1,721,144 research outputs found
Using datasets from industrial control systems for cyber security research and education
No full textThe availability of high-quality benchmark datasets is an important prerequisite for research and education in the cyber security domain. Datasets from realistic systems offer a platform for researchers to develop and test novel models and algorithms. Such datasets also offer students opportunities for active and project-centric learning. In this paper, we describe six publicly available datasets from the domain of Industrial Control Systems (ICS). Five of these datasets are obtained through experiments conducted in the context of operational ICS while the sixth is obtained from a widely used simulation tool, namely EPANET, for large scale water distribution networks. This paper presents two studies on the use of the datasets. The first study uses the dataset from a live water treatment plant. This study leads to a novel and explainable anomaly detection method based upon Timed Automata and Bayesian Networks. The study conducted in the context of education made use of the water distribution network dataset in a graduate course on cyber data analytics. Through an assignment, students explored the effectiveness of various methods for anomaly detection. Research outcomes and the success of the course indicate an appreciation in the research community and positive learning experience in education.Green Open Access added to TU Delft Institutional Repository ‘You share, we take care!’ – Taverne project https://www.openaccess.nl/en/you-share-we-take-care Otherwise as indicated in the copyright section: the publisher is the copyright holder of this work and the author uses the Dutch legislation to make this work public.Cyber SecurityNetwork Architectures and Service
Resource-Aware routing in delay and disruption tolerant networks
Full text linkIn recent years a new class of networks, known as delay- and disruption-tolerant networks (DTNs), have emerged with applications in vehicular communications, emergency response and the military, to mention a few. This thesis studies the resource-aware routing problem in DTNs along four lines.
First, the thesis presents the design and comparative evaluation of a delay-tolerant routing protocol (ORWAR) which optimises message transmission and bandwidth usage during opportunistic encounters. This is done through the estimation of contact duration between nodes, selection of the most suitable message to forward at any contact opportunity, and message differentiation.
Second, the thesis proposes a hybrid scheme whereby opportunistic and infrastructure-based communication can be combined to overcome network partitions and packet losses. Collaboration between two networks characterised by different capacities, costs, and performance levels has been shown to be not only cost-effective, but also capable of increasing network survivability in the combined network.
Third, it proposes and evaluates a mathematical model that can be used to compute the optimal level of redundancy and replication of a routing protocol as a function of message characteristics.
Fourth, a holistic approach to resources is proposed, where variations in the spatial and temporal distribution of various resources can feed strategies to reduce resource consumption. Using estimates of vicinity resources, a routing protocol may not only use up fewer resources overall, but may also consume resources preferentially from nodes with higher resource levels, sparing whenever possible those with limited supplies
White paper on industry experiences in critical information infrastructure security:A special session at CRITIS 2019
No full textThe security of critical infrastructures is of paramount importance nowadays due to the growing complexity of components and applications. This paper collects the contributions to the industry dissemination session within the 14th International Conference on Critical Information Infrastructures Security (CRITIS 2019). As such, it provides an overview of recent practical experience reports in the field of critical infrastructure protection (CIP), involving major industry players. The set of cases reported in this paper includes the usage of serious gaming for training infrastructure operators, integrated safety and security management in the chemical/process industry, risks related to the cyber-economy for energy suppliers, smart troubleshooting in the Internet of Things (IoT), as well as intrusion detection in power distribution Supervisory Control And Data Acquisition (SCADA). The session has been organized to stimulate an open scientific discussion about industry challenges, open issues and future opportunities in CIP research
Machine-Checking the Universal Verifiability of ElectionGuard
No full textElectionGuard is an open source set of software components and specifications from Microsoft designed to allow the modification of a number of different e-voting protocols and products to produce public evidence (transcripts) which anyone can verify. The software uses ElGamal, homomorphic tallying and sigma protocols to enable public scrutiny without adversely affecting privacy. Some components have been formally verified (machine-checked) to be free of certain software bugs but there was no formal verification of their cryptographic security. Here, we present a machine-checked proof of the verifiability guarantees of the transcripts produced according to the ElectionGuard specification. We have also extracted an executable version of the verifier specification, which we proved to be secure, and used it to verify election transcripts produced by ElectionGuard. Our results show that our implementation is of similar efficiency to existing implementations.This work was supported by the Luxembourg National Research
Fund (FNR) and the Research Council of Norway for the joint project SURCVS
An Investigation of Comic-Based Permission Requests
No full textResearch suggests that permission requests do not adequately inform users about the implications of granting or denying such requests. It is important that informed consent is given should users grant the request. This paper reports on the results of a study that examined novel comic-based permission request design in terms of user response and preferences for permission-granting decisions. We conducted co-design workshops to design the comic-based permission requests. We then compared our comic-based designs to current Android text-based permission requests using five common permission request types in an online survey. Our results showed that 52% of participants preferred the comic-based requests, and 24% the text-based requests. While comics were found to be an effective medium to achieve informed consent, some participants reported that the text-based request offered sufficient information to make decisions. Given that a relatively large number of participants preferred the comic-based permissions, we encourage future designers to consider alternative forms of permission requests
Detection and Visualization of Android Malware Behavior
Full text linkMalware analysts still need to manually inspect malware samples that are considered suspicious by heuristic rules. They dissect software pieces and look for malware evidence in the code. The increasing number of malicious applications targeting Android devices raises the demand for analyzing them to find where the malcode is triggered when user interacts with them. In this paper a framework to monitor and visualize Android applications’ anomalous function calls is described. Our approach includes platformindependent application instrumentation, introducing hooks in order to trace restricted API functions used at runtime of the application. These function calls are collected at a central server where the application behavior filtering and a visualization take place. This can help Android malware analysts in visually inspecting what the application under study does, easily identifying such malicious functions
The Necessary Shift: Toward a Sufficient Edge Computing
No full textEdge computing is becoming a reality and attracts an increasing interest both from academia and industry. This is driven by its promises of enabling/improving use cases thanks to, e.g., lower latency or alleviated network load. This paves the way for edge computing having a huge impact on our daily lives in the (near) future. However, except works dealing with energy efficiency, studies of the (un)sustainability of edge computing are almost nonexistent, which is worrying. In this article, we advocate the need to go beyond energy efficiency and face the resource impact of edge computing. At this point when we are still able to influence design choices, it is the responsibility of this community to ensure future systems do not become unsustainable down the line. In particular, we suggest embracing a sufficiency mindset, aiming at reducing absolute resource impact and defining what is a good enough service level. After explaining why we need to move beyond efficiency, we explore the concept of sufficiency and identify related challenges. Then, we propose a first version of an edge sufficiency toolkit as a helper for shifting toward a sufficiency mindset. Finally, we illustrate the use of this toolkit in a case study.Funding Agencies|Swedish National Graduate School in computer science</p
Development of Safety-Critical Reconfigurable Hardware with Esterel
No full textAbstractDemands for higher flexibility in aerospace applications has led to increasing deployment of FPGAs. Clearly, analysis of safety-related properties of such components is essential for their use in safety-critical subsystems. The contributions of this paper are twofold. First, we illustrate a development process, using a language with formal semantics (Esterel) for design, formal verification of high-level design and automatic code generation down to VHDL. We argue that this process reduces the likelihood of systematic (permanent) faults in the design, and still produces VHDL code that is of acceptable quality (size of FPGA, delay). Secondly, we show how the design model can be modularly extended with fault models that represent random faults (e.g. radiation) leading to bit flips in the component under design (resembling FMEA), and transient or permanent faults in the rest of the environment (corrupting inputs to the component or jeopardising the effect of output signals that control the environment). The set-up is then used to formally determine which (single or multiple) fault modes cause violation of the top-level safety-related property, much in the spirit of fault-tree analyses. An aerospace hydraulic monitoring system is used to illustrate the results
Corrigendum to “A Taxonomy for Management and Optimization of Multiple Resources in Edge Computing” (vol 2018, 7476201, 2018)
No full textn/
- …
