Articles

Detection of illicit cryptomining using network metadata

Illicit cryptocurrency mining has become one of the prevalent methods for monetization of computer security incidents. In this attack, victims’ computing resources are abused to mine cryptocurrency for the ben...

Authors: Michele Russo, Nedim Šrndić and Pavel Laskov

Multitask adversarial attack with dispersion amplification

Recently, adversarial attacks have drawn the community’s attention as an effective tool to degrade the accuracy of neural networks. However, their actual usage in the world is limited. The main reason is that ...

Authors: Pavlo Haleta, Dmytro Likhomanov and Oleksandra Sokol

Potential advantages and limitations of using information fusion in media forensics—a discussion on the example of detecting face morphing attacks

Information fusion, i.e., the combination of expert systems, has a huge potential to improve the accuracy of pattern recognition systems. During the last decades, various application fields started to use diff...

Authors: Christian Kraetzer, Andrey Makrushin, Jana Dittmann and Mario Hildebrandt

Estimating Previous Quantization Factors on Multiple JPEG Compressed Images

The JPEG compression algorithm has proven to be efficient in saving storage and preserving image quality thus becoming extremely popular. On the other hand, the overall process leaves traces into encoded signa...

Authors: Sebastiano Battiato, Oliver Giudice, Francesco Guarnera and Giovanni Puglisi

Proposing a reliable method of securing and verifying the credentials of graduates through blockchain

Education acts as a soul in the overall societal development, in one way or the other. Aspirants, who gain their degrees genuinely, will help society with their knowledge and skills. But, on the other side of ...

Authors: T. Rama Reddy, P. V. G. D. Prasad Reddy, Rayudu Srinivas, Ch. V. Raghavendran, R. V. S. Lalitha and B. Annapurna

On the information leakage quantification of camera fingerprint estimates

Camera fingerprints based on sensor PhotoResponse Non-Uniformity (PRNU) have gained broad popularity in forensic applications due to their ability to univocally identify the camera that captured a certain imag...

Authors: Samuel Fernández-Menduiña and Fernando Pérez-González

Boosting CNN-based primary quantization matrix estimation of double JPEG images via a classification-like architecture

Estimating the primary quantization matrix of double JPEG compressed images is a problem of relevant importance in image forensics since it allows to infer important information about the past history of an im...

Authors: Benedetta Tondi, Andrea Costanzo, Dequ Huang and Bin Li

Media forensics on social media platforms: a survey

The dependability of visual information on the web and the authenticity of digital media appearing virally in social media platforms has been raising unprecedented concerns. As a result, in the last years the ...

Authors: Cecilia Pasquini, Irene Amerini and Giulia Boato

Research on gray correlation analysis and situation prediction of network information security

In order to further improve the accuracy and efficiency of network information security situation prediction, this study used the dynamic equal-dimensional method based on gray correlation analysis to improve ...

Authors: Chengqiong Ye, Wenyu Shi and Rui Zhang

Synthetic speech detection through short-term and long-term prediction traces

Several methods for synthetic audio speech generation have been developed in the literature through the years. With the great technological advances brought by deep learning, many novel synthetic speech techni...

Authors: Clara Borrelli, Paolo Bestagini, Fabio Antonacci, Augusto Sarti and Stefano Tubaro

Use of SHDM in commutative watermarking encryption

SHDM stands for Sphere-Hardening Dither Modulation and is a watermarking algorithm based on quantizing the norm of a vector extracted from the cover work. We show how SHDM can be integrated into a fully commut...

Authors: Roland Schmitz

Smooth adversarial examples

This paper investigates the visual quality of the adversarial examples. Recent papers propose to smooth the perturbations to get rid of high frequency artifacts. In this work, smoothing has a different meaning...

Authors: Hanwei Zhang, Yannis Avrithis, Teddy Furon and Laurent Amsaleg

A novel technique to prevent SQL injection and cross-site scripting attacks using Knuth-Morris-Pratt string match algorithm

Structured Query Language (SQL) injection and cross-site scripting remain a major threat to data-driven web applications. Instances where hackers obtain unrestricted access to back-end database of web applicat...

Authors: Oluwakemi Christiana Abikoye, Abdullahi Abubakar, Ahmed Haruna Dokoro, Oluwatobi Noah Akande and Aderonke Anthonia Kayode

Scalable, efficient, and secure RFID with elliptic curve cryptosystem for Internet of Things in healthcare environment

The rapid development of IoT technology has led to the usage of various devices in our daily life. Along with the ever-increasing rise of the Internet of Things, the use of appropriate methods for establishing...

Authors: Davood Noori, Hassan Shakeri and Masood Niazi Torshiz

Trembling triggers: exploring the sensitivity of backdoors in DNN-based face recognition

Backdoor attacks against supervised machine learning methods seek to modify the training samples in such a way that, at inference time, the presence of a specific pattern (trigger) in the input data causes mis...

Authors: Cecilia Pasquini and Rainer Böhme

Reversible data hiding for binary images based on adaptive overlapping pattern

Pattern substitution (PS) method (Ho et al., Comput. Stand. Interfaces 31:787–794, 2009) is a recent reversible data hiding method for binary images. It generates one pattern pair, the patterns in which are ca...

Authors: Keming Dong, Hyoung Joong Kim, Xiaohan Yu and Xiaoqing Feng

Machine learning through cryptographic glasses: combating adversarial attacks by key-based diversified aggregation

In recent years, classification techniques based on deep neural networks (DNN) were widely used in many fields such as computer vision, natural language processing, and self-driving cars. However, the vulnerab...

Authors: Olga Taran, Shideh Rezaeifar, Taras Holotyak and Slava Voloshynovskiy

ELSA: efficient long-term secure storage of large datasets (full version) ^∗

An increasing amount of information today is generated, exchanged, and stored digitally. This also includes long-lived and highly sensitive information (e.g., electronic health records, governmental documents)...

Authors: Philipp Muth, Matthias Geihs, Tolga Arul, Johannes Buchmann and Stefan Katzenbeisser

IoT cyber risk: a holistic analysis of cyber risk assessment frameworks, risk vectors, and risk ranking process

Security vulnerabilities of the modern Internet of Things (IoT) systems are unique, mainly due to the complexity and heterogeneity of the technology and data. The risks born out of these IoT systems cannot eas...

Authors: Kamalanathan Kandasamy, Sethuraman Srinivas, Krishnashree Achuthan and Venkat P. Rangan

Low-cost data partitioning and encrypted backup scheme for defending against co-resident attacks

Aiming at preventing user data leakage and the damage that is caused by co-resident attacks in the cloud environment, a data partitioning and encryption backup (P&XE) scheme is proposed. After the data have be...

Authors: Junfeng Tian, Zilong Wang and Zhen Li

Swapped face detection using deep learning and subjective assessment

The tremendous success of deep learning for imaging applications has resulted in numerous beneficial advances. Unfortunately, this success has also been a catalyst for malicious uses such as photo-realistic fa...

Authors: Xinyi Ding, Zohreh Raziei, Eric C. Larson, Eli V. Olinick, Paul Krueger and Michael Hahsler

Deep neural rejection against adversarial examples

Despite the impressive performances reported by deep neural networks in different application domains, they remain largely vulnerable to adversarial examples, i.e., input samples that are carefully perturbed t...

Authors: Angelo Sotgiu, Ambra Demontis, Marco Melis, Battista Biggio, Giorgio Fumera, Xiaoyi Feng and Fabio Roli

Evaluation of stability of swipe gesture authentication across usage scenarios of mobile device

User interaction with a mobile device predominantly consists of touch motions, otherwise known as swipe gestures, which are used as a behavioural biometric modality to verify the identity of a user. Literature re...

Authors: Elakkiya Ellavarason, Richard Guest and Farzin Deravi

Understanding visual lip-based biometric authentication for mobile devices

This paper explores the suitability of lip-based authentication as a behavioural biometric for mobile devices. Lip-based biometric authentication is the process of verifying an individual based on visual infor...

Authors: Carrie Wright and Darryl William Stewart

Keystroke biometrics in the encrypted domain: a first study on search suggestion functions of web search engines

A feature of search engines is prediction and suggestion to complete or extend input query phrases, i.e. search suggestion functions (SSF). Given the immediate temporal nature of this functionality, alongside ...

Authors: Nicholas Whiskerd, Nicklas Körtge, Kris Jürgens, Kevin Lamshöft, Salatiel Ezennaya-Gomez, Claus Vielhauer, Jana Dittmann and Mario Hildebrandt

Combining PRNU and noiseprint for robust and efficient device source identification

PRNU-based image processing is a key asset in digital multimedia forensics. It allows for reliable device identification and effective detection and localization of image forgeries, in very general conditions....

Authors: Davide Cozzolino, Francesco Marra, Diego Gragnaniello, Giovanni Poggi and Luisa Verdoliva

Long-term integrity protection of genomic data

Genomic data is crucial in the understanding of many diseases and for the guidance of medical treatments. Pharmacogenomics and cancer genomics are just two areas in precision medicine of rapidly growing utiliz...

Authors: Johannes Buchmann, Matthias Geihs, Kay Hamacher, Stefan Katzenbeisser and Sebastian Stammler

Multi-layer intrusion detection system with ExtraTrees feature selection, extreme learning machine ensemble, and softmax aggregation

Recent advances in intrusion detection systems based on machine learning have indeed outperformed other techniques, but struggle with detecting multiple classes of attacks with high accuracy. We propose a meth...

Authors: Jivitesh Sharma, Charul Giri, Ole-Christoffer Granmo and Morten Goodwin

Managing confidentiality leaks through private algorithms on Software Guard eXtensions (SGX) enclaves

Many applications are built upon private algorithms, and executing them in untrusted, remote environments poses confidentiality issues. To some extent, these problems can be addressed by ensuring the use of se...

Authors: Kubilay Ahmet Küçük, David Grawrock and Andrew Martin

Situation prediction of large-scale Internet of Things network security

The Internet of Things (IoT) is a new technology rapidly developed in various fields in recent years. With the continuous application of the IoT technology in production and life, the network security problem ...

Authors: Wenjun Yang, Jiaying Zhang, Chundong Wang and Xiuliang Mo

Fingerprint template protection using minutia-pair spectral representations

Storage of biometric data requires some form of template protection in order to preserve the privacy of people enrolled in a biometric database. One approach is to use a Helper Data System. Here it is necessar...

Authors: Taras Stanko, Bin Chen and Boris Škorić

Crowdsourcing for click fraud detection

Mobile ads are plagued with fraudulent clicks which is a major challenge for the advertising community. Although popular ad networks use many techniques to detect click fraud, they do not protect the client fr...

Authors: Riwa Mouawi, Imad H. Elhajj, Ali Chehab and Ayman Kayssi

Fine-grain watermarking for intellectual property protection

The current online digital world, consisting of thousands of newspapers, blogs, social media, and cloud file sharing services, is providing easy and unlimited access to a large treasure of text contents. Makin...

Authors: Stefano Giovanni Rizzo, Flavio Bertini and Danilo Montesi

Towards the application of recommender systems to secure coding

Secure coding is crucial for the design of secure and efficient software and computing systems. However, many programmers avoid secure coding practices for a variety of reasons. Some of these reasons are lack ...

Authors: Fitzroy D. Nembhard, Marco M. Carvalho and Thomas C. Eskridge

A new method of generating hard random lattices with short bases

This paper first gives a regularity theorem and its corollary. Then, a new construction of generating hard random lattices with short bases is obtained by using this corollary. This construction is from a new ...

Authors: Chengli Zhang, Wenping Ma, Hefeng Chen and Feifei Zhao

Metadata filtering for user-friendly centralized biometric authentication

While biometric authentication for commercial use so far mainly has been used for local device unlock use cases, there are great opportunities for using it also for central authentication such as for remote lo...

Authors: Christian Gehrmann, Marcus Rodan and Niklas Jönsson

Accuracy enhancement of biometric recognition using iterative weights optimization algorithm

A new approach is proposed to quantitatively evaluate the binary detection performance of the biometric personal recognition systems. The importance of correlation between the overall detection performance and...

Authors: Pallavi D. Deshpande, Prachi Mukherji and Anil S. Tavildar

A deep learning framework for predicting cyber attacks rates

Like how useful weather forecasting is, the capability of forecasting or predicting cyber threats can never be overestimated. Previous investigations show that cyber attack data exhibits interesting phenomena,...

Authors: Xing Fang, Maochao Xu, Shouhuai Xu and Peng Zhao

Machine learning-based dynamic analysis of Android apps with improved code coverage

This paper investigates the impact of code coverage on machine learning-based dynamic analysis of Android malware. In order to maximize the code coverage, dynamic analysis on Android typically requires the gen...

Authors: Suleiman Y. Yerima, Mohammed K. Alzaylaee and Sakir Sezer

Spark-based real-time proactive image tracking protection model

With rapid development of the Internet, images are spreading more and more quickly and widely. The phenomenon of image illegal usage emerges frequently, and this has marked impacts on people’s normal life. The...

Authors: Yahong Hu, Xia Sheng, Jiafa Mao, Kaihui Wang and Danhong Zhong

Implementing a blockchain from scratch: why, how, and what we learned

Blockchains are proposed for many application domains apart from financial transactions. While there are generic blockchains that can be molded for specific use cases, they often lack a lightweight and easy-to...

Authors: Fabian Knirsch, Andreas Unterweger and Dominik Engel

Transfer learning for detecting unknown network attacks

Network attacks are serious concerns in today’s increasingly interconnected society. Recent studies have applied conventional machine learning to network attack detection by learning the patterns of the networ...

Authors: Juan Zhao, Sachin Shetty, Jan Wei Pan, Charles Kamhoua and Kevin Kwiat

Detecting data manipulation attacks on physiological sensor measurements in wearable medical systems

Recent years have seen the emergence of wearable medical systems (WMS) that have demonstrated great promise for improved health monitoring and overall well-being. Ensuring that these WMS accurately monitor a u...

Authors: Hang Cai and Krishna K. Venkatasubramanian

A generic integrity verification algorithm of version files for cloud deduplication data storage

Data owners’ outsourced data on cloud data storage servers by the deduplication technique can reduce not only their own storage cost but also cloud’s. This paradigm also introduces new security issues such as ...

Authors: Guangwei Xu, Miaolin Lai, Jing Li, Li Sun and Xiujin Shi

HADEC: Hadoop-based live DDoS detection framework

Distributed denial of service (DDoS) flooding attacks are one of the main methods to destroy the availability of critical online services today. These DDoS attacks cannot be prevented ahead of time, and once i...

Authors: Sufian Hameed and Usman Ali

Cybersecurity: trends, issues, and challenges

Authors: Krzysztof Cabaj, Zbigniew Kotulski, Bogdan Księżopolski and Wojciech Mazurczyk

Detection of spoofed and non-spoofed DDoS attacks and discriminating them from flash crowds

Distributed computing technology is widely used by Internet-based business applications. Supply chain management (SCM), customer relationship management (CRM), e-Commerce, and banking are some of the applicati...

Authors: Jaideep Gera and Bhanu Prakash Battula

Towards 5G cellular network forensics

The fifth generation (5G) of cellular networks will bring 10 Gb/s user speeds, 1000-fold increase in system capacity, and 100 times higher connection density. In response to these requirements, the 5G networks...

Authors: Filipo Sharevski

Secrecy outage of threshold-based cooperative relay network with and without direct links

In this paper, we investigate the secrecy outage performance of a dual-hop decode-and-forward (DF) threshold-based cooperative relay network, both with and without the direct links between source-eavesdropper ...

Authors: Khyati Chopra, Ranjan Bose and Anupam Joshi

OMMA: open architecture for Operator-guided Monitoring of Multi-step Attacks

Current attacks are complex and stealthy. The recent WannaCry malware campaign demonstrates that this is true not only for targeted operations, but also for massive attacks. Complex attacks can only be describ...

Authors: Julio Navarro, Véronique Legrand, Aline Deruyver and Pierre Parrend