Journals Portal Naif Arab University for Security Sciences
Not a member yet
    520 research outputs found

    A Comprehensive Framework for Dark Web Forensic Tools: Analysis, Implementation, and Practical Guidelines

    No full text
    The Dark Web is a hidden part of the internet that has become prominent in cybercriminal activities. This necessitates the development of innovative forensic tools and methodologies to handle the unique challenges posed by the Dark Web. This paper presents an in-depth analysis of the field of Dark Web forensics with novel insights into emerging technologies and investigative approaches. The paper's key contribution is a comprehensive analytical framework for evaluating and implementing Dark Web forensic tools, along with detailed implementation guidelines for forensic investigations. The framework provides a systematic approach to tool selection, validation, and deployment, supported by extensive analysis of current forensic tools and their applications. Key findings include a comparative evaluation of forensic tools across multiple categories, detailed implementation protocols, and specific technical requirements for forensic infrastructure. The results emphasize the theoretical and practical impact of integrating these advanced techniques, enabling more precise detection, attribution, and mitigation of cybercrimes on the Dark Web. This research not only improves current understanding but also paves the way for future improvements in Dark Web forensics. The proposed strategies have a large impact on shaping forensic practice, guiding policy-making, and fostering international cooperation to address the surging threats by the Dark Web

    Quantum Security in Cyber Risk Analysis Through Fuzzy Analytic Hierarchy Process

    No full text
    Quantum security is an evolving field that leverages principles of quantum physics to strengthen computing systems. Core concepts such as superposition and entanglement are foundation to this domain. However, current systems face significant challenges due to the extraordinary processing capabilities of quantum computers. As large-scale quantum computers with high qubit counts become operational, existing cybersecurity mechanisms are increasingly inadequate. This rapid advancement in quantum computing poses substantial risks to software, networks, web-based systems, and other security measures. To address these challenges, enhancing cybersecurity mechanisms is imperative. This paper explores various quantum security strategies categorized into six mechanisms (E1 to E6) and examines their effects on cybersecurity factors labeled H1 through H8. The analysis employs the Fuzzy Analytic Hierarchy Process (F-AHP) method, which assesses the relative importance of these factors based on an extensive literature review. By calculating the weight of different security aspects, the F-AHP method provides insights to prioritize critical components throughout the development cycle. The findings reveal that quantum-resistant cryptography is the most effective security measure. In contrast, digital signatures resistant to quantum errors were assigned the lowest priority, while the software system (H2) received the highest priority. These results underscore the importance of developing robust cybersecurity frameworks that align with the capabilities of quantum technology. As the field advances, it is crucial to design software, networks, and security systems that support the optimal functionality of quantum computers. Implementing quantum security mechanisms can significantly reduce vulnerabilities and mitigate the risk of cyberattacks. Over the next decade, new approaches to cybersecurity risk analysis leveraging quantum technology are expected to emerge, paving the way for enhanced cyber resilience in a quantum-powered future

    A Study of the Profiles of Female Victims of Intimate Partner Violence in an Algerian Cohort

    No full text
    يعتبر العنف الأسري (العنف الذي يمارسه الشريك الحميم) (IPV) شكلاً من أشكال العنف يتم تجاهله إلى حد كبير، حيث يظل مخفياً إلى حد بعيد ويقتصر على الشأن العائلي الخاص. وتعتبر منظمة الصحة العالمية (WHO) العنف الأسري مشكلة صحة عامة عالمية حرجة. ولا تقتصر تداعياته على الأذى البدني، بل تؤثر بشكل كبير على الصحة العقلية والعاطفية للمرأة داخل مجتمعنا.وتهدف هذه الدراسة إلى تحديد الخصائص الديموغرافية للنساء اللاتي تعرضن للعنف الأسري من خلال إجراء تحقيق مقطعي شامل. وأُجري البحث بين المرضى الذين يطلبون استشارة في قسم الطب الشرعي بمستشفى الأغواط، الواقعة في منطقة جنوب الجزائر، حيث قد تختلف ديناميات السكان مقارنة بأجزاء أخرى من البلاد. وفي هذه الدراسة، تم فحص 566 امرأة ضحية للعنف في البداية، وأفادت 341 منهن بتعرضهن للعنف الأسري. ثم تم جمع البيانات من خلال مقابلات فردية مع الضحايا باستخدام نموذج جمع البيانات للبحث في الخصائص الديموغرافية لهؤلاء الضحايا.تُلقي هذه الدراسة الضوء على العديد من العوامل المرتبطة بشكل وثيق بالعنف الأسري. وتشمل هذه العوامل عمر الضحية، والمستوى التعليمي، والمهنة، ومستوى المعيشة، والحالة الاجتماعية، ومدة الزواج، وعدد الأبناء، ومعرفة الزوج قبل الزواج، والنشاط الجنسي، وارتباط التهديدات اللفظية والملاحظات البذيئة بالعنف الأسري.وتؤكد الدراسة إمكانية الوقاية من العنف بين الشركاء الحميمين، مشددة على الدور المحوري الذي تؤديه الإستراتيجيات المجتمعية في الحد منه. ومن الضروري اتخاذ تدابير استباقية بمشاركة: الهيئات الحكومية، الأنظمة القانونية، المؤسسات الرسمية، المؤسسات التعليمية والإعلام والمجموعات التطوعية للحد الفعال من حالات العنف بين الشركاء الحميمين.Intimate Partner Violence (IPV) is an overlooked type of violence, remaining largely concealed and relegated to the private domain of family affairs. The World Health Organization (WHO) considers IPV a critical global public health concern. Its repercussions extend beyond physical harm, significantly affecting the mental and emotional health of women within our nation.This study aimed to determine the demographic characteristics of women who have experienced IPV by conducting a thorough cross-sectional investigation. The research was conducted among patients seeking consultation at the forensic medicine department of Laghouat Hospital, located in a southern Algerian region where population dynamics may vary compared to other parts of the country. In this study, 566 female violence victims were initially screened, 341 of which reported IPV experiences. Data were then gathered through individual interviews with the victims using a data collection form to investigate the demographic characteristics of these victims. This study sheds light on several factors intricately linked to IPVs. These factors include the age of the victim, educational level, occupation, living standards, marital status, marriage duration, number of children, spouse’s premarital acquaintance, sexual activity, and the association of verbal threats and obscene remarks.This study emphasizes that IPV is preventable, highlighting the pivotal role of societal strategies in its mitigation. Proactive measures involving governmental bodies, legal systems, official organizations, educational institutions, the media, and voluntary groups must be taken to effectively reduce the incidence of IPV

    Adopting Automated Penetration Testing Tools: A Cost-Effective Approach to Enhancing Cybersecurity in Small Organizations

    No full text
    Modern society is heavily reliant upon the internet. Accordingly, it is vital to ensure that the data transmitted over the internet is safe. Several tools have been created for cybersecurity experts and organizations to test the security levels of organizational networks and websites. However, due to financial constraints, small organizations need to pay closer attention to managing data with limited resources. This study explores the role of automated penetration testing tools in providing small organizations with an effective and affordable data security system. This study employs a case-study approach using multiple data-gathering methods in a charitable organization. More specifically, data was collected using interviews and experiments evaluating penetration testing tools. The results revealed that cost-effective automated penetration testing tools could safeguard small organizations from cybersecurity threats. The penetration testing tools determined that the organization’s website had various vulnerabilities. The Nessus tool discovered no fewer than 37 vulnerabilities on the website application. The ZAP testing tool showed that the website application was critically failing, leading to the accumulation of vulnerabilities. The system had 3 medium-, 12 low-, and 4-informational-risk vulnerabilities. Through the evaluation of open ports, the NMAP tool identified various vulnerabilities. These findings have important implications for small organizations. First, automated penetration testing tools can be easily conducted by small organizations to safeguard their cybersecurity without obtaining costly expert help. Second, it is recommended in the light of the findings that automated penetration testing tools be used in multiple combinations as different tools have unique contributions to cybersecurity

    Integrating Sustainable Development Goals Into National Security Strategies: A Case Study of Japan

    No full text
    تقدم هذه الدراسة تحليلًا للعلاقة التكاملية بين التنمية المستدامة والأمن الوطني، مسلطةً الضوء على كيفية دمج أهداف التنمية المستدامة في إستراتيجيات الأمن الوطني لضمان استقرار الدول على المدى الطويل، وتستعرض التجربة اليابانية كنموذج رائد في تحقيق توازن متكامل بين الاستثمار في الإنسان، وحماية البيئة، والعدالة الاجتماعية، والسياسات الحكومية الرشيدة؛ حيث تقدم اليابان مثالًا عمليًّا حول كيفية مواجهة التحديات البيئية والاجتماعية من خلال الابتكار في مجالات التعليم، والرعاية الصحية، والتنمية المستدامة.كما تناولت الدراسة أبعاد التنمية المستدامة المتمثلة في الجوانب البيئية، والاقتصادية، والاجتماعية، وكذلك أبعاد الأمن الوطني بما في ذلك الأمن العسكري، والسياسي، والاجتماعي، والاقتصادي، والبيئي، مع توضيح العلاقات التفاعلية بين هذه الأبعاد.وخلصت إلى أن التنمية المستدامة ليست مجرد هدف اقتصادي، بل تُعدُّ ركيزة أساسية لتعزيز الأمن الوطني؛ فالاستثمار في التعليم، والرعاية الصحية، وحماية البيئة يسهم في تحقيق الاستقرار الداخلي، ومواجهة التحديات المستقبلية، وأكدت الدراسة أن الأمن الوطني يعتمد على سياسات مستدامة، تشمل الأبعاد البيئية والاجتماعية، وهو ما نجحت اليابان في تجسيده من خلال إستراتيجيات شاملة تصلح أن تكون نموذجًا يُحتذى به.This study provides an analysis of the integrative relationship between sustainable development and national security, highlighting how sustainable development goals can be incorporated into national security strategies to ensure long-term stability for nations. The study examines the Japanese experience as a pioneering model in achieving a balanced approach between investing in human capital, environmental protection, social justice, and sound governance policies. Japan offers a practical example of how to address environmental and social challenges through innovation in education, healthcare, and sustainable development.The study explores the dimensions of sustainable development, focusing on environmental, economic, and social aspects, while also reviewing the dimensions of national security, including military, political, social, economic, and environmental security, clarifying the interactive relationships between these dimensions.The study concludes that sustainable development is not merely an economic objective but a fundamental pillar for enhancing national security. Investment in education, healthcare, and environmental protection contributes to achieving internal stability and addressing future challenges. The study emphasizes that national security relies on sustainable policies that encompass environmental and social dimensions, which Japan has successfully embodied through comprehensive strategies that serve as a model to be emulated

    Securing the Web: A Study on Look-Alike Domain Detection Using Open-Source Intelligence Tools

    No full text
    In an era characterized by the ubiquity of the internet, the proliferation of online services, and the increasing frequency of cyber threats, the detection of look-alike domains has become a critical component of cybersecurity. The current paper presents an approach for the detection of look-alike domains, leveraging the power of open-source intelligence (OSINT) tools. It included gathering and analyzing a wide range of publicly available data sources, including permutations, WHOIS records, IP information, website content, Geo IP, similarity percentage, name server, and mail server records, and building a comprehensive profile of domains under investigation. Through the application of online search engines, patterns and features that distinguish legitimate domains from their deceptive counterparts were established. The analysis demonstrated that OSINT tools provided significant information about the sample domains and successfully detected 1598 registered look-alike domains among 10 sample domains using dnstwist, while OpenSquat identified 103 squatting domains, 960 active phishing websites, and 53 domains with suspicious certificates across five sample websites. The research contributes to the enhancement of cybersecurity practices by providing a cost-effective and scalable solution for identifying look-alike domains, which can serve as precursors to various online threats, including phishing attacks, malware distribution, and fraud

    Criminal Liability Arising From the Use of Artificial Intelligence Technologies in the Saudi Legal System: A Comparative Analytical Study

    No full text
    في الوقت الحالي أصبح الذكاء الاصطناعي مقياسًا لتطور الدول وتقدمها، وتشعبت استخدامات الذكاء الاصطناعي في مختلف مناحي الحياة. وتحرص مختلف دول العالم على السعي بكل طاقتها للاستفادة من تقنيات الذكاء الاصطناعي إلى أقصى درجة ممكنة، في سبيل تحقيق التنمية المستدامة، باعتبار أن التقدم في هذا المجال أصبح محورًا رئيسًا في خطط التنمية المستقبلية. ويأتي هذا البحث ليوضح دور المنظم السعودي في مواجهة تلك المخاطر. ومن خلال المنهج المقارن سنحاول التعرف على موقف المشرع في الدول الأجنبية من تلك المخاطر، وعما إذا كان هناك قواعد صارمة تكفل الرقابة على هذه التقنيات، واستخدامها في محاولة لرسم تصور عام أمام المشرع في المملكة العربية السعودية للاستفادة من هذه التجارب.كما ألقينا الضوء على آراء الباحثين والفقه حول منح الشخصية القانونية للروبوت، والمخاطر التي قد تنتج حول هذا الموضوع، وقد توصلنا إلى أن الذكاء الذى تتمتع به الروبوتات والتى تعتمد على الذكاء الاصطناعي الفائق لا يؤهلها لاكتساب الشخصية القانونية، وإخضاع الروبوت للمساءلة الجنائية؛ نظرًا لاختلاف الذكاء الاصطناعي عن الذكاء الإنساني. ونوصي، بأن هناك ضرورة ملحة لإصدار نظام خاص بالذكاء الاصطناعي، يوضح بدقة جرائم الروبوتات والعقوبة المقررة لها على أن تقع المسؤولية الجزائية على المبرمج أو المصنع أو المالك، أو أي شخص طبيعى آخر، واعتبار الجرائم التي تقع من الروبوت ذاته من قبيل جرائم الخطأ.Currently, artificial intelligence has become a benchmark for the development and progress of nations, with its applications expanding into various aspects of life. Countries around the world are striving with all their resources to maximize the benefits of AI technologies in order to achieve sustainable development, as progress in this field has become a central focus in future development plans. This research aims to shed light on the role of the Saudi legislator in addressing these risks. Through a comparative approach, we will examine how foreign legislators handle such risks and whether there are strict regulations ensuring oversight of these technologies and their use, with the aim of offering a general framework for Saudi lawmakers to benefit from these experiences.We also highlight the views of scholars and legal experts regarding the granting of legal personality to robots and the potential risks associated with this issue. Our findings suggest that the intelligence possessed by robots, which rely on advanced AI, does not qualify them for legal personality or criminal accountability, given the difference between AI and human intelligence. We recommend that there is an urgent need for the enactment of specific AI legislation that clearly defines robot-related crimes and the corresponding penalties, with criminal liability falling on the programmer, manufacturer, owner, or any other natural person. Crimes committed by robots themselves should be considered as negligent offenses

    Ethical Leadership and Perceived Challenges Among Police Officers in Palestine

    No full text
     تهدف هذه الدراسة إلى التعرّف إلى مؤشرات القيادة الأخلاقية، وتحدياتها المدركة، لدى ضباط الشرطة في محافظتي الخليل، وبيت لحم، من وجهة نظرهم، وفحص درجة ممارساتهم للقيادة الأخلاقية، وفقًا لمتغيرات: المؤهل العلمي، وسنوات الخدمة، ومكان العمل. واستخدمت الدراسة المنهج الوصفي التحليلي المدمج الذي يجمع ويكامل بين الجانب الكمي، والجانب النوعي. وتم استخدام الاستبانة والمقابلة كأداتين لجمع البيانات، وتكون مجتمع الدراسة من ضباط الشرطة العاملين في محافظتي الخليل، وبيت لحم، وعددهم (1600) عنصر. وتم جمع البيانات، من خلال مسح للعينة المتوافرة من مجتمع الدراسة التي بلغت (228) عنصرًا. وتم إجراء مقابلات معمّقة لـ (5) ضباط من خارج العينة الأولى، وأشارت النتائج إلى مستوى عالٍ لممارسة ضباط الشرطة الفلسطينية للقيادة الأخلاقية، وجاء المتوسط العام لممارسة ضباط الشرطة الفلسطينية للقيادة الأخلاقية في محافظتي الخليل، وبيت لحم مرتفعًا، بنسبة مئوية بلغت (%82.2). وتبيَّن أن بُعد (المكون الشخصي الأخلاقي) جاء في المرتبة الأولى، بنسبة (%85.2). وأوصت الدراسة بضرورة تعزيز قدرات عناصر الشرطة، وتعزيز قناعاتهم بأهمية ممارسة القيادة الأخلاقية بالمكون الشخصي، والمهني.This study aimed to assess the indicators of ethical leadership and perceived challenges among police officers in Bethlehem and Hebron governorates from their perspectives. It also aimed to examine their ethical leadership practices according to educational qualifications, years of service, and workplace location. The study employed an integrated descriptive-analytical approach that combined quantitative and qualitative aspects. Data were collected using administered surveys and interviews as tools targeting a population of police officers working in Hebron and Bethlehem governorates, totaling (1600) individuals. Data collection involved a sample survey of (228) participants. Additionally, in-depth interviews were conducted with (5) officers purposively selected. Findings indicated a high level of ethical leadership practice among Palestinian police officers, with a percentage of (82.2%). The dimension of the “ethical personal component” ranked highest with a percentage of (85.2%). The study recommended enhancing the capacities of police personnel and reinforcing their beliefs of ethical leadership in both personal and professional components

    Reforming the Investigating Judiciary in Morocco: A Comparative Perspective

    No full text
    شكَّلت تجربة قضاء التحقيق، منذ ولادتها وتبلورها في شكلها الحالي في فرنسا، وبعد انتقالها للعديد من دول العالم، إضافةً نوعيةً للمحاكمة الجنائية في مسار البحث عن الحقيقة، قبل أن تفقد – أو أفقدت - بريقها نتيجة إشكالات بنيوية صاحبت نشأتها، وتتضافر إلى جانبها أخرى سرعان ما سلطت الضوء على محدوديتها وإخفاقاتها.من خلال هذا المقال، يحاول الكاتب تسليط الضوء على مؤسسة قاضي التحقيق، من خلال دراسة مدى توافق الاختصاصات المسندة له مع مبدأ الفصل بين الوظائف القضائية، ثم البحث في طبيعة العلاقة التي تجمع الأخير مع جهاز النيابة العامة، قبل الانتقال للتفكير في سبل تجديد دور هذه المؤسسة، بشكلٍ يجعلها تسهم بفاعلية في تكريس الاحترام الواجب لمبدأ الفصل بين الوظائف القضائية، وتفعيل متطلبات المحاكمة المنصفة.ومن ثمَّ تم الاعتماد على المنهج التحليلي والمقارن، من خلال تحليل نصوص قانون المسطرة الجنائية المغربية ومقارنتها بالتشريعات المقارنة؛ للوقوف على المقاربات التي اعتمدتها الأخيرة فيما يتعلق بمؤسسة قضاء التحقيق.توصل الباحث لعدة نتائج، تتمثل أهمها في جمع قاضي التحقيق بين العديد من الصفات والاختصاصات المتعارضة التي تمثل مساسًا بمبدأ عدم التحيز المفترض فيه. كما أن التعديلات المسطرية المتتالية أسهمت في تهميش هذه المؤسسة، في مقابل التوسع في هامش تدخل النيابة العامة؛ وهو ما انعكس على التوازن الواجب بين المؤسسات القضائية؛ لذلك يوصي الباحث بإلغاء مرحلة التحقيق الإعدادي والإبقاء على مؤسسة قاضي تحقيق خلال مرحلة ما قبل محاكمة أحادية؛ لكن باختصاصات قضائية صرفة.Since its birth and evolution into its current form in France, and after moving to many countries around the world, the investigating judiciary has been a qualitative addition to the criminal trial, before losing its glamour due to the structural problems that accompanied its birth, as well as others that quickly highlighted its weaknesses and shortcomings.In this article, the author highlights the institution of the investigating judge, examining the compatibility of his functions with the principle of separation of judicial functions, then focusing on the nature of his relationship with the Public Prosecutor’s Office, before outlining the options for renewing this institution, so that it contributes effectively to meeting the requirements of a fair trial.To this end, the author has adopted an analytical and comparative approach, analyzing the texts of the code of criminal procedure and comparing them with other legislation in order to identify the approaches to reform adopted concerning the institution of the investigating judge.This research has led to a number of results, the most important of which is that the investigating judge has taken on a number of incoherent qualities and functions, often in contradiction with the principle of impartiality. In addition, procedural changes have contributed to the marginalization of this institution, and consequently to the expansion of the intervention of the public prosecutor, which has impacted on the necessary balance between judicial institutions. For this reason, the author proposes to transform the pre-trial phase into a unilateral phase, retaining the institution of the investigating judge, but with purely judicial functions

    Enhancing Malware Detection by Integrating Machine Learning with Cuckoo Sandbox

    No full text
    In this work, two categories of deep learning and conventional machine learning were used to classify malware using a dataset of all possible API call sequences. Specifically, the objective was to determine the best strategy to tackle the ever-rising menace as malware becomes more complex. A new dataset was created employing Cuckoo Sandbox, where API call sequences originating from both benign and malware samples were recorded. The performance of these algorithms was benchmarked and tested using this dataset, which includes SVM, RF, KNN, XGB, GBC, CNN, and RNN. The study established that both deep learning and conventional machine learning algorithms provided high accuracy above 90%. Specifically, the recurrent neural networks (RNNs) demonstrated high accuracy rates ranging from 95% to 99%. These results are highly indicative of deep learning, especially RNN, as a promising approach to improving the effectiveness of malware detection. The data obtained from dynamic analysis, when integrated into a database, serves as a more reliable source for training and testing of such models, and can improve the model’s ability to identify new threats posed by malware. Thus, this work is salient in enhancing the development of new approaches to fight malware that constantly evolve in the modern world

    0

    full texts

    520

    metadata records
    Updated in last 30 days.
    Journals Portal Naif Arab University for Security Sciences
    Access Repository Dashboard
    Do you manage Open Research Online? Become a CORE Member to access insider analytics, issue reports and manage access to outputs from your repository in the CORE Repository Dashboard! 👇