Earticle

A modified second-price sealed-bid auction scheme is exploited to study the interaction between the primary transmitter(PT) and multiple untrusted half-duplex secondary transmitters(STs). The STs will eavesdrop on the primary transmission unless they are allowed to transmit with the PT simultaneously. The auction scheme provides an opportunity for intensive cooperation between the PT and untrusted STs which leads to the performance improvement of all the players. In the proposed scheme, a trisection search algorithm is employed to find the optimal bidding power of the STs in the presence of multiple eavesdroppers, and a bisection search algorithm is employed for the optimal transmit power of the winning ST. Numerical results show that the proposed scheme not only improves the achievable secrecy rate of the primary link but also increases the access opportunity of the STs.

Recently, cyber-attack has become the serious national treat such as shut down industry control system, and an act of war. Therefore, the issue is suggested about the necessity of Enterprise Security Management (ESM) that is for integrated management of network system such as firewall, IPS, VPN, and etc. However, current ESM has the limit of blocking only cyber-attack from outside due to using the networking attack detection method that monitoring the traffic inflows from outside to inside. Therefore, this study suggests the new security log system using big data that enhances intelligence of security by analyzing the relationship between security and data events created from network, system, application service of main IT infrastructure. We assume to apply the distribution-based saving/processing technology through the security log system using big data which is suggested in the study. Moreover a ripple effect of enhanced customer service satisfaction due to the possibility of inflow and infection (spread) of malignant code in-house and real time monitoring.

In this paper, we discuss the current situation of the comprehensive computer ability of PE teachers in colleges, and find out deficiencies, then provide valuable theoretical basis for optimized development. A total of 122 PE teachers were selected as the research objects of the network questionnaire during July 2014 and December 2014, and we investigate related data of those teachers, by using reliability and validity test, we find out relationship between their ability to use computers and the basic information. The results shows that the P value of the comprehensive ability to use computers of PE teachers in colleges and universities is less than 0.01 by sex, region, age group, school age, title, educational background structure, highest level of papers published in the past 5 years and the highest level of completed topics within the past 5 year.

Content-based email spam filtering is a challenging problem in which emails are often represented as high-dimensional data. This paper proposes an approach to email spam filtering based on max-margin semi-NMF (MNMF). MNMF combines the ideas of semi-NMF and max-margin and performs dimension reduction and classification simultaneously. In MNMF, we employ the same approach as Semi-NMF to update the coefficient matrix (while the other parameters are fixed) instead of quadratic programming. Simulation experiments were performed on two public Chinese email corpuses. The results show that MNMF is much faster and performs much better than support vector machine (SVM) classifiers that use features extracted by principal component analysis or linear discriminant analysis, and the MNMF method also outperforms SVM classification schemes in combination with feature extractions based on NMF and Semi-NMF

The present paper reviews the scheme for protection of information resources from attempts to research them by intruders on the reconnaissance stage. Current drawbacks of the popular protection technology of Moving Target Defense (MTD) are analyzed herein. The paper offers a theoretical model of a system’s operation when it can diversify itself by introducing dynamic variables. Such transformation is enabled by turning each process into an “interface” for another process and distributes new interaction rules to all legal processes. Hence, the established system is not static, but dynamic and all information related to the system and obtained at one moment in time becomes irrelevant with time. A practical method for protecting a local network from scanning is offered herein. Potential difficulties and solutions for implementation of the scheme are reviewed

Web service is the kernel and key to develop a new dynamic E-business application framework and the dynamic E-business is the goal of E-business development. This paper introduced several key techniques of XML, SOAP, WSDL and UDDI in Web services as well as the relationships between these techniques. And the SOA can meet the requirements of various kinds of E-business application framework. So a service-oriented dynamic E-business application framework based on SOA and Web service is proposed. In the proposed framework, SOA is used to realize the standard and loosely coupled application framework by using the characteristics of Web service. They can ensure a compatible information exchange and integration framework for the business process of the dynamic E-business, provide more complex interaction and collaboration between trading partners. So the proposed E-business application framework has these characteristics of crossing platform, flexibility and easy expansion, and can effectively solve dynamic E-business application framework.

In this paper, the method that allows for the combined control scheme of the imitation and autonomous control for a humanoid robot via Internet is presented. Our approach does not use any prior analytical or mathematical robot modeling (e.g. forward or inverse kinematics). All the way from the human operator with encoders to the humanoid joints, many server motors and encoders are connected with single communication path for the imitation control. The key concept for autonomous control is added to let the robot stabilize by utilization of tracing the CoP (center of pressure) and controlling the ankle of the robot’s support foot prior to impact in real time. Thread programming technology is introduced to enhance the control and operation speed up, and explained how to operate joints. The experimental results demonstrate that the humanoid robot can successfully imitate the motions of the operator and can walk stably by both utilizing the CoP and controlling the robot’s ankles.

A variety of faults may cause performance degradation or even downtime of virtual machines (VMs) under Cloud environment, thus lowering the dependability of Cloud platform. Detecting anomalous VMs before real failures occur is an important means to improve the dependability of Cloud platform. Since the performance or state of VMs may be affected by the environmental factors, this article proposes an environment-aware anomaly detection framework (termed EaAD) for VMs under Cloud environment. EaAD partitions all the VMs in Cloud platform into several monitoring domains based on similarity in running environment, which makes the VMs in a same monitoring domain have similar running environment. In each domain, the equipped anomaly detection algorithm detects anomalous VMs based on their performance metrics. In addition, anomaly detection in a certain monitoring domain faces such challenges as multiple anomaly categories, imbalanced training sample sets, increasing number of training samples. To cope with these challenges, several support vector machine (SVM) based anomaly detection algorithms are implemented and equipped in EaAD, including C-SVM, OCSVM, multi-class SVM, imbalanced SVM, online learning SVM. This article conducts experiments on EaAD to test the performance of the adopted detection algorithms and looks into future work.

Schema theorem is the theoretical foundation of the evolutionary algorithm. This paper focuses on a new, and general schema theory for multigenic chromosomes gene expression programming. The theory is applicable to every operator in GEP via the method of probability. Not only the destruction but also the creation probability of the schema is considered in the evolutionary process. An equivalent form of general schema theory of GEP was deduced. The result shows that the individuals with high fitness values, shorter schema order, more function nodes, and the shorter the insertion sequence have the greater transmission probability than the average ones.

In the last decade online social networks has gained remarkable attention. Facebook or Google+, are example social network services which allow people to create online profiles and share personal information with their friends. These networks publish details about users while some of the information revealed inside is private. In order to address privacy concerns, many social networks allow users to hide their private or sensitive information in their profiles from the public. In this paper, we focus on the problem of information revelation in online social networks by preserving the privacy of sensitive information in their data using machine learning and data mining algorithms. We show how an adversary can launch an inference or neighborhood attack to exploit an online social network using released data and structure of the network to predict the private information and attributes of users. For this purpose, we propose a new data mining based model that uses neighborhood information and attributes details of a user to infer private attributes of user profiles. The proposed model consists of two main parts: a clustering approach to ensure the k-anonymity and a classification algorithm to preserve the privacy against inference attacks. Finally we explore the effectiveness of some sanitization techniques that can be used to combat such inference attacks, and we show experimentally the success of different neighborhood re-identification strategies. Our experimental results reveal that using combination of data mining algorithm can notably help to preserve private and sensitive information in social network data.

Speech perceptual hashing authentication algorithm is an efficient method for content integrity authentication and identity authentication. But the algorithm becomes transparent under the principle of Kerckhoffs which makes the algorithm unsafe. In this paper, the algorithm is encrypted under the principle of Kerckhoffs to protect the security of the algorithm. Then the specific link that won’t affect the performance of the algorithm is identified through the experiments. Next, this paper analyzes the security of the encrypted algorithm based on the concept of Shannon unicity distance. The unicity distance is figured out finally based on the experiments. That is to say, the algorithm loses its security even though the algorithm has been encrypted. Under this circumstances, the most important thing is to continue keeping the safety of the algorithm. Therefore, this paper proposed an efficient random secret key method to guarantee the safety of the algorithm after the unicity distance is figured out.

The Cryptographic systems need a secret key or a random number must be necessarily tied to an individual through a unique identifier. This unique identifier definitely might exist a globally user id or biometric data [2]. In this paper we combined biometric with cryptography in which the intensity of each pixel of iris is changed into the elliptic curve and encrypted using ECC. The receiver end original image is recovered by using their decryption and authentication [8] is performed using ECDSA. The proposed technique is implemented for BMP images. We can enroll and add the number of images for authentication .It has been also performed more security if the image is recovered without being any side channel attack.

Machine-to-machine (M2M) communication is viewed as one of the next frontiers in wireless communications. Because of unguarded communication, new security threats emerge. Considering that multimedia will be widely used in various applications over M2M network, it is very urgent to meet new security requirements for multimedia communication. This paper focuses on a joint fingerprinting and encryption (JFE) scheme in the DWT domain with the purpose of protecting multimedia distribution. A multimedia encryption scheme is first to scramble the multimedia content before distribution, and the fingerprinting scheme is then introduced to provide further protection. The goal of the proposed content distribution scheme is to provide secure content communication and deter the device from illegally redistributing the content. The proposed method, to the best of our knowledge, is the first JFE method in the DWT domain for secure M2M communication. The use of fingerprinting along with encryption can provide a double-layer of protection to digital media. Theory analysis and experimental results show the effectiveness of the proposed scheme.

Because of the feature points can describe the local characteristics of the image in a reasonable manner, effective use of feature point of content based image retrieval become the current hot issues in the field of computer vision. Aiming at this problem, we put forward a kind of combination clustering based on feature points, a new method of image retrieval. The method includes the combination of feature point clustering algorithm and based on the algorithm of local color histogram construction strategy. With the existing and local color histogram retrieval method based on feature points, compared to the method can effectively solve the current method of feature point location information and feature point center relying too much on the problem. Subjectivity and as a result of the manual annotation image accuracy, the traditional image retrieval methods cannot meet the needs of the user. Multidimensional indexing technology is only from the perspective of how to improve the indexing algorithm to adapt to the large-scale database to consider a problem, in content-based image retrieval. Our research combines the advantages of the semantic analysis and kernel clustering which will enhance the performance of the traditional image retrieval methods and strengthen the feasibility of the algorithm.

The objective of the present paper is to bring a protection of information against new threats and attacks, by introducing security issues in the elements of the network, operating at low level, especially at layer 3. We propose to arm them with a new method of processing, while dispatching messages based on a Secure Load Sharing algorithm (SLS algorithm), that can bring a big help in stopping attacks based on sniffing, like MitM. We provide implementation tests that show the efficiency of this new concept to bring more traffic security, without any negative impact on routers operations.

Common solutions of fixture design for nonstandard part machining is clearly expatiated as to the automobile oil receiving tray drilling and milling are operated: set forth the fixture solution according to the form of the part and data of the machining equipment, explicit the structure composition of fixture, and calculate the fixture process data, which is basically needed for perfect clamping.

In this paper an attempt has been made to develop Predator- prey Models on interaction between Computer worms, Trojan horse and antivirus software inside a computer system. Five mathematical models are proposed to study the Predator-prey system inside a computer system. In mathematical model 1, the prey consists of uninfected files, whereas, the predator consists of computer worms. In mathematical model 2, the infected files constitute the prey and anti-virus software is the predator. In mathematical model 3, Effect of new or updated antivirus software on such computer worms which are quarantine or not completely recovered by the lower version of installed antivirus software in the system is studied which switches the rate of infection to zero. In mathematical model 4, Reactivation of computer worms when they are in the latent class is mathematically formulated. In mathematical model 5, we have attempt to develop and understand the recent attack of the Trojan horse Backdoor. Kihomchi and Trojan.Zbot!gen74 and its removal by newly available tool NPE.exe. The stability of the result is stated in terms of the Jacobian of the system and the basic reproduction number is also well defined for all models. Numerical methods and MATLAB are employed to solve and simulate the system of equations developed and analysis of the models gives remarkable exposure.

Aiming at the problem of the security of the authentication mode of WLAN wireless access certification, this paper proposes a WLAN wireless access protocol based on NFC certification. The protocol adopts the Diffie-Hellman algorithm established in the unreliable air channel as anonymous AES encryption NFC security tunnel of decryption algorithm, and then using the public key password authentication mode to carries The non anonymous authentication out for the user applying for certification, while determines the conformance certification sides AES key. By shading Petric network modeling, experimental simulation proves that the protocol can effectively resist illegal access to attack and eavesdropping attacks.

This paper proposes a zero-watermark scheme for identification photos based on QR code and visual cryptography. The method makes no changes to original images while embedding the QR code watermark. In order to ensure the security, we use Arnold transformation to scrambling the watermark. In the scheme, we use discrete wavelet transform and matrix norm computing to generate the invariant feature values against print-scan attacks. Then the VC scheme is applied to generate the secret image from the feature values and the disturbed watermark by using a codebook. In the extraction scheme, we get the secret image which is registered to certification authority and the feature values extracted from the examined image with VC scheme, and then apply inverse Arnold transformation to restore the watermark, finally repair position patterns of the QR code. The experimental results show that the proposed algorithm is effective and robust against attacks such as JPEG compression, add noise, multiple filters, scale, little angle rotation and crop, especial print-scan attacks.

The present paper introduces some clustering-based methodology applications to the anomaly and host-based intrusion detection. The proposed methodologies include fuzzy clustering, fuzzy clustering by local approximation of memberships and 2-means clustering algorithms. The presented anomaly-based frameworks are evaluated by simulation experiments and comparison of the obtained results.

Existing speech perceptual hashing authentication algorithms generally encrypt the perceptual hash value to protect the security of the algorithms. But under the principle of Kerckhoffs, the algorithm becomes transparent and fragile. And it can be seen that the secret key may be estimated when the number of times that reuses the secret key reache to a limit through the safety analysis of Shannon unicity distance. To solve these problems, we present a novel security authentication scheme of speech perceptual hashing based on the fuzzy commitment scheme (FCS). Firstly, in sender, the randomly selected BCH code word and the extracted perceptual hash value are sent to the Cmt() function to calculate and the final secure perceptual hash value (h(c),) can be obtained. Secondly, in receiver, the perceptual hash value is calculated again from the received speech information and then the calculated perceptual hash value with the received information  (commitment) are sent to the Decmt() function to calculate to get the h(c′). Finally, the h(c) and h(c′) are matched. The experimental results show that the proposed scheme effectively avoids the probability that an attacker obtains the plaintext/ciphertext pairs without affecting the performance of original algorithm, and at the same time it ensures the security of perceptual hashing algorithm.

Outer P-set, a new mathematic method of studying dynamic information, is a part of P-set theory. Based on the outer P-set theory, such conceptions have been put forward as principles of F -information concealing granulation degree, F -information concealing relationship, F -information concealing generation, concealing and concealing information recovery and definitions of outer-distance and concealing granulation degree. Their applications have been illustrated through simple examples in application.

A phishing attack is a method of tricking users into unknowingly providing personal and financial information or sending funds to attackers. The most common phishing attacks use some form of electronic messaging such as email to provide a link to what appears to be a legitimate site but is actually a malicious site controlled by the attacker. Phishing is a hybrid attack combining both social engineering and technological aspects and combatting phishing attacks requires dealing with both aspects

Cloud computing is an emerging computing paradigm in which resources of the computing infrastructure are provided as services over the web. Mobile device based academic monitoring system (AMS) are inherently open systems and thereby vulnerable to various attacks. This paper proposes a non-interactive security framework for mobile device based AMS, which is based on a security and privacy model with the tree permission hierarchy on Bilinear pairing. It has advantageous especially in the communication cost, which required non-interactive communications to establish session key right after the proper authentication. The proposed framework supports privacy based on anonymity, untraceability, and security of confidentiality, integrity, nonrepudiation, key management, and authentication and so on. Thereby, the framework could be used as a basic security building block for AMS over cloud services.

For a better predicting and analyses of robustness and security properties of some networks examples such as scale-free networks, small-world networks and real-world router-level Internet, models with different topologies and variable loads of the corresponding networks were founded firstly. Then, experiments of hybrid attacks ranging from complete random attacks where attack parameter tao=1 to complete targeted attacks where tao=0 were simulated. Results showed clearly that scale-free networks were robust to random failures and quite fragile to target attacks and the progression of networks fragility seems to have power-law distribution with workload parameter. For the NW small-world networks, attacks types are not so much sensitive to the robustness of the networks. What’s found here would be useful for design and implement of some real-world networks.

In this paper, we propose an effective watermarking scheme based on Radon transform for city image. The robustness against rotation attack is achieved using the translation property of the Radon transform. The Radon transform emphasizes and detects the linear characteristic to calculate the angle of image rotation. The watermark is a hologram generated by quantization based on the cover image. We used hologram quantization to spread the watermark information and analyze the cover image detail. The hologram is transformed by a discrete fractional random transform (DFRNT) with a random seed β. It makes the watermark security. The proposed method uses discrete wavelet transform (DWT) domain. DWT domain watermarking is robust to signal processing attacks. For improving the accuracy of detecting, we fix the center of image and swivel that the pixels of image boundary move 1 notch at a time. The proposed algorithm also robust to the spatial Effect attack. We have performed an intensive simulation to show the robustness in rotation of the proposed method.

Authentication is an important and basic security service for many network based applications, which allows the registered user access remote services after the validity of his/her identity is verified by the remote server. Password, smart card and biometric are three frequently used factors in authentication, and some remote user authentication schemes for different environments had been presented based on these factors by researchers. Recently, Baruah et al. pointed out the weaknesses of Mishra et al.’s three factors user authentication scheme for multi-server environments, and they proposed an enhanced scheme. They claimed that their scheme has many security features and can resist some common attacks. However, based on our analysis, Baruah et al.’s scheme cannot resist stolen smart card attack, cannot protect user’s anonymity, and it is also vulnerable to Denial of Service attack. In this paper, an enhanced three factors user authentication scheme for multi-server environments based on fuzzy extractor technology is proposed, and the analysis show that the proposed scheme is more security and efficient than other related schemes.