Provide Security Guarantees Research Articles

Perturbation defense ultra high-speed weak target recognition

Ultra high-speed target recognition in complex electromagnetic environments is a critical and fundamental machine perception issue. It is difficult to ensure privacy protection and intelligent confrontation with centralized training in many practical situations. In this paper, an efficient ultra high-speed target recognition approach, named InVision, for robot systems is proposed using deep trustworthy federated learning (DTFL). InVision is accurate, safe, fast, and robust. Particularly, geometric component transformer (GCT) is presented to significantly promote neural element's complex representation description ability. And an ambiguity-aware cooperative learning (AACL) scheme is developed to relieve the noisy label problem. Moreover, decentralized federated training (DFT) is designed to mitigate the intractable privacy protection problem, to efficiently search for similarities and reduce the representation redundancy. Furthermore, to promote the running speed of the system in real-world environments, a lightweight deep architecture, called Mobile-XB, is developed. Extensive quantitative and qualitative experiments are carried out, and the results demonstrate that InVision greatly outperforms the outstanding comparison methods, establishing efficient connections and extraction, and providing security guarantees.

Cancelable palmprint: intelligent framework toward secure and privacy-aware recognition system

Cancelable template protection techniques are indispensable to provide essential security and privacy privileges in biometric systems. This paper introduces an efficient cancelable palmprint recognition technique based on multi-level transformations. Gabor filtering with feature remapping is introduced for extracting highly discriminative features. Histogram remapping is applied to nonlinearly transform the downsampled Gabor features to be normally distributed. This feature-remapping step is proposed to enhance the discriminatory power and alleviate the effect of feature variability and image artifacts. Comb filtering is applied to the mapped features as a first protection layer. To provide security guarantees against linkability attacks, index-based locality-sensitive hashing (LSH) is introduced as a second protection layer to transform the comb-filtered mapped real-valued features into maximum-ranked indices. Recognition is performed in the secured domain to accelerate matching and to preserve the user’s privacy. Results show that the proposed scheme provides a large re-issuance ability, protects templates from being inverted, and demonstrates strong unlinkability across different databases. In addition, favorable verification/identification accuracy is obtained and the system satisfies the needs for real-time applications. A global measure D↔sys\\documentclass[12pt]{minimal} \\usepackage{amsmath} \\usepackage{wasysym} \\usepackage{amsfonts} \\usepackage{amssymb} \\usepackage{amsbsy} \\usepackage{mathrsfs} \\usepackage{upgreek} \\setlength{\\oddsidemargin}{-69pt} \\begin{document}$${D}_{\\leftrightarrow }^{sys}$$\\end{document} value of 0.01 is obtained, and thus, correlation attacks are mitigated. The recognition results for the legitimate scenario are 100% identification accuracy and 0% EER. For the worst case (same token scenario), the corresponding results are 99.752% and 0.31%, respectively.

Increasing Security Levels in the Tourism and Air-Transport Industries Could Enhance African People’s Quality of Life and Tourism Demand

The aims of this study are to analyze the tourism and air-transport industries in Africa and determine how African governments could improve the safety of tourists and local communities in this region to improve resident quality of life and tourism demand. Indeed, this study tries to improve African people’s lives through the tourism and travel sectors so that they can thrive in terms of their quality of life and happiness. The findings of the current study reveal that Morocco, Egypt, South Africa, and Tunisia are the most visited countries by international tourists; in fact, these four countries are the ones that generated the most income from international tourism in the period analyzed. Moreover, the results suggest that the tourism and air-transport industries in Africa could improve national economies, infrastructure, and resident quality of life thanks to international tourism receipts and increasing security levels around travel and tourism activities. Obviously, the tourism industry cannot be developed when there is constant insecurity, terrorism, and perpetual armed conflicts, as is the case in Nigeria, Somalia, DR Congo, Libya, Mali, and Cameroon, among many others. Security is the most important factor for a tourist destination because the safety and security of residents and tourists are the primary factors affecting tourism growth. The novelty of this research resides in its willingness to improve African people’s quality of life through air-transport and tourism activities, providing security guarantees for tourist and resident safety. This manuscript also contributes to enhancing and bootstrapping the literature on security in the travel and tourism sectors industry, particularly in Africa, where security is a priority more than a necessity.

Pentingnya Perlindungan Konsumen dalam Transaksi Jual Beli

Buying and selling is a common activity in Indonesian society, and every day there are people involved in buying and selling transactions. Buying and selling refers to a transaction between a seller, who is usually a business actor, and a buyer, who is a consumer. In the buying and selling process, consumers often face problems or losses. Therefore, Indonesia has issued a consumer protection law to protect consumer rights. The problems faced by consumers are not limited to selecting goods alone, but involve more complex problems related to the awareness of all parties, including business actors and consumers, about the importance of consumer protection. The aim of implementing, developing and regulating consumer protection is to increase consumer dignity and awareness. More than that, it also aims to encourage business actors not to abuse their business practices and act responsibly. It is important for consumers to realize that they have rights protected by the Consumer Protection Law, so that they can exercise social control over the behavior and business practices of business actors and the government. This research uses socio-legal research methods that adopt an interdisciplinary approach or a "hybrid" approach that combines aspects of sociological research with a normative approach that applies qualitative analysis. The results of this article state that consumer protection law has great significance in the context of buying and selling activities. For business actors, this law is important because it provides clear guidelines regarding permitted practices and prohibits actions that could harm consumers. Meanwhile, for consumers, consumer protection laws are also important because they provide security guarantees when they are involved in buying and selling transactions

Factors affecting the intention to use QRIS on MSME customers

This study investigates the factors influencing the intention to use the Quick Response Code Indonesian Standard (QRIS) among Micro, Small, and Medium Enterprises (MSMEs) customers in Indonesia. In this study, a quantitative approach was taken with the survey method using an online questionnaire that was distributed to 240 MSME customers. The collected data were analyzed using the Statistical Package for the Social Sciences (SPSS) and Structural Equation Modeling (SEM) using the Analysis of Moment Structures (AMOS) 24 to test their validity and reliability. The study results show that factors such as perceived benefits, knowledge, and perceived safety significantly affect customer confidence in using QRIS. However, perceived ease of use does not significantly affect trust. In addition, perceived usefulness, knowledge, and trust significantly influence the intention to use QRIS, while perceived ease of use and perceived safety have no significant effect. Based on these findings, increasing perceptions of benefits, knowledge, and trust is critical to encouraging the use of QRIS among MSME customers. Although ease of use and security do not directly affect usage intentions, ensuring an easy user experience and providing security guarantees for MSME customers are still essential. This study contributes to the literature by increasing understanding of the factors driving QRIS adoption in SMEs. These findings can assist in developing effective strategies to increase the use of QRIS and the growth of the MSME sector, emphasizing benefits and advantages, increasing customer knowledge, and building trust in security.

E-Wallet Adoption in Continuance Intention As A e-Payment System for Live Streaming Shopping

This research is to determine factors that influence users' intention to continue to use e-wallets on a live shopping. A total of 360 users participated in filling out questionnaires. The result shows the ease of using a system creates a sense of pleasure and satisfaction for the user so that they will use a similar payment system on their next shopping. Users ask the platform to provide security guarantees so that users trust the payment system and continue to use the payment system. In addition, the system security factor is also an essential part of the user's mind.

Analisis Keragaman Produk dan Keamanan terhadap Minat Beli pada Marketplace Sociolla di Surabaya


 The rapid development of the internet currently has security threats to online transactions so that it becomes a challenge for companies to maintain consumer buying interest, one of which is by providing security guarantees and offering a variety of products. This research was conducted with the aim of analyzing the effect of product diversity and safety on consumer buying interest at the Sociolla marketplace in Surabaya. The approach used is quantitative with a purposive sampling technique of 117 respondents who know the Sociolla marketplace and are domiciled in Surabaya. The software used in the data analysis process is SmartPLS. The final results of the research show that product diversity and safety make a positive contribution to consumer buying interest.
 Keywords: product diversity; purchase intention; security

Does the Cloud Computing Environment Provide Security Guarantees for Sensitive Data?

Does the Cloud Computing Environment Provide Security Guarantees for Sensitive Data?

Security of Cyber-Physical Systems of Chemical Manufacturing Industries Based on Blockchain

The traditional manufacturing systems are often enterprise-centric systems, whereas the modern chemical industry is oriented towards industrial chain integration. Enterprise entities present a loosely coupled state at the scale of the industrial chain, with decentralized characteristics. This poses greater challenges and requirements for the industrial safety system. Based on the characteristics of the chemical manufacturing industry and blockchain, the application of the information security of blockchain in the chemical manufacturing industry is studied herein and the cyber-physical systems security architecture model of dual blockchains is proposed. The first-layer blockchain is applied at the system’s core function level to solve security issues at the system level and provide security guarantees for communication, transactions, and billing between users and manufacturers. Meanwhile, the second layer involves the system resource layer, which not only solves the security problem of cross-level platform data interaction, but also enables the point-to-point security of the device-level cyber-physical system to ensure internal equipment communication information security. A domestic commercial concrete manufacturing company’s real production and operation data were used to simulate basic functions such as transaction requests, trade success, and blockchain queries. After multiple tests, results show that its basic blockchain, query response, transaction creation, and block creation functions are all finished within milliseconds, meeting the industrial requirements. Its safety verification can meet the requirements of safety, efficiency, and low latency for production control in chemical industry sites, proving the feasibility of applying the dual blockchain model in the chemical manufacturing industry. Based on data security, privacy, and integrity requirements, the blockchain technology proposed in this article provides a more efficient, transparent, and secure operation and management solution for the chemical industry.

Efficient Rate-Splitting Multiple Access for the Internet of Vehicles: Federated Edge Learning and Latency Minimization

Rate-Splitting Multiple Access (RSMA) has recently found favour in the multi-antenna-aided wireless downlink, as a benefit of relaxing the accuracy of Channel State Information at the Transmitter (CSIT), while in achieving high spectral efficiency and providing security guarantees. These benefits are particularly important in high-velocity vehicular platoons since their high Doppler affects the estimation accuracy of the CSIT. To tackle this challenge, we propose an RSMA-based Internet of Vehicles (IoV) solution that jointly considers platoon control and FEderated Edge Learning (FEEL) in the downlink. Specifically, the proposed framework is designed for transmitting the unicast control messages within the IoV platoon, as well as for privacy-preserving FEEL-aided downlink Non-Orthogonal Unicasting and Multicasting (NOUM). Given this sophisticated framework, a multi-objective optimization problem is formulated to minimize both the latency of the FEEL downlink and the deviation of the vehicles within the platoon. To efficiently solve this problem, a Block Coordinate Descent (BCD) framework is developed for decoupling the main multi-objective problem into two sub-problems. Then, for solving these non-convex sub-problems, a Successive Convex Approximation (SCA) and Model Predictive Control (MPC) method is developed for solving the FEEL-based downlink problem and platoon control problem, respectively. Our simulation results show that the proposed RSMA-based IoV system outperforms both the popular Multi-User Linear Precoding (MU–LP) and the conventional Non-Orthogonal Multiple Access (NOMA) system. Finally, the BCD framework is shown to generate near-optimal solutions at reduced complexity.

User's Satisfaction Levels Toward Sadeng Coastal Fishing Port Service at Gunungkidul Regency

Ensuring high-quality service is one of the most challenging aspects of managing fishing ports, including Sadeng Fishing Port. Service quality is important because it is one of the success determinants of port management. The port's prosperity is intimately tied to the quality of service given, which supports the port's role and function as a center for fishing activities. The study aimed to measure user satisfaction with service quality and which service indicators needed modification and maintenance to improve service quality in the Coastal Fishing Port (PPP). A survey of 45 port users, including fishermen, ship owners, traders, and fish processors, as well as the Fish Auction Site Manager and the Port Manager, was conducted in PPP Sadeng from August to October 2021. The information was analyzed using the Customer Satisfaction Index (CSI) and the Importance Performance Analysis (IPA). The study showed that the availability of basic, functional, and supporting facilities was 86.84 percent. Port users were satisfied to a degree of 65.20 percent, which is considered relatively satisfactory. To improve service quality, about six service attributes should be prioritized. The port personnel's ability to respond quickly to problems; the port personnel's responsiveness to users' complaints; the personnel's ability to provide security guarantees in using services; the cleanliness, orderliness, and comfort of the port physical condition; and the port facilities' arrangement, completeness, readiness, and cleanliness were among them. It was necessary to improve the provision of amenities, especially for the functional facilities; in the meantime, improving service quality should prioritize personnel reaction to problems and handling user complaints.
 Keywords: Customer Satisfaction Index, Importance Performance Analysis, Sadeng Coastal Fishing Port, Gunungkidul Regency

Enhancing quantum cryptography with quantum dot single-photon sources

Quantum cryptography harnesses quantum light, in particular single photons, to provide security guarantees that cannot be reached by classical means. For each cryptographic task, the security feature of interest is directly related to the photons’ non-classical properties. Quantum dot-based single-photon sources are remarkable candidates, as they can in principle emit deterministically, with high brightness and low multiphoton contribution. Here, we show that these sources provide additional security benefits, thanks to the tunability of coherence in the emitted photon-number states. We identify the optimal optical pumping scheme for the main quantum-cryptographic primitives, and benchmark their performance with respect to Poisson-distributed sources such as attenuated laser states and down-conversion sources. In particular, we elaborate on the advantage of using phonon-assisted and two-photon excitation rather than resonant excitation for quantum key distribution and other primitives. The presented results will guide future developments in solid-state and quantum information science for photon sources that are tailored to quantum communication tasks.

Digital Watermarking for Detecting Malicious Intellectual Property Cores in NoC Architectures

System-on-chip (SoC) developers utilize intellectual property (IP) cores from third-party vendors due to increasing design complexity, cost, as well as time-to-market constraints. A typical SoC consists of a wide variety of IP cores [such as processor, memory, controller, and field-programmable gate array (FPGA)] that interact using a network-on-chip (NoC). This global trend of designing SoCs using third-party IPs raises serious concerns about security vulnerabilities. Since NoC facilitates communication between all IPs in an SoC, NoC is the ideal place for any hardware Trojans to hide and launch a plethora of attacks. Due to the resource-constrained nature of SoCs, developing security solutions against such attacks is a major challenge. In particular, in an eavesdropping attack, a Trojan-infected router copies packets transferred through the NoC and reroutes the duplicated packets to an accompanying malicious application running on another IP in an attempt to extract confidential information. While authenticated encryption can thwart such attacks, it incurs unacceptable overhead in resource-constrained SoCs. In this article, we propose a lightweight alternative defense based on digital watermarking techniques. We develop theoretical models to provide security guarantees. Experiments using realistic SoC models and diverse applications demonstrate that our approach can significantly outperform state-of-the-art methods.

Innovations and applications of operating system security with a hardware-software co-design

<p indent="0mm">The operating system is the foundation and core support technology of modern computing platforms, responsible for managing hardware resources, controlling the operation of programs, improving the human-machine interface and providing support for application software. Its connotation and extension are constantly expanding with the development of applications and hardware. The scientific aspects of operating systems fall into two categories: The first is the efficient abstraction and management of physical resources; the second is the provision of an efficient operating environment for applications. In the last decade and the period ahead, the specific connotation of the scientific problem is how to provide efficient abstraction and management of physical resources such as heterogeneous cores and data centers, to create efficient operating environments to support application scenarios such as cloud computing, big data and the Internet of Things. Because of the importance of the operating system, the security capability of the operating system is critical to the security of the entire system. The security of the operating system is the security pillar in mobile platforms or cloud platforms. Similarly, in many emerging scenarios, such as the industrial internet, smart networked cars and serverless computing, computer systems’ security is related to data and property security, and possibly production and life safety. Therefore, the need to enhance the security capability of the operating system against software and hardware attacks remains urgent in the face of various security threats and multi-dimensional security vulnerabilities. It requires the design of system software to take into account chip TEE security, virtualization security, system kernel security, and application system security. This paper presents our team’s work on the innovation and application of operating system security from the above aspects. Specifically, in the aspect of TEE on-chip, we propose Penglai that can offer trusted execution environments for security-sensitive computation. Penglai is built over the emerging RISC-V architecture and its core feature is scalability in both memory capacity and performance. In the aspect of virtualization security, we design CloudVisor which introduces a new system architecture for the virtualization software stack. CloudVisor can offer the abstraction of secure VM against curious or malicious hypervisor and cloud providers. In the aspect of kernel security, we build ChCore which uses the microkernel design and introduces some new mechanisms for reliability. As a microkernel OS, ChCore can greatly mitigate the consequences of security vulnerabilities and it can also work as an TEE OS to cooperate with the TEE hardware technologies. In the aspect of application system security, we propose PiXiu which can provide security guarantee for distributed applications. PiXiu targets on securing sensitive computation, especially for the distributed computation, and it assumes a powerful attack model. Overall, all of the above-introduced research adopt the hardware-software co-designs, and they can fuse with each other to offer a full-stack security system. Meanwhile, the paper will also provide an overview of the representative academic work in each aspect, which includes the comparison of different technical contributations.

Pengaruh Servicescape, Kualitas Layanan, dan Persepsi Harga Terhadap Kepuasan Konsumen pada Larissa Aesthetic Center Cabang Purwokerto

The purpose of this study was to analyze the effect of servicescape, service quality and price perception on consumer satisfaction at Larissa Aesthetic Center Purwokerto. The research population is the consumers of Larissa Aesthetic Center Purwokerto, with a sample of 104 respondents. The sampling technique used was accidental sampling. Research method using multiple linear regression. The results of the study show that servicescape and service quality have a positive and significant effect on consumer satisfaction at Larissa Aesthetic Center Purwokerto. Price perception has not significant effect on consumer satisfaction at Larissa Aesthetic Center Purwokerto. This finding implies the need to maintain and improve the concept of the existing servicescape by adding instructions to the room to make it easier for consumers to understand the function of the room at the Larrissa Aesthetic Center Purwokerto. In addition, providing security guarantees and the risk of damage as well as paying attention to the neatness of the appearance of employees in order to add positive value to the company.

Analysis of hardware implementations of electronic signature algorithms qTesla, Crystals-Dilitium and MQDSS at different levels of security

It is known, that existing public-key cryptography algorithms based on RSA and elliptic curves provide security guarantees accompanied by complexity. Based on this one can talk about the impossibility to solve problems of integer factorization and discrete logarithm. However, experts predict that the creation of a quantum computer will be able to crack classical cryptographic algorithms. Due to this future problem, the National Institute of Standards and Technologies (NIST), together with leading scientists in the field of cryptography, began an open process of standardizing public-key algorithms for quantum attacks. An important feature of the post-quantum period in cryptography is the significant uncertainty regarding the source data for cryptanalysis and counteraction in terms of the capabilities of quantum computers, their mathematical and software, as well as the application of quantum cryptanalysis to existing cryptotransformations and cryptoprotocols. Mathematical methods of electronic signature (ES) have been chosen as the main methods of NIST USA, which have undergone significant analysis and substantiation in the process of extensive research by cryptographers and mathematicians at the highest level. These methods are described in detail and passed the research at the first stage of the international competition NIST USA PQC. Historically, in 1997, NIST sought public advice to determine the replacement of the data encryption standard (DES), Advanced Encryption Standard (AES). Since then, open cryptographic estimations have become a way of choosing cryptographic standards. For example, NESSIE (2000-2002), eSTREAM (2004-2008), CRYPTREC (2000-2002), SHA-3 (2007-2012) and CAESAR (2013-2019) have adopted this approach. Security was the main parameter in these estimations. Performance in software, performance in application-specific integrated circuits (ASICs), performance in FPGAs, and feasibility with limited resources (small microprocessors and low-power hardware) are secondary criteria. This paper presents the comparison of the hardware of three signature algorithms (qTesla, Crystals-Dilitium, MQDSS), which, in particular, are the candidates for the 2nd round of the NIST PQC competition, and the Crystals-Dilitium algorithm is the finalist of this competition. The objective of this work is to analyze and compare three hardware implementations of candidates for the second round of the NIST PQC contest for an electronic signature algorithm.

Generic server-aided secure multi-party computation in cloud computing

Cloud computing has become one of the most popular distributed computing paradigms in recent years. With its advantages of low cost, on-demand flexibility, and high data processing abilities, more and more enterprises have adopted the cloud computing paradigm to build up their IT infrastructure. By performing collaborative computation tasks (e.g., big data analysis tasks) with multiple datasets of different correlated enterprises in cloud computing, the generated valuable information will provide the enterprises with higher productivity and financial gains. However, due to the privacy concerns from the enterprises, how to efficiently enable them to achieve secure multi-party joint datasets analysis in cloud computing without leaking their own private dataset becomes a critical but challenging problem for the enterprises. In this paper, focusing on securely performing any collaborative computation task in cloud computing, we construct a generic server-aided secure multi-party computation protocol to tackle the problem. Our solution can provide security guarantee in the setting where at most n-1 client parties are malicious while the server is semi-honest and there is no collusion between the server and clients. The security and experimental performance analysis show that this work is currently the most efficient server-aided secure multi-party computation protocol with the same security guarantee compared with all the previous works to the best of our knowledge.

A Reversible Data Hiding Scheme in Encrypted Domain for Secret Image Sharing Based on Chinese Remainder Theorem

Schemes of reversible data hiding in encrypted domain (RDH-ED) based on symmetric or public key encryption are mainly applied in the scenarios of end-to-end communication. To provide security guarantees for the multi-party scenarios, a RDH-ED scheme for secret image sharing based on Chinese remainder theorem (CRT) is presented. In the application of (<inline-formula> <tex-math notation="LaTeX">$t$ </tex-math></inline-formula>, <inline-formula> <tex-math notation="LaTeX">$n$ </tex-math></inline-formula>) secret image sharing, an image is first shared into <inline-formula> <tex-math notation="LaTeX">$n$ </tex-math></inline-formula> different shares of ciphertext. Only when not less than <inline-formula> <tex-math notation="LaTeX">$t$ </tex-math></inline-formula> shares obtained, can the image be reconstructed. In our scheme, additional data could be embedded into the image shares. To realize data extraction from the image shares and the reconstructed image separably, two data hiding methods are proposed: one is homomorphic difference expansion in encrypted domain (HDE-ED) that supports data extraction from the reconstructed image by utilizing the addition homomorphism of CRT secret sharing; the other is difference expansion in image shares (DE-IS) that supports the data extraction from the marked shares before image reconstruction. Experimental results demonstrate that the proposed scheme could not only maintain the security and the threshold function of secret sharing system, but also obtain a better reversibility and efficiency compared with most existing RDH-ED algorithms. The maximum embedding rate of HDE-ED could reach 0.500 bits per pixel and the average embedding rate of DE-IS could reach 0.4652 bits per pixel.

New Data on UN Mission Mandates 1948–2015: Tasks Assigned to Missions in their Mandates (TAMM)

Tasks Assigned to Missions in their Mandates (TAMM) provides comprehensive new data on the mandates of UN missions between 1948 and 2015. Until now, datasets have described mandates in terms of their influential characteristics, such as whether they are robust or multidimensional, or placed them into broad categories driven by idiosyncratic theoretical expectations. Despite limitations on data availability, mandates have been tied to numerous outcomes related to peacekeeping effectiveness. TAMM meets the need for flexible, minimally processed, and fine-grained data on mission mandates by recording the full range of tasks in mandates. The dataset comes in mission-resolution and mission-month versions that are designed to complement existing data on peacekeeping and to be easily adaptable to a wide range of research interests. In this article, I introduce TAMM and use the data to conduct a replication and expansion of Hultman, Kathman and Shannon (2014). I find evidence that missions with mandates that dictate they provide security guarantees and raise the costs of fighting, reduce battlefield hostilities.

The Role of Technology Acceptance Model Theory and the Relationship with Hifz Mal in the Phenomences of Using E-Money in the Milenial Era

This research aims to see the role of the Technology Acceptance Model theory that can influence the millennial generation in using e-money and its relationship with hifz mal. The basic variables are ease and usefulness, and also three other variables, namely security, trust and experience. The research model was empirically tested using a data collection method through questionnaires for millennial generation of e-money users, namely students of the Faculty of Economics and Business, Diponegoro University using multiple linear regression analysis techniques using the SPSS 22 application. The results showed that usefulness and trust variables have a positive and significant effect on the use of e-money. Meanwhile, convenience, security and experience do not play a role in influencing the millennial generation in using e-money. The connection with hifz mal is that the use of e-money provides convenience and benefits for its users while providing security guarantees, so that Muslim users of electronic money avoid things that are not in accordance with the Islamic economic system.