Search CORE

64,739 research outputs found

Towards Security Goals in Summative E-Assessment Security

Author: Apampa K.M
Argles D
Wills G.B
Publication venue
Publication date: 01/11/2009
Field of study

The general security goals of a computer system are known to include confidentiality, integrity and availability (C-I-A) which prevent critical assets from potential threats. The C-I-A security goals are well researched areas; however they may be insufficient to address all the needs of the summative e-assessment. In this paper, we do not discard the fundamental C-I-A security goals; rather we define security goals which are specific to summative e-assessment security

Southampton (e-Prints Soton)

Crossref

Towards Security Requirements in Online Summative Assessments

Author: Apampa K.M
Argles D
Wills G.B
Publication venue
Publication date: 26/10/2009
Field of study

Confidentiality, integrity and availability (C-I-A) are the security requirements fundamental to any computer system. Similarly, the hardware, software and data are important critical assets. These two components of a computer security framework are entwined; such that a compromise in the C-I-A requirements may lead to a compromise of the critical assets. The C-I-A requirements and the critical assets of a computer system are well researched areas; however they may be insufficient to define the needs of a summative e-assessment system. In this paper, we do not discard the existing components; rather we propose security requirements and related components that are specific to summative e-assessment systems

Southampton (e-Prints Soton)

Risks and remedies in e-learning system

Author: Barik Nikhilesh
Karforma Sunil
Publication venue
Publication date: 31/01/2012
Field of study

One of the most effective applications of Information and Communication Technology (ICT) is the emergence of E-Learning. Considering the importance and need of E-Learning, recent years have seen a drastic change of learning methodologies in Higher Education. Undoubtedly, the three main entities of E-Learning system can be considered as Student, Teacher & Controlling Authority and there will be different level, but a good E-Learning system needs total integrity among all entities in every level. Apart from integrity enforcement, security enforcement in the whole system is the other crucial way to organize the it. As internet is the backbone of the entire system which is inherently insecure, during transaction of message in E-Learning system, hackers attack by utilising different loopholes of technology. So different security measures are required to be imposed on the system. In this paper, emphasis is given on different risks called e-risks and their remedies called e-remedies to build trust in the minds of all participants of E-Learning system

arXiv.org e-Print Archive

ZENODO

Recommended from our members

Security-Informed Safety: Supporting Stakeholders with Codes of Practice

Author: Bishop P. G.
Bloomfield R. E.
Butler E.
Stroud R.
Publication venue: 'Institute of Electrical and Electronics Engineers (IEEE)'
Publication date: 01/01/2018
Field of study

Codes of practice provide principles and guidance on how organizations can incorporate security considerations into their safety engineering lifecycle and become more security minded

City Research Online

Crossref

Advanced Cloud Privacy Threat Modeling

Author: Gholami Ali
Laure Erwin
Publication venue: 'Academy and Industry Research Collaboration Center (AIRCC)'
Publication date: 07/01/2016
Field of study

Privacy-preservation for sensitive data has become a challenging issue in cloud computing. Threat modeling as a part of requirements engineering in secure software development provides a structured approach for identifying attacks and proposing countermeasures against the exploitation of vulnerabilities in a system . This paper describes an extension of Cloud Privacy Threat Modeling (CPTM) methodology for privacy threat modeling in relation to processing sensitive data in cloud computing environments. It describes the modeling methodology that involved applying Method Engineering to specify characteristics of a cloud privacy threat modeling methodology, different steps in the proposed methodology and corresponding products. We believe that the extended methodology facilitates the application of a privacy-preserving cloud software development approach from requirements engineering to design

arXiv.org e-Print Archive

Crossref

The future of Cybersecurity in Italy: Strategic focus area

Author: Anglano C.
Aniello L.
Antinori A.
Armando A.
Aversa R.
Baldi Marco
Baldoni R.
Barili A.
Bartoletti M.
Bellini M.
Bergadano F.
Bernardeschi C.
Bianchi E.
Biancotti C.
Bistarelli S.
Blefari Melazzi N.
Boetti M.
Bondavalli A.
Bonomi .
Buccafurri F.
Cambiaso E.
Caputo B.
Carminati B.
Cataliotti F. S.
Catarci T.
Ceccarelli A.
Cesa Bianchi N.
Chiaraluce F.
Colajanni M.
Conti M.
Conti M.
Coppolino L.
Costa G.
Costamagna V.
Cotroneo D.
Crispo B.
Cucchiara R.
Damiani E.
De Nicola R.
De Nicola R.
De Santis A.
Degiovanni I. P.
Demetrescu C.
Di Battista G.
Di Corinto A.
Di Luna A.
Di Martino B.
Di Natale G.
Dini G.
D’Antonio S.
Evangelisti M.
Falcinelli D.
Ferretti M.
Ficco M.
Figà G.
Flocchini P.
Flottes M.
Focardi R.
Franchina . Furfaro
Girdinio P.
Guida F.
Italiano G. F.
Lain D.
Laurenti N.
Lioy A.
Loreti M.
Malerba D.
Mancini L. V.
Marchetti Spaccamela A.
Marcialis G.
Margheri A.
Marrella A.
Martinelli F.
Martinelli M.
Martino L.
Massacci F.
Mayer M.
Mecella M.
Mensi M.
Merlo A.
Miculan M.
Montanari L.
Morana M.
Mosco G. D.
Mostarda L.
Murino V.
Nardi D.
Navigli R.
Palazzi A.
Palmieri F.
Panetta I. C.
Passarella A.
Pellegrini A.
Pellegrino G.
Pelosi G.
Pirlo G.
Piuri V.
Pizzonia M.
Pogliani M.
Polino M.
Pontil M.
Prinetto P.
Prinetto P.
Quaglia F.
Quattrociocchi W.
Querzoni L.
Rak M.
Ranise S.
Ricci E.
Rossi L.
Rota P.
Russo L. O.
Samarati P.
Santoro N.
Santucci B.
Sassone V.
Scala A.
Scotti F.
Servida A.
Spagnoletti P.
Spalazzi L.
Spidalieri F.
Spoto A.
Squarcina M.
Stefanelli S.
Vecchio A.
Venticinque S.
Villoresi P.
Visaggio A.
Vitaletti A.
Zanero S.
Publication venue
Publication date: 01/01/2018
Field of study

This volume has been created as a continuation of the previous one, with the aim of outlining a set of focus areas and actions that the Italian Nation research community considers essential. The book touches many aspects of cyber security, ranging from the definition of the infrastructure and controls needed to organize cyberdefence to the actions and technologies to be developed to be better protected, from the identification of the main technologies to be defended to the proposal of a set of horizontal actions for training, awareness raising, and risk management

Archivio della ricerca- Università di Roma La Sapienza

Autonomic computing meets SCADA security

Author: Nazir S
Nazir S
Patel D.
Patel D.
Patel S.
Patel S.
Publication venue: 'Institute of Electrical and Electronics Engineers (IEEE)'
Publication date: 01/01/2017
Field of study

© 2017 IEEE. National assets such as transportation networks, large manufacturing, business and health facilities, power generation, and distribution networks are critical infrastructures. The cyber threats to these infrastructures have increasingly become more sophisticated, extensive and numerous. Cyber security conventional measures have proved useful in the past but increasing sophistication of attacks dictates the need for newer measures. The autonomic computing paradigm mimics the autonomic nervous system and is promising to meet the latest challenges in the cyber threat landscape. This paper provides a brief review of autonomic computing applications for SCADA systems and proposes architecture for cyber security

LSBU Research Open

ResearchOnline@GCU