Unauthorized Changes Research Articles

Method for Assessing Effectiveness of Protection of Electronic Document Management using the Petri and Markov Nets Apparatus

Traditional approaches to assessing the effectiveness of information security, based on a comparison of the possibilities of realizing threats to information security in absence and application of protection measures, do not allow to analyze the dynamics of suppression by security measures of the process of implementing threats. The paper proposes a new indicator of the effectiveness of protection of electronic documents, aimed at assessing the possibility of advancing security measures of the process of implementing threats in electronic document management systems using the probability-time characteristics of the dynamics of the application of protection measures and the implementation of threats to electronic documents. Mathematical models were developed using the Petri-Markov network apparatus and analytical relationships were obtained for calculating the proposed indicator using the example of the "traffic tunneling" threat (placing intruder packets in trusted user packets) and unauthorized access (network attacks) to electronic documents, as well as the threat of intrusion of malicious program by carrying out an "blind IP spoofing" attack (network address spoofing). Examples of calculating the proposed indicator and graphs of its dependence on the probability of detecting network attacks by the intrusion detection system and on the probability of malware detection by the anti-virus protection system are given. Quantitative dependencies are obtained for the effectiveness of protection of electronic documents due to being ahead of protection measures for threat realization processes, both on the probability of detecting an intrusion or the probability of detecting a malicious program, and on the ratio of the time spent by the protection system on detecting an attempt to implement a threat and taking measures to curb its implementation, and threat implementation time. Models allow not only to evaluate the effectiveness of measures to protect electronic documents from threats of destruction, copying, unauthorized changes, etc., but also to quantify the requirements for the response time of adaptive security systems to detectable actions aimed at violating the security of electronic documents, depending on the probability -temporal characteristics of threat realization processes, to identify weaknesses in protection systems related to the dynamics of threat realization and the reaction of defense systems to such threats electronic document.

УДОСКОНАЛЕННЯ МЕТОДУ ВИЯВЛЕННЯ РЕЗУЛЬТАТІВ КЛОНУВАННЯ В ЦИФРОВОМУ ЗОБРАЖЕННІ

Cloning remains one of the most common tools used for unauthorized changes to digital images. Cloning is implemented in all modern graphic editors. Many experts in the field of information security are engaged in solving the problem of cloning detection, but this task has no final solution to date. A modification of the method for identifying cloning results in a digital image is proposed in the paper. The effectiveness of this method exceeds the efficiency of modern analogues. It remains effective when the cloned image is subjected to additional disturbing influences. These disturbing influences do not differ for the clone and prototype. Also, the method is effective when the size of the clone / prototype is small. The purpose of the modification of the method is to ensure its effectiveness under the conditions of certain geometric transformations to which the clone is subjected. These transformations are: reflection relative to the vertical and/or horizontal axis, rotation through an angle multiple of 90°, reflection relative to the diagonal (main, secondary) of the corresponding matrix. In this paper, the principle of constructing a matrix of minimal block differences is changing. This matrix is mapped to a digital image. It is the main subject of research in the method. The element of the matrix of minimal block differences reflects the smallest difference of a particular block from any other block of the image. The difference between the blocks is calculated as the difference of their singular spectra. The singular spectrum of the matrix does not change during the geometric transformation. Advanced method has high efficiency. A value of TRP = 100 % indicates that when the method is running, skip-ping of cloned images does not occur. The improved method is also effective in identifying several clones that correspond to one prototype. Several clones experience different geometric transfor-mations.

METHODS OF IMPLEMENTATION OF BLOCKCHAIN TECHNOLOGIES ON THE BASIS OF CRYPTOGRAPHIC PROTECTION FOR THE DATA PROCESSING SYSTEM WITH CONSTRAINT AND LAGGING INTO ELECTRONIC DOCUMENT MANAGEMEN

The problem of application design by restriction and delay in ED (Electronic Document) management based on blockchain technologies to ensure a new level of security, reliability, transparency of data processing is considered. Increasing the reliability of information in systems by limiting and delaying ED management of enterprises and organizations during collecting, transmitting, storing and processing ED based on new, little-studied optimization technologies for processing blockchain-type data is a relevant and promising research topic. Important advantages of the potential use of transaction blocks built according to certain rules in systems by limiting and delaying ED are ensuring security by encrypting transactions for subsequent confirmation, the inability to make unauthorized changes due to the dependence of the current blockchain state on previous transactions, transparency and reliability of procedures due to public and distributed storage, as well as the interaction of a large number of users between without the use of “trusted intermediaries”. Studies show that when using existing algorithms for adding blocks in any system, it is possible to achieve the requirements of decentralization, openness of the entered data, the inability to change the data once entered into the system. However, mathematics-cryptographic information protection must be developed for each designed system separately. The task of providing and formulating the rules of data reliability control by limiting and delaying in ED circulation based on cryptographic methods of encrypting transaction blocks constituting the blockchain has been formulated. The approaches have been adopted as a methodology of support for systems by limiting and delaying electronic documents based on a new database architecture.

Design for Testability of Integrated Circuits and Project Protection Difficulties

Design solutions of domestic VLSI were obtained as a result of the application of computeraided design tools of a foreign supplier (CAD Synopsys, Cadence Design Systems and Mentor Graphics), based on standard libraries of PDK elements (Project Design KIT) of factories and IC-modules also supplied mainly by foreign companies. As a rule, the developer does not have its own production facilities, using the services provided by foreign factories (fablesscompanies). Due to this fact, relevant are the studies aimed at the development of a complex of measures, excluding the possibility of unauthorized changes into IC, i.e. protection of projects against intentional hardware and technology violations made during the formation of the control information for handing it over to the production facility and/or in case of IC manufacture at the factory. This paper considers this task from the standpoint of the analysis of the methodology of design for testability (DFT), i.e., a complex of measures that provide obtaining solutions at the design stage. The solutions include the verification of the correct performance of the manufactured chip by means of external tests and/or self-testing procedures. It was proposed, inter alia: 1) to analyze the libraries of standard elements used in the project with full disclosure of their specifications; 2) to create nodes with the physical non-cloning function in the projects on the basis of the libraries of standard elements in models and analysis programs; 3) to analyze IP modules used in the project with the maximum disclosure of structure, methods and algorithms for providing test coverings; 4) to provide for the development in projects of special test kits and methods of their generation at the design stage of functions in order to detect malicious nodes and programs both within SoC cores and at the level of system buses; 5) to develop at the design stage and to apply during tests a technique of special hardware measurements of parameters of the manufactured circuits and analysis of their results, inter alia, according to measurements of delays in distribution of signals and/or buses current consumption.

Intymistyka i przemoc edytorska – trzy przypadki (Stanisław Morawski, Eliza Orzeszkowa, Zygmunt Krasiński)

The dissertation presents unauthorized changes made by editors in the texts of deceased authors. It concerns the works by Stanislaw Morawski (1802–1853) published in three volumes in the years 1924, 1927 and 1929, which were misshaped by publishers’ interferences, four autobiographical texts by Eliza Orzeszkowa reprinted with unauthorized editorial interferences in the collection entitled Eliza Orzeszkowa on herself in 1974, and the edition of letters by Zygmunt Krasinski to Delfina Potocka in the series entitled Correspondence by Zygmunt Krasinski in Panstwowy Instytut Wydawniczy from 1975.

A classification of semi-fragile watermarking systems for JPEG images

The article discusses semi-fragile digital watermarking systems designed to protect JPEG images against unauthorized changes. These systems allow detecting and locating changes, and some of them are able to restore the original content. Formal schemes describing the procedures for watermark embedding and authentication are given. We consider more than a dozen systems of this type and classify them according to various criteria. We also consider the results of experimental studies of these systems estimating their level of distortions arising from watermark embedding. In addition, we test the systems whether they are able to operate in the semi-fragile way.

EHealth Integrity Model Based on Permissioned Blockchain

(1) Background: Large eHealth systems should have a mechanism to detect unauthorized changes in patients’ medical documentation, access permissions, and logs. This is due to the fact that modern eHealth systems are connected with many healthcare providers and sites. (2) Methods: Design-science methodology was used to create an integrity-protection service model based on blockchain technology. Based on the problem of transactional transparency, requirements were specified and a model was designed. After that, the model’s security and performance were evaluated. (3) Results: a blockchain-based eHealth integrity model for ensuring information integrity in eHealth systems that uses a permissioned blockchain with off-chain information storage was created. In contrast to existing solutions, the proposed model allows information removal, which in many countries’ eHealth systems is a legal requirement, and is based on a blockchain using the Practical Byzantine Fault Tolerant algorithm. (4) Conclusion: A blockchain can be used to store medical data or only security-related data. In the proposed model, a blockchain is mainly used to implement a data-integrity service. This service can be implemented using other mechanisms, but a blockchain provides a solution that does not require trusted third parties, works in a distributed eHealth environment, and supports document removal.

Analysis of the Throttle Speed Control Efficiency in Volumetric Hydraulic Drives

To control a movement speed of the output link of an executive hydraulic engine (hydraulic cylinder or hydraulic motor), volumetric hydraulic drives traditionally use volumetric and throttle control methods. Under volumetric control, a supply unit employs a pressure-regulated positive displacement pump, as a result of which it is impossible or difficult to separate and independently control the movement speed of the output links of the hydraulic cylinders. In case of throttle control, there is a significant dependence of the speed of the output link on the load it overcomes, a low efficiency of the hydraulic drive and hereto related active heating of the working fluid, as well as large energy losses. However, in embodiment, due to lack of an expensive variable pump, this method of control is much cheaper and can be used in a multi-channel hydraulic drive with a centralized supply unit.Depending on the throttling device localization in the hydraulic drive circuit, there are series (primary or secondary control) and parallel (working fluid bypass adjustment) throttle connection schemes. The secondary control scheme, which generates a pressure in the outlet of the executive hydraulic engine, is preferable due to the fact that it provides an increased pressure in both cavities of the executive hydraulic engine and, accordingly, a lack of combined air bubbles in the working fluid. Heat released in the throttle is discharged directly into the tank, and the pressure in the outlet reduces the danger level of the emergency situation consequences in the event of an unauthorized change in the sign of the load to be overcome. The quality of control is, mainly, assessed by the type of load characteristics, i.e. dependences of the output link speed and its developed power on the load to be overcome, as well as by the control efficiency (the total efficiency value of the regulating and executive subsystems of the hydraulic drive). The dependence of the dynamics and kinematics of the hydraulic drive on the control methods are of particular interest.The proposed paper, based on the developed mathematical models and their testing for specific sizes of hydraulic cylinders presents the numerical values of the load characteristics and dependences of the total efficiency on the load value to be overcome. Shows that the speed load characteristic steepness of an executive hydraulic cylinder and the sign of its derivative are determined by the throttle control method. The greatest power developed by the output link of the hydraulic engine is shifted to the loads that are 50 ... 70% of their maximum value.As a result of theoretical studies using numerical calculation methods, a technique has been developed for selecting a throttle control method with an assessment of its quality and efficiency. The results of the conducted studies expand the capabilities to forecast the dynamics and kinematics of the output link of the hydraulic drive at the stage of its engineering design.

BLOCKCHAIN AS A COMPONENT OF INFORMATION SECURITY

The article describes the use of information and telecommunication systems in public and private institutions and disadvantages for the construction of information and telecommunication systems for decentralization. The analysis of recent researches and publications on the subject of the block is conducted. The paper describes the principle of the technology, the block and the ways in which a block protects itself from attempting to make unauthorized changes or deletion of data. The expediency and perspectives of using information security technologies from the point of view of the triad of information security services as confidentiality, integrity and accessibility are considered. The rapid development of information technology is expected to rapidly increase and increase, and also threatens the information and telecommunication systems that have most of these systems. A promising direction for the construction of information and telecommunication systems is the use of decentralization. Therefore, it is important to analyze the use of Blockchain technology for the construction of decentralized information and telecommunication systems in terms of information security.

Detection Mechanisms for Unauthorized Wireless Transmissions

With increasing diversity of supply chains from design to delivery, there is an increasing risk that unauthorized changes can be made within an IC. One of the motivations for this type of change is to learn important information (such as encryption keys, spreading codes) from the hardware, and transmit this information to a malicious party. To evade detection, such unauthorized communication can be hidden within legitimate bursts of transmit signal. In this article, we present several signal processing techniques to detect unauthorized transmissions which can be hidden within the legitimate signal. We employ a scheme where the legitimate transmission is configured to emit a single sinusoidal waveform. We use time and spectral domain analysis techniques to explore the transmit spectrum. Since every transmission, no matter how low the signal power is, must have a spectral signature, we identify unauthorized transmission by eliminating the desired signal from the spectrum after capture. Experiment results show that when spread spectrum techniques are used, the presence of an unauthorized signal can be determined without the need for decoding the malicious signal. The proposed detection techniques need to be used as enhancements to the regular testing and verification procedures if hardware security is a concern.

An Evaluation of the Proposed Framework for Access Control in the Cloud and BYOD Environment

As the bring your own device (BYOD) to work trend grows, so do the network security risks. This fast-growing trend has huge benefits for both employees and employers. With malware, spyware and other malicious downloads, tricking their way onto personal devices, organizations need to consider their information security policies. Malicious programs can download onto a personal device without a user even knowing. This can have disastrous results for both an organization and the personal device. When this happens, it risks BYODs making unauthorized changes to policies and leaking sensitive information into the public domain. A privacy breach can cause a domino effect with huge financial and legal implications, and loss of productivity for organizations. This is a difficult challenge. Organizations need to consider user privacy and rights together with protecting networks from attacks. This paper evaluates a new architectural framework to control the risks that challenge organizations and the use of BYODs. After analysis of large volumes of research, the previous studies addressed single issues. We integrated parts of these single solutions into a new framework to develop a complete solution for access control. With too many organizations failing to implement and enforce adequate security policies, the process needs to be simpler. This framework reduces system restrictions while enforcing access control policies for BYOD and cloud environments using an independent platform. Primary results of the study are positive with the framework reducing access control issues.

Recent Advances of Oilfield Blockchain

The blockchain is a state of the art technology which is directly associated with the process of mining cryptocurrencies. However, this technology can be practically applied in many areas of the national economy, including oil and gas industry. For example, the blockchain can be useful in solving problems related to the confirming the integrity of primary geological and geophysical data during remote monitoring of the well construction process by excluding the influence of human factor. This technology is referred to as the industrial blockchain and requires consistent encryption and data distribution on storage locations in peer-to-peer network. Any modification of the primary geological and geophysical data in the blockchain system, on any of the computers/equipment in any block, will automatically detected by all participants of the blockchain network. The system of ensuring the integrity and invariability of the received and transmitted data will work as long as at least a single of the network is operated. Hacking such a system is not feasible and cost-effective because the potential attackers have to break through every block, as well as copies of the database on every computer and equipment in the network. This requires a potential attacker to have unique computing resources, which is currently not available. In practice, the reliability of blockchain platforms is confirmed by many years of experience in the bitcoin mining system based on the blockchain principles. The implementation of the blockchain platform in the oil and gas service allowed to ensure and guarantee the reliability of primary geological and geophysical data obtained from wells in real time, to reduce the risks of unauthorized changes. The reliability of the primary data reduces the risks of erroneous management decisions, made by the processing and analysis of these primary well data.

Methods and technologies for computer networks protection (the physical and data link layers)

Standard solutions that are supported by manufacturers of equipment for computer networks (switches the 2nd and 3rd levels, routers), implemented in the operating systems and protocols, and can be used for the development and implementation of integrated corporate network protection systems are considered in this article. The article is the first of a series of articles devoted to the analysis of methods and technologies of protection. The typical threats to computer network at the physical (physical damage of the data channels, unauthorized changes in the functional environment, disabling physical data channels, setting noise over the entire bandwidth of the channel) and data link (the generation of broadcasting frames to overload the data channels and switching equipment, the substitution of nodes MAC address, attacks on ARP and Spanning-Tree protocols) layers of OSI model are given and the features of methods and technologies to protect are analyzed. The features of use of limited and unlimited signal transmission media in terms of information security are considered at the physical level and a number of additional measures top prevent unauthorized changes in the functional medium networks are given (such as: the limitation of physical access to cable channels, switching nodes and data centers, the development and implementation of a policy of remote access to network equipment, deployment of auxiliary video surveillance and access control systems, redundancy of the most critical channels, network devices and servers). At the data link layer are analyzed such functions of switches as Port security, DHCP Snooping, Dynamic ARP Inspection, IP Source Guard; segmenting the network into separate zones using the technology of Virtual Local Area Network to broadcast restrictions and improving information security; implementation of network access control system with authentication and authorization at the data link layer. To implement the access control systems of the channel level the features of the 802.1x protocol are considered and its main disadvantage (the lack of data encryption, which may lead to data interception and the implementation of DoS attacks) is determined. To build more secure solutions are proposed to use the combination of IPSec and 802.1x or new IEEE 802.1AE protocols (MACsec protocols that solve privacy and data integrity problems) and the IEEE 802.1AR standard, which defines a unique secure device identifier for their authorization. Analysis of methods and protection technologies at the physical and data link levels of the OSI model which was conducted in work allows making informed decisions about choosing methods to protect networks for different purposes and with different requirements regarding data protection.References 17, Tables 1.

The impact of global technological trends on accounting

The article points out that the pace of technological advance has led to integrating informaion and communication technology into accounting processes. Examples of advanced technologies for business that influence accounting management include computer-assisted learning and artificial intelligence, “smart” applications for telecommunication devices, “smart” things, complemented by virtual reality, digital twins, blockchain, chat communication systems, adaptive security systems, applications and network architecture, integrated electronic platforms. The aim of the research is to elucidate the impact of advanced technological trends on accounting management and highlight advantages of applying computer and communication technology to the processing of credentials.Artificial intelligence (AI) and computer-assisted learning, which include neural networks and natural-language processing, support the accounting system that is capable of learning, forecasting, adapting and working autonomously. Using AI, technology developers focus on three areas: advanced analytics of accounting information, digital assistants of accounting automation, and interactive interface for virtual reality. AI, used in automated information processing, is complemented by applying “smart” things that make it possible to identify, measure, evaluate and transfer accounting data on phenomena and events to the single database without the participation of staff.A proposed information model of integrated database might act as a common information environment for electronic interaction of all participants in financial market transactions. There is information exchange between suppliers, customers, banking institutions, legal and factoring organizations, government fiscal and statistical authorities. However, public access to a single database may lead to losses of confidential information, which requires effective methods for information protection of the accounting system. “Blockchain” is one of the advanced technologies of information security. It is a type of accounting ledger in the database (for example, in bitcoin crypto-currency), where entries are grouped consecutively into blocks to prevent unauthorized changes.The use of computer and communication technology in the accounting management will provide: the opportunity for complete automation of accounting processes; minimization of time and money spent on administrative staff; information protection in communication interactions between participants of information processes; development of algorithms for building a common database of credentials and common information environment.

Trusted Computing with Addition Machines. I

A solution to the integrity problem for arithmetic programs executing on a remote computing resource is proposed. The solution is to replace arithmetic operations such as multiplication and division by procedures of the addition machine introduced by R. Floyd and D. Knuth. Computations and sequence order of instructions (as well as current meanings of variables) are signed by dynamic digital signatures homomorphic with respect to addition/subtraction. Verification of digital signatures ensures the detection of any unauthorized changes in the source code of a program and results of computations.

Some estimates of the continuous cultivation of microorganisms

The proteins, fats and carbohydrates received by the person traditionally from animal and vegetable sources don't cover all increasing needs of mankind any more today. At the same time proteins and fats of microorganisms with success can replace proteins and fats of a traditional origin. As protein producers microorganisms at the high content of protein in biomass and high growth rate of microorganisms have certain advantages. The present article is devoted to questions of numerical modeling of processes of cultivation of microorganisms. On the basis of the known model offered Mono in which saturation of growth rate of culture at increase in initial concentration of a substratum of S0 is considered the system of the differential equations describing the happening processes in that number before achievement of stationarity is written down. At the same time dependence of separate sizes, the systems entering the equations is insufficiently studied at change of parameters of process. The behavior of all system at violation of regulations is of interest or at unauthorized change of one of parameters. For studying of these questions numerical modeling is carried out and the basic picture of change of chemostate curves in these conditions is received

Using the 0‐1 test for chaos to detect hardware trojans in chaotic bit generators

The use of the 0-1 test for chaos to monitor chaotic bit generators susceptible to unauthorised changes and modifications of the circuits’ parameters (hardware trojans) is presented. The 0-1 test proves that the chaotic nature of the continuous time signals is inherited by the bit sequences even when a simple threshold comparator is used. Simulation results with the Chua and Lindberg–Murali–Tamasevicius circuits are presented.

Playwrights and Copyright

Broadway, 1926. The Rialto is alive with drama. At the Mansfield Theater, a revival of the Pulitzer Prize-winning play Beyond the Horizon is enjoying a healthy run. At the Imperial, George Gershwin’s Prohibition romp Oh, Kay is a bona fide sell-out. At the Mayfair, an unexpected guest upstages the opening night of a searing marital tragedy entitled The Half- Naked Truth. In the words of critic Brooks Atkinson: Toward the end of the second act. . .a gray cat walked amiably across the stage, peeped curiously over the footlights, and then sat down comfortably, yawned a little, blinked sleepily and apparently settled for the night. . . . . .What drama could vie with the reality of a cat? Or what actor could put a cat to shame?. . . . . .Unfortunately. . .the play. . .was amateurish in every [other] respect. The Half-Naked Truth closed within a month; the fate of the cat remains unknown. But the dramas playing out on Broadway that fateful year aren’t all happening onstage; in a nearby office building behind closed doors, a cluster of playwrights- Eugene O’Neill and humorist George Kaufman among them-are meeting with a group of theatrical producers. The writers have recently established a Guild, just fourteen years old, to fight for equitable practices in their profession. Somewhat reluctantly, the producers have agreed to meet with them. On one point, the Guild is intractable: the right of its members to control their copyrights and prevent unauthorized changes in their scripts.

Image forgery detection in contourlet transform domain based on new chaotic cellular automata

AbstractImage authentication includes techniques that detect unauthorized changes in digital pictures. Image authentication is generally categorized into two primary categories, active and passive methods. In this paper, a new active image authentication method is proposed for tamper detection based on contourlet transform. Cellular automata and ‘Game of Life’ are also used to improve the detection of tampered area. A pseudo‐random number generator based on cellular automata has been used to improve security of proposed technique. We evaluates security and randomness of proposed pseudo‐random number generator using by NIST statistical test suite. Experimental results show that the proposed method is sensitive to any tampers, and it can detect forged areas of the images. Visual quality of image after embedding process is desirable due to Peak Signal‐to‐Noise Ratio (PSNR) measure. Copyright © 2015 John Wiley & Sons, Ltd.

A remote attestation protocol with Trusted Platform Modules (TPMs) in wireless sensor networks.

Given the limited resources and computational power of current embedded sensor devices, memory protection is difficult to achieve and generally unavailable. Hence, the software run-time buffer overflow that is used by the worm attacks in the Internet could be easily exploited to inject malicious codes into wireless sensor networks WSNs. As a result, the remote attestation on the application codes installed in WSNs is the first important step to detect any unauthorized changes through the buffer overflow attack. Previous software-based remote code verification approaches such as SoftWare-based ATTestation and Secure Code Update By Attestation have been shown difficult to deploy in recent work. In this paper, we propose and implement a remote attestation protocol for detecting unauthorized tampering in the application codes running on sensor nodes with the assistance of Trusted Platform Modules TPMs, a tiny, cost-effective and tamper-proof cryptographic micro-controller. In our design, each sensor node is equipped with a TPM, and the firmware running on the node could be verified by the other sensor nodes in a WSN, including the sink. Specifically, we present a hardware-based remote attestation protocol, discuss the potential attacks an adversary could launch against the protocol and provide comprehensive system performance results of the protocol in a multi-hop sensor network testbed. The experimental results demonstrated that our scheme is able to attest the application codes running in sensor node with small delay less than 25s for single-hop, considerable network lifetime and reasonable communication and energy overhead. Copyright © 2015 John Wiley & Sons, Ltd.