- 期刊
Evaluation of Distributed File Integrity Analyzers in the Presence of Tampering
並列摘要
In this paper, the Collaborative Object Notification Framework for Insider Defense using Autonomous Network Transactions (CONFIDANT) is evaluated in the presence of tampering. CONFIDANT's mitigation capabilities are assessed and compared with conventional file integrity analyzers such as AIDE and tripwire. The potential of distributed techniques to address certain tampering modes such as Pacing, Altering Internal Data, and File Juggling are discussed. To assess capabilities, a variably-weighted tampering mode exposure metric scheme is developed and utilized. Results indicate a range of vulnerabilities for which mitigation techniques such as Encapsulation, Redundancy, Scrambling, and mandatory obsolescence can increase robustness against challenging exposures, including various insider tampering risks.
被引用紀錄
延伸閱讀
- AIRLANGGA, G., & LIU, A. (2022). Investigating Software Domain Impact in Requirements Quality Attributes Prediction. Journal of Information Science and Engineering, 38(2), 295-316. https://doi.org/10.6688/JISE.202203_38(2).0002
- 許瑋麟、郭仁宗、何玉菁、賴志明(2016)。Investigating the Determinants of Information Security Management Systems Diffusion。慈濟科技大學學報,(2),77-95。https://www.airitilibrary.com/Article/Detail?DocID=P20160218001-201603-201606290008-201606290008-77-95
- 汪宏峻、曾守正(2006)。Design and Implementation of a Secure File Synchronization and Backup System。電腦學刊,17(1),9-29。https://www.airitilibrary.com/Article/Detail?DocID=19911599-200604-17-1-9-29-a
- Chang, S., Yu, K., & Liu, J. (2008). Advanced Secure Information Retrieval Technology for Multilayer Information Extraction. Journal of Nanomaterials, 2008(), 424-432. https://doi.org/10.1155/2008/589532
- 張相唐(2008)。Design and Implementation of an IMAP-based File System〔碩士論文,國立交通大學〕。華藝線上圖書館。https://doi.org/10.6842/NCTU.2008.00033