Information Systems Security - Science topic

me bridaria mas infiormacion por favor

As machine learning technology and generative artificial intelligence are increasingly being used by cyber criminals to improve cybercrime techniques, create new more effective types of viruses, malware to take control of smartphones, laptops, computers, etc. individuals, companies, enterprises, financial and/or public institutions targeted by cybercrime attacks then a good topic for a doctoral dissertation in the field of cyber security is to explore the current and potential possibilities of applying the now rapidly developing technology of machine learning, deep learning using multi-layer artificial neural networks and generative artificial intelligence to detect cybercrime attacks, situations of attempts to infect IT equipment, smartphones, etc. with malware, ransomware viruses, phishing techniques used, fake emails sent out by cyber criminals containing computer viruses created using artificial intelligence technology.

Perhaps in formulating a good, interesting, up-to-date, future-oriented topic for a dissertation, it may also help to read my article, in which I described the key issues of opportunities and threats to the development of artificial intelligence technology:

OPPORTUNITIES AND THREATS TO THE DEVELOPMENT OF ARTIFICIAL INTELLIGENCE APPLICATIONS AND THE NEED FOR NORMATIVE REGULATION OF THIS DEVELOPMENT

I invite you to join me in scientific cooperation on this issue,

Regards,

Dariusz Prokopowicz

Very interesting question! I completely agree and support the opinion of dear colleagues Ljubomir Jacić, Doherty Odueko Funmilayo. Thank you!

I am working on an access control model (authorization model) to facilitate healthcare information access management  in context of team collaboration,, towards "cross-border healthcare collaboration"

Dear Manoharan,

The following thesis is dedicated to monitoring attackers who attack computer systems. The main tools used for the monitoring are high-interaction honeypots which are deployed within the network of Masaryk University.

There are three areas to implement security in Hadoop via Authentication, Authorisation and Encryption

Authentication ensures only genuine user, service accesses cluster. Tools currently used are MIT Kerberos, AD, OpenLDAP etc.

Authorisation ensures what user and application can do with data. Tools currently used are Apache Sentry.

Encryption ensures data protection which comprises the protection of data from unauthorised access, at rest and in transit. Tools used for encryption at rest are Navigator Encrypt etc and for in transit can be implemented by enabling TLS/SSL

For more information on security architecture in Hadoop ecosystem visit the link [1].

Please note: Security tools used may be different based on the Hadoop distribution provider. I have given information based on latest CDH (Cloudera Distributed Hadoop)

Also, Hadoop Security by Ben Spivey & Joey Echeverria is a good read.

[1] http://www.cloudera.com/documentation/enterprise/latest/topics/security.html 

Good Luck!

Probably you would want to look up work of R K Shyamasundar, IIT Bombay/TIFR

Thanks so much Elisa and Nils.

Hope to be able to use your testsuite as soon as possible.

TCP itself does not authenticate the receiver in any way. If the attacker replies on your TCP SYN-SENT faster than the intended socket for connection, the connection will be established with the attacker instead. That is basically the way some sort of Man-In-The-Middle attacks work. If you remember the Yahoo-highjacking by NSA last year - this worked alike (in that case according to the press even with full TSL Auth.: looking for request to Yahoo, changing some DNS servers to impose to be the receiver (the fake server was physically nearer to the sender and thus faster responding), issue a flasificated TLS Cert making sure the false Cert was verified faster than an original one (as above), and highjacking the connecting therefore.)

From wikipedia:

TCP-Handshake

1. SYN-SENT → <SEQ=100><CTL=SYN> → SYN-RECEIVED

2. SYN/ACK-RECEIVED ← <SEQ=300><ACK=101><CTL=SYN,ACK> ← SYN/ACK-SENT

3. ACK-SENT → <SEQ=101><ACK=301><CTL=ACK> → ESTABLISHED

I am not aware whether Chaotic Security has been introduced in Commercial Applications.Probably it is introduced in Defence Applications. Vide item 1.

The application of it in Communication and Image Transmission are widely reported.

The following references, to mention a few are illustrative of its use.

1. http://cartome.org/chaos-int.htm

Secure Image Ciphering based on the Mathematics of Chaos

Multi-Sensor Exploitation Branch

Information and Intelligence Exploitation Division

Information Directorate

Air Force Research Laboratory

Investigators; � Dr. Jiri Fridrich, Principal Investigator, SUNY Binghamton

� Mr. Richard Simard,Multi-Sensor Exploitation Branch, AFRL

Secure Image Ciphering based on the Mathematics of Chaos. Need for Secure and Efficient Use of Available Transmission Media Between Fixed and Deployed Locations to Transfer Time-Sensitive Data for Military & Commercial Applications.

2. http://arxiv.org/ftp/cs/papers/0608/0608119.pdf

Security Analysis of A Chaos-based Image Encryption Algorithm

Shiguo Lian, Jinsheng Sun, Zhiquan Wang

Department of Automation, Nanjing University of Science and Technology

Nanjing, Jiangsu 210094, P.R China

3. http://skoch.in/images/stories/security_paper_knowledge/Information%20Security%20using%20Genetic%20Algorithm%20and%20Chaos.pdf

Information Security using Genetic Algorithm and Chaos

Anil Kumar, M. K. Ghose

Sikkim Manipal Institute of Technology, Sikkim (INDIA)

In this paper the Authors have proposed a new approach of genetic algorithms (GA) with pseudorandom sequence to encrypt data stream.

The feature of such an approach includes high data security and high feasibility for easy integration with commercial multimedia transmission applications. The experimental results of the proposed technique confirm that high throughput rate needed for real time data protection is achieved.

This total way of transferring secret information is highly safe and reliable. The simulation results have indicated that the encryption results are completely chaotic by the sense of sight,very sensitive to the parameter fluctuation.

In the future work, they are planning to design a sophisticated hardware based on this technique which will be targeted to use in highly secure multimedia data transmission applications.

P.S.

i would propose one of my papers for you (the last recent one) check and we may find some idea to work together;

Am interested in public key cryptography and designing an effiecient Co-Processors for cryptographic algorithms (FPGA Design)

Check my papers on cryptography, am offering them here in my profile of Research Gate