Finding the best routing path in the Mobile Ad-hoc Networks (MANETs) is a very critical issue whe... more Finding the best routing path in the Mobile Ad-hoc Networks (MANETs) is a very critical issue when designing MANET protocols, since many conditions affects the topology of the network, one critical condition is nodes power; it affects the node availability and network connectivity, so that the power of overall nodes should be used wisely to keep the topology stable and durable as far as possible. Another condition is the node mobility as nodes of MANET are mobile for all the time, the third condition is the node itself where the node operational time is considered to be a new factor. In our work we propose a new method for finding the best routing path based on these three factors.
Protecting intellectual property against tampering is an urgent issue to many software designers,... more Protecting intellectual property against tampering is an urgent issue to many software designers, where illegal access to sensitive data is considered as a form of copyright infringement. Software owners apply various protection techniques in order to address this issue. Many of used mechanisms are weak, since they are vulnerable to both dynamic and static analysis, where the other are very costly since they impose considerable performance penalties. In this paper, we proposed a data and control flow obfuscating technique based on integrating encryption mechanism within recurrent neural network (RNN). Neural network provides a robust security characteristic in software protection, due to its ability of representing nonlinear algorithms with a powerful computational capability. The system is designed to enable the neural network generating of different encryptions for the same protected data. This creates a many to one relationship between the keys and the encryption. Thus, we train ...
Phishing is a kind of social engineering attack in which experienced persons or entities fool nov... more Phishing is a kind of social engineering attack in which experienced persons or entities fool novice users to share their sensitive information such as usernames, passwords, credit card numbers, etc. through spoofed emails, spams, and Trojan hosts. The proposed scheme based on designing a secure two factor authentication web application that prevents phishing attacks instead of relying on the phishing detection methods and user experience. The proposed method guarantees that authenticating users to services, such as online banking or e-commerce websites, is done in a very secure manner. The proposed system involves using a mobile phone as a software token that plays the role of a second factor in the user authentication process, the web application generates a session based onetime password and delivers it securely to the mobile application after notifying him through Google Cloud Messaging (GCM) service, then the user mobile software will complete the authentication process – after...
Several obfuscation tools and software are available for Java programs but larger part of these s... more Several obfuscation tools and software are available for Java programs but larger part of these software and tools just scramble the names of the classes or the identifiers that stored in a bytecode by replacing the identifiers and classes names with meaningless names. Unfortunately, these tools are week, since the java, compiler and java virtual machine (JVM) will never load and execute scrambled classes. However, these classes must be decrypted in order to enable JVM loaded them, which make it easy to intercept the original bytecode of programs at that point, as if it is not been obfuscated. In this paper, we presented a dynamic obfuscation technique for java programs. In order to deter reverse engineers from de-compilation of software, this technique integrates three levels of obfuscation, source code, lexical transformation and the data transformation level in which we obfuscate the data structures of the source code and byte-code transformation level. By combining these levels,...
International Journal of Network Security & Its Applications, 2016
RFID systems are one of the important techniques that have been used in modern technologies; thes... more RFID systems are one of the important techniques that have been used in modern technologies; these systems rely heavily on default and random passwords. Due to the increasing use of RFID in various industries, security and privacy issues should be addressed carefully as there is no efficient way to achieve security in this technology. Some active tags are low cost and basic tags cannot use standard cryptographic operations where the uses of such techniques increase the cost of these cards. This paper sheds light on the weaknesses of RFID system and identifies the threats and countermeasures of possible attacks. For the sake of this paper, an algorithm was designed to ensure and measure the strength of passwords used in the authentication process between tag and reader to enhance security in their communication and defend against brute-force attacks. Our algorithm is design by modern techniques based on entropy, password length, cardinality, Markov-model and Fuzzy Logic.
International Journal of Network Security & Its Applications, 2016
Phishing attacks are one of the trending cyber-attacks that apply socially engineered messages th... more Phishing attacks are one of the trending cyber-attacks that apply socially engineered messages that are communicated to people from professional hackers aiming at fooling users to reveal their sensitive information, the most popular communication channel to those messages is through users' emails. This paper presents an intelligent classification model for detecting phishing emails using knowledge discovery, data mining and text processing techniques. This paper introduces the concept of phishing terms weighting which evaluates the weight of phishing terms in each email. The pre-processing phase is enhanced by applying text stemming and WordNet ontology to enrich the model with word synonyms. The model applied the knowledge discovery procedures using five popular classification algorithms and achieved a notable enhancement in classification accuracy; 99.1% accuracy was achieved using the Random Forest algorithm and 98.4% using J48, which is-to our knowledge-the highest accuracy rate for an accredited data set. This paper also presents a comparative study with similar proposed classification techniques.
International Journal of Computer Network and Information Security, 2016
Spam messages are today one of the most serious threats to users of E-mail messages. There are se... more Spam messages are today one of the most serious threats to users of E-mail messages. There are several ways to prevent and detect spam message, the most important way is filtering spam. Sometimes Filtering fails to discover some spam messages or even fails in the classification of non-spam messages as a spam messages. In this paper, we suggest a new effective method that reduces the spam messages by integrating prevention and detection techniques in one scheme. The reduction achieved by considering history and user authentication. This method based on issuing a certificate to each reliable user during the process of Email account Creation. The certificate used by Email servers to discard or forward ingoing or outgoing Emails. Each Server has to maintain white, gray and blacklist according to Email classification spam or ham, which determined by the user or by the contents examination of the message in terms of empty or contained only links without any text or by searching for a specific keywords in the subject and in the content. We believe that there are no bad or good E-mails forever, so the proposed model dynamically allows the transition of E-mail from one state to another state based on the number of received spam and ham messages.
International Journal of Computer Network and Information Security, 2016
In this paper we present a new algorithm for clustering MANET by considering several parameters. ... more In this paper we present a new algorithm for clustering MANET by considering several parameters. This is a new adaptive load balancing technique for clustering out Mobile Ad-hoc Networks (MANET). MANET is special kind of wireless networks where no central management exits and the nodes in the network cooperatively manage itself and maintains connectivity. The algorithm takes into account the local capabilities of each node, the remaining battery power, degree of connectivity and finally the power consumption based on the average distance between nodes and candidate cluster head. The proposed algorithm efficiently decreases the overhead in the network that enhances the overall MANET performance. Reducing the maintenance time of broken routes makes the network more stable, reliable. Saving the power of the nodes also guarantee consistent and reliable network.
International Journal of Advanced Computer Science and Applications, 2015
The problem of protecting information, modification, privacy and origin validation are very impor... more The problem of protecting information, modification, privacy and origin validation are very important issues and became the concern of many researchers. Handling these problems definitely is a big challenge and this is probably why so much attention directed to the development of information protection schemes. In this paper, we propose a robust model that combines and integrates steganographic techniques with encryption, and error detection and correction techniques in order achieve secrecy, authentication and integrity. The idea of applying these techniques is based on decomposing the image into three separate color planes Red, Green and Blue and then depending on the encryption key we divide the image into N blocks. By applying DWT on each block independently, this model enables hiding the information in the image in an unpredictable manner. The part of the image where information embedded is a key depended and unknown to the intruder and by this we achieve blinded DWT effect. To enhance reliability the proposed model that uses hamming code which helps to recover lost or modified information. The proposed Model implemented and tested successfully.
International Journal of Advanced Computer Science and Applications, 2016
Wireless sensor network (WSN) is widely used in environmental conditions where the systems depend... more Wireless sensor network (WSN) is widely used in environmental conditions where the systems depend on sensing and monitoring approach. Water pollution monitoring system depends on a network of wireless sensing nodes which communicate together depending on a specific topological order. The nodes distributed in a harsh environment to detect the polluted zones within the WSN range based on the sensed data. WSN exposes several malicious attacks as a consequence of its presence in such open environment, so additional techniques are needed alongside with the existing cryptography approach. In this paper an enhanced trust model based on the use of radial base artificial neural network (RBANN) is presented to predict the future behavior of each node based on its weighted direct and indirect behaviors, in order to provide a comprehensive trust model that helps to detect and eliminate malicious nodes within the WSN. The proposed model considered the limited power, storage and processing capabilities of the system.
Protecting intellectual property against tampering is an urgent issue to many software designers,... more Protecting intellectual property against tampering is an urgent issue to many software designers, where illegal access to sensitive data is considered as a form of copyright infringement. Software owners apply various protection techniques in order to address this issue. Many of used mechanisms are weak, since they are vulnerable to both dynamic and static analysis, where the other are very costly since they impose considerable performance penalties. In this paper, we proposed a data and control flow obfuscating technique based on integrating encryption mechanism within recurrent neural network (RNN). Neural network provides a robust security characteristic in software protection, due to its ability of representing nonlinear algorithms with a powerful computational capability. The system is designed to enable the neural network generating of different encryptions for the same protected data. This creates a many to one relationship between the keys and the encryption. Thus, we train ...
SQL Injection Attack (SQLIA) is a technique of code injection, used to attack data driven applica... more SQL Injection Attack (SQLIA) is a technique of code injection, used to attack data driven applications especially front end web applications, in which heinous SQL statements are inserted (injected) into an entry field, web URL, or web request for execution. “Query Dictionary Based Mechanism” which help detection of malicious SQL statements by storing a small pattern of each application query in an application on a unique document, file, or table with a small size, secure manner, and high performance. This mechanism plays an effective manner for detecting and preventing of SQL Injection Attack (SQLIA), without impact of application functions and performance on executing and retrieving data. In this paper we proposed a solution for detecting and preventing SQLIAs by using Query Dictionary Based Mechanism.
Phishing attacks are one of the trending cyber-attacks that apply socially engineered messages th... more Phishing attacks are one of the trending cyber-attacks that apply socially engineered messages that are communicated to people from professional hackers aiming at fooling users to reveal their sensitive information, the most popular communication channel to those messages is through users’ emails. This paper presents an intelligent classification model for detecting phishing emails using knowledge discovery, data mining and text processing techniques. This paper introduces the concept of phishing terms weighting which evaluates the weight of phishing terms in each email. The pre-processing phase is enhanced by applying text stemming and WordNet ontology to enrich the model with word synonyms. The model applied the knowledge discovery procedures using five popular classification algorithms and achieved a notable enhancement in classification accuracy; 99.1% accuracy was achieved using the Random Forest algorithm and 98.4% using J48, which is –to our knowledge- the highest accuracy rate for an accredited data set. This paper also presents a comparative study with similar proposed classification techniques
Wireless sensor network (WSN) is widely used in environmental conditions where the systems depend... more Wireless sensor network (WSN) is widely used in environmental conditions where the systems depend on sensing and monitoring approach. Water pollution monitoring system depends on a network of wireless sensing nodes which communicate together depending on a specific topological order. The nodes distributed in a harsh environment to detect the polluted zones within the WSN range based on the sensed data. WSN exposes several malicious attacks as a consequence of its presence in such open environment, so additional techniques are needed alongside with the existing cryptography approach. In this paper an enhanced trust model based on the use of radial base artificial neural network (RBANN) is presented to predict the future behavior of each node based on its weighted direct and indirect behaviors, in order to provide a comprehensive trust model that helps to detect and eliminate malicious nodes within the WSN. The proposed model considered the limited power, storage and processing capabilities of the system.
Several obfuscation tools and software are available for Java programs but larger part of these s... more Several obfuscation tools and software are available for Java programs but larger part of these software and tools just scramble the names of the classes or the identifiers that stored in a bytecode by replacing the identifiers and classes names with meaningless names. Unfortunately, these tools are week, since the java, compiler and java virtual machine (JVM) will never load and execute scrambled classes. However, these classes must be decrypted in order to enable JVM loaded them, which make it easy to intercept the original bytecode of programs at that point, as if it is not been obfuscated. In this paper, we presented a dynamic obfuscation technique for java programs. In order to deter reverse engineers from de-compilation of software, this technique integrates three levels of obfuscation, source code, lexical transformation and the data transformation level in which we obfuscate the data structures of the source code and byte-code transformation level. By combining these levels, we achieved a high level of code confusion, which makes the understanding or decompiling the java programs very complex or infeasible. The proposed technique implemented and tested successfully by many Java de-compilers, like JV, CAVJ, DJ, JBVD and AndroChef. The results show that all decompiles are deceived by the proposed obfuscation technique.
Finding the best routing path in the Mobile Ad-hoc Networks
(MANETs) is a very critical issue whe... more Finding the best routing path in the Mobile Ad-hoc Networks (MANETs) is a very critical issue when designing MANET protocols, since many conditions affects the topology of the network, one critical condition is nodes power; it affects the node availability and network connectivity, so that the power of overall nodes should be used wisely to keep the topology stable and durable as far as possible. Another condition is the node mobility as nodes of MANET are mobile for all the time, the third condition is the node itself where the node operational time is considered to be a new factor. In our work we propose a new method for finding the best routing path based on these three factors.
Spam messages are today one of the most serious threats to users of E-mail messages. There are se... more Spam messages are today one of the most serious threats to users of E-mail messages. There are several ways to prevent and detect spam message, the most important way is filtering spam. Sometimes Filtering fails to discover some spam messages or even fails in the classification of non-spam messages as a spam messages. In this paper, we suggest a new effective method that reduces the spam messages by integrating prevention and detection techniques in one scheme. The reduction achieved by considering history and user authentication. This method based on issuing a certificate to each reliable user during the process of Email account Creation. The certificate used by Email servers to discard or forward ingoing or outgoing Emails. Each Server has to maintain white, gray and blacklist according to Email classification spam or ham, which determined by the user or by the contents examination of the message in terms of empty or contained only links without any text or by searching for a specific keywords in the subject and in the content. We believe that there are no bad or good E–mails forever, so the proposed model dynamically allows the transition of E-mail from one state to another state based on the number of received spam and ham messages.
Abstract—In this paper we present a new algorithm for clustering MANET by considering several par... more Abstract—In this paper we present a new algorithm for clustering MANET by considering several parameters. This is a new adaptive load balancing technique for clustering out Mobile Ad-hoc Networks (MANET). MANET is special kind of wireless networks where no central management exits and the nodes in the network cooperatively manage itself and maintains connectivity. The algorithm takes into account the local capabilities of each node, the remaining battery power, degree of connectivity and finally the power consumption based on the average distance between nodes and candidate cluster head. The proposed algorithm efficiently decreases the overhead in the network that enhances the overall MANET performance. Reducing the maintenance time of broken routes makes the network more stable, reliable. Saving the power of the nodes also guarantee consistent and reliable network
The problem of protecting information, modification, privacy and origin validation are very impor... more The problem of protecting information, modification, privacy and origin validation are very important issues and became the concern of many researchers. Handling these problems definitely is a big challenge and this is probably why so much attention directed to the development of information protection schemes. In this paper, we propose a robust model that combines and integrates steganographic techniques with encryption, and error detection and correction techniques in order achieve secrecy, authentication and integrity. The idea of applying these techniques is based on decomposing the image into three separate color planes Red, Green and Blue and then depending on the encryption key we divide the image into N blocks. By applying DWT on each block independently, this model enables hiding the information in the image in an unpredictable manner. The part of the image where information embedded is a key depended and unknown to the intruder and by this we achieve blinded DWT effect. To enhance reliability the proposed model that uses hamming code which helps to recover lost or modified information. The proposed Model implemented and tested successfully.
MPTCP is a new protocol proposed by IETF
working group as an extension for standard TCP, it adds ... more MPTCP is a new protocol proposed by IETF working group as an extension for standard TCP, it adds the capability to split the TCP connection across multiple paths. It provides higher availability and improves the throughput between two multi-address endpoints. Many Linux distributions have been developed to support MPTCP, most of them are open source which can be modified and compiled to support different experimental scenarios. Splitting the single path TCP connection across multiple paths adds new challenges in paths management and raises new security threats. Some of these threats include flooding and hijacking attacks performed by on-path and offpath attackers. In this article, we propose a new algorithm to mitigate the flooding and hijacking attacks in MPTCP, the proposed method allows a stateful processing of the initial SYN message and it’s following SYN_JOIN messages.
Finding the best routing path in the Mobile Ad-hoc Networks (MANETs) is a very critical issue whe... more Finding the best routing path in the Mobile Ad-hoc Networks (MANETs) is a very critical issue when designing MANET protocols, since many conditions affects the topology of the network, one critical condition is nodes power; it affects the node availability and network connectivity, so that the power of overall nodes should be used wisely to keep the topology stable and durable as far as possible. Another condition is the node mobility as nodes of MANET are mobile for all the time, the third condition is the node itself where the node operational time is considered to be a new factor. In our work we propose a new method for finding the best routing path based on these three factors.
Protecting intellectual property against tampering is an urgent issue to many software designers,... more Protecting intellectual property against tampering is an urgent issue to many software designers, where illegal access to sensitive data is considered as a form of copyright infringement. Software owners apply various protection techniques in order to address this issue. Many of used mechanisms are weak, since they are vulnerable to both dynamic and static analysis, where the other are very costly since they impose considerable performance penalties. In this paper, we proposed a data and control flow obfuscating technique based on integrating encryption mechanism within recurrent neural network (RNN). Neural network provides a robust security characteristic in software protection, due to its ability of representing nonlinear algorithms with a powerful computational capability. The system is designed to enable the neural network generating of different encryptions for the same protected data. This creates a many to one relationship between the keys and the encryption. Thus, we train ...
Phishing is a kind of social engineering attack in which experienced persons or entities fool nov... more Phishing is a kind of social engineering attack in which experienced persons or entities fool novice users to share their sensitive information such as usernames, passwords, credit card numbers, etc. through spoofed emails, spams, and Trojan hosts. The proposed scheme based on designing a secure two factor authentication web application that prevents phishing attacks instead of relying on the phishing detection methods and user experience. The proposed method guarantees that authenticating users to services, such as online banking or e-commerce websites, is done in a very secure manner. The proposed system involves using a mobile phone as a software token that plays the role of a second factor in the user authentication process, the web application generates a session based onetime password and delivers it securely to the mobile application after notifying him through Google Cloud Messaging (GCM) service, then the user mobile software will complete the authentication process – after...
Several obfuscation tools and software are available for Java programs but larger part of these s... more Several obfuscation tools and software are available for Java programs but larger part of these software and tools just scramble the names of the classes or the identifiers that stored in a bytecode by replacing the identifiers and classes names with meaningless names. Unfortunately, these tools are week, since the java, compiler and java virtual machine (JVM) will never load and execute scrambled classes. However, these classes must be decrypted in order to enable JVM loaded them, which make it easy to intercept the original bytecode of programs at that point, as if it is not been obfuscated. In this paper, we presented a dynamic obfuscation technique for java programs. In order to deter reverse engineers from de-compilation of software, this technique integrates three levels of obfuscation, source code, lexical transformation and the data transformation level in which we obfuscate the data structures of the source code and byte-code transformation level. By combining these levels,...
International Journal of Network Security & Its Applications, 2016
RFID systems are one of the important techniques that have been used in modern technologies; thes... more RFID systems are one of the important techniques that have been used in modern technologies; these systems rely heavily on default and random passwords. Due to the increasing use of RFID in various industries, security and privacy issues should be addressed carefully as there is no efficient way to achieve security in this technology. Some active tags are low cost and basic tags cannot use standard cryptographic operations where the uses of such techniques increase the cost of these cards. This paper sheds light on the weaknesses of RFID system and identifies the threats and countermeasures of possible attacks. For the sake of this paper, an algorithm was designed to ensure and measure the strength of passwords used in the authentication process between tag and reader to enhance security in their communication and defend against brute-force attacks. Our algorithm is design by modern techniques based on entropy, password length, cardinality, Markov-model and Fuzzy Logic.
International Journal of Network Security & Its Applications, 2016
Phishing attacks are one of the trending cyber-attacks that apply socially engineered messages th... more Phishing attacks are one of the trending cyber-attacks that apply socially engineered messages that are communicated to people from professional hackers aiming at fooling users to reveal their sensitive information, the most popular communication channel to those messages is through users' emails. This paper presents an intelligent classification model for detecting phishing emails using knowledge discovery, data mining and text processing techniques. This paper introduces the concept of phishing terms weighting which evaluates the weight of phishing terms in each email. The pre-processing phase is enhanced by applying text stemming and WordNet ontology to enrich the model with word synonyms. The model applied the knowledge discovery procedures using five popular classification algorithms and achieved a notable enhancement in classification accuracy; 99.1% accuracy was achieved using the Random Forest algorithm and 98.4% using J48, which is-to our knowledge-the highest accuracy rate for an accredited data set. This paper also presents a comparative study with similar proposed classification techniques.
International Journal of Computer Network and Information Security, 2016
Spam messages are today one of the most serious threats to users of E-mail messages. There are se... more Spam messages are today one of the most serious threats to users of E-mail messages. There are several ways to prevent and detect spam message, the most important way is filtering spam. Sometimes Filtering fails to discover some spam messages or even fails in the classification of non-spam messages as a spam messages. In this paper, we suggest a new effective method that reduces the spam messages by integrating prevention and detection techniques in one scheme. The reduction achieved by considering history and user authentication. This method based on issuing a certificate to each reliable user during the process of Email account Creation. The certificate used by Email servers to discard or forward ingoing or outgoing Emails. Each Server has to maintain white, gray and blacklist according to Email classification spam or ham, which determined by the user or by the contents examination of the message in terms of empty or contained only links without any text or by searching for a specific keywords in the subject and in the content. We believe that there are no bad or good E-mails forever, so the proposed model dynamically allows the transition of E-mail from one state to another state based on the number of received spam and ham messages.
International Journal of Computer Network and Information Security, 2016
In this paper we present a new algorithm for clustering MANET by considering several parameters. ... more In this paper we present a new algorithm for clustering MANET by considering several parameters. This is a new adaptive load balancing technique for clustering out Mobile Ad-hoc Networks (MANET). MANET is special kind of wireless networks where no central management exits and the nodes in the network cooperatively manage itself and maintains connectivity. The algorithm takes into account the local capabilities of each node, the remaining battery power, degree of connectivity and finally the power consumption based on the average distance between nodes and candidate cluster head. The proposed algorithm efficiently decreases the overhead in the network that enhances the overall MANET performance. Reducing the maintenance time of broken routes makes the network more stable, reliable. Saving the power of the nodes also guarantee consistent and reliable network.
International Journal of Advanced Computer Science and Applications, 2015
The problem of protecting information, modification, privacy and origin validation are very impor... more The problem of protecting information, modification, privacy and origin validation are very important issues and became the concern of many researchers. Handling these problems definitely is a big challenge and this is probably why so much attention directed to the development of information protection schemes. In this paper, we propose a robust model that combines and integrates steganographic techniques with encryption, and error detection and correction techniques in order achieve secrecy, authentication and integrity. The idea of applying these techniques is based on decomposing the image into three separate color planes Red, Green and Blue and then depending on the encryption key we divide the image into N blocks. By applying DWT on each block independently, this model enables hiding the information in the image in an unpredictable manner. The part of the image where information embedded is a key depended and unknown to the intruder and by this we achieve blinded DWT effect. To enhance reliability the proposed model that uses hamming code which helps to recover lost or modified information. The proposed Model implemented and tested successfully.
International Journal of Advanced Computer Science and Applications, 2016
Wireless sensor network (WSN) is widely used in environmental conditions where the systems depend... more Wireless sensor network (WSN) is widely used in environmental conditions where the systems depend on sensing and monitoring approach. Water pollution monitoring system depends on a network of wireless sensing nodes which communicate together depending on a specific topological order. The nodes distributed in a harsh environment to detect the polluted zones within the WSN range based on the sensed data. WSN exposes several malicious attacks as a consequence of its presence in such open environment, so additional techniques are needed alongside with the existing cryptography approach. In this paper an enhanced trust model based on the use of radial base artificial neural network (RBANN) is presented to predict the future behavior of each node based on its weighted direct and indirect behaviors, in order to provide a comprehensive trust model that helps to detect and eliminate malicious nodes within the WSN. The proposed model considered the limited power, storage and processing capabilities of the system.
Protecting intellectual property against tampering is an urgent issue to many software designers,... more Protecting intellectual property against tampering is an urgent issue to many software designers, where illegal access to sensitive data is considered as a form of copyright infringement. Software owners apply various protection techniques in order to address this issue. Many of used mechanisms are weak, since they are vulnerable to both dynamic and static analysis, where the other are very costly since they impose considerable performance penalties. In this paper, we proposed a data and control flow obfuscating technique based on integrating encryption mechanism within recurrent neural network (RNN). Neural network provides a robust security characteristic in software protection, due to its ability of representing nonlinear algorithms with a powerful computational capability. The system is designed to enable the neural network generating of different encryptions for the same protected data. This creates a many to one relationship between the keys and the encryption. Thus, we train ...
SQL Injection Attack (SQLIA) is a technique of code injection, used to attack data driven applica... more SQL Injection Attack (SQLIA) is a technique of code injection, used to attack data driven applications especially front end web applications, in which heinous SQL statements are inserted (injected) into an entry field, web URL, or web request for execution. “Query Dictionary Based Mechanism” which help detection of malicious SQL statements by storing a small pattern of each application query in an application on a unique document, file, or table with a small size, secure manner, and high performance. This mechanism plays an effective manner for detecting and preventing of SQL Injection Attack (SQLIA), without impact of application functions and performance on executing and retrieving data. In this paper we proposed a solution for detecting and preventing SQLIAs by using Query Dictionary Based Mechanism.
Phishing attacks are one of the trending cyber-attacks that apply socially engineered messages th... more Phishing attacks are one of the trending cyber-attacks that apply socially engineered messages that are communicated to people from professional hackers aiming at fooling users to reveal their sensitive information, the most popular communication channel to those messages is through users’ emails. This paper presents an intelligent classification model for detecting phishing emails using knowledge discovery, data mining and text processing techniques. This paper introduces the concept of phishing terms weighting which evaluates the weight of phishing terms in each email. The pre-processing phase is enhanced by applying text stemming and WordNet ontology to enrich the model with word synonyms. The model applied the knowledge discovery procedures using five popular classification algorithms and achieved a notable enhancement in classification accuracy; 99.1% accuracy was achieved using the Random Forest algorithm and 98.4% using J48, which is –to our knowledge- the highest accuracy rate for an accredited data set. This paper also presents a comparative study with similar proposed classification techniques
Wireless sensor network (WSN) is widely used in environmental conditions where the systems depend... more Wireless sensor network (WSN) is widely used in environmental conditions where the systems depend on sensing and monitoring approach. Water pollution monitoring system depends on a network of wireless sensing nodes which communicate together depending on a specific topological order. The nodes distributed in a harsh environment to detect the polluted zones within the WSN range based on the sensed data. WSN exposes several malicious attacks as a consequence of its presence in such open environment, so additional techniques are needed alongside with the existing cryptography approach. In this paper an enhanced trust model based on the use of radial base artificial neural network (RBANN) is presented to predict the future behavior of each node based on its weighted direct and indirect behaviors, in order to provide a comprehensive trust model that helps to detect and eliminate malicious nodes within the WSN. The proposed model considered the limited power, storage and processing capabilities of the system.
Several obfuscation tools and software are available for Java programs but larger part of these s... more Several obfuscation tools and software are available for Java programs but larger part of these software and tools just scramble the names of the classes or the identifiers that stored in a bytecode by replacing the identifiers and classes names with meaningless names. Unfortunately, these tools are week, since the java, compiler and java virtual machine (JVM) will never load and execute scrambled classes. However, these classes must be decrypted in order to enable JVM loaded them, which make it easy to intercept the original bytecode of programs at that point, as if it is not been obfuscated. In this paper, we presented a dynamic obfuscation technique for java programs. In order to deter reverse engineers from de-compilation of software, this technique integrates three levels of obfuscation, source code, lexical transformation and the data transformation level in which we obfuscate the data structures of the source code and byte-code transformation level. By combining these levels, we achieved a high level of code confusion, which makes the understanding or decompiling the java programs very complex or infeasible. The proposed technique implemented and tested successfully by many Java de-compilers, like JV, CAVJ, DJ, JBVD and AndroChef. The results show that all decompiles are deceived by the proposed obfuscation technique.
Finding the best routing path in the Mobile Ad-hoc Networks
(MANETs) is a very critical issue whe... more Finding the best routing path in the Mobile Ad-hoc Networks (MANETs) is a very critical issue when designing MANET protocols, since many conditions affects the topology of the network, one critical condition is nodes power; it affects the node availability and network connectivity, so that the power of overall nodes should be used wisely to keep the topology stable and durable as far as possible. Another condition is the node mobility as nodes of MANET are mobile for all the time, the third condition is the node itself where the node operational time is considered to be a new factor. In our work we propose a new method for finding the best routing path based on these three factors.
Spam messages are today one of the most serious threats to users of E-mail messages. There are se... more Spam messages are today one of the most serious threats to users of E-mail messages. There are several ways to prevent and detect spam message, the most important way is filtering spam. Sometimes Filtering fails to discover some spam messages or even fails in the classification of non-spam messages as a spam messages. In this paper, we suggest a new effective method that reduces the spam messages by integrating prevention and detection techniques in one scheme. The reduction achieved by considering history and user authentication. This method based on issuing a certificate to each reliable user during the process of Email account Creation. The certificate used by Email servers to discard or forward ingoing or outgoing Emails. Each Server has to maintain white, gray and blacklist according to Email classification spam or ham, which determined by the user or by the contents examination of the message in terms of empty or contained only links without any text or by searching for a specific keywords in the subject and in the content. We believe that there are no bad or good E–mails forever, so the proposed model dynamically allows the transition of E-mail from one state to another state based on the number of received spam and ham messages.
Abstract—In this paper we present a new algorithm for clustering MANET by considering several par... more Abstract—In this paper we present a new algorithm for clustering MANET by considering several parameters. This is a new adaptive load balancing technique for clustering out Mobile Ad-hoc Networks (MANET). MANET is special kind of wireless networks where no central management exits and the nodes in the network cooperatively manage itself and maintains connectivity. The algorithm takes into account the local capabilities of each node, the remaining battery power, degree of connectivity and finally the power consumption based on the average distance between nodes and candidate cluster head. The proposed algorithm efficiently decreases the overhead in the network that enhances the overall MANET performance. Reducing the maintenance time of broken routes makes the network more stable, reliable. Saving the power of the nodes also guarantee consistent and reliable network
The problem of protecting information, modification, privacy and origin validation are very impor... more The problem of protecting information, modification, privacy and origin validation are very important issues and became the concern of many researchers. Handling these problems definitely is a big challenge and this is probably why so much attention directed to the development of information protection schemes. In this paper, we propose a robust model that combines and integrates steganographic techniques with encryption, and error detection and correction techniques in order achieve secrecy, authentication and integrity. The idea of applying these techniques is based on decomposing the image into three separate color planes Red, Green and Blue and then depending on the encryption key we divide the image into N blocks. By applying DWT on each block independently, this model enables hiding the information in the image in an unpredictable manner. The part of the image where information embedded is a key depended and unknown to the intruder and by this we achieve blinded DWT effect. To enhance reliability the proposed model that uses hamming code which helps to recover lost or modified information. The proposed Model implemented and tested successfully.
MPTCP is a new protocol proposed by IETF
working group as an extension for standard TCP, it adds ... more MPTCP is a new protocol proposed by IETF working group as an extension for standard TCP, it adds the capability to split the TCP connection across multiple paths. It provides higher availability and improves the throughput between two multi-address endpoints. Many Linux distributions have been developed to support MPTCP, most of them are open source which can be modified and compiled to support different experimental scenarios. Splitting the single path TCP connection across multiple paths adds new challenges in paths management and raises new security threats. Some of these threats include flooding and hijacking attacks performed by on-path and offpath attackers. In this article, we propose a new algorithm to mitigate the flooding and hijacking attacks in MPTCP, the proposed method allows a stateful processing of the initial SYN message and it’s following SYN_JOIN messages.
Uploads
Papers by Adwan Yaseen
front end web applications, in which heinous SQL statements are inserted (injected) into an entry field, web URL, or web
request for execution. “Query Dictionary Based Mechanism” which help detection of malicious SQL statements by storing a
small pattern of each application query in an application on a unique document, file, or table with a small size, secure
manner, and high performance. This mechanism plays an effective manner for detecting and preventing of SQL Injection
Attack (SQLIA), without impact of application functions and performance on executing and retrieving data. In this paper we
proposed a solution for detecting and preventing SQLIAs by using Query Dictionary Based Mechanism.
communicated to people from professional hackers aiming at fooling users to reveal their sensitive
information, the most popular communication channel to those messages is through users’ emails. This
paper presents an intelligent classification model for detecting phishing emails using knowledge discovery,
data mining and text processing techniques. This paper introduces the concept of phishing terms weighting
which evaluates the weight of phishing terms in each email. The pre-processing phase is enhanced by
applying text stemming and WordNet ontology to enrich the model with word synonyms. The model applied
the knowledge discovery procedures using five popular classification algorithms and achieved a notable
enhancement in classification accuracy; 99.1% accuracy was achieved using the Random Forest algorithm
and 98.4% using J48, which is –to our knowledge- the highest accuracy rate for an accredited data set.
This paper also presents a comparative study with similar proposed classification techniques
(MANETs) is a very critical issue when designing MANET
protocols, since many conditions affects the topology of the network,
one critical condition is nodes power; it affects the node availability
and network connectivity, so that the power of overall nodes should
be used wisely to keep the topology stable and durable as far as
possible. Another condition is the node mobility as nodes of
MANET are mobile for all the time, the third condition is the node
itself where the node operational time is considered to be a new
factor. In our work we propose a new method for finding the best
routing path based on these three factors.
working group as an extension for standard TCP, it adds the
capability to split the TCP connection across multiple paths. It
provides higher availability and improves the throughput
between two multi-address endpoints. Many Linux distributions
have been developed to support MPTCP, most of them are open
source which can be modified and compiled to support different
experimental scenarios. Splitting the single path TCP connection
across multiple paths adds new challenges in paths management
and raises new security threats. Some of these threats include
flooding and hijacking attacks performed by on-path and offpath
attackers. In this article, we propose a new algorithm to
mitigate the flooding and hijacking attacks in MPTCP, the
proposed method allows a stateful processing of the initial SYN
message and it’s following SYN_JOIN messages.
front end web applications, in which heinous SQL statements are inserted (injected) into an entry field, web URL, or web
request for execution. “Query Dictionary Based Mechanism” which help detection of malicious SQL statements by storing a
small pattern of each application query in an application on a unique document, file, or table with a small size, secure
manner, and high performance. This mechanism plays an effective manner for detecting and preventing of SQL Injection
Attack (SQLIA), without impact of application functions and performance on executing and retrieving data. In this paper we
proposed a solution for detecting and preventing SQLIAs by using Query Dictionary Based Mechanism.
communicated to people from professional hackers aiming at fooling users to reveal their sensitive
information, the most popular communication channel to those messages is through users’ emails. This
paper presents an intelligent classification model for detecting phishing emails using knowledge discovery,
data mining and text processing techniques. This paper introduces the concept of phishing terms weighting
which evaluates the weight of phishing terms in each email. The pre-processing phase is enhanced by
applying text stemming and WordNet ontology to enrich the model with word synonyms. The model applied
the knowledge discovery procedures using five popular classification algorithms and achieved a notable
enhancement in classification accuracy; 99.1% accuracy was achieved using the Random Forest algorithm
and 98.4% using J48, which is –to our knowledge- the highest accuracy rate for an accredited data set.
This paper also presents a comparative study with similar proposed classification techniques
(MANETs) is a very critical issue when designing MANET
protocols, since many conditions affects the topology of the network,
one critical condition is nodes power; it affects the node availability
and network connectivity, so that the power of overall nodes should
be used wisely to keep the topology stable and durable as far as
possible. Another condition is the node mobility as nodes of
MANET are mobile for all the time, the third condition is the node
itself where the node operational time is considered to be a new
factor. In our work we propose a new method for finding the best
routing path based on these three factors.
working group as an extension for standard TCP, it adds the
capability to split the TCP connection across multiple paths. It
provides higher availability and improves the throughput
between two multi-address endpoints. Many Linux distributions
have been developed to support MPTCP, most of them are open
source which can be modified and compiled to support different
experimental scenarios. Splitting the single path TCP connection
across multiple paths adds new challenges in paths management
and raises new security threats. Some of these threats include
flooding and hijacking attacks performed by on-path and offpath
attackers. In this article, we propose a new algorithm to
mitigate the flooding and hijacking attacks in MPTCP, the
proposed method allows a stateful processing of the initial SYN
message and it’s following SYN_JOIN messages.