14 Jan
2020
14 Jan
'20
10:27 a.m.
Dear all,
We have submitted the paper „Technical Threat Intelligence Analytics: What and How to
Visualize for Analytic Process“ to the 24th International Conference ELECTRONICS 2020
Abstract: Visual Analytics uses data visualization methods for enabling compelling
analysis of data by engaging graphical and visual representation. In the domain of
cybersecurity, convincing visual representation of data enables to ascertain valuable
observations that allow the domain experts to construct efficient cyberattack mitigation
strategies and provide useful decision support. In this paper, we present a survey of the
visual analytics tools and methods in the domain of cybersecurity. We explore and discuss
Technical Threat Intelligence visualization tools using the Five Question Method. We
conclude the analysis of the works using Moody’s Physics of Notations, and VIS4ML ontology
as a methodological background of visual analytics process.
This paper is still under evaluation.
If it gets accepted, we will acknowledge SPARTA.
Best,
Algimantas Venčkauskas
Kauno technologijos universitetas
20 Apr
20 Apr
7:53 a.m.
Dear all,
We are glad to inform you that our paper entitled "Technical Threat Intelligence
Analytics: What and How to Visualize for Analytic Process" is accepted in the 24th
International Conference ELECTRONICS 2020 and for publication in the IEEE Conference
Proceedings (ISBN 978-1-7281-5868-6)).
We have acknowledge the paper to SPARTA.
Best,
Algimantas Venčkauskas
Kauno technologijos universitetas
21 Apr
21 Apr
7:35 a.m.
Dear all,
We have submitted the paper „LITNET-2020: an annotated real-world network flow dataset for
network intrusion detection“ to the journal Electronics (ISSN 2079-9292)
Abstract: Network intrusion detection is one of the main problems in ensuring security of
modern computer networks, wireless sensor networks (WSN) and Internet-of-Things (IoT). Do
develop efficient network intrusion detection methods, the realistic and up-to-date
network flow datasets are required. Despite several recent efforts, there is still the
lack of real-world network-based datasets which can capture modern network traffic cases
and provide examples of many different types of network intrusions. To alleviate this
need, we present LITNET-2020, a new annotated network benchmark dataset obtained from the
real-world academic network. The dataset presents real-world examples of normal and
under-attack network traffic. We describe and analyze 85 network flow features of the
dataset and 12 attack types. The presented dataset is made freely available for research
purposes.
This paper is still under evaluation.
If it gets accepted, we will acknowledge SPARTA.
Best,
Algimantas Venčkauskas
Kauno technologijos universitetas
4 May
4 May
6:21 a.m.
New subject: [SPARTA - bodies.dissemination-committee] Conference Paper Submission
Dear all,
we have submitted a paper "A Large-Scale Analysis of IoT Firmware Version
Distribution in the Wild“ for the 41st International Conference on Information Systems,
that (might) take place in Hyderabad, India in December. If it gets accepted it will
acknowledge SPARTA.
Best
Michael Friedewald
2 Sep
2 Sep
9:54 a.m.
Hello,
We have submitted a paper: “Security Risk Management in Autonomous Driving Vehicles:
Architecture Perspective” to NordSec2020 <https://nordsec2020.on.liu.se>.
Co-authors: Rando Tõnisson, Raimundas Matulevičius, and Abasi-Amefon O. Affia (University
of Tartu)
Abstract: Security risk management is an important activity in engineering autonomous
vehicles (AV). For autonomous driving service providers, it is necessary to explain what
risks exist in the system and how they could be mitigated. Security risk management
methods allow system stakeholders to manage the security risks within their systems.
Unfortunately, an accepted standard to carry out security risk management, specifically
for autonomous vehicles, is not presented in the reviewed literature. In this paper, we
explore how to protect AV systems against the security risks and focus on the
architectural perspective of such systems. To target the problem we security risk
management (ISSRM) and operationally critical threat, asset and vulnerability evaluation
(OCTAVE allegro) methods to define and estimate the AV protected asset, risk and risk
treatment means. Our approach consists of a literaure study, case analysis, and interview
of AV experts. The finding can be helpful to the AV engineers and security analysis to
support the rationale for the decisions about the AV security investment.
The research done is in the scope of WP6, task 6.5. If paper is accepted we will
acknowledge the SPARTA project.
Best greetings,
Raimundas
4 Dec
4 Dec
10:55 p.m.
New subject: [SPARTA - bodies.dissemination-committee] article submission
Dear all,
Today we are submitting a paper “Security Risk Estimation and Measurement in Autonomous
Driving Vehicles” to the CAiSE 2021 conference <https://caise21.org>. The paper’s
abstract is below. If accepted we will acknowledge SPARTA.
The authors are Abasi-amefon O. Affia, Raimundas Matulevičius and Rando Tõnisson from the
University of Tartu, Estonia.
All the best,
Raimundas
%———————%———————%———————
Abstract: Development of secure, intelligent information system (IIS) challenges
organisation's business goals and budget constraints. This could potentially results
in a limited mitigation of security risks. Furthermore, for the autonomous driving service
providers, it becomes necessary to explain security risk impact and its mitigation means.
In this paper, we explore how to protect components of the autonomous vehicle system. We
employ the security risk management (ISSRM) and operationally critical threat, asset and
vulnerability evaluation (OCTAVE allegro) methods to define and estimate the AV protected
assets, risks and risk treatment decisions. In the context of IIS, our findings can
support the AV engineers and security analysts when making decisions regarding security
investment in the AV systems.
--------
Information Security Research Group: <https://infosec.cs.ut.ee>
--------
Dr. Raimundas Matulevičius,
Professor of Information Security
Institute of Computer Science
University of Tartu
Narva mnt 18,
51009 Tartu
Estonia
2 Feb
2 Feb
7:10 a.m.
New subject: [SPARTA - bodies.dissemination-committee] article submission
Dear all,
We are submitting a paper “Ensemble Based Classification using Neural Networks and Machine
Learning Models for Windows PE Malware Detection” to the journal Electronics MDPI. The
paper’s abstract is below. If accepted we will acknowledge SPARTA.
The authors are Robertas Damaševičius, Algimantas Venčkauskas, Jevgenijus Toldinas,
Šarūnas Grigaliūnas.
All the best,
Algimantas Venčkauskas
______________________________________________________
Abstract: Security of information is one of the greatest challenges facing organizations
and institutions. Cybercrime is rising in frequency and magnitude in recent years with new
ways to steal, change, destroy information or disable the information system appearing
every day. One of the types of penetration into the information system where confidential
information is processed is malware. An attacker injects malware into a computer system,
after which he has full or partial access to critical information in the information
system. This paper proposes an ensemble classification-based methodology for malware
detection. The first-stage classification is performed by a stacked ensemble of dense
(fully connected) and convolutional neural networks (CNN), while the final stage
classification is performed by a meta-learner. For a meta-learner, we explored and
compared 14 classifiers. For a baseline comparison, 13 machine learning methods are used:
K-Nearest Neighbors, Linear Support Vector Machine (SVM), RBF SVM, Random Forest,
AdaBoost, Decision Tree, ExtraTrees, Linear Discriminant Analysis, Logistic, Neural Net,
Passive Classifier, Ridge Classifier, and Stochastic Gradient Descent classifier. We
present the results of experiments performed on the Classification of Malware with PE
headers (ClaMP) dataset. The best performance was achieved by an ensemble of five dense
and CNN neural networks, and the ExtraTrees classifier as a meta-learner.
5 Jul
5 Jul
12:37 p.m.
New subject: [SPARTA - bodies.dissemination-committee] article submission
Dear all,
We are submitting a paper “Method for Dynamic Service Orchestration in the Fog Computing”
to the journal Electronics MDPI. The paper’s abstract is below. If accepted we will
acknowledge SPARTA.
The authors are Nerijus Morkevičius, Algimantas Venčkauskas, Nerijus Šatkauskas and
Jevgenijus Toldinas.
All the best,
Algimantas Venčkauskas
______________________________________________________
Abstract: Fog computing is meant to deal with the problems which Cloud computing cannot
solve alone. As the Fog is closer to a user, it can improve some very important QoS
characteristics, such as latency and availability. One of the challenges in Fog
architecture is heterogeneous constrained devices and dynamic nature of the Edge layer,
which requires a dynamic service orchestration providing efficient service placement
inside Fog nodes. An optimization method is needed to ensure the required level of QoS
while requiring minimal resources from Fog and Edge devices, thus ensuring the longest
lifecycle of the whole IoT system. A two-stage multi-objective optimization method for
finding best placement of the services among available Fog nodes is presented in this
paper. A Pareto set of non-dominated possible service distributions is found using the
Integer Multi-Objective Particle Swarm Optimization method. Then the Analytical Hierarchy
Process is used to choose the best service distribution according to the application
specific judgment matrix. Illustrative scenario with experimental results is presented to
demonstrate the characteristics of proposed method.
2 Mar
2 Mar
1:05 p.m.
New subject: [SPARTA - bodies.dissemination-committee] article submission
Dear all,
I am happy to announce that our paper is accepted at the CAiSE 2021 Forum and will be
printed in the Forum post-proceedings.
We will acknowledge SPARTA and we will share the CRC of the paper once ready (a bit later
this year :-))
Best greetings,
Raimundas
%———————%———————%———————-
On 27. Feb 2021, at 22:25, CAiSE 2021
<caise21@easychair.org<mailto:caise21@easychair.org>> wrote:
Dear Abasi-Amefon Affia, Raimundas Matulevicius, Rando Tonisson
Thank you for submitting the paper
"Security Risk Estimation and Management in Autonomous Driving Vehicles"
to CAiSE 2021.
<...>
there was consensus that your paper fits well into the objectives of the CAiSE Forum,
which is also a part of the CAiSE conference. So, we happily invite you to submit your
paper for presentation at the CAiSE Forum. https://caise21.org/caise-forum/
<…>
%———————%———————%———————
On 5. Dec 2020, at 00:55, Raimundas Matulevicius
<raimundas.matulevicius@ut.ee<mailto:raimundas.matulevicius@ut.ee>> wrote:
Dear all,
Today we are submitting a paper “Security Risk Estimation and Measurement in Autonomous
Driving Vehicles” to the CAiSE 2021 conference
<https://caise21.org<https://caise21.org/>>. The paper’s abstract is below. If
accepted we will acknowledge SPARTA.
The authors are Abasi-amefon O. Affia, Raimundas Matulevičius and Rando Tõnisson from the
University of Tartu, Estonia.
All the best,
Raimundas
%———————%———————%———————
Abstract: Development of secure, intelligent information system (IIS) challenges
organisation's business goals and budget constraints. This could potentially results
in a limited mitigation of security risks. Furthermore, for the autonomous driving service
providers, it becomes necessary to explain security risk impact and its mitigation means.
In this paper, we explore how to protect components of the autonomous vehicle system. We
employ the security risk management (ISSRM) and operationally critical threat, asset and
vulnerability evaluation (OCTAVE allegro) methods to define and estimate the AV protected
assets, risks and risk treatment decisions. In the context of IIS, our findings can
support the AV engineers and security analysts when making decisions regarding security
investment in the AV systems.
--------
Information Security Research Group:
<https://infosec.cs.ut.ee<https://infosec.cs.ut.ee/>>
--------
Dr. Raimundas Matulevičius,
Professor of Information Security
Institute of Computer Science
University of Tartu
Narva mnt 18,
51009 Tartu
Estonia
1558
days inactive
2096
days old
bodies.dissemination-committee@internal.sparta.eu
8 comments
3 participants
participants (3)
-
Algimantas Venckauskas -
Friedewald, Michael -
Raimundas Matulevicius