Barnsäkring av Smartphones

Berg, Leonhard, Montelius, Olle

January 2018

Genom detta arbete demonstreras hur man, genom att kombinera tillgängliga gratistjänster, samt med lite egen kod, kan åstadkomma en prototyp av ett säkert och barnanpassat heltäckande system för användande av Android-enheter. Internettrafik från den mobila enheten dirigeras genom VPN-tunnel till hemmanätverket vilket ger minskad attackyta och minskad avlyssningsrisk, och genom användning av DNS-filtrering kan olämpliga webbsidor på förhand blockeras. Enheten kan användas för samtal (och med ytterligare modifiering SMS) men inkommande samtal från icke-godkända avsändarnummer, samt SMS blockeras. Genom Applocker, en sorts låsmekanism för applikationsåtkomst, förhindras olämpliga applikationer att installeras eller användas på enheten, likväl som inställningar förhindras att ändras av annan än administratör. Genom användande av en App-launcher kan begränsningen stramas åt ytterligare. Den sammantagna lösningen renderar i ett system där en Smartphone på ett fördelaktigt sätt kan handhas av barn och där utvalda funktioner går att använda på vanligt sätt men där, i förväg spärrade, funktioner har eliminerats från enheten. Vad som krävs utöver en Smartphone, är ett fungerande hemmanätverk och en enklare - alltid påslagen - ”server”-dator, förslagsvis en Raspberry Pi. / In this work, the ability to create a prototype for a throughout secure and childproof system for Android is shown. This is done by combining already available products combined with some own code. Internet traffic is being pushed through a VPN tunnel to an already existing LAN in the own home. This mitigates the risks of eavesdropping attacks and other threats, and by using DNS Filtering, unwanted web pages can be blocked beforehand. The mobile unit can be used for calls (and with further development SMS) but incoming calls from unknown numbers, and SMS, will be blocked. With the addition of Applocker, a sort of locking mechanism for software access, the use of unwanted application will be restricted. By adding a custom App-Launcer, this restriction can be even more firm. The complete solution brings a system where the Smartphone preferably can be handled by a child and where chosen functions can be used in their regular manner but where, predetermined, functions has been eliminated from the unit – or is only accessible by the administrator. What is needed for this prototype, besides of a Smartphone, is a working LAN in the home, and an always-on computer that acts like a server, preferably a Raspberry Pi.

Android

Childproof

Parental Control

VPN

Net security

Android

Barnsäkerhet

Föräldrakontroll

VPN

Nätsäkerhet

Computer Sciences

Datavetenskap (datalogi)

A Security Study for Non-Internet Connected Managed Software

Galassi De Orchi, Tommaso

January 2012

This master thesis project aims to improve the security of managed software developed at SCANIA's research and development group NEVE. The thesis will present several security schemes that can be effective against tampering, theft, and reverse engineering of application. The schemes presented were selected to ensure confidentiality, integrity, authenticity, and authentication of applications. NEVE’s software will be analyzed and compared against state of the art solutions. A theoretical threat analysis will be presented, corroborated by empirical reverse engineering attacks. The final part of this thesis introduces a new security scheme for C# .NET programs operating without requiring an internet connection. / Denna uppsats försöker förbättra säkerheten av [managed software] utvecklad hos SCANIAS forsknings- och utvecklingsgrupp NEVE. Den visar på flera säkerhetslösningar som kan vara effektiva mot manipulation, stöld och omvänd ingenjörskonst av applikationer. De säkerhetslösningar som presenteras valdes för att säkerställa sekretess, integritet, äkthet och autentisering hos applikationer. NEVEs mjukvara kommer att analyseras och ställs mot de allra senaste lösningarna. En teoretisk hotanalys kommer att presenteras, förstärkt med attacker baserat empiriskt omvänd ingenjörskonst. Den sista delen av denna uppsats introducerar en ny säkerhetslösning. Den riktar sig mot program skrivna i C# .NET som inte kräver en uppkoppling mot internet.

.Net Security

Reverse Engineering

Cryptography

C#

Information Security

zero-knowledge

Communication Systems

Kommunikationssystem

Gerenciamento e Integração das Bases de Dados de Sistemas de Detecção de Intrusões / MANAGEMENT AND INTEGRATION OF BASES DATA SYSTEMS FOR DETECTING INVASION

SILVA, Emanoel Costa Claudino

19 December 2006

Made available in DSpace on 2016-08-17T14:53:13Z (GMT). No. of bitstreams: 1 Emanoel Claudino.pdf: 1555729 bytes, checksum: b4ba5604a13f7f5cbe0d556a5a9eedf8 (MD5) Previous issue date: 2006-12-19 / The digital security has become an important factor for institutions of diverse domains. The Intrusion Detection Systems (IDS) have appeared as a solution for detention and correction of intrusion of pro-active way. Thus, some models of SDIs have appeared to diminish the probability of compromising of on computational systems connected in net, identifying, reporting and answering to these incidents. In face to that diversity of solutions, they lack proposals of standardization of the information used for these Systems, as well as of mechanisms of interoperability and exchange of information between the solutions in use. This dissertation, proposes a model, an architecture and an implementation of a SDI´s Information Manager, using the technologies of Multi- Agents Systems and Web Services. The objective of the Information Manager is to keep the information that are necessary to the development of the inherent functions of a SDI, in a safe and updated way. We also propose a standard of format for storage of these data to insert requirements in the environment, as: Unified Storage, Transparent Access, Uniform Generation of Data and Friendly Interaction. / A Segurança digital tem se tornado fator inegociável para instituições de diversos domínios. Os Sistemas de Detecção de Intrusão (SDIs) têm surgido como uma solução para detecção e correção de intrusão de forma próativa. Assim, vários modelos de SDIs têm surgido para, identificando, reportando e respondendo a estes incidentes, diminuir a probabilidade de comprometimento dos sistemas computacionais ligados em rede. Diante desta diversidade de soluções, faltam propostas de padronização das informações utilizadas por estes Sistemas, bem como de mecanismos de interoperabilidade e troca de informações entre as soluções em uso. Esta dissertação, propõem um modelo, uma arquitetura e uma implementação de um Gerenciador de Informações para SDIs, usando as tecnologias de Sistemas Multiagentes e Web Services. O objetivo do Gerenciador de Informações é manter de forma segura e atualizada as informações que são necessárias ao desenvolvimento das funções inerentes a um SDI. É proposto também, um padrão de formato para armazenamento desses dados, de forma a inserir no ambiente requisitos como: Armazenamento Unificado, Acesso Transparente, Geração de Dados Uniforme e Facilidade de Interoperabilidade.

Gerenciamento de Informações

Sistemas Multiagentes

Segurança de Redes

Information Manager

Intrusion Detection Systems

Multi-Agents Systems

Data Integration Systems for IDS

Net Security

La politique extérieure de l'Inde en Afrique / The Indian foreign policy in Africa

Monnet, Rodolphe

12 June 2018

Depuis 2001 et la recomposition des équilibres de puissance, l'Inde s'affirme comme l'un des acteurs qui compte dans un espace international de plus en plus multipolaire. Les mouvements de fond actuels provoquent une redistribution de cette puissance imposant de nouvelles alliances et de nouveaux jeux de pouvoirs. L'Inde n'est pas étrangère à cette tendance et encore plus depuis l'arrivée au pouvoir, en 2014, de l'actuel Premier ministre, Narendra Modi. Ce dernier conduit une politique extérieure ambitieuse pour que son pays accède à un statut de puissance mondiale. C'est dans ce cadre que se pose notre problématique qui est de savoir dans quelle mesure la place de l'Afrique dans la politique étrangère indienne permet-elle justement à l'Inde de parvenir à se hisser à ce statut de puissance. Pour y répondre, cette thèse investigue trois directions. D'abord, la place de l'océan Indien dans la relation indo-africaine doit rendre compte du rôle de l'Afrique dans la volonté indienne de faire de cet océan un espace pacifique et sécurisé sur lequel l'Inde puisse être un acteur incontournable face à des acteurs politiques puissants et hétérogènes. Ensuite, cette thèse s'attache à déterminer le rôle que l'Afrique joue dans la volonté de l'Inde d'être une puissance ayant une capacité d'influence politique sur la scène internationale au travers des instances internationales, de ses relations bilatérales avec les États africains et de la diaspora indienne installée dans ces pays. Enfin, cette recherche de statut passe par le champ économique et la nécessaire évaluation de l'empreinte économique que l'Inde souhaite imprimer en Afrique pour mieux asseoir ses capacités d'influence. Cette étude doit permettre de donner un éclairage sur la politique extérieure indienne à l'heure où les États-Unis réévaluent leur implication dans l'océan Indien, où la Chine met en place la « One Belt, One Road » et où l'Inde et le Japon viennent de s'unir pour proposer un nouveau partenariat à l'Afrique. / Since 2001 and the reshuffling of the balance of power, India has become one of the influential actors in an increasingly multipolar international context. The current groundswells are reshuffling powers between Nations in shaping new alliances and new power games. India is, more than ever, involved in this trend since the current Prime Minister, Narendra Modi, came to power in 2014. He conducts an ambitious foreign policy as a means to make his country a global and respected power. The context of the issue detailed in this document is: to what extent does Africa's place in India's foreign policy enables India to reach this status of power? This thesis investigates the following three themes: Firstly, the Indian Ocean's place in the Indo-African relationship should reflect Africa's role in India's will to make the Indian Ocean region a peaceful and secured space in which India is a decisive player in front of powerful and heterogeneous political actors. Secondly, this thesis focuses on assessing Africa's role in India's initiatives to be an influential player on politics on the international agenda through international bodies, its bilateral relations with African states and the Indian diaspora settled down in these countries. Thirdly, India's search for that particular status goes through the economic area and the assessment of India's economic footprint in Africa to better establish its influence on that Continent. This study tries to shed the light on India's foreign policy while the United States are reassessing their involvement in the Indian Ocean, and while China is setting up its "One Belt, One Road" and India and Japan have just come together to propose a new partnership to Africa.

Afrique

Inde

Chine

Etats-Unis

Japon

Puissance

Politique étrangère

Nucléaire

Sécurité d'approvisionnements

Énergies renouvelables

Océan Indien

Autonomie stratégique

Investissement étrangers

Aide au développement

Balance commerciale

Économie bleue

Puissance océanique

Droit de veto

Conseil de Sécurité

Renseignement

Diaspora

Mouvement des non-alignés

Coopération Sud-Sud

Pivot stratégique

Marine océanique

Kala pani

Diplomatie économique

Route de la soie

Énergies fossiles

One Belt

One Road

India

Africa

Japan

China

United States

Foreign policy

Power

Energy

Nuclear

Indian Ocean

Security of supply

Blue economy

Strategic autonomy

Foreign direct investment

Development assistance

Right of veto

Security council

Intelligence

Diaspora

South-South cooperation

Non-aligned movement

Strategic pivot

Oceanic navy

Economic diplomacy

Silk road

One belt

One road

Net security provider

Kala pani

327.54