Search results for "Tietoturva"
showing 10 items of 184 documents
IoT/Embedded vs. Security : Learn from the Past, Apply to the Present, Prepare for the Future
2018
It is expected there will be 50 billion IoT/embedded connected devices by 2020. At the same time, multiple recent studies revealed that IoT/embedded devices and their software/firmware is plagued with weaknesses and vulnerabilities. Moreover, various recent and prominent attacks, such as the Mirai botnet targeting Commercial Off-The-Shelf (COTS) IoT/embedded devices, and the ROCA attack targeting secure embedded hardware chips (in their many form-factors), clearly demonstrate the need to secure the many layers and components of the highly fragmented and heterogeneous ecosystem of IoT/embedded devices. In this paper we aim to explore, discuss and exemplify some research aspects and direction…
Exploring determinants of different information security behaviors
2016
Aim: The aim was to introduce new explanatory construct, namely illegitimate tasks from Stress-as-Offense-to-Self Theory (SOS), to better understand information security behavior (ISB). In addition, more commonly used constructs from Deterrence theory (DT) and Protection Motivation Theory (PMT) were used to explain ISB. This study also investigated several behaviors separately to evaluate the generalizability of the behavioral determinants. Methods: Four ISBs, namely general ISP compliance (ISP), not copying sensitive information to the unsecured USB drive (USB), locking or logging out from the computer (LOG), and not writing down passwords (PSW). Formal and informal sanctions from DT, thre…
Anomaly detection approach to keystroke dynamics based user authentication
2017
Keystroke dynamics is one of the authentication mechanisms which uses natural typing pattern of a user for identification. In this work, we introduced Dependence Clustering based approach to user authentication using keystroke dynamics. In addition, we applied a k-NN-based approach that demonstrated strong results. Most of the existing approaches use only genuine users data for training and validation. We designed a cross validation procedure with artificially generated impostor samples that improves the learning process yet allows fair comparison to previous works. We evaluated the methods using the CMU keystroke dynamics benchmark dataset. Both proposed approaches outperformed the previou…
Is My Office 365 GDPR Compliant? : Security Issues in Authentication and Administration
2018
The General Data Protection Regulation, commonly referred as GDPR, will be enforced in all European Union countries in May 2018. GDPR sets requirements for processing EU citizens’ personal data regardless of the physical location of the organisation processing the data. Over 40 percent of European organisations are using Office 365. Microsoft claims that Office 365 service is GDPR compliant, and has provided tools to help Office 365 customers to ensure their GDPR compliancy. In this paper, we present some security issues related to the very foundation of Office 365 service, namely Azure Active Directory and administrative tools, and assess their GDPR compliancy. Our findings reveal that per…
A Network-Based Framework for Mobile Threat Detection
2018
Mobile malware attacks increased three folds in the past few years and continued to expand with the growing number of mobile users. Adversary uses a variety of evasion techniques to avoid detection by traditional systems, which increase the diversity of malicious applications. Thus, there is a need for an intelligent system that copes with this issue. This paper proposes a machine learning (ML) based framework to counter rapid evolution of mobile threats. This model is based on flow-based features, that will work on the network side. This model is designed with adversarial input in mind. The model uses 40 timebased network flow features, extracted from the real-time traffic of malicious and…
Support vector machine integrated with game-theoretic approach and genetic algorithm for the detection and classification of malware
2013
Abstract. —In the modern world, a rapid growth of mali- cious software production has become one of the most signifi- cant threats to the network security. Unfortunately, wides pread signature-based anti-malware strategies can not help to de tect malware unseen previously nor deal with code obfuscation te ch- niques employed by malware designers. In our study, the prob lem of malware detection and classification is solved by applyin g a data-mining-based approach that relies on supervised mach ine- learning. Executable files are presented in the form of byte a nd opcode sequences and n-gram models are employed to extract essential features from these sequences. Feature vectors o btained are…
Creating modern blue pills and red pills
2019
The blue pill is a malicious stealthy hypervisor-based rootkit. The red pill is a software package that is designed to detect such blue pills. Since the blue pill was originally proposed there has been an ongoing arms race between developers that try to develop stealthy hypervisors and developers that try to detect such stealthy hypervisors. Furthermore, hardware advances have made several stealth attempts impossible while other advances enable even more stealthy operation. In this paper we describe the current status of detecting stealth hypervisors and methods to counter them. peerReviewed
Reducing the Time to Detect Cyber Attacks : Combining Attack Simulation With Detection Logic
2021
Cyber attacks have become harder to detect, causing the average detection time of a successful data breach to be over six months and typically costing the target organization nearly four million dollars. The attacks are becoming more sophisticated and targeted, leaving unprepared environments easy prey for the attackers. Organizations with working antivirus systems and firewalls may be surprised when they discover their network has been encrypted by a ransomware operator. This raises a serious question, how did the attacks go undetected? The conducted research focuses on the most common pitfalls regarding late or even non-existent detection by defining the root cause behind the failed detec…
Sähköpostin välityksellä tehtävä tietojenkalastelu
2017
Tämä kirjallisuuskatsauksena tehty kandidaatintutkielma tarkastelee tietojenkalastelua esittelemällä sähköpostin välityksellä tapahtuvan tietojenkalastelun keinoja, suojautumistapoja ja syitä sille miksi se onnistuu. Tietojenkalastelua tapahtuu koko ajan maailmanlaajuisesti ja sen uhriksi voi joutua lähes kuka tahansa. Tietojenkalastelu aiheuttaa vuosittain mittavia taloudellisia vahinkoja sekä yksityisille ihmisille, että organisaatioille. Sähköposti on ollut yleisesti eniten käytetty alusta, jolla lähetetään tietojenkalasteluviestejä, ja vaikka teknologian kehittyessä tulee koko ajan uusia tapoja ja mahdollisuuksia lähettää tietojenkalasteluviestejä, niin sähköpostin välityksellä niitä lä…
Tietojenkalastelun tavat ja suojautumiskeinot
2016
Tässä kandidaatin tutkielmassa käsitellään tietojenkalastelun tapoja ja erilaisia suojautumiskeinoja kirjallisuuskatsauksen keinoin. Tietojenkalastelu on jatku-vasti kasvava ilmiö, mikä ei rajoitu enää pelkästään sähköpostiin. Nykyään tietojenkalastelua esiintyy esimerkiksi tekstiviesteissä, pikaviesteissä ja yhteisöpalveluissa. Tietojenkalastelu voi aiheuttaa merkittäviä henkilökohtaisia ja taloudellisia vahinkoja sekä yrityksille että yksityishenkilöille. Tästä huolimatta käyttäjät eivät useinkaan ole tarpeeksi tietoisia tietojenkalastelun riskeistä ja käyttäjät nähdäänkin usein heikoimpana lenkkinä tietoturvassa. Tietojenkalastelun tavat kehittyvät koko ajan, eikä yhtä luodinkestävää rat…