An initial insight into Information Security Risk Assessment practices

Much of the debate surrounding risk management in information security (InfoSec) has been at the academic level, where the question of how practitioners view predominant issues is an essential element often left unexplored. Thus, this article represents an initial insight into how the InfoSec risk professionals see the InfoSec risk assessment (ISRA) field. We present the results of a 46-participant study where have gathered data regarding known issues in ISRA. The survey design was such that we collected both qualitative and quantitative data for analysis. One of the key contributions from the study is knowledge regarding how to handle risks at different organizational tiers, together with an insight into key roles and knowledge needed to conduct risk assessments. Also, we document several issues concerning the application of qualitative and quantitative methods, together with drawbacks and advantages. The findings of the analysis provides incentives to strengthen the research and scientific work for future research in InfoSec management

Scientific History of Incipit in the period 2010-2016

Historial de la actividad científica y técnica del Instituto de Ciencias del Patrimonio (Incipit) del CSIC, basado en Santiago de Compostela, desde su fecha de creación (2010) hasta el año 2016. Se presentan la misión y las líneas de investigación del Incipit, centradas principalmente en el estudio de los procesos de patrimonialización y de valorización social del patrimonio cultural realizadas con una perspectiva transdisciplinar. Se relacionan las publicaciones, proyectos de investigación, actividades de ciencia pública, eventos de comunicación y productos de divulgación que su personal investigador ha producido a lo largo de estos años.General introduction to the Incipit. Presentation of the Research Line: Cultural Heritage Studies: Sub-Theme: Landscape Archaeology and Cultural Landscapes, Sub-theme: Heritagization Processes: Memory, Power and Ethnicity, Sub-theme: Socioeconomics of Cultural Heritage, Sub-theme: Archaeology of the Contemporary Past, Sub-theme: Material culture and formalization processes of cultural heritage. Scientific Contributions. Transfer of Knowledge. International Activities. Other Activities and Results. Scientific DisseminationN

Analysis and Design of Privacy-Enhancing Information Sharing Systems

Recent technological advancements have enabled the collection of large amounts of personal data of individuals at an ever-increasing rate. Service providers, organisations and governments can collect or otherwise acquire rich information about individuals’ everyday lives and habits from big data-silos, enabling profiling and micro-targeting such as in political elections. Therefore, it is important to analyse systems that allow the collection and information sharing between users and to design secure and privacy enhancing solutions. This thesis contains two parts. The aim of the first part is to investigate in detail the effects of the collateral information collection of third-party applications on Facebook. The aim of the second part is to analyse in detail the security and privacy issues of car sharing systems and to design a secure and privacy-preserving solution. In the first part, we present a detailed multi-faceted study on the collateral information collection privacy issues of Facebook applications; providers of third-party applications on Facebook exploit the interdependency between users and their friends. The goal is to (i) study the existence of the problem, (ii) investigate whether Facebook users are concerned about the issue, quantify its (iii) likelihood and (iv) impact of collateral information collection affecting users, (v) identify whether collateral information collection is an issue for the protection of the personal data of Facebook users under the legal framework, and (vi) we propose solutions that aim to solve the problem of collateral information collection. In order to investigate the views of the users, we designed a questionnaire and collected the responses of participants. Employing real data from the Facebook third-party applications ecosystem, we compute the likelihood of collateral information collection affecting users and quantify its significance evaluating the amount of attributes collected by such applications. To investigate whether collateral information collection is an issue in terms of users’ privacy we analysed the legal framework in light of the General Data Protection Regulation. To provide countermeasures, we propose a privacy dashboard extension that implements privacy scoring computations to enhance transparency towards collateral information collection

European Islands Between Isolated and Interconnected Life Worlds: Interdisciplinary Long-Term Perspectives

Island studies have seen an upswing in recent years. Whereas in the past, research was largely oriented at external perspectives and perceptions, at present we witness an increasing interest in viewpoints internal to the island societies examined (with an ‘inside-out’ approach). This volume contributes to such efforts with transdisciplinary and methodological reflections from the fields of archaeology, ethnology, geography, history, philology, and literary studies. Focused on the interplay between geographic isolation and commercial as well as cultural connection, the studies here assembled investigate the role of the knowledge, resources, and practices of islanders in processes of crisis management, identity formation and transformation

Privacy in trajectory micro-data publishing : a survey

We survey the literature on the privacy of trajectory micro-data, i.e., spatiotemporal information about the mobility of individuals, whose collection is becoming increasingly simple and frequent thanks to emerging information and communication technologies. The focus of our review is on privacy-preserving data publishing (PPDP), i.e., the publication of databases of trajectory micro-data that preserve the privacy of the monitored individuals. We classify and present the literature of attacks against trajectory micro-data, as well as solutions proposed to date for protecting databases from such attacks. This paper serves as an introductory reading on a critical subject in an era of growing awareness about privacy risks connected to digital services, and provides insights into open problems and future directions for research.Comment: Accepted for publication at Transactions for Data Privac

Privacy in trajectory micro-data publishing: a survey

International audienceWe survey the literature on the privacy of trajectory micro-data, i.e., spatiotemporal information about the mobility of individuals, whose collection is becoming increasingly simple and frequent thanks to emerging information and communication technologies. The focus of our review is on privacy-preserving data publishing (PPDP), i.e., the publication of databases of trajectory micro-data that preserve the privacy of the monitored individuals. We classify and present the literature of attacks against trajectory micro-data, as well as solutions proposed to date for protecting databases from such attacks. This paper serves as an introductory reading on a critical subject in an era of growing awareness about privacy risks connected to digital services, and provides insights into open problems and future directions for research

Empires of the Sea

Empires of the Sea brings together studies of maritime empires from the Bronze Age to the Eighteenth Century. The volume develops the category of maritime empire as a specific type of empire in both European and ‘non-western’ history.; Readership: Anyone concerned with World History, and specifically those interested in maritime history and the comparative study of empires

Empires of the Sea

Empires of the Sea brings together studies of maritime empires from the Bronze Age to the Eighteenth Century. The volume develops the category of maritime empire as a specific type of empire in both European and ‘non-western’ history.; Readership: Anyone concerned with World History, and specifically those interested in maritime history and the comparative study of empires

Estudo de segurança nos principais protocolos da Internet das Coisas

Monografia (graduação)—Universidade de Brasília, Instituto de Ciências Exatas, Departamento de Ciência da Computação, 2016.A partir de uma observação introdutória das questões atuais de segurança e privacidade na Internet das Coisas (IdC), os principais protocolos que compõem este paradigma são estudados, tendo-se em vista seus mecanismos de segurança e vulnerabilidades. O estudo traz, portanto, uma revisão de tais protocolos, propiciando uma análise do estado atual da segurança dos mesmos, que é, ao final, resumido em tabelas explicativas. Espera-se futuramente que o estudo siga atualizado com novos relatos de vulnerabilidades e com mais protocolos que possuam relevância, de modo a mantê-lo como referência por indivíduos envolvidos com o desenvolvimento da IdC.From an introductory observation of the central security and privacy issues in the Internet of Things, the main protocols in this paradigm are studied, taking in consideration their security mechanisms and vulnerabilities. The study continues with a revision of such protocols, providing a brief analysis of each protocol’s state in terms of security and, at the end, a summary of what was presented in explanatory tables. In the future, the study shall be updated with new reported vulnerabilities and other protocols that might acquire relevance in the IoT scenario, in such a way that the produced material remains updated as a reference for those involved with IoT

Proceedings of the 23rd International Congress of Byzantine Studies : Plenary Papers

Implementing the decision of the General Assembly of the AIE B (Athens 2013), the Organizing Committee of the 23rd International Congress of Byzantine Studies (Belgrade August 2016) has introduced certain changes which seemed necessary with regard to the programme and format of the plenary sessions. The aim of these changes was to find room for discussion during the sessions themselves. Each session now includes three lectures on a common topic and is moderated by a chairperson whose main task will be to facilitate the discussion among the speakers as well as between them and the public. The chosen topics were selected as representative of certain subfields of particular interest within the present state of Byzantine studies. The last session is devoted to the future of Byzantine studies, characterized by a new dynamics in terms both of expansion and of the techniques of research. The present volume contains twenty papers to be given at the plenary sessions, together with the respective introductions and conclusions. In the introduction to each session, the moderators offer their view of the current state of the field, thus providing the necessary scholarly background for the following lectures and the ensuing discussion. The topics selected belong to different subfields: hagiography, the archeology of early Byzantine towns, the study of religious practices and the senses, the inquiry into the political and ideological influence of the idea of Romanitas among the Slavs, the study of Byzantine historical writing. All the papers in this volume focus on the new developments in the field, the recent discoveries and innovative methodological trends. The hope of the Organizing Committee is that the papers reflect the sum of our present capacity to face the challenge of the new approaches, whether they mainly submit traditional ideas to a searching re-examination or, alternatively, concentrate on the opening of new areas for research. The official motto of the 23rd International Congress of Byzantine Studies, Byzantium – a world of changes, acts as a sort of fil rouge to the present volume. By choosing the old dictum of Maximos Planoudes, we wanted to bring into focus both the ever changing nature of the scholarly inquiry into the Byzantine world and the inexhaustible interest of that world itself