Global ETD Search

11	Ensuring a Valid Source and Destination for Internet Traffic Ehrenkranz, Toby, Ehrenkranz, Toby January 2012 (has links) The Internet has become an indispensable resource for today's society. It is at the center of the today's business, entertainment, and social world. However, the core of our identities on the Internet, the IP addresses that are used to send and receive data throughout the Internet, are insecure. Attackers today are able to send data purporting to be from nearly any location (IP spoofing) and to reroute data destined for victims to the attackers themselves (IP prefix hijacking). Victims of these attacks may experience denial of service, misplaced blame, and theft of their traffic. These attacks are of the utmost importance since they affect the core layer of the Internet. Although the mechanisms of the attacks are different, they are essentially different sides of the same coin; spoofing attacks forge the identity of the sender, while hijacking attacks forge the identity of the receiver. They revolve around the same underlying lack of a secure identity on the Internet. This research reviews the existing state of the art IP spoofing and IP prefix hijacking research and proposes new defenses to close the missing gaps and provide a new level of security to our identities on the Internet. This material is based upon work supported by the National Science Foundation under Grants No. CNS-0520326 and CNS-1118101. Any opinions, findings, and conclusions or recommendations expressed in this material are those of the author(s) and do not necessarily reflect the views of the National Science Foundation. This dissertation includes both previously published/unpublished and co-authored material. Anomaly detection Identity IP prefix hijacking IP spoofing Networking Routing
12	Design of Lightweight Alternatives to Secure Border Gateway Protocol and Mitigate against Control and Data Plane Attacks Israr, Junaid January 2012 (has links) Border Gateway Protocol (BGP) is the backbone of routing infrastructure in the Internet. In its current form, it is an insecure protocol with potential for propagation of bogus routing information. There have been several high-profiles Internet outages linked to BGP in recent times. Several BGP security proposals have been presented in the literature; however, none has been adopted so far and, as a result, securing BGP remains an unsolved problem to this day. Among existing BGP security proposals, Secure BGP (S-BGP) is considered most comprehensive. However, it presents significant challenges in terms of number of signature verifications and deployment considerations. For it to provide comprehensive security guarantees, it requires that all Autonomous Systems (ASes) in the Internet to adopt the scheme and participate in signature additions and verifications in BGP messages. Among others, these challenges have prevented S-BGP from being deployed today. In this thesis, we present two novel lightweight security protocols, called Credible BGP (C-BGP) and Hybrid Cryptosystem BGP (HC-BGP), which rely on security mechanisms in S-BGP but are designed to address signature verification overhead and deployment challenges associated with S-BGP. We develop original and detailed analytical and simulation models to study performance of our proposals and demonstrate that the proposed schemes promise significant savings in terms of computational overhead and security performance in presence of malicious ASes in the network. We also study the impact of IP prefix hijacking on control plane as well as data plane. Specifically, we analyze the impact of bogus routing information on Inter-Domain Packet Filters and propose novel and simple extensions to existing BGP route selection algorithm to combat bogus routing information. BGP security RPKI IP spoofing S-BGP C-BGP
13	Börsrobotar och marknadsmanipulation : En rättsanalys av algoritmisk högfrekvenshandel i ljuset av MAR och MiFID II / Robot traders and market manipulation : A legal analysis of High-Frequency Trading in the light of MAR and MiFID II Ericson, Monica January 2021 (has links) The landscape of equity trading changed when computer algorithms commenced to analyse large volumes of stock market data faster than a fraction of a second. Advances in technology have enabled trading algorithms to initiate, route, and execute orders on aspects of market timing, optimising order quantity, and deciding price parameters with limited human intervention. The distinctive features of high-frequency trading are low latency, high order to trade ratio, co-location, and short holding periods. Besides contributing to profitability, cost efficiency, and competitiveness, it has also amplified issues such as systemic risk and market disruption. European legal frameworks – in particular the Markets in Financial Instruments Directive II (MiFID II) and the Market Abuse Regulation (MAR) – have been and still are a response to this fairly new proprietary trading paradigm. This thesis interprets and analyses the risk mitigation and market manipulation requirements in order to clarify whether the legislation regarding high-frequency trading is compliant with the underlying appropriateness of MiFID II, MAR, and the Swedish Securities Act. The following two chapters provide an overview of the capital market with its participating actors and an outline of requirements for high-frequency trading investment firms. The ban on market manipulation is thereafter examined, systemised, and exemplified vis-à-vis fictitious transactions through manipulative schemes. Lastly, a case law analysis is conducted in respect of market abuse and defective trading algorithms. This thesis finds plausible causation between defective trading algorithms, investor confidence, and market manipulation. Nevertheless, high-frequency trading per se is not considered to meet the necessary prerequisites for market manipulation stated in MAR. Information provision is one of the foremost tools to mitigate risk linked to systemic events and disruptive markets. However, too extensive requirements can potentially inhibit innovation and infringe legal rights related to inter alia, intellectual property, exempli gratia, trade secrets. HFT MiFID II MAR Spoofing Momentum ignition Law Juridik
14	Sledování bezpečnosti počítačových sítí / Network security monitor Morský, Ondřej January 2009 (has links) This document describes software for network traffic analysis a network security monitoring. The way of processing captured frames in network cards and in protocol drivers is also described here. Second part attends to function of packet capture and network communication analysis software which can also generate traffic. This application is designed for Windows operating systems and is created as modular and easily extensible using DLL libraries. Source code of this application can be found on appended CD.
15	Leurrage et dissimulation en reconnaissance faciale : analyses et contre attaques / Spoofing and disguise variations in face recognition Kose, Neslihan 14 April 2014 (has links) La Reconnaissance automatique des personnes est devenue un sujet de plus en plus important avec l'augmentation constante des besoins en sécurité. De nombreux systèmes biométriques existent. Ils utilisent différentes caractéristiques humaines. Parmi tous les traits biométriques, la reconnaissance faciale inclut des aspects positifs en termes d'accessibilité et de fiabilité. Dans cette thèse, deux défis en reconnaissance faciales sont étudiés. Le premier est le leurrage. Le leurrage en reconnaissance faciale est présenté. Des contre-mesures permettant d'améliorer les systèmes actuels sont proposés. A cet effet, les attaques basées sur des photographies 2D ou des masques 3D sont analysées. Le second défi exploré dans cette thèse est lié aux variations dues à des altérations du visage (i.e. chirurgie plastique), maquillage et accessoires pour le visage (e.g. occultations par la présence de lunettes). L'impact de ces variations en reconnaissance de visage est étudiée séparément. Ensuite, des techniques robustes contre les variations de camouflage sont proposées. / Human recognition has become an important topic as the need and investments for security applications grow continuously. Numerous biometric systems exist which utilize various human characteristics. Among all biometrics traits, face recognition is advantageous in terms of accessibility and reliability. In the thesis, two challenges in face recognition are analyzed. The first one is face spoofing. Spoofing in face recognition is explained together with the countermeasure techniques that are proposed for the protection of face recognition systems against spoofing attacks. For this purpose, both 2D photograph and 3D mask attacks are analyzed. The second challenge explored in the thesis is disguise variations, which are due to facial alterations, facial makeup and facial accessories (occlusions). The impact of these disguise variations on face recognition is explored, separately. Then, techniques which are robust against disguise variations are proposed. Biométrie Reconnaissance faciale Leurrage Camouflage Biometrics Facial recognition Spoofing Camouflage
16	EVASIVE INTERNET PROTOCOL: END TO END PERFORMANCE Maaz, Khan 23 June 2011 (has links) No description available. Computer Science Capabilities internet security attacks, spoofing DDoS Evasive internet
17	The Order Book, Order Flow, and the Impact of Order Cancellations on Equity Index Futures Bennett, Sara E. 14 June 2012 (has links) No description available. Finance order book microstructure spoofing order imbalance equity index futures
18	Kalman Filter Aided Tracking Loop In GPS Signal Spoofing Detection Chen, Hao January 2014 (has links) No description available. Electrical Engineering GPS Spoofing Kalman Filter Test Function
19	Open-Source Testbed to Evaluate the Cybersecurity of Phasor Measurement Units Zimmermann, Markus Kenneth 22 June 2022 (has links) The Phasor Measurement Unit provides clear data for ease of grid visibility. A major component of the device is the Global Positioning System (GPS) for time synchronization across the board. However, this device has become more susceptible to cyber-attacks such as spoofing. This paper constructs an opensource testbed for the playback of PMU data and testing of cyberattacks on PMUs. Using a local GPS device to simulate what is done in the PMU, MATLAB for data conversion, and Linux operating system running on Ubuntu, the simulator can be constructed. The spoofing attack is done by adding a phase shift of the incoming data to simulate that the data is coming from a different time stamp and shifts between the original. Finally, it is all brought together by viewing the output in an open source Phasor Data Concentrator (PDC) to validate the process. / Master of Science / To monitor the bulk electrical grid, devices used to calculate at what level the grid is at and what point in time as well. These devices that are called Phasor Measurement Units and send this data to the control center for engineers to process and make decisions. Within each device is a Global Positioning System (GPS) to tell which device is sending data and at what time. The GPS device is what is susceptible to be entered by malicious individuals. To better prepare and prevent this, a testbed would be a good solution to test if the preventative measure works. However, the best of the best costs too much money, so the next best solution is an open source test bed that could be implemented anyway. The work in this paper constructs an opensource testbed and simulates a full GPS spoofing attack. Phasor Measurement Unit (PMU) Cyber-security GPS Spoofing
20	OCT en phase pour la reconnaissance biométrique par empreintes digitales et sa sécurisation / Phase-based Optical Coherence Tomography (OCT) for a robust and very secure fingerprint biometric recognition Lamare, François 21 March 2016 (has links) Dans un monde de plus en plus ouvert, les flux de personnes sont amenés à exploser dans les prochaines années. Fluidifier et contrôler ces flux, tout en respectant de fortes contraintes sécuritaires, apparaît donc comme un élément clef pour favoriser le dynamisme économique mondial. Cette gestion des flux passe principalement par la connaissance et la vérification de l’identité des personnes. Pour son aspect pratique et a priori sécurisé, la biométrie, et en particulier celle des empreintes digitales, s’est imposée comme une solution efficace, et incontournable. Néanmoins, elle souffre de deux sévères limitations. La première concerne les mauvaises performances obtenues avec des doigts détériorés. Ces détériorations peuvent être involontaires (travailleurs manuels par exemple), ou bien volontaires, à des fins d’anonymisation. La deuxième concerne les failles de sécurité des capteurs. En particulier, ils sont vulnérables à des attaques avec de fausses empreintes, réalisées par des personnes mal intentionnées dans un but d’usurpation d’identité. D’après nous, ces limitations sont dues à la faible quantité d’information exploitée par les capteurs usuels. Elle se résume souvent à une simple image de la surface du doigt. Pourtant, la complexité biologique des tissus humains est telle qu’elle offre une information très riche, unique, et difficilement reproductible. Nous avons donc proposé une approche d’imagerie, basée sur la Tomographique par Cohérence Optique, un capteur 3D sans contact, permettant de mesurer finement cette information. L’idée majeure de la thèse consiste à étudier divers moyens de l’exploiter, afin de rendre la biométrie plus robuste et vraiment sécurisée / In an increasingly open world, the flows of people are brought to explode in the coming years. Facilitating, streamlining, and managing these flows, by maintaining strict security constraints, therefore represent a key element for the global socio-economic dynamism. This flows management is mainly based on knowledge and verification of person identity. For its practicality and a priori secured, biometrics, in particular fingerprints biometrics, has become an effective and unavoidable solution.Nevertheless, it still suffers from two severe limitations. The first one concerns the poor performances obtained with damaged fingers. This damage can be involuntary (e.g. manual workers) or volunteers, for purposes of anonymity. The second limitation consists in the vulnerability of the commonly used sensors. In particular, they are vulnerable to copies of stolen fingerprints, made by malicious persons for identity theft purpose. We believe that these limitations are due to the small amount of information brought by the usual biometric sensors. It often consists in a single print of the finger surface. However, the biological complexity of human tissue provides rich information, unique to each person, and very difficult to reproduce. We therefore proposed an imaging approach based on Optical Coherence Tomography (OCT), a 3D contactless optical sensor, to finely measure this information. The main idea of the thesis is therefore to explore novel ways to exploit this information in order to make biometrics more robust and truly secured. In particular, we have proposed and evaluated different fingerprint imaging methods, based on the phase of the OCT signal Biométrie Empreintes digitales Tomographie par Cohérence Optique Phase Sécurité Anti-spoofing Biometrics Fingerprints Optical Coherence Tomography Phase Security Anti-spoofing

Search results