Maria A. Poltavtseva

DOI: https://doi.org/10.1109/ent.2019.00010

2019-03-01

Abstract:The paper discusses the evolution of data management systems (up to Big data systems inclusive), the development of security tools, as well as the evolution of vulnerabilities and security features of advanced DBMS.

Shakir A. Almasaari

DOI: https://doi.org/10.48550/arXiv.1912.08191

2019-12-17

Cryptography and Security

Abstract:This paper explores the essential areas of cybersecurity management for big data systems. Big data platform stems its complexity from being a collection of interrelated non-standardized systems that interact with each other to process large data-sets. This complexity increases the chances of overlooking critical cybersecurity management practices. The paper discusses various security management for each part of big data systems. This includes security measures, standards, and methodologies. The primary objective is to highlight the essential segments of security management that are expected to be implemented flawlessly in big data systems.

Yong Zhang

DOI: https://doi.org/10.1109/EEBDA56825.2023.10090574

2023-02-24

Abstract:This paper innovatively proposes a database access information security management method under the big data platform. This paper first designs and implements a network information security management system based on B/S architecture. The system consists of a safety management platform management center, a WEB console, an agency center and a processing center. At the same time, the system covers a total of five sub-modules including security monitoring management, security policy management, event analysis and processing, security incident response and system management. Secondly, this paper constructs an attribute-based multi-authorization encryption system, which reduces the number of matching operations and improves the efficiency of password utilization. Then, this paper builds a user hierarchical role key tree in the big data platform user role authentication center, and describes the relationship between the big data platform user role and the encryption key of extremely sensitive information. Finally, simulation experiments are carried out in this paper. The results show that the establishment of the encryption system enhances the security of web page access information, and realizes the security management of information platform access information under the big data platform.

Computer Science

Liang Cai,Xiaohu Yang,Jinxiang Dong

2001-01-01

Abstract:We briefly introduce the special characteristics of database security in information warfare and related researches, then emphasis the importance of antagonizing, malicious DBMS in information warfare. This paper suggests a threat model for malicious DBMS by carefully analyzing the possible security threats by malicious DBMS, then a database security architecture capable of antagonizing the malicious DBMS is proposed based on this threat model and the special requirements of critical applications in China. It can greatly improve the critical application's capability to antagonize malicious DBMS by incorporating, self-controlled authentication, principal / object mapping, transparent attribute encryption / decryption, attribute / tuple level mandatory access control, and parallel structure of multiple DBMSs.

Haifaa Jassim Muhasin,Ali Yahya Gheni,Hiba Adil Yousif

DOI: https://doi.org/10.31185/wjps.418

2024-06-30

Abstract:Big data has grown in importance in a variety of corporate and academic fields as a result of substantial changes in human behavior and lifestyles. While this focus simplifies data management, big data is regarded as important in many industrial areas because it can be merged with other types of data. Big data can be managed alongside other types of data, particularly in large organizations that handle a range of data types. This type of management contributes to the improvement and development of the organizational structure, as well as raising the skill level of employees in these organizations. Despite these benefits, there are numerous concerns, particularly throughout the stages of data gathering and storage, when there is a risk of hacking or leakage, as well as the difficulty of sorting and identifying data. For these reasons, big data protection is regarded as one of the most important issues discussed in this paper in order to develop an appropriate framework for protecting big data related to companies, as well as methods for dealing with this data in order to develop an appropriate strategy to protect big data security and privacy.

Yijun Cai,Dian Li,Yuyue Wang

DOI: https://doi.org/10.1007/s13198-021-01279-5

2021-08-25

International Journal of System Assurance Engineering and Management

Abstract:Medical information system is a comprehensive system which integrates the application of medicine, information, management, computer and other disciplines. It has been widely used in the social medical security system. But with the rapid development of Internet plus medical technology, the risk of malicious invasion has increased dramatically, which gradually exposes the problem of inadequate medical information security. Therefore, effective detection of medical information system network intrusion and timely prevention of network threats have become the focus of attention and research in this field. Intrusion detection is a common detection method in network security, it plays a very important role in network security. Traditional intrusion detection is mostly based on rule matching, statistics and other methods. With the advent of the era of big data, traditional intrusion detection can not play a good performance, especially in the face of massive, complex and unbalanced intrusion data. The privacy data access monitoring system based on virtual computing environment can monitor the access of privacy data in two levels, namely, tracking the flow of privacy data within the host and tracking the propagation of privacy data between hosts. In the host, we can customize the taint propagation rules to achieve fine-grained capture of privacy data violations in the virtual computing environment. Hence, this paper studies the medical data intrusion detection technology based on virtual data pipeline from the assurance perspectives. The model is designed and implemented with the discussions of the performance. The experimental results have proven that the proposed model is efficient.

Jie Ma,Shuanbao Li

DOI: https://doi.org/10.1155/2022/7300977

2022-05-13

Scientific Programming

Abstract:This article proposes a computer network security defense system model based on multisource big data, which makes the security of computer networks more complete because of the shortage of current computer network security defense systems. The current network security situation is analyzed, and the problems faced in the field of network security are pointed out; then, multisource big data is introduced, and the characteristics of the multisource big data model are analyzed. This article proposes an information system network security model, which formally describes the relationship between network behavior among nodes, security threats, network attacks, and defense capability of security devices in an information system. After that, a network security defense system measurement scheme is constructed based on hierarchical analysis, and quantitative indicators of defense effectiveness are defined in two dimensions: risk severity of security threats and defense response actions of security devices, which enables quantitative evaluation of the security defense system, and then identifies omissions and defects of the network security defense system. A defense system measurement and optimization system is designed based on the proposed network security system measurement and optimization scheme. The application analysis of the project is combined with the actual scenarios. Through the evaluation and optimization of the security defense system in the natural methods, it is proved that the network security defense system evaluation and optimization scheme proposed in this article has reasonableness and effectiveness in the actual application.

computer science, software engineering

A. A. Havrylova,

DOI: https://doi.org/10.31673/2409-7292.2024.010011

2024-01-01

Modern information security

Abstract:The emergence of Big Data has made it possible to obtain more information about the customer and competitive base, as well as about market trends. Therefore, the desire of criminals to gain unauthorized access to this data also increases in direct proportion. However, not enough attention is paid to security issues of Big Data systems and their creation does not take into account the information security component. The purpose of the article is to develop approaches to the cyber protection of Big Data, which are stored and transmitted by telecommunication communication channels when responding to a request, namely their integrity and authentication. The main problems when working with Big Data are analyzed. Based on the results of the analysis of Big Data protection problems, a cryptographic transformation of data indexes when they are stored in the database and when transmitted in the form of hash codes is proposed to increase the efficiency of search by user requests. The expediency of using crypto-code constructions on elliptic curves of various types of modifications to form a pseudo-random substrate in order to increase the crypto-resistance of transmitted messages is proven. When forming hash codes, it is advisable to use modified elliptical codes, and under stricter conditions, the level of cryptographic resistance of authentication codes can be increased due to hybrid crypto-code constructions. A pseudo-random substrate can be represented by varieties that must equally ensure the necessary transformations and preservation of universality properties by the UMAC algorithm.

Сергій Толюпа,Сергій Штаненко,Serhiі Tolіupa,,Serhii Shtanenko,

DOI: https://doi.org/10.17721/ists.2023.1.28-36

2023-01-01

Information systems and technologies security

Abstract:An effective solution to the problems of analysis and synthesis of information security management systems can not be provided by simple ways of simply describing their behavior in different conditions - systems engineering solves problems that require quantitative evaluation of characteristics. Such data, obtained experimentally or by mathematical modeling, should reveal the properties of information security management systems. The main one is efficiency, which means the degree of compliance of the results of information protection to the goal. The latter, depending on the resources available, the knowledge of developers and other factors, can be achieved to one degree or another, and there are alternative ways to implement it. In a number of publications the authors propose the basics of the categorical apparatus of set theory, which allows to explain the relationship between sets of threats and sets of information protection system, which allows to build different mathematical models to analyze information exchange systems in critical application systems. At present, the creation of information security management systems is not possible without research and generalization of world experience in building information systems and their constituent subsystems, one of the key of which are information protection and intrusion prevention systems. Components of the process of attacking the mechanisms of protection and blocking or destruction of cyber threats themselves are components of the mathematical support of such systems. The basis of such models is the mathematical apparatus, which should ensure the adequacy of modeling of information security processes for any conditions of cyber threats. When defining the mathematical apparatus, it is necessary to clearly understand how certain sets of cyber threats are built, and how the sets of cyber threat sets, sets of security system elements and sets of cyber attack detection systems, which should control the correctness of the information security process. The article analyzes various options for building models of information security management system and creates a mathematical model that takes into account the internal relationships of different subsets of components of the information security system under the influence of cyber threats.

Jian Yao

DOI: https://doi.org/10.1155/2022/4380037

IF: 1.968

2022-10-12

Security and Communication Networks

Abstract:At present, the level of modernization and informatization is constantly improving, especially in rapidly developing China. A large amount of information is collected every second, forming a huge database and making people live in the "big data era." Following cloud computing and the Internet of things, big data technology has become another revolutionary change in the global society, changing global development and becoming a new development point for technological innovation, industrial policy, and national information security. Big data in the new age poses new challenges and perspectives for the nation's infosec development. Big data is a renewed tool for state security. Nations use big data to create state infosec, offering great facilitation, potential for adoption, and business value. This is a "new blue ocean" for competition among countries. Although big data brings convenience to public life, it also poses a serious threat to national information security. After the research and experiment of the model design of big data information security management of the Internet of things, the experimental data have shown that 86.67% set passwords in communication devices and storage devices. 66.67% installed firewalls, and 76.67% ran antivirus software. Compared with before, the total ratio of setting a password increased by 53.34% and the total ratio of installing a firewall and running antivirus software both increased by 26.67%. It can be seen from the above data that the protection of big data information under the Internet of things has been significantly improved. From the above data, through the big data information security management of the Internet of things, a new development direction is proposed for the development of information security.

computer science, information systems,telecommunications

Yue Zhuo,Zhiqiang Ge

DOI: https://doi.org/10.1109/tii.2022.3197190

IF: 12.3

2023-01-01

IEEE Transactions on Industrial Informatics

Abstract:In modern industries, data-driven fault detection and classification (FDC) systems can efficiently maintain industrial security and stability, while the security of the data-driven FDC system itself is rarely or even never considered. The security problem named adversarial vulnerability is the intrinsic of data-driven machine learning models, which will give incorrect predictions under the maliciously perturbed input data. This paper presents a work on this new security topic of the data-driven FDC systems, by 1) summarizing and comparing various recent and typical adversarial attack and defense methods for fault classifiers; 2) proposing novel attack and defense techniques for unsupervised fault detectors; 3) constructing a novel industrial adversarial security benchmark on FDC systems in the Tennessee-Eastman process (TEP) dataset; 4) exploring and discussing which attack is most potentially threatening for FDC systems and which defense technique is most applicable to mitigate attacks. The results reveal unique security properties of FDC systems, mainly including 1) for fault classifiers, black-box attack is close to the attack strength of white-box FGSM and the universal transferable attack is not significantly stronger than random noise; 2) weak adversarial training is excellent with high adversarial accuracy improvement and negligible clean accuracy decrease; 3) fault detectors are intrinsically more robust, and can be well protected by strong adversarial training. More intriguing properties and profound insights are demonstrated in the paper. This pioneering work could guide researchers and practitioners in discovering and navigating the field of FDC system adversarial robustness, outlining the research directions and open problems.

Rania Mkhinini Gahar,Olfa Arfaoui,Minyar Sassi Hidri

DOI: https://doi.org/10.1109/IC_ASET58101.2023.10151190

2023-09-15

Abstract:To succeed in a Big Data strategy, you have to arm yourself with a wide range of data skills and best practices. This strategy can result in an impressive asset that can streamline operational costs, reduce time to market, and enable the creation of new products. However, several Big Data challenges may take place in enterprises when it comes to moving initiatives of boardroom discussions to effective practices. From a broader perspective, we take on this paper two very important challenges, namely modeling, and management. The main context here is to highlight the importance of understanding data modeling and knowing how to process complex data while supporting the characteristics of each model.

Databases

Ming Xie,Zubin Chen

DOI: https://doi.org/10.2991/ifmca-16.2017.2

2017-01-01

Abstract:The continuous growth of multi-source heterogeneous large scale data and the continuous improvement of the real time requirement increased the complexity of the data processing brought the new technology challenges to the traditional data security transmission management. This paper proposes a data security management system using multiple server nodes...

Shakhovska Nataliya,Veres Oleh,Hirnyak Mariia

DOI: https://doi.org/10.48550/arXiv.1905.03061

2019-05-04

Databases

Abstract:This article dwells on the basic characteristic features of the Big Data technologies. It is analyzed the existing definition of the "big data" term. The article proposes and describes the elements of the generalized formal model of big data. It is analyzed the peculiarities of the application of the proposed model components. It described the fundamental differences between Big Data technology and business analytics. Big Data is supported by the distributed file system Google File System technology, Cassandra, HBase, Lustre and ZFS, by the MapReduce and Hadoop programming constructs and many other solutions. According to the experts, such as McKinsey Institute, the manufacturing, healthcare, trade, administration and control of individual movements undergo the transformations under the influence of the Big Data.

Jun Wang,Hong Huang

DOI: https://doi.org/10.1051/matecconf/202236501048

2022-10-15

MATEC Web of Conferences

Abstract:Big Data optimizes the process of information processing, expands the scale of information processing, and improves the application effect of big data and computer information technology. However, big data has also triggered data leakage, network viruses and other security risks. In the context of big data, in order to give full play to the application advantages of computer information security technology, it is necessary to give full play to all kinds of technology to avoid the problems such as system failures, external attacks and so on, then ensure that the computer system in a safe and stable operating environment. This paper analyzes the problems of computer information security technology under the background of big data, and puts forward the corresponding application strategies based on the concrete superiority technology.

Hamid Moghaddasi,Samad Sajjadi,Mehran Kamkarhaghighi

DOI: https://doi.org/10.2174/1874431101610010004

2016-10-28

Abstract:Introduction: Any information which is generated and saved needs to be protected against accidental or intentional losses and manipulations if it is to be used by the intended users in due time. As such, information managers have adopted numerous measures to achieve data security within data storage systems, along with the spread of information technology. Background: The "data security models" presented thus far have unanimously highlighted the significance of data security management. For further clarification, the current study first introduces the "needs and improvement" cycle; the study will then present some independent definitions, together with a support umbrella, in an attempt to shed light on the data security management. Findings: Data security focuses on three features or attributes known as integrity, identity of sender(s) and identity of receiver(s). Management in data security follows an endless evolutionary process, to keep up with new developments in information technology and communication. In this process management develops new characteristics with greater capabilities to achieve better data security. The characteristics, continuously increasing in number, with a special focus on control, are as follows: private zone, confidentiality, availability, non-repudiation, possession, accountability, authenticity, authentication and auditability. Conclusion: Data security management steadily progresses, resulting in more sophisticated features. The developments are in line with new developments in information and communication technology and novel advances in intrusion detection systems (IDS). Attention to differences between data security and data security management by international organizations such as the International Standard Organization (ISO), and International Telecommunication Union (ITU) is necessary if information quality is to be enhanced.

Anastasija Nikiforova

DOI: https://doi.org/10.1007/978-3-031-19560-0_1

2023-03-19

Abstract:Today, large amounts of data are being continuously produced, collected, and exchanged between systems. As the number of devices, systems and data produced grows up, the risk of security breaches increases. This is all the more relevant in times of COVID-19, which has affected not only the health and lives of human beings' but also the lifestyle of society, i.e., the digital environment has replaced the physical. This has led to an increase in cyber security threats of various nature. While security breaches and different security protection mechanisms have been widely covered in the literature, the concept of a primitive artifact such as data management system seems to have been more neglected by researchers and practitioners. But are data management systems always protected by default? Previous research and regular updates on data leakages suggest that the number and nature of these vulnerabilities are high. It also refers to little or no DBMS protection, especially in case of NoSQL, which are thus vulnerable to attacks. The aim of this paper is to examine whether traditional vulnerability registries provide a sufficiently comprehensive view of DBMS security, or they should be intensively and dynamically inspected by DBMS owners by referring to Internet of Things Search Engines moving towards a sustainable and resilient digitized environment. The paper brings attention to this problem and makes the reader think about data security before looking for and introducing more advanced security and protection mechanisms, which, in the absence of the above, may bring no value.

Databases,Cryptography and Security,Emerging Technologies

K.S. Romanenko,E.A. Ischukova,

DOI: https://doi.org/10.34219/2078-8320-2023-14-2-76-79

2023-01-01

Informatization and communication

Abstract:This article discusses the actual security problems of modern electronic document management systems. Currently, there are a large number of different electronic document management systems that allow solving various problems in organizations within the framework of electronic document management, and many systems have their own advantages and disadvantages of information security. From the analysis of various publications, it can be concluded that the most basic problems are data integrity and access control. As a result of the work, possible ways of solving the problems of data integrity and access control in electronic document management systems are proposed. To do this, you need to use blockchain technology.

DOI: https://doi.org/10.35940/ijitee.f1317.0486s419

2019-07-26

International Journal of Innovative Technology and Exploring Engineering

Abstract:Information, which is not a fear till 2000, was the precept criteria for man or woman regarding safety and protection a brief time later. these days enormous measure of information is being created for always it is a check to deal with it. it is being used by numerous groups to take large options from the beyond facts to interrupt down thefuture. This tremendous diploma of facts is referred to as as huge statistics. in spite of the fact that there are numerous common calculations in presence, for giving safety and safety in large records it's miles attending to be tough because of its traits (quantity, range and Veracity). This paper demonstrates the investigation of common techniques handy, troubles to protection and safety of big records and protection saving processes like anonymization, randomization, differential safety, word and assent and so on.

Chao Shen

DOI: https://doi.org/10.1109/NaNA51271.2020.00008

2020-01-01

Abstract:Human society is witnessing a wave of machine learning(ML) driven by dep learning techniques, bringing a technological revolution for human production and life. In some specific fields, ML achieved or even surpassed human-level performance. However, most previous machine learning theories have not considered the open and even adversarial environments, and the security and privacy issues are gradually rising. Besides of insecure code implementations, blased models, adversarial examples, sensor spoofing can also lead to security risks, which are hard to be discovered by traditional security analysis tools. This talk reviews previous works on ML system security and privacy, revealing potential security and privacy risks. Firstly, we introduce a threat model of ML systems, including attack surfaces, attach capabilitiesand attack goals. Second, we analyze security risks and countermeasures in terms of four critical components in ML systems: data input (sensor), data preprocessing, machine learning model and output. Finally, we discuss future research trends on the security of ML systems. The aim si to arise the attention of the computer security society and the ML society on security and privacy of ML systems, and so that they can work together to unlock ML's potential to build a bright future.