Throughout the history of mankind, energy security has been always seen as a means of protection from disruptions of essential energy systems. The idea of protection from disorders emerged from the process of securing political and military control over energy resources to set up policies and measures on managing risks that affect all elements of energy systems. The various systems placed in a place to achieve energy security are the driving force towards the energy innovations or emerging trends (...) in the energy sector. Our paper discusses energy security status and innovations in the energy sector in European Union (EU). We analyze the recent up-to-date developments of the energy policy and exploitation of energy sources, as well as scrutinize the channels of energy streaming to the EU countries and the risks associated with this energy import. Moreover, we argue that the shift to the low-carbon production of energy and the massive deployment of renewable energy sources (RES) might become the key issue in ensuring the energy security and independency of the EU from its external energy supplies. Both RES, distributed energy resources (DER) and “green energy” that will be based on the energy efficiency and the shift to the alternative energy supply might change the energy security status quo for the EU. (shrink)

The authors of the scientific monograph have come to the conclusion that ensuring food security during martial law requires the use of mechanisms to support agricultural exports, diversify logistics routes, ensure environmental safety, provide financial and marketing support. Basic research focuses on assessment the state of agricultural producers, analysing the financial and accounting system, logistics activities, ensuring competitiveness, and environmental pollution. The research results have been implemented in the different decision-making models during martial law, international logistics management, digital audit, (...) agricultural lending, integrated marketing system, risk management and diversification of Ukrainian agricultural exports. The results of the study can be used in the developing of food security policies, programmes and strategies, agricultural production development, decision-making at the level of ministries and agencies that regulate food security management processes. The results can also be used by students and young scientists in the educational process and conducting scientific research on food security during martial law and Ukraine’s recovery economy after the victory. (shrink)

In this paper, I argue that an account of security as a basic human right must incorporate moral security. Broadly speaking, a person possesses subjective moral security when she believes that her basic interests and welfare will be accorded moral recognition by others in her community and by social, political, and legal institutions in her society. She possesses objective moral security if, as a matter of fact, her interests and welfare are regarded by her society as (...) morally important—for example, when violent crimes against her being taken to warrant the same punishment and condemnation as equivalent crimes against others. Moral security, thus characterized, is an essential part of what it is to be secure as a human person, and any right to security must include it. In the first part of the paper I critique alternative narrower accounts of the right to security, before defending my account of moral security in Section 2. Section 3 explores how acts of racialized and gendered violence are attacks on the moral security of the victims and of all members of the groups to which the victims belong. Broader structural and institutional forms of racial and sexual discrimination further compound the impact of such acts on moral security. Understanding how racial and sexual discrimination and violence are attacks on moral security offers a new way of thinking about the scope and urgency of a state’s duty to combat racial and sexual discrimination, an issue I explore in the final section of the paper. -/- . (shrink)

This article addresses a few moments in the evolution of human security law in Iraq, focusing in particular on the Coalition Provisional Authority, the new Iraqi Constitution, Iraqi High Tribunal (successor to the Iraqi Special Tribunal), and the International Criminal Court. It synthesizes the results of some existing research on ongoing impunity for certain crimes against political candidates, journalists, anti-corruption activists, and ethnic and religious minorities, a situation which may have tainted Iraq’s transition to a more democratic republic, while (...) aggravating other conflicts, such as those in Syria. In theory, the institutions of human and national security can help reconcile peoples whose tenuous unity had been shattered in wartime. The sometimes competing priorities and policies of Iraqi politicians, civil society groups, and judges resulted in swift justice for Iraqi officials responsible for mass killings involving Shi’a Arab, Kurdish, and other victims, but a lack of justice for other segments of the population. The emphasis of some claims of injury over others may have "reenchanted" some sectors of Iraqi society with the state and its institutions, while alienating others and contributing to ruptures in the social fabric. The Coalition Provisional Authority, Iraqi leaders, and international community ensured that the high-profile proceedings against former regime officials would not be accompanied or followed by others that some Iraqis might perceive as being as pressing as those of the Iraqi High Tribunal, relating to the impact of sanctions and aerial bombardment, the legality of Iraq's occupation, torture, etc. (shrink)

Cloud security automation has become increasingly vital as organizations scale their operations in the cloud. As cyber threats become more sophisticated and frequent, traditional security measures are no longer enough to effectively protect cloud environments. This paper explores the role of Artificial Intelligence (AI) and Machine Learning (ML) in automating cloud security processes. By integrating AI and ML, organizations can proactively detect, respond to, and mitigate potential security threats in real-time. This paper reviews current applications of (...) AI and ML in cloud security, the benefits of automation, and the challenges organizations face when integrating these technologies into their cloud environments. (shrink)

Perceptually secured knowledge consists of beliefs that amount to knowledge just because they are based on suitable perceptual states. Relationism about the ground of perceptually secured knowledge is the view that if a perceptual state can make a belief based on it amount to knowledge, then it can do that because it constitutes an appropriate kind of relational state, e.g., a state of perceptual acquaintance. I explore the prospects of both maintaining that some beliefs amount to perceptually secured knowledge and (...) developing a relationist account of their ground. (shrink)

As businesses increasingly move to the cloud, they face growing challenges in ensuring both security and compliance. The complexity arises from the need to protect sensitive data while adhering to a wide range of regulatory requirements, such as GDPR, HIPAA, and industry-specific standards. This paper explores the intersection of cloud security and compliance, focusing on the challenges organizations face when navigating these complexities. We discuss the shared responsibility model, key compliance frameworks, and strategies to integrate security and (...) compliance efforts. By addressing the challenges of maintaining secure and compliant cloud environments, the paper provides practical guidance for organizations to build effective cloud security strategies while meeting regulatory obligations. (shrink)

: As cloud-native architectures continue to evolve, microservices have become the foundation for scalable and resilient applications. However, the decentralized nature of microservices introduces significant security challenges, including service-to-service communication security, identity management, and traffic control. Service mesh technologies, such as Istio, Linkerd, and Consul, provide a powerful solution by offering decentralized security enforcement, mutual TLS (mTLS) encryption, fine-grained access control, and observability without modifying application code. This paper explores how service meshes enhance microservices security by (...) implementing zero-trust policies, automatic traffic encryption, and service authentication mechanisms. Through the integration of policy-based access control, workload identity, and anomaly detection, service mesh architectures significantly reduce the risk of unauthorized access, lateral movement attacks, and data breaches. Additionally, this study highlights best practices for deploying secure service meshes in cloud-native environments, ensuring compliance with industry security standards. The findings demonstrate that adopting a service mesh improves security posture while maintaining agility and performance in microservices-based applications. (shrink)

Scalability, efficiency, and security had been a persistent problem over the years in data mining, several techniques had been proposed and implemented but none had been able to solve the problem of scalability, efficiency and security from cloud computing. In this research, we solve the problem scalability, efficiency and security in data mining over cloud computing by using a restful web services and combination of different technologies and tools, our model was trained by using different machine learning (...) algorithm, and finally using different validation and cross-validation methods to compare and validate our results. We build, train, test and deploy our model by restful API services which can be called through an endpoint, and with very high accuracy and huge success. (shrink)

The importance of Big Data as a foundational component of the AI and ML landscape is not going away anytime soon. As a result, the past fifteen years have seen a tremendous investment in Big Data research. The purpose of this literature review is to compile the most recent results from Big Data studies conducted over the past fifteen years. The study will address questions about the main applications of Big Data analytics, the main challenges and limitations encountered by researchers, (...) and the present and future state of Big Data studies. The review follows a predetermined procedure that automatically examines five major digital libraries. Among the more recent branches of computer science is the study of large amounts of data. Social media, online shopping, blogs, financial institutions, healthcare providers, transactions, websites, applications, opinion forums, and a host of other sources all contribute to the accumulation of data. Various businesses, notably healthcare, make excellent use of it after processing. For data processing and analysis in the industrial sector, these massively generated datasets are indispensable. In order to investigate the value and potential of big data in healthcare and industrial processing applications, this article surveys the published works of numerous writers who have helped with data collecting, analysis, processing, and viewing. Data cleansing, missing value analysis, and outlier analysis are some of the opportunities and problems highlighted, in addition to the benefits and applications of big data. Outlier detection models, as well as methods for detecting and cleaning unclean data, were also suggested in this comprehensive review. (shrink)

This article focuses on the so-called “Area of Freedom, Security and Justice” (ASFJ), namely the policy field of the European Union (EU) that covers judicial and police cooperation, migration and asylum policies and the control of external borders. The article explores how the AFSJ has emerged and how, within it, the relationship between freedom and security has evolved over time and brought about a shift towards a “Security Union”.

This research presents a novel and efficient public key cryptosystem known as the Enhanced Schmidt Samoa (ESS) cryptosystem, proposed to safeguard the data of a single owner in cloud computing environments. Data storage is a one-time process in the cloud, while data retrieval is a frequent operation. Experimental results demonstrate that the ESS cryptosystem offers robust data confidentiality in the cloud, surpassing the security provided by traditional cryptosystems. The research also introduces a secure cloud framework designed to accommodate both (...) individuals and organizations accessing applications and data in the cloud. While individual users may generate and share data, organizations often involve multiple users in data sharing to support their business processes. In these scenarios, multi-user data ownership and access management become critical, requiring secure sharing of cryptographic keys among the authorized users. To address these issues and ensure data confidentiality in multi-user cloud environments, the Improved Secure Cloud Data Storage Framework (ISCDSF) is introduced. This research not only enhances data security but also provides a comprehensive framework for secure data sharing in the cloud, catering to the needs of both individual users and organizations. (shrink)

Traditional encryption methods provide a layer of security, but they often lack the robustness needed to address emerging threats. This paper introduces an optimized framework for secure cloud storage that integrates data encryption, decryption, and dispersion using cutting-edge optimization techniques. The proposed model enhances data security by first encrypting the data, then dispersing it across multiple cloud servers, ensuring that no single server holds the complete dataset. Decryption occurs only when the dispersed data fragments are reassembled, which adds (...) an additional layer of security. We also explore various optimization algorithms to improve the efficiency of encryption and dispersion processes, thereby reducing computational overhead while maintaining high security. The implementation of this framework is evaluated on multiple cloud platforms, demonstrating its effectiveness in safeguarding data with minimal performance impact. (shrink)

What makes safety claims about general purpose AI systems such as large language models trustworthy? We show that rather than the capabilities of security tools such as alignment and red teaming procedures, it is security practices based on these tools that contributed to reconfiguring the image of AI safety and made the claims acceptable. After showing what causes the gap between the capabilities of security tools and the desired safety guarantees, we critically investigate how AI security (...) practices attempt to fill the gap and identify several shortcomings in diversity and participation. We found that these security practices are part of securitization processes aiming to support (commercial) development of general purpose AI systems whose trustworthiness can only be imperfectly tested instead of guaranteed. We conclude by offering several improvements to the current AI security practices. (shrink)

The philosophical literature on personal relationships is focused on dyads: close relationships between just two people. This paper aims to characterise the value of looser and larger relational networks, particularly from the perspective of liberal political theory. We focus on relational networks' value vis-a-vis the important good of felt security. We begin by characterising felt security and analysing how felt security is produced within dyads. We highlight the ambivalent nature of dyadic relationships as a source of felt (...) security. We then theorise relational networks, explaining how they too can provide felt security. We explore three unappreciated benefits that arise when felt security is garnered from a network, rather than from a dyad. These benefits take liberal political theory as their starting point. We close by considering the implications - for both individual action and institutional design - of using relational networks as a source of felt security. (shrink)

In the pharmaceutical and healthcare industries, the secure handling of sensitive drug component data is crucial. This project presents a comprehensive system for the secure storage, encryption, and controlled access of drug datasets using modern encryption techniques and cloud-based storage. Users can upload drug-related CSV files through a web interface, which are then processed and encrypted selectively before being uploaded to Amazon S3. Each file is associated with a unique encryption key, which is securely stored and can only be retrieved (...) by authorized users via password-based authentication. The backend is built with Spring Boot, implementing robust encryption logic, metadata storage, and integration with AWS S3. The frontend (developed using Next.js) enables users to upload, view, and manage their encrypted files in an intuitive interface. Key features of the system include role-based access control, data confidentiality, and secure key retrieval mechanisms, ensuring that only legitimate users can decrypt and access sensitive data. This project demonstrates a scalable and secure solution for privacy preserving storage of drug components, making it highly relevant in scenarios where data confidentiality and regulatory compliance are critical. It also lays the groundwork for future integration of machine learning or data mining pipelines once decryption is authorized, ensuring both security and analytical capabilities. (shrink)

As cloud-native architectures continue to evolve, microservices have become the foundation for scalable and resilient applications. However, the decentralized nature of microservices introduces significant security challenges, including service-to-service communication security, identity management, and traffic control. Service mesh technologies, such as Istio, Linkerd, and Consul, provide a powerful solution by offering decentralized security enforcement, mutual TLS (mTLS) encryption, fine-grained access control, and observability without modifying application code. This paper explores how service meshes enhance microservices security by implementing (...) zero-trust policies, automatic traffic encryption, and service authentication mechanisms. Through the integration of policy-based access control, workload identity, and anomaly detection, service mesh architectures significantly reduce the risk of unauthorized access, lateral movement attacks, and data breaches. Additionally, this study highlights best practices for deploying secure service meshes in cloud-native environments, ensuring compliance with industry security standards. The findings demonstrate that adopting a service mesh improves security posture while maintaining agility and performance in microservices-based applications. (shrink)

As businesses and individuals increasingly rely on cloud computing for a vast array of services, the need for robust cloud security becomes ever more critical. Cloud environments offer unparalleled flexibility, scalability, and cost-effectiveness but simultaneously introduce a complex security landscape that poses significant challenges. The importance of safeguarding data, applications, and systems from cyber threats in the cloud is paramount to maintaining the confidentiality, integrity, and availability of digital assets. This paper explores the evolving landscape of cloud (...) class='Hi'>security, identifying the risks and vulnerabilities inherent in cloud computing and the key strategies and technologies used to mitigate them. We introduce a comprehensive framework for cloud security that incorporates encryption, access management, threat detection, and compliance adherence. Emerging technologies like Artificial Intelligence (AI), Machine Learning (ML), and blockchain are also discussed, showcasing their role in transforming cloud security practices. By analyzing best practices and future trends, this paper provides a roadmap for securing the digital frontier in an era increasingly defined by cloud computing. (shrink)

The jurisprudence under international human rights treaties has had a considerable impact across countries. Known for addressing complex agendas, the work of expert bodies under the treaties has been credited and relied upon for filling the gaps in the realization of several objectives, including the peace and security agenda. -/- In 1982, the Human Rights Committee (ICCPR), in a General Comment observed that “states have the supreme duty to prevent wars, acts of genocide and other acts of mass violence (...) ... Every effort … to avert the danger of war, especially thermonuclear war, and to strengthen international peace and security would constitute the most important condition and guarantee for the safeguarding of the right to life.” Over the years, all treaty bodies have contributed in this direction, endorsing peace and security so as “to protect people against direct and structural violence … as systemic problems and not merely as isolated incidents …”. A closer look at the jurisprudence on peace and security, emanating from treaty monitoring mechanisms including state periodic reports, interpretive statements, the individual communications procedure, and others, reveals its distinctive nature. (shrink)

In a recent study by Cai et al. about water shortages in Beijing-Tianjin-Hebei urban areas, virtual water has become the central concept of the groundwater security strategy by suggesting increasing imports of water-intensive agricultural products instead of utilizing the depleted groundwater resources for production. However, despite reviewing the content, we could not see how the authors discussed the households’ economic and financial issues from both production and consumption perspectives.

Cloud computing has revolutionized the way businesses store and process data, offering flexibility, scalability, and cost efficiency. However, with these benefits come significant security risks. Cloud environments introduce unique vulnerabilities that organizations must address to ensure data protection and maintain compliance. This paper explores common cloud security vulnerabilities, methods for identifying risks, and strategies for mitigating them. By reviewing existing literature and best practices, the study emphasizes the importance of proactive security measures in preventing data breaches, unauthorized (...) access, and service disruptions. (shrink)

Freedom and security are often portrayed as things that have to be traded off against one another, but this view does not capture the full complexity of the freedom-security relationship. Rather, there seem to be four different ways in which freedom and security connect to each other: freedom can come at the cost of security, security can come at the cost of freedom, freedom can work to the benefit of security, and security can (...) work to the benefit of freedom. This paper analyses each of these connections in turn. It shows that particular understandings of freedom can help us to see particular connections between freedom and security. The practical examples used to illustrate these connections are drawn from the context of the COVID-19 pandemic. It will be suggested that, in the face of challenges such as this one, taking into account all four connections between freedom and security can ultimately help decision-makers in upholding both. (shrink)

Food security brings a number of benefits to humanity from which nobody can be excluded and which can be simultaneously enjoyed by all. An economic understanding of the concept sees food security qualify as a global public good. However, there are four other ways of understanding a public good which are worthy of attention. A normative public good is a good from which nobody ought to be excluded. Alternatively, one might acknowledge the benevolent character of a public good. (...) Others have argued that public goods demand being public in the sense of being visible to all. Finally, it has also been argued that public goods are those goods which need joint action to be produced and maintained. This chapter discusses these five understandings of the public good in relation to food security and highlights the advantage of assessing policies from each of these perspectives. (shrink)

Cloud security remains a top concern for enterprises. This study introduces AI Security, a risk governance framework integrating AI, DevSecOps, and predictive analytics to enhance compliance automation and threat intelligence in cloud environments.

Cloud computing has revolutionized how businesses store and access data, but it also introduces new risks. Securing data in the cloud requires a combination of strategic approaches, robust policies, and technological solutions. This paper explores best practices for safeguarding cloud environments, including encryption, access controls, regular security audits, and the implementation of a zero-trust architecture. By identifying key risks and offering practical solutions, this research provides a roadmap for businesses to enhance cloud security and mitigate potential threats.

COVID-19 is the new standard for forced changes in the workforce, forcing the adoption of remote and hybrid work environments globally. It was in the period of this rapid adoption of distributed work environments that new opportunities for flexibility and productivity were opened up, but fundamental weaknesses of conventional notions of cybersecurity were unveiled. As employees connect to company networks from a plethora of different places and different types of devices, situations were complex at the corporate level to ensure that (...) security measures remained adequately stringent. New threats came to the fore, such as endpoint devices that have added more risks since they were unsecured home networks and the use of personal devices (BYOD). All these changes raised the concern of a new security model for the enterprise whereby new, fresh methods of dealing with the issue emphasize strategies which accommodate the change, and we affirm the need to put in place security architecture that will help protect the valuable enterprise assets. This paper looks at the new challenges of defending the widely dispersed employee base and offers an integrated solution for protecting the modern enterprise. To address risks inherent in the current working environments, the framework seeks to address concerns of identity-centric security and zero-trust and apply emerging technologies in threat intelligence. Using knowledge acquired by current cyber assaults and actual programs, the research provides numerous substantial approaches to countering current and potential cyber threats. The research also identifies the main recommendations for enterprises operating in this environment, including the need for active management of risks and constant adaptation to threats. (shrink)

Since security threats in IoT-enabled smart cities may not appear clear and present to detection mechanisms, efforts have been made to use artificial intelligence methods for anomaly detection. Anomaly detection has been performed using unsupervised learning approaches (Autoencoders, GANs, One Class SVMs) in turn, with these instances considered security threats. In addition, an element for patches and traffic redirection in real time is included in the framework. Results show that the AI detection in general has much more (...) class='Hi'>security resilience, decreasing possible attack vectors. This makes the integration of various features like AI, blockchain, and IDS for a solid IoT security a must. Since security threats in IoT-enabled smart cities may not appear clear and present to detection mechanisms, efforts have been made to use artificial intelligence methods for anomaly detection. Anomaly detection has been performed using unsupervised learning approaches (Autoencoders, GANs, One-Class SVMs) in turn, with these instances considered security threats. In addition, an element for patches and traffic redirection in real time is included in the framework. Results show that the AI detection in general has much more security resilience, decreasing possible attack vectors. This makes the integration of various features like AI, blockchain, and IDS for a solid IoT security a must. (shrink)

Scalability, efficiency, and security had been a persistent problem over the years in data mining, several techniques had been proposed and implemented but none had been able to solve the problem of scalability, efficiency and security from cloud computing. In this research, we solve the problem scalability, efficiency and security in data mining over cloud computing by using a restful web services and combination of different technologies and tools, our model was trained by using different machine learning (...) algorithm, and finally using different validation and cross-validation methods to compare and validate our results. We build, train, test and deploy our model by restful API services which can be called through an endpoint, and with very high accuracy and huge success. (shrink)

In the context of the digital economy development, the priority component of the economic security of an enterprise is changing from material to digital, constituting an independent element of enterprise security. The relevance of the present research is driven by the need to solve the issue of modernizing the economic security of the enterprise taking into account the new risks and opportunities of digitalization. The purpose of the academic paper lies in identifying the features of preventing internal (...) and external negative influences (threats) in order to guarantee the effective and stable functioning and dynamic social development of the enterprise in the context of digitalization. The research methods are as follows: general scientific research methods, in particular, logical analysis, theoretical substantiation, methods of induction and deduction, formalization and generalization, statistical observation. Results. It has been proposed to introduce the concept of “digital security of the enterprise” for replacing the concept of “information component of economic security” in order to bring the terminology in line with new economic realities. The implementation of the “black box” model has made it possible to identify the latest risks and threats to the economic security of an enterprise within the conditions of the digitalization that differs from the existing ones. The assessment of enterprises’ digital security of the European Union member states has revealed that the digital security level does not depend on the size of the country, however, it is influenced by the institutional environment (in particular, digital development tools in the EU) and the size of enterprises. Also, within the research framework, an assessment of the digital security level of enterprises in the context of digitalization has been proposed. In order to characterize enterprises by the level of digital security, a calculation procedure using the coefficient method has been proposed. (shrink)

This thesis examines the key moral principles that should govern decision-making by police and military when using lethal force. To this end, it provides an ethical analysis of the following question: Under what circumstances, if any, is it morally justified for the agents of state-sanctioned security institutions to use lethal force, in particular the police and the military? Recent literature in this area suggests that modern conflicts involve new and unique features that render conventional ways of thinking about the (...) ethics of armed conflict, and the use of lethal force, as inadequate or redundant. In particular, there is an increased concern with the moral difficulties created by “non-standard” cases. This is where the police or military are obliged to operate outside their conventional contexts. In such non-standard cases, on what moral basis can (or should) state actors – especially the police and military – use lethal force? One approach argues that there is nothing morally exceptional about the use of lethal force by police or military. This says the only available moral justification for using lethal force is killing in self-defence or defence of others. In contrast, I use an institutional approach to develop a moral framework for the state’s morally exceptional use of lethal force. The institutional approach is concerned with the ends (telos) or purpose of a social institution. It says that the moral purpose of a social institution alters the moral responsibilities of its agents; what is referred to as role morality. My analysis demonstrates that there is an important moral distinction between justified killing in self-defence and state-sanctioned uses of lethal force. My claim is that police and military uses of lethal force are not morally justified in the same way as the average person’s use of lethal force (i.e. self-defence or defence of others). Instead, I argue that the state-sanctioned institutional role of police and military give these state actors special moral duties, and therefore exceptional moral justification, for using lethal force. I argue that the institutional end of the police is the preservation of public safety. This includes using lethal force where it is necessary to protect life and prevent serious injury to jurisdictional inhabitants. In contrast, a morally responsible state uses military force to defend the “common good.” That is, when it is necessary to defend the peaceful functioning of a state from armed threats or other forms of political violence. I then conclude that non-standard cases require the addition of jus ad vim (or the just use of military force short-of-war) as a hybrid element to the moral framework for the state-sanctioned use of lethal force. This provides a better way of applying ethics to the use of military force when defending the common good against serious threats in non-standard cases. This is because jus ad vim complements the conventional military paradigm by permitting the use of military capabilities to defend the common good. But, at the same time, it inhibits the move towards the more destructive levels of violence characteristic of conventional warfighting. (shrink)

Although Internet of Things (IoT) devices are being rapidly embraced worldwide, there are still several security concerns. Due to their limited resources, they are susceptible to malware assaults such as Gafgyt and Mirai, which have the ability to interrupt networks and infect devices. This work looks into methods based on machine learning to identify and categorize malware in IoT network activity. A dataset comprising both malware and benign traffic is used to assess different classification techniques, such as Random Forest, (...) XGBoost, Logistic Regression, etc., for multi-class malware detection. After a great deal of empirical testing, XGBoost comes out on top, providing 99.9% recall and accuracy. Both known and unknown malware can be detected by the trained model with remarkable precision. The use of transfer learning, where the XGBoost model is used as a basis for the rapid construction of new malware detection models, is one of the major innovations put forth. This makes it possible to quickly adjust to new dangers. More information about how real-time network traffic can be monitored with the help of the created model to find irregularities and sound the alarm. An intelligent and proactive security solution for IoT environments is offered by the machine learning technique that is being discussed. This is an efficient defense against malware because of its high accuracy, low false positive rate, real-time detection capability, and adaptability to new malware varieties changing risks associated with IoT. The suggested methods will assist in securing susceptible IoT devices and networks from obstructive malware assaults. (shrink)

Homomorphic encryption is a transformative cryptographic technique that enables secure cloud data processing by allowing computations on encrypted data without requiring decryption. Unlike traditional encryption methods, which protect data only at rest and in transit, homomorphic encryption ensures end-to-end security, even during computation. This capability is particularly vital for industries that rely on cloud computing while handling sensitive information, such as finance, healthcare, and government sectors. However, despite its strong security guarantees, the widespread adoption of homomorphic encryption remains (...) limited due to its high computational complexity and performance overhead. This paper examines the role of homomorphic encryption in secure cloud data processing by evaluating its advantages, challenges, and real-world applicability. First, a comprehensive literature review contrasts traditional and homomorphic encryption techniques, highlighting their security implications and efficiency trade-offs. Second, experimental simulations are conducted to assess computation time, scalability, and data transfer efficiency in cloud environments. The results underscore that while homomorphic encryption enhances data security, its feasibility depends on specific use-case requirements, balancing security, performance, and cost. Finally, we explore practical applications such as privacy-preserving data analytics and secure outsourcing of computations, demonstrating how homomorphic encryption can redefine cloud security paradigms. (shrink)

The exponential growth of data storage requirements has become a pressing challenge in hybrid cloud environments, necessitating efficient data deduplication methods. This research proposes a novel Smart Deduplication Framework (SDF) designed to identify and eliminate redundant data, thus optimizing storage usage and improving data retrieval speeds. The framework leverages a hybrid cloud architecture, combining the scalability of public clouds with the security of private clouds. By employing a combination of client-side hashing, metadata indexing, and machine learning-based duplicate detection, the (...) framework achieves significant storage savings without compromising data integrity. Real-time testing on a hybrid cloud setup demonstrated a 65% reduction in storage needs and a 40% improvement in data retrieval times. Additionally, the system employs blockchain for immutable logging of deduplication activities, enhancing transparency and traceability. This study concludes with an evaluation of the deduplication framework's impact on cost efficiency, system performance, and potential scalability. Future enhancements aim to integrate multi-cloud interoperability and advanced compression algorithms to further refine storage management. (shrink)

Purpose: The research explored empirical evidence to assess the impact of cyber security and supply chain risk on digital operations in the UAE pharmaceutical industry. Methodology/Design/Approach: Based on responses from 243 personnel working at 14 pharmaceutical manufacturing companies in Dubai, data were examined for normality, instrument validity and regression analysis. Cyber security and SC risk on digital operations were explored by applying convenient sampling and descriptive and analytical research design. Findings: The findings validated the significant positive association between (...) cyber security and supply chain risk with digital operations. Research implications and Limitations: The research model was developed with three variables evaluated only on the pharmaceutical industry in Dubai. Future research should focus on multiple manufacturing industries by covering a larger geographic area. Practical implications: When suppliers are highly concentrated, customer-focused organisations with uncertain levels of digital transformation could improve their ability to manage supply chain risk by diversifying their clients. Pharmaceutical firms may require a greater focus on technology-based manufacturing firms to build and maintain customer trust. Originality Value: To illustrate how the pharmaceutical industry has explored the relationship between cyber security, supply chain risk and digital operations, the research highlights the significant and convoluted consequences of the relationship model that have not been previously considered. (shrink)

This paper examines the notion of the biopolitical body from the standpoint of Foucault’s logic of the security mechanism and the history he tells of vaccine technology. It then investigates how the increasing importance of the genetic code for determining the meaning and limits of the human in the field of 20th century cell biology has been a cause for ongoing transformation in the practices that currently extend vaccine research and development. I argue that these transformations mark the emergence (...) of a new kind of medical subject – the stabilized and infinitely reproducible human cell line – and that the practices and markets exploiting this new form of organism have had a destabilizing effect on the very biopolitical structures that engendered them and, in fact, mark a new way of conceiving the possibilities of cellular life. I call these new ways of organizing power that intervene in the logic of the security measure by mediating the relationship between populations and persons the microbiopolitical. (shrink)

Self-control is integral to successful human agency. Without it we cannot extend our agency across time and secure central social, moral, and personal goods. But self-control is not a unitary capacity. In the first part of this paper we provide a taxonomy of self-control and trace its connections to agency and the self. In part two, we turn our attention to the external conditions that support successful agency and the exercise of self-control. We argue that what we call moral (...) class='Hi'>security is a critical foundation for agency. Parts three and four explore what happens to agency when moral security is lacking, as in the case of those subject to racism, and those living in poverty. The disadvantages suffered by those who are poor, in a racial minority or other oppressed group, or suffering mental illness or addiction, are often attributed to a lack of individual self-control or personal responsibility. In particular, members of these groups are often seen as irresponsibly focused on short-term pleasures over long-term good, a view underwritten by particular psychological theories of self-control. We explore how narratives about racism and poverty undermine moral security, and limit and distort the possibility of synchronic and diachronic self-control. Where moral security is undermined, the connection between self-control and diachronic goods often fails to obtain and agency contracts accordingly. We close with some preliminary reflections on the implications for responsibility. (shrink)

Cloud computing has transformed data management by providing scalable and on-demand services, but its open and shared infrastructure makes it highly vulnerable to sophisticated cyber threats. Traditional Intrusion Detection Systems (IDS) struggle with dynamic and large-scale cloud environments due to high false positives, limited adaptability, and computational overhead. To address these challenges, this paper proposes an AI-driven Intrusion Detection System (AI-IDS) that leverages deep learning models, including Convolutional Neural Networks (CNN) and Long Short-Term Memory (LSTM) networks, to analyze network traffic, (...) detect anomalies, and identify advanced cyber threats with high accuracy. Unlike rule-based IDS, which rely on static signatures, our model continuously learns from real-time data, improving detection rates while reducing false alarms. The proposed AI-IDS is optimized for cloud infrastructure, ensuring low-latency threat detection, minimal computational burden, and real-time adaptability to emerging attack patterns. Experimental validation on benchmark datasets demonstrates significant improvements in accuracy, precision, and scalability, making AI-powered IDS a crucial innovation in cloud security. (shrink)

In the modern digital era, cloud storage has become an indispensable service due to its scalability, accessibility, and cost-effectiveness. However, with the vast amount of sensitive information stored on cloud platforms, ensuring data security and privacy remains a critical challenge. Traditional encryption techniques, while secure, often hinder efficient data retrieval, especially when using keyword searches. To address this, attribute-based keyword search (ABKS) offers a promising solution by allowing secure, fine-grained access control and efficient keyword searches over encrypted data. This (...) paper delves into the integration of optimization techniques within ABKS to enhance search efficiency and data security in cloud storage environments. We explore various optimization strategies, such as index compression, query processing enhancement, and encryption optimization, which aim to reduce computational overhead while maintaining robust security measures. Through a comprehensive analysis, the paper illustrates how these techniques can significantly improve the performance of cloud storage systems, ensuring both security and usability. Experimental results demonstrate that optimized ABKS not only accelerates search queries but also reduces storage costs, making it a viable solution for modern cloud storage challenges. Future research directions include exploring advanced machine learning algorithms for predictive search optimizations and further improving the resilience of ABKS against emerging security threats. (shrink)

Enterprise Risk Management involves the process of identification, evaluation, treatment, and communication regarding risks throughout the enterprise. To support the tasks associated with this process, several frameworks and modeling languages have been proposed, such as the Risk and Security Overlay (RSO) of ArchiMate. An ontological investigation of this artifact would reveal its adequacy, capabilities, and limitations w.r.t. the domain of risk and security. Based on that, a language redesign can be proposed as a refinement. Such analysis and redesign (...) have been executed for the risk elements of the RSO grounded in the Common Ontology of Value and Risk. The next step along this line of research is to address the following research problems: What would be the outcome of an ontological analysis of security-related elements of the RSO? That is, can we identify other semantic deficiencies in the RSO through an ontological analysis? Once such an analysis is provided, can we redesign the security elements of the RSO accordingly, in order to produce an improved artifact? Here, with the aid of the Reference Ontology for Security Engineering (ROSE) and the ontological theory of prevention behind it, we address the remaining gap by proceeding with an ontological analysis of the security-related constructs of the RSO. The outcome of this assessment is an ontology-based redesign of the ArchiMate language regarding security modeling. In a nutshell, we report the following contributions: (1) an ontological analysis of the RSO that identifies six limitations concerning security modeling; (2) because of the key role of the notion of prevention in security modeling, the introduction of the ontological theory of prevention in ArchiMate; (3) a well-founded redesign of security elements of ArchiMate; and (4) ontology-based security modeling patterns that are logical consequences of our proposal of redesign due to its underlying ontology of security. As a form of evaluation, we show that our proposal can describe risk treatment options, according to ISO 31000. Finally, besides presenting multiple examples, we proceed with a real-world illustrative application taken from the cybersecurity domain. (shrink)

The Internet of Things (IoT) is a rapidly growing technology that connects and integrates billions of smart devices, generating vast volumes of data and impacting various aspects of daily life and industrial systems. However, the inherent characteristics of IoT devices, including limited battery life, universal connectivity, resource-constrained design, and mobility, make them highly vulnerable to cybersecurity attacks, which are increasing at an alarming rate. As a result, IoT security and privacy have gained significant research attention, with a particular focus (...) on developing anomaly detection systems. In recent years, machine learning (ML) has made remarkable progress, evolving from a lab novelty to a powerful tool in critical applications. ML has been proposed as a promising solution for addressing IoT security and privacy challenges. In this article, we conducted a study of the existing security and privacy challenges in the IoT environment. Subsequently, we present the latest ML-based models and solutions to address these challenges, summarizing them in a table that highlights the key parameters of each proposed model. Additionally, we thoroughly studied available datasets related to IoT technology. Through this article, readers will gain a detailed understanding of IoT architecture, security attacks, and countermeasures using ML techniques, utilizing available datasets. We also discuss future research directions for ML-based IoT security and privacy. Our aim is to provide valuable insights into the current state of research in this field and contribute to the advancement of IoT security and privacy. (shrink)

Atomic energy developed from 1940 as a subject shrouded in secrecy. Identified successively as a crucial element in military strategy, national status and export aspirations, the research and development of atomic piles (nuclear chain-reactors) were nurtured at isolated installations. Like monastic orders, new national laboratories managed their specialist workers in occupational environments that were simultaneously cosseted and constrained, defining regional variants of a new state-managed discipline: reactor technology. This paper discusses the significance of security in defining the new subject (...) in the USA, UK and Canada – wartime allies with similar political traditions but distinct trajectories in this field during the Cold War. The intellectual borders and content of the subject developed differently in each country, shaped under the umbrella of secrecy by disparate clusters of expertise, industrial traditions, and national goals. The nascent cadre was contained until the mid 1950s by classified publications and state-sponsored specialist courses. The early context of high security filtered its members and capped enduringly both their professional aspirations and public engagement. (shrink)

Cloud Computing provides vast storage facility. The requirement of this system is to improve the security and transmission performance in the cloud storage environment. Methods: This system provides two level of security for the cloud data. The Client Data Security Contrivance (CDSC) and Cloud Service Provider (CSP) Data Security Contrivance are the two methods which transforms the original data to cipher text. The security algorithm used in CDSC is Linguistic Steganography. Blowfish algorithm is used in (...) CSP Data Security Contrivance to convert the cipher text using a secret-key block cipher of 64-bits. This system is designed to increase security and to improve the transmission performance. Storage-cheating attack model and Privacy-cheating attack model are implemented to protect the data on cloud. Findings: This system increases security and improves transmission performance. The blowfish algorithm is secure against unauthorized attacks and runs faster than the popular existing algorithms. Storage-cheating attack model and Privacy-cheating attack model provides the data confidentiality for data stored in the cloud in higher way. Improvements: The system can be implemented in real cloud system in the future. (shrink)

The application layer of the Open Systems Interconnection (OSI) model plays a critical role in enabling end-user interaction with network services, making it a primary target for cybersecurity threats. This paper reviews contemporary research on securing the application layer, addressing emerging threats such as injection attacks, malware, phishing, and zero-day vulnerabilities. Key strategies, including secure development practices, application firewalls, cryptographic protocols, and user education, are explored to mitigate these risks. The challenges of an evolving threat landscape and resource constraints are (...) discussed, along with future directions leveraging artificial intelligence, blockchain, and zero trust architecture to enhance security. The findings underscore the importance of a multifaceted approach to safeguarding the application layer in an increasingly hostile cyber environment. (shrink)

This paper tackles the asymmetry of economic interests and geopolitics between developed and developing countries. Currently, the geopolitics presupposes that the majority of novel technologies are devised and designed in developed countries with their subsequent transfer to the developing countries. Moreover, in the context of the global crisis, the issue of de-dollarization is relevant from the political and economic points of view. Our specific focus is on the small oil countries and the issue how to get off the oil needle (...) in the painless way. Furthermore, the paper analyzes the rise of cryptocurrency that is envisaged as the substitute of the U.S. dollar which has been the world most dominating currency for the last several decades. This paper considers the global asymmetry which has the greatest impact on countries with economies dependent on energy exports. In the light of the diminishing returns from the sale of oil, we examine the ways for escaping this asymmetry. The authors consider the geopolitical asymmetry stemming from the dominance of the U.S. dollar, analyze the political situation and offer the pathways for the development of those economies where oil become an obstacle for economic development. The paper examines the ways of solving the above-mentioned problem by other states in detail and conduct the comparative analysis of the above issues in relation to the economy of Azerbaijan. From this case study we conduct a comparative analysis of the developed and developing countries taking into account the economic asymmetry and global economic and financial security. (shrink)

This forum contribution addresses two major themes in de Goede’s original essay on ‘Financial security’: (1) the relationship between stable markets and the proverbial ‘security dilemma’; and (2) the development of new decision-technologies to address risk in the post-World War II period. Its argument is that the confluence of these two themes through rational choice theory represents a fundamental re-evaluation of the security dilemma and its relationship to the rule of law governing market relations, ushering in an (...) era of perpetual physical and financial insecurity. (shrink)

The article examines the peculiarities and modern specifics of the formation of ecological and economic security in Ukraine in the conditions of digitalization. It was determined that the lack of dynamic growth, the violation of the optimal balance and balance of the ecological and economic system are caused by the depletion of raw resources, a decrease in the overall potential of the environment, and the irrational use of natural resources. It has been proven that in the conditions of digitalization, (...) a new challenge for all enterprises is to ensure the ecological and economic efficiency of their activities, which combines the principles of transparency and openness in their functioning. It has been proven that the strategy of environmentally-oriented economic development should be aimed at solving environmental problems and preserving biological diversity. (shrink)

: As organizations continue to adopt cloud computing for its numerous advantages—such as scalability, cost-efficiency, and flexibility—the need to secure digital assets within the cloud has never been more critical. Cloud security faces unique challenges due to the distributed and multi-tenant nature of cloud services. Cyber-attacks, data breaches, and misconfigurations are among the prominent risks that threaten the integrity, confidentiality, and availability of cloud-based data and applications. In this paper, we explore CloudGuard, an advanced security framework designed to (...) protect organizations' digital assets in the cloud. This fortress security approach focuses on implementing multiple layers of protection through cutting-edge technologies, such as encryption, identity and access management (IAM), threat intelligence, and security automation. We also highlight the integration of AI and Machine Learning to improve threat detection and response times, and blockchain's potential in ensuring data integrity and privacy. Through a comprehensive analysis, this paper outlines practical strategies for organizations to adopt CloudGuard and strengthen their security posture against evolving cyber threats in the digital world. (shrink)

This study examines how ABKS might optimize search efficiency and data security in cloud storage systems. We examine index compression, query processing improvement, and encryption optimization to decrease computational cost and preserve security. After a thorough investigation, the article shows how these methods may boost cloud storage system performance, security, and usability. Tests show that improved ABKS speeds up search searches and lowers storage costs, making it a viable cloud storage alternative. Exploring sophisticated machine learning algorithms for (...) predictive search improvements a. (shrink)

The rise of remote work has redefined the modern workplace, driven by advancements in technology and the global need for flexible work environments. While remote work offers increased productivity and employee satisfaction, it has also introduced a host of network security challenges. Organizations must contend with securing sensitive data and critical applications across distributed networks, many of which extend beyond traditional corporate perimeters. This research paper explores the multifaceted security threats associated with remote work environments, including phishing attacks, (...) unpatched software vulnerabilities, unsecured home networks, and the misuse of personal devices. These challenges are exacerbated by a lack of centralized control and the increasing sophistication of cybercriminals exploiting these vulnerabilities. Key findings highlight the importance of robust authentication protocols, such as multi-factor authentication (MFA), to ensure secure access to corporate resources. Endpoint security solutions, including encryption and antivirus software, play a critical role in safeguarding data on remote devices. Moreover, the paper emphasizes the significance of implementing virtual private networks (VPNs) and zero-trust security frameworks to reduce attack surfaces and limit unauthorized access. Another critical focus is the role of employee training and awareness programs in mitigating human error, which remains a leading cause of data breaches. This study also underscores the necessity of proactive threat detection and response mechanisms to identify and address breaches in real-time. Advanced technologies, such as artificial intelligence (AI) and machine learning (ML), are pivotal in enhancing these capabilities, enabling organizations to adapt to the rapidly evolving cyber threat landscape. Furthermore, comprehensive network segmentation strategies are discussed to isolate critical systems and minimize the impact of potential breaches. The research incorporates case studies of successful implementations of these solutions, demonstrating their effectiveness in fortifying network security for remote operations. A comparative analysis is presented to evaluate the cost-effectiveness and scalability of various approaches, catering to organizations of different sizes and industries. The findings suggest that a multi-layered defense strategy is essential for achieving resilience in remote work environments. The paper concludes with actionable recommendations for organizations seeking to enhance their security posture. These include prioritizing regular updates and patches, adopting secure cloud-based collaboration tools, and conducting periodic security audits. Additionally, fostering a culture of cybersecurity awareness among employees is paramount to addressing the human factor in cyber risks. By addressing the unique challenges posed by remote work, this study provides a comprehensive roadmap for protecting data and applications in decentralized environments. The insights gained aim to equip organizations with the tools and knowledge necessary to navigate the complexities of securing remote work infrastructures while maintaining business continuity and trust. (shrink)

In Risk Management, security issues arise from complex relations among objects and agents, their capabilities and vulnerabilities, the events they are involved in, and the value and risk they ensue to the stakeholders at hand. Further, there are patterns involving these relations that crosscut many domains, ranging from information security to public safety. Understanding and forming a shared conceptualization and vocabulary about these notions and their relations is fundamental for modeling the corresponding scenarios, so that proper security (...) countermeasures can be devised. Ontologies are instruments developed to address these conceptual clarification and terminological systematization issues. Over the years, several ontologies have been proposed in Risk Management and Security Engineering. However, as shown in recent literature, they fall short in many respects, including generality and expressivity - the latter impacting on their interoperability with related models. We propose a Reference Ontology for Security Engineering (ROSE) from a Risk Treatment perspective. Our proposal leverages on two existing Reference Ontologies: the Common Ontology of Value and Risk and a Reference Ontology of Prevention, both of which are grounded on the Unified Foundational Ontology (UFO). ROSE is employed for modeling and analysing some cases, in particular providing clarification to the semantically overloaded notion of Security Mechanism. (shrink)