A trust-based game theoretical model for cooperative intrusion detection in multi-cloud environments

Cloud systems are becoming more complex and vulnerable to attacks. Cyber attacks are also becoming more sophisticated and harder to detect. Therefore, it is increasingly difficult for a single cloud-based intrusion detection system (IDS) to detect all attacks, because of limited and incomplete knowledge about attacks. The recent researches in cyber-security have shown that a co-operation among IDSs can bring higher detection accuracy in such complex computer systems. Through collaboration, a cloud-based IDS can consult other IDSs about suspicious intrusions and increase the decision accuracy. The problem of existing cooperative IDS approaches is that they overlook having untrusted (malicious or not) IDSs that may negatively effect the decision about suspicious intrusions in the cloud. Moreover, they rely on a centralized architecture in which a central agent regulates the cooperation, which contradicts the distributed nature of the cloud. In this paper, we propose a framework that enables IDSs to distributively form trustworthy IDSs communities. We devise a novel decentralized algorithm, based on coalitional game theory, that allows a set of cloud-based IDSs to cooperatively set up their coalition in such a way to make their individual detection accuracy increase, even in the presence of untrusted IDSs

Theoretical and Applied Foundations for Intrusion Detection in Single and Federated Clouds

Les systèmes infonuagiques deviennent de plus en plus complexes, plus dynamiques et hétérogènes. Un tel environnement produit souvent des données complexes et bruitées, empêchant les systèmes de détection d’intrusion (IDS) de détecter des variantes d’attaques connues. Une seule intrusion ou une attaque dans un tel système hétérogène peut se présenter sous des formes différentes, logiquement mais non synthétiquement similaires. Les IDS traditionnels sont incapables d’identifier ces attaques, car ils sont conçus pour des infrastructures spécifiques et limitées. Par conséquent, une détection précise dans le nuage ne sera absolument pas identifiée. Outre le problème de l’infonuagique, les cyber-attaques sont de plus en plus sophistiquées et difficiles à détecter. Il est donc extrêmement compliqué pour un unique IDS d’un nuage de détecter toutes les attaques, en raison de leurs implications, et leurs connaissances limitées et insuffisantes de celles-ci. Les solutions IDS actuelles de l’infonuagique résident dans le fait qu’elles ne tiennent pas compte des aspects dynamiques et hétérogènes de l’infonuagique. En outre, elles s’appuient fondamentalement sur les connaissances et l’expérience locales pour identifier les attaques et les modèles existants. Cela rend le nuage vulnérable aux attaques «Zero-Day». À cette fin, nous résolvons dans cette thèse deux défis associés à l’IDS de l’infonuagique : la détection des cyberattaques dans des environnements complexes, dynamiques et hétérogènes, et la détection des cyberattaques ayant des informations limitées et/ou incomplètes sur les intrusions et leurs conséquences. Dans cette thèse, nous sommes intéressés aux IDS génériques de l’infonuagique afin d’identifier les intrusions qui sont indépendantes de l’infrastructure utilisée. Par conséquent, à chaque fois qu’un pressentiment d’attaque est identifié, le système de détection d’intrusion doit être capable de reconnaître toutes les variantes d’une telle attaque, quelle que soit l’infrastructure utilisée. De plus, les IDS de l’infonuagique coopèrent et échangent des informations afin de faire bénéficier chacun des expertises des autres, pour identifier des modèles d’attaques inconnues.----------ABSTRACT: Cloud Computing systems are becoming more and more complex, dynamic and heterogeneous. Such an environment frequently produces complex and noisy data that make Intrusion Detection Systems (IDSs) unable to detect unknown variants of known attacks. A single intrusion or an attack in such a heterogeneous system could take various forms that are logically but not synthetically similar. This, in turn, makes traditional IDSs unable to identify these attacks, since they are designed for specific and limited infrastructures. Therefore, the accuracy of the detection in the cloud will be very negatively affected. In addition to the problem of the cloud computing environment, cyber attacks are getting more sophisticated and harder to detect. Thus, it is becoming increasingly difficult for a single cloud-based IDS to detect all attacks, because of limited and incomplete knowledge about attacks and implications. The problem of the existing cloud-based IDS solutions is that they overlook the dynamic and changing nature of the cloud. Moreover, they are fundamentally based on the local knowledge and experience to perform the classification of attacks and normal patterns. This renders the cloud vulnerable to “Zero-Day” attacks. To this end, we address throughout this thesis two challenges associated with the cloud-based IDS which are: the detection of cyber attacks under complex, dynamic and heterogeneous environments; and the detection of cyber attacks under limited and/or incomplete information about intrusions and implications. We are interested in this thesis in allowing cloud-based IDSs to be generic, in order to identify intrusions regardless of the infrastructure used. Therefore, whenever an intrusion has been identified, an IDS should be able to recognize all the different structures of such an attack, regardless of the infrastructure that is being used. Moreover, we are interested in allowing cloud-based IDSs to cooperate and share knowledge with each other, in order to make them benefit from each other’s expertise to cover unknown attack patterns. The originality of this thesis lies within two aspects: 1) the design of a generic cloud-based IDS that allows the detection under changing and heterogeneous environments and 2) the design of a multi-cloud cooperative IDS that ensures trustworthiness, fairness and sustainability. By trustworthiness, we mean that the cloud-based IDS should be able to ensure that it will consult, cooperate and share knowledge with trusted parties (i.e., cloud-based IDSs). By fairness, we mean that the cloud-based IDS should be able to guarantee that mutual benefits will be achieved through minimising the chance of cooperating with selfish IDSs. This is useful to give IDSs the motivation to participate in the community

Data and the city – accessibility and openness. a cybersalon paper on open data

This paper showcases examples of bottom–up open data and smart city applications and identifies lessons for future such efforts. Examples include Changify, a neighbourhood-based platform for residents, businesses, and companies; Open Sensors, which provides APIs to help businesses, startups, and individuals develop applications for the Internet of Things; and Cybersalon’s Hackney Treasures. a location-based mobile app that uses Wikipedia entries geolocated in Hackney borough to map notable local residents. Other experiments with sensors and open data by Cybersalon members include Ilze Black and Nanda Khaorapapong's The Breather, a "breathing" balloon that uses high-end, sophisticated sensors to make air quality visible; and James Moulding's AirPublic, which measures pollution levels. Based on Cybersalon's experience to date, getting data to the people is difficult, circuitous, and slow, requiring an intricate process of leadership, public relations, and perseverance. Although there are myriad tools and initiatives, there is no one solution for the actual transfer of that data

Coolest Student Papers at Finland Futures Research Centre 2016–2017 : Tulevaisuuden tutkimuskeskuksen valittuja opiskelijatöitä 2016–2017

This is the second volume of our Coolest Student Papers series which was launched last year. The collection publishes inspired and inspiring picks from the student essays written by students and student groups in the courses organised by Finland Futures Research Centre (FFRC). The topics range from sustainability issues to corporate foresight, from ethics to methodology, from artificial intelligence to futures consciousness. Some of the essays take a critical stance to projects that have been carried out at the FFRC, which is something we especially wish to support. Independent, constructively critical open deliberation of how futures studies should be carried out is one of the core goals of our education and a key to further development of the courses and the whole field of futures studies. The volume is divided to sections by the course. Each section begins with an evaluation made by the teacher after which the student essay(s) follow(s). The essays of the courses studied in Finnish language are at the end of the volume. The essays are from the international Master’s Degree Programme of Futures Studies, the Sustainable Development minor and Futures Studies minor offered in Finnish language. Our PhD programme essays are excluded as we expect postgraduates to aim directly at journal articles

SPATIAL TRANSFORMATION PATTERN DUE TO COMMERCIAL ACTIVITY IN KAMPONG HOUSE

ABSTRACT Kampung houses are houses in kampung area of the city. Kampung House oftenly transformed into others use as urban dynamics. One of the transfomation is related to the commercial activities addition by the house owner. It make house with full private space become into mixused house with more public spaces or completely changed into full public commercial building. This study investigate the spatial transformation pattern of the kampung houses due to their commercial activities addition. Site observations, interviews and questionnaires were performed to study the spatial transformation. This study found that in kampung houses, the spatial transformation pattern was depend on type of commercial activities and owner perceptions, and there are several steps of the spatial transformation related the commercial activity addition. Keywords: spatial transformation pattern; commercial activity; owner perception, kampung house; adaptabilit

2011, UMaine News Press Releases

This is a catalog of press releases put out by the University of Maine Division of Marketing and Communications between January 3, 2011 and December 30, 2011

Rules for Growth: Promoting Innovation and Growth Through Legal Reform

The United States economy is struggling to recover from its worst economic downturn since the Great Depression. After several huge doses of conventional macroeconomic stimulus - deficit-spending and monetary stimulus - policymakers are understandably eager to find innovative no-cost ways of sustaining growth both in the short and long runs. In response to this challenge, the Kauffman Foundation convened a number of America’s leading legal scholars and social scientists during the summer of 2010 to present and discuss their ideas for changing legal rules and policies to promote innovation and accelerate U.S. economic growth. This meeting led to the publication of Rules for Growth: Promoting Innovation and Growth Through Legal Reform, a comprehensive and groundbreaking volume of essays prescribing a new set of growth-promoting policies for policymakers, legal scholars, economists, and business men and women. Some of the top Rules include: • Reforming U.S. immigration laws so that more high-skilled immigrants can launch businesses in the United States. • Improving university technology licensing practices so university-generated innovation is more quickly and efficiently commercialized. • Moving away from taxes on income that penalize risk-taking, innovation, and employment while shifting toward a more consumption-based tax system that encourages saving that funds investment. In addition, the research tax credit should be redesigned and made permanent. • Overhauling local zoning rules to facilitate the formation of innovative companies. • Urging judges to take a more expansive view of flexible business contracts that are increasingly used by innovative firms. • Urging antitrust enforcers and courts to define markets more in global terms to reflect contemporary realities, resist antitrust enforcement from countries with less sound antitrust regimes, and prohibit industry trade protection and subsidies. • Reforming the intellectual property system to allow for a post-grant opposition process and address the large patent application backlog by allowing applicants to pay for more rapid patent reviews. • Authorizing corporate entities to form digitally and use software as a means for setting out agreements and bylaws governing corporate activities. The collective essays in the book propose a new way of thinking about the legal system that should be of interest to policymakers and academic scholars alike. Moreover, the ideas presented here, if embodied in law, would augment a sustained increase in U.S. economic growth, improving living standards for U.S. residents and for many in the rest of the world