Papers by ISECURE Journal
Volume 16, Issue 2, 2024
The Internet of Things (IoT) is an innovation in technology. Continuous advancements based on the... more The Internet of Things (IoT) is an innovation in technology. Continuous advancements based on the IoT cloud have revolutionized the lives of humans, and remote health monitoring of patients is no exception. The Telecare Medicine Information System (TMIS) allows physicians, other health care providers and patients to observe the medical data electronically. Therefore, security in remote medicine has always been a serious challenge. Recently, to make a secure communication system, biometrics-based schemes have played a crucial role in IoT, Wireless Sensor Networks (WSN), etc. are gaining popularity due to their authenticity and high security properties. Many key agreement schemes have been presented in this literature. These schemes are only for authorized access to medical services and initiate a session to negotiate a shared essential between users and servers. Recently, Xiong et al. and Mehmood et al. presented key exchange methods for healthcare applications that claimed these schemes provide greater privacy. However, we show that these schemes suffer from privacy issues and key compromise impersonation attacks. In this paper, to remove such restrictions, a novel scheme (ECKCI) based on Elliptic Curve Cryptography (ECC) with KCI resistance property was proposed. Furthermore, we demonstrate that the ECKCI not only overcomes problems such as key compromise impersonation attacks in previous protocols, but also resists all specific attacks. Finally, a suitable equilibrium between the performance and security of ECKCI in comparison with recently proposed protocols was obtained. Also, the simulation results with the Scyther and ProVerif tools show that the ECKCI is safe.
Volume 16, Issue 2, 2024
To enhance the accuracy of learning models, it becomes imperative to train them on more extensive... more To enhance the accuracy of learning models, it becomes imperative to train them on more extensive datasets. Unfortunately, access to such data is often restricted because data providers are hesitant to share their data due to privacy concerns. Hence, it is critical to develop obfuscation techniques that empower data providers to transform their datasets into new ones that ensure the desired level of privacy. In this paper, we present an approach where data providers utilize a neural network based on the autoencoder architecture to safeguard the sensitive components of their data while preserving the utility of the remaining parts. More specifically, within the autoencoder framework and after the encoding process, a classifier is used to extract the private feature from the dataset. This feature is then decorrelated from the other remaining features and subsequently subjected to noise. The proposed method is flexible, allowing data providers to adjust their desired level of privacy by changing the noise level. Additionally, our approach demonstrates superior performance in achieving the desired trade-off between utility and privacy compared to similar methods, all while maintaining a simpler structure.
Volume 16, Issue 2 , 2024
Due to the nature of the public channel, designing authentication techniques suitable for wireles... more Due to the nature of the public channel, designing authentication techniques suitable for wireless sensor networks (WSNs) that satisfy the dedicated considerations is critical. In 2022, Liu et al. presented an authentication protocol that employs dynamic authentication credentials (DACs) and Intel software guard extensions (SGX) to guarantee security in WSNs. Then, they proved that it is secure by formal and informal security analysis. This paper shows that it is not secure against desynchronization and offline guessing attacks for long-term random numbers of users. In addition, it suffers from the known session-specific temporary information attack. Then, an improved authentication scheme using DAC and Intel SGX will be presented to address these vulnerabilities. We show that it is secure against the aforementioned attacks by employing formal and informal analysis and has a reasonable communication and computation overhead. It should be highlighted that our proposal's communication and computation overheads are increased negligibly, but it provides more security features compared to the baseline protocol.
Volume 16, Issue 2 , 2024
This article presents new methods and tools used in text analysis to identify fake news in the me... more This article presents new methods and tools used in text analysis to identify fake news in the media. The problem with the research is that, as a rule, to identify fakes, a training dataset is required on which thematic fakes were tested. This is not always feasible and requires additional resources. To solve this problem, a comprehensive research methodology has been developed that covers most detection tools, even without an established database containing reliable and fake news. The study includes a combination of various algorithms combined into a single analytical structure, presented in the work in the form of pseudocode. The authors introduce the concept of an "emotional fake model" similar to individual emotions included in a broader emotional spectrum. The essence of the model is to evaluate fakes based on the structure of definitions of emotions formed in fakes, which differ from the original signals due to different weight coefficients. The innovation involves a two-stages identification of fakes-initially, clusters of messages from the text corpus are identified, and then, based on text analysis tools, their linguistic features and emotional differences are revealed (based on a set of emotions POMS). In the context of creating fake news using neural networks, emotional coloring plays a crucial role, providing a permanent foundation that can serve as a cornerstone for identification.
Volume 16, Issue 2 , 2024
Midori64 is a lightweight SPN block cipher introduced by Banik et al. at ASIACRYPT 2015 and it op... more Midori64 is a lightweight SPN block cipher introduced by Banik et al. at ASIACRYPT 2015 and it operates on 64-bit states through 16 rounds using a 128-bit key. In the last decade, Midori64 has been exposed to several attacks. In this paper, to the best of our knowledge, we provide the first boomerang attack on Midori64 in the literature. For this purpose, firstly, we present a practical single key 7-round boomerang attack on Midori64, improving the mixture idea of Biryukov by a new technique which we call "mixture pool", and then extend our attack up to 9 rounds with time complexity 2 122.3 , and memory and data complexity 2 36. (The authors of Midori stated that they expect much smaller rounds than eight rounds of Midori64 are secure against boomerang-type attacks.) We also emphasize that the mixture pool idea provides a kind of data-memory tradeoff and presents more usefulness for boomerang-type attacks.
Volume 16, Issue 2 , 2024
There are two types of distributed denial of service (DDoS) attacks: high-rate DDoS (HRDDoS) atta... more There are two types of distributed denial of service (DDoS) attacks: high-rate DDoS (HRDDoS) attacks and low-rate DDoS (LRDDoS) attacks. A shrew attack is an LRDDoS attack that can prove to be more harmful than an HRDDoS attack since it is not easily noticeable and is stealthy. It can cause TCP flows to attain near-zero throughput by sending attack pulses of short bursts synchronized with the TCP retransmission timeout (RTO) value. As a result, each time it attempts to retransmit after the timeout, it forces the TCP packets to be dropped. Thus, if it is not detected for a long time, it may endanger the victim systems and reduce the overall quality of services. In this paper, we conduct a statistical analysis of network traffic, where we analyze the deviations in flow behavior based on packets sent under normal and attack conditions. In order to achieve this, we use a priority determiner D to determine the participation of a flow in congestion and its adherence to legitimate TCP compliance under attack conditions. Shrew attack flows exhibit higher values of D as they do not adhere to TCP compliance and tend to contribute to more congestion to disrupt a server. This nature of attack flows enables us to filter them based on the values of D and mitigate them by blocking these flows. The experimental results on various scenarios demonstrated high accuracy to substantiate the efficacy of the proposed method.
Volume 16, Issue 1, 2024
Whatever malware protection is upcoming, still the data are prone to cyber-attacks. The most thre... more Whatever malware protection is upcoming, still the data are prone to cyber-attacks. The most threatening Structured Query Language Injection Attack (SQLIA) happens at the database layer of web applications leading to unlimited and unauthorized access to confidential information through malicious code injection. Since feature extraction accuracy significantly influences detection results, extracting the features of a query that predominantly contributes to SQL Injection (SQLI) is the most challenging task for the researchers. So, the proposed work primarily focuses on that using modified parse-tree representation. Some existing techniques used graph representation to identify characteristics of the query based on a predefined fixed list of SQL keywords. As the complete graph representation requires high time complexity for traversals due to the unnecessary links, a modified parse tree of tokens is proposed here with restricted links between operators (internal nodes) and operands (leaf nodes) of the WHERE clause. Tree siblings from the leaf nodes comprise the WHERE clause operands, where the attackers try to manipulate the conditions to be true for all the cases. A novelty of this work is identifying patterns of legitimate and injected queries from the proposed modified parse tree and applying a pattern-based neural network (NN) model for detecting attacks. The proposed approach is applied in various machine learning (ML) models and a neural network model, Multi-Layer Perceptron (MLP). With the scrupulously extracted patterns and their importance (weights) in legitimate and injected queries, the MLP model provides better results in terms of accuracy (97.85%), precision (93.8%) and AUC (97.8%)
Volume 16, Issue 1, 2024
With the advancement of ICTs, the fifth generation has developed into an emergent communication p... more With the advancement of ICTs, the fifth generation has developed into an emergent communication platform that supports high speed, low-latency, and excellent connectivity to numerous devices with modern radio technology, service-oriented design, and cloud infrastructure. The recent developments in 5G and existing proposed plans are centered on the security model of this study, with authentication, availability, confidentiality, integrity, visibility, and a centralized security policy. However, initiating innovative technologies and enhanced aspects in 5G communication raises new requirements and has presented various security challenges. 5G-based applications face security risks because they use modern technology. This paper presents a study of security attacks and the security risks faced by 5G intelligent applications. This article also investigates the three main 5G usage scenarios (i.e., eMBB, uRLLC, and mMTC). This research recommends reducing the security risks of 5G usage scenarios and intelligent applications.
Volume 16, Issue 1, 2024
Smart contracts are applications that are deployed on a blockchain and can be executed through tr... more Smart contracts are applications that are deployed on a blockchain and can be executed through transactions. The code and the state of the smart contracts are persisted on the ledger, and their execution is validated by all blockchain nodes. Smart contracts often hold and manage amounts of cryptocurrency. Therefore, their code should be secured against attacks. Smart contracts can be secured either by fixing their source/byte code before deployment (offline) or by inserting some protection code into the runtime (online). On the one hand, the offline methods do not have enough data for effective protection, and on the other hand, the existing online methods are too costly. In this paper, we propose an online method to complement the offline methods with a low overhead. Our protections are categorized into multiple \emph{safety guards}. These guards are implemented in the blockchain nodes (clients), and require some parameters to be set in the constructor to be activated. After deployment, the configured guards protect the contract and revert suspicious transactions. We have implemented our proposed safety guards by small changes to the Hyperledger Besu Ethereum client. Our evaluations show that our implementation is effective in preventing the corresponding attacks, and has low execution overhead.
ISecure, 2024
Attribute-based encryption (ABE) is a promising cryptographic mechanism for providing confidentia... more Attribute-based encryption (ABE) is a promising cryptographic mechanism for providing confidentiality and fine-grained access control in the cloud-based area. However, due to high computational overhead, common ABE schemes are not suitable for resource-constrained devices. Additionally, access policies should be able to be updated efficiently by data owners, and in some circumstances, hidden access policies are necessary to preserve the privacy of clients and data. In this paper, we propose a ciphertext-policy attribute-based access control scheme that, for the first time, simultaneously provides online/offline encryption, hidden access policy, and access policy update. In our scheme, resource-constrained devices are equipped with online/offline encryption reducing the encryption overhead significantly. Furthermore, attributes of access policies are hidden such that the attribute sets satisfying an access policy cannot be guessed by other parties. Moreover, data owners can update their defined access policies while outsourcing a major part of the updating process to the cloud service provider. In particular, we introduce blind access policies that enable the cloud service provider to update the data owners' access policies without receiving a new re-encryption key. Besides, our scheme supports fast decryption such that the decryption algorithm consists of a constant number of bilinear pairing operations. The proposed scheme is proven to be secure in the random oracle model and under the hardness of Decisional Bilinear Diffie-Hellman (DBDH) and Decision Linear (D-Linear) assumptions. Also, performance analysis results demonstrate that the proposed scheme is efficient and practical.
IScure, 2024
The widespread use of web applications and running on sensitive data has made them one of the mos... more The widespread use of web applications and running on sensitive data has made them one of the most significant targets of cyber attackers. One of the most crucial security measures that can be taken is the detection and closure of vulnerabilities on web applications before attackers. In this study, a web application vulnerability scanner was developed based on dynamic analysis and artificial intelligence, which could test web applications using GET and POST methods and had test classes for 21 different vulnerability types. The developed vulnerability scanner was tested on a web application test laboratory, which was created within the scope of this study and had 262 different web applications. A data set was created from the results of the tests performed using the developed vulnerability scanner. In this study, as a first stage, web page classification was made using the mentioned data set. The highest success rate in the page classification process was determined by 95.39% using the Random Forest Algorithm. The second operation performed using the dataset was the association analysis between vulnerabilities. The proposed model saved the 21% time than the standard scanning model. The page classification process was also used in the crawling of the web application in this study.
ISecure , 2024
Distributed Denial of Service (DDoS) attacks have become a critical threat to the Web with the in... more Distributed Denial of Service (DDoS) attacks have become a critical threat to the Web with the increase in web-based transactions and application services offered by the Internet. With the vast resources and techniques easily available to the attackers countering them has become more challenging. They are usually carried out at the network layer. Unlike traditional network-layer attacks, application-layer DDoS attacks can be more effective. It utilizes legitimate HTTP requests to inundate victim resources that are undetectable. Many methods exist in the literature to protect systems from IP and TCP layer DDoS attacks that do not work when encountering application-layer DDoS attacks. Most network-layer DDoS attacks are flooding attacks, but application-layer DDoS attacks can be flooding attacks or protocol-specific vulnerability attacks. Various protocol-specific vulnerability attacks cannot be detected by traditional detection methods as they are designed to detect flooding attacks. One such attack is the slowloris attack. It targets web servers by exploiting an HTTP protocol vulnerability. In this paper, we propose a slowloris attack detection based on an adaptive timeout-based approach that contains two modules: a suspect determination module and an attacker verification module. The determination module determines suspects and sends them to the verification module, which verifies a suspect as an attacker. We have designed a detection algorithm that detects an attacker's IP address before it consumes all the resources. The experimental results substantiate its efficacy with low false alarms and high detection accuracy.
The ISC International Journal of Information Security, 2019
In recent years technology and management information system has been an excellent response too m... more In recent years technology and management information system has been an excellent response too many global challenges, technology innovation has expanded over almost all the sectors of, and it made many processes more accurate and very faster than before. Technology systems playeda big role part in election processes in many democratic countries nowadays. The commission, in Iraq, suffers from many problems such as fraud, time-consuming and delays in the election processes that take a long time and also witness a delay in revealing the results. This research paper focuses on adapting the biometric system in Iraq; there are several different perspectives to specify the IHEC’s employees and manager’s attitude towards technology in general and Biometric system specifically. Most of the staff members feel confident about transforming into a technology system. In their responses to the questionnaires, most of them focused on getting trained before they start using the system. In this research, the data is collected by using survey technique from the independent high electoral commission managers and staff members, and the data is analyzed by using SPSS.
https://www.isecure-journal.com/article_110976.html
The ISC International Journal of Information Security, 2019
This paper is one that explored intelligent decision support systems and Decision support systems... more This paper is one that explored intelligent decision support systems and Decision support systems. Due to the inception and development of systems and technological advances such as data warehouse, enterprise resource planning, advance plan system & also top trends like Internet of things, big data, internet, business intelligent etc. have brought in more advancement in the operations of decision support systems. This paper gives a systematic review on all the various applications of IDSS based on, knowledge, communication, documents etc. with also heading further to describe and differentiate two DSS methods which are Analytical Network Process (ANP) & Decision-Making Trial & Evaluation Laboratory (DEMATEL)
https://www.isecure-journal.com/article_104857.html
The ISC International Journal of Information Security, 2019
In this paper, we implement a Virtualized Network Management Laboratory named (VNML) linked to co... more In this paper, we implement a Virtualized Network Management Laboratory named (VNML) linked to college campus network for educational purposes. This laboratory is created using Virtualbox virtualizer and GNS3 on Linux UBUNTU single HP DL380 G7 server platform. A total of 35 virtual devices (Routers, Switches and Virtual Machines) are created and distributed over virtualized campus network with seven network management tools configured and run. The proposed laboratory is aimed to overcome the limitations of network hardware existence in any educational facility teach network management subject in their curriculum. The other advantages include ease of managing the laboratory and overrides physical location setup within the same geographical area.
https://www.isecure-journal.com/article_96191.html
The ISC International Journal of Information Security, 2019
The Internet of Things (IoT) becomes the future of a global data field in which the embedded devi... more The Internet of Things (IoT) becomes the future of a global data field in which the embedded devices communicate with each other, exchange data and making decisions through the Internet. IoT could improve the quality of life in smart cities, but a massive amount of data from different smart devices could slow down or crash database systems. In addition, IoT data transfer to Cloud for monitoring information and generating feedback that will lead to high delay in infrastructure level. Fog Computing can help by offering services closer to edge devices. In this paper, we propose an efficient system architecture to mitigate the problem of delay. We provide performance analysis like response time, throughput and packet loss for MQTT (Message Queue Telemetry Transport) and HTTP (Hyper Text Transfer Protocol) protocols based on Cloud or Fog servers with large volume of data from emulated traffic generator working alongside one real sensor. We implement both protocols in the same architecture, with low cost embedded devices to local and Cloud servers with different platforms. The results show that HTTP response time is 12.1 and 4.76 times higher than MQTT Fog and Cloud based located in the same geographical area of the sensors respectively. The worst case in performance is observed when the Cloud is public and outside the country region. The results obtained for throughput shows that MQTT has the capability to carry the data with available bandwidth and lowest percentage of packet loss. We also prove that the proposed Fog architecture is an efficient way to reduce latency and enhance performance in Cloud based IoT.
https://www.isecure-journal.com/article_96187.html
The ISC International Journal of Information Security, 2019
Project management is an important factor to accomplish the decision to implement large-scale sof... more Project management is an important factor to accomplish the decision to implement large-scale software systems (LSS) in a successful manner. The effective project management comes into play to plan, coordinate and control such a complex project. Project management factor has been argued as one of the important Critical Success Factor (CSF), which need to be measured and monitored carefully during the implementation of Enterprise Resource Planning (ERP) systems. The goal of this article is to develop âĂIJCSF-Live!âĂİ which is a method for measuring, monitoring, and controlling critical success factors of large-scale software systems. To achieve such goal, we apply CSF-Live for the project management CSF. The CSF-Live uses the Goal/Question/Metric paradigm (GQM) to yield a flexible framework containing several metrics that we used it to develop a formulation to enable the measurement of the project management CSF. The formulation that we developed for the project management CSF implies that the significance of having proper project management when conducting an ERP system implementation, since it is positively associated with the success of the ERP.
https://www.isecure-journal.com/article_90895.html
The ISC International Journal of Information Security, 2019
Internet of Things (IoT) and cloud computing technologies have connected the infrastructure of th... more Internet of Things (IoT) and cloud computing technologies have connected the infrastructure of the city to make the context-aware and more intelligent city for utility its major resources. These technologies have much potential to solve the challenges of urban areas around the globe to facilitate the citizens. A framework model that enables the integration of sensor's data and analysis of the data in the context of smart parking is proposed. These technologies use sensors and devices deployed around the city parking areas sending real time data through the edge computers to the main cloud servers. Mobil-Apps are developed that used real time data, set from servers of the parking facilities in the city. Fuzzification is shown to be a capable mathematical approach for modeling city parking issues. To solve the city parking problems in cities a detailed analysis of fuzzy logic proposed systems is developed. This paper presents the results achieved using Mamdani Fuzzy Inference System to model complex smart parking system. These results are verified using MATLAB simulation.
https://www.isecure-journal.com/article_90886.html
The ISC International Journal of Information Security, 2019
With the innovation of cloud computing industry lots of services were provided based on different... more With the innovation of cloud computing industry lots of services were provided based on different deployment criteria. Nowadays everyone tries to remain connected and demand maximum utilization of resources with minimum time and effort. Thus, making it an important challenge in cloud computing for optimum utilization of resources. To overcome this issue, many techniques have been proposed shill no comprehensive results have been achieved. Cloud Computing offers elastic and scalable resource sharing services by using resource management. In this article, a hybrid approach has been proposed with an objective to achieve the maximum resource utilization. In this proposed method, adaptive back propagation neural network and multi-level priority-based scheduling are being carried out for optimum resource utilization. This hybrid technique will improve the utilization of resources in cloud computing. This shows result in simulation-based on the form of MSE and Regression with job dataset, on behalf of the comparison of three algorithms like Scaled Conjugate Gradient (SCG), Levenberg Marquardt (LM) and Bayesian Regularization (BR). BR gives a better result with 60 hidden layers Neurons to other algorithms. BR gives 2.05 MSE and 95.8 regressions in Validation, LM gives 2.91 MSE and 94.06 regressions with this and SCG gives 3.92 MSE and 91.85 regressions.
https://www.isecure-journal.com/article_90883.html
The ISC International Journal of Information Security, 2019
The increasing volatility in pricing and growing potential for profit in digital currency have ma... more The increasing volatility in pricing and growing potential for profit in digital currency have made predicting the price of cryptocurrency a very attractive research topic. Several studies have already been conducted using various machine-learning models to predict crypto currency prices. This study presented in this paper applied a classic Autoregressive Integrated Moving Average (ARIMA) model to predict the prices of the three major cryptocurrencies âĂŤ Bitcoin, XRP and Ethereum âĂŤ using daily, weekly and monthly time series. The results demonstrated that ARIMA outperforms most other methods in predicting cryptocurrency prices on a daily time series basis in terms of mean absolute error (MAE), mean squared error (MSE) and root mean squared error (RMSE).
https://www.isecure-journal.com/article_90865.html
Uploads
Papers by ISECURE Journal
https://www.isecure-journal.com/article_110976.html
https://www.isecure-journal.com/article_104857.html
https://www.isecure-journal.com/article_96191.html
https://www.isecure-journal.com/article_96187.html
https://www.isecure-journal.com/article_90895.html
https://www.isecure-journal.com/article_90886.html
https://www.isecure-journal.com/article_90883.html
https://www.isecure-journal.com/article_90865.html
https://www.isecure-journal.com/article_110976.html
https://www.isecure-journal.com/article_104857.html
https://www.isecure-journal.com/article_96191.html
https://www.isecure-journal.com/article_96187.html
https://www.isecure-journal.com/article_90895.html
https://www.isecure-journal.com/article_90886.html
https://www.isecure-journal.com/article_90883.html
https://www.isecure-journal.com/article_90865.html