Search results for "sårbarhet"
showing 10 items of 62 documents
Application level security enforcement mechanisms for advanced network services
2006
Masteroppgave i informasjons- og kommunikasjonsteknologi 2006 - Høgskolen i Agder, Grimstad Today the telecom world and the Internet world are converging. Ericsson has foreseen this convergence and developed a prototype of a service creation and execution environment called ServiceFrame. ServiceFrame is an extension of the ActorFrame framework. ActorFrame features new concepts described in UML 2.0, such as connectors, ports, parts and behaviour inheritance and structured classes. ActorFrame has central components called actors and agents. Actors and agents are modelled and described using the UML 2.0 notation. In ActorFrame and ServiceFrame actors and agents are communicating asynchronously…
UMTS authentication and key agreement : a comprehensive illustration of AKA procedures within theUMTS system
2001
Masteroppgave i informasjons- og kommunikasjonsteknologi 2001 - Høgskolen i Agder, Grimstad This report will give information on the 3rd generation mobile communication system, UMTS, its Authentication and Key Agreement (AKA) procedures and security aspects. It will also describe the ‘UMTS AKA Illustrator’ which is an animation program we have created to explain the AKA procedures. The AKA procedure is the essence of authenticating a user to the network and vice versa. This is possible due to the pre-shared secret key K stored in the Authentication Centre (AuC) and in the UMTS Subscriber Identity Module (USIM). The other parameters are derived from this key. During an AKA procedure, message…
Anvendelsesområder og sikkerhetsløsninger for RFID-teknologi i helsesektoren
2004
Masteroppgave i informasjons- og kommunikasjonsteknologi 2004 - Høgskolen i Agder, Grimstad Radio Frequency Identification (RFID) er en teknologi som inneholder mange muligheter, spesielt i sammenheng med annen mobil kommunikasjonsteknologi. Ved Sørlandet Sykehus HF i Arendal ønskes en øket identitetssikring og kvalitetskontroll på prøver som blir analysert ved laboratoriet. Det har derfor vært ønskelig å se på hvordan RFID-teknologien kan benyttes i sammenheng med rutiner for prøvetaking, og hvilke begrensninger og muligheter som ligger i lagring av sensitiv informasjon i RFID-brikker. På bakgrunn av observasjoner, intervjuer og oppfølgingsmøter med nøkkelpersoner ved sykehuset har det vær…
Managing information security in organizations : a case study
2007
Masteroppgave i informasjonssystemer 2007 - Høgskolen i Agder, Kristiansand During a participation in a security project in an enterprise in Norway, I have been able to get knowledge about the field of information security. The project leader told me that the method he was using has not been documented. The ideas of the way of handling information security has been used with another company in Norway, in a earlier project that he had also been project leader of. The main theme of the method was organizing the IT department into processes and roles, with tasks and responsibilities. In my literature research I have found several ways of handling information security. There is no grounded theo…
The Perceived Value of Cybersecurity Analyses and Frameworks for an IT Company
2021
Master's thesis in Cyber security (IS507) Recent trends show an increasing rate of cyberattacks against private companies and public organizations. Existing cybersecurity analyses and frameworks offer a set of guidelines for preparedness and security countermeasures against cyberthreats. However, there is little knowledge on the perceived value of these. This thesis explores the value of common cybersecurity analyses and frameworks, to understand their values for the organizations looking for a holistic overview of the possible countermeasures against cyberattacks. A choice made for the study was to mainly focus on IT companies as cases. To address the challenging nature of the thesis topic…
Effective Cyber Security Strategies for IIoT Industrial IoT in the industry sector: Trust and Scalability
2021
Master's thesis in Cyber security (IS507) There has been great growth in the use of IoT. It is a modern technology and is becoming increasingly popular. It is also widely used in industrial sectors where it is referred as Industrial IoT (IIoT). Although the technology can provide great benefits, it also leads to some challenges. In this thesis we will explore the security characteristics of IIoT used in industrial sectors. We will determine why and if there is a correlation between trust and scalability in IIoT infrastructure. In order to do this we will be using qualitative methods for data collection and have performed both interviews and simulations. We also use systematic literature rev…
A User-centered system with blockchain in the Norwegian healthcare: From a security and privacy perspective
2021
Master's thesis in Cyber security (IS507) With the current Covid-19 pandemic roaming the world, the IT attacks on the healthcare sector has increased five folds from 2019 to 2020. The Norwegian healthcare system is divided into different regions with their own systems respectfully. This fragmentation causes great communication issues between systems and exposes the transmitted data for attacks. To better combat this situation and improve upon the fragmented healthcare systems, a restructure is needed. In this thesis we explore the possibility of using blockchain technology as the foundation of a system that unifies the systems in the Norwegian healthcare sector. We adopt a Design Science Re…
Norwegian cybersecurity guidelines : A case study of Norwegian security agencies
2021
Master's thesis in Cyber security (IS507) In recent years, several countries in Europe have focused on developing their own national solutions for cybersecurity. Norwegian security authorities have also developed national guidelines to develop a common national solution to meet the ever-increasing focus on Euro-pean and international regulations within cybersecurity. The study sheds light on elements related to the issue at both a national and international level and seeks to discover how national cybersecurity guidelines can emerge in the cyber landscape in the coming years. The study was carried out as a qualitative method using a case study in Norwegian security authorities. In addition,…
Investigating Cybersecurity Awareness in SME Organisations
2021
Master's thesis in Cyber security (IS507) Cyberattack incidents against small to medium-sized enterprises (SMEs) increase nowadays, thus cybersecurity awareness is becoming an important issue to enhance the security of the SME organisations. However, despite the importance of cybersecurity awareness in many organisations including SMEs, such awareness is not yet fully absorbed as day-to-day practice in organisations.In this study, we have investigated cybersecurity awareness in small to medium-sized organisations (SMEs) in Norway. The purpose of this study is to provide knowledge, empirical data and relevant literature about cybersecurity awareness for SMEs that operate with security protoc…
Otnetic: A Cyber Range Training Platform Developed for the Norwegian Energy Sector
2021
Master's thesis in Cyber security (IS507) As cyber attacks have become increasingly frequent and complex, the need for effective cyber security training has become essential. This master thesis was developed in collaboration with the client organization NC-Spectrum, with the objective of developing an alternative training program utilizing cyber ranges and gamified training for OT-personnel in the Nor-wegian energy sector. The need additional training was identified by the client organization initially, and reinforced through the findings from the literature review and interviews conducted as part of this thesis. Current training methods commonly use one-way communication, which has been sh…