1,721,125 research outputs found
Storia dell'integrazione europea
No full textL’unificazione dell’Europa, un sogno coltivato da secoli, si è avviata dopo la seconda guerra mondiale a partire da forme di integrazione economica. Il libro ricostruisce le fasi che hanno scandito tale processo, dalla messa in comune del carbone e dell’acciaio alla moneta unica e ai tentativi di costruire l’unione politica e di far parlare l’Europa con una sola voce sulla scena internazionale, esigenza urgente a seguito degli avvenimenti in Afghanistan e Ucraina.
L’evolversi dell’integrazione europea è descritto alla luce del confronto tra l’approccio sovranazionale, diretto a limitare la sovranità degli Stati e a riconoscere poteri effettivi alle istituzioni comuni, e quello intergovernativo che, al contrario, ha voluto difenderne le prerogative sovrane.
La decisione di unificarsi è stata una necessità derivante dalla constatazione dell’incapacità degli Stati di affrontare divisi le sfide da fronteggiare: la ricostruzione post-bellica, la crescita economica, l’aiuto ai paesi in via di sviluppo, le relazioni con le superpotenze. Nonostante contraddizioni e limiti, l’Unione europea è una delle realizzazioni più rilevanti nella storia del continente in quanto ha garantito la pace, consolidato la democrazia, assicurato un ragguardevole livello di benessere ai cittadini
Distributed Enforcement of Access Control policies in Intelligent Transportation System (ITS) for Situation Awareness
No full textIntelligent Transport Systems (ITS) are crucial to support Situation Awareness (SA), which aims to keep a safe and efficient driving experience. While promising, ITS use for SA brings several security challenges, including enforcing access control policies in distributed environments with stringent computational constraints in terms of availability, consistency, and latency. Consequently, traditional mechanisms used to enforce authorization policies cannot be reused off-the-shelf but need to be carefully adapted to the particular requirements and minimize the overhead of access control enforcement. In this paper, we propose a distributed architecture for access control enforcement for ITS capable of satisfying the requirements of SA scenarios based on the idea of dynamically compiling a high-level specification of access control policies (written in the Attribute-Based Access Control model) into a set of low-level Access Control Lists that are easier to enforce. We discuss how to realize it by reusing well-known techniques developed in the field of distributed systems. To evaluate the applicability of the proposed approach, we build a prototype that we use to conduct an experimental evaluation in the context of two practical use case scenarios
Automatic painting and paint removal system: A preliminary design for aircraft applications
No full textThe maintenance of the aircraft finish system is executed completely manually at present, involving a big amount of manual labor for a long time and in a hazardous environment. The automation of the process would be able to dramatically speed it up and to decrease manpower involved. Moreover, costs and environmental risks are expected to reduce with the automation. Several solutions are being developed; nevertheless, a system able to achieve the maintenance process automatically is not yet available. Along this thesis, a preliminary design of an automatic system for aircraft painting and paint removal has been carried out. The work points out that a cost effective solution for this complex problem is possible. As a preliminary study, this is intended to be a starting point for further study on this subject
MQTTSA: A Tool for Automatically Assisting the Secure Deployments of MQTT Brokers
No full textThe Internet of Things (IoT) is radically changing the way people live and interact with society: ranging from wearables to smart cities, the number of IoT devices has grown exponentially. The Message Queuing Telemetry Transport (MQTT) protocol is one of the most widely used IoT communication protocols. However, our investigation over publicly available MQTT endpoints confirms an alarming trend, i.e. many do not provide adequate security measures and often rely on the insecure default configuration. To improve the security awareness on the use of MQTT the paper presents MQTT Security Assistant (MQTTSA), a tool that automatically detects misconfigurations in MQTT-based IoT deployments. To assist IoT system developers, MQTTSA produces a report outlining detected vulnerabilities, together with (high level) hints and code snippets to implement adequate mitigations. The effectiveness of the tool is assessed by a thorough experimental evaluation
Adaptation of an i-voting scheme to Italian Elections for Citizens Abroad
Full text linkWe adapt the Ara´ujo-Traor´e protocol to Italian elections,
with emphasis on anti-coercion measures. In this short paper we focus
on a new method for managing anti-coercion credentials for each voter
An Open and Flexible CyberSecurity Training Laboratory in IT/OT Infrastructures
No full textThere are significant concerns regarding the lack of proficient cybersecurity professionals with a background in both Information Technology (IT) and Operational Technology (OT). To alleviate this problem, we propose an open and flexible laboratory for experimenting with an IT/OT infrastructure and the related cybersecurity problems, such as emulating attacks and understanding how they work and how they could be identified and mitigated. We also report our experience in using the laboratory during a one-week training event with 24 students from 7 different high-schools at the mechatronics prototyping facility ProM in Rovereto (Italy)
DoS Attacks in Available MQTT Implementations
No full textThe Internet of Things is a widely adopted and pervasive technology, but also one of the most conveniently attacked given the volume of shared data and the availability of affordable but insecure products. This paper investigates two classes of denial of service (DoS) attacks that target the handling of message queues in MQTT, one of the most broadly used IoT protocols. The first attack attempts to saturate the MQTT broker resources, while the second exploits the broker to perform an amplification attack against the connected clients. We demonstrate the effectiveness of the attacks and indicate the parameters that would hinder the capabilities of a DoS attacker in three open-source MQTT implementations: Mosquitto, VerneMQ and EMQ X. To improve the security awareness in MQTT-based deployments, we integrate the attacks and mitigations in MQTTSA, a tool that detects MQTT misconfigurations and provides security-oriented recommendations and configuration snippets
- …
