MOBILE DEVICES: THE CASE FOR CYBER SECURITY HARDENED SYSTEMS AND METHODS TO ADDRESS SECURITY RELATED ISSUE
•Download as PPTX, PDF•
2 likes•730 views
Mobile devices are becoming a method to provide an efficient and convenient way to access, find and share information; however, the availability of this information has caused an increase in cyber attacks. Currently, cyber threats range from Trojans and viruses to botnets and toolkits. Presently, 96% of mobile devices do not have preinstalled security software while approximately 65% of the vulnerabilities are found within the application layer. This lack in security and policy driven systems is an opportunityfor malicious cyber attackers to hack into the various popular devices. Traditional security software found in desktop computing platforms, such as firewalls, antivirus, and encryption, is widely used by the general public in mobile devices. Moreover, mobile devices are even more vulnerable than personal desktop computers because more people are using mobile devices to do personal tasks. This review attempts to display the importance of developing a national security policy created for mobile devices in order to protect sensitive and confidential data. Results of this review provide methods to address security related issues in mobile devices.
Report
Share
Report
Share
Recommended
OSINT EXPLOITATION OF UNIVERSITY TWEETS
With the rise of Web 2.0, Twitter has become a tool of choice for universities looking to increase their digital footprint. However there is not much guidance given into the protections of these tweets or the secure integration of Twitter into other Web 2.0 applications. As the debate for cyber threat continue to increase, these tweets must be protected and delivered in a manner that protects the sender. Explored in this report are the methods in which Twitter and its data can be exploited for nefarious use.
Mobile Cyber Security
Take a look at these surprising facts relating to mobile cyber security. For more information please see http://bobsbusiness.co.uk/
Security techniques for intelligent spam sensing and anomaly detection in onl...
The recent advances in communication and mobile technologies made it easier to access and share information for most people worldwide. Among the most powerful information spreading platforms are the Online Social Networks (OSN)s that allow Internet-connected users to share different information such as instant messages, tweets, photos, and videos. Adding to that many governmental and private institutions use the OSNs such as Twitter for official announcements. Consequently, there is a tremendous need to provide the required level of security for OSN users. However, there are many challenges due to the different protocols and variety of mobile apps used to access OSNs. Therefore, traditional security techniques fail to provide the needed security and privacy, and more intelligence is required. Computational intelligence adds high-speed computation, fault tolerance, adaptability, and error resilience when used to ensure security in OSN apps. This research provides a comprehensive related work survey and investigates the application of artificial neural networks for intrusion detection systems and spam filtering for OSNs. In addition, we use the concept of social graphs and weighted cliques in the detection of suspicious behavior of certain online groups and to prevent further planned actions such as cyber/terrorist attacks before they happen.
Deterring Sybil Attack in Online Communication System via Peer-to-peer Audio ...
In recent time the use of communication gadgets (mobile phones, laptop, desktop etc.) and service for online communication between two parties over a long distance has become sine-qua-non. Some criminal minded people are using this online communication method to deceive their prey via proxy communication where individual claiming to be discussing is not really the one. In this paper, we focus on prevention of identity impersonation attacks in an Online Communication System. Peer-peer Audio Visual Communication System is design to enhance security through online communication system by revealing the identity of the communicators and records the communication if necessary. Embedded application system was design for mobile and desktop devices for audio
visual charting using modern IT devices.
PhD Thesis Writing Assistance - Manuscript
PhD Writing Assistance has recruited their experts after rigorous assessments and as such they possess high credentials from the to UAE, Saudi, the UK, and the Indian Universities. Quite obviously it is recommended to the PhD students that they should follow all these criteria and get the services from PhD Writing Assistance to attain their desired results.
For More: https://www.phdwritingassistance.com/
Comparative review dele
The document summarizes and compares two papers about security issues in mobile networks. Both papers identify threats at different levels of mobile networks and propose security solutions. The first paper by Leung et al. examines threats using a case study approach and proposes solutions like trusted computing and IPSec. The second paper by Zdarsky et al. analyzes threats through risk assessment and emphasizes avoiding single points of failure. While using different methods, both papers agree on core security requirements and that mobile networks are vulnerable to attacks.
Mobile Device Users’ Susceptibility To Phishing Attacks
The mobile device is one of the fasted growing technologies that is widely used in a diversifying sector.
Mobile devices are used for everyday life, such as personal information exchange – chatting, email,
shopping, and mobile banking, contributing to information security threats. Users' behavior can influence
information security threats. More research is needed to understand users' threat avoidance behavior and
motivation. Using Technology threat avoidance theory (TTAT), this study assessed factors that influenced
mobile device users' threat avoidance motivations and behaviors as it relates to phishing attacks.
Social media and Security risks
There is no argument about the popularity of the social platforms such as Facebook, YouTube, twitter, etc. These platforms can be used to stay in touch with your friends, increase sales revenues for organizations and as a collaboration tool to stay connected with the public. However, each of these benefits comes at a cost, putting your private information at a risk/ exposed. We aim to discuss the common security risks associated with usage of these platforms including risk mitigation strategies.
Intro Video : https://www.youtube.com/watch?v=zxpa4dNVd3c
Presentation for Computer Society of Sri Lanka on 24 Feb 2015
Recommended
OSINT EXPLOITATION OF UNIVERSITY TWEETS
With the rise of Web 2.0, Twitter has become a tool of choice for universities looking to increase their digital footprint. However there is not much guidance given into the protections of these tweets or the secure integration of Twitter into other Web 2.0 applications. As the debate for cyber threat continue to increase, these tweets must be protected and delivered in a manner that protects the sender. Explored in this report are the methods in which Twitter and its data can be exploited for nefarious use.
Mobile Cyber Security
Take a look at these surprising facts relating to mobile cyber security. For more information please see http://bobsbusiness.co.uk/
Security techniques for intelligent spam sensing and anomaly detection in onl...
The recent advances in communication and mobile technologies made it easier to access and share information for most people worldwide. Among the most powerful information spreading platforms are the Online Social Networks (OSN)s that allow Internet-connected users to share different information such as instant messages, tweets, photos, and videos. Adding to that many governmental and private institutions use the OSNs such as Twitter for official announcements. Consequently, there is a tremendous need to provide the required level of security for OSN users. However, there are many challenges due to the different protocols and variety of mobile apps used to access OSNs. Therefore, traditional security techniques fail to provide the needed security and privacy, and more intelligence is required. Computational intelligence adds high-speed computation, fault tolerance, adaptability, and error resilience when used to ensure security in OSN apps. This research provides a comprehensive related work survey and investigates the application of artificial neural networks for intrusion detection systems and spam filtering for OSNs. In addition, we use the concept of social graphs and weighted cliques in the detection of suspicious behavior of certain online groups and to prevent further planned actions such as cyber/terrorist attacks before they happen.
Deterring Sybil Attack in Online Communication System via Peer-to-peer Audio ...
In recent time the use of communication gadgets (mobile phones, laptop, desktop etc.) and service for online communication between two parties over a long distance has become sine-qua-non. Some criminal minded people are using this online communication method to deceive their prey via proxy communication where individual claiming to be discussing is not really the one. In this paper, we focus on prevention of identity impersonation attacks in an Online Communication System. Peer-peer Audio Visual Communication System is design to enhance security through online communication system by revealing the identity of the communicators and records the communication if necessary. Embedded application system was design for mobile and desktop devices for audio
visual charting using modern IT devices.
PhD Thesis Writing Assistance - Manuscript
PhD Writing Assistance has recruited their experts after rigorous assessments and as such they possess high credentials from the to UAE, Saudi, the UK, and the Indian Universities. Quite obviously it is recommended to the PhD students that they should follow all these criteria and get the services from PhD Writing Assistance to attain their desired results.
For More: https://www.phdwritingassistance.com/
Comparative review dele
The document summarizes and compares two papers about security issues in mobile networks. Both papers identify threats at different levels of mobile networks and propose security solutions. The first paper by Leung et al. examines threats using a case study approach and proposes solutions like trusted computing and IPSec. The second paper by Zdarsky et al. analyzes threats through risk assessment and emphasizes avoiding single points of failure. While using different methods, both papers agree on core security requirements and that mobile networks are vulnerable to attacks.
Mobile Device Users’ Susceptibility To Phishing Attacks
The mobile device is one of the fasted growing technologies that is widely used in a diversifying sector.
Mobile devices are used for everyday life, such as personal information exchange – chatting, email,
shopping, and mobile banking, contributing to information security threats. Users' behavior can influence
information security threats. More research is needed to understand users' threat avoidance behavior and
motivation. Using Technology threat avoidance theory (TTAT), this study assessed factors that influenced
mobile device users' threat avoidance motivations and behaviors as it relates to phishing attacks.
Social media and Security risks
There is no argument about the popularity of the social platforms such as Facebook, YouTube, twitter, etc. These platforms can be used to stay in touch with your friends, increase sales revenues for organizations and as a collaboration tool to stay connected with the public. However, each of these benefits comes at a cost, putting your private information at a risk/ exposed. We aim to discuss the common security risks associated with usage of these platforms including risk mitigation strategies.
Intro Video : https://www.youtube.com/watch?v=zxpa4dNVd3c
Presentation for Computer Society of Sri Lanka on 24 Feb 2015
Malware threat analysis techniques and approaches for IoT applications: a review
Internet of things (IoT) is a concept that has been widely used to improve business efficiency and customer’s experience. It involves resource constrained devices connecting to each other with a capability of sending data, and some with receiving data at the same time. The IoT environment enhances user experience by giving room to a large number of smart devices to connect and share information. However, with the sophistication of technology has resulted in IoT applications facing with malware threat. Therefore, it becomes highly imperative to give an understanding of existing state-of-the-art techniques developed to address malware threat in IoT applications. In this paper, we studied extensively the adoption of static, dynamic and hybrid malware analyses in proffering solution to the security problems plaguing different IoT applications. The success of the reviewed analysis techniques were observed through case studies from smart homes, smart factories, smart gadgets and IoT application protocols. This study gives a better understanding of the holistic approaches to malware threats in IoT applications and the way forward for strengthening the protection defense in IoT applications.
Social media and security essentials.pptx
Social media use has grown tremendously, with over 500 million Facebook users and 105 million Twitter users. However, this growth has also increased security risks. Research from Websense found a 111% increase in malicious websites from 2009 to 2010, with nearly 80% of compromised legitimate sites. Additionally, 40% of Facebook status updates contain links, with 10% of those links being spam or malicious. The Cisco annual security report also warns that social media is blurring network security boundaries and that criminals are effectively using social networks to scam users.
An Automated Model to Detect Fake Profiles and botnets in Online Social Netwo...
This document discusses an automated model for detecting fake profiles and botnets in online social networks. It begins with background on the prevalence of fake accounts, which can compromise user privacy and security. Next, it reviews related work on using data hiding techniques like steganography and watermarking to embed information in profile pictures in order to identify suspicious accounts. The proposed model aims to automatically detect fake profiles and botnets to replace current manual methods that are costly and labor-intensive.
Social network privacy guide
This series of articles about security trips how to make social networking is more secure on the top social networks. Part I. Facebook.
http://hakin9.org/hakin9-042012-cyber-warfare/
OSA - Internet Security in India
The document discusses internet security in India. It summarizes that while the internet provides many benefits, it also enables many security threats. The Open Security Alliance (OSA) conducted research on internet security issues facing individual users, organizations, and the government in India. OSA categorized internet users and identified security issues for each group. Their analysis found that India faces unique technology risk issues with a growing internet user population in both urban and rural areas. Proactive strategies are needed to establish security standards and practices through research, education and policy changes.
Cyber security rule of use internet safely
This document discusses cyber security and its role in ensuring safe internet use. It makes three key points:
1) Cyber security plays an important role in protecting internet users by securing both hardware and software infrastructure, as well as the information transmitted. This helps guarantee a safe online environment.
2) Regulations and strategies at national and international levels aim to create a comfortable environment for internet users while addressing negative aspects like cybercrime. Laws govern internet usage while respecting freedom of access to information.
3) There is sometimes a tension between individuals' right to access information and freedom of expression online, and the need for cyber security to protect others and national security. Restrictions on these rights only apply as outlined in international law
Doc handout
The document summarizes a survey conducted on cybersecurity habits of RMIT university students in Melbourne. The key findings are:
1) Most students are aware of cybersecurity but tend to ignore risks and give out personal information like email and birthdate. Many use the same passwords across accounts.
2) The target audience for a cybersecurity awareness campaign is RMIT students in Melbourne aged 18-30 across all genders. Students understand risks but trust that nothing bad will happen and may give out info for deals.
3) The campaign timeline is semester 1 of 2019, running escalator ads, webcam covers, social media posts and digital posters/videos from weeks 2-12. The proposed budget is $33
Emerging cyber threats_report2012
Botnets are evolving in their usage and tactics. Botnet controllers build large profiles on infected users and sell the data. Advanced persistent adversaries query botnet operators to identify already compromised machines belonging to their target organizations. Bad actors borrow techniques from black hat SEO to evade defenses like reputation systems. Research finds targeted attacks may have roots in common botnets, with adversaries paying top dollar for information from botnet operators.
How to Like Social Media Network Security
This is my presentation from Source Dublin 2014 on cyber crime and social media.
Social media networks provide individuals and businesses with exciting opportunities to communicate and collaborate with others throughout the world. But with these opportunities come a number of security challenges and risks. This talk will outline how social media networks can pose various threats to businesses, from information leakage, reputational damage, to social engineering profiling, and vectors for enabling compromise of corporate systems. Social media networks also enable the rapid dissemination of news which in the event of an information security breach could either save or destroy an organisations reputation. Understanding and dealing with these challenges will enable companies to like and favourite social media networks in a secure way.
188
This document discusses cyber security issues, challenges, and risks. It begins by introducing the topic of cyber security and the importance of securely transferring information online. It then discusses some key challenges facing cyber security like advanced persistent threats, the evolution of ransomware, threats to IoT devices, and risks associated with cloud computing. The document also covers cyber security techniques to help address issues like access control, authentication, malware scanning, and using firewalls and antivirus software. It concludes by discussing systemic cyber risks related to scale, interdependency, and shared resources, as well as the importance of cyber ethics.
CYBER SECURITY: A SURVEY ON ISSUES AND SOLUTIONS
This is an era of technology and Internet is one o f the them which has changed the world the most in last decades. It is open and so anyone can use it to get information about anything, people have been using it for educational, business, social connections and every day work purposes. But the matter of fact is door open in both directions, bad people with bad intensions stared using this technology for evil intensions. They are stealing personal data, financial information, government secrets and many others are target of those people. In this paper we will discuss about vulnerabilities present currently in the network, some case studies and later recommendations to avoid vulnerabilities and prevent them from exploitations are also discussed.
Blackberry playbook – new challenges
This approach mainly based on examines how many differences do exist between BlackBerry OS and new BlackBerry OS based on QNX OS. It highlights whether one techniques provide more easy implementation, investigation and handling or not, what common differences examiners may encounter and what they should as concept be involved to forensic handling with these platforms because a Playbook OS is completely a new approach.
http://hakin9.org/dont-be-mocked-secure-your-system-0512-2/
Web Safey
The document discusses internet safety issues among teenagers and the steps taken by NRHS to educate students. It provides statistics showing that over 30% of students share personal information or spend over an hour online daily. Around 25% of students admit to visiting inappropriate sites or chatting with strangers. In response, NRHS implements technology literacy standards to teach students safe online practices like protecting personal information, reporting suspicious activity, and protecting technology systems from unethical users. Students must also attend a web safety program before signing the school district's acceptable use policy.
Mobile security in Cyber Security
The intention of this slide is to cover all the basics in Mobile Security in Cyber and Information Security
(Network and Communication Security)
IRJET- Android Device Attacks and Threats
This document discusses security threats to Android devices. It begins by providing background on the growth of mobile technology and its integration into daily life and the workplace. This has increased security risks as mobile devices now store and access large amounts of personal and corporate data. The document then discusses some specific threats to Android devices, including data breaches, social engineering, Wi-Fi interference, out-of-date devices, cryptojacking attacks, and poor password hygiene. It emphasizes that Android devices, like other mobile technologies, are vulnerable to these online and physical attacks that can result in compromised data and device access. Strong mobile security practices are needed to protect against the threats.
Puppetnets and Botnets: Information Technology Vulnerability Exploits
The focus of this paper is to identify dominant trends of
information security threats to the Internet 2001 to 2007. This
paper is intended to provide an understanding of the new
emphasis of attacks through use of robotic networks and how
some users and organizations are already preparing a response
using innovative visualization techniques in conjunction with
traditional methods. The scope of research will focus on basic
enterprise level services that are commonly provided by various
corporations; e.g., e-mail, browser applications, wireless and
mobile devices, IP telephony, and online banking. The research
will first review the network infrastructure common to most
corporate organizations and assume basic enterprise components
and functionality in response to the current security threats. The
second emphasis will consider the impact of malware robotic
networks (Botnets and Puppetnets) on the corporate network
infrastructure and how to address these threats with new and
innovative techniques. This approach is pragmatic in application
and focuses on assimilation of existing data to present a
functional rationale of attacks to anticipate and prepare for this
coming year.
Trusting Smart Speakers: Understanding the Different Levels of Trust between ...
The growing usage of smart speakers raises many privacy and trust concerns compared to other technologies such as smart phones and computers. In this study, a proxy measure of trust is used to gauge users’ opinions on three different technologies based on an empirical study, and to understand which technology most people are most likely to trust. The collected data were analyzed using the Kruskal-Wallis H test to determine the statistical differences between the users’ trust level of the three technologies: smart speaker, computer and smart phone. The findings of the study revealed that despite the wide acceptance, ease of use and reputation of smart speakers, people find it difficult to trust smart speakers with their sensitive information via the Direct Voice Input (DVI) and would prefer to use a keyboard or touchscreen offered by computers and smart phones. Findings from this study can inform future work on users’ trust in technology based on perceived ease of use, reputation, perceived credibility and risk of using technologies via DVI.
Efficient Data Security for Mobile Instant Messenger
This document proposes an efficient security method for mobile instant messengers. It suggests using elliptic curve cryptography algorithms for authentication and encryption in a peer-to-peer architecture rather than a client-server model. The proposed method generates key pairs for each communication session to sign and encrypt messages efficiently. It is designed to be compatible with mobile devices and improve upon existing methods that lack encryption or have high computational requirements. The document outlines the security model and describes algorithms for encryption, decryption, signing and verifying messages that could provide secure communication for mobile instant messaging applications.
Review on mobile threats and detection techniques
Since last-decade, smart-phones have gained widespread usage. Mobile devices store personal details
such as contacts and text messages. Due to this extensive growth, smart-phones are attracted towards
cyber-criminals. In this research work, we have done a systematic review of the terms related to malware
detection algorithms and have also summarized behavioral description of some known mobile malwares
in tabular form. After careful solicitation of all the possible methods and algorithms for detection of
mobile-based malwares, we give some recommendations for designing future malware detection algorithm
by considering computational complexity and detection ration of mobile malwares.
Cyber Threat to Public Safety Communications
This document discusses cyber threats to public safety communications systems. It begins by describing how communications broke down for first responders during the 9/11 attacks due to overloaded cell networks and damaged radio systems. Since then, improvements have focused on redundancy and interoperability through increased connectivity, but this also introduces more vulnerabilities. The document outlines several cyberattacks against 911 call centers and public safety networks in recent years. It identifies the most attractive targets as the public's access to 911 and single points of failure in interconnected systems. The main security challenges are complacency about risks and limited budgets to address vulnerabilities.
Ericsson ConsumerLab: Wearable technology and the internet of things
- The document analyzes consumer views on wearable technology beyond just health and fitness uses. It finds that ownership of wearables has doubled in the past year among smartphone users in surveyed countries. However, the market is still dominated by health and fitness devices.
- It also finds that expectations for wearable functionality are rising, with many users disappointed in current devices. While interest exists for uses beyond health, consumers predict most novel concepts won't be mainstream until after 2020. Safety and security devices receive the most interest among concepts tested.
- Existing wearable users have higher expectations for speed of adoption for new types of smart garments and devices that monitor things like blood alcohol levels, predicting they may be mainstream by 2020
Flashpoint hacking forisis_april2016
The document provides an overview of several pro-ISIS hacking groups that have emerged since 2014, including the Cyber Caliphate, Islamic State Hacking Division, Islamic Cyber Army, and United Cyber Caliphate. It describes their origins, claimed attacks and targets. While the groups showed some coordination, their capabilities appear unsophisticated, typically targeting low-hanging fruit through methods like website defacements and data dumps of publicly available information. The leadership and membership of the groups was also fluid over time.
More Related Content
What's hot
Malware threat analysis techniques and approaches for IoT applications: a review
Internet of things (IoT) is a concept that has been widely used to improve business efficiency and customer’s experience. It involves resource constrained devices connecting to each other with a capability of sending data, and some with receiving data at the same time. The IoT environment enhances user experience by giving room to a large number of smart devices to connect and share information. However, with the sophistication of technology has resulted in IoT applications facing with malware threat. Therefore, it becomes highly imperative to give an understanding of existing state-of-the-art techniques developed to address malware threat in IoT applications. In this paper, we studied extensively the adoption of static, dynamic and hybrid malware analyses in proffering solution to the security problems plaguing different IoT applications. The success of the reviewed analysis techniques were observed through case studies from smart homes, smart factories, smart gadgets and IoT application protocols. This study gives a better understanding of the holistic approaches to malware threats in IoT applications and the way forward for strengthening the protection defense in IoT applications.
Social media and security essentials.pptx
Social media use has grown tremendously, with over 500 million Facebook users and 105 million Twitter users. However, this growth has also increased security risks. Research from Websense found a 111% increase in malicious websites from 2009 to 2010, with nearly 80% of compromised legitimate sites. Additionally, 40% of Facebook status updates contain links, with 10% of those links being spam or malicious. The Cisco annual security report also warns that social media is blurring network security boundaries and that criminals are effectively using social networks to scam users.
An Automated Model to Detect Fake Profiles and botnets in Online Social Netwo...
This document discusses an automated model for detecting fake profiles and botnets in online social networks. It begins with background on the prevalence of fake accounts, which can compromise user privacy and security. Next, it reviews related work on using data hiding techniques like steganography and watermarking to embed information in profile pictures in order to identify suspicious accounts. The proposed model aims to automatically detect fake profiles and botnets to replace current manual methods that are costly and labor-intensive.
Social network privacy guide
This series of articles about security trips how to make social networking is more secure on the top social networks. Part I. Facebook.
http://hakin9.org/hakin9-042012-cyber-warfare/
OSA - Internet Security in India
The document discusses internet security in India. It summarizes that while the internet provides many benefits, it also enables many security threats. The Open Security Alliance (OSA) conducted research on internet security issues facing individual users, organizations, and the government in India. OSA categorized internet users and identified security issues for each group. Their analysis found that India faces unique technology risk issues with a growing internet user population in both urban and rural areas. Proactive strategies are needed to establish security standards and practices through research, education and policy changes.
Cyber security rule of use internet safely
This document discusses cyber security and its role in ensuring safe internet use. It makes three key points:
1) Cyber security plays an important role in protecting internet users by securing both hardware and software infrastructure, as well as the information transmitted. This helps guarantee a safe online environment.
2) Regulations and strategies at national and international levels aim to create a comfortable environment for internet users while addressing negative aspects like cybercrime. Laws govern internet usage while respecting freedom of access to information.
3) There is sometimes a tension between individuals' right to access information and freedom of expression online, and the need for cyber security to protect others and national security. Restrictions on these rights only apply as outlined in international law
Doc handout
The document summarizes a survey conducted on cybersecurity habits of RMIT university students in Melbourne. The key findings are:
1) Most students are aware of cybersecurity but tend to ignore risks and give out personal information like email and birthdate. Many use the same passwords across accounts.
2) The target audience for a cybersecurity awareness campaign is RMIT students in Melbourne aged 18-30 across all genders. Students understand risks but trust that nothing bad will happen and may give out info for deals.
3) The campaign timeline is semester 1 of 2019, running escalator ads, webcam covers, social media posts and digital posters/videos from weeks 2-12. The proposed budget is $33
Emerging cyber threats_report2012
Botnets are evolving in their usage and tactics. Botnet controllers build large profiles on infected users and sell the data. Advanced persistent adversaries query botnet operators to identify already compromised machines belonging to their target organizations. Bad actors borrow techniques from black hat SEO to evade defenses like reputation systems. Research finds targeted attacks may have roots in common botnets, with adversaries paying top dollar for information from botnet operators.
How to Like Social Media Network Security
This is my presentation from Source Dublin 2014 on cyber crime and social media.
Social media networks provide individuals and businesses with exciting opportunities to communicate and collaborate with others throughout the world. But with these opportunities come a number of security challenges and risks. This talk will outline how social media networks can pose various threats to businesses, from information leakage, reputational damage, to social engineering profiling, and vectors for enabling compromise of corporate systems. Social media networks also enable the rapid dissemination of news which in the event of an information security breach could either save or destroy an organisations reputation. Understanding and dealing with these challenges will enable companies to like and favourite social media networks in a secure way.
188
This document discusses cyber security issues, challenges, and risks. It begins by introducing the topic of cyber security and the importance of securely transferring information online. It then discusses some key challenges facing cyber security like advanced persistent threats, the evolution of ransomware, threats to IoT devices, and risks associated with cloud computing. The document also covers cyber security techniques to help address issues like access control, authentication, malware scanning, and using firewalls and antivirus software. It concludes by discussing systemic cyber risks related to scale, interdependency, and shared resources, as well as the importance of cyber ethics.
CYBER SECURITY: A SURVEY ON ISSUES AND SOLUTIONS
This is an era of technology and Internet is one o f the them which has changed the world the most in last decades. It is open and so anyone can use it to get information about anything, people have been using it for educational, business, social connections and every day work purposes. But the matter of fact is door open in both directions, bad people with bad intensions stared using this technology for evil intensions. They are stealing personal data, financial information, government secrets and many others are target of those people. In this paper we will discuss about vulnerabilities present currently in the network, some case studies and later recommendations to avoid vulnerabilities and prevent them from exploitations are also discussed.
Blackberry playbook – new challenges
This approach mainly based on examines how many differences do exist between BlackBerry OS and new BlackBerry OS based on QNX OS. It highlights whether one techniques provide more easy implementation, investigation and handling or not, what common differences examiners may encounter and what they should as concept be involved to forensic handling with these platforms because a Playbook OS is completely a new approach.
http://hakin9.org/dont-be-mocked-secure-your-system-0512-2/
Web Safey
The document discusses internet safety issues among teenagers and the steps taken by NRHS to educate students. It provides statistics showing that over 30% of students share personal information or spend over an hour online daily. Around 25% of students admit to visiting inappropriate sites or chatting with strangers. In response, NRHS implements technology literacy standards to teach students safe online practices like protecting personal information, reporting suspicious activity, and protecting technology systems from unethical users. Students must also attend a web safety program before signing the school district's acceptable use policy.
Mobile security in Cyber Security
The intention of this slide is to cover all the basics in Mobile Security in Cyber and Information Security
(Network and Communication Security)
IRJET- Android Device Attacks and Threats
This document discusses security threats to Android devices. It begins by providing background on the growth of mobile technology and its integration into daily life and the workplace. This has increased security risks as mobile devices now store and access large amounts of personal and corporate data. The document then discusses some specific threats to Android devices, including data breaches, social engineering, Wi-Fi interference, out-of-date devices, cryptojacking attacks, and poor password hygiene. It emphasizes that Android devices, like other mobile technologies, are vulnerable to these online and physical attacks that can result in compromised data and device access. Strong mobile security practices are needed to protect against the threats.
Puppetnets and Botnets: Information Technology Vulnerability Exploits
The focus of this paper is to identify dominant trends of
information security threats to the Internet 2001 to 2007. This
paper is intended to provide an understanding of the new
emphasis of attacks through use of robotic networks and how
some users and organizations are already preparing a response
using innovative visualization techniques in conjunction with
traditional methods. The scope of research will focus on basic
enterprise level services that are commonly provided by various
corporations; e.g., e-mail, browser applications, wireless and
mobile devices, IP telephony, and online banking. The research
will first review the network infrastructure common to most
corporate organizations and assume basic enterprise components
and functionality in response to the current security threats. The
second emphasis will consider the impact of malware robotic
networks (Botnets and Puppetnets) on the corporate network
infrastructure and how to address these threats with new and
innovative techniques. This approach is pragmatic in application
and focuses on assimilation of existing data to present a
functional rationale of attacks to anticipate and prepare for this
coming year.
Trusting Smart Speakers: Understanding the Different Levels of Trust between ...
The growing usage of smart speakers raises many privacy and trust concerns compared to other technologies such as smart phones and computers. In this study, a proxy measure of trust is used to gauge users’ opinions on three different technologies based on an empirical study, and to understand which technology most people are most likely to trust. The collected data were analyzed using the Kruskal-Wallis H test to determine the statistical differences between the users’ trust level of the three technologies: smart speaker, computer and smart phone. The findings of the study revealed that despite the wide acceptance, ease of use and reputation of smart speakers, people find it difficult to trust smart speakers with their sensitive information via the Direct Voice Input (DVI) and would prefer to use a keyboard or touchscreen offered by computers and smart phones. Findings from this study can inform future work on users’ trust in technology based on perceived ease of use, reputation, perceived credibility and risk of using technologies via DVI.
Efficient Data Security for Mobile Instant Messenger
This document proposes an efficient security method for mobile instant messengers. It suggests using elliptic curve cryptography algorithms for authentication and encryption in a peer-to-peer architecture rather than a client-server model. The proposed method generates key pairs for each communication session to sign and encrypt messages efficiently. It is designed to be compatible with mobile devices and improve upon existing methods that lack encryption or have high computational requirements. The document outlines the security model and describes algorithms for encryption, decryption, signing and verifying messages that could provide secure communication for mobile instant messaging applications.
Review on mobile threats and detection techniques
Since last-decade, smart-phones have gained widespread usage. Mobile devices store personal details
such as contacts and text messages. Due to this extensive growth, smart-phones are attracted towards
cyber-criminals. In this research work, we have done a systematic review of the terms related to malware
detection algorithms and have also summarized behavioral description of some known mobile malwares
in tabular form. After careful solicitation of all the possible methods and algorithms for detection of
mobile-based malwares, we give some recommendations for designing future malware detection algorithm
by considering computational complexity and detection ration of mobile malwares.
Cyber Threat to Public Safety Communications
This document discusses cyber threats to public safety communications systems. It begins by describing how communications broke down for first responders during the 9/11 attacks due to overloaded cell networks and damaged radio systems. Since then, improvements have focused on redundancy and interoperability through increased connectivity, but this also introduces more vulnerabilities. The document outlines several cyberattacks against 911 call centers and public safety networks in recent years. It identifies the most attractive targets as the public's access to 911 and single points of failure in interconnected systems. The main security challenges are complacency about risks and limited budgets to address vulnerabilities.
What's hot (20)
Malware threat analysis techniques and approaches for IoT applications: a review
Malware threat analysis techniques and approaches for IoT applications: a review
An Automated Model to Detect Fake Profiles and botnets in Online Social Netwo...
An Automated Model to Detect Fake Profiles and botnets in Online Social Netwo...
Puppetnets and Botnets: Information Technology Vulnerability Exploits
Puppetnets and Botnets: Information Technology Vulnerability Exploits
Trusting Smart Speakers: Understanding the Different Levels of Trust between ...
Trusting Smart Speakers: Understanding the Different Levels of Trust between ...
Efficient Data Security for Mobile Instant Messenger
Efficient Data Security for Mobile Instant Messenger
Viewers also liked
Ericsson ConsumerLab: Wearable technology and the internet of things
- The document analyzes consumer views on wearable technology beyond just health and fitness uses. It finds that ownership of wearables has doubled in the past year among smartphone users in surveyed countries. However, the market is still dominated by health and fitness devices.
- It also finds that expectations for wearable functionality are rising, with many users disappointed in current devices. While interest exists for uses beyond health, consumers predict most novel concepts won't be mainstream until after 2020. Safety and security devices receive the most interest among concepts tested.
- Existing wearable users have higher expectations for speed of adoption for new types of smart garments and devices that monitor things like blood alcohol levels, predicting they may be mainstream by 2020
Flashpoint hacking forisis_april2016
The document provides an overview of several pro-ISIS hacking groups that have emerged since 2014, including the Cyber Caliphate, Islamic State Hacking Division, Islamic Cyber Army, and United Cyber Caliphate. It describes their origins, claimed attacks and targets. While the groups showed some coordination, their capabilities appear unsophisticated, typically targeting low-hanging fruit through methods like website defacements and data dumps of publicly available information. The leadership and membership of the groups was also fluid over time.
Focus on cyber threats in hacking cycle
The document summarizes several cyber attacks and security issues faced by South Korea between 2003-2014. It describes hacks against the Bangladesh central bank, South Korean companies like KHNP and cyber threats experienced more broadly by South Korea. The government has established a national cybersecurity system coordinated by the Presidential Office to counter continuous cyber attacks, and works to strengthen capacity through strategic plans, education and international cooperation.
Hacker House August Proposal
The development of the Hacker House idea continues. Our business proposal deck for Aug 2015 is showcased out here as an example.
7 Pillars of Growth Hacking - Chris Out from RockBoost
Do you want me to speak at your event? http://get.rockboost.com/chris/
Learn in 7 steps how to set up a growth hacking structure for your company
Cyber Security in Manufacturing
The document discusses Internet of Things (IoT) and cybersecurity challenges in manufacturing. It provides an overview of the evolving threat landscape, including common hacking techniques like spearphishing and malware. The presentation emphasizes the importance of cyber hygiene practices for manufacturers such as updating software, using strong unique passwords, training employees on security basics, and not browsing as an administrator. It promotes attending an upcoming cybersecurity forum to learn more on topics that will help protect manufacturing organizations from emerging threats.
CyberSecurity Medical Devices
In the new world of connected healthcare, medical device manufacturers are challenged with cybersecurity issues to comply with the new FDA regulations. We examine the 5 domain areas of cybersecurity which apply to IoT HealthCare Vendors/ Providers.
The Foundations of Social Media Risk Management
While most organizations recognize that the use of social media is a popular and often necessary part of modern business, it can be a compliance nightmare. To minimize corporate risk and maximize the benefits of social media, organizations should pursue a risk-sensitive strategy that engages employees and balances exposures, investment costs, and legal obligations.
Hacking Mobile Apps
Mobile apps are the entry point to your web applications, APIs and web services. But sometimes the developer implements security in the mobile app that can easily be bypassed by a malicious attacker, allowing the attacker to exploit your web applications and steal confidential information. In this presentation I will show you how easy it is to attack a mobile application, intercept the communication and exploit the trust model of mobile apps. I will also give an overview of the OWASP Top 10 Mobile Risks.
Wearing safe: Physical and informational security in the age of the wearable ...
Wearing safe: Physical and informational security in the age of the wearable ...Simon Fraser University
Wearable computing devices promise to deliver countless benefits to users. Moreover, they are among the most personal and unique computing devices of all, more so than laptops and tablets and even more so than smartphones. However, this uniqueness also brings with it a risk of security issues not encountered previously in information systems: the potential to not only compromise data, but also to physically harm the wearer. This article considers wearable device security from three perspectives: whether the threat is to the device and/or the individual, the role that the wearable device plays, and how holistic wearable device security strategies can be developed and monitored.CNIT 128 Ch 1: The mobile risk ecosystem
Slides for a college course at City College San Francisco. Based on "Hacking Exposed Mobile: Security Secrets & Solutions", by Bergman, Stanfield, Rouse, Scambray, Geethakumar, Deshmukh, Matsumoto, Steven and Price, McGraw-Hill Osborne Media; 1 edition (July 9, 2013) ISBN-10: 0071817018.
Instructor: Sam Bowne
Class website: https://samsclass.info/128/128_S17.shtml
OPSEC for hackers
A gentle introduction to keeping your mouth shut.
Video of the talk: https://www.youtube.com/watch?v=9XaYdCdwiWU
Over-the-air (OTA) updates and the Connected car
This document discusses the challenges of over-the-air (OTA) updates for connected cars. It notes that while OTA updates are common for mobile devices, they are more complex for cars which have over 100 electronic control units (ECUs) from multiple vendors and evolving software. An OTA platform is proposed to intelligently manage updates across this heterogeneous environment through features like adaptive delta compression, a message bus, and support for various vehicle networks and file formats. The platform aims to standardize OTA updates for cars in a way that is scalable, secure, and handles the large sizes and dependencies between vehicle software components.
Security Challenges in Emerging Technologies
This document discusses emerging security challenges with new technologies. It begins with an overview of how information security has evolved from a focus on confidentiality to also emphasize integrity and availability. Four emerging technologies are then examined: robotics, 3D printing, the Internet of Things, and wearables. Each section identifies applications of the technology and discusses associated security risks. For example, robotic systems could be hacked and manipulated to cause physical harm. The document emphasizes that security must be considered from the early design stages of new technologies and provides approaches to help secure different areas.
CNIT 128 Ch 2: Hacking the cellular network
The document provides an overview of cellular network functionality and vulnerabilities. It discusses the basic components and protocols of GSM and CDMA networks, including base stations, control channels, and authentication. It then covers attacks such as rogue base stations, vulnerabilities in SMS and voicemail, and the security issues with femtocells. The document concludes by discussing the transition to an all-IP network through IMS and LTE standards.
Ethical hacking
The document discusses ethical hacking, including what it is, types of hackers, and guidelines for ethical hacking. It defines ethical hacking as hacking performed with permission to help identify security vulnerabilities. There are different types of hackers, including white hat hackers who perform ethical hacking, black hat hackers who hack maliciously, and grey hat hackers who operate in a legal grey area. Guidelines for ethical hacking include obtaining permission, respecting privacy, keeping records, and doing no harm. The goal of ethical hacking is to improve security by finding vulnerabilities before criminals can exploit them.
Hacking-as-a-Service - Hacking Is Now Accessible to Everyone - Are We Prepared?
Presented by Ondrej Krehel at the Secure Computing Forum in Dublin, Ireland.
Hacking is no longer performed by extremely skilled hackers in dark rooms with hoodies on. Now, anyone can be a hacker - all you need is a credit card. Yes, that's right! Plans start at 19.99 and can cause a major headache for businesses all over the world. The cybercrime market is learning from its legal counterpart and employs advanced marketing strategies, good customer service and technical support, and more.
Building a Cyber Security Operations Center for SCADA/ICS Environments
Abstract: Modern day cyber threats are ever increasing in sophistication and evasiveness against Process Control Networks. Organizations in the industry are facing a constant challenge to adopt modern techniques to proactively monitor the security posture within the SCADA infrastructure whilst keeping cyber attackers and threat actors at bay.
In this presentation we will cover the fundamental building blocks of building a SCADA cyber security operations center with key responsibilities such as Incident Response Management, Vulnerability and Patch Management, Secure-by-design Architecture, Security Logging and Monitoring and how such security domains drive accountability and act as a line of authority across the PCN.
29 Growth Hacking Quick Wins
The document provides 29 tips for growth hacking and quick wins that companies should be testing, but often aren't. Some of the key tips include measuring customer happiness with Net Promoter Score, creating more targeted landing pages, using paid ads to test headlines and images, removing distracting links from landing pages, and testing different calls to action copy. It encourages testing unconventional approaches to improve conversions and growth.
Growth Hacking
This document discusses growth hacking strategies used by early internet companies like Hotmail to achieve rapid growth. It defines growth hacking as a set of tactics and best practices for acquiring, activating, and retaining users. Some key tactics discussed include viral growth, A/B testing landing pages, optimizing the user lifecycle funnel, and identifying bottlenecks. The document provides examples of notable growth hacks from companies like Dropbox, Path, and Eventbrite.
Viewers also liked (20)
Ericsson ConsumerLab: Wearable technology and the internet of things
Ericsson ConsumerLab: Wearable technology and the internet of things
7 Pillars of Growth Hacking - Chris Out from RockBoost
7 Pillars of Growth Hacking - Chris Out from RockBoost
Wearing safe: Physical and informational security in the age of the wearable ...
Wearing safe: Physical and informational security in the age of the wearable ...
Hacking-as-a-Service - Hacking Is Now Accessible to Everyone - Are We Prepared?
Hacking-as-a-Service - Hacking Is Now Accessible to Everyone - Are We Prepared?
Building a Cyber Security Operations Center for SCADA/ICS Environments
Building a Cyber Security Operations Center for SCADA/ICS Environments
Similar to MOBILE DEVICES: THE CASE FOR CYBER SECURITY HARDENED SYSTEMS AND METHODS TO ADDRESS SECURITY RELATED ISSUE
NACCTFO Cyber Security Presentation 2014 New Orleans
Dr. Maurice Dawson presented on cyber security. He discussed the growing trend of hyperconnectivity and how it is challenging cyber security. He covered guidance, tools, and training needed to address threats in an increasingly connected world. Dawson also outlined his background and current research focusing on cyber security, including mobile device security, cyber terrorism, and ensuring the delivery of secure systems.
Absolutely no plagiarism Topic Mobile users and d.docx
**** Absolutely no plagiarism *****
Topic : Mobile users and data security
1. A one full page single spaced paper discussing your topic.
2. A five source annotated bibliography. The sources should be high quality academic references (not techopedia or the like). The annotations for each source should include two paragraphs. The first paragraph should summarize the article and the second should be your reflections on it. Each paragraph must contain at least five sentences.
3. A PPT on Mobile users and data security with a minimum of 12 slides not including the title and references.
The abstract that we have submitted before: (Dont copy form the below)
Over the last years, technological advancement has continued to rise to create a significant change in the communication landscape. In the contemporary world, many people are linking up through the use of mobile devices by making calls, video calls and sending short messages. The estimate of mobile users in the world is about 5 billion people. Technological advancement has made the use of mobile phones to be smarter by incorporating both video and graphical materials. Improvement in technology is a result of continual research in the field.
Unlike the 1970s devices, the current mobile devices have a wide variety of features that have enabled various functions. The past was characterized by limited and costly mobile phones but the current users have increased greatly. For instance, an individual can have as many phones as he or she desires depending on the phone features and specifications. The landscape is moving all the time with new smartphones hitting the market and new features being rolled out almost weekly,” (Curran, Maynes, & Harkin, 2015). Apart from voice communication, one can use a mobile phone to send and receive emails. Due to the change in technology that has led to an increase in mobile users, security threats have been on the rise. This situation calls for security actions from information technology departments. In 2004, the first computer virus that destroyed mobile devices emerged. Since then, many security vulnerabilities followed as more smartphones emerged.
Mobile security is paramount not only to organizations but also the mobile phone users. It refers to taking initiative strategies to safeguard sensitive data that are kept in mobile devices or any other portal devices. It also involves the capability to protect the enterprise network from being manipulated by unauthorized users. Devices that are prone to mobile security threats are not only smartphones but also portal devices such as wearables, tablets and laptops. Hackers and cyber-criminals are now focusing much of their efforts on mobile platforms, often as a first step to breaking into corporate networks,” (Shaulov, 2016). Potential threats on mobile devices include unsecured WIFI networks, leakage of data, malicious apps and spyware. There are also physical threats such as losing a mobile device or ge.
Emerging web security threats
Web security threats is associated with ever-increasing complications, threats, and
even rising costs that are unprecedented every day.
Report on Mobile security
The document discusses mobile security risks and trends. It outlines the anatomy of a mobile attack, including infection vectors, installing backdoors, and exfiltrating data. Key findings include the challenge of BYOD, lack of security in mobile apps, and employees unwittingly introducing threats via personal devices. The OWASP Mobile Top 10 risks framework classifies common vulnerabilities such as improper platform usage, insecure data storage, weak authentication, and code tampering. Overall, the growth of mobile devices and lack of awareness regarding mobile security hygiene has introduced significant risks that organizations must address.
Running Head CURRENT CHALLENGES FACING CYBER SECURITY .docx
Running Head: CURRENT CHALLENGES FACING CYBER SECURITY 1
CURRENT CHALLENGES FACING CYBER SECURITY 12
(Name of School)
(Your Name)
(Course Code)
(Instructor’s Name)
(Date)
Current Challenges Facing Cyber Security
Abstract
Modern technology has been used today in various fields and it has proved to be of importance. Technology as a whole makes the world appear small in terms of distance due to fast transport and communication and a huge task to be less. Many people have been so dependent on technology, which is advancing fast. The technology faces quite several challenges with the main one being cyber-crimes in different organizations and that where cybersecurity plays its part in the protection of vital information from being accessed or destroyed by unauthorized individuals. Cybersecurity plays a significant role in ensuring that any computer-related information is secure, no harm can come to it or threat is detected early before it thrives (Raman, 2019, p.3). Despite that still, the cybersecurity faces a lot of challenges; the main objective of this paper is to focus on those challenges faced by cybersecurity, making it less effective in playing its role. Also on some of the measures that have been taken in preventing the crimes associated with computer systems (Sutherland, 2018, p. 27).
Introduction
The world today starting from an individual moving to the largest organizations, all at least have a computer system for either storing information or used in day to day activities. Human beings can communicate with their loved ones from the far distance, they can travel long distance within the shortest time possible, and also they make what is deemed to be less effective, to be efficient. This is how good the technology is and why people are obsessed with it day in day out. Before all this, there is still the fact that they are unable to safeguard their information mostly the private one (Sadeghi et al., 2015, p. 4). This is why this paper is of importance as it makes one realize that within a fraction of a second or a mini second one can lose over a million in his bank account, millions of passwords could be hacked, the funny part is that someone can give out your money for donation without your knowledge, a virus can be sent into your computer to disrupt it or malware this is mostly associated with computers. That is how cyber-crime is and you can imagine how the victims cope with such surprise events when they do occur, in some cases, others take their lives in such a situation. These may occur due to the lack of cybersecurity that allows computer and other machines to be exploited (Sutherland, 2018, p. 27).
Objectives
To come up with a strategy that can respond quickly from cyber incidents and also prevent them when they occur.
To ensure that there is integrity maintained and availability of linked systems.
Encourage the creation of cyber secured machines to fight cyber threats.
Literature Revi ...
Mobile SecurityKalyan BereKodapeComputer Security .docx
Mobile Security
Kalyan Bere
Kodape
Computer Security Foundations- CRN119
10/16/2019
Mobile Security
Abstract:
Mobile security is a concern that is fully dependent on technology. The functionality of mobile phones computations is dependent on the cloud space. With the cloud space, this is a virtual space that connects people globally. Due to this global interaction, there are security concerns that are associated with mobile one's computations. This is what is discussed in this paper. It sheds light on what mobile computation is, critical concerns of this context, threats which make mobile security concern s and finalizes this topic with a measure to curb mobile security compromises.
Introduction
Come to think of mobile computing; almost everyone in the world is using mobile computing. Due to this vast use of mobile computing worldwide, some pros and cons are associated with the use of mobile phones globally. Advantages of mobile computing can be of benefit to mobile phones users' while cons can be a threat to the victimized mobile phone user. In this research paper, the paper will assess the context of mobile security to shed light on the in-depth insight that surrounds this context. To serve this purpose, this research paper will focus on why mobile security is important, dangers and threats of compromised mobile security and how mobile users can protect themselves from mobile security issues. To serve the purpose of research work, this research paper will utilize secondary sources of information, referred to as a literature review. Through the evaluation of the literature review, this paper will screen the most important aspects of mobile security and harmonize information from various sources in on research paperwork.
Literature review:
Definition of mobile security:
A broad array of mobile security confirms mile security as the security precautions that are desired for networks which are used to connect portable computable devices remotely (Margaret) mobile security, retrievable from https://whatis.techtarget.com/definition/mobile-security. Mobile security is desired due to increased users of wireless computation mobile services globally. This increased number of users dictate increased operations the cloud space that employs these portable computing mobile devise. Mobile security is desired majorly to cut financial losses that one can incur when their mobile security has been compromised.
Concerns in mobile security:
Device loss; this concern almost applies to every other owner of any portable computing mobile device because they are prone to get lost. When they get lost, it can become a threatening concern to data that was in the lost mobile device.
Application security; this concern is determined to ensure that application that requires too much authorization is controlled. This is because some of these applications can ask for guaranteed access to private information wh ...
Cyber Malware Programs And The Internet
Malware programs have increased with greater internet usage, infecting systems and threatening security. There are various types of malware like viruses, trojans, worms, spyware and adware that infect systems through emails, downloads and other methods. While technologies like firewalls, antivirus software and encryption help secure systems and networks, the growing sophistication of malware poses ongoing challenges to internet security. Teaching users about malware types and prevention methods is important for protecting systems and information.
1402.1842.pdf
This document discusses cyber security challenges posed by emerging technologies and trends. It summarizes that securing information has become a major challenge due to technologies enabling widespread data sharing. New threats include advanced persistent threats targeting specific systems and the movement of data to cloud services and mobile networks. Emerging technologies like cloud computing, mobile computing and the new IPv6 internet protocol also present security issues. Strong encryption, integrated security systems, mobile security, and updated policies are needed to address evolving cyber threats.
Adaptive Mobile Malware Detection Model Based on CBR
Today, the mobile phones can maintain lots of sensitive information. With the increasing capabilities of such phones, more and more malicious software malware targeting these devices have emerged. However there are many mobile malware detection techniques, they used specified classifiers on selected features to get their best accuracy. Thus, an adaptive malware detection approach is required to effectively detect the concept drift of mobile malware and maintain the accuracy. An adaptive malware detection approach is proposed based on case based reasoning technique in this paper to handle the concept drift issue in mobile malware detection. To demonstrate the design decision of our approach, several experiments are conducted. Large features set with 1,065 features from 10 different categories are used in evaluation. The evaluation includes both accuracy and efficiency of the model. The experimental results prove that our approach achieves acceptable performance and accuracy for the malware detection. Kyaw Soe Moe | Mya Mya Thwe "Adaptive Mobile Malware Detection Model Based on CBR" Published in International Journal of Trend in Scientific Research and Development (ijtsrd), ISSN: 2456-6470, Volume-3 | Issue-6 , October 2019, URL: https://www.ijtsrd.com/papers/ijtsrd28088.pdf Paper URL: https://www.ijtsrd.com/computer-science/computer-security/28088/adaptive-mobile-malware-detection-model-based-on-cbr/kyaw-soe-moe
Journal of Computer and System Sciences 80 (2014) 973–993Con
Journal of Computer and System Sciences 80 (2014) 973–993
Contents lists available at ScienceDirect
Journal of Computer and System Sciences
www.elsevier.com/locate/jcss
A survey of emerging threats in cybersecurity
Julian Jang-Jaccard, Surya Nepal ∗
CSIRO ICT Centre, Australia
a r t i c l e i n f o a b s t r a c t
Article history:
Received 25 September 2012
Received in revised form 15 March 2013
Accepted 27 August 2013
Available online 10 February 2014
Keywords:
Cybersecurity
Malware
Emerging technology trends
Emerging cyber threats
Cyber attacks and countermeasures
The exponential growth of the Internet interconnections has led to a significant growth
of cyber attack incidents often with disastrous and grievous consequences. Malware is the
primary choice of weapon to carry out malicious intents in the cyberspace, either by ex-
ploitation into existing vulnerabilities or utilization of unique characteristics of emerging
technologies. The development of more innovative and effective malware defense mech-
anisms has been regarded as an urgent requirement in the cybersecurity community. To
assist in achieving this goal, we first present an overview of the most exploited vulner-
abilities in existing hardware, software, and network layers. This is followed by critiques
of existing state-of-the-art mitigation techniques as why they do or don’t work. We then
discuss new attack patterns in emerging technologies such as social media, cloud comput-
ing, smartphone technology, and critical infrastructure. Finally, we describe our speculative
observations on future research directions.
Crown Copyright © 2014 Published by Elsevier Inc. All rights reserved.
1. Introduction
Our society, economy, and critical infrastructures have become largely dependent on computer networks and information
technology solutions. Cyber attacks become more attractive and potentially more disastrous as our dependence on informa-
tion technology increases. According to the Symantec cybercrime report published in April 2012 [17], cyber attacks cost
US$114 billion each year. If the time lost by companies trying to recover from cyber attacks is counted, the total cost of
cyber attacks would reach staggering US$385 billion [17]. Victims of cyber attacks are also significantly growing. Based on
the survey conducted by Symantec which involved interviewing 20,000 people across 24 countries, 69% reported being the
victim of a cyber attack in their lifetime. Symantec calculated that 14 adults become the victim of a cyber attack every
second, or more than one million attacks every day [105].
Why cyber attacks flourish? It is because cyber attacks are cheaper, convenient and less risky than physical attacks [1].
Cyber criminals only require a few expenses beyond a computer and an Internet connection. They are unconstrained by
geography and distance. They are difficult to identity and prosecute due to anonymous nature of the Internet. Given that
attacks against information tec ...
Journal of Computer and System Sciences 80 (2014) 973–993Con.docx
Journal of Computer and System Sciences 80 (2014) 973–993
Contents lists available at ScienceDirect
Journal of Computer and System Sciences
www.elsevier.com/locate/jcss
A survey of emerging threats in cybersecurity
Julian Jang-Jaccard, Surya Nepal ∗
CSIRO ICT Centre, Australia
a r t i c l e i n f o a b s t r a c t
Article history:
Received 25 September 2012
Received in revised form 15 March 2013
Accepted 27 August 2013
Available online 10 February 2014
Keywords:
Cybersecurity
Malware
Emerging technology trends
Emerging cyber threats
Cyber attacks and countermeasures
The exponential growth of the Internet interconnections has led to a significant growth
of cyber attack incidents often with disastrous and grievous consequences. Malware is the
primary choice of weapon to carry out malicious intents in the cyberspace, either by ex-
ploitation into existing vulnerabilities or utilization of unique characteristics of emerging
technologies. The development of more innovative and effective malware defense mech-
anisms has been regarded as an urgent requirement in the cybersecurity community. To
assist in achieving this goal, we first present an overview of the most exploited vulner-
abilities in existing hardware, software, and network layers. This is followed by critiques
of existing state-of-the-art mitigation techniques as why they do or don’t work. We then
discuss new attack patterns in emerging technologies such as social media, cloud comput-
ing, smartphone technology, and critical infrastructure. Finally, we describe our speculative
observations on future research directions.
Crown Copyright © 2014 Published by Elsevier Inc. All rights reserved.
1. Introduction
Our society, economy, and critical infrastructures have become largely dependent on computer networks and information
technology solutions. Cyber attacks become more attractive and potentially more disastrous as our dependence on informa-
tion technology increases. According to the Symantec cybercrime report published in April 2012 [17], cyber attacks cost
US$114 billion each year. If the time lost by companies trying to recover from cyber attacks is counted, the total cost of
cyber attacks would reach staggering US$385 billion [17]. Victims of cyber attacks are also significantly growing. Based on
the survey conducted by Symantec which involved interviewing 20,000 people across 24 countries, 69% reported being the
victim of a cyber attack in their lifetime. Symantec calculated that 14 adults become the victim of a cyber attack every
second, or more than one million attacks every day [105].
Why cyber attacks flourish? It is because cyber attacks are cheaper, convenient and less risky than physical attacks [1].
Cyber criminals only require a few expenses beyond a computer and an Internet connection. They are unconstrained by
geography and distance. They are difficult to identity and prosecute due to anonymous nature of the Internet. Given that
attacks against information tec ...
Blue Coat 2013 Systems Mobile Malware Report
This document analyzes the mobile threat landscape and user behavior that drives mobile threats. Key findings include:
- Mobile threats are currently mischiefware focused on scams, spam and phishing rather than breaking devices.
- Pornography sites pose high risks, with nearly 3 times the chance of malicious content than other sites.
- Malnets, which drove most desktop threats in 2012, are now targeting mobile users, originating 40% of blocked mobile malware.
- User behavior like visiting shortened links and expecting different mobile sites increases risks of deception.
Cyber crime
This document provides an overview of a seminar on cyber crime threats to mobile devices. The seminar covers topics such as what constitutes cyber crime, the cyber security landscape including threats to networks and systems, and preventative measures that can be taken to oppose cyber crime. The document outlines the threats to mobile devices, including communications-based threats like man-in-the-middle attacks and system-based threats like software vulnerabilities. It also discusses network security issues and challenges, system security problems that have been observed, and concludes with recommendations for preventative measures organizations and individuals can take to enhance cyber security.
Whitepaper: BATTLING IT OUT: APPLICATION AND MOBILE SECURITY - Happiest Minds
Whitepaper: BATTLING IT OUT: APPLICATION AND MOBILE SECURITY - Happiest MindsHappiest Minds Technologies
This document discusses key threats and attacks on application and mobile security, including advanced persistent threats (APTs), web application threats, and mobile threats. APTs are sophisticated, targeted attacks that establish ongoing access to target systems. Web applications are vulnerable to attacks like SQL injection and cross-site scripting. Mobile threats include malware, privacy threats from data-gathering apps, and network exploits that target mobile operating systems and wireless protocols. The document proposes a threat intelligence and monitoring framework to detect and mitigate these evolving cybersecurity risks across networks, applications, and devices.MOBILE DEVICE USERS’ SUSCEPTIBILITY TO PHISHING ATTACKS
The mobile device is one of the fasted growing technologies that is widely used in a diversifying sector. Mobile devices are used for everyday life, such as personal information exchange – chatting, email, shopping, and mobile banking, contributing to information security threats. Users' behavior can influence information security threats. More research is needed to understand users' threat avoidance behavior and motivation. Using Technology threat avoidance theory (TTAT), this study assessed factors that influenced mobile device users' threat avoidance motivations and behaviors as it relates to phishing attacks. From the data collected from 137 mobile device users using a questionnaire, the findings indicate that (1) mobile device users' perceived susceptibility and severity of phishing attacks have a significant correlation with a users' perception of the threat; (2) mobile device users' motivation to avoid a threat is correlated to a users' behavior in avoiding threat; and (3) a mobile device user's susceptibility to phishing attacks can be reduced by their perception of the threat. These findings reveal that a user's perception of threat increases if they perceive that the consequence of such threat to their mobile devices will be severe, thereby increasing a user's motivation and behavior to avoid phishing attack threats. This study is beneficial to mobile device users in personal and organizational settings.
Running head SECURING NATIVE APPLICATIONSSECURING NATIVE APPLIC.docx
Running head: SECURING NATIVE APPLICATIONS
SECURING NATIVE APPLICATIONS 6
Securing Native Applications
Name:
Course:
Institution:
Date:
Abstract
This paper aims at discovering the methods of securing native mobile applications and the probable threats they can experience in the advancing world of technology. Any kind of software, ranging from desktop to mobile applications, is believed to have defects that can lead to susceptibilities. These weaknesses, when subjugated, may bring in threat to the integrity, privacy, and accessibility of the software. However, various security auditing strategies might aid to minimize at a specific degree the level of confidence these risks have. With the outburst of mobile applications for day to day activities such as checking email, social networks, news, managing bank accounts, ensuring a satisfactory level of application security becomes essential for the usage and reliance of mobile services. This research identifies the effective analysis factors that can help the daily mobile application users to identify mobile risks as well as a probable methodology to security audit mobile software applications. The advancement in information technology and applications has increased the access of sensitive information such as International Mobile Equipment Identity Number (IMEI) of device, credit and debit card information, location information and login credentials thus the need to secure vulnerable applications from authorized access.
Introduction
Mobile application expansion in various platforms is based on functional and non-functional rations. Different types of platforms exist to organize mobile applications with distinctive private policies (Jing, Ahn, Zhao & Hu, 2014). This paper aims at highlighting mobile application security for native apps such as navigation programs and social media, for instance, Waze and Twitter respectively, and the methodologies that help reduce these security threats.
Analysis Blocks to Identify Mobile Risks
There are several risks identified by where frequent faults are found and how they can be surfaced during an application security auditing. These risks are associated with different factors such as attack vectors, aggressive agents, weaknesses, technical impact, and business impact. To demonstrate, weak server-side controls regards the threats from a third-party mechanism like extremity servers necessary for most mobile applications (Jing, Ahn, Zhao & Hu, 2014). This threat includes defenseless server arrangement, authentication errors, session supervision flaw, and access control weaknesses. Further, insecure data storage regards the possible risks created by weaknesses on the data storage in the mobile device which can lead to information leakage. Inadequate transport layer protection recognizes assailability such as non-encrypted transport layer communications, the application of susceptible cryptographic algorithms and recognition of illegal ...
Information security
The document discusses the need for information security professionals and provides an overview of information security. It describes how connecting to the internet exposes computers to risks from malicious actors. It then covers key topics in information security including identity theft, malware, patch management failures, and distributed denial of service attacks. The document concludes by recommending best practices for protecting digital assets such as using antivirus software, firewalls, and keeping systems updated with the latest patches.
Every year mobile technology is getting more advanced as everyon.docx
Every year mobile technology is getting more advanced as everyone needs mobile in their daily life in almost every bit of life. Advances in technology thus allow users to collect, modify, or access the data or any useful information over a network. Therefore, this essay discusses the pros and cons of mobile cloud computing and mobile technologies.
Mobile technologies refer to technologies or any device utilized for cellular communication and are accessible anywhere by a user (Sheng 2010). They help to connect individuals or businesses from one person to another across the world. Cellular technology refers to exactly what cell phone systems dependent on the innovation which give phones the name ‘cell phone.’ Cloud computing refers to the basic terms, which means accessing and storing data or programs that are useful to the user or business enterprise over the internet instead of storing them in the computer hard drives (Popović & Hocenski 2010). Developing cloud technologies is a major step in the field of information systems and data sharing. Application security refers to the general practice of manufacturers, adding some functionalities or features to the mobile software to prevent several various threats. These features include denial of some service attacks and other cybercrimes, data theft situations, or data breaches. It thus includes various procedures, software, and hardware that identify or minimize security vulnerabilities.
PPT:
2 pages PPT on the introduction
.
Team 3_Final Project.docx
The document discusses a study on cybersecurity among FSU college students. It examines how students manage their cybersecurity on mobile apps, websites, and devices. The study found that most students do not fully trust these platforms to protect their information, so they limit what they share or use other resources to combat threats. Hackers are seen as more dangerous now, so students are looking for ways to reduce their risks online. The document outlines some common cybersecurity threats like phishing and discusses countermeasures taken by individuals and companies.
CASE STUDY There is a new phenomenon in the cybersecurity domain ca.pdf
CASE STUDY: There is a new phenomenon in the cybersecurity domain called: “Bring Your
Own Device (BYOD)” where employees can bring their personal devices at work and connect
using the Wi-Fi to the organization’s network. Many employers are allowing their employees to
use their personal mobile device for enterprise functions such as corporate email, work
applications, etc. While this may save the company costs, the organization’s network remains
vulnerable. A company can only monitor so much that’s on an employee personal device;
Assess the threats, the vulnerabilities, and the impacts on an organization’s information systems
posed by the use of mobile devices at work. What can be done to fix it at the policy level,
technology level, and infrastructure level?
Solution
Employees aren\'t just bringing their mobile devices to the workplace — they\'re living on them.
A 2015 study by Bank of America found that 55 percent of respondents sleep with their
smartphones on their nightstands to avoid missing a call, text message or other update during the
night. The devices are also the first thing on their minds in the morning: while 10 percent
reported thinking of their significant other, 35 percent reserved their first thought of the day for
their smartphone.
As smartphones and tablets become constant companions, cyber attackers are using every avenue
available to break into them. Many people expect that iPhone or Android devices are secure by
default, when in reality it is up to the user to make security configuration changes. With the right
(inexpensive) equipment, hackers can gain access to a nearby mobile device in less than 30
seconds and either mirror the device and see everything on it, or install malware that will enable
them to siphon data from it at their leisure.
The nature and types of cyber attacks are evolving rapidly, and mobile devices have become a
critical part of enterprise cyber-security efforts with good reason. Analysts predict that by 2018,
25 percent of corporate data will completely bypass perimeter security and flow directly from
mobile devices to the cloud.
Chief information security officers (CISOs) and other security executives are finding that the
proliferation of mobile devices and cloud services present a significant barrier to effective breach
response. In order to secure the corporate data passing through or residing on mobile devices, it
is imperative to fully understand the issues they present.
5 Security Risks and a Surprising Challenge
The threat and attack vectors for mobile devices are largely composed of retargeted versions of
attacks aimed at other endpoint devices. These risks can be categorized into five areas.
1. Physical access
Mobile devices are small, easily portable and extremely lightweight. While their diminutive size
makes them ideal travel companions, it also makes them easy to steal or leave behind in airports,
airplanes or taxicabs. As with more traditional devices, physical access to a mobile devi.
Similar to MOBILE DEVICES: THE CASE FOR CYBER SECURITY HARDENED SYSTEMS AND METHODS TO ADDRESS SECURITY RELATED ISSUE (20)
NACCTFO Cyber Security Presentation 2014 New Orleans
NACCTFO Cyber Security Presentation 2014 New Orleans
Absolutely no plagiarism Topic Mobile users and d.docx
Absolutely no plagiarism Topic Mobile users and d.docx
Running Head CURRENT CHALLENGES FACING CYBER SECURITY .docx
Running Head CURRENT CHALLENGES FACING CYBER SECURITY .docx
Mobile SecurityKalyan BereKodapeComputer Security .docx
Mobile SecurityKalyan BereKodapeComputer Security .docx
Adaptive Mobile Malware Detection Model Based on CBR
Adaptive Mobile Malware Detection Model Based on CBR
Journal of Computer and System Sciences 80 (2014) 973–993Con
Journal of Computer and System Sciences 80 (2014) 973–993Con
Journal of Computer and System Sciences 80 (2014) 973–993Con.docx
Journal of Computer and System Sciences 80 (2014) 973–993Con.docx
Whitepaper: BATTLING IT OUT: APPLICATION AND MOBILE SECURITY - Happiest Minds
Whitepaper: BATTLING IT OUT: APPLICATION AND MOBILE SECURITY - Happiest Minds
MOBILE DEVICE USERS’ SUSCEPTIBILITY TO PHISHING ATTACKS
MOBILE DEVICE USERS’ SUSCEPTIBILITY TO PHISHING ATTACKS
Running head SECURING NATIVE APPLICATIONSSECURING NATIVE APPLIC.docx
Running head SECURING NATIVE APPLICATIONSSECURING NATIVE APPLIC.docx
Every year mobile technology is getting more advanced as everyon.docx
Every year mobile technology is getting more advanced as everyon.docx
CASE STUDY There is a new phenomenon in the cybersecurity domain ca.pdf
CASE STUDY There is a new phenomenon in the cybersecurity domain ca.pdf
More from Maurice Dawson
Understanding the Challenge of Cybersecurity in Critical Infrastructure Sectors
The cybersecurity of critical infrastructures is an essential topic within national and international security as 16 critical infrastructure sectors touch various aspects of American society. Because the failure to provide adequate cybersecurity controls within the critical infrastructure sectors renders the country open to an attack that could have a debilitating effect on security, national public health, safety, and economic security, this matter is so vital that there is the Presidential Policy Directive (PPD) 21 Critical Infrastructure Security and Resilience advances a national policy to strengthen and maintain secure, functioning and resilient critical infrastructure. An organization identified as the Cybersecurity and Infrastructure Security Agency (CISA) at the Department of Homeland Security (DHS) has the mission to be the risk advisor for the United States (US). Other organizations, such as the National Security Agency (NSA), have approved a specific Knowledge Unit (KU) to address cybersecurity for critical infrastructures associated with doctoral-level granting programs. To address this challenge, it is necessary to identify threats better and defend against them while mitigating risks to an acceptable level. Only then can a nation build a more secure and resilient infrastructure for the future while defending against present-day bad actors as cyberwarfare, cyber espionage, and cybersecurity attacks are the modern-day threats that need to be addressed in planning, designing, implementation, and maintenance. Therefore, the researchers developed a case study reviewing threats against different sectors defined in the PPD.
Unprotected Data: Your Risk of Internet-Enabled Psychological and Information...
Since the last elections in the United States, France, and other nations, fake news has become a tool to manipulate voters. This creation of fake news creates a problem that ripples through an entire society creating division. However, the media has not scrutinized enough on data misuse. Daily it appears that there are breaches causing millions of users to have their personal information taken, exposed, and sold on the Dark Web in exchange of encrypted currencies. Recently, news has surfaced of major social media sites allowing emails to be read without user consent.
Security Solutions for Hyperconnectivity in the Internet of Things
The Internet of Things describes a world in which smart technologies enable objects with a network to communicate with each other and interface with humans effortlessly. This connected world of convenience and technology does not come without its drawbacks, as interconnectivity implies hackability. This talk will discuss technical, human, societal, and policy issues concerning hyperconnectivity and IoT. Additionally, this talk will offer insights from cutting-edge research about the strategies and techniques that can be implemented to protect against cyber-attacks.
Framework for the Development of Virtual Labs for Industrial Internet of Thin...
The purpose of this paper is to provide a framework that allows for the development of a virtual lab that incorporates emerging technologies such as the Industrial Internet of Things and embedded systems while incorporating open source components. The global shortage of talent is a significant concern as organizations continue to embrace and roll out new technologies such as 5G, and Artificial Intelligence. Several countries such as those in developing countries face issues regarding technology use in the classroom. Thus, to provide a learning environment where cybersecurity and information systems concepts can be taught in an exploratory environment.
Unprepared for Cybersecurity in Saudi Arabia: Argument for a Shift Towards Cy...
In this paper, the researcher briefly discusses the attacks that have occurred recently within Saudi Arabia to entities such as Saudi Aramco to the Ministry of Health. These attacks are aggressions against government institutions that can render a sector vulnerable. Observing the ongoing attacks on critical infrastructure in Ukraine one can see a replication of similar attacks that could occur and spread over the Middle East. As this nation is a politically turbulent region, there is no small number of external threats. To combat these evolving threat, a shift towards cyber readiness must occur. This includes new laws, security hardened technologies, and education for people living in the kingdom.
CTRL, Search, Exploit, and Destroy
The document discusses gaining control of a situation through intelligence gathering and search techniques in order to find vulnerabilities that can be exploited to perform unparalleled events. It explores controlling the landscape through applying intelligence operations, information warfare, data science, and cybersecurity to search for and sample applications that allow one to exploit and destroy through techniques like searching for PHP errors that enable SQL injection. The session aims to explore this landscape and applications of control, search, exploit, and destroy.
MWAIS Fall 2017 Newsletter
The document summarizes the activities of the Midwest Association for Information Systems (MWAIS) in 2017, provides information about the 2018 annual conference, and makes a call for future conference organizers. Key points:
- MWAIS was recognized for the third year in a row as an outstanding AIS chapter in 2016. The 2017 annual conference in Springfield, Illinois was well attended with over 100 participants.
- The 2018 conference will be held in St. Louis, Missouri in May and focus on the theme of cybersecurity.
- Future conferences will be hosted by the University of Wisconsin-Oshkosh in 2019 and Drake University in 2020. Hosting a conference is an opportunity to showcase a university and
MWAIS Fall 2018 Newsletter
The document provides insights from a student who traveled to Guinea, Conakry to conduct a 2-week training assignment for the agriculture sector. The student trained Agriculture Trainers and Specialized Technicians in computer skills like Microsoft Office and using the Internet as a research tool. The experience helped the student contribute to the global society and learn about Guinean culture. The student advised that such assignments provide professional and personal growth opportunities. The document also discusses establishing an enterprise security architecture and key elements to consider like information, strategies, security mechanisms, and security services. The architecture should be flexible, adaptable, and promote self-regulation to address evolving security threats.
Information Technology Use in West African Agriculture – challenges and oppor...
Many countries in the Economic Community of West African States (ECOWAS) are using Information Communications Technology (ICT) to enhance agriculture development and production. To do this efficiently the John Ogonowski and Doug Bereuter Farmer-to-Farmer Program managed for West Africa by Winrock International has been tasked with providing volunteer assignments to ministries of agriculture. The University of Missouri - Saint Louis (UMSL) has entered a partnership with Winrock International to offer upper-level undergraduate and graduate students the opportunity to provide technical assistance to international government entities. In this panel; we discuss findings and opportunities for improvement in Guinea and Senegal as they relate to ICT discovered through the onsite support provided.
The Case for IT Training within Guinea’s Ministry of Agriculture: Evaluating ...
This article critically analyzes a project executed for the The John Ogonowski and Doug Bereuter Farmer-to-Farmer Program which provides technical assistance with volunteers from the United States to farmers, agricultural institutions, and government organizations involved in agriculture such as the Ministry of Agriculture. In Guinea, the focus is on computer literacy as more sectors of agriculture rely on computing technology. These skills needs range from basic computing tasks such as creating databases to more advanced items such as programming Global Positional Systems. This study looks at findings, based on the analysis of the System Usability Scale results from a sample of 16 participants. The findings demonstrated that the training proved to be effective for the participants and continued training is necessary. As a result of training 62.5% of the participants ranked above average, as opposed to 43.6% prior to training.
Schedule for the 13th Annual Conference of the Midwest AIS
This document provides the schedule for the 2018 Midwest Association for Information Systems (MWAIS) Conference taking place May 17-18 at the University of Missouri-St. Louis. The schedule lists the times, locations, and topics for events including keynote speakers, panels, presentations in concurrent sessions, workshops, and social events. Some of the topics covered are cybersecurity, artificial intelligence, healthcare IT, e-commerce, and pedagogical issues related to information systems education. Transportation between the conference hotel and campus is provided via shuttle.
UMSL IS | Farmer 2 Farmer Program
This brochure is the Farmer to 2 Farmer (F2F) program at the University of Missouri - Saint Louis (UMSL).
Midwest Association for Information Systems - MWAIS2018
The 13th Annual Conference of the Midwest AIS will be held in St. Louis, Missouri, and is sponsored by the College of Business Administration at the University of Missouri – St. Louis (UMSL). MWAIS 2018 will provide an intimate environment to facilitate the sharing of ideas, and close interaction among participants. About 100 participants are expected from throughout the Midwest US, the neighboring states and Canadian provinces, and beyond.
MWAIS 2018 - 13th Annual Conference
The 13th Annual Conference of the Midwest AIS will be held in St. Louis, Missouri, and is sponsored by the College of Business Administration at the University of Missouri – St. Louis (UMSL). MWAIS 2018 will provide an intimate environment to facilitate the sharing of ideas, and close interaction among participants. About 100 participants are expected from throughout the Midwest US, the neighboring states and Canadian provinces, and beyond.
MWAIS 2018 : 13th Annual Conference of the Midwest Association for Informatio...
Midwest Association for Information Systems
13th Annual Conference
May 24 – 25, 2018
College of Business Administration
University of Missouri – Saint Louis
Saint Louis, Missouri
We invite submissions of completed manuscripts, research-in-progress papers, panel proposals, and workshop proposals addressing behavioral, organizational, and technical aspects of information systems. Two to three parallel sessions are planned. A computer lab will be available if needed. Submitted papers and proposals will undergo a double blind review process by at least two reviewers. To facilitate the blind review, include the title of the paper, names, affiliations, mailing addresses, e-mail addresses, and phone numbers of all authors on a cover page submitted as a separate document from the body of the manuscript. If one or more of the co-authors are students, please clearly indicate so. Include only the title of the paper at the beginning of the manuscript. In the case of multiple-authorship, designate the corresponding author with a footnote on the cover page. Please do not include any author or affiliation identification on any page (except the separate cover page), in headings/footers, or in the properties of the submitted file. Previously published work or work under review elsewhere is not eligible for submission. All submissions should be posted electronically in either MS Word or PDF.
Technological Advancements for Intelligence Collection, Analysis, and Dissemi...
Recently some countries have fell victim to attacks from nation-states, cyber criminals, and bad actors resulting in loss of critical data or damage to critical infrastructure. Thus there is an urgent need to design, implement, and deliver innovative solutions that meet the challenges through advancements in intellection collection, analysis. This submission will explore multiple aspects of the solutions side of cyber security and present cutting-edge research from researchers and practitioner around the world concerning multiple sources of intelligence. This submission will provide insights into technological advancement for all cyber intelligence. Additionally, technological advancements for subjects such as open source intelligence, human intelligence, geospatial intelligence, social media intelligence, and data science will be explored. Researchers, practitioners, and professionals will benefit from this publication’s broad perspective.
Hacking, Privacy and Security in a Hyperconnected Society
Data and technological advances are abounding at lightening speed. It is hard to stay on top of everything that is happening in these digitally disruptive times. But there has never been more important for companies and individuals to do so. Hacking, privacy, and security are on the minds of every corporation and private citizen. In this keynote, you will hear the latest trends in combating contrast threats to one’s security, how much more data can we possibly handle. The unknowing consumer of everyday products needs to be aware of what it means to have sensors, Radio Frequency IDentification (RFID), Bluetooth, and WiFi enabled products allowing Internet connectivity.
University of Missouri - Saint Louis Cyber Security
This presentation discusses UMSL's cyber security program which is currently the only and first NSA & DHS CAE in cyber security education in the St. Louis Metropolitan Region.
STAYING SAFE AND SECURED ON TODAY AND TOMORROW’S AFRICA CYBERSPACE WORKSHOP 2017
This is the most essential programme of the year around the dangers of cybercrime and how to manage safety within the most indispensable digital sphere & technology system. The reason is that, “Looking beyond Internet of Things (IoT) to Internet of Everything there is a potential market that is approximately $14.4 trillion and over 99% of physical devices are still unconnected.” ~Mo Dawson. Your participation give you golden access to a transcending Cyberspace picture, enhanced solution oriented capabilities as an ICT expert or practitioner, Telecommunications Corporates & Companies
Personnel, Aviation ICT Officials, Other Transportation controls network hubs, Business dealer in Cyberspace services provider or supplier, Academicians and researchers, Government Departments & Public service ICT systems Officials & staff, Students, general ICT security involvement and on top of that your enhanced multidimensional scope & prosperity out of this untapped gold mine is guaranteed.
Security Solutions for Hyperconnectivity and the Internet of Things
The Internet of Things describes a world in which smart technologies enable objects with a network to communicate with each other and interface with humans effortlessly. This connected world of convenience and technology does not come without its drawbacks, as interconnectivity implies hackability. Security Solutions for Hyperconnectivity and the Internet of Things offers insights from cutting-edge research about the strategies and techniques that can be implemented to protect against cyber-attacks.
More from Maurice Dawson (20)
Understanding the Challenge of Cybersecurity in Critical Infrastructure Sectors
Understanding the Challenge of Cybersecurity in Critical Infrastructure Sectors
Unprotected Data: Your Risk of Internet-Enabled Psychological and Information...
Unprotected Data: Your Risk of Internet-Enabled Psychological and Information...
Security Solutions for Hyperconnectivity in the Internet of Things
Security Solutions for Hyperconnectivity in the Internet of Things
Framework for the Development of Virtual Labs for Industrial Internet of Thin...
Framework for the Development of Virtual Labs for Industrial Internet of Thin...
Unprepared for Cybersecurity in Saudi Arabia: Argument for a Shift Towards Cy...
Unprepared for Cybersecurity in Saudi Arabia: Argument for a Shift Towards Cy...
Information Technology Use in West African Agriculture – challenges and oppor...
Information Technology Use in West African Agriculture – challenges and oppor...
The Case for IT Training within Guinea’s Ministry of Agriculture: Evaluating ...
The Case for IT Training within Guinea’s Ministry of Agriculture: Evaluating ...
Schedule for the 13th Annual Conference of the Midwest AIS
Schedule for the 13th Annual Conference of the Midwest AIS
Midwest Association for Information Systems - MWAIS2018
Midwest Association for Information Systems - MWAIS2018
MWAIS 2018 : 13th Annual Conference of the Midwest Association for Informatio...
MWAIS 2018 : 13th Annual Conference of the Midwest Association for Informatio...
Technological Advancements for Intelligence Collection, Analysis, and Dissemi...
Technological Advancements for Intelligence Collection, Analysis, and Dissemi...
Hacking, Privacy and Security in a Hyperconnected Society
Hacking, Privacy and Security in a Hyperconnected Society
University of Missouri - Saint Louis Cyber Security
University of Missouri - Saint Louis Cyber Security
STAYING SAFE AND SECURED ON TODAY AND TOMORROW’S AFRICA CYBERSPACE WORKSHOP 2017
STAYING SAFE AND SECURED ON TODAY AND TOMORROW’S AFRICA CYBERSPACE WORKSHOP 2017
Security Solutions for Hyperconnectivity and the Internet of Things
Security Solutions for Hyperconnectivity and the Internet of Things
Recently uploaded
Essentials of Automations: The Art of Triggers and Actions in FME
In this second installment of our Essentials of Automations webinar series, we’ll explore the landscape of triggers and actions, guiding you through the nuances of authoring and adapting workspaces for seamless automations. Gain an understanding of the full spectrum of triggers and actions available in FME, empowering you to enhance your workspaces for efficient automation.
We’ll kick things off by showcasing the most commonly used event-based triggers, introducing you to various automation workflows like manual triggers, schedules, directory watchers, and more. Plus, see how these elements play out in real scenarios.
Whether you’re tweaking your current setup or building from the ground up, this session will arm you with the tools and insights needed to transform your FME usage into a powerhouse of productivity. Join us to discover effective strategies that simplify complex processes, enhancing your productivity and transforming your data management practices with FME. Let’s turn complexity into clarity and make your workspaces work wonders!
Driving Business Innovation: Latest Generative AI Advancements & Success Story
Are you ready to revolutionize how you handle data? Join us for a webinar where we’ll bring you up to speed with the latest advancements in Generative AI technology and discover how leveraging FME with tools from giants like Google Gemini, Amazon, and Microsoft OpenAI can supercharge your workflow efficiency.
During the hour, we’ll take you through:
Guest Speaker Segment with Hannah Barrington: Dive into the world of dynamic real estate marketing with Hannah, the Marketing Manager at Workspace Group. Hear firsthand how their team generates engaging descriptions for thousands of office units by integrating diverse data sources—from PDF floorplans to web pages—using FME transformers, like OpenAIVisionConnector and AnthropicVisionConnector. This use case will show you how GenAI can streamline content creation for marketing across the board.
Ollama Use Case: Learn how Scenario Specialist Dmitri Bagh has utilized Ollama within FME to input data, create custom models, and enhance security protocols. This segment will include demos to illustrate the full capabilities of FME in AI-driven processes.
Custom AI Models: Discover how to leverage FME to build personalized AI models using your data. Whether it’s populating a model with local data for added security or integrating public AI tools, find out how FME facilitates a versatile and secure approach to AI.
We’ll wrap up with a live Q&A session where you can engage with our experts on your specific use cases, and learn more about optimizing your data workflows with AI.
This webinar is ideal for professionals seeking to harness the power of AI within their data management systems while ensuring high levels of customization and security. Whether you're a novice or an expert, gain actionable insights and strategies to elevate your data processes. Join us to see how FME and AI can revolutionize how you work with data!
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
ここ3000字までしか入らないけどタイトルの方がたくさん文字入ると思います。
Removing Uninteresting Bytes in Software Fuzzing
Imagine a world where software fuzzing, the process of mutating bytes in test seeds to uncover hidden and erroneous program behaviors, becomes faster and more effective. A lot depends on the initial seeds, which can significantly dictate the trajectory of a fuzzing campaign, particularly in terms of how long it takes to uncover interesting behaviour in your code. We introduce DIAR, a technique designed to speedup fuzzing campaigns by pinpointing and eliminating those uninteresting bytes in the seeds. Picture this: instead of wasting valuable resources on meaningless mutations in large, bloated seeds, DIAR removes the unnecessary bytes, streamlining the entire process.
In this work, we equipped AFL, a popular fuzzer, with DIAR and examined two critical Linux libraries -- Libxml's xmllint, a tool for parsing xml documents, and Binutil's readelf, an essential debugging and security analysis command-line tool used to display detailed information about ELF (Executable and Linkable Format). Our preliminary results show that AFL+DIAR does not only discover new paths more quickly but also achieves higher coverage overall. This work thus showcases how starting with lean and optimized seeds can lead to faster, more comprehensive fuzzing campaigns -- and DIAR helps you find such seeds.
- These are slides of the talk given at IEEE International Conference on Software Testing Verification and Validation Workshop, ICSTW 2022.
20240607 QFM018 Elixir Reading List May 2024
Everything I found interesting about the Elixir programming ecosystem in May 2024
Uni Systems Copilot event_05062024_C.Vlachos.pdf
Unlocking Productivity: Leveraging the Potential of Copilot in Microsoft 365, a presentation by Christoforos Vlachos, Senior Solutions Manager – Modern Workplace, Uni Systems
GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024
Neha Bajwa, Vice President of Product Marketing, Neo4j
Join us as we explore breakthrough innovations enabled by interconnected data and AI. Discover firsthand how organizations use relationships in data to uncover contextual insights and solve our most pressing challenges – from optimizing supply chains, detecting fraud, and improving customer experiences to accelerating drug discoveries.
Pushing the limits of ePRTC: 100ns holdover for 100 days
At WSTS 2024, Alon Stern explored the topic of parametric holdover and explained how recent research findings can be implemented in real-world PNT networks to achieve 100 nanoseconds of accuracy for up to 100 days.
“I’m still / I’m still / Chaining from the Block”
“An Outlook of the Ongoing and Future Relationship between Blockchain Technologies and Process-aware Information Systems.” Invited talk at the joint workshop on Blockchain for Information Systems (BC4IS) and Blockchain for Trusted Data Sharing (B4TDS), co-located with with the 36th International Conference on Advanced Information Systems Engineering (CAiSE), 3 June 2024, Limassol, Cyprus.
“Building and Scaling AI Applications with the Nx AI Manager,” a Presentation...
“Building and Scaling AI Applications with the Nx AI Manager,” a Presentation...Edge AI and Vision Alliance
For the full video of this presentation, please visit: https://www.edge-ai-vision.com/2024/06/building-and-scaling-ai-applications-with-the-nx-ai-manager-a-presentation-from-network-optix/
Robin van Emden, Senior Director of Data Science at Network Optix, presents the “Building and Scaling AI Applications with the Nx AI Manager,” tutorial at the May 2024 Embedded Vision Summit.
In this presentation, van Emden covers the basics of scaling edge AI solutions using the Nx tool kit. He emphasizes the process of developing AI models and deploying them globally. He also showcases the conversion of AI models and the creation of effective edge AI pipelines, with a focus on pre-processing, model conversion, selecting the appropriate inference engine for the target hardware and post-processing.
van Emden shows how Nx can simplify the developer’s life and facilitate a rapid transition from concept to production-ready applications.He provides valuable insights into developing scalable and efficient edge AI solutions, with a strong focus on practical implementation.Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Discover how MongoDB Atlas and vector search technology can revolutionize your application's search capabilities. This comprehensive presentation covers:
* What is Vector Search?
* Importance and benefits of vector search
* Practical use cases across various industries
* Step-by-step implementation guide
* Live demos with code snippets
* Enhancing LLM capabilities with vector search
* Best practices and optimization strategies
Perfect for developers, AI enthusiasts, and tech leaders. Learn how to leverage MongoDB Atlas to deliver highly relevant, context-aware search results, transforming your data retrieval process. Stay ahead in tech innovation and maximize the potential of your applications.
#MongoDB #VectorSearch #AI #SemanticSearch #TechInnovation #DataScience #LLM #MachineLearning #SearchTechnology
Artificial Intelligence for XMLDevelopment
In the rapidly evolving landscape of technologies, XML continues to play a vital role in structuring, storing, and transporting data across diverse systems. The recent advancements in artificial intelligence (AI) present new methodologies for enhancing XML development workflows, introducing efficiency, automation, and intelligent capabilities. This presentation will outline the scope and perspective of utilizing AI in XML development. The potential benefits and the possible pitfalls will be highlighted, providing a balanced view of the subject.
We will explore the capabilities of AI in understanding XML markup languages and autonomously creating structured XML content. Additionally, we will examine the capacity of AI to enrich plain text with appropriate XML markup. Practical examples and methodological guidelines will be provided to elucidate how AI can be effectively prompted to interpret and generate accurate XML markup.
Further emphasis will be placed on the role of AI in developing XSLT, or schemas such as XSD and Schematron. We will address the techniques and strategies adopted to create prompts for generating code, explaining code, or refactoring the code, and the results achieved.
The discussion will extend to how AI can be used to transform XML content. In particular, the focus will be on the use of AI XPath extension functions in XSLT, Schematron, Schematron Quick Fixes, or for XML content refactoring.
The presentation aims to deliver a comprehensive overview of AI usage in XML development, providing attendees with the necessary knowledge to make informed decisions. Whether you’re at the early stages of adopting AI or considering integrating it in advanced XML development, this presentation will cover all levels of expertise.
By highlighting the potential advantages and challenges of integrating AI with XML development tools and languages, the presentation seeks to inspire thoughtful conversation around the future of XML development. We’ll not only delve into the technical aspects of AI-powered XML development but also discuss practical implications and possible future directions.
Climate Impact of Software Testing at Nordic Testing Days
My slides at Nordic Testing Days 6.6.2024
Climate impact / sustainability of software testing discussed on the talk. ICT and testing must carry their part of global responsibility to help with the climat warming. We can minimize the carbon footprint but we can also have a carbon handprint, a positive impact on the climate. Quality characteristics can be added with sustainability, and then measured continuously. Test environments can be used less, and in smaller scale and on demand. Test techniques can be used in optimizing or minimizing number of tests. Test automation can be used to speed up testing.
Video Streaming: Then, Now, and in the Future
In his public lecture, Christian Timmerer provides insights into the fascinating history of video streaming, starting from its humble beginnings before YouTube to the groundbreaking technologies that now dominate platforms like Netflix and ORF ON. Timmerer also presents provocative contributions of his own that have significantly influenced the industry. He concludes by looking at future challenges and invites the audience to join in a discussion.
GraphRAG for Life Science to increase LLM accuracy
GraphRAG for life science domain, where you retriever information from biomedical knowledge graphs using LLMs to increase the accuracy and performance of generated answers
Goodbye Windows 11: Make Way for Nitrux Linux 3.5.0!
As the digital landscape continually evolves, operating systems play a critical role in shaping user experiences and productivity. The launch of Nitrux Linux 3.5.0 marks a significant milestone, offering a robust alternative to traditional systems such as Windows 11. This article delves into the essence of Nitrux Linux 3.5.0, exploring its unique features, advantages, and how it stands as a compelling choice for both casual users and tech enthusiasts.
20240609 QFM020 Irresponsible AI Reading List May 2024
Everything I found interesting about the irresponsible use of machine intelligence in May 2024
Recently uploaded (20)
Essentials of Automations: The Art of Triggers and Actions in FME
Essentials of Automations: The Art of Triggers and Actions in FME
Driving Business Innovation: Latest Generative AI Advancements & Success Story
Driving Business Innovation: Latest Generative AI Advancements & Success Story
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024
GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024
Pushing the limits of ePRTC: 100ns holdover for 100 days
Pushing the limits of ePRTC: 100ns holdover for 100 days
“Building and Scaling AI Applications with the Nx AI Manager,” a Presentation...
“Building and Scaling AI Applications with the Nx AI Manager,” a Presentation...
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Climate Impact of Software Testing at Nordic Testing Days
Climate Impact of Software Testing at Nordic Testing Days
GraphRAG for Life Science to increase LLM accuracy
GraphRAG for Life Science to increase LLM accuracy
Goodbye Windows 11: Make Way for Nitrux Linux 3.5.0!
Goodbye Windows 11: Make Way for Nitrux Linux 3.5.0!
20240609 QFM020 Irresponsible AI Reading List May 2024
20240609 QFM020 Irresponsible AI Reading List May 2024
MOBILE DEVICES: THE CASE FOR CYBER SECURITY HARDENED SYSTEMS AND METHODS TO ADDRESS SECURITY RELATED ISSUE
- 1. MOBILE DEVICES: THE CASE FOR CYBER SECURITY HARDENED SYSTEMS AND METHODS TO ADDRESS SECURITY RELATED ISSUE Dawson, M., J. Wright, M. Omar. University of Missouri - St. Louis, University of Charleston, Saint Leo University
- 2. New Threats and Countermeasures in Digital Crime and Cyber Terrorism Dawson, M., Wright, J., & Omar, M. (2015). Mobile Devices: The Case for Cyber Security Hardened Systems. In M. Dawson, & M. Omar (Eds.) New Threats and Countermeasures in Digital Crime and Cyber Terrorism (pp. 8-29). Hershey, PA: Information Science Reference. doi:10.4018/978-1- 4666-8345-7.ch002
- 3. Abstract Mobile devices are becoming a method to provide an efficient and convenient way to access, find and share information; however, the availability of this information has caused an increase in cyber attacks. Currently, cyber threats range from Trojans and viruses to botnets and toolkits. Presently, 96% of mobile devices do not have preinstalled security software while approximately 65% of the vulnerabilities are found within the application layer. This lack in security and policy driven systems is an opportunityfor malicious cyber attackers to hack into the various popular devices. Traditional security software found in desktop computing platforms, such as firewalls, antivirus, and encryption, is widely used by the general public in mobile devices. Moreover, mobile devices are even more vulnerable than personal desktop computers because more people are using mobile devices to do personal tasks. This review attempts to display the importance of developing a national security policy created for mobile devices in order to protect sensitive and confidential data. Results of this review provide methods to address security related issues in mobile devices.
- 4. Introduction Currently, mobile devices are the preferred device for web browsing, emailing, using social media and making purchases. Due to their size, mobile devices are easily carried in people’s pockets, purses or briefcases. Unfortunately, the popularity of mobile devices is a breeding ground for cyber attackers. Operating systems on mobile devices do not contain security software to protect data. For example, traditional security software found in personal computers (PCs), such as firewalls, antivirus, and encryption, is not currently available in mobile devices (Ruggiero, 2011). In addition to this, mobile phone operating systems are not frequently updated like their PC counterparts. Cyber attackers can use this gap in security to their advantage. An example of this gap in security is seen in the 2011 Valentine’s Day attack. Cyber- attackers dispersed a mobile picture-sharing application that covertly sent premium- rate text messages from a user’s mobile phone (Ruggiero, 2011). Thus, this example illustrates the importance of having a security policy for mobile phones.
- 5. Social Networking and Electronic Commerce (E- Commerce) Applications Many people rely on their mobile devices to do numerous activities, like sending emails, storing contact information, passwords and other sensitive data. In addition to this, mobile devices are the device of choice when it comes to social networking; thus, mobile applications for social networking sites (Facebook, Twitter, Google+) are another loophole for cyber attackers to gain personal data from unsuspecting users (Ruggiero, 2011). Social networking sites are host to a surplus of personal data. That is why malicious applications that use social networking sites to steal data yield severe consequences. Recently, M-Commerce or “mobile e- commerce” has gained popularity in our society. Many smartphone users can now conduct monetary transactions, such as buying goods and applications (apps), redeeming coupons and tickets, banking and processing point-of-sale payments (Ruggiero, 2011). Again, all of these smartphone functions are convenient for the user but advantageous for malicious cyber attackers. Ultimately, there is a niche in technology for cyber security software that is specifically designed for the mobile operating system.
- 6. Hypothetical Consequences of Cyber Attacks on Smartphones The consequences of a cyber attack on a smartphone can be just as detrimental, or even more detrimental than an attack on a PC. According to Patrick Traynor, a researcher and assistant professor at the Georgia Tech School of Computer Science, mobile apps rely on the browser to operate (Traynor, Ahamad, Alperovitch, Conti, & Davis, 2012). As a result of this, more Web-based attacks on mobile devices will increase throughout the year. Traynor also states that IT professionals, computer scientists and engineers still need to explore the variations between mobile and traditional desktop browsers to fully understand how to prevent cyber attacks (Traynor, Ahamad, Alperovitch, Conti, & Davis, 2012).
- 7. Challenges with a Mobile Browser One cyber security challenge for mobile devices is the screen size. For example, web address bars (which appear once the user clicks on the browser app) disappear after a few seconds on a smartphone because of the small screen size (Traynor, Ahamad, Alperovitch, Conti, & Davis, 2012). This is usually the first-line of defense for cyber security. Checking the Uniform Resource Locator (URL) of a website is the first way users can insure that they are at a legitimate website. Moreover, SSL certificates for a website are usually more difficult to find on a mobile phone browser (Traynor, Ahamad, Alperovitch, Conti, & Davis, 2012). This adds another gap in security for mobile devices. Furthermore, the touch-screen attribute of mobile phones can be cause for concern when dealing with cyber attackers. Traynor states that the way elements are placed on a page and users’ actions are all opportunities to implant an attack. An illustration of this is seen when an attacker creates an attractive display content (i.e. an advertisement for an app or a link to a social media app) in which the malicious link is carefully hidden underneath a legitimate image. Unfortunately, once the user clicks the image they can be redirected to the malicious content via the link (Traynor, Ahamad, Alperovitch, Conti, & Davis, 2012).
- 8. The current status of security for the majority of today’s mobile devices
- 9. Illustrates various cyberthreats in 2010
- 10. Percentage of smartphone survey respondents that received spam in 2009
- 11. Legitimate Applications that Can Be Used to Retrieve Information Presently, there is valid spy software available for various mobile devices. An example of this is FlexiSpy, a legitimate commercial spyware program that cost over $300 (United States Computer Emergency Readiness Team, 2010). FlexiSpy can: • Listen to actual phone calls as they happen; • Secretly read Short Message Service (SMS) texts, call logs, and emails; • Listen to the phone surroundings (use as remote bugging device); • View phone GPS location; • Forward all email events to another inbox; • Remotely control all phone functions via SMS; • Accept or reject communication based on predetermined lists; and • Evade detection during operation (United States Computer Emergency Readiness Team, 2010).
- 12. Process for mobile device hardening GOLD IMAGE. Release OS image to phone for x days Create a VM image of OS for testing Test against CWEs and other application security reqiuriements PASS FAIL Determine the OS for phone Apply requirements from DISA STIGS, RMF ICD, Best Practices & etc. Review failed requirements and develop appropriate mitigations Create a VM image of OS for testing
- 13. Contact Information Dr. Maurice Dawson Assistant Professor of Information Systems University of Missouri - St. Louis +1-314-224-5882 dawsonmau@umsl.edu