Secure Shell Research Articles

The Security of SSH Protocol Public Key Sharing in the Post-Quantum Era

The security of traditional cryptographic schemes is based on mathematical puzzles that cannot be cracked by current computers. However, the rapid development of quantum computers has the potential to greatly reduce the time and resources required to crack these encryption schemes. Although true quantum supremacy may still be years away, it is imperative to adopt anti-quantum algorithms proactively. This preemptive approach aims to thwart "catch first, decrypt later" attacks, wherein attackers intercept and store encrypted data with the intent of decrypting it once quantum computing becomes sufficiently advanced. This threat is particularly critical for protocols like Secure Shell (SSH), which is widely used for secure communication over unsecured networks. In this paper, we propose an innovative approach to enhance the security of public-key distribution within the SSH protocol. Our method integrates quantum-resistant algorithms to ensure that even with the advent of quantum computing, the confidentiality and integrity of SSH sessions are maintained. We emphasize the importance of using cryptographic protocols that operate over open channels, which, while not necessarily confidential, must be authenticated to prevent tampering. In such scenarios, attackers may be able to intercept and even extract information, but they should not be able to alter the data.

Detecting Brute Force Attacks on SSH and FTP Protocol Using Machine Learning: A Survey

The significance of detecting network traffic anomalies in cybersecurity cannot be overstated, especially given the increasing frequency and complexity of computer network attacks. As new Internet-related technologies emerge, so do more intricate attacks. One particularly daunting challenge is represented by dictionary-based brute-force attacks, which require effective real- time detection and mitigation methods. In this paper, we investigate Secure Shell or Secure Socket Shell, is a network protocol that gives users, particularly system administrators, a secure way to access a computer over an unsecured network(SSH)and File Transfer Protocol is a standard network protocol used for the transfer of files from one host to another over a TCP-based network, such as the Internet (FTP) brute-force attack detection by using Our research focuses on using the machine learning approach to detect SSH and FTP brute-force attacks. A reasonably thorough investigation of machine learners' efficacy in identifying brute force assaults on SSH and FTP is made possible by employing several classifiers. Brute-force assaults are a popular and risky method of obtaining usernames and passwords. Applying ethical hacking is an excellent technique to examine the effects of a brute-force assault. This article discusses many defense strategies and approaches to using brute-force assaults. The pros and cons of several defense strategies are enumerated, along with information on which kind of assault is easiest to identify. we made use of machine learning classifiers: Naive Bayes, Random Forest, Logistic Regression, we determined that the Random Forest algorithm achieved the highest level with an accuracy the contribution lies in demonstrating the feasibility of training and evaluating basic Random Forest models with two independent variables to classify CSE-CIC-IDS2018 dataset.

Strategic Network Management for Modern Campuses: A Comprehensive Framework

Campus handling of networks has become critical in the continuously changing world of higher education. This paper offers a thorough method for managing and safeguarding networks in a campus setting with multiple departments. Our approach focuses on four departments: the administrative, civil, computer science and engineering (CSE), and electrical and electronics engineering (EEE) departments. It combines multiple networking technologies to improve security and maximize speed. Network division using virtual LANs (VLANs), efficient IP address allocation using Variable Length Subnet Masks (VLSM), simplified network configuration using Dynamic Host Configuration Protocol (DHCP), dynamic routing using Routing Information Protocol version 2 (RIPv2), granular access control using Access Control Lists (ACLs), enhanced security using Network Address Translation (NAT), secure remote access using Secure Shell version 2 (SSHv2), and improved network resilience through Link Aggregation are the main components of our system.

Performance and Efficiency Exploration of Hardware Polynomial Multipliers for Post-Quantum Lattice-Based Cryptosystems

The significant effort in the research and design of large-scale quantum computers has spurred a transition to post-quantum cryptographic primitives worldwide. The post-quantum cryptographic primitive standardization effort led by the US NIST has recently selected the asymmetric encryption primitive Kyber as its candidate for standardization and indicated NTRU, as a valid alternative if intellectual property issues are not solved. Finally, a more conservative alternative to NTRU, NTRUPrime was also considered as an alternate candidate, due to its design choices that remove the possibility for a large set of attacks preemptively. All the aforementioned asymmetric primitives provide good performances, and are prime choices to provide IoT devices with post-quantum confidentiality services. In this work, we present a comprehensive exploration of hardware designs for the computation of polynomial multiplications, the workhorse operation in all the aforementioned cryptosystems, with a thorough analysis of performance, compactness and efficiency. The presented designs cope with the differences in the arithmetics of polynomial rings employed by distinct cryptosystems, benefiting from configurations and optimizations that are applicable at synthesis time and/or run time. In this context, we target a use case scenario where long-term key pairs are used, such as the ones for VPNs (e.g., over IPSec), secure shell protocols and instant messaging applications. Our high-performance design variants exhibit figures of latency comparable to the ones needed for the execution of the symmetric cryptographic primitives also included in the Post-Quantum schemes. Notably, the performance figures of the designs proposed for NTRU and NTRU Prime surpass the ones described in the related literature.

Keamanan Komputer Dalam Novel Spammer Karya Ronny Mailindra

The threats related to computer viruses have become a highly significant issue in the era of technology. Data and computer system security are the primary concerns in various sectors, including businesses, government, and individuals. This research aims to examine how computer viruses are spread and how computer security works within the novel Spammer by Ronny Mailindra. The method used is hermeneutics. Based on the analysis and discussion, the findings reveal 1) Spyware for mobile phones, 2) Trojans, 3) Viruses, 4) Digital footprints, 5) Remote SSH. In the novel Spammer it is depicted that computer viruses are commonly disseminated through email spam, and one of the network security protocols that proves challenging to breach is the Secure Shell Protocol (SSH).

NETWORK PROGRAMMABILITY FOR NETWORK ISSUE USING PARAMIKO LIBRARY

In a company, information technology is needed, especially computer networks, to facilitate data communication. The management of a computer network, of course, requires good administration. The criteria for whether or not a network is good can be seen from the performance, reliability, and security indicators so that it will not cause network issues. Events such as server downs, data loss, lost connections, and undetected computers cause the organization's business performance to be disrupted. This study's purpose is to detect network issues with network programmability technology automatically. Paramiko library supports network automation systems and implements OSPF routing protocol in finding the shortest path to send network packets. This study uses the PPDIOO flow, namely prepare, plan, design, implement, operate, and optimize, because it is considered by the flow of making network detection tools. The results showed that the design and implementation of a small-scale network were successfully built by utilizing network programmability technology and the paramiko library, which helps detect network conditions at any time. This design has a dashboard, provisioning, assurance, and policy features that allow administrators to manage and monitor information on each network device. The network design is fitted with REST-API technology and security through a secure shell (ssh) from the Network Controller that can detect the device's connection conditions and the device's health and update the DNS configuration used. Network Issues that have been seen are devices being down, and the connection being lost. Future research can improve features for network troubleshooting when the connection is lost.

Sistem Keamanan Server Linux CentOS Dengan Metode Port Knock dan RST Cookies

The increase in online-based services makes a security system for server computers increasingly needed. A server computer is a device that must always be available to be accessed anytime and anywhere. Some of the security systems needed for server computers include security for ssh port access for remote server access needs and a security system to protect servers from Denial of Service (DoS) attacks which can make the server down and completely inaccessible. In this study, a security system is proposed for a server computer with the Linux CentOS operating system on a port 22 secure shell(ssh) access system using the port knock method and a security system to prevent Denial of Service (DoS) attacks on server computers using the RST Cookies method. The simulation results from the port 22 Secure Shell (SSH) access experiment for the server computer can work well where port 22 Secure Shell(SSH) will remain closed and cannot be accessed carelessly except by accessing several ports first according to predefined port knocking rules. Likewise, the implementation of a security system with the RST Cookies method works very well to prevent Denial of Service (DoS) attacks and can still keep the server accessible with a good response time of under 1 ms

Securing Wireless Communication in Cyber-Physical Systems and the Internet of Things: Addressing Security Challenges

Safeguarding wireless communication in cyber-physical systems (CPS) and the Internet of Things (IoT) is important to stop hackers, data breaches, and system interruptions. Multiple security risks can affect these systems because they are linked together and depend on wireless communication methods. This essay looks at the security issues that mobile and internet-connected things (IoT) have and suggests ways to fix them. Two of the biggest problems are keeping data sent over wifi networks private and secure. You can keep data safe from people listening in or changing it by using encryption methods like Advanced Encryption Standard (AES) and Rivest Cipher (RC4). Furthermore, security tools like Public Key Infrastructure (PKI) and Digital Signatures can confirm the authenticity of devices and make sure that contact is safe. An additional problem is that radio communication methods can be attacked with tactics like man-in-the-middle and repeat attacks. You can make CPS and IoT systems safer by using secure methods like Transport Layer Security (TLS) and Secure Shell (SSH). Protecting radio contact is also important to avoid problems caused by denial-of-service (DoS) attacks. Employing intrusion detection systems (IDS) and firewalls can assist in finding and blocking harmful traffic, ensuring that communication stays unbroken. Lastly, protecting radio transmission in CPS and IoT is important to avoid many security risks. The security of CPS and IoT systems can be improved by using encryption methods, identification mechanisms, and safe protocols to keep data private, secure, and accessible.

Design and Implementation of Security Gatway for IoT Devices Security

As the Internet of Things (IoT) is growing in popularity globally, which has resulted in a rise in cyber threats, experts are focusing more on its security. The majority of IoT security research to date has concentrated on huge devices, while small IoT devices have received comparably little attention. Our primary purpose is, therefore, to research how to ensure the operation of IoT devices that are small. The security gateway is a Security Settings on the Gateway for RaspberryPi built gateway that may link Internet of Things devices to their private network, safeguarding IoT devices from exposure to external networks. In addition, a variety of Security Settings on the Gateway for RaspberryPi security settings are installed, including fiel2ban and a Security Settings on the Gateway for RaspberryPi firewall, in order to avoid brute force and dictionary attacks. This article also studies the communication between Internet of Things (IoT) devices utilizing various secure communications, including Secure Shell (SSH), and analyzes their performance in a variety of circumstances. The gateway's experimental evaluation reveals that the proposed framework can secure tiny IoT devices. Index Terms— Internet of Things (IoT), Security IoT, Security Gateway, Security Settings on the Gateway for RaspberryPi, ESP8266.

PENGONTROLAN KEAMANAN SISTEM KOMPUTER CLIENT DARI SERANGAN HACKER DAN VIRUS KOMPUTER SECARA JARAK JAUH (REMOTE SERVER) DENGAN MENGGUNAKAN SSH

Computer system security is very important to be considered by computer users to protect their computers from attacks such as hackers and computer viruses that can take data and damage the user's computer system. Hacker is a person or party who has the skill in breaking through and sneaking to access a computer without the user's permission and can take data and even damage the system on the user's computer. And a Computer Virus is a computer program that copies and inserts copies into the program and can damage the computer system. So that by using SSH (Secure Shell) can control and check computer security from hacker attacks and computer viruses without having to come to the location where there is a client computer or done remotely (Remote Server).

Design and Implementation of Intelligent Key Cryptography using Time and Tamil Unicode

Objectives: To propose a new novel and unique cryptosystem with interfaces for the designed cryptosystem and to implement and test the new designed methodologies. Methods: The Tamil Unicode is used to convert the Plain text (Sender’s message) to Intelligent Key Cryptography system (IKC) Intermediary code. This intermediary code is converted to IKC cipher text by transpositioning characters with integer digit values of Time in positive direction. IKC decryption of cipher text (received message) to Intermediary code is done using Tamil Unicode and then this is converted to plain text by trans-positioning characters with integer digit values of Time in negative direction. The IKC algorithm developed thus address the discrepancies for the existing algorithms based on the literary survey done. Findings: In the proposed IKC algorithm, the key and key space are generated dynamically from the system Time and the system font Tamil Unicode; thus, reducing the key maintenance problems of the existing algorithms. In current cryptography algorithms, work is based on the assumption that the key value never comes to zero. But all the algorithms are mathematical calculations which will return to zero at an infinite point. This drawback is overcome in IKC algorithm by taking the Time the real infinity. The value of the time once passed will never return. The entire algorithm works in a secure shell developed using C++ and has proved to satisfy the needs of the objective of a robust cryptosystem. Comparative analysis shows that IKC works better compared to the existing system. Novelty: The IKC algorithm displays as: (i) keys are generated dynamically, (ii) cipher once formed is never repeated, even if the same plaintext is enciphered again, and (iii) it satisfies NIST policies. Keywords: IKC Encryption; IKC Decryption; AIRKGS; Dynamic key; Postquantum cryptography

Theoretical and practical assessments over SSH

During the COVID-19 pandemic, universities worldwide were forced to close, causing a shift from presential to remote classes. This situation motivated teachers to find suitable tools to evaluate students remotely, fairly, and accurately. However, currently available systems are either survey or exercise evaluation based, not suitable for competency-based assessments. Faced with this context and limitations of available evaluation systems, we developed TestsOverSSH, a system to devise, deliver, and automatically correct assessments performed in a Command Line Interface (CLI) environment. Unique assessments are generated per student when they access the proposed system via Secure SHell (SSH). TestsOverSSH is composed of shell scripts that orchestrate a series of tools and services that come pre-installed in Linux distributions. It can be used to construct multiple-choice or direct answer questions while also requiring students to perform tasks in the environment per se, namely computer programming or CLI manipulation-related assignments. We present examples of the question types in this system, explaining question formats and operating guidelines. Since the assessments are directly performed in the system, logs and command history can be easily retrieved while keeping information within student devices uncollected. We performed evaluations using this system in a real context and obtained student feedback through a custom survey and the System Usability Scale (SUS). Survey results and SUS score suggest that TestsOverSSH is an intuitive evaluation tool, with eased access and usage, making it applicable for e-learning.

СПОСОБИ З’ЄДНАННЯ З ВІРТУАЛЬНИМ СЕРВЕРОМ AWS, ЩО РОЗТАШОВАНИЙ В ПРИВАТНІЙ ПІДМЕРЕЖІ

In today's world of total digitization cyber security and safe work with data in cyberspace are the most important questions. Especially this is actual for Ukraine, where the number and power of cyberattacks has increased several times over the last year. Businesses that work with private customer data become especially vulnerable. Of course, the ideal option is to place such data on servers that don’t have Internet access. But according to the global trend of moving to the cloud, it is inevitable for private data as well. And so, there is a question of protecting private data in the cloud. To this end, cloud service providers offer services to create private subnets without Internet access. Therefore, the question of how to securely access data in such subnets become actual. One of the leader’s vendors in cloud servicing is Amazon with its Web Services. Amazon offers a Virtual Private Cloud service for setting up a virtual network. The article deals with the analysis of configuration features at the stage of creation of subnets with and without Internet access. The method of connection to a virtual server, located in a private subnet, using the Secure Shell network protocol was analyzed. However, this method has a number of disadvantages. It requires to launch an additional server and its administration. The method also has quite complex settings of the network and requires managing keys. Therefore, another method of connection to private EC2 instance was proposed. The method requires Amazon Systems Manager service, which provides secure access to data without creating additional server, is cost-effective and convenient. At the same time, all connections take place over a secure channel between the Systems Manager agent and the Amazon data center. Main setting’s features for the proposed method were considered.

Securing Wireless Communication in Cyber-Physical Systems and the Internet of Things: Addressing Security Challenges

Safeguarding wireless communication in cyber-physical systems (CPS) and the Internet of Things (IoT) is important to stop hackers, data breaches, and system interruptions. Multiple security risks can affect these systems because they are linked together and depend on wireless communication methods. This essay looks at the security issues that mobile and internet-connected things (IoT) have and suggests ways to fix them. Two of the biggest problems are keeping data sent over wifi networks private and secure. You can keep data safe from people listening in or changing it by using encryption methods like Advanced Encryption Standard (AES) and Rivest Cipher (RC4). Furthermore, security tools like Public Key Infrastructure (PKI) and Digital Signatures can confirm the authenticity of devices and make sure that contact is safe. An additional problem is that radio communication methods can be attacked with tactics like man-in-the-middle and repeat attacks. You can make CPS and IoT systems safer by using secure methods like Transport Layer Security (TLS) and Secure Shell (SSH). Protecting radio contact is also important to avoid problems caused by denial-of-service (DoS) attacks. Employing intrusion detection systems (IDS) and firewalls can assist in finding and blocking harmful traffic, ensuring that communication stays unbroken. Lastly, protecting radio transmission in CPS and IoT is important to avoid many security risks. The security of CPS and IoT systems can be improved by using encryption methods, identification mechanisms, and safe protocols to keep data private, secure, and accessible.

A Comprehensive Research Study on Low-Interaction Secure Shell Honeypot

This paper details information acquired from a secure shell honeypot, including plaintext login credentials and comprehensive attack data. As the number of data breaches and password leaks rises year after year, more dictionaries of reverse-engineered hashed passwords develop. Besides contributing to educational password dictionaries, this article also attempts to provide information about the geographical makeup of hackers encountered, as well as favored protocols. Its goal is to encourage developers to produce practical honeypot solutions for organizations with limited resources for their cyber-protection, as well as to encourage organizations to implement such measures and study their data. The low-interaction, user-friendly honeypot created is capable of running without manual intervention, and without interfering with parallelly running processes. Besides collecting login credentials used with SSH, in plaintext, its capabilities include recording, analyzing, and sending notifications about suspicious network traffic.

Intrusion Detection Prevention System Security Design With Encrypted Passwords and Secure Shell Crypto Keys

Intrusion Detection Prevention System Security Design With Encrypted Passwords and Secure Shell Crypto Keys

Securing Big Data for Knowledge Management into a Circular Economy

The main purpose of the article is to find a solution to secure data transfer. Big data, a mark of Industry 4.0, comes with the risk of transferring knowledge. Data management is becoming harder to be administered, and Big Data (BD) can be a good solution for it. Sending data containing information about actions to be taken by the system may expose the values of the system’s parameters. Securing the data will stop any third party from interfering with the communication and sending its commands to the remote system. Thus, the article presents a case study that proves how to secure BD read/write operations using the Gauss function and how to use Secure Shell (SSH), a cryptographic network protocol, to generate key-value pairs for safely operating services over an unsecured network.

Evaluation of CFD Computing Performance on Multi-Core Processors for Flow Simulations

Previous parallel computing implementations for Computational Fluid Dynamics (CFD) focused extensively on Complex Instruction Set Computer (CISC). Parallel programming was incorporated into the previous generation of the Raspberry Pi Reduced Instruction Set Computer (RISC). However, it yielded poor computing performance due to the processing power limits of the time. This research focuses on utilising two Raspberry Pi 3 B+ with increased processing capability compared to its previous generation to tackle fluid flow problems using numerical analysis and CFD. Parallel computing elements such as Secure Shell (SSH) and the Message Passing Interface (MPI) protocol were implemented for Advanced RISC Machine (ARM) processors. The parallel network was then validated by a processor call attempt and core execution test. Parallelisation of the processors enables the study of fluid flow and computational fluid dynamics (CFD) problems, such as validation of the NACA 0012 airfoil and an additional case of the Laplace equation for computing the temperature distribution via the parallel system. The experimental NACA 0012 data was validated using the parallel system, which can simulate the airfoil's physics. Each core was enabled and tested to determine the system's performance in parallelising the execution of various programming algorithms such as pi calculation. A comparison of the execution time for the NACA 0012 validation case yielded a parallelisation efficiency above 50%. The case studies confirmed the Raspberry Pi 3 B+'s successful parallelisation independent of external software and machines, making it a self-sustaining compact demonstration cluster of parallel computers for CFD.

Analysis of a Honeypot Intrusion Detection System for Medical and Healthcare Services

Cyber-attacks have been increasingly becoming alarming in recent years specifically for medical and healthcare systems. One of the cyber-attackers aims is to break into the medical or healthcare networks and gain access to the patient’s medical records. This paper deals with the honeypot-based intrusion detection system to provide information security for medical and healthcare systems. The proposed system utilizes the Dionaea and Kippo SSH (Kippo Secure Shell) honeypots to secure the medical and healthcare network infrastructure and analyze the activities of cyber-attackers. A possible Metasploit and Brute force attacks logged by the Dionaea and Kippo SSH will be analyzed to prepare the malware analysis report of the suspicious file download.

Design of cross-cultural teaching management system for international students based on cloud service platform

Recently online teaching resources management has become an interesting domain in China due to emerging technologies like Video Internet of Things (VIoT). We propose a novel integrated framework for efficient teaching resources management using VIoT and cloud computing services. The proposed model designs a VIoT system to analyze the need for front-end portals. We employ a cloud platform for international students based on business goals and functional requirements to optimize sensor design. The proposed model first builds the VIoT front-end web portal to elaborate the design schemes, architecture, and various design ideas. Then, we integrate the VIoT system with other cloud-based modules such as the teaching management module, application management module, and system-object module. We represent the proposed model from three perspectives like Secure Shell (SSH) framework implementation, interfaces, and certain function modules. The experimental outcomes demonstrate that the system developed in this study has a specific influence.