Determining the effectiveness of deceptive honeynets

Over the last few years, incidents of network based intrusions have rapidly increased, due to the increase and popularity of various attack tools easily available for download from the Internet. Due to this increase in intrusions, the concept of a network defence known as Honeypots developed. These honeypots are designed to ensnare attackers and monitor their activities. Honeypots use the principles of deception such as masking, mimicry, decoying, inventing, repackaging and dazzling to deceive attackers. Deception exists in various forms. It is a tactic to survive and defeat the motives of attackers. Due to its presence in the nature, deception has been widely used during wars and now in Information Systems. This thesis considers the current state of honeypot technology as well as describes the framework of how to improve the effectiveness of honeypots through the effective use of deception. In this research, a legitimate corporate deceptive network is created using Honeyd (a type of honeypot) which is attacked and improved using empirical learning approach. The data collected during the attacking exercise were analysed, using various measures, to determine the effectiveness of the deception in the honeypot network created using honeyd. The results indicate that the attackers were deceived into believing the honeynet was a real network which instead was a deceptive network

2020 media futures trends package

2020 Media Futures is a mul6-­‐industry strategic foresight project designed to understand and envision what media may look like in the year 2020; what kind of cross-­‐plaAorm Internet environment may shape our media and entertainment in the coming decade; and how Ontario firms take ac6on today toward capturing and maintaining posi6ons of na6onal and interna6onal leadership. The project asks: In the face of sweeping and disrupDve changes driven by the Internet, how can we help companies in the book, film, interacDve, magazine, music and television industries – Ontario’s CreaDve and Entertainment Cluster – to beNer idenDfy emerging opportuniDes, create more resilient strategic plans and partnerships, boost innovaDon, and compete in increasingly demanding global markets? This document is a product of our ‘horizon scanning’ process. Trends and Countertrends represent direcDonal paNerns in data, a rising Dde of signals, in which, for example, a criDcal mass of headlines about people using Facebook to call for help in emergency situaDons points to a larger trend regarding the increasing mission-­‐criDcal importance of social networks. To date we have idenDfied more than sixty trends at the project website: hNp://2020mediafutures.ca/Trend

Virtual network function development for NG-PON Access Network Architecture

Dissertação de mestrado em Engenharia de Redes e Serviços TelemáticosThe access to Internet services on a large scale, high throughput and low latency has grown at a very high pace over time, with a growing demand for media content and applications increasingly oriented towards data consumption. This fact about the use of data at the edge of the network requires the Central Offices (CO) of telecommunication providers, to be pre pared to absorb these demands. COs generally offer data from various access methods, such as Passive Optical Network (PON) technologies, mobile networks, copper wired and oth ers. For each of these technologies there may be different manufacturers that support only their respective hardware and software solutions, although they all share different network resources and have management, configuration and monitoring tools (Fault, Configuration, Accounting, Performance, and Security management - FCAPS) similar, but being distinct and isolated from each other, which produces huge investment in Capital Expenditure (CAPEX) and Operational Expenditure (OPEX) and can cause barriers to innovation. Such panora mas forced the development of more flexible, scalable solutions that share platforms and net work architectures that can meet this need and enable the evolution of networks. It is then proposed the architecture of Software-Defined Network (SDN) which has in its proposal to abstract the control plane from the data plane, in addition to the virtualization of several Net work Function Virtualization (NFV). The SDN architecture allows APIs and protocols such as Openflow, NETCONF / YANG, RESTCONF, gRPC and others to be used so that there is communication between the various hardware and software elements that compose the net work and consume network resources, such as services AAA, DHCP, routing, orchestration, management or various applications that may exist in this context. This work then aims at the development of a virtualized network function, namely a VNF in the context of network security to be integrated as a component of an architecture guided by the SDN paradigm applied to broadband networks, and also adherent to the architecture OB-BAA promoted by the Broadband Forum. Such OB-BAA architecture fits into the initia tive to modernize the Information Technology (IT) components of broadband networks, more specifically the Central Offices. With such development, it was intended to explore the con cepts of network security, such as the IEEE 802.1X protocol applied in NG-PON networks for authentication and authorization of new network equipment. To achieve this goal, the development of the applications was based on the Golang language combined with gRPC programmable interfaces for communication between the various elements of the architec ture. Network emulators were initially used, and then the components were ”containerized” and inserted in the Docker and Kubernetes virtualization frameworks. Finally, performance metrics were analyzed in the usage tests, namely computational resource usage metrics (CPU, memory and network I/O), in addition to the execution time of several processes performed by the developed applications.O acesso aos serviços de Internet em larga escala, alto débito e baixa latência têm crescido em um ritmo bastante elevado ao longo dos tempos, com uma demanda crescente por conteúdos de media e aplicações cada vez mais orientadas ao consumo de dados. Tal fato acerca da uti lização de dados na periferia da rede, obriga a que os Central Offices (CO) dos provedores de telecomunicações estejam preparados para absorver estas demandas. Os CO geralmente re cebem dados de diversos métodos de acesso, como tecnologias Passive Optical Network (PON), redes móveis, cabladas em cobre, entre outros. Para cada uma destas tecnologias pode haver diferentes fabricantes que suportam somente suas respetivas soluções de hardware e software, apesar de todas compartilharem diversos recursos de rede e possuírem ferramentas de gestão, configuração e monitoração (Fault-management, Configuration, Accounting, Performance e Segurança - FCAPS) similares, mas serem distintas e isoladas entre si, o que se traduz em um enorme investimento em Capital Expenditure (CAPEX) e Operational Expenditure (OPEX) e pode causar barreiras à inovação. Tais panoramas forçaram o desenvolvimento de soluções mais flexíveis, escaláveis e que compartilhem plataformas e arquiteturas de redes que pos sam suprir tal necessidade e possibilitar a evolução das redes. Propõe-se então a arquitetura de redes definidas por software (Software-Defined Network - SDN) que tem em sua proposta abstrair o plano de controle do plano de dados, além da virtualização de diversas funções de rede (Network Function Virtualization - NFV). A arquitetura SDN possibilita que API’s e pro tocolos como Openflow, NETCONF/YANG, RESTCONF, gRPC e outros, sejam utilizados para que haja comunicação entre os diversos elementos de hardware e software que estejam a compor a rede e a consumir recursos de redes, como serviços de AAA, DHCP, roteamento, orquestração, gestão ou diversas outras aplicações que possam existir neste contexto. Este trabalho visa então o desenvolvimento de uma função de rede virtualizada nomeada mente uma (Virtual Network Function - VNF) no âmbito de segurança de redes a ser integrada como um componente de uma arquitetura orientada pelo paradigma de SDN aplicado a re des de banda larga, e aderente também à arquitetura OB-BAA promovida pelo Broadband Fo rum. Tal arquitetura OB-BAA se enquadra na iniciativa de modernização dos componentes de Tecnologia da Informação (TI) das redes de banda larga, mais especificamente dos Cen tral Offices. Com tal desenvolvimento pretende-se explorar conceitos de segurança de redes, como o protocolo IEEE 802.1X aplicado em redes NG-PON para autenticação e autorização de novos equipamentos de rede. Para atingir tal objetivo, utilizou-se desenvolvimento de aplicações baseadas na linguagem Golang aliado com interfaces programáveis gRPC para comunicação entre os diversos elementos da arquitetura. Para emular tais componentes, utilizou-se inicialmente emuladores de rede, e em um segundo momento os componentes foram ”containerizados” e inseridos nos frameworks de virtualização Docker e Kubernetes.Por fim, foram analisadas métricas de desempenho nos testes executados, nomeadamente métricas de utilização de recursos computacionais (CPU, memória e tráfego de rede), além do tempo de execução de diversos processos desempenhados pelas aplicações desenvolvidas

Design, development, and validation of a remotely reconfigurable vehicle telemetry system for consumer and government applications

Thesis (S.B.)--Massachusetts Institute of Technology, Dept. of Mechanical Engineering, 2011.This electronic version was submitted by the student author. The certified thesis is available in the Institute Archives and Special Collections.Cataloged from student submitted PDF version of thesis.Includes bibliographical references (p. 67-68).This thesis explores the design and development of a cost-effective, easy-to-use system for remotely monitoring vehicle performance and drivers' habits, with the aim of collecting data for vehicle characterization and traffic shaping. Vehicular congestion and concerns over fuel reserves, pollution, and carbon emissions have recently emerged as prominent sociopolitical concerns. These problems are formidable, but could be addressed more fruitfully with better information about vehicles and drivers habits, leading to policies such as vehicle-specific congestion charging or an odometer-based road tax. Despite the proliferation of sensors in cars, data is often hidden due to the antiquated nature of the federally-required On-Board Diagnostics (OBD). Systems to log and process such data exist, but no well known reconfigurable systems augment OBD with additional sensor data and transmit it over a cellular network. This thesis proposes a system wherein vehicles become distributed sensors, each transmitting a rich supply of information. The standardization of OBD and decreasing cost of bandwidth make now an opportune time to develop a real-time logging system. Inexpensive processors make it possible to provide privacy through onboard calculation, obfuscating much personally-identifiable data. This document discusses the planning process, experimental configurations of hardware and software, results, and conclusions associated with the development of a cellular diagnostic system capable of supporting an "app" model for information feedback. I present a Bluetooth-OBD logger, a cellular logger, and a web interface capable of representing live and historical data from vehicles, including example applications for calculating congestion pricing. This project proves the feasibility of capturing data using a remotely reconfigurable controller area network (CAN) to general packet radio service (GPRS) interpreter, visualizing the information in real-time, and writing applications to make use of the incoming data. The hardware and software were proven successful in meeting the goals set for the project. The hardware proved robust, gathering data without issue for hundreds of miles. The sample data demonstrated low bandwidth use, identified network weaknesses, and pointed out issues with the currently-legislated OBD standard. This thesis closes by exploring future possibilities suggested by the development of this system, including wireless odometry and next-generation OBD.by Joshua Eric Siegel.S.B

Models of internet connectivity for secondary schools in the Grahamstown circuit

Information and Communication Technologies (ICTs) are becoming more pervasive in South African schools and are increasingly considered valuable tools in education, promoting the development of higher cognitive processes and allowing teachers and learners access to a plethora of information. This study investigates models of Internet connectivity for secondary schools in the Grahamstown Circuit. The various networking technologies currently available to South African schools, or likely to become available to South African schools in the future, are described along with the telecommunications legislation which governs their use in South Africa. Furthermore, current ICT in education projects taking place in South Africa are described together with current ICT in education policy in South Africa. This information forms the backdrop of a detailed schools survey that was conducted at all the 13 secondary schools in the Grahamstown Circuit and enriched with experimental work in the provision of metropolitan network links to selected schools, mostly via Wi-Fi. The result of the investigation is the proposal of a Grahamstown Circuit Metropolitan Education Network

Video Vortex reader : responses to Youtube

The Video Vortex Reader is the first collection of critical texts to deal with the rapidly emerging world of online video – from its explosive rise in 2005 with YouTube, to its future as a significant form of personal media. After years of talk about digital convergence and crossmedia platforms we now witness the merger of the Internet and television at a pace no-one predicted. These contributions from scholars, artists and curators evolved from the first two Video Vortex conferences in Brussels and Amsterdam in 2007 which focused on responses to YouTube, and address key issues around independent production and distribution of online video content. What does this new distribution platform mean for artists and activists? What are the alternatives

Application of Stable Isotopes and Tritium in Hydrology

This Special Issue “Applications of Stable Isotopes and Tritium in Hydrology” addresses the current state-of-the-art applications of stable isotopes and tritium in studies of hydrological process and the whole water cycle. The six scientific papers belonging to this SI show a wide variety of isotope applications in various studies performed locally or regionally, but the conclusions obtained may be valid worldwide. Precipitation, groundwater, and surface waters belong to classical water bodies, while evapotranspiration, effects of farming, and drip water in karst caves seldom present applications of water isotopes