Have a Conversation

The Texas Orato

A Survey Of IPv6 Address Usage In The Public Domain Name System

The IPv6 protocol has been slowly increasing in use on the Internet. The main reason for the development of the protocol is that the address space provided by IPv4 is nearing exhaustion. The pool of addresses provided by IPv6 is 296 times larger than IPv4, and should be sufficient to provide an address for every device for the foreseeable future. Another potential advantage of this significantly large address space is the use of randomly assigned addresses as a security barrier as part of a defence in depth strategy. This research examined the addresses allocated by those implementing IPv6 to determine what method or pattern of allocation was being used by adopters of the protocol. This examination was done through the use of DNS queries of the AAAA IPv6 host record using public DNS servers. It was observed that 55.84% of IPv6 addresses were in the range of 0 to (232 − 1). For those addresses with unique interface identifier (IID) portions, a nearly equal number of sequential and random IIDs were observed. Hong Kong and Germany were found to have the greatest number of IPv6 addresses. These results suggest that adopters are allocating most addresses sequentially, meaning that no security advantage is being obtained. It is unclear as to whether this is through design or the following of accepted practice. Future research will continue to survey the IPv6 address space to determine whether the patterns observed here remain constant

A Threat to Cyber Resilience : A Malware Rebirthing Botnet

This paper presents a threat to cyber resilience in the form of a conceptual model of a malware rebirthing botnet which can be used in a variety of scenarios. It can be used to collect existing malware and rebirth it with new functionality and signatures that will avoid detection by AV software and hinder analysis. The botnet can then use the customized malware to target an organization with an orchestrated attack from the member machines in the botnet for a variety of malicious purposes, including information warfare applications. Alternatively, it can also be used to inject known malware signatures into otherwise non malicious code and traffic to overloading the sensors and processing systems employed by intrusion detection and prevention systems to create a denial of confidence of the sensors and detection systems. This could be used as a force multiplier in asymmetric warfare applications to create confusion and distraction whilst attacks are made on other defensive fronts

Issues common to Australian critical infrastructure providers scada networks discovered through computer and network vulnerability analysis

This paper reports on generic issues discovered as a result of conducting computer and network vulnerability assessments (CNVA) on Australian critical infrastructure providers. Generic issues discovered included policy, governance, IT specific such as segregation, patching and updating. Physical security was also lacking in some cases. Another issue was that previous security audits had failed to identify any of these issues. Of major concern is that despite education and awareness programs, and a body of knowledge referring to these issues, they are still occurring. It may be necessary for the federal government to force organisations to undergo computer and network vulnerability assessment from recognised experts on a regular basis

Oops they did it again: The 2007 Australian study of remnant data contained on 2nd hand hard disks

The 2007 study used a biased selection process where the primary focus was the purchase of high-speed SCSI drives and drive packs, in addition 2.5 inch laptop drives were targeted. Conventional IDE based hard drives were also examined in the study. A total of 84 drives were examined this year, 23 yielded data that represented significant and in some cases profound exposure if data. Encouragingly more hard disks were erased in this study than in previous studies. However, there is still a significant gap in erasure procedures in organisations, which is particularly concerning given that the drives were from large corporations

Growth is Failing the Poor: The Unbalanced Distribution of the Benefits and Costs of Global Economic Growth

During 1990-2001, only 0.6 per cent of additional global income per capita contributed to reducing poverty below the $1-a-day line, down from 2.2 per cent during 1981-1990, and barely half the poor’s share of global income. Coupled with the constraints on global growth associated with climate change, and the disproportionately adverse net impact of climate change on the poor, this casts serious doubt on the dominant view that global growth should be the primary means of poverty reduction. Rather than growth, policies and the global economic system should focus directly on achieving social and environmental objectives.Economic growth, income distribution, world inequality, poverty, environment, climate change

Understanding the vulnerabilities in Wi-Fi and the impact on its use in CCTV systems

Modern surveillance devices are increasingly being taken off private networks and placed onto networks connected via gateway to the Internet or into Wi-Fi based local area wireless networks (LAWN). The devices are also increasingly using IPv4 and IPv6 network stacks and some form of embedded processing or compute built in. Additionally, some specialist devices are using assistive technologies such as GPS or A-GPS. This paper explored the issues with use of the technologies in a networked environment, both wireless and internetworked. Analysis of these systems shows that the use of IP based CCTV systems carries greater risk than traditional CCTV systems, primarily due to the exposure to IP based vulnerabilities. Furthermore, Wi-Fi based IP CCTV systems are additionally susceptible to remote, physical denial of service attacks due to the broadcast nature of wireless communication systems. Interception of traffic is possible with IP based systems, and again, Wi-Fi IP based CCTV systems are more susceptible due to protocol vulnerabilities and lack of processing power. The paper concludes that more research is needed in this area to identify and classify generic vulnerabilities that these systems are vulnerable to, and to present a framework which can be used to mitigate the risk of adopting these systems

An iron shuttle for deepwater silica in Late Archean and early Paleoproterozoic iron formation

Iron formations are typically thinly bedded or laminated sedimentary rocks containing 15% or more of iron and a large proportion of silica (commonly > 40%). In the ca. 2590-2460 Ma Campbellrand-Kuruman Complex, Transvaal Supergroup, South Africa, iron formation occurs as a sediment-starved deepwater facies distal to carbonates and shales. Iron minerals, primarily siderite, define the lamination. The silica primarily occurs as thin beds and nodules of diagenetic chert (now microcrystalline quartz), filling pore space and replacing iron formation minerals and co-occurring deepwater lithologies. Mechanisms proposed to explain precipitation of the iron component of iron formation include photosynthetic oxygen production, anoxygenic photosynthesis, abiotic photochemistry, and chemoautotrophy using Fe(II) as an electron donor. The origin and mechanism of silica precipitation in these deposits have received less attention. Here we present a conceptual model of iron formation that offers insight into the deposition of silica. The model hinges on the proclivity of dissolved silica to adsorb onto the hydrous surfaces of ferric oxides. Soluble ferrous iron is oxidized in the surface ocean to form ferric hydroxides, which precipitate. Fe(OH)_3 binds silica and sinks from the surface ocean along with organic matter, shuttling silica to basinal waters and sediments. Fe(III) respiration in the sediments returns the majority of iron to the water column but also generates considerable alkalinity in pore waters, driving precipitation of siderite from Fe2+ and respiration-influenced CO2. Silica liberated during iron reduction becomes concentrated in pore fluids and is ultimately precipitated as diagenetic mineral phases. This model explains many of the mineralogical, textural, and environmental features of Late Archean and earliest Paleo-proterozoic iron formation