Detecting malicious domain names generated by domain generation algorithms is critical for defending the network against sophisticated attacks. In the past decade, deep-learning-based detection schemes have proven to be the most effective. However, each of these schemes requires sufficient computation time, which makes it difficult for real-time online detection. In this paper, we propose a real-time

Ransomware is a type of malicious software that locks out its victim from accessing functionality or data on their device, typically by encrypting files. To regain access, victims would typically need to make a ransom payment. Victims get notified that their device has been infected through a ransom note (splash screen) displayed on their device. Ransomware splash screens can be presented in many ways;

This paper proposes an image encryption scheme using Quasigroup and Fibonacci Q-transformation. The proposed scheme is based on substitution–permutation structure, which can handle the images of any size, i.e., square as well as non-square. The Quasigroup of order 256 and Fibonacci Q-transformation are used as primitives for substitution and diffusion of image pixels, respectively. The encryption method

With the advent of the fifth generation (5G) technology, a plethora of revolutionary applications can now be supported. This tremendous growth will be certainly accompanied by a wider and fast-evolving security threat landscape, especially when the potential of massive devices connectivity will be fully unleashed. In this paper, we outline the security challenges faced by the 5G radio access network

The IPv6 Routing Protocol for Low-Power and Lossy Networks (RPL) was standardised by the IETF ROLL Working Group to address the routing issues in the Internet of Things (IoT) Low-Power and Lossy Networks (LLNs). RPL builds and maintains a Destination Oriented Directed Acyclic Graph (DODAG) topology using pieces of information propagated within the DODAG Information Object (DIO) control message. When

The Internet of Things (IoT) includes various technologies, including sensing devices, Radio-Frequency Identification (RFID), and Microelectromechanical Systems (MEMS). Despite numerous advantages of IoT, security and privacy are important challenges. IoT infrastructures are frequently attacked by different invaders, including white hat hackers whose mission is to test the system's penetrability. Other

To reduce the local storage burden and enjoy the conveniently ubiquitous access, an increasing number of individuals and enterprises prefer to outsource their data to the cloud server. Due to the loss of physical control over data, how to guarantee the cloud server stores user’s data honestly becomes an important security challenge. Meanwhile, most of existing public auditing schemes based on traditional

With the recent advancement of cloud storage services, many cloud customers (data owners) are migrating their data from local storage to cloud data storage to reduce maintenance cost. Once data is outsourced, the data owners loose control over their data, evolving various security and privacy issues. To resolve this issue, data encryption is an effective solution. Meanwhile, to increase the utilization

As drones become more and more frequent in industry and perhaps tomorrow in everyday life, the variety and sensitivity of their missions will increase. Securing the communication taking place with the drones and especially in the network of a swarm, is of primary importance to allow a safe integration of Unmanned Aerial Vehicles into air traffic. Drones are subject to a range of attacks, from GPS jamming

Along with the rapid development of cloud computing technology, containerization technology has drawn much attention from both industry and academia. In this paper, we perform a comparative measurement analysis of Docker-sec, which is a Linux Security Module proposed in 2018, and a new AppArmor profile generator called Lic-Sec, which combines Docker-sec with a modified version of LiCShield, which is

In many security applications, system behaviors must be kept secret (opaque) to outside observers (intruders). Opacity was first studied for discrete event systems, and then it was extended to real-time systems. One of the challenges of real-time systems is the difficulty to guarantee their opacity against a potential attacker. In general, this property is undecidable for systems modeled by timed automata

Edge computing can serve latency-sensitive data generated by smart IoT devices in smart cities, which cannot be accommodated by cloud services. However, edge-enabled smart cities applications face many security issues such as massive centralization, vulnerability to tampering, and tracing difficulty. Blockchain, as an emerging ledger technology, can be a useful solution to these problems. However,

Low order chaotic maps has many distinct physiognomies, such as strong sensitiveness to initial conditions, parameters, better unpredictability, distinct random like complex temporal behavior and so on. This results the demand of new generators for chaotic systems with complicated dynamics but simple designs. In this work, a 4D mixed chaotic map with hyper-chaotic properties and high randomness behavior

The growing demand for digital content using smart devices has taken the attenuation towards the enforcement of rights in digital content distribution. Digital rights management (DRM) systems support copyrights and try to control the access of digital content in a user-friendly way. However, user-friendly systems should also support user’s rights along with system requirements. The portable DRM architecture

Android mobile is very challenging because it is an open-source operating system that is also vulnerable to attacks. Previous studies have shown various mobile malware detection methods to overcome this problem, but still, there is room for improvement. Mobile users mostly ignore long lists of permissions because these are difficult to understand. Therefore, to distinguish benign or malware applications

Technical Support Scam (TSS) is a cybercrime that not only elicits the trust of a user but swindles their property. To detect TSS attacks in malicious samples, an intelligent TSS-aware system, called the AI@TSS system, was proposed in the study. The proposed AI@TSS system was built by the LightGBM algorithm with different kinds of features. In the study, 8263 malicious web page samples and 8263 TSS

In this paper, we propose a formalization of the process of exploitation of SQL injection vulnerabilities. We consider a simplification of the dynamics of SQL injection attacks by casting this problem as a security capture-the-flag challenge. We model it as a Markov decision process, and we implement it as a reinforcement learning problem. We then deploy reinforcement learning agents tasked with learning

In the present era of Information Technology (IT), transfer of multimedia data is happening at a rapid pace. In many Internet-of-Things (IoT) based applications, sensor devices are sending information in the form of images. However, if the IoT applications are used in the information sensitive sectors like defense, healthcare, etc., the images must be encrypted before sending to the gateway fog nodes

Protecting data integrity and achieving non-repudiation in wireless sensor networks (WSNs) is very essential during data communication from one sensor to another. However, wireless sensor network nodes are severely limited by power, communication bandwidth, and storage space, so the traditional signature algorithm cannot be adapted to the environment. In this paper, we have proposed a certificateless

Ciphertext Policy Attribute Based Encryption (CPABE) offers fine-grained access control in Cloud Computing environment. It is considered as the most promising one-to-many encryption mechanism. However, a Cloud user can delegate decryption privileges to unauthorized users for profits. The key abuse issue is not the only limit with this model for the reason that when the malicious user has been caught

With the advancements in multimedia applications, many images are transferred over public networks. Therefore, these images are prone to various security threats. Recently, many image encryption algorithms have been designed to secure the communication of digital images. Generally, hyperchaotic maps are utilized to generate the secret keys for encrypting the images. However, these maps suffer from

Named Data Network (NDN) as a new network architecture, in recent years become a hot research, its security has been widespread concern. With the continuous updating of distributed denial of service (DDoS) attack methods in NDN networks, this article designs a new type of attack, called the Improved Collusive Flooding Attack (I-CIFA). I-CIFA attack combines the advantages of mainstream DDoS attack

Designing an effective network intrusion system (IDS) is a challenging problem because of the emergence of a large number of novel attacks and heterogeneous network applications. The existing IDSs fail to adapt to the changing attack patterns and unseen attacks that lead to inaccurate detection of network vulnerabilities and system performance degradation. Therefore, there is a need to design robust

Conventional cryptographic methods are not appropriate for IoT environments due to the specific IoT devices constraints, such as memory usage, time and computational costs. This leads to the emergence of the lightweight cryptography field. This paper investigates the different lightweight cryptographic design methods and proposes an IoT-based cryptographic method, called Ultra-Lightweight method (ULM)

Due to increasing volume of stored data in organizations, data owners upload their data to cloud servers. Sensitive data has to be encrypted prior to uploading to the cloud server because of security requirements. Therefore, capable of searching over the encrypted cloud data is a very important issue. One of the most important challenges that must be addressed is to search whole documents to find related

This article presents an overview and analysis of the key cybersecurity problems, challenges and requirements to be addressed in the future, which we derived through 63 interviews with European stakeholders from security-critical sectors including Open Banking, Supply Chain, Privacy-preserving Identity Management, Security Incident Reporting, Maritime Transport, Medical Data Exchange, and Smart Cities

As a medium that can convey information vividly, the application of digital images is increasingly widespread. Under various application environments, researchers are expected to provide more secure and efficient protection for digital images. In this paper, a novel image encryption scheme is proposed, which is based on non-adjacent parallelable permutation and dynamic DNA-level two-way diffusion (IES-NP-DDT)

The momentous development in the technology of wireless communication has escalated the wide acceptance of Device to Device (D2D) communication among mobile devices. However, enormous requests of devices may curtail the effectiveness of conventional single-server based authentication frameworks. To overcome such limitation, multi-server authentication framework is introduced. This framework facilitates

The current era of ubiquitous computing has led to the emergence of a sub-domain in cryptography called Lightweight Cryptography, which deals with imparting adequate security to resource constraint devices like IoT devices, RFID tags with a suitable choice of design metrics. The advancement in network connectivity and data handling capabilities shows the tremendous growth of IoT in physical life. The

The most popular solution for a variety of business applications such as e-banking and e-healthcare is the multi-server environment. The user registration of individual servers is not the primary concern in such an environment. Here, the user can get various services from different servers by registering him/her under one server. To get secure services through this environment, the authenticity of

Most conventional cyber defenses strive to reject detected attacks as quickly and decisively as possible; however, this instinctive approach has the disadvantage of depriving intrusion detection systems (IDSes) of learning experiences and threat data that might otherwise be gleaned from deeper interactions with adversaries. For IDS technology to improve, a next-generation cyber defense is proposed

Recent advances in quantum computers challenge the security of key agreement protocol that are designed with the intractability assumptions of discrete logarithmic problem and integer factorization problem. Hence, motivated to develop the key agreement protocol that is secure in post-quantum era, recently Islam proposed a provably secure two-party authenticated key agreement (2PAKA) protocol. The protocol

With the increasing frequency, severity and complexity of recent cyber attacks around the world, network intrusion detection has become mandatory and highly sophisticated task. Achieving high performance in network intrusion detection by applying benchmark machine learning classifiers (including deep learning techniques) has become a major challenge in recent times. One of the biggest challenges is

Over the years, researchers attempted to maximize the capacity, imperceptibility, and robustness of Steganography algorithms. Nowadays, the challenge is not only to maximize these parameters rather identify new ideas toward the security aspect. Keeping this requirement in mind, in the present scope of the work, we introduce a novel Steganographic approach mingled with optical character recognition

In this paper, a (k,n,m)-intragroup and intergroup secret image sharing (I2SIS) scheme for the multi-group (i.e., m-group) environment is investigated. (2m−1) secret images are shared within groups (intragroups) and between groups (intergroups). Differing from existing SIS methods, any k or more qualified participants among different groups (i.e., intergroup) can collaboratively recover the respective

The implementation of the GDPR that aims at protecting European citizens’ privacy is still a real challenge. In particular, in Big Data systems where data are voluminous and heterogeneous, it is hard to track data evolution through its complex life cycle ranging from collection, ingestion, storage and analytics. In this context, from 2016 to 2021 research has been conducted and several security tools

The number of mobile phone users increases daily, and mobile devices are used for various applications like banking, e-commerce, social media, internet voting, e-mails, etc. This paper presents a secure mobile internet voting system in which a biometric method authenticates the voter. The biometric image can either be encrypted at the mobile device and send to the server or process the biometric image

Cyber-attacks vary greatly in their goals, methods, and complexity, but they all communicate with their operators. Existing methods that attempt to prevent unauthorized communication are either inadequate or are vulnerable to kernel-mode attacks. We demonstrate the viability of stealthy network transmission on various network interface cards, using only data-writes to physical pages. For some cards

With the development of the electronic healthcare industry, telemedicine diagnosis (TMD) has become a more flexible and convenient way. In the general remote diagnosis scheme, the collected medical data is stored in the cloud which may be leaked or tempered with. Since blockchain has the characteristics of centralized storage, some schemes employ blockchains to overcome the security problem of cloud

Conventional data hiding methods for PDF file insert a payload data by slightly modifying the position of characters in a document. Even if the changes are small, a certain degree of visual distortion is inevitably introduced to the PDF file. In this work, we propose a new data hiding method that splits the space value between characters. Specifically, a space value is split into two or more related

Security and privacy-enhancing techniques are developed in order to provide strong protection over the Internet. These techniques aim to enable the users to keep their identities secret during the communication when they are forwarding an email, making payments online, and web browsing or posting to newsgroups. MixNet is the most practical solution for concealing the identities of messages and senders

The essential role of intrusion detection is to manage the critical infrastructure to detect malicious activity competently concerning the Internet of Things (IoT). The IoT network is used to communicate and control information among various components composing a critical system. The essential inclination of infrastructure swerves to confront security issues and challenges as network systems are examined

Serious threats to the VLSI crypto devices are posed by the Side Channel Attack (SCA) that utilizes the devices’ SCI (Side Channel Information) to break the entire cryptographic algorithm. Motive in this severe breach of security fence is to decipher the secret key for retrieval of confidential data. Recently, Hardware Trojan (HT) insertions that maliciously modify the circuitry of the crypto integrated

Serverless computing is the latest paradigm in cloud computing, offering a framework for the development of event driven, pay-as-you-go functions in a highly scalable environment. While these traits offer a powerful new development paradigm, they have also given rise to a new form of cyber-attack known as Denial of Wallet (forced financial exhaustion). In this work, we define and identify the threat

Recent years have witnessed the dramatic growth of malware programs in a wide range of malicious intentions following the expansion of computer systems. Hence, highly effective systems to detect malware are extremely demanded. Most of the recent approaches use machine learning techniques along with the features extracted from files such as byte sequence, API-Calls, Op-Code sequence, and hardware events

Low-rate Denial of Service (LDoS) attacks use the low-rate requests to achieve the occupation of the network resources and have strong concealment. The traditional signal analysis based detection methods are challenging to detect LDoS attacks in the fluctuating legitimate traffic. In this paper, an LDoS attack detection method based on hybrid deep neural networks is proposed using one-dimensional convolutional

With the increasing requirements of the performance in secure communication filed based on chaos, chaotic systems have been gradually developed into higher dimensions. Because the sequence generated by one-dimension chaos, such as Chebyshev map has the problem of weak chaotic properties and uneven distribution, a new two-dimensional chaotic map, called Logistic-Adjusted-Chebyshev map (2D-LACM), is

Due to decentralization, immutability, circulation, anonymity, blockchain technology has become a hot topic but also a hotbed of various cyber-crimes. Many perpetrators attack blockchain to steal cryptocurrencies or use anonymous addresses to conduct illicit financial transactions or receive ransoms while hiding their identities. Since blockchain technology has not developed for a long time, the security

In this paper, we present a generic framework for decomposing block cipher structure with secret components. The generic framework is based on the zero-correlation linear cryptanalysis and exploits clusters of zero-correlation linear hulls to establish a system of equations to recover the secret components. In order to solve such a system, we convert the operations into the field of real numbers. By

Undoubtedly, modern human digital lives are every day more and more connected, and the revolution of “everything connected” is already becoming a reality. Indeed, humans live in the age of the Internet of Things (IoT), and one of the most usual IoT contexts is a smart home. Unfortunately, such significant enhancement also means that common home devices, such as fridges, cameras, or even bulbs, are

Deep neural networks (DNNs) have become increasingly effective in difficult machine learning tasks, such as image classification, speech recognition, and natural language processing. Face recognition (FR) using DNNs shows high performance and is widely used in various domains such as payment systems and immigration inspection. However, DNNs are vulnerable to adversarial examples generated by adding

The mobile cloud computing (MCC) paradigm provides a range of useful services to smart phone users and enhances the user experience significantly. But, as MCC requires the data to be offloaded to an external server, there are serious concerns regarding the privacy of the users’ personal data such as images. For instance, a cloud server could perform image segmentation on user images to extract interesting

Fog computing is a paradigm to overcome the cloud computing limitations which provides low latency to the users’ applications for the Internet of Things (IoT). Software-defined networking (SDN) is a practical networking infrastructure that provides a great capability in managing network flows. SDN switches are powerful devices, which can be used as fog devices/fog gateways simultaneously. Hence, fog

In the pursuit of anonymous authentication schemes that balance anonymity and accountability, various authentication schemes have been proposed. However, most of existing schemes cannot achieve linkability while holding public traceability. In this paper, we introduce a new variant of anonymous authentication called event-oriented linkable and traceable anonymous authentication (EOLTAA) and provide

Shamir secret sharing (SSS) is considered as a promising method for outsourcing the data securely due to its ability to support privacy preserving data processing while ensuring data availability. Major drawbacks of original SSS scheme are its susceptibility to collusion attack and high storage overhead. Hence in this paper, we first propose a modified SSS scheme (MSSS) which can resist collusion attack

The integration of the Internet of Things (IoT) and cloud computing has become an attractive cloud-oriented big data processing paradigm, which is playing an important role in efficiency and productivity for digitalization of numerous IoT enabled industries. However, cloud-assisted IoT is also becoming an increasingly attractive target for various cyber-attacks, including the authenticity of outsourcing

Drone-assisted solutions are a demanding and popular area of research where drones can send or collect data from ground networks. The recent Internet of Vehicles (IoV) networks has suffered from congestion issue due to rapid increase and a new architecture for data transmission. Data communication in this domain is possible using vehicle nodes. Due to unique features and high mobility of nodes, dynamic

Sensitive data including identity information, passwords, financial and business processes belonging to the user are kept in the databases. These data can be obtained by attackers with malicious code added to SQL queries. The malicious and clean SQL queries are taken from OWASP dataset to ensure that the proposed approach effective and practical. The middleware application which is developed in this

This paper presents three attack vectors of bit-wise cryptanalysis including rotational, bit-wise differential, and zero-sum distinguishing attacks on the AND-RX permutation Friet-PC, which is implemented in a lightweight authenticated encryption scheme Friet. First, we propose a generic procedure for a rotational attack on AND-RX cipher with round constants. By applying the proposed attack to Friet-PC