(in) Security - Academic Conferences Limited

More documents

Recommendations

Info

Eric Filiol Figure 2: Document of the High Court of Justice of Europe (Kononov vs Letonia). 5. Exploitation of open/public computer spaces insecurity These open/public Internet places are also a tremendous threat insofar as they can easily be used to launch attacks. In general, no control is made and access to computers is so completely anonymous. In hotels or international conferences, we were able to connect often without being a customer. There is often no login banner, or, if any, these banners are easy to get around: just go to the welcome desk of the hotel and pretend to be a guest in the hotel and so get the suitable credentials. A step of social engineering and traditional intelligence may also suffice. In Internet cafes, the presence of CCTV is rare and when any, there is a suitable garment suffices to hide one’s face (hood or cap) does not trigger any reaction. Hence launching a global attack type Confiker so totally anonymous is worryingly easy. Conduct an attack against a country while falsely incriminating a third-party country is something feasible in this context: just use the internet cafes of the country you want to frame. We have even verified that it was even possible to install very well-known DoS software (Denial of Service) like LOIC (Low Orbit Ion Canon) in an invisible and persistent way (e.g. without being detected by any antivirus in place. The detection by the administer supervision or by automated network security software occurred in a more or less long time (for our test we have attacked one of our server which has been set up especially for this test). Thus, by carefully calibrating a DoS tool like LOIC and carefully selecting a few Internet cafes, it is possible to plan and launch a distributed attack of relatively large magnitude. But the most serious concern deals with the possibility of targeted attacks against companies. We have observed very interesting things. Let us summarize the most significant ones. Surprisingly users are warying more over WiFi connections - even when protected by crypto - that over open/public Internet access computers. The wired connection is seen as a (misleading) guarantee of security. The second point concerns the habits of users. Many makers use the same hotels (because of agreements between these hotels and their companies). It is therefore possible to study on an ongoing basis over a long period of time. In the cyber cafes we found that users like to use always the same computer (when available). Finally, the lack of real security makes possible to install whatever malicious software you want and take total control of all computers in a discreet way. It is so easy to turn all the computers in an internet cafe into a mini-botnet. It is also possible to install software that systematically perform a full image of any USB device connected (including empty spaces that are not so empty since it contains deleted data). It is also possible to setup a full network connection towards any remote server. Then the attacker does no longer need to come back to the computers. 6. Summary scenario In order to illustrate all this, let us consider the following scenario. It is fictional in appearance only. In reality, he was inspired by what we observed during our study and laboratory tests. From this point, it is particularly illustrative of what can be done. 110
6.1 The tactic theme Eric Filiol Let us suppose that the WorldLeaderInManyThings company – a non European industrial consortium -- wants to take control over its commercial competitor the EuropeanLeaderInOneThing company. The latter is struggling to develop a high-technology product – called StarWay project-- in critical field for the European community which wants to equip Europe with its own system and therefore gain its strategic independence. Indeed, Europe is currently depending on the WorldLeaderInManyThings company’s country for that technology. EuropeanLeaderInOneThing’s engineers, its CEO and CTO are frequently visiting European entities both in Brussels and Luxembourg. Upon failure on developing this sensitive technology, the company will face major financial problems and is likely to look for industrial partnerships. They are always lodging in the FourGoldenStar Hotel with which they have a commercial agreement. The deadline to deliver the technology is the end of November 2010. Then the industrial development must begin. 6.2 The course of events In March 2010, a major one-week meeting in Brussels takes place with the European technical supervisors of the StarWay Project and the EuropeanLeaderInOneThing’s engineer team and executive staff. A number of critical issues are to be discussed. At the beginning of April, the EuropeanLeaderInOneThing company suffers from a series of computer problems that jeopardize the project: data loss, development servers’ failure and unavailability... More worrying, the business press and later the general press in Europe spread the news according to which the StarWay Project will have to suffer from major delays and tremendous cost overruns. As a consequence, the EuropeanLeaderInOneThing company shares are suddenly down of nearly 30 % over the April month. The CTO is dismissed. The European commission asks for a financial investigation and a technical evaluation of the situation. Two months later, an official announcement is made by the EC: the StarWay Project is moved back at least one year while an addition of 1.5 billion of euros to the project budget has to be made. The EuropeanLeaderInOneThing company shares are immediately plunging after the annoucement (40 % down more). The company CEO is dismissed. A major crisis is about to strike the company. At the beginning of september, the WorldLeaderInManyThings company makes a takeover bid over the EuropeanLeaderInOneThing company. The shareholders massively accept and the takeover is a success. The European commission delayed the StarWay Project until further notice. 6.3 Course of events analysis In reality all those events and the final outcome result from multi-level, multi-step computer intelligence and computer attacks by the WorldLeaderInManyThings company against the EuropeanLeaderInOneThing company. Its aim was first to get rid of a commercial competitor (commercial interest) and second to make sure that the StarWay Project is questioned (strategic interest for its home country). For that purpose, it has hired a few intelligence experts and hackers. We will call them the A-Team. In a first intelligence step, the A-Team has analyzed the habits of the EuropeanLeaderInOneThing company engineers and staff that regularly traveled and stay in Brussels and Luxembourg for the StarWay Project. The A-team quickly noticed that they were regularly using the wire internet accesses in the Hotel business lounge or in the cyber cafe near the bar and restaurant they frequented downtown. Listening to their discussions, they determined that the EuropeanLeaderInOneThing company CSO strongly forbade the use of wireless network. Taking control over the hotel and Internet cafe computers the A-team first installed computer surveillance. Hence it has been possible to gain a precise insight of the security in force in the EuropeanLeaderInOneThing company. The A-team manage to steal passwords of EuropeanLeaderInOneThing company email accounts, to collect a lot of sensitive information on their USB key (including deleted ones). In a second step the attack against the EuropeanLeaderInOneThing company LAN network has been initiated. USB keys used by their engineers and CTO have been infected with malware that could not be detected by the antivirus in place). Infecting Word and PDF documents was sufficient. A few days later, 111
Page 1 and 2:
Proceedings of the 10th European Co
Page 3 and 4:
Contents Paper Title Author(s) Page
Page 5 and 6:
Paper Title Author(s) Page No. PhD
Page 7 and 8:
Biographies of Conference Chairs, P
Page 9 and 10:
esearch and teaching interest inclu
Page 11:
Tampere, Military History and Strat
Page 14 and 15:
Kari Alenius power and stayed there
Page 16 and 17:
Kari Alenius The last two closely r
Page 18 and 19:
Kari Alenius Bush, G. W. (2003-03-1
Page 20 and 21:
Dominic Asamoah and William Oblitey
Page 22 and 23:
Dominic Asamoah and William Oblitey
Page 24 and 25:
Debi Ashenden cyberspace. As a resu
Page 26 and 27:
Debi Ashenden (specifically the Bus
Page 28 and 29:
Debi Ashenden implications are. It
Page 30 and 31:
David Barnard-Wills Karen Fierke su
Page 32 and 33:
David Barnard-Wills justifies prior
Page 34 and 35:
David Barnard-Wills The extent to w
Page 36 and 37:
Potential Threats of UAS Swarms and
Page 38 and 39:
Isolated individuals Laurent Beaudo
Page 40 and 41:
Laurent Beaudoinet al. priori the s
Page 42 and 43:
Laurent Beaudoinet al. about approp
Page 44 and 45:
Alexander Bligh The following paper
Page 46 and 47:
Alexander Bligh Are differences in
Page 48 and 49:
Alexander Bligh Characterization of
Page 50 and 51:
A Secure Architecture for Electroni
Page 52 and 53:
Paul Crocker and Vasco Nicolau Spo
Page 54 and 55:
4.2 General overview Paul Crocker a
Page 56 and 57:
4.3 Security layer Paul Crocker and
Page 58 and 59:
Paul Crocker and Vasco Nicolau The
Page 60 and 61:
Figure 14: Strong biometric authent
Page 62 and 63:
Evaluation of the Armed Forces Webs
Page 64 and 65:
1.2 The problem Pedro Cunha et al.
Page 66 and 67:
Pedro Cunha et al. Another obtained
Page 68 and 69:
Pedro Cunha et al. When classifying
Page 70 and 71:
Christian Czosseck et al. The 2007
Page 72 and 73: 3.1 Penal code Christian Czosseck e
Page 74 and 75: Christian Czosseck et al. Political
Page 76 and 77: Christian Czosseck et al. file_id=1
Page 78 and 79: Christian Czosseck and Karlis Podin
Page 86 and 87: Moses Dlamini et al. then tested in
Page 88 and 89: Moses Dlamini et al. Network of Liv
Page 90 and 91: Moses Dlamini et al. phase. This is
Page 92 and 93: Moses Dlamini et al. Santoro, R. an
Page 94 and 95: João Ferreira et al. Host-based In
Page 96 and 97: 5. Proposed solution João Ferreira
Page 98 and 99: João Ferreira et al. Therefore, pu
Page 100 and 101: 5.5 Profile updating João Ferreira
Page 102 and 103: João Ferreira et al. Lynch, D.M. (
Page 104 and 105: Eric Filiol et al. exist as well an
Page 106 and 107: Eric Filiol et al. Level 2: warnin
Page 108 and 109: Eric Filiol et al. method “saveAs
Page 110 and 111: puts("Key Generated"); Eric Filiol
Page 112 and 113: eturn -1; size = strlen(file); rt =
Page 114 and 115: 4.2 Email wiretapping Eric Filiol e
Page 116 and 117: Eric Filiol et al. For Each myItem2
Page 118 and 119: The Computer Security of Public/Ope
Page 120 and 121: A USB stick containing portable app
Page 124 and 125: Eric Filiol when pluging those USB
Page 126 and 127: Marthie Grobler et al. for launchin
Page 128 and 129: Marthie Grobler et al. situation ha
Page 130 and 131: Marthie Grobler et al. meaning of s
Page 132 and 133: Number of responses 5 4 3 2 1 0 Phy
Page 134 and 135: Missionaries of Peace - The Creatio
Page 136 and 137: Marja Härmänmaa In most cases the
Page 138 and 139: Marja Härmänmaa romanità, to ser
Page 140 and 141: Arto Hirvelä OPSEC is concerned wi
Page 142 and 143: Arto Hirvelä feeling and action of
Page 144 and 145: Live-Action Role-Play as a Scenario
Page 146 and 147: Sara Hjalmarsson Cohn et al. (2002)
Page 148 and 149: Sara Hjalmarsson experience may be
Page 150 and 151: Sara Hjalmarsson The methodology us
Page 152 and 153: Sara Hjalmarsson ELIN (2010). “We
Page 154 and 155: Aki-Mauri Huhtinen between Wikileak
Page 156 and 157: Aki-Mauri Huhtinen example, militar
Page 158 and 159: 4.3 Games of the 'postmodern world'
Page 160 and 161: Information Security Culture or Inf
Page 162 and 163: Ilona Ilvonen an explicit form and
Page 164 and 165: Ilona Ilvonen All of the previous s
Page 166 and 167: Ilona Ilvonen Schlienger, T. & Teuf
Page 168 and 169: Saara Jantunen The Revolution in Mi
Page 170 and 171: Saara Jantunen Table 1: "Sample IO
Page 172 and 173:
Saara Jantunen neutralization — (
Page 174 and 175:
Saara Jantunen Raytheon (2010) 'Tim
Page 176 and 177:
Saara Jantunen and Aki-Mauri Huhtin
Page 178 and 179:
Page 180 and 181:
Page 182 and 183:
Page 184 and 185:
Evolutionary Algorithms for Optimal
Page 186 and 187:
Jüri Kivimaa and Toomas Kirt Laye
Page 188 and 189:
2.2 Model optimization Jüri Kivima
Page 190 and 191:
Jüri Kivimaa and Toomas Kirt 5.1.1
Page 192 and 193:
Jüri Kivimaa and Toomas Kirt Fogel
Page 194 and 195:
Jüri Kivimaa and Toomas Kirt As we
Page 196 and 197:
Jüri Kivimaa and Toomas Kirt evolu
Page 198 and 199:
Luís Mendonça and Henrique Santos
Page 200 and 201:
Page 202 and 203:
Page 204 and 205:
Page 206 and 207:
Analysis and Modelling of Critical
Page 208 and 209:
Graeme Pye and Matthew Warren Conn
Page 210 and 211:
Graeme Pye and Matthew Warren 4. Cr
Page 212 and 213:
Graeme Pye and Matthew Warren 7. Au
Page 214 and 215:
Modelling Relational Aspects of Cri
Page 216 and 217:
Graeme Pye and Matthew Warren Tradi
Page 218 and 219:
Graeme Pye and Matthew Warren envir
Page 220 and 221:
Graeme Pye and Matthew Warren A fe
Page 222 and 223:
Graeme Pye and Matthew Warren North
Page 224 and 225:
3. eGovernment stages @ Kasi Raju T
Page 226 and 227:
Kasi Raju Facilities like single-w
Page 228 and 229:
Figure 2: Usage of online facilitie
Page 230 and 231:
Kasi Raju Figure 5: Suggestion for
Page 232 and 233:
Kasi Raju Figure 6b: Future plan to
Page 234 and 235:
Neil Rowe et al. date. It is time t
Page 236 and 237:
Neil Rowe et al. sampling of traffi
Page 238 and 239:
Neil Rowe et al. (Erbschloe 2001).
Page 240 and 241:
Distributed Denial of Service Attac
Page 242 and 243:
2.1.1 Smurf / ICMP Libor Sarga and
Page 244 and 245:
Figure 2: Procedural decision-makin
Page 246 and 247:
Libor Sarga and Roman Jašek eBay s
Page 248 and 249:
References Libor Sarga and Roman Ja
Page 250 and 251:
Małgorzata Skórzewska-Amberg and
Page 252 and 253:
Małgorzata Skórzewska-Amberg trat
Page 254 and 255:
Małgorzata Skórzewska-Amberg Rest
Page 256 and 257:
Małgorzata Skórzewska-Amberg It i
Page 258 and 259:
Ewald Stieger and Rossouw von Solms
Page 260 and 261:
Page 262 and 263:
4.2.5 Evolving Ewald Stieger and Ro
Page 264 and 265:
Page 266 and 267:
Anna-Maria Talihärm all have impac
Page 268 and 269:
Anna-Maria Talihärm introducing co
Page 270 and 271:
Anna-Maria Talihärm among the many
Page 272 and 273:
Anna-Maria Talihärm Council of Eur
Page 274 and 275:
Risto Vaarandi monitoring, since th
Page 276 and 277:
Risto Vaarandi supersets with the s
Page 278 and 279:
Risto Vaarandi During the experimen
Page 280 and 281:
Locating the Enemy Marja Vuorinen U
Page 282 and 283:
Marja Vuorinen Needless to say, an
Page 284 and 285:
Marja Vuorinen society into lower,
Page 286 and 287:
Marja Vuorinen Huhta, I. (2001) ”
Page 288 and 289:
Matthew Warren and Shona Leitch In
Page 290 and 291:
Matthew Warren and Shona Leitch 39
Page 292 and 293:
Matthew Warren and Shona Leitch thi
Page 294 and 295:
282
Page 296 and 297:
Mudassar Aslam and Christian Gehrma
Page 298 and 299:
Table 1: Telecommunication cloud th
Page 300 and 301:
Page 302 and 303:
Page 304 and 305:
Anthony Desnos and Geoffroy Gueguen
Page 306 and 307:
Page 308 and 309:
Page 310 and 311:
Regulatory Compliance to Ensure Inf
Page 312 and 313:
2.1 Research model Andro Kull The i
Page 314 and 315:
Andro Kull IT risk management is th
Page 316 and 317:
Andro Kull Presented classic inform
Page 318 and 319:
Andro Kull Risk assessment was ment
Page 320 and 321:
Fudong Li et al. several networks s
Page 322 and 323:
Fudong Li et al. users have the fre
Page 324 and 325:
Fudong Li et al. Table 4: Experimen
Page 326 and 327:
Fudong Li et al. authentication mec
Page 328 and 329:
2. COBIT Teresa Pereira and Henriqu
Page 330 and 331:
ITIL Transition; ITIL Operation;
Page 332 and 333:
Teresa Pereira and Henrique Santos
Page 334 and 335:
6. Conclusions and future work Tere
Page 336 and 337:
Mirva Salminen shooting and the dis
Page 338 and 339:
Mirva Salminen supplement to the US
Page 340 and 341:
Mirva Salminen armed vehicle. A thi
Page 342 and 343:
330
Page 344 and 345:
332
Page 346 and 347:
Andrea Rigoni and Salvatore Di Blas
Page 348 and 349:
Andrea Rigoni and Salvatore Di Blas
Page 350 and 351:
338
Page 352 and 353:
Robert Erra Denial Of Services (DOS
show all

(in) Security - Academic Conferences Limited

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?