of the measurements is only 18%. In our second approach, we characterize performance-related measurements as a stream of covariance matrices, one for each designated window of time, and then propose a new metric to quantify changes in the covariance matrices. The observed changes are then employed to infer anomalies in the system. In our third approach, anomalies in a system are detected using a low-complexity… Advisors/Committee Members: Kandasamy, Nagarajan, Sethu, Harish.

Subjects/Keywords: Electrical engineering; Cyberinfrastructure – Security measures; Computer networks – Security measures; Data protection

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Huang, T. (2015). Adaptive Sampling and Statistical Inference for Anomaly Detection. (Thesis). Drexel University. Retrieved from http://hdl.handle.net/1860/idea:6647

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Chicago Manual of Style (16^th Edition):

Huang, Tingshan. “Adaptive Sampling and Statistical Inference for Anomaly Detection.” 2015. Thesis, Drexel University. Accessed July 20, 2019. http://hdl.handle.net/1860/idea:6647.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

MLA Handbook (7^th Edition):

Huang, Tingshan. “Adaptive Sampling and Statistical Inference for Anomaly Detection.” 2015. Web. 20 Jul 2019.

Vancouver:

Huang T. Adaptive Sampling and Statistical Inference for Anomaly Detection. [Internet] [Thesis]. Drexel University; 2015. [cited 2019 Jul 20]. Available from: http://hdl.handle.net/1860/idea:6647.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Council of Science Editors:

Huang T. Adaptive Sampling and Statistical Inference for Anomaly Detection. [Thesis]. Drexel University; 2015. Available from: http://hdl.handle.net/1860/idea:6647

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Rutgers University

16. Guo, Qi, 1970-. A formal approach to the role mining problem.

Degree: PhD, Management, 2010, Rutgers University

URL: http://hdl.rutgers.edu/1782.1/rucore10002600001.ETD.000056099

►

Role-based access control (RBAC) has become the norm for enforcing security since it has been successfully implemented in various commercial systems. Roles, which are nothing… (more)

▼

Role-based access control (RBAC) has become the norm for enforcing security since it has been successfully implemented in various commercial systems. Roles, which are nothing but sets of permissions when semantics are unavailable, represent organizational agents that perform certain job functions within the organization. Role engineering, the process of defining a set of roles and associate permissions to them, is essential before all the benefits of RBAC can be realized. There are two basic approaches towards role engineering: top-down and bottom-up. The key problem with the top-down approach is that it is likely to ignore the existing permissions. In addition, the top-down approach calls for a good understanding among various authorities from different disciplines, which makes role engineering tedious, time consuming and very difficult to implement. In contrast, the bottom-up approach automates the role engineering process especially when business semantics are not available. Also, it starts from the existing permissions and aggregates them into roles. Therefore, role engineering by the bottom-up approach is also referred to as role mining. A number of approaches exist for role mining and majority of them employ clustering techniques or their variants to discover roles. An inherent problem with these approaches is that there is no formal notion of goodness/ interestingness of a role. They present heuristic ways to find a set of candidate roles. While offering justifications for the identified roles, there is no integrative view of the entire set of roles. For insightful bottom-up analysis, we need to define interestingness metrics for roles. The objective of this dissertation research is to formally define a list of role mining problems and find the solutions to solve them.

Advisors/Committee Members: Guo, Qi, 1970- (author), Atluri, Vijay (chair), Adam, Nabil (internal member), Jaideep Vaidya, Jaideep (internal member), Ahn, Gail-Joon (outside member).

Subjects/Keywords: Computer networks – Security measures; Information technology – Security measures

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Guo, Qi, 1. (2010). A formal approach to the role mining problem. (Doctoral Dissertation). Rutgers University. Retrieved from http://hdl.rutgers.edu/1782.1/rucore10002600001.ETD.000056099

Chicago Manual of Style (16^th Edition):

Guo, Qi, 1970-. “A formal approach to the role mining problem.” 2010. Doctoral Dissertation, Rutgers University. Accessed July 20, 2019. http://hdl.rutgers.edu/1782.1/rucore10002600001.ETD.000056099.

MLA Handbook (7^th Edition):

Guo, Qi, 1970-. “A formal approach to the role mining problem.” 2010. Web. 20 Jul 2019.

Vancouver:

Guo, Qi 1. A formal approach to the role mining problem. [Internet] [Doctoral dissertation]. Rutgers University; 2010. [cited 2019 Jul 20]. Available from: http://hdl.rutgers.edu/1782.1/rucore10002600001.ETD.000056099.

Council of Science Editors:

Guo, Qi 1. A formal approach to the role mining problem. [Doctoral Dissertation]. Rutgers University; 2010. Available from: http://hdl.rutgers.edu/1782.1/rucore10002600001.ETD.000056099

University of Johannesburg

17. Venter, Hein S. Real-time risk analysis : a modern perspective on network security with a prototype.

Degree: 2012, University of Johannesburg

URL: http://hdl.handle.net/10210/5995

►

M.Sc.

The present study was undertaken in a bid within the realm of the existing Internet working environment to meet the need for a more… (more)

▼

M.Sc.

The present study was undertaken in a bid within the realm of the existing Internet working environment to meet the need for a more secure network-security process in terms of which possible risks to be incurred by Internet users could be identified and controlled by means of the appropriate countermeasures in real time. On launching the study, however, no such formal risk-analysis model has yet been developed specifically to effect risk analysis in real time. This, then, gave rise to the development of a prototype specifically aimed at the identification of risks that could pose a threat to Internet users' private data — the so-called "Real-time Risk Analysis" (RtRA) prototype. In so doing, the principal aim of the study, namely to implement the RtRA prototype, was realised. Following, an overview of the research method employed to realise the objectives of the study. Firstly, background information on and the preamble to the issues and problems to be addressed were provided, as well as a well-founded motivation for the study. The latter included theoretical studies on current network security and Transmission Control Protocol/Internet Protocol (TCP/IP). Secondly, the study of existing TCP/IP packet-intercepting tools available on the Internet brought deeper insight into how TCP/IP packets are to be intercepted and handled. In the third instance, the most recent development in network security — firewalls — came under discussion. The latter technology represents a "super-developed" TCP/IP packet-intercepting tool that implements the best known security measures. In addition, the entire study was based on firewall technology and the model that was developed related directly to firewalls. Fourthly, a prototype, consisting of three main modules, was implemented in a bid to prove that RtRA is indeed tenable and practicable. In so doing, the second module of the prototype, namely the real-time risk-identification and countermeasure-execution module, was given special emphasis. The modus operandi of the said prototype was then illustrated by means of a case study undertaken in a simulated Internet working environment. The study culminated in a summation of the results of and the conclusions reached on the strength of the research. Further problem areas, which could become the focal points of future research projects, were also touched upon.

Subjects/Keywords: Internet - Security measures.; Computer networks - Security measures.; Risk assessment - Data processing.

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Venter, H. S. (2012). Real-time risk analysis : a modern perspective on network security with a prototype. (Thesis). University of Johannesburg. Retrieved from http://hdl.handle.net/10210/5995

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Chicago Manual of Style (16^th Edition):

Venter, Hein S. “Real-time risk analysis : a modern perspective on network security with a prototype.” 2012. Thesis, University of Johannesburg. Accessed July 20, 2019. http://hdl.handle.net/10210/5995.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

MLA Handbook (7^th Edition):

Venter, Hein S. “Real-time risk analysis : a modern perspective on network security with a prototype.” 2012. Web. 20 Jul 2019.

Vancouver:

Venter HS. Real-time risk analysis : a modern perspective on network security with a prototype. [Internet] [Thesis]. University of Johannesburg; 2012. [cited 2019 Jul 20]. Available from: http://hdl.handle.net/10210/5995.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Council of Science Editors:

Venter HS. Real-time risk analysis : a modern perspective on network security with a prototype. [Thesis]. University of Johannesburg; 2012. Available from: http://hdl.handle.net/10210/5995

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Nelson Mandela Metropolitan University

18. Deas, Matthew Burns. Towards a user centric model for identity and access management within the online environment.

Degree: Faculty of Engineering, the Built Environment and Information Technology, 2008, Nelson Mandela Metropolitan University

URL: http://hdl.handle.net/10948/775

► Today, one is expected to remember multiple user names and passwords for different domains when one wants to access on the Internet. Identity management seeks… (more)

Subjects/Keywords: Computers – Access control; Computer networks – Security measures

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Deas, M. B. (2008). Towards a user centric model for identity and access management within the online environment. (Thesis). Nelson Mandela Metropolitan University. Retrieved from http://hdl.handle.net/10948/775

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Chicago Manual of Style (16^th Edition):

Deas, Matthew Burns. “Towards a user centric model for identity and access management within the online environment.” 2008. Thesis, Nelson Mandela Metropolitan University. Accessed July 20, 2019. http://hdl.handle.net/10948/775.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

MLA Handbook (7^th Edition):

Deas, Matthew Burns. “Towards a user centric model for identity and access management within the online environment.” 2008. Web. 20 Jul 2019.

Vancouver:

Deas MB. Towards a user centric model for identity and access management within the online environment. [Internet] [Thesis]. Nelson Mandela Metropolitan University; 2008. [cited 2019 Jul 20]. Available from: http://hdl.handle.net/10948/775.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Council of Science Editors:

Deas MB. Towards a user centric model for identity and access management within the online environment. [Thesis]. Nelson Mandela Metropolitan University; 2008. Available from: http://hdl.handle.net/10948/775

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

University of Hong Kong

19. Cui, Xingmin. Data privacy of Android applications and name privacy of NDN.

Degree: PhD, 2016, University of Hong Kong

URL: http://hdl.handle.net/10722/236581

► We get used to the concept that Personal Computers are connected via IP-based Internet to communicate and share content with each other. But nowadays two… (more)

▼ We get used to the concept that Personal Computers are connected via IP-based Internet to communicate and share content with each other. But nowadays two types of new trends arise in the communication paradigm. The first is that mobile devices such as smartphones have gained more popularity and the Internet usage from them has surpassed the usage from PC. More and more users rely on smartphones to share information with their friends. The second is the need for a new network design given the challenges faced by today's IP-based network with the increasing demands for security, mobility, content distribution, etc. To cope with these challenges, NSF has funded four Future Internet Architectures (FIA) including Named Data Networking (NDN), MobilityFirst, NEBULA and eXpressive Internet Architecture. For both non-traditional devices and future network, users' major concern is whether their privacy can be properly protected since their personal information is exposed to various apps and websites. In this thesis, we study the detection and protection of some privacy issues in these non-traditional devices and future network. For non-traditional devices, our work focuses on smartphones with the most popular OS, the Android OS. In Android's security model, an Android app needs to ask for permissions to gain access to sensitive data or perform privileged functions. However, a benign but vulnerable app may fail to protect its possessed permissions, enabling an unauthorized app to invoke privileged functions without asking for permissions. This exposure may not be intentional, but it would lead to the leak of user's private data and violate the permission access control policy. This is called the privilege escalation attack. Since app vetting is absent on Google Play and most other Android app repositories, it is essential to provide tools to check whether an Android app contains unprotected interfaces which would lead to unintentional leaks. In this thesis we design two checkers, CoChecker and WeChecker, to perform static taint checking in Android apps to detect leak paths. While the underlying ideas of the two checkers are similar, WeChecker improves in various aspects such as checking efficiency and precision. The evaluation shows that both checkers are efficient and WeChecker has a higher precision than most state-of-the-art checkers. For future network architectures, we focus on the security issues of Named Data Networking (NDN), which is one of the most promising Future Internet Architectures funded by NSF. To be more specific, we study the Internet censorship and anti-censorship issues since this topic addresses both name privacy and content privacy. We first explore the feasibility of existing censorship techniques in NDN and conclude the two most effective censorship methods. After that, the robustness of the NDN design against censorship is checked via simulation. Finally, we propose our censorship resistant schemes which can defend against the most effective censorship techniques in…

Subjects/Keywords: Computer networks - Security measures; Data protection

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Cui, X. (2016). Data privacy of Android applications and name privacy of NDN. (Doctoral Dissertation). University of Hong Kong. Retrieved from http://hdl.handle.net/10722/236581

Chicago Manual of Style (16^th Edition):

Cui, Xingmin. “Data privacy of Android applications and name privacy of NDN.” 2016. Doctoral Dissertation, University of Hong Kong. Accessed July 20, 2019. http://hdl.handle.net/10722/236581.

MLA Handbook (7^th Edition):

Cui, Xingmin. “Data privacy of Android applications and name privacy of NDN.” 2016. Web. 20 Jul 2019.

Vancouver:

Cui X. Data privacy of Android applications and name privacy of NDN. [Internet] [Doctoral dissertation]. University of Hong Kong; 2016. [cited 2019 Jul 20]. Available from: http://hdl.handle.net/10722/236581.

Council of Science Editors:

Cui X. Data privacy of Android applications and name privacy of NDN. [Doctoral Dissertation]. University of Hong Kong; 2016. Available from: http://hdl.handle.net/10722/236581

Ryerson University

20. Peddi, Rajender D. Preventing Collaborative Blackhole Attacks on Mobile Ad Hoc Networks.

Degree: 2012, Ryerson University

URL: https://digital.library.ryerson.ca/islandora/object/RULA%3A1615

► This thesis proposes two protocols for addressing collaborative blackhole attacks in MANETs, referred to as the Detecting Blackhole Attack-Dynamic Source Routing (DBA- DSR) and… (more)

Subjects/Keywords: Mobile communication systems; Computer networks – Security measures

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Peddi, R. D. (2012). Preventing Collaborative Blackhole Attacks on Mobile Ad Hoc Networks. (Thesis). Ryerson University. Retrieved from https://digital.library.ryerson.ca/islandora/object/RULA%3A1615

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Chicago Manual of Style (16^th Edition):

Peddi, Rajender D. “Preventing Collaborative Blackhole Attacks on Mobile Ad Hoc Networks.” 2012. Thesis, Ryerson University. Accessed July 20, 2019. https://digital.library.ryerson.ca/islandora/object/RULA%3A1615.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

MLA Handbook (7^th Edition):

Peddi, Rajender D. “Preventing Collaborative Blackhole Attacks on Mobile Ad Hoc Networks.” 2012. Web. 20 Jul 2019.

Vancouver:

Peddi RD. Preventing Collaborative Blackhole Attacks on Mobile Ad Hoc Networks. [Internet] [Thesis]. Ryerson University; 2012. [cited 2019 Jul 20]. Available from: https://digital.library.ryerson.ca/islandora/object/RULA%3A1615.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Council of Science Editors:

Peddi RD. Preventing Collaborative Blackhole Attacks on Mobile Ad Hoc Networks. [Thesis]. Ryerson University; 2012. Available from: https://digital.library.ryerson.ca/islandora/object/RULA%3A1615

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

University of Johannesburg

21. Nel, Yvette. 'n Bestuurs- en metodologiese benadering tot gebeurlikheidsbeplanning vir die gerekenariseerde stelsels van 'n organisasie.

Degree: 2014, University of Johannesburg

URL: http://hdl.handle.net/10210/11576

►

M.Com. (Informatics)

The-utilization of information technology is essential for an organization, not only to handle daily business activities but also to facilitate management decisions. The… (more)

▼

M.Com. (Informatics)

The-utilization of information technology is essential for an organization, not only to handle daily business activities but also to facilitate management decisions. The greater the dependence of the organization upon information technology, the greater the risk the organization is exposed to in case of an information systems interruption. Computer disasters, such as fires, floods, storms, sabotage and human error, constitute a security threat which could prejudice the survival of an organization. Disaster recovery planning is a realistic and imperative activity for each organization whether large or small. In the light of the potential economic and legal implications o fa disaster, it is no longer acceptable not to be prepared for such an occurrence today.A well designed and tested disaster recovery plan, as part of the total information security strategy of the organization, is therefore not only essential in the terms of the recovery of business functions, but for the SURVIVAL of the organization. In viewpoint above, it can be expected that disaster counterrevolutionary be standard practice for all organizations. However that is not the case. The literature study undertook, as well as exposure in practice, indicate clearly that disaster recovery planning enjoys low priority in most organizations. The majority existentialists are superficial, unstructured and insufficient and will not be successful when real disaster strikes.:The most important single cause for the failure of an organization ~ disaster recovery plan, will be that too much emphasis is being placed on the technical aspects rather than on the management or organizational aspects. The solutions an integrated approach of strategies and the multiple technologies which are available today. These strategies and technologies should be combined to meet the specific needs of the individual organization. The purpose of this dissertation was firstly to identify the most critical problems related to disaster recovery planning and secondly to provide a methodology for the development and implementation of a disaster recovery plan which addresses these problems. This methodology constitutes an enhancement on an existing information security methodology in order to establish a total information security strategy for a large organization with disaster recovery as an essential aspect of this strategy. The final disaster recovery planning methodology as proposed in this dissertation, was developed as a result of an extensive literature study undertook as well as involvement during the development of a disaster recovery system by the company which initiated this study.

Subjects/Keywords: Computer networks - Security measures; Information technology

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Nel, Y. (2014). 'n Bestuurs- en metodologiese benadering tot gebeurlikheidsbeplanning vir die gerekenariseerde stelsels van 'n organisasie. (Thesis). University of Johannesburg. Retrieved from http://hdl.handle.net/10210/11576

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Chicago Manual of Style (16^th Edition):

Nel, Yvette. “'n Bestuurs- en metodologiese benadering tot gebeurlikheidsbeplanning vir die gerekenariseerde stelsels van 'n organisasie.” 2014. Thesis, University of Johannesburg. Accessed July 20, 2019. http://hdl.handle.net/10210/11576.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

MLA Handbook (7^th Edition):

Nel, Yvette. “'n Bestuurs- en metodologiese benadering tot gebeurlikheidsbeplanning vir die gerekenariseerde stelsels van 'n organisasie.” 2014. Web. 20 Jul 2019.

Vancouver:

Nel Y. 'n Bestuurs- en metodologiese benadering tot gebeurlikheidsbeplanning vir die gerekenariseerde stelsels van 'n organisasie. [Internet] [Thesis]. University of Johannesburg; 2014. [cited 2019 Jul 20]. Available from: http://hdl.handle.net/10210/11576.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Council of Science Editors:

Nel Y. 'n Bestuurs- en metodologiese benadering tot gebeurlikheidsbeplanning vir die gerekenariseerde stelsels van 'n organisasie. [Thesis]. University of Johannesburg; 2014. Available from: http://hdl.handle.net/10210/11576

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Nelson Mandela Metropolitan University

22. Gcaza, Noluxolo. A national strategy towards cultivating a cybersecurity culture in South Africa.

Degree: 2017, Nelson Mandela Metropolitan University

URL: http://hdl.handle.net/10948/13735

► In modern society, cyberspace is interwoven into the daily lives of many. Cyberspace is increasingly redefining how people communicate as well as gain access to… (more)

▼ In modern society, cyberspace is interwoven into the daily lives of many. Cyberspace is increasingly redefining how people communicate as well as gain access to and share information. Technology has transformed the way the business world operates by introducing new ways of trading goods and services whilst bolstering traditional business methods. It has also altered the way nations govern. Thus individuals, organisations and nations are relying on this technology to perform significant functions. Alongside the positive innovations afforded by cyberspace, however, those who use it are exposed to a variety of risks. Cyberspace is beset by criminal activities such as cybercrime, fraud, identity theft to name but a few. Nonetheless, the negative impact of these cyber threats does not outweigh the advantages of cyberspace. In light of such threats, there is a call for all entities that reap the benefits of online services to institute cybersecurity. As such, cybersecurity is a necessity for individuals, organisations and nations alike. In practice, cybersecurity focuses on preventing and mitigating certain security risks that might compromise the security of relevant assets. For a long time, technology-centred measures have been deemed the most significant solution for mitigating such risks. However, after a legacy of unsuccessful technological efforts, it became clear that such solutions in isolation are insufficient to mitigate all cyber-related risks. This is mainly due to the role that humans play in the security process, that is, the human factor. In isolation, technology-centred measures tend to fail to counter the human factor because of the perception among many users that security measures are an obstacle and consequently a waste of time. This user perception can be credited to the perceived difficulty of the security measure, as well as apparent mistrust and misinterpretation of the measure. Hence, cybersecurity necessitates the development of a solution that encourages acceptable user behaviour in the reality of cyberspace. The cultivation of a cybersecurity culture is thus regarded as the best approach for addressing the human factors that weaken the cybersecurity chain. While the role of culture in pursuing cybersecurity is well appreciated, research focusing on defining and measuring cybersecurity culture is still in its infancy. Furthermore, studies have shown that there are no widely accepted key concepts that delimit a cybersecurity culture. However, the notion that such a culture is not well-delineated has not prevented national governments from pursuing a culture in which all citizens behave in a way that promotes cybersecurity. As a result, many countries now offer national cybersecurity campaigns to foster a culture of cybersecurity at a national level. South Africa is among the nations that have identified cultivating a culture of cybersecurity as a strategic priority. However, there is an apparent lack of a practical plan to cultivate such a cybersecurity culture in South Africa. Thus, this study…

Subjects/Keywords: Computer networks – Security measures; Cyberspace – Security measures; Computer security – South Africa; Subculture – South Africa

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Gcaza, N. (2017). A national strategy towards cultivating a cybersecurity culture in South Africa. (Thesis). Nelson Mandela Metropolitan University. Retrieved from http://hdl.handle.net/10948/13735

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Chicago Manual of Style (16^th Edition):

Gcaza, Noluxolo. “A national strategy towards cultivating a cybersecurity culture in South Africa.” 2017. Thesis, Nelson Mandela Metropolitan University. Accessed July 20, 2019. http://hdl.handle.net/10948/13735.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

MLA Handbook (7^th Edition):

Gcaza, Noluxolo. “A national strategy towards cultivating a cybersecurity culture in South Africa.” 2017. Web. 20 Jul 2019.

Vancouver:

Gcaza N. A national strategy towards cultivating a cybersecurity culture in South Africa. [Internet] [Thesis]. Nelson Mandela Metropolitan University; 2017. [cited 2019 Jul 20]. Available from: http://hdl.handle.net/10948/13735.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Council of Science Editors:

Gcaza N. A national strategy towards cultivating a cybersecurity culture in South Africa. [Thesis]. Nelson Mandela Metropolitan University; 2017. Available from: http://hdl.handle.net/10948/13735

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

University of Johannesburg

23. Pieterse, Theron Anton. The computer incident response framework (CIRF).

Degree: 2014, University of Johannesburg

URL: http://hdl.handle.net/10210/12368

►

M.Com. (Informatics)

A company’s valuable information assets face many risks from internal and external sources. When these risks are exploited and reports on information assets… (more)

Subjects/Keywords: Information technology - Security measures; Computer networks - Security measures; Risk management; Computer security

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Pieterse, T. A. (2014). The computer incident response framework (CIRF). (Thesis). University of Johannesburg. Retrieved from http://hdl.handle.net/10210/12368

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Chicago Manual of Style (16^th Edition):

Pieterse, Theron Anton. “The computer incident response framework (CIRF).” 2014. Thesis, University of Johannesburg. Accessed July 20, 2019. http://hdl.handle.net/10210/12368.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

MLA Handbook (7^th Edition):

Pieterse, Theron Anton. “The computer incident response framework (CIRF).” 2014. Web. 20 Jul 2019.

Vancouver:

Pieterse TA. The computer incident response framework (CIRF). [Internet] [Thesis]. University of Johannesburg; 2014. [cited 2019 Jul 20]. Available from: http://hdl.handle.net/10210/12368.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Council of Science Editors:

Pieterse TA. The computer incident response framework (CIRF). [Thesis]. University of Johannesburg; 2014. Available from: http://hdl.handle.net/10210/12368

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Georgia Tech

24. Nayak, Ankur Kumar. Flexible access control for campus and enterprise networks.

Degree: MS, Computing, 2010, Georgia Tech

URL: http://hdl.handle.net/1853/33813

► We consider the problem of designing enterprise network security systems which are easy to manage, robust and ﬂexible. This problem is challenging. Today, most approaches… (more)

▼ We consider the problem of designing enterprise network security systems which are easy to manage, robust and ﬂexible. This problem is challenging. Today, most approaches rely on host security, middleboxes, and complex interactions between many protocols. To solve this problem, we explore how new programmable networking paradigms can facilitate ﬁne-grained network control. We present Resonance, a system for securing enterprise networks , where the network elements themselves en- force dynamic access control policies through state changes based on both ﬂow-level information and real-time alerts. Resonance uses programmable switches to manipulate traffic at lower layers; these switches take actions (e.g., dropping or redirecting traffic) to enforce high-level security policies based on input from both higher-level security boxes and distributed monitoring and inference systems. Using our approach, administrators can create security applications by first identifying a state machine to represent different policy changes and then, translating these states into actual network policies. Earlier approaches in this direction (e.g., Ethane, Sane) have remained low-level requiring policies to be written in languages which are too detailed and are difficult for regular users and administrators to comprehend. As a result, significant effort is needed to package policies, events and network devices into a high-level application. Resonance abstracts out all the details through its state-machine based policy specification framework and presents security functions which are close to the end system and hence, more tractable. To demonstrate how well Resonance can be applied to existing systems, we consider two use cases. First relates to "Network Admission Control" problem. Georgia Tech dormitories currently use a system called START (Scanning Technology for Automated Registration, Repair, and Response Tasks) to authenticate and secure new hosts entering the network [23]. START uses a VLAN-based approach to isolate new hosts from authenticated hosts, along with a series of network device interactions. VLANs are notoriously difficult to use, requiring much hand-holding and manual configuration. Our interactions with the dorm network administrators have revealed that this existing system is not only difficult to manage and scale but also inﬂexible, allowing only coarse-grained access control. We implemented START by expressing its functions in the Resonance framework. The current system is deployed across three buildings in Georgia Tech with both wired as well as wireless connectivities. We present an evaluation of our system's scalability and performance. We consider dynamic rate limiting as the second use case for Resonance. We show how a network policy that relies on rate limiting and traffic shaping can easily be implemented using only a few state transitions. We plan to expand our deployment to more users and buildings and support more complex policies as an… Advisors/Committee Members: Feamster, Nick (Committee Chair), Clark, Russell (Committee Member), Zegura, Ellen (Committee Member).

Subjects/Keywords: Access control; Security; Enterprise networks; Programmable networks; Computer networks Security measures; Computer networks Management; Computer networks; Local area networks (Computer networks)

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Nayak, A. K. (2010). Flexible access control for campus and enterprise networks. (Masters Thesis). Georgia Tech. Retrieved from http://hdl.handle.net/1853/33813

Chicago Manual of Style (16^th Edition):

Nayak, Ankur Kumar. “Flexible access control for campus and enterprise networks.” 2010. Masters Thesis, Georgia Tech. Accessed July 20, 2019. http://hdl.handle.net/1853/33813.

MLA Handbook (7^th Edition):

Nayak, Ankur Kumar. “Flexible access control for campus and enterprise networks.” 2010. Web. 20 Jul 2019.

Vancouver:

Nayak AK. Flexible access control for campus and enterprise networks. [Internet] [Masters thesis]. Georgia Tech; 2010. [cited 2019 Jul 20]. Available from: http://hdl.handle.net/1853/33813.

Council of Science Editors:

Nayak AK. Flexible access control for campus and enterprise networks. [Masters Thesis]. Georgia Tech; 2010. Available from: http://hdl.handle.net/1853/33813

Nelson Mandela Metropolitan University

25. Kortjan, Noloxolo. A cyber security awareness and education framework for South Africa.

Degree: MTech, Faculty of Engineering, the Built Environment and Information Technology, 2013, Nelson Mandela Metropolitan University

URL: http://hdl.handle.net/10948/d1014829

► The Internet is becoming increasingly interwoven in the daily life of many individuals, organisations and nations. It has, to a large extent, had a positive… (more)

Subjects/Keywords: Computer networks – Security measures; Computer crimes – Prevention; Computer security

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Kortjan, N. (2013). A cyber security awareness and education framework for South Africa. (Masters Thesis). Nelson Mandela Metropolitan University. Retrieved from http://hdl.handle.net/10948/d1014829

Chicago Manual of Style (16^th Edition):

Kortjan, Noloxolo. “A cyber security awareness and education framework for South Africa.” 2013. Masters Thesis, Nelson Mandela Metropolitan University. Accessed July 20, 2019. http://hdl.handle.net/10948/d1014829.

MLA Handbook (7^th Edition):

Kortjan, Noloxolo. “A cyber security awareness and education framework for South Africa.” 2013. Web. 20 Jul 2019.

Vancouver:

Kortjan N. A cyber security awareness and education framework for South Africa. [Internet] [Masters thesis]. Nelson Mandela Metropolitan University; 2013. [cited 2019 Jul 20]. Available from: http://hdl.handle.net/10948/d1014829.

Council of Science Editors:

Kortjan N. A cyber security awareness and education framework for South Africa. [Masters Thesis]. Nelson Mandela Metropolitan University; 2013. Available from: http://hdl.handle.net/10948/d1014829

Ryerson University

26. Razavi, Sanaz Hafezian. Evaluating security measures of a layered system.

Degree: 2009, Ryerson University

URL: https://digital.library.ryerson.ca/islandora/object/RULA%3A1196

► Most distributed systems that we use in our daily lives have layered architecture since such architectures allow separation of processing between multiple processes in different… (more)

Subjects/Keywords: Computer networks – Security measures; Computer architecture; Computer security

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Razavi, S. H. (2009). Evaluating security measures of a layered system. (Thesis). Ryerson University. Retrieved from https://digital.library.ryerson.ca/islandora/object/RULA%3A1196

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Chicago Manual of Style (16^th Edition):

Razavi, Sanaz Hafezian. “Evaluating security measures of a layered system.” 2009. Thesis, Ryerson University. Accessed July 20, 2019. https://digital.library.ryerson.ca/islandora/object/RULA%3A1196.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

MLA Handbook (7^th Edition):

Razavi, Sanaz Hafezian. “Evaluating security measures of a layered system.” 2009. Web. 20 Jul 2019.

Vancouver:

Razavi SH. Evaluating security measures of a layered system. [Internet] [Thesis]. Ryerson University; 2009. [cited 2019 Jul 20]. Available from: https://digital.library.ryerson.ca/islandora/object/RULA%3A1196.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Council of Science Editors:

Razavi SH. Evaluating security measures of a layered system. [Thesis]. Ryerson University; 2009. Available from: https://digital.library.ryerson.ca/islandora/object/RULA%3A1196

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Macquarie University

27. Vo, Hanh Nguyen. Protecting web services from botnet exploitations.

Degree: 2012, Macquarie University

URL: http://hdl.handle.net/1959.14/228419

►

1. Introduction – 2. Botnet – 3. Web 2.0 botnet and current botnet detection techniques – 4. API verifier: an application-based approach to detect Bot… (more)

▼

1. Introduction – 2. Botnet – 3. Web 2.0 botnet and current botnet detection techniques – 4. API verifier: an application-based approach to detect Bot 2.0 – 5. Captcha enhancement – 6. Implementation and experiments – 7. Conclusion – 8. An appendix.

Botnets have attracted a significant attention and have become a primary "platform" for attacks on the Internet. As Web 2.0 evolves, especially with social networking sites becoming a dominant medium, it is no surprise that a new type of malware, Web 2.0 bot, rides on this new means of propagation and communication. For example, Koobface has been successfully leveraged social networking websites such as Facebook and Myspace to infect millions of computers and TwitterBot attempted to use Twitter as a C&C channel for communicating. Since these are legitimate sites and the communication is just like normal web traffic, this type of attack is difficult to detect by the current detection software. In addition, Captcha used for verifiation can be easily bypassed by modern bots as they employ the so-called relay attack. The relay attack involves a human to solve the challenges for the bots. – In this research, we solve the problem by presenting two systems: an API Verifier and an enhanced Captcha design. Since a bot must use an API (Application Programming Interface) to post information, the API Verifier will challenge a user with a Captcha if it detects that the API call is from a new computer. To recognize if the API call is from a new computer, we use the Media Access Control (MAC) address of the computer, which is globally unique. Since a bot cannot solve a Captcha challenge, it will not be able to make API calls to the Web service. Our enhanced Captcha is resistant against the relay attack as we change the static answer, which is used by majority of Captcha forms, to a dynamic one by asking the user "where" is the answer rather than "what". We also employ animation with a defined delay time to prevent the human solver from telling the bot where the answer is. The systems are evaluated by operating against various attacks from a modified version of Koobface, the most popular existing Web 2.0 botnet. The results show that Koobface bots fail to break our enhanced Captcha using relay attacks. Also our API Veri er successfully detects requests from Koobface bots and denies their access.

1 online resource (xx, 217 pages) illustrations

Advisors/Committee Members: Macquarie University. Dept. of Computing.

Subjects/Keywords: Malware (Computer software); Computer security; Computer networks – Security measures

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Vo, H. N. (2012). Protecting web services from botnet exploitations. (Doctoral Dissertation). Macquarie University. Retrieved from http://hdl.handle.net/1959.14/228419

Chicago Manual of Style (16^th Edition):

Vo, Hanh Nguyen. “Protecting web services from botnet exploitations.” 2012. Doctoral Dissertation, Macquarie University. Accessed July 20, 2019. http://hdl.handle.net/1959.14/228419.

MLA Handbook (7^th Edition):

Vo, Hanh Nguyen. “Protecting web services from botnet exploitations.” 2012. Web. 20 Jul 2019.

Vancouver:

Vo HN. Protecting web services from botnet exploitations. [Internet] [Doctoral dissertation]. Macquarie University; 2012. [cited 2019 Jul 20]. Available from: http://hdl.handle.net/1959.14/228419.

Council of Science Editors:

Vo HN. Protecting web services from botnet exploitations. [Doctoral Dissertation]. Macquarie University; 2012. Available from: http://hdl.handle.net/1959.14/228419

University of Johannesburg

28. Kersten, Karin. The management of networks with specific reference to security management.

Degree: 2012, University of Johannesburg

URL: http://hdl.handle.net/10210/5739

►

M.Comm.

This dissertation is devoted to an investigation into the network-management environment, with special emphasis on the security aspects and the provision of a reference… (more)

▼

M.Comm.

This dissertation is devoted to an investigation into the network-management environment, with special emphasis on the security aspects and the provision of a reference framework when choosing a network-management product. The dissertation is aimed at those responsible for network-management and the selection of the various network-management products by providing a framework for evaluating network management products. The first four chapters provide the background to the reference framework. The following two chapters are devoted to those aspects to be taken into consideration when evaluating a network-management product. The consolidation and the case study in chapters seven and eight provide an abridged version of the framework and illustrate how the framework could be applied to a network-management product. Chapter one provides the background to the reference framework regarding networks and network-management. The concept of network-management is introduced, as well as the three forms of architectures that could be implemented, namely centralised, hierarchical and distributed architectures. A number of network-management functions have to be taken into consideration when evaluating a network-management package, namely configuration, asset, fault, performance, accounting and security management. These functions are also covered in chapter six. Chapter two provides the background to the security aspect of the reference framework. The three main topics covered in this respect are the definition of network-security, computer crime and specific elements of network-security. This chapter also provides a springboard for the evaluation of the network-management environment, as well as an idea of what issues and measures should be addressed and taken in order to prevent, or at least minimise, the effects of network-security breaches. Chapter three covers issues relating to network-security responsibilities, with special reference to the management side of network-management, including those issues that management should take into consideration when evaluating the network-management environment. Two methods that could be implemented include network-management policies and strategies. Network-security policies and strategies encompass those issues necessary for effective security within an organisation. This chapter, however, covers the more theoretical or higher-level goals or objectives of network-management. Chapter four relates to more of the day-to-day management issues of the network-security and the network-security management services and functions that should be considered. These include issues such as network-security services, managing network access, monitoring and controlling the network security system and the maintenance and modification of the said system. Network-management product considerations are discussed in chapter five, which chapter can be viewed as the business and practical side of the reference framework. The topics discussed here are more closely related to the business…

Subjects/Keywords: Computer networks - Management; Computer networks - Security measures; Computer crimes

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Kersten, K. (2012). The management of networks with specific reference to security management. (Thesis). University of Johannesburg. Retrieved from http://hdl.handle.net/10210/5739

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Chicago Manual of Style (16^th Edition):

Kersten, Karin. “The management of networks with specific reference to security management.” 2012. Thesis, University of Johannesburg. Accessed July 20, 2019. http://hdl.handle.net/10210/5739.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

MLA Handbook (7^th Edition):

Kersten, Karin. “The management of networks with specific reference to security management.” 2012. Web. 20 Jul 2019.

Vancouver:

Kersten K. The management of networks with specific reference to security management. [Internet] [Thesis]. University of Johannesburg; 2012. [cited 2019 Jul 20]. Available from: http://hdl.handle.net/10210/5739.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Council of Science Editors:

Kersten K. The management of networks with specific reference to security management. [Thesis]. University of Johannesburg; 2012. Available from: http://hdl.handle.net/10210/5739

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

University of Johannesburg

29. Geldenhuys, Jan Harm Steenkamp. Mosaic : model for secure anonymous Internet communication.

Degree: 2012, University of Johannesburg

URL: http://hdl.handle.net/10210/7549

►

D.Litt. et Phil.

It is said that computer security is like getting into bed with an elephant. You know you have a problem, but you… (more)

Subjects/Keywords: Internet - Security measures.; Computer networks - Security measures.; Intelligent agents (Computer software).; Mosaic (Computer file)

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Geldenhuys, J. H. S. (2012). Mosaic : model for secure anonymous Internet communication. (Thesis). University of Johannesburg. Retrieved from http://hdl.handle.net/10210/7549

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Chicago Manual of Style (16^th Edition):

Geldenhuys, Jan Harm Steenkamp. “Mosaic : model for secure anonymous Internet communication.” 2012. Thesis, University of Johannesburg. Accessed July 20, 2019. http://hdl.handle.net/10210/7549.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

MLA Handbook (7^th Edition):

Geldenhuys, Jan Harm Steenkamp. “Mosaic : model for secure anonymous Internet communication.” 2012. Web. 20 Jul 2019.

Vancouver:

Geldenhuys JHS. Mosaic : model for secure anonymous Internet communication. [Internet] [Thesis]. University of Johannesburg; 2012. [cited 2019 Jul 20]. Available from: http://hdl.handle.net/10210/7549.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Council of Science Editors:

Geldenhuys JHS. Mosaic : model for secure anonymous Internet communication. [Thesis]. University of Johannesburg; 2012. Available from: http://hdl.handle.net/10210/7549

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Cape Peninsula University of Technology

30. Lububu, Steven. Perception of employees concerning information security policy compliance : case studies of a European and South African university .

Degree: 2018, Cape Peninsula University of Technology

URL: http://etd.cput.ac.za/handle/20.500.11838/2802

► This study recognises that, regardless of information security policies, information about institutions continues to be leaked due to the lack of employee compliance. The problem… (more)

▼ This study recognises that, regardless of information security policies, information about institutions continues to be leaked due to the lack of employee compliance. The problem is that information leakages have serious consequences for institutions, especially those that rely on information for its sustainability, functionality and competitiveness. As such, institutions ensure that information about their processes, activities and services are secured, which they do through enforcement and compliance of policies. The aim of this study is to explore the extent of non-compliance with information security policy in an institution. The study followed an interpretive, qualitative case study approach to understand the meaningful characteristics of the actual situations of security breaches in institutions. Qualitative data was collected from two universities, using semi-structured interviews, with 17 participants. Two departments were selected: Human Resources and the Administrative office. These two departments were selected based on the following criteria: they both play key roles within an institution, they maintain and improve the university’s policies, and both departments manage and keep confidential university information (Human Resources transects and keeps employees’ information, whilst the Administrative office manages students’ records). This study used structuration theory as a lens to view and interpret the data. The qualitative content analysis was used to analyse documentation, such as brochures and information obtained from the websites of the case study’s universities. The documentation was then further used to support the data from the interviews. The findings revealed some factors that influence non-compliance with regards to information security policy, such as a lack of leadership skills, favouritism, fraud, corruption, insufficiency of infrastructure, lack of security education and miscommunication. In the context of this study, these factors have severe consequences on an institution, such as the loss of the institution’s credibility or the institution’s closure. Recommendations for further study are also made available.

Subjects/Keywords: Computer security; Computer networks – Security measures; Information technology – Security measures; Data protection; Information resources management – Security measures

Record Details Similar Records Cite « Share

❌

APA · Chicago · MLA · Vancouver · CSE | Export to Zotero / EndNote / Reference Manager

APA (6^th Edition):

Lububu, S. (2018). Perception of employees concerning information security policy compliance : case studies of a European and South African university . (Thesis). Cape Peninsula University of Technology. Retrieved from http://etd.cput.ac.za/handle/20.500.11838/2802

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Chicago Manual of Style (16^th Edition):

Lububu, Steven. “Perception of employees concerning information security policy compliance : case studies of a European and South African university .” 2018. Thesis, Cape Peninsula University of Technology. Accessed July 20, 2019. http://etd.cput.ac.za/handle/20.500.11838/2802.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

MLA Handbook (7^th Edition):

Lububu, Steven. “Perception of employees concerning information security policy compliance : case studies of a European and South African university .” 2018. Web. 20 Jul 2019.

Vancouver:

Lububu S. Perception of employees concerning information security policy compliance : case studies of a European and South African university . [Internet] [Thesis]. Cape Peninsula University of Technology; 2018. [cited 2019 Jul 20]. Available from: http://etd.cput.ac.za/handle/20.500.11838/2802.

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

Council of Science Editors:

Lububu S. Perception of employees concerning information security policy compliance : case studies of a European and South African university . [Thesis]. Cape Peninsula University of Technology; 2018. Available from: http://etd.cput.ac.za/handle/20.500.11838/2802

Note: this citation may be lacking information needed for this citation format:
Not specified: Masters Thesis or Doctoral Dissertation

		in
And / Or
		in
And / Or
		in
And / Or
		in

Open Access Theses and Dissertations