An Economic Study of the Effect of Android Platform Fragmentation on Security Updates

Vendors in the Android ecosystem typically customize their devices by modifying Android Open Source Project (AOSP) code, adding in-house developed proprietary software, and pre-installing third-party applications. However, research has documented how various security problems are associated with this customization process. We develop a model of the Android ecosystem utilizing the concepts of game theory and product differentiation to capture the competition involving two vendors customizing the AOSP platform. We show how the vendors are incentivized to differentiate their products from AOSP and from each other, and how prices are shaped through this differentiation process. We also consider two types of consumers: security-conscious consumers who understand and care about security, and na\"ive consumers who lack the ability to correctly evaluate security properties of vendor-supplied Android products or simply ignore security. It is evident that vendors shirk on security investments in the latter case. Regulators such as the U.S. Federal Trade Commission have sanctioned Android vendors for underinvestment in security, but the exact effects of these sanctions are difficult to disentangle with empirical data. Here, we model the impact of a regulator-imposed fine that incentivizes vendors to match a minimum security standard. Interestingly, we show how product prices will decrease for the same cost of customization in the presence of a fine, or a higher level of regulator-imposed minimum security.Comment: 22nd International Conference on Financial Cryptography and Data Security (FC 2018

Synthetic Data Generation and Defense in Depth Measurement of Web Applications

Measuring security controls across multiple layers of defense requires realistic data sets and repeatable experiments. However, data sets that are collected from real users often cannot be freely exchanged due to privacy and regulatory concerns. Synthetic datasets, which can be shared, have in the past had critical flaws or at best been one time collections of data focusing on a single layer or type of data. We present a framework for generating synthetic datasets with normal and attack data for web applications across multiple layers simultaneously. The framework is modular and designed for data to be easily recreated in order to vary parameters and allow for inline testing. We build a prototype data generator using the framework to generate nine datasets with data logged on four layers: network, file accesses, system calls, and database simultaneously. We then test nineteen security controls spanning all four layers to determine their sensitivity to dataset changes, compare performance even across layers, compare synthetic data to real production data, and calculate combined defense in depth performance of sets of controls

Nutritional status in Turkish cystic fibrosis patients

Digitalitzat per Artypla

Flame made ceria supported noble metal catalysts for efficient H₂ production via the water gas shift reaction

Rh/ceria catalysts were synthesized by flame spray pyrolysis for high temperature water gas shift (WGS) reactions. These catalysts show a high specific surface area due to a high degree of nanocrystallinity. X-ray absorption spectroscopy (XAS) unraveled the formation of small Rh particles under WGS reaction conditions. The catalytic activity was examined at atmospheric pressure by measuring CO conversion as a function of temperature. Some methane formation was observed above 310 °C

Systematic review of allelic exchange experiments aimed at identifying mutations that confer drug resistance in Mycobacterium tuberculosis

First published online: September 20, 2013BACKGROUND: Improving our understanding of the relationship between the genotype and the drug resistance phenotype of Mycobacterium tuberculosis will aid the development of more accurate molecular diagnostics for drug-resistant tuberculosis. Studies that use direct genetic manipulation to identify the mutations that cause M. tuberculosis drug resistance are superior to associational studies in elucidating an individual mutation's contribution to the drug resistance phenotype. METHODS: We systematically reviewed the literature for publications reporting allelic exchange experiments in any of the resistance-associated M. tuberculosis genes. We included studies that introduced single point mutations using specialized linkage transduction or site-directed/in vitro mutagenesis and documented a change in the resistance phenotype. RESULTS: We summarize evidence supporting the causal relationship of 54 different mutations in eight genes (katG, inhA, kasA, embB, embC, rpoB, gyrA and gyrB) and one intergenic region (furA-katG) with resistance to isoniazid, the rifamycins, ethambutol and fluoroquinolones. We observed a significant role for the strain genomic background in modulating the resistance phenotype of 21 of these mutations and found examples of where the same drug resistance mutations caused varying levels of resistance to different members of the same drug class. CONCLUSIONS: This systematic review highlights those mutations that have been shown to causally change phenotypic resistance in M. tuberculosis and brings attention to a notable lack of allelic exchange data for several of the genes known to be associated with drug resistance.This work was supported by the Portuguese Foundation for Science and Technology (FCT) (SFRH/BD/33902/2009 to H. N.-G.), the National Institutes of Health/Fogarty International Center (1K01 TW009213 to K.R.J.), departmental funds of the pulmonary division of Massachusetts General Hospital to M. R. F. and the National Institutes of Health/NIAID (U19 A1076217 to M.B.M.)

A commercial line probe assay for the rapid detection of rifampicin resistance in Mycobacterium tuberculosis: a systematic review and meta-analysis

BACKGROUND: Mycobacterium tuberculosis is a leading cause of death worldwide. In multi-drug resistant tuberculosis (MDR-TB) infectiousness is frequently prolonged, jeopardizing efforts to control TB. The conventional tuberculosis drug susceptibility tests are sensitive and specific, but they are not rapid. The INNO-LiPA Rif. TB (® )(LiPA) is a commercial line probe assay designed to rapidly detect rifampicin resistance, a marker of MDR-TB. Although LiPA has shown promising results, its overall accuracy has not been systematically evaluated. METHODS: We did a systematic review and meta-analysis to evaluate the accuracy of LiPA for the detection of rifampicin-resistant tuberculosis among culture isolates and clinical specimens. We searched Medline, Embase, Web of Science, BIOSIS, and Google Scholar, and contacted authors, experts and the manufacturer. Fifteen studies met our inclusion criteria. Of these, 11 studies used culture isolates, one used clinical specimens, and three used both. We used a summary receiver operating characteristic (SROC) curve and Q* index to perform meta-analysis and summarize diagnostic accuracy. RESULTS: Twelve of 14 studies that applied LiPA to isolates had sensitivity greater than 95%, and 12 of 14 had specificity of 100%. The four studies that applied LiPA directly to clinical specimens had 100% specificity, and sensitivity that ranged between 80% and 100%. The SROC curve had an area of 0.99 and Q* of 0.97. CONCLUSION: LiPA is a highly sensitive and specific test for the detection of rifampicin resistance in culture isolates. The test appears to have relatively lower sensitivity when used directly on clinical specimens. More evidence is needed before LiPA can be used to detect MDR-TB among populations at risk in clinical practice

Bacteriophage- based tests for the detection of Mycobacterium tuberculosis in clinical specimens: a systematic review and meta- analysis

BACKGROUND: Sputum microscopy, the most important conventional test for tuberculosis, is specific in settings with high burden of tuberculosis and low prevalence of non tuberculous mycobacteria. However, the test lacks sensitivity. Although bacteriophage-based tests for tuberculosis have shown promising results, their overall accuracy has not been systematically evaluated. METHODS: We did a systematic review and meta-analysis of published studies to evaluate the accuracy of phage-based tests for the direct detection of M. tuberculosis in clinical specimens. To identify studies, we searched Medline, EMBASE, Web of science and BIOSIS, and contacted authors, experts and test manufacturers. Thirteen studies, all based on phage amplification method, met our inclusion criteria. Overall accuracy was evaluated using forest plots, summary receiver operating (SROC) curves, and subgroup analyses. RESULTS: The data suggest that phage-based assays have high specificity (range 0.83 to 1.00), but modest and variable sensitivity (range 0.21 to 0.88). The sensitivity ranged between 0.29 and 0.87 among smear-positive, and 0.13 to 0.78 among smear-negative specimens. The specificity ranged between 0.60 and 0.88 among smear-positive and 0.89 to 0.99 among smear-negative specimens. SROC analyses suggest that overall accuracy of phage-based assays is slightly higher than smear microscopy in direct head-to-head comparisons. CONCLUSION: Phage-based assays have high specificity but lower and variable sensitivity. Their performance characteristics are similar to sputum microscopy. Phage assays cannot replace conventional diagnostic tests such as microscopy and culture at this time. Further research is required to identify methods that can enhance the sensitivity of phage-based assays without compromising the high specificity