: As cloud-native architectures continue to evolve, microservices have become the foundation for scalable and resilient applications. However, the decentralized nature of microservices introduces significant security challenges, including service-to-service communication security, identity management, and traffic control. Service mesh technologies, such as Istio, Linkerd, and Consul, provide a powerful solution by offering decentralized security enforcement, mutual TLS (mTLS) encryption, fine-grained access control, and observability without modifying application code. This paper explores how service meshes enhance microservices security by implementing zero-trust policies, automatic (...) traffic encryption, and service authentication mechanisms. Through the integration of policy-based access control, workload identity, and anomaly detection, service mesh architectures significantly reduce the risk of unauthorized access, lateral movement attacks, and data breaches. Additionally, this study highlights best practices for deploying secure service meshes in cloud-native environments, ensuring compliance with industry security standards. The findings demonstrate that adopting a service mesh improves security posture while maintaining agility and performance in microservices-based applications. (shrink)

In this paper, I argue that an account of security as a basic human right must incorporate moral security. Broadly speaking, a person possesses subjective moral security when she believes that her basic interests and welfare will be accorded moral recognition by others in her community and by social, political, and legal institutions in her society. She possesses objective moral security if, as a matter of fact, her interests and welfare are regarded by her society as morally important—for example, when (...) violent crimes against her being taken to warrant the same punishment and condemnation as equivalent crimes against others. Moral security, thus characterized, is an essential part of what it is to be secure as a human person, and any right to security must include it. In the first part of the paper I critique alternative narrower accounts of the right to security, before defending my account of moral security in Section 2. Section 3 explores how acts of racialized and gendered violence are attacks on the moral security of the victims and of all members of the groups to which the victims belong. Broader structural and institutional forms of racial and sexual discrimination further compound the impact of such acts on moral security. Understanding how racial and sexual discrimination and violence are attacks on moral security offers a new way of thinking about the scope and urgency of a state’s duty to combat racial and sexual discrimination, an issue I explore in the final section of the paper. -/- . (shrink)

As cloud-native architectures continue to evolve, microservices have become the foundation for scalable and resilient applications. However, the decentralized nature of microservices introduces significant security challenges, including service-to-service communication security, identity management, and traffic control. Service mesh technologies, such as Istio, Linkerd, and Consul, provide a powerful solution by offering decentralized security enforcement, mutual TLS (mTLS) encryption, fine-grained access control, and observability without modifying application code. This paper explores how service meshes enhance microservices security by implementing zero-trust policies, automatic traffic (...) encryption, and service authentication mechanisms. Through the integration of policy-based access control, workload identity, and anomaly detection, service mesh architectures significantly reduce the risk of unauthorized access, lateral movement attacks, and data breaches. Additionally, this study highlights best practices for deploying secure service meshes in cloud-native environments, ensuring compliance with industry security standards. The findings demonstrate that adopting a service mesh improves security posture while maintaining agility and performance in microservices-based applications. (shrink)

This paper examines the notion of the biopolitical body from the standpoint of Foucault’s logic of the security mechanism and the history he tells of vaccine technology. It then investigates how the increasing importance of the genetic code for determining the meaning and limits of the human in the field of 20th century cell biology has been a cause for ongoing transformation in the practices that currently extend vaccine research and development. I argue that these transformations mark the emergence of (...) a new kind of medical subject – the stabilized and infinitely reproducible human cell line – and that the practices and markets exploiting this new form of organism have had a destabilizing effect on the very biopolitical structures that engendered them and, in fact, mark a new way of conceiving the possibilities of cellular life. I call these new ways of organizing power that intervene in the logic of the security measure by mediating the relationship between populations and persons the microbiopolitical. (shrink)

As businesses increasingly move to the cloud, they face growing challenges in ensuring both security and compliance. The complexity arises from the need to protect sensitive data while adhering to a wide range of regulatory requirements, such as GDPR, HIPAA, and industry-specific standards. This paper explores the intersection of cloud security and compliance, focusing on the challenges organizations face when navigating these complexities. We discuss the shared responsibility model, key compliance frameworks, and strategies to integrate security and compliance efforts. By (...) addressing the challenges of maintaining secure and compliant cloud environments, the paper provides practical guidance for organizations to build effective cloud security strategies while meeting regulatory obligations. (shrink)

Cloud security automation has become increasingly vital as organizations scale their operations in the cloud. As cyber threats become more sophisticated and frequent, traditional security measures are no longer enough to effectively protect cloud environments. This paper explores the role of Artificial Intelligence (AI) and Machine Learning (ML) in automating cloud security processes. By integrating AI and ML, organizations can proactively detect, respond to, and mitigate potential security threats in real-time. This paper reviews current applications of AI and ML in (...) cloud security, the benefits of automation, and the challenges organizations face when integrating these technologies into their cloud environments. (shrink)

As businesses and individuals increasingly rely on cloud computing for a vast array of services, the need for robust cloud security becomes ever more critical. Cloud environments offer unparalleled flexibility, scalability, and cost-effectiveness but simultaneously introduce a complex security landscape that poses significant challenges. The importance of safeguarding data, applications, and systems from cyber threats in the cloud is paramount to maintaining the confidentiality, integrity, and availability of digital assets. This paper explores the evolving landscape of cloud security, identifying the (...) risks and vulnerabilities inherent in cloud computing and the key strategies and technologies used to mitigate them. We introduce a comprehensive framework for cloud security that incorporates encryption, access management, threat detection, and compliance adherence. Emerging technologies like Artificial Intelligence (AI), Machine Learning (ML), and blockchain are also discussed, showcasing their role in transforming cloud security practices. By analyzing best practices and future trends, this paper provides a roadmap for securing the digital frontier in an era increasingly defined by cloud computing. (shrink)

Since security threats in IoT-enabled smart cities may not appear clear and present to detection mechanisms, efforts have been made to use artificial intelligence methods for anomaly detection. Anomaly detection has been performed using unsupervised learning approaches (Autoencoders, GANs, One Class SVMs) in turn, with these instances considered security threats. In addition, an element for patches and traffic redirection in real time is included in the framework. Results show that the AI detection in general has much more security resilience, decreasing (...) possible attack vectors. This makes the integration of various features like AI, blockchain, and IDS for a solid IoT security a must. Since security threats in IoT-enabled smart cities may not appear clear and present to detection mechanisms, efforts have been made to use artificial intelligence methods for anomaly detection. Anomaly detection has been performed using unsupervised learning approaches (Autoencoders, GANs, One-Class SVMs) in turn, with these instances considered security threats. In addition, an element for patches and traffic redirection in real time is included in the framework. Results show that the AI detection in general has much more security resilience, decreasing possible attack vectors. This makes the integration of various features like AI, blockchain, and IDS for a solid IoT security a must. (shrink)

Atomic energy developed from 1940 as a subject shrouded in secrecy. Identified successively as a crucial element in military strategy, national status and export aspirations, the research and development of atomic piles (nuclear chain-reactors) were nurtured at isolated installations. Like monastic orders, new national laboratories managed their specialist workers in occupational environments that were simultaneously cosseted and constrained, defining regional variants of a new state-managed discipline: reactor technology. This paper discusses the significance of security in defining the new subject in (...) the USA, UK and Canada – wartime allies with similar political traditions but distinct trajectories in this field during the Cold War. The intellectual borders and content of the subject developed differently in each country, shaped under the umbrella of secrecy by disparate clusters of expertise, industrial traditions, and national goals. The nascent cadre was contained until the mid 1950s by classified publications and state-sponsored specialist courses. The early context of high security filtered its members and capped enduringly both their professional aspirations and public engagement. (shrink)

Throughout the history of mankind, energy security has been always seen as a means of protection from disruptions of essential energy systems. The idea of protection from disorders emerged from the process of securing political and military control over energy resources to set up policies and measures on managing risks that affect all elements of energy systems. The various systems placed in a place to achieve energy security are the driving force towards the energy innovations or emerging trends in the (...) energy sector. Our paper discusses energy security status and innovations in the energy sector in European Union (EU). We analyze the recent up-to-date developments of the energy policy and exploitation of energy sources, as well as scrutinize the channels of energy streaming to the EU countries and the risks associated with this energy import. Moreover, we argue that the shift to the low-carbon production of energy and the massive deployment of renewable energy sources (RES) might become the key issue in ensuring the energy security and independency of the EU from its external energy supplies. Both RES, distributed energy resources (DER) and “green energy” that will be based on the energy efficiency and the shift to the alternative energy supply might change the energy security status quo for the EU. (shrink)

As optical network functions increasingly adopt microservice architectures, traditional con-tainer security mechanisms are proving insufficient against sophisticated attacks targeting these critical infrastructure components. This paper introduces a novel framework for securing microser-vice communications in optical networks through the application of Memory Protection Keys (MPK) for enhanced container isolation. Converging containerization technologies with optical networking introduces unique security challenges, particularly in maintaining isolation between sensitive optical control functions while preserving the ultra-low latency requirements essential for network operations. The proposed approach leverages (...) hardware-enforced memory isolation provided by Intel MPK to establish secure domains for optical control functions without sacrificing performance in latency-sensitive applications. The framework includes zero-copy communication protocols between isolated domains, runtime verification through eBPF-based monitoring, and hardware-assisted security mechanisms specifically designed for optical control plane operations. This work addresses the growing tension between security requirements and performance con-straints in software-defined optical networks, offering a balanced approach that improves container security while respecting the strict operational parameters of modern optical control systems. (shrink)

Cloud computing has revolutionized the way businesses store and process data, offering flexibility, scalability, and cost efficiency. However, with these benefits come significant security risks. Cloud environments introduce unique vulnerabilities that organizations must address to ensure data protection and maintain compliance. This paper explores common cloud security vulnerabilities, methods for identifying risks, and strategies for mitigating them. By reviewing existing literature and best practices, the study emphasizes the importance of proactive security measures in preventing data breaches, unauthorized access, and service (...) disruptions. (shrink)

Freedom and security are often portrayed as things that have to be traded off against one another, but this view does not capture the full complexity of the freedom-security relationship. Rather, there seem to be four different ways in which freedom and security connect to each other: freedom can come at the cost of security, security can come at the cost of freedom, freedom can work to the benefit of security, and security can work to the benefit of freedom. This (...) paper analyses each of these connections in turn. It shows that particular understandings of freedom can help us to see particular connections between freedom and security. The practical examples used to illustrate these connections are drawn from the context of the COVID-19 pandemic. It will be suggested that, in the face of challenges such as this one, taking into account all four connections between freedom and security can ultimately help decision-makers in upholding both. (shrink)

Cloud computing has revolutionized how businesses store and access data, but it also introduces new risks. Securing data in the cloud requires a combination of strategic approaches, robust policies, and technological solutions. This paper explores best practices for safeguarding cloud environments, including encryption, access controls, regular security audits, and the implementation of a zero-trust architecture. By identifying key risks and offering practical solutions, this research provides a roadmap for businesses to enhance cloud security and mitigate potential threats.

What makes safety claims about general purpose AI systems such as large language models trustworthy? We show that rather than the capabilities of security tools such as alignment and red teaming procedures, it is security practices based on these tools that contributed to reconfiguring the image of AI safety and made the claims acceptable. After showing what causes the gap between the capabilities of security tools and the desired safety guarantees, we critically investigate how AI security practices attempt to fill (...) the gap and identify several shortcomings in diversity and participation. We found that these security practices are part of securitization processes aiming to support (commercial) development of general purpose AI systems whose trustworthiness can only be imperfectly tested instead of guaranteed. We conclude by offering several improvements to the current AI security practices. (shrink)

: As organizations continue to adopt cloud computing for its numerous advantages—such as scalability, cost-efficiency, and flexibility—the need to secure digital assets within the cloud has never been more critical. Cloud security faces unique challenges due to the distributed and multi-tenant nature of cloud services. Cyber-attacks, data breaches, and misconfigurations are among the prominent risks that threaten the integrity, confidentiality, and availability of cloud-based data and applications. In this paper, we explore CloudGuard, an advanced security framework designed to protect (...) organizations' digital assets in the cloud. This fortress security approach focuses on implementing multiple layers of protection through cutting-edge technologies, such as encryption, identity and access management (IAM), threat intelligence, and security automation. We also highlight the integration of AI and Machine Learning to improve threat detection and response times, and blockchain's potential in ensuring data integrity and privacy. Through a comprehensive analysis, this paper outlines practical strategies for organizations to adopt CloudGuard and strengthen their security posture against evolving cyber threats in the digital world. (shrink)

In today’s digital age, secure online transactions are crucial for maintaining the confidentiality, integrity, and authenticity of sensitive data. This project presents a Secure Online Transaction System developed in Java, utilizing MySQL as the database management system, and employing the AES (Advanced Encryption Standard) algorithm for encryption purposes. The objective of this project was to design and implement a robust system that ensures secure online transactions, safeguarding against unauthorized access, data breaches, and fraudulent activities. To achieve this, (...) the project leveraged the AES algorithm, a widely adopted symmetric encryption algorithm known for its high level of security and performance. The system architecture includes a client-server model, where the clients are responsible for initiating and executing transactions, while the server manages the transaction requests and interacts with the MySQL database. The Java programming language was used to develop the client and server components, facilitating platform independence and ease of deployment. To secure the sensitive transaction data during transmission and storage, the AES algorithm was implemented. The AES algorithm operates on 128-bit blocks and supports key lengths of 128, 192, and 256 bits. It provides robust encryption and decryption functions, ensuring that the data remains confidential and tamper-proof. The keys used in the AES algorithm were securely generated and managed within the system. The MySQL database was employed to store transaction-related information, user credentials, and other relevant data. The integration of MySQL allowed for efficient data management and retrieval, with appropriate security measures implemented to protect against SQL injection attacks and unauthorized database access. The implemented Secure Online Transaction System with Cryptography successfully provides a secure environment for users to conduct online transactions. The utilization of the AES algorithm ensures the confidentiality and integrity of the transaction data, protecting it from unauthorized access and tampering. The systems integration with MySQL enables efficient and reliable data management, further enhancing the overall user experience. The outcomes of this project contribute to the field of secure online transactions by demonstrating the successful implementation of cryptography techniques using the AES algorithm. The developed system serves as a practical example of how Java, MySQL, and AES can be combined to create a robust and secure online transaction platform. The projects findings can benefit individuals, businesses, and financial institutions by providing them with a secure framework for conducting online transactions and protecting sensitive information. (shrink)

In a recent study by Cai et al. about water shortages in Beijing-Tianjin-Hebei urban areas, virtual water has become the central concept of the groundwater security strategy by suggesting increasing imports of water-intensive agricultural products instead of utilizing the depleted groundwater resources for production. However, despite reviewing the content, we could not see how the authors discussed the households’ economic and financial issues from both production and consumption perspectives.

In the context of the digital economy development, the priority component of the economic security of an enterprise is changing from material to digital, constituting an independent element of enterprise security. The relevance of the present research is driven by the need to solve the issue of modernizing the economic security of the enterprise taking into account the new risks and opportunities of digitalization. The purpose of the academic paper lies in identifying the features of preventing internal and external negative (...) influences (threats) in order to guarantee the effective and stable functioning and dynamic social development of the enterprise in the context of digitalization. The research methods are as follows: general scientific research methods, in particular, logical analysis, theoretical substantiation, methods of induction and deduction, formalization and generalization, statistical observation. Results. It has been proposed to introduce the concept of “digital security of the enterprise” for replacing the concept of “information component of economic security” in order to bring the terminology in line with new economic realities. The implementation of the “black box” model has made it possible to identify the latest risks and threats to the economic security of an enterprise within the conditions of the digitalization that differs from the existing ones. The assessment of enterprises’ digital security of the European Union member states has revealed that the digital security level does not depend on the size of the country, however, it is influenced by the institutional environment (in particular, digital development tools in the EU) and the size of enterprises. Also, within the research framework, an assessment of the digital security level of enterprises in the context of digitalization has been proposed. In order to characterize enterprises by the level of digital security, a calculation procedure using the coefficient method has been proposed. (shrink)

In the pharmaceutical and healthcare industries, the secure handling of sensitive drug component data is crucial. This project presents a comprehensive system for the secure storage, encryption, and controlled access of drug datasets using modern encryption techniques and cloud-based storage. Users can upload drug-related CSV files through a web interface, which are then processed and encrypted selectively before being uploaded to Amazon S3. Each file is associated with a unique encryption key, which is securely stored and can only (...) be retrieved by authorized users via password-based authentication. The backend is built with Spring Boot, implementing robust encryption logic, metadata storage, and integration with AWS S3. The frontend (developed using Next.js) enables users to upload, view, and manage their encrypted files in an intuitive interface. Key features of the system include role-based access control, data confidentiality, and secure key retrieval mechanisms, ensuring that only legitimate users can decrypt and access sensitive data. This project demonstrates a scalable and secure solution for privacy preserving storage of drug components, making it highly relevant in scenarios where data confidentiality and regulatory compliance are critical. It also lays the groundwork for future integration of machine learning or data mining pipelines once decryption is authorized, ensuring both security and analytical capabilities. (shrink)

Food security brings a number of benefits to humanity from which nobody can be excluded and which can be simultaneously enjoyed by all. An economic understanding of the concept sees food security qualify as a global public good. However, there are four other ways of understanding a public good which are worthy of attention. A normative public good is a good from which nobody ought to be excluded. Alternatively, one might acknowledge the benevolent character of a public good. Others have (...) argued that public goods demand being public in the sense of being visible to all. Finally, it has also been argued that public goods are those goods which need joint action to be produced and maintained. This chapter discusses these five understandings of the public good in relation to food security and highlights the advantage of assessing policies from each of these perspectives. (shrink)

Perceptually secured knowledge consists of beliefs that amount to knowledge just because they are based on suitable perceptual states. Relationism about the ground of perceptually secured knowledge is the view that if a perceptual state can make a belief based on it amount to knowledge, then it can do that because it constitutes an appropriate kind of relational state, e.g., a state of perceptual acquaintance. I explore the prospects of both maintaining that some beliefs amount to perceptually secured knowledge and (...) developing a relationist account of their ground. (shrink)

The philosophical literature on personal relationships is focused on dyads: close relationships between just two people. This paper aims to characterise the value of looser and larger relational networks, particularly from the perspective of liberal political theory. We focus on relational networks' value vis-a-vis the important good of felt security. We begin by characterising felt security and analysing how felt security is produced within dyads. We highlight the ambivalent nature of dyadic relationships as a source of felt security. We then (...) theorise relational networks, explaining how they too can provide felt security. We explore three unappreciated benefits that arise when felt security is garnered from a network, rather than from a dyad. These benefits take liberal political theory as their starting point. We close by considering the implications - for both individual action and institutional design - of using relational networks as a source of felt security. (shrink)

Software-Defined Networking (SDN) has transformed data center network (DCN) architectures by enabling centralized control, dynamic configuration, and programmable network management. However, the decoupling of control and data planes introduces new security challenges, including controller compromise, flow rule manipulation, and inter-tenant data leakage. This paper proposes a comprehensive security evaluation framework tailored for SDN-based data centers. The framework identifies key threat vectors, classifies attack surfaces, and provides a methodology for evaluating resilience against attacks. By integrating security metrics such as availability, integrity, (...) confidentiality, and attack detection rate, the framework offers a standardized approach to assess and compare SDN implementations in data center environments. (shrink)

Centred on 'Foams', the third volume of his Spheres trilogy, this article questions the privilege granted by Peter Sloterdijk to motifs of inclusion and exclusion, contending that whilst his prioritization of dwelling as a central aspect of human existence provides a promising counterpoint to the dislocative and isolative effects of post-industrial capitalism, it is compromised by its dependence upon an anti-cosmopolitan outlook that views cultural distantiation as a natural and preferable state of human affairs, and valorizes a purported ontological security (...) attained through defensive postures with respect to perceived foreigners or externalities. Sloterdijk’s conceptualization of culture as a kind of immune system, it is argued, although posited as a rebuke to models of essentialism and ethno-nationalism, provides ontological support to the xenophobic critiques of immigration that are today finding increasing currency. (shrink)

This article focuses on the so-called “Area of Freedom, Security and Justice” (ASFJ), namely the policy field of the European Union (EU) that covers judicial and police cooperation, migration and asylum policies and the control of external borders. The article explores how the AFSJ has emerged and how, within it, the relationship between freedom and security has evolved over time and brought about a shift towards a “Security Union”.

Self-control is integral to successful human agency. Without it we cannot extend our agency across time and secure central social, moral, and personal goods. But self-control is not a unitary capacity. In the first part of this paper we provide a taxonomy of self-control and trace its connections to agency and the self. In part two, we turn our attention to the external conditions that support successful agency and the exercise of self-control. We argue that what we call moral (...) security is a critical foundation for agency. Parts three and four explore what happens to agency when moral security is lacking, as in the case of those subject to racism, and those living in poverty. The disadvantages suffered by those who are poor, in a racial minority or other oppressed group, or suffering mental illness or addiction, are often attributed to a lack of individual self-control or personal responsibility. In particular, members of these groups are often seen as irresponsibly focused on short-term pleasures over long-term good, a view underwritten by particular psychological theories of self-control. We explore how narratives about racism and poverty undermine moral security, and limit and distort the possibility of synchronic and diachronic self-control. Where moral security is undermined, the connection between self-control and diachronic goods often fails to obtain and agency contracts accordingly. We close with some preliminary reflections on the implications for responsibility. (shrink)

The rapid adoption of cloud computing by businesses has led to substantial cybersecurity concerns, necessitating comprehensive security systems to safeguard cloud infrastructure. Cloud environments' multi-tenant nature renders systems vulnerable to threats including unauthorized access, data theft, and distributed denial-of-service (DDoS) attacks. Protecting data confidentiality, privacy, and regulatory adherence requires implementing a combination of encryption, authentication protocols, and intrusion detection measures. These risks have been addressed through the use of sophisticated methods, such as dynamic remote data auditing, decentralized access control, and (...) privacy-preserving query execution. Economic denial-of-sustainability (EDoS) attacks present a significant challenge that necessitates the implementation of effective mitigation strategies to prevent resource depletion. A comprehensive security strategy combines Zero Trust Architecture (ZTA), blockchain-based security frameworks, and AI-powered threat identification to improve cloud security for businesses. Enterprise operations must be safeguarded by implementing secure service delivery models that include strict access control, authentication, and encryption, such as IaaS, PaaS, and SaaS. Advances in trusted computing frameworks and cryptography enhance cloud security by rigorously enforcing data protection policies. This paper provides a comprehensive review of cybersecurity threats, assesses current methods of mitigation, and examines the latest technologies, providing expert guidance on optimal procedures and future research avenues for strengthening enterprise cloud security. (shrink)

The importance of Big Data as a foundational component of the AI and ML landscape is not going away anytime soon. As a result, the past fifteen years have seen a tremendous investment in Big Data research. The purpose of this literature review is to compile the most recent results from Big Data studies conducted over the past fifteen years. The study will address questions about the main applications of Big Data analytics, the main challenges and limitations encountered by researchers, (...) and the present and future state of Big Data studies. The review follows a predetermined procedure that automatically examines five major digital libraries. Among the more recent branches of computer science is the study of large amounts of data. Social media, online shopping, blogs, financial institutions, healthcare providers, transactions, websites, applications, opinion forums, and a host of other sources all contribute to the accumulation of data. Various businesses, notably healthcare, make excellent use of it after processing. For data processing and analysis in the industrial sector, these massively generated datasets are indispensable. In order to investigate the value and potential of big data in healthcare and industrial processing applications, this article surveys the published works of numerous writers who have helped with data collecting, analysis, processing, and viewing. Data cleansing, missing value analysis, and outlier analysis are some of the opportunities and problems highlighted, in addition to the benefits and applications of big data. Outlier detection models, as well as methods for detecting and cleaning unclean data, were also suggested in this comprehensive review. (shrink)

Many philosophers have claimed that evidence for a theory is better when multiple independent tests yield the same result, i.e., when experimental results are robust. Little has been said about the grounds on which such a claim rests, however. The present essay presents an analysis of the evidential value of robustness that rests on the fallibility of assumptions about the reliability of testing procedures and a distinction between the strength of evidence and the security of an evidence claim. Robustness can (...) enhance the security of an evidence claim either by providing what I call second-order evidence, or by providing back-up evidence for a hypothesis. (shrink)

Homomorphic encryption is a transformative cryptographic technique that enables secure cloud data processing by allowing computations on encrypted data without requiring decryption. Unlike traditional encryption methods, which protect data only at rest and in transit, homomorphic encryption ensures end-to-end security, even during computation. This capability is particularly vital for industries that rely on cloud computing while handling sensitive information, such as finance, healthcare, and government sectors. However, despite its strong security guarantees, the widespread adoption of homomorphic encryption remains limited (...) due to its high computational complexity and performance overhead. This paper examines the role of homomorphic encryption in secure cloud data processing by evaluating its advantages, challenges, and real-world applicability. First, a comprehensive literature review contrasts traditional and homomorphic encryption techniques, highlighting their security implications and efficiency trade-offs. Second, experimental simulations are conducted to assess computation time, scalability, and data transfer efficiency in cloud environments. The results underscore that while homomorphic encryption enhances data security, its feasibility depends on specific use-case requirements, balancing security, performance, and cost. Finally, we explore practical applications such as privacy-preserving data analytics and secure outsourcing of computations, demonstrating how homomorphic encryption can redefine cloud security paradigms. (shrink)

Scalability, efficiency, and security had been a persistent problem over the years in data mining, several techniques had been proposed and implemented but none had been able to solve the problem of scalability, efficiency and security from cloud computing. In this research, we solve the problem scalability, efficiency and security in data mining over cloud computing by using a restful web services and combination of different technologies and tools, our model was trained by using different machine learning algorithm, and finally (...) using different validation and cross-validation methods to compare and validate our results. We build, train, test and deploy our model by restful API services which can be called through an endpoint, and with very high accuracy and huge success. (shrink)

In our study of U.S. counterterrorism programs, we found that anthropology needs a mode of analysis that considers security as a form distinct from insecurity, in order to capture the very heterogeneity of security objects, logics and forms of action. This article first presents a genealogy for the anthropology of security, and identifies four main approaches: violence and State terror; military, militarization, and militarism; para-state securitization; and what we submit as “security analytics.” Security analytics moves away from studying security formations, (...) and how much violence or insecurity they yield, to identifying security forms of action, whether or not they are part of the nation-state. As a framework for anthropological inquiry, it is oriented toward capturing how these forms of action work and what types of security they produce. We then illustrate this approach through our fieldwork on counterterrorism in the domains of law enforcement, biomedical research and federal-state counter extremism. In each of our cases, we use security analytics to arrive at a diagnosis of the form of action. The set of conceptual distinctions that we propose as an aid to approaching empirical situations and the study of security is, on another level, a proposal for an approach to anthropology today. We do not expect that the distinctions that aid us will suffice for every situation. Rather, we submit that this work presents a set of specific insights about contemporary U.S. security, and an example of a new approach to anthropological problems. (shrink)

We are living in an imbalanced and insecure world. It is torn by violent conflicts on a global scale: between the West and the East, between rich and poor countries, between Christianity and Islam, between the Great Forces and naughty countries, between a global capitalist elite and workers and between the global democratic community and global terrorism. An optimistic thesis will be grounded asserting that varied cultures and civilizations can solve all existing problems and contradictions peacefully and can carry out (...) mutually advantageous cooperation more effectively irrespective of differences between them. Security problems can be explained and defined by means of making use of fundamental philosophical notions. All levels of security are interrelated on a global scale. The problem of regulation of international relations worldwide as regards guaranteeing security of all participants in them is one of primary importance. The present-day multi-polar world could be based on a social and economic pluralism and peace culture. (shrink)

Cloud security remains a top concern for enterprises. This study introduces AI Security, a risk governance framework integrating AI, DevSecOps, and predictive analytics to enhance compliance automation and threat intelligence in cloud environments.

To ensure widespread access, scalability, and sharing capabilities, applications of the Industrial Internet of Things (IIoT) leverage the cloud for storing the data streams they collect. However, the secure storage and sharing of the vast amounts of continuously generated data present significant privacy challenges, including the risk of data breaches. This paper introduces SmartCrypt, a system designed for secure data storage and sharing that facilitates analytics on encrypted time series data. SmartCrypt allows users to securely and selectively share (...) their encrypted data through an innovative symmetric homomorphic encryption method. Simulation results indicate that SmartCrypt decreases query time by 17% and enhances throughput by 9% compared to the benchmark scheme. Furthermore, SmartCrypt's scalability and flexibility make it an attractive solution for various IIoT applications. The system's performance and security features demonstrate its potential for widespread adoption. Future research directions include exploring SmartCrypt's applicability in other domains, such as healthcare and finance. (shrink)

Cloud computing has transformed data management by providing scalable and on-demand services, but its open and shared infrastructure makes it highly vulnerable to sophisticated cyber threats. Traditional Intrusion Detection Systems (IDS) struggle with dynamic and large-scale cloud environments due to high false positives, limited adaptability, and computational overhead. To address these challenges, this paper proposes an AI-driven Intrusion Detection System (AI-IDS) that leverages deep learning models, including Convolutional Neural Networks (CNN) and Long Short-Term Memory (LSTM) networks, to analyze network traffic, (...) detect anomalies, and identify advanced cyber threats with high accuracy. Unlike rule-based IDS, which rely on static signatures, our model continuously learns from real-time data, improving detection rates while reducing false alarms. The proposed AI-IDS is optimized for cloud infrastructure, ensuring low-latency threat detection, minimal computational burden, and real-time adaptability to emerging attack patterns. Experimental validation on benchmark datasets demonstrates significant improvements in accuracy, precision, and scalability, making AI-powered IDS a crucial innovation in cloud security. (shrink)

In today's digital landscape, small-scale companies encounter significant challenges in safeguarding their sensitive data against threats due to limited financial resources. Traditional data loss prevention solutions often come with hefty price tags, rendering them inaccessible to such organizations. Our project addresses this issue by designing a user-friendly script that can be easily deployed and managed by non- experts, lowering the barrier to entry for enhancing data security. Our project proposes an innovative approach leveraging PowerShell and ADMX to develop a cost- (...) effective data loss prevention script. This script aims to fortify the security of employee systems without necessitating expensive licenses, offering small- scale companies a practical and affordable solution to enhance their data security posture. By implementing a preventative approach to data loss prevention, small- scale companies can mitigate risks more effectively and avoid the potentially catastrophic consequences of data breaches. This shift in mindset from damage control to risk prevention reflects a strategic investment in the long-term resilience and viability of small businesses in today's increasingly digitized economy. (shrink)

Cloud security is an essential aspect of modern enterprise IT infrastructure, as organizations increasingly migrate to the cloud for data storage, processing, and application hosting. This guide provides a thorough understanding of cloud security, outlining key risks, challenges, and best practices that enterprises must consider when securing their cloud environments. The paper explores various security models, including shared responsibility, zero trust, and defense-in-depth, and discusses technologies such as encryption, identity and access management (IAM), multi-factor authentication (MFA), and security monitoring tools. (...) Through comprehensive research, this paper aims to equip enterprises with the knowledge to build a secure cloud environment and safeguard sensitive data. (shrink)

Enterprise Risk Management involves the process of identification, evaluation, treatment, and communication regarding risks throughout the enterprise. To support the tasks associated with this process, several frameworks and modeling languages have been proposed, such as the Risk and Security Overlay (RSO) of ArchiMate. An ontological investigation of this artifact would reveal its adequacy, capabilities, and limitations w.r.t. the domain of risk and security. Based on that, a language redesign can be proposed as a refinement. Such analysis and redesign have been (...) executed for the risk elements of the RSO grounded in the Common Ontology of Value and Risk. The next step along this line of research is to address the following research problems: What would be the outcome of an ontological analysis of security-related elements of the RSO? That is, can we identify other semantic deficiencies in the RSO through an ontological analysis? Once such an analysis is provided, can we redesign the security elements of the RSO accordingly, in order to produce an improved artifact? Here, with the aid of the Reference Ontology for Security Engineering (ROSE) and the ontological theory of prevention behind it, we address the remaining gap by proceeding with an ontological analysis of the security-related constructs of the RSO. The outcome of this assessment is an ontology-based redesign of the ArchiMate language regarding security modeling. In a nutshell, we report the following contributions: (1) an ontological analysis of the RSO that identifies six limitations concerning security modeling; (2) because of the key role of the notion of prevention in security modeling, the introduction of the ontological theory of prevention in ArchiMate; (3) a well-founded redesign of security elements of ArchiMate; and (4) ontology-based security modeling patterns that are logical consequences of our proposal of redesign due to its underlying ontology of security. As a form of evaluation, we show that our proposal can describe risk treatment options, according to ISO 31000. Finally, besides presenting multiple examples, we proceed with a real-world illustrative application taken from the cybersecurity domain. (shrink)

The authors of the scientific monograph have come to the conclusion that ensuring food security during martial law requires the use of mechanisms to support agricultural exports, diversify logistics routes, ensure environmental safety, provide financial and marketing support. Basic research focuses on assessment the state of agricultural producers, analysing the financial and accounting system, logistics activities, ensuring competitiveness, and environmental pollution. The research results have been implemented in the different decision-making models during martial law, international logistics management, digital audit, agricultural (...) lending, integrated marketing system, risk management and diversification of Ukrainian agricultural exports. The results of the study can be used in the developing of food security policies, programmes and strategies, agricultural production development, decision-making at the level of ministries and agencies that regulate food security management processes. The results can also be used by students and young scientists in the educational process and conducting scientific research on food security during martial law and Ukraine’s recovery economy after the victory. (shrink)

The exponential growth of data storage requirements has become a pressing challenge in hybrid cloud environments, necessitating efficient data deduplication methods. This research proposes a novel Smart Deduplication Framework (SDF) designed to identify and eliminate redundant data, thus optimizing storage usage and improving data retrieval speeds. The framework leverages a hybrid cloud architecture, combining the scalability of public clouds with the security of private clouds. By employing a combination of client-side hashing, metadata indexing, and machine learning-based duplicate detection, the framework (...) achieves significant storage savings without compromising data integrity. Real-time testing on a hybrid cloud setup demonstrated a 65% reduction in storage needs and a 40% improvement in data retrieval times. Additionally, the system employs blockchain for immutable logging of deduplication activities, enhancing transparency and traceability. This study concludes with an evaluation of the deduplication framework's impact on cost efficiency, system performance, and potential scalability. Future enhancements aim to integrate multi-cloud interoperability and advanced compression algorithms to further refine storage management. (shrink)

Traditional encryption methods provide a layer of security, but they often lack the robustness needed to address emerging threats. This paper introduces an optimized framework for secure cloud storage that integrates data encryption, decryption, and dispersion using cutting-edge optimization techniques. The proposed model enhances data security by first encrypting the data, then dispersing it across multiple cloud servers, ensuring that no single server holds the complete dataset. Decryption occurs only when the dispersed data fragments are reassembled, which adds an (...) additional layer of security. We also explore various optimization algorithms to improve the efficiency of encryption and dispersion processes, thereby reducing computational overhead while maintaining high security. The implementation of this framework is evaluated on multiple cloud platforms, demonstrating its effectiveness in safeguarding data with minimal performance impact. (shrink)

COVID-19 is the new standard for forced changes in the workforce, forcing the adoption of remote and hybrid work environments globally. It was in the period of this rapid adoption of distributed work environments that new opportunities for flexibility and productivity were opened up, but fundamental weaknesses of conventional notions of cybersecurity were unveiled. As employees connect to company networks from a plethora of different places and different types of devices, situations were complex at the corporate level to ensure that (...) security measures remained adequately stringent. New threats came to the fore, such as endpoint devices that have added more risks since they were unsecured home networks and the use of personal devices (BYOD). All these changes raised the concern of a new security model for the enterprise whereby new, fresh methods of dealing with the issue emphasize strategies which accommodate the change, and we affirm the need to put in place security architecture that will help protect the valuable enterprise assets. This paper looks at the new challenges of defending the widely dispersed employee base and offers an integrated solution for protecting the modern enterprise. To address risks inherent in the current working environments, the framework seeks to address concerns of identity-centric security and zero-trust and apply emerging technologies in threat intelligence. Using knowledge acquired by current cyber assaults and actual programs, the research provides numerous substantial approaches to countering current and potential cyber threats. The research also identifies the main recommendations for enterprises operating in this environment, including the need for active management of risks and constant adaptation to threats. (shrink)

This article addresses a few moments in the evolution of human security law in Iraq, focusing in particular on the Coalition Provisional Authority, the new Iraqi Constitution, Iraqi High Tribunal (successor to the Iraqi Special Tribunal), and the International Criminal Court. It synthesizes the results of some existing research on ongoing impunity for certain crimes against political candidates, journalists, anti-corruption activists, and ethnic and religious minorities, a situation which may have tainted Iraq’s transition to a more democratic republic, while aggravating (...) other conflicts, such as those in Syria. In theory, the institutions of human and national security can help reconcile peoples whose tenuous unity had been shattered in wartime. The sometimes competing priorities and policies of Iraqi politicians, civil society groups, and judges resulted in swift justice for Iraqi officials responsible for mass killings involving Shi’a Arab, Kurdish, and other victims, but a lack of justice for other segments of the population. The emphasis of some claims of injury over others may have "reenchanted" some sectors of Iraqi society with the state and its institutions, while alienating others and contributing to ruptures in the social fabric. The Coalition Provisional Authority, Iraqi leaders, and international community ensured that the high-profile proceedings against former regime officials would not be accompanied or followed by others that some Iraqis might perceive as being as pressing as those of the Iraqi High Tribunal, relating to the impact of sanctions and aerial bombardment, the legality of Iraq's occupation, torture, etc. (shrink)

According to principles of modal security, evidence undermines a belief only when it calls into question certain purportedly important modal connections between one’s beliefs and the truth (e.g., safety or sensitivity). Justin Clarke-Doane and Dan Baras have advanced such principles with the aim of blocking evolutionary moral debunking arguments. We examine a variety of different principles of modal security, showing that some of these are too strong, failing to accommodate clear cases of undermining, while others are too weak, failing to (...) do their advertised work of blocking evolutionary moral debunking arguments. If there is a security principle that slips between the horns of this dilemma—one that is both viable and debunker-blocking—it remains to be formulated. (shrink)

The Internet of Things (IoT) is a rapidly growing technology that connects and integrates billions of smart devices, generating vast volumes of data and impacting various aspects of daily life and industrial systems. However, the inherent characteristics of IoT devices, including limited battery life, universal connectivity, resource-constrained design, and mobility, make them highly vulnerable to cybersecurity attacks, which are increasing at an alarming rate. As a result, IoT security and privacy have gained significant research attention, with a particular focus on (...) developing anomaly detection systems. In recent years, machine learning (ML) has made remarkable progress, evolving from a lab novelty to a powerful tool in critical applications. ML has been proposed as a promising solution for addressing IoT security and privacy challenges. In this article, we conducted a study of the existing security and privacy challenges in the IoT environment. Subsequently, we present the latest ML-based models and solutions to address these challenges, summarizing them in a table that highlights the key parameters of each proposed model. Additionally, we thoroughly studied available datasets related to IoT technology. Through this article, readers will gain a detailed understanding of IoT architecture, security attacks, and countermeasures using ML techniques, utilizing available datasets. We also discuss future research directions for ML-based IoT security and privacy. Our aim is to provide valuable insights into the current state of research in this field and contribute to the advancement of IoT security and privacy. (shrink)

Password-Based Security Systems are elements of an authentication mechanism for controlling access into digital systems that are frequently used in your daily life. The user walks up to a digital system (computer/smartphone) and enters their privileged passcode that is verified by the confirmation methods of an encrypted version of their passcode. The security practice of how effective the password-based system is related to two independent cases of secured compliance, the strength of the password itself, and whether any other systems are (...) in place such as hashing the password or salting the password. Password-based security systems are similarly weaker and vulnerable to unauthorized access using weak passwords, someone whom the user trusts, phishing, and brute force attacks. In order to mitigate these possibilities, security systems become more all-inclusive to include mandates of authorization using multi-factor authentication (MFA) in collusion with passwords. A Lineman Security System centers around the security of utility employees who are working on power lines. Therefore, this type of system is developed to help control linemen security and unauthorized access to critical electrical infrastructure. In order to engineer advance security spatial systems would be implemented using MFA devices, locking devices, access control mechanisms, cameras, data integration, the vision is to limit access, so only authorized utility workers have access, and limit unauthorized workers from tampering with electrical grid access that involve a lineman as active. This security system helps worker's safety and maintains reliability to the electric grid and electrical infrastructure. Even though this just described the first set of security systems employ distinct access, the meaning remains the same how effectively manage access to secure digital and bodily systems through security. (shrink)