- Subscribe to this page:
- RSS
- Email Alert
security administration
(4310 results)Search the Library
Mission Statement
TechRepublic's ITPapers is the Web's largest library of free technical IT white papers, webcasts, and case studies. Covering IT categories including Data Management, IT Management, Networking, Communications, Enterprise Applications, Storage, Security and much more, TechRepublic's White Paper Directory is the best source for technical white papers and IT information.
-
Whitepapers
Detecting Hidden Storage Side Channel Vulnerabilities in Networked Applications
May 2011
Side channels are communication channels that were not intended for communication and that accidentally leak information. A storage side channel leaks information through the content of the...
Provided by University of Mannheim
-
Whitepapers
A Framework for Static Detection of Privacy Leaks in Android Applications
Dec 2011
The authors report on applying techniques for static information flow analysis to identify privacy leaks in Android applications. They have crafted a framework which checks with the help of a...
Provided by Association for Computing Machinery
-
Whitepapers
Cryptanalysis of Pairing-Free Certificateless Authenticated Key Agreement Protocol
May 2012
To simplify the complex certificate management in the traditional Public Key Cryptography (PKC), Shamir proposed the concept of IDentity-based Public Key Cryptography (ID-PKC). In ID-PKC, there is...
Provided by International Association for Cryptologic Research
-
Whitepapers
New Identity Based Encryption and Its Proxy Re-Encryption
May 2012
In this paper, the authors propose a new IBE scheme which does not lie in the IBE's three frameworks. The main novelty is the way they embed the master key in the private key. They prove this IBE...
Provided by International Association for Cryptologic Research
-
Whitepapers
SPN-Hash: Improving the Provable Resistance Against Differential Collision Attacks
Apr 2012
Collision resistance is a fundamental property required for cryptographic hash functions. One way to ensure collision resistance is to use hash functions based on Public Key Cryptography (PKC)...
Provided by DSO National Laboratories
-
Whitepapers
On the Existence of Boolean Functions With Optimal Resistance Against Fast Algebraic Attacks
Apr 2012
Boolean functions used in stream ciphers should have large Algebraic Immunity (AI) in order to resist algebraic attacks. Constructing Boolean functions with the Maximum AI (MAI Boolean functions)...
Provided by Sun Yat-sen University
-
Whitepapers
Information-Flow Control for Programming on Encrypted Data
Apr 2012
Using homomorphic encryption and secure multiparty computation, cloud servers may perform regularly structured computation on encrypted data, without access to decryption keys. However, prior...
Provided by Institute of Electrical & Electronic Engineers
-
Whitepapers
Quantifying Information Flow in Programs Using Program Logics
Jan 2012
The authors have explained a precise quantitative information flow analysis can be built on top of a direct formalization of indistinguishability in Dynamic Logic. They have used three publicly...
Provided by Karlsruhe Institute of Technology (KIT)
-
Whitepapers
A General Framework for Guess-and-Determine and Time-Memory-Data Trade-Off Attacks on Stream Ciphers
Jun 2008
In this paper, the authors present a framework for guess-and-determine attack on stream ciphers that relies on guessing part of the internal state and solving for the remaining unknown cipher...
Provided by DSO National Laboratories
-
Whitepapers
Linkability of Some Blind Signature Schemes
Sep 2007
The concept of blind signatures was first introduced by Chaum in 1982. A blind signature scheme is an interactive two-party protocol between a user and a signer. Informally, a blind signature is a...
Provided by Multimedia University
-
Whitepapers
Analysis of Ecrime in Crowd-Sourced Labor Markets: Mechanical Turk Vs. Freelancer
May 2012
Research in the economics of security has contributed more than a decade of empirical findings to the understanding of the microeconomics of (in) security, privacy, and ecrime. Here, the authors...
Provided by University of California
-
Whitepapers
Limitations of Scanned Human Copresence Encounters for Modelling Proximity-Borne Malware
Dec 2011
Patterns of human encounters, which are difficult to observe directly, are fundamental to the propagation of mobile malware aimed at infecting devices in spatial proximity. The authors investigate...
Provided by University of California
-
Whitepapers
Privacy-Preserving Network Forensics
Apr 2011
Much of the Internet's success can be attributed to its minimalist architecture. However, the related architectural freedoms also represent ripe vulnerabilities for adversaries trying to exploit...
Provided by Association for Computing Machinery
-
Whitepapers
Plugging Side-Channel Leaks With Timing Information Flow Control
May 2012
The cloud model's dependence on massive parallelism and resource sharing exacerbates the security challenge of timing side-channels. Timing Information Flow Control (TIFC) is a novel adaptation of...
Provided by Yale University
-
Whitepapers
An Event Buffer Flooding Attack in DNP3 Controlled SCADA Systems
Nov 2011
The DNP3 protocol is widely used in SCADA systems (particularly electrical power) as a means of communicating observed sensor state information back to a control center. Typical architectures...
Provided by Institute of Electrical & Electronic Engineers
-
Whitepapers
CyberSim: Geographic, Temporal, and Organizational Dynamics of Malware Propagation
Nov 2010
The combined real cost incurred by individuals, small businesses and large industries as a result of malware infecting otherwise productive computer networks is often hard to estimate. The actual...
Provided by Institute of Electrical & Electronic Engineers
-
Whitepapers
A User Friendly Internet Identity Management System
Feb 2008
In this paper, the authors propose a client side identity management solution. The proposed system provides user registration and profile submission in very convenient manner. Web site login and...
Provided by Korea Advanced Institute of Science and Technology
-
Whitepapers
A Cooperation Network Model for Secure Management in Dynamic P2P Flow
Feb 2008
This paper discusses how to identify Peer-To-Peer (P2P) traffic using a blind technique without observing individual payload in the proposed cooperation network model. Traditionally, the payload...
Provided by Information and Communications University
-
Whitepapers
Augmented Rotation-Based Transformation for Privacy-Preserving Data Clustering
Jun 2010
Multiple Rotation-Based Transformation (MRBT) was introduced recently for mitigating the Apriori-Knowledge Independent Component Analysis (AK-ICA) attack on Rotation-Based Transformation (RBT),...
Provided by Electronics and Telecommunication Research Institute
-
Whitepapers
Towards Stateless Single-Packet IP Traceback
Jul 2007
The current Internet architecture allows malicious nodes to disguise their origin during denial-of-service attacks with IP spoofing. A well-known solution to identify these nodes is IP traceback....
Provided by University of California
-
Podcasts
It's the Putting Right That Counts
Jun 2012
In this Podcast, the speaker discusses about Flame malware. Flame malware involves mathematical breakthroughs, MPAA does not appose returning legitimate Mega-upload files to users. The speaker...
Provided by RawVoice
-
Whitepapers
Applying Dataflow Analysis to Detecting Software Vulnerability
Feb 2008
In this paper, the authors propose a software vulnerability checker which takes rules describing vulnerability patterns and a source program as input and detects locations and paths of the...
Provided by Hanyang University
-
Whitepapers
Resistant TIK-Based EndairA Against the Tunneling Attack
Feb 2008
DSR is one of the first routing algorithms proposed to operate in ad hoc networks. Several secure ondemand ad hoc routing protocols have been proposed based on DSR. endairA is one of the most...
Provided by Isfahan University of Technology
-
Whitepapers
An On-Line DDoS Attack Traceback and Mitigation System Based on Network Performance Monitoring
Feb 2008
In this paper, DDoS Attack Traceback and Mitigation System (DATMS) is proposed to trace the DDoS attack sources based on network performance monitoring. By monitoring packet loss rate and packet...
Provided by National Cheng Kung University
-
Whitepapers
Mitigating the ICA Attack Against Rotation-Based Transformation for Privacy Preserving Clustering
Dec 2008
The Rotation-Based Transformation (RBT) for privacy preserving data mining is vulnerable to the Independent Component Analysis (ICA) attack. This paper introduces a modified...
Provided by Electronics and Telecommunication Research Institute
-
Whitepapers
Interoperable DRM Framework for Multiple Devices Environment
Aug 2008
As networks increase and cross-convergence occurs between various types of devices and communications, there is an increasing demand for interoperable service in the business environment and from...
Provided by Electronics and Telecommunication Research Institute
-
Whitepapers
Towards Event Source Unobservability With Minimum Network Traffic in Sensor Networks
Apr 2008
Sensors deployed to monitor the surrounding environment report such information as event type, location, and time when a real event of interest is detected. An adversary may identify the real...
Provided by Association for Computing Machinery
-
Whitepapers
Timing Attacks on a Centralized Presence Model
Apr 2011
Presence Information (PI) represents the updated status, context and willingness of communication partners in Voice over IP systems. For instance, the action that Alice switches her status (e.g.,...
Provided by Institute of Electrical & Electronic Engineers
-
Whitepapers
On the Trade-Off Between Relationship Anonymity and Communication Overhead in Anonymity Networks
Apr 2011
Motivated by protection and privacy in industrial communication networks, in this paper the authors consider the tradeoff between relationship anonymity and communication overhead. They consider...
Provided by Institute of Electrical & Electronic Engineers
-
Whitepapers
Identity-Based Conditional Proxy Re-Encryption
Apr 2011
This paper proposes a new cryptographic primitive, named Identity-Based Conditional Proxy Re-Encryption (IBCPRE). In this primitive, a proxy with some information (a.k.a. reencryption key) is...
Provided by Institute of Electrical & Electronic Engineers
-
Whitepapers
Efficient Identity Based Public Verifiable Signcryption Scheme
Sep 2011
Signcryption is a cryptographic primitive which performs encryption and signature in a single logical step. In conventional signcryption only receiver of the signcrypted text can verify the...
Provided by International Journal on Computer Science and Technology (IJCST)
-
Whitepapers
Extending SIP Authentication to Exploit User Credentials Stored in Existing Authentication Databases
Jun 2009
The SIP protocol provides authentication and authorization of SIP requests through a challenge-response authentication scheme inherited by the HTTP protocol and named HTTP Digest Authentication....
Provided by Institute of Electrical & Electronic Engineers
-
Whitepapers
An Accurate Sampling Scheme for Detecting SYN Flooding Attacks and Portscans
Apr 2011
Smart grid, equipped with modern communication infrastructures, is subject to possible cyber attacks. Particularly, false report attacks which replace the sensor reports with fraud ones may cause...
Provided by Institute of Electrical & Electronic Engineers
-
Whitepapers
Combating Peer-to-Peer Botnets by Exploiting Vulnerabilities of Routing Scheme
Apr 2011
Today malware distribution techniques have become more effective due to Peer-To-Peer (P2P) technology adopted by botmasters in order to facilitate spreading of malicious contents in the global...
Provided by Institute of Electrical & Electronic Engineers
-
Whitepapers
Trust Based Access Control in Infrastructure-Centric Environment
Apr 2011
Existing access control models are defective in dynamic authorization based on the trustworthiness of users and do not take full advantages of infrastructures in implementing access control...
Provided by Institute of Electrical & Electronic Engineers
-
Whitepapers
Taxonomy Towards Application Security Metric Generation Using Attack Patterns
Dec 2011
Attack patterns are extension to design patterns in the context of application security to consider security as functional requirement along with other requirements. Application security metric is...
Provided by International Journal on Computer Science and Technology (IJCST)
-
Whitepapers
A Multi-Way Authentication Using Embedded Public Key
Dec 2011
In this paper, the authors introduce the concept of three way security using Public-Key and the usage of Phishing mechanism. Whenever the user is enters the username and password, a mobile alert...
Provided by International Journal on Computer Science and Technology (IJCST)
-
Whitepapers
Secured Data Carrier for Cryptographic Applications
Dec 2011
The design and development of Secured Data Carrier for Cryptographic Applications is to emphasis on the transportation of crypto keys securely from key generation centre either to the network...
Provided by International Journal on Computer Science and Technology (IJCST)
-
Whitepapers
LTE Physical Layer Identity Detection: Frequency Vs Time Domain Schemes
Apr 2011
Long Term Evolution (LTE) physical layer identity can be recognized either in frequency domain or time domain. In this paper, the authors serve some comparisons in term of complexity, latency, and...
Provided by Institute of Electrical & Electronic Engineers
-
Whitepapers
Kryptos+Graphein= Cryptography
Sep 2011
Cryptography or cryptology comes from Greek word kryptos meaning "Hidden secret" and graphein meaning "Writing". Cryptography is the practice and study of hiding information. Cryptography helps...
Provided by International Journal of Engineering Science and Technology (IJEST)
-
White Papers
Regulatory Compliance and System Logging
Jul 2008
This paper is organized into the sections like introduction briefly describes what system logging is, and why it is an important part of policy compliance, using syslog-ng for policy compliance is...
Provided by Balabit IT Security
-
White Papers
Oracle Role Manager
Jun 2009
Oracle Role Manager solves these challenges by providing a comprehensive feature set for role lifecycle management, business and organizational relationships and resources. Built using scalable...
Provided by Oracle
-
White Papers
Achieving Privacy in a Federated Identity Management System
Mar 2009
Federated identity management allows a user to efficiently authenticate and use identity information from data distributed across multiple domains. The sharing of data across domains blurs...
Provided by Sun Microsystems
-
White Papers
The Role of IT in Campus Security and Emergency Management
Oct 2008
Vulnerabilities on the campuses of nation's colleges and universities have come into sharp focus in recent years, dominating headlines with what seems like increasing frequency and greater...
Provided by EDUCAUSE
-
White Papers
Reducing the Cost of Compliance: Sun Microsystems Change and Access Control
Jul 2008
Faced with escalating costs for achieving compliance with industry and government regulations, many organizations are struggling to find better ways to address their compliance requirements. Like...
Provided by Sun Microsystems
-
White Papers
Considerations and Solutions: Juniper Networks and Compliance With Standards and Regulations
Mar 2008
Every country has a currency of information, which many trade liberally, and sometimes recklessly. To protect the right of free societies to exchange information, standards of conduct and...
Provided by Juniper Networks
-
White Papers
Operationalizing Compliance Through Business Service Automation
Mar 2008
This white paper provides IT executives and staff with key considerations and best practices for reducing risk and improving compliance visibility across the IT service life cycle. The paper...
Provided by IDG (International Data Group)
-
White Papers
Enforcing Regulatory Compliance in Smartphone-Enabled Workplaces
Aug 2008
Many industries are subject to regulations, such as FINRA in the financial services sector, SOX in public companies and HIPAA in healthcare, that include provisions to provide data protection,...
Provided by Onset Technology
-
White Papers
Role Management and Identity Compliance: The Business Imperatives
Apr 2009
There is a good chance that Role Management and Identity Compliance processes are already in place in organization. Roles are a fundamental element which most identity management and enterprise IT...
Provided by CA
-
White Papers
New Cisco Technologies Help Customers Achieve Regulatory Compliance
May 2008
Although the difference between an impromptu security strategy and a well-planned one is huge in terms of effectiveness, the fact is that there is no absolute state of security, nor of compliance....
Provided by Cisco Systems
-
Case Studies
The Dutch National Ombudsman Secures Systems With Fingerprint Recognition and Single Sign-On
Jul 2009
The Dutch National Ombudsman wanted to improve desktop security for all employees and data related to the handling of complaints and increase the ease of use for frequently used applications, like...
Provided by Oracle
-
Case Studies
Albemarle County Enhances Security With Microsoft Solution Accelerators
Jun 2009
The county's IT Department is creating an "Access Albemarle" Web site portal using Microsoft Office SharePoint Server 2007, which will, among other services, provide access to information managed...
Provided by Microsoft
-
White Papers
Comparing Google and Leading Messaging Security Solutions
Jul 2009
Osterman Research was commissioned by Google to undertake a market research survey of organizations that are using Google Apps Security and Compliance Solutions, as well as solutions offered by...
Provided by Google
-
White Papers
How Secure Is a Password?: IT Security Attitudes in the USA Versus Europe and Asia
May 2009
The US customer is mostly concerned with productivity issues than with security. The US user wants to achieve a fast boot up of the PC and ease-of-use of any tools and not be slowed down due to...
Provided by SECUDE
-
White Papers
Achieving Compliance Through Transaction-Based Re-Authentication
Apr 2009
Enterprises which operate under strict regulations, have implemented exacting security policies or may have a strong need to confirm and trace sensitive business transactions in detail. Examples...
Provided by SECUDE
-
White Papers
Automated Vulnerability Assessments for SAP NetWeaver: Protecting Your Business Processes and ReducingAudit Costs
May 2009
Many successful companies rely on SAP business solutions to automate and manage their business processes, making the SAP systems the central IT solution to store company-critical information and...
Provided by SECUDE
-
White Papers
Creating a Javascript Modal Dialog Window Within an SAP Identity Center 7.0 Workflow Task
Jun 2009
SAP's workflow tasks, within Identity Center 7.0, tend to have a very rigid and plain structure. There's no simple way to break up a task into a wizard type interface, or a task with multiple...
Provided by SECUDE
-
White Papers
Strategies for Creating an Authoritative Store
Aug 2008
Creation of an Authoritative Store is a key component of an Identity Management Infrastructure. The Authoritative Store can be created using a number of different strategies. The determination of...
Provided by SECUDE
-
White Papers
Application Security & OCC Bullet in 2008-16: A Blueprint for Compliance
Oct 2008
Recently, the Comptroller of the Currency (OCC) took the extraordinary step of issuing a bulletin (OCC Bulletin 2008-16) to alert financial institutions of the risks posed by insecure software and...
Provided by Veracode
-
White Papers
Regulatory Compliance: Protecting Sensitive Information in an Increasingly Leaky World
Mar 2009
Information Technology (IT) security is indispensable to an organization's ability to conduct business and achieve its objectives. Requirements vary among industries, geographies, and regions, but...
Provided by Trend Micro
-
White Papers
Understanding PCI: A White Paper for Executives Making Decisions on Compliance
Jan 2008
To protect client information and deter fraud, Visa, American Express, Diner's Club, Discover, JCB and MasterCard collaborated to create a new set of regulations known as the PCI (Payment Card...
Provided by Tevora Business Solutions
-
White Papers
PCI DSS Compliance With IBM Power i
Jun 2009
During recent years, merchants have been a target for financial fraud: For example, over 234 million records holding sensitive financial information were breached between 2005-2008 from payment...
Provided by Raz-Lee
-
Webcasts
Automating Security Event Management
Jul 2008
Want to improve the security incident response times? By automating the security event management process one can improve response time and reduce costs. With an IT Process Automation framework,...
Provided by NetIQ
-
Webcasts
Automated Compliance and Exception Management
Mar 2009
How to best address the growing demands of regulatory compliance? With IT budgets under scrutiny, it is more important than ever to streamline the compliance processes. IT process automation...
Provided by NetIQ
-
Webcasts
PA-DSS Webcast
May 2008
The attendee of this webcast will discover what the PA-DSS is and who it applies to; how to get started with PA-DSS; information about the transition of PABP to the Council and high level overview...
Provided by Webcast Group
-
Webcasts
A Perfect Fit: Understanding the PCI Security Standards
Sep 2008
Ever wonder how the PCI Security Standards - PCI DSS, PA-DSS and PED - work together to protect cardholder account data? How does one know which standard(s) apply to him/her? The presenter of this...
Provided by Webcast Group
-
Webcasts
PCI DSS 1.2
Nov 2008
This webcast is designed for merchants and service providers who are implementing the PCI DSS and want to better understand the changes brought about with version 1.2. The presenter of this...
Provided by Webcast Group
-
Webcasts
PCI SSC Prioritized Approach
Mar 2009
The PCI Security Standards Council has launched a new resource for companies starting out on their PCI DSS compliance journey will be available on the Council's website. The Prioritized Approach...
Provided by Webcast Group
-
Webcasts
Don't Risk Unauthorized Users Gaining Access to Vital Information!
Jan 2009
The attendee will learn how to secure the OpenVMS systems and data with the latest technology from Process Software. The attendee will also learn how to protect applications from unauthorized...
Provided by Process Software
-
Webcasts
Enterprise Threat Management (ETM): Bringing Security Together Through Intelligence
Jan 2009
While IT security spending has been on the increase in recent years, unfortunately so have vulnerabilities and successful attacks. Enterprises are still being infected with undetected, targeted...
Provided by Sourcefire
-
Webcasts
The Ubiquitous Password Problem
Oct 2009
The attendee of this webcast will learn how Imprivata customers BJC Healthcare, Bridgestone Europe, and Tayside Fire and Rescue all found a common solution in OneSign Single Sign-On. The presenter...
Provided by Imprivata
-
Webcasts
SSO Plus Strong Authentication Add Up to Superior Customer Service
Jan 2009
The presenter of this webcast discusses how his organization leveraged single sign-on and strong authentication to improve customer service at their financial institution.
Provided by Imprivata
-
Webcasts
Integrating Virtual Desktop Infrastructure (VDI) With Single Sign-On (SSO) for Convenience, Security and Cost Saving
Dec 2009
The presenter of this webcast shares how her organization is leveraging Sun Ray virtual clients, single sign-on and strong authentication to reduce cost and increase end-user productivity, while...
Provided by Imprivata
-
Webcasts
HIMSS/Imprivata Webinar - William Osler Hospital Centres: Three Hospitals, One Successful Strategy for Single Sign-on and Biometrics Deployment
Sep 2008
William Osler Health Center (WOHC) was challenged by too many passwords while the IT help desk was struggling with the high volume of reset calls. To alleviate this problem and in order to provide...
Provided by Imprivata
-
Webcasts
Finding the Right Path to PCI Compliance
Oct 2008
The attendee of this webcast will share the survey findings, discuss the PCI DSS requirements and share best practices that organizations should consider. The presenter will highlight the areas...
Provided by Imprivata
-
Webcasts
A Real World Look at the Changing IT Security Landscape for 2009
Jan 2009
This webcast sheds light on changing IT security landscape.
Provided by Imprivata
-
Webcasts
360 Degrees of Authentication: Options, Considerations & Lessons Learned
Feb 2008
Today, there is an endless list of authentication options to choose from. However, all authentication options are not created equal - they each have strengths and weaknesses. A solid understanding...
Provided by Imprivata
-
Webcasts
Process Software OpenVMS Security Webinar
Jan 2009
Even though OpenVMS is one of the most secure operating systems, it is still at risk from intruders. Don't let the mission-critical systems fall victim to the latest security threats. The attendee...
Provided by Process Software
-
Webcasts
Tapping Into the Power of Unified Communications Securely
May 2009
Unified Communications has become a powerful mainstream business resource, permitting rapid and cost-effective communication between internal and external staff alike. But, along with improved...
Provided by Reed Elsevier
-
Webcasts
Red Flags Rules - FTC Regulations and Your Responsibilities to Prevent Identity Theft
May 2009
Identity Theft is on the rise, and the government has taken notice. As of May 1st, the Federal Trade Commission, the federal bank regulatory agencies, and the National Credit Union Administration...
Provided by Perimeter eSecurity
-
Whitepapers
Analysis of Ecrime in Crowd-Sourced Labor Markets: Mechanical Turk Vs. Freelancer
May 2012
Research in the economics of security has contributed more than a decade of empirical findings to the understanding of the microeconomics of (in) security, privacy, and ecrime. Here, the authors...
Provided by University of California
-
Whitepapers
Limitations of Scanned Human Copresence Encounters for Modelling Proximity-Borne Malware
Dec 2011
Patterns of human encounters, which are difficult to observe directly, are fundamental to the propagation of mobile malware aimed at infecting devices in spatial proximity. The authors investigate...
Provided by University of California
-
Whitepapers
Privacy-Preserving Network Forensics
Apr 2011
Much of the Internet's success can be attributed to its minimalist architecture. However, the related architectural freedoms also represent ripe vulnerabilities for adversaries trying to exploit...
Provided by Association for Computing Machinery
-
Whitepapers
Plugging Side-Channel Leaks With Timing Information Flow Control
May 2012
The cloud model's dependence on massive parallelism and resource sharing exacerbates the security challenge of timing side-channels. Timing Information Flow Control (TIFC) is a novel adaptation of...
Provided by Yale University
-
Whitepapers
An Event Buffer Flooding Attack in DNP3 Controlled SCADA Systems
Nov 2011
The DNP3 protocol is widely used in SCADA systems (particularly electrical power) as a means of communicating observed sensor state information back to a control center. Typical architectures...
Provided by Institute of Electrical & Electronic Engineers
-
Whitepapers
CyberSim: Geographic, Temporal, and Organizational Dynamics of Malware Propagation
Nov 2010
The combined real cost incurred by individuals, small businesses and large industries as a result of malware infecting otherwise productive computer networks is often hard to estimate. The actual...
Provided by Institute of Electrical & Electronic Engineers
-
Whitepapers
A User Friendly Internet Identity Management System
Feb 2008
In this paper, the authors propose a client side identity management solution. The proposed system provides user registration and profile submission in very convenient manner. Web site login and...
Provided by Korea Advanced Institute of Science and Technology
-
Whitepapers
A Cooperation Network Model for Secure Management in Dynamic P2P Flow
Feb 2008
This paper discusses how to identify Peer-To-Peer (P2P) traffic using a blind technique without observing individual payload in the proposed cooperation network model. Traditionally, the payload...
Provided by Information and Communications University
-
Whitepapers
Augmented Rotation-Based Transformation for Privacy-Preserving Data Clustering
Jun 2010
Multiple Rotation-Based Transformation (MRBT) was introduced recently for mitigating the Apriori-Knowledge Independent Component Analysis (AK-ICA) attack on Rotation-Based Transformation (RBT),...
Provided by Electronics and Telecommunication Research Institute
-
Whitepapers
Towards Stateless Single-Packet IP Traceback
Jul 2007
The current Internet architecture allows malicious nodes to disguise their origin during denial-of-service attacks with IP spoofing. A well-known solution to identify these nodes is IP traceback....
Provided by University of California
-
Podcasts
It's the Putting Right That Counts
Jun 2012
In this Podcast, the speaker discusses about Flame malware. Flame malware involves mathematical breakthroughs, MPAA does not appose returning legitimate Mega-upload files to users. The speaker...
Provided by RawVoice
-
Whitepapers
Applying Dataflow Analysis to Detecting Software Vulnerability
Feb 2008
In this paper, the authors propose a software vulnerability checker which takes rules describing vulnerability patterns and a source program as input and detects locations and paths of the...
Provided by Hanyang University
-
Whitepapers
Resistant TIK-Based EndairA Against the Tunneling Attack
Feb 2008
DSR is one of the first routing algorithms proposed to operate in ad hoc networks. Several secure ondemand ad hoc routing protocols have been proposed based on DSR. endairA is one of the most...
Provided by Isfahan University of Technology
-
Whitepapers
An On-Line DDoS Attack Traceback and Mitigation System Based on Network Performance Monitoring
Feb 2008
In this paper, DDoS Attack Traceback and Mitigation System (DATMS) is proposed to trace the DDoS attack sources based on network performance monitoring. By monitoring packet loss rate and packet...
Provided by National Cheng Kung University
-
Whitepapers
Mitigating the ICA Attack Against Rotation-Based Transformation for Privacy Preserving Clustering
Dec 2008
The Rotation-Based Transformation (RBT) for privacy preserving data mining is vulnerable to the Independent Component Analysis (ICA) attack. This paper introduces a modified...
Provided by Electronics and Telecommunication Research Institute
-
Whitepapers
Interoperable DRM Framework for Multiple Devices Environment
Aug 2008
As networks increase and cross-convergence occurs between various types of devices and communications, there is an increasing demand for interoperable service in the business environment and from...
Provided by Electronics and Telecommunication Research Institute
-
Whitepapers
Towards Event Source Unobservability With Minimum Network Traffic in Sensor Networks
Apr 2008
Sensors deployed to monitor the surrounding environment report such information as event type, location, and time when a real event of interest is detected. An adversary may identify the real...
Provided by Association for Computing Machinery
-
Whitepapers
Timing Attacks on a Centralized Presence Model
Apr 2011
Presence Information (PI) represents the updated status, context and willingness of communication partners in Voice over IP systems. For instance, the action that Alice switches her status (e.g.,...
Provided by Institute of Electrical & Electronic Engineers
-
Whitepapers
On the Trade-Off Between Relationship Anonymity and Communication Overhead in Anonymity Networks
Apr 2011
Motivated by protection and privacy in industrial communication networks, in this paper the authors consider the tradeoff between relationship anonymity and communication overhead. They consider...
Provided by Institute of Electrical & Electronic Engineers
-
Whitepapers
Identity-Based Conditional Proxy Re-Encryption
Apr 2011
This paper proposes a new cryptographic primitive, named Identity-Based Conditional Proxy Re-Encryption (IBCPRE). In this primitive, a proxy with some information (a.k.a. reencryption key) is...
Provided by Institute of Electrical & Electronic Engineers
-
Whitepapers
Efficient Identity Based Public Verifiable Signcryption Scheme
Sep 2011
Signcryption is a cryptographic primitive which performs encryption and signature in a single logical step. In conventional signcryption only receiver of the signcrypted text can verify the...
Provided by International Journal on Computer Science and Technology (IJCST)
-
Whitepapers
Extending SIP Authentication to Exploit User Credentials Stored in Existing Authentication Databases
Jun 2009
The SIP protocol provides authentication and authorization of SIP requests through a challenge-response authentication scheme inherited by the HTTP protocol and named HTTP Digest Authentication....
Provided by Institute of Electrical & Electronic Engineers
-
Whitepapers
An Accurate Sampling Scheme for Detecting SYN Flooding Attacks and Portscans
Apr 2011
Smart grid, equipped with modern communication infrastructures, is subject to possible cyber attacks. Particularly, false report attacks which replace the sensor reports with fraud ones may cause...
Provided by Institute of Electrical & Electronic Engineers
-
Whitepapers
Combating Peer-to-Peer Botnets by Exploiting Vulnerabilities of Routing Scheme
Apr 2011
Today malware distribution techniques have become more effective due to Peer-To-Peer (P2P) technology adopted by botmasters in order to facilitate spreading of malicious contents in the global...
Provided by Institute of Electrical & Electronic Engineers
-
Whitepapers
Trust Based Access Control in Infrastructure-Centric Environment
Apr 2011
Existing access control models are defective in dynamic authorization based on the trustworthiness of users and do not take full advantages of infrastructures in implementing access control...
Provided by Institute of Electrical & Electronic Engineers
-
Whitepapers
Taxonomy Towards Application Security Metric Generation Using Attack Patterns
Dec 2011
Attack patterns are extension to design patterns in the context of application security to consider security as functional requirement along with other requirements. Application security metric is...
Provided by International Journal on Computer Science and Technology (IJCST)
-
Whitepapers
A Multi-Way Authentication Using Embedded Public Key
Dec 2011
In this paper, the authors introduce the concept of three way security using Public-Key and the usage of Phishing mechanism. Whenever the user is enters the username and password, a mobile alert...
Provided by International Journal on Computer Science and Technology (IJCST)
-
Whitepapers
Secured Data Carrier for Cryptographic Applications
Dec 2011
The design and development of Secured Data Carrier for Cryptographic Applications is to emphasis on the transportation of crypto keys securely from key generation centre either to the network...
Provided by International Journal on Computer Science and Technology (IJCST)
-
Whitepapers
LTE Physical Layer Identity Detection: Frequency Vs Time Domain Schemes
Apr 2011
Long Term Evolution (LTE) physical layer identity can be recognized either in frequency domain or time domain. In this paper, the authors serve some comparisons in term of complexity, latency, and...
Provided by Institute of Electrical & Electronic Engineers
-
Whitepapers
Kryptos+Graphein= Cryptography
Sep 2011
Cryptography or cryptology comes from Greek word kryptos meaning "Hidden secret" and graphein meaning "Writing". Cryptography is the practice and study of hiding information. Cryptography helps...
Provided by International Journal of Engineering Science and Technology (IJEST)
-
Whitepapers
Optimizing Cycle Time of DVD-R Injection Moulding Machine
May 2012
This paper describes the cycle time reduction approach of injection moulding machine for DVD manufacturing. Optimizing the parameters of the injection moulding machine is critical to improve...
Provided by International Journal of Engineering Science and Technology (IJEST)
-
Whitepapers
Encryption Techniques of Cryptography
May 2012
In cryptography, encryption is the process of transforming information referred to as plaintext using an algorithm to make it unreadable to anyone except those possessing special knowledge,...
Provided by Universal Journal of Applied computer Science and Technology
-
Whitepapers
Secure Embedded System Networking: An Advanced Security Perspective
May 2011
It is widely recognized that security is a concern in the design of a wide range of embedded systems. The promise of universal connectivity for embedded systems creates increased possibilities for...
Provided by International Journal of Engineering Science and Technology (IJEST)
-
Whitepapers
Intramodal Feature Fusion Using Wavelet for Palmprint Authentication
Feb 2011
Palmprint recognition has attracted various researchers in recent years due to its richness in amount of features. In this paper, palmprint authentication system is classified into palmprint...
Provided by International Journal of Engineering Science and Technology (IJEST)
-
Whitepapers
Quantum Cryptography Based Email Communication Through Internet
Jan 2011
The Secure message authentication is an important part of quantum cryptography. The eavesdropper gains partial knowledge on the key in cryptography. Partial knowledge has little result on the...
Provided by International Journal of Engineering Science and Technology (IJEST)
-
Whitepapers
Efficient Hardware Design and Implementation of AES Cryptosystem
Mar 2010
The authors propose an efficient hardware architecture design & implementation of Advanced Encryption Standard (AES)-Rijndael cryptosystem. The AES algorithm defined by the National Institute of...
Provided by International Journal of Engineering Science and Technology (IJEST)
-
Whitepapers
MiND : Misdirected DNS packet Detector
Jul 2011
In this paper, the authors present MiND, a tool to detect DNS packet indirection attacks within an Autonomous System (AS). MiND uses a name server database to detect misdirected DNS queries by...
Provided by Texas A&M University
-
Whitepapers
Winning With DNS Failures: Strategies for Faster Botnet Detection
Jul 2011
Botnets such as Conficker and Torpig utilize high entropy domains for fluxing and evasion. Bots may query a large number of domains, some of which may fail. In this paper, the authors present...
Provided by Texas A&M University
-
Whitepapers
A Large-Scale Empirical Study of Conficker
Oct 2011
Conficker is the most recent widespread, well-known worm/bot. According to several reports, it has infected about 7 million to 15 million hosts and the victims are still increasing even now. In...
Provided by Institute of Electrical & Electronic Engineers
-
Whitepapers
A New Modified Playfair Algorithm Based on Frequency Analysis
Jan 2012
Cryptography is an art and science of achieving security by encoding the message to make them non-readable. One of the well known cryptographic techniques is Playfair Cryptography. After the...
Provided by International Journal of Emerging Technology and Advanced Engineering (IJETAE)
