Earticle

Aiming at object occlusions and appearance changes and other issues under complex environment, a new tracking method of multi-cue integration particle filter based on blocking is proposed. Based on fragment the method using color, texture and edge cues integration constructs particle weights updating scheme, and according to the probabilities of which varied information belongs to the object or to the background region, distinguishes appearance changes and occlusions, then the local template updating is applied and the stability of tracking is improved. In order to verify the performance and effectiveness of this method, the experiments use the indoor and outdoor test videos which contained the light changes, occlusions, and the appearance changes of objects. The experimental results showed that the method had strong robustness and high tracking accuracy.

With the development of electronic commerce (e-commerce), the electronic payment (e-payment) has become a popular method of payment. Its security and trust are the great attention of customers. This paper is an attempt to compare the current widely used e-payment systems to invest the issues and priority of e-payment over e-commerce, specifically the B2C e-commerce in a specific market - China. Grey approach is employed to evaluate the security and the current e-payment systems of the B2C e-commerce in China. The managerial implications and suggestions for future research are also discussed.

The rapid progress of mobile Internet has brought about wide range of applications of security audit systems. As a part of security audit system, content security audit is crucial for ensuring the reliability and security for system applications. In this paper, we propose a novel multiple patterns matching algorithm WMMA based on the Chinese context (Wu-Manber Algorithm for Mobile Internet Security Audit) to realize auditing the interactive content in the mobile Internet. Our improved algorithm based on the efficient WM (Wu-Manber) multiple patterns matching algorithm, which can improve the insufficient of the WM when dealing with Chinese context. The simulation results showed that the improved algorithm is more suitable for the mobile Internet content security auditing of Chinese language environment, which has higher operation efficiency.

This paper focuses on the approach to solve the immune evolution optimization with interval number judgment matrix weight vector. In light of the features of interval number judgment matrix, we transform the solution problem of weights into the optimization one of nonlinear with restriction, design immune evolution algorithm on the base of immune mechanism, and use the convergence ability of immune system to search the optimal access to get interval numbers from matrix weight vector. Moreover, we construct immune operator and form vaccine and optimization strategies by priori knowledge of target problem, by which we can keep individual diversity and elite individuals and abandon useless individuals as soon as possible. In the evolution process, search can be dramatically improved by overcoming the problems of earliness and degradation during global search. Simulation results of experiments show the advantages of this algorithm in accuracy, convergence, convergence rate and so on.

Diverse security measures are used to improve security entropy including the introduction of secure port services, better tunneling protocols and complex encryptions cryptography. Most of these do not address the fundamental of the security risk which is to avoid newly discovered exploits and protect credential from man-in-the-middle attack. In this study, experiments involving three types of existing environment, which include insecure connection as a basis, working against pre-shared key and public-key infrastructure (PKI), are being modeled. A new framework named SeDIC has been introduced to overcome the limitations and address the current security weaknesses. In this new implementation, forward secrecy is maintained since the key for authentication is only valid once and this will deny replay attack. This study proves that secure internet application is possible and the user can have the freedom to use the lowest cryptographic entropy to perform their on-line transactions. Having complex mathematical algorithms such as Elliptic Curve Cryptography (ECC) for tunneling, or even multilayer authentication system alone will not address the potential risk, besides prolonging the time for intruder in gaining unauthorized access.

The increasing popularity of cloud storage services has lead companies that handle critical data to think about using these services for their storage needs. To keep their sensitive data against untrusted cloud service providers, a natural way is to store only encrypted data in the cloud severs and providing an efficient access control mechanism.. The proposed model involves the attributes of metadata for key generation and distribution techniques. The key problems of this approach includes, the generation of cipher key and establishing an access control mechanism for the encrypted data using cipher key, where keys cannot be revoked without the involvement of user, metadata data server (MDS) and Data Server (DS). From this study, we propose a novel metadata driven cipher key generation and distribution policies by means of exploiting the characteristic of the metadata stored called CRE Scheme, a Cloud Re-Encryption model that improves the confidentiality of the data stored through the cipher-key Cmxn. We have implemented our security model using eucalyptus tool and evaluated the performance and scalability of the secured model. We observed that our protocols improved the security of the data stored and compared with existing security models.

Intrusion Detection Systems (IDSs) play very crucial role in minimizing the damage caused by different computer attacks. In fact, most IDSs are capable of detecting many attacks, but often appear problematic because of triggering huge number of non-interesting alerts which diminish the value and urgency of interesting alerts. The analysts who review the alerts rarely look at the voluminous alerts until a sign is reported by other security means because it is laborious and challenging task to identify the interesting alerts. This has led to the emergence of many approaches to manage the overwhelming number of alerts. The existing approaches suffer from several limitations. This paper conducts a comprehensive study and evaluation of the key approaches that aim to manage the huge number of alerts in order to identify some research gaps that will objectively motivate researchers to come up with better approaches. At the end of the review, this paper suggests a strategy that can be exploited in order to improve the quality of final alerts.

One of the most important components in information systems security is the Access Control policy. In order to ensure the best Access Control policy, it is mandatory to proceed to a modeling phase that respects a set of indications and criteria of a predefined model. There exists several Access Control models, each with a specific contribution. This paper exposes the results found through a SWOT analysis on the well-known models, and presents the advantages and drawbacks of each model. Then, a comparative table between these models is elaborated, in order to get an overview on the types of problems encountered in Access Control and discover the common vulnerabilities between its models. The discovering of the covert channels is among the main results of this study.