47 research outputs found
Determining the effectiveness of deceptive honeynets
Over the last few years, incidents of network based intrusions have rapidly increased, due to the increase and popularity of various attack tools easily available for download from the Internet. Due to this increase in intrusions, the concept of a network defence known as Honeypots developed. These honeypots are designed to ensnare attackers and monitor their activities. Honeypots use the principles of deception such as masking, mimicry, decoying, inventing, repackaging and dazzling to deceive attackers. Deception exists in various forms. It is a tactic to survive and defeat the motives of attackers. Due to its presence in the nature, deception has been widely used during wars and now in Information Systems. This thesis considers the current state of honeypot technology as well as describes the framework of how to improve the effectiveness of honeypots through the effective use of deception. In this research, a legitimate corporate deceptive network is created using Honeyd (a type of honeypot) which is attacked and improved using empirical learning approach. The data collected during the attacking exercise were analysed, using various measures, to determine the effectiveness of the deception in the honeypot network created using honeyd. The results indicate that the attackers were deceived into believing the honeynet was a real network which instead was a deceptive network
2020 media futures trends package
2020
Media
Futures
is
a
mul6-‐industry
strategic
foresight
project
designed
to
understand
and
envision
what
media
may
look
like
in
the
year
2020;
what
kind
of
cross-‐plaAorm
Internet
environment
may
shape
our
media
and
entertainment
in
the
coming
decade;
and
how
Ontario
firms
take
ac6on
today
toward
capturing
and
maintaining
posi6ons
of
na6onal
and
interna6onal
leadership.
The
project
asks:
In
the
face
of
sweeping
and
disrupDve
changes
driven
by
the
Internet,
how
can
we
help
companies
in
the
book,
film,
interacDve,
magazine,
music
and
television
industries
–
Ontario’s
CreaDve
and
Entertainment
Cluster
–
to
beNer
idenDfy
emerging
opportuniDes,
create
more
resilient
strategic
plans
and
partnerships,
boost
innovaDon,
and
compete
in
increasingly
demanding
global
markets?
This
document
is
a
product
of
our
‘horizon
scanning’
process.
Trends
and
Countertrends
represent
direcDonal
paNerns
in
data,
a
rising
Dde
of
signals,
in
which,
for
example,
a
criDcal
mass
of
headlines
about
people
using
Facebook
to
call
for
help
in
emergency
situaDons
points
to
a
larger
trend
regarding
the
increasing
mission-‐criDcal
importance
of
social
networks.
To
date
we
have
idenDfied
more
than
sixty
trends
at
the
project
website:
hNp://2020mediafutures.ca/Trend
Virtual network function development for NG-PON Access Network Architecture
Dissertação de mestrado em Engenharia de Redes e Serviços TelemáticosThe access to Internet services on a large scale, high throughput and low latency has grown
at a very high pace over time, with a growing demand for media content and applications
increasingly oriented towards data consumption. This fact about the use of data at the edge
of the network requires the Central Offices (CO) of telecommunication providers, to be pre pared to absorb these demands. COs generally offer data from various access methods, such
as Passive Optical Network (PON) technologies, mobile networks, copper wired and oth ers. For each of these technologies there may be different manufacturers that support only
their respective hardware and software solutions, although they all share different network
resources and have management, configuration and monitoring tools (Fault, Configuration,
Accounting, Performance, and Security management - FCAPS) similar, but being distinct and
isolated from each other, which produces huge investment in Capital Expenditure (CAPEX)
and Operational Expenditure (OPEX) and can cause barriers to innovation. Such panora mas forced the development of more flexible, scalable solutions that share platforms and net work architectures that can meet this need and enable the evolution of networks. It is then
proposed the architecture of Software-Defined Network (SDN) which has in its proposal to
abstract the control plane from the data plane, in addition to the virtualization of several Net work Function Virtualization (NFV). The SDN architecture allows APIs and protocols such
as Openflow, NETCONF / YANG, RESTCONF, gRPC and others to be used so that there is
communication between the various hardware and software elements that compose the net work and consume network resources, such as services AAA, DHCP, routing, orchestration,
management or various applications that may exist in this context.
This work then aims at the development of a virtualized network function, namely a VNF
in the context of network security to be integrated as a component of an architecture guided
by the SDN paradigm applied to broadband networks, and also adherent to the architecture
OB-BAA promoted by the Broadband Forum. Such OB-BAA architecture fits into the initia tive to modernize the Information Technology (IT) components of broadband networks, more
specifically the Central Offices. With such development, it was intended to explore the con cepts of network security, such as the IEEE 802.1X protocol applied in NG-PON networks
for authentication and authorization of new network equipment. To achieve this goal, the
development of the applications was based on the Golang language combined with gRPC
programmable interfaces for communication between the various elements of the architec ture. Network emulators were initially used, and then the components were ”containerized”
and inserted in the Docker and Kubernetes virtualization frameworks. Finally, performance
metrics were analyzed in the usage tests, namely computational resource usage metrics (CPU,
memory and network I/O), in addition to the execution time of several processes performed
by the developed applications.O acesso aos serviços de Internet em larga escala, alto débito e baixa latência têm crescido em
um ritmo bastante elevado ao longo dos tempos, com uma demanda crescente por conteúdos
de media e aplicações cada vez mais orientadas ao consumo de dados. Tal fato acerca da uti lização de dados na periferia da rede, obriga a que os Central Offices (CO) dos provedores de
telecomunicações estejam preparados para absorver estas demandas. Os CO geralmente re cebem dados de diversos métodos de acesso, como tecnologias Passive Optical Network (PON),
redes móveis, cabladas em cobre, entre outros. Para cada uma destas tecnologias pode haver
diferentes fabricantes que suportam somente suas respetivas soluções de hardware e software,
apesar de todas compartilharem diversos recursos de rede e possuírem ferramentas de gestão,
configuração e monitoração (Fault-management, Configuration, Accounting, Performance e
Segurança - FCAPS) similares, mas serem distintas e isoladas entre si, o que se traduz em
um enorme investimento em Capital Expenditure (CAPEX) e Operational Expenditure (OPEX) e
pode causar barreiras à inovação. Tais panoramas forçaram o desenvolvimento de soluções
mais flexíveis, escaláveis e que compartilhem plataformas e arquiteturas de redes que pos sam suprir tal necessidade e possibilitar a evolução das redes. Propõe-se então a arquitetura
de redes definidas por software (Software-Defined Network - SDN) que tem em sua proposta
abstrair o plano de controle do plano de dados, além da virtualização de diversas funções de
rede (Network Function Virtualization - NFV). A arquitetura SDN possibilita que API’s e pro tocolos como Openflow, NETCONF/YANG, RESTCONF, gRPC e outros, sejam utilizados
para que haja comunicação entre os diversos elementos de hardware e software que estejam a
compor a rede e a consumir recursos de redes, como serviços de AAA, DHCP, roteamento,
orquestração, gestão ou diversas outras aplicações que possam existir neste contexto.
Este trabalho visa então o desenvolvimento de uma função de rede virtualizada nomeada mente uma (Virtual Network Function - VNF) no âmbito de segurança de redes a ser integrada
como um componente de uma arquitetura orientada pelo paradigma de SDN aplicado a re des de banda larga, e aderente também à arquitetura OB-BAA promovida pelo Broadband Fo rum. Tal arquitetura OB-BAA se enquadra na iniciativa de modernização dos componentes
de Tecnologia da Informação (TI) das redes de banda larga, mais especificamente dos Cen tral Offices. Com tal desenvolvimento pretende-se explorar conceitos de segurança de redes,
como o protocolo IEEE 802.1X aplicado em redes NG-PON para autenticação e autorização
de novos equipamentos de rede. Para atingir tal objetivo, utilizou-se desenvolvimento de
aplicações baseadas na linguagem Golang aliado com interfaces programáveis gRPC para
comunicação entre os diversos elementos da arquitetura. Para emular tais componentes,
utilizou-se inicialmente emuladores de rede, e em um segundo momento os componentes
foram ”containerizados” e inseridos nos frameworks de virtualização Docker e Kubernetes.Por fim, foram analisadas métricas de desempenho nos testes executados, nomeadamente
métricas de utilização de recursos computacionais (CPU, memória e tráfego de rede), além
do tempo de execução de diversos processos desempenhados pelas aplicações desenvolvidas
Design, development, and validation of a remotely reconfigurable vehicle telemetry system for consumer and government applications
Thesis (S.B.)--Massachusetts Institute of Technology, Dept. of Mechanical Engineering, 2011.This electronic version was submitted by the student author. The certified thesis is available in the Institute Archives and Special Collections.Cataloged from student submitted PDF version of thesis.Includes bibliographical references (p. 67-68).This thesis explores the design and development of a cost-effective, easy-to-use system for remotely monitoring vehicle performance and drivers' habits, with the aim of collecting data for vehicle characterization and traffic shaping. Vehicular congestion and concerns over fuel reserves, pollution, and carbon emissions have recently emerged as prominent sociopolitical concerns. These problems are formidable, but could be addressed more fruitfully with better information about vehicles and drivers habits, leading to policies such as vehicle-specific congestion charging or an odometer-based road tax. Despite the proliferation of sensors in cars, data is often hidden due to the antiquated nature of the federally-required On-Board Diagnostics (OBD). Systems to log and process such data exist, but no well known reconfigurable systems augment OBD with additional sensor data and transmit it over a cellular network. This thesis proposes a system wherein vehicles become distributed sensors, each transmitting a rich supply of information. The standardization of OBD and decreasing cost of bandwidth make now an opportune time to develop a real-time logging system. Inexpensive processors make it possible to provide privacy through onboard calculation, obfuscating much personally-identifiable data. This document discusses the planning process, experimental configurations of hardware and software, results, and conclusions associated with the development of a cellular diagnostic system capable of supporting an "app" model for information feedback. I present a Bluetooth-OBD logger, a cellular logger, and a web interface capable of representing live and historical data from vehicles, including example applications for calculating congestion pricing. This project proves the feasibility of capturing data using a remotely reconfigurable controller area network (CAN) to general packet radio service (GPRS) interpreter, visualizing the information in real-time, and writing applications to make use of the incoming data. The hardware and software were proven successful in meeting the goals set for the project. The hardware proved robust, gathering data without issue for hundreds of miles. The sample data demonstrated low bandwidth use, identified network weaknesses, and pointed out issues with the currently-legislated OBD standard. This thesis closes by exploring future possibilities suggested by the development of this system, including wireless odometry and next-generation OBD.by Joshua Eric Siegel.S.B
Models of internet connectivity for secondary schools in the Grahamstown circuit
Information and Communication Technologies (ICTs) are becoming more pervasive in South African schools and are increasingly considered valuable tools in education, promoting the development of higher cognitive processes and allowing teachers and learners access to a plethora of information. This study investigates models of Internet connectivity for secondary schools in the Grahamstown Circuit. The various networking technologies currently available to South African schools, or likely to become available to South African schools in the future, are described along with the telecommunications legislation which governs their use in South Africa. Furthermore, current ICT in education projects taking place in South Africa are described together with current ICT in education policy in South Africa. This information forms the backdrop of a detailed schools survey that was conducted at all the 13 secondary schools in the Grahamstown Circuit and enriched with experimental work in the provision of metropolitan network links to selected schools, mostly via Wi-Fi. The result of the investigation is the proposal of a Grahamstown Circuit Metropolitan Education Network
Video Vortex reader : responses to Youtube
The Video Vortex Reader is the first collection of critical texts to deal with the rapidly emerging world of online video – from its explosive rise in 2005 with YouTube, to its future as a significant form of personal media. After years of talk about digital convergence and crossmedia platforms we now witness the merger of the Internet and television at a pace no-one predicted. These contributions from scholars, artists and curators evolved from the first two Video Vortex conferences in Brussels and Amsterdam in 2007 which focused on responses to YouTube, and address key issues around independent production and distribution of online video content. What does this new distribution platform mean for artists and activists? What are the alternatives
Application of Stable Isotopes and Tritium in Hydrology
This Special Issue “Applications of Stable Isotopes and Tritium in Hydrology” addresses the current state-of-the-art applications of stable isotopes and tritium in studies of hydrological process and the whole water cycle. The six scientific papers belonging to this SI show a wide variety of isotope applications in various studies performed locally or regionally, but the conclusions obtained may be valid worldwide. Precipitation, groundwater, and surface waters belong to classical water bodies, while evapotranspiration, effects of farming, and drip water in karst caves seldom present applications of water isotopes