In this paper, I argue that an account of security as a basic human right must incorporate moral security. Broadly speaking, a person possesses subjective moral security when she believes that her basic interests and welfare will be accorded moral recognition by others in her community and by social, political, and legal institutions in her society. She possesses objective moral security if, as a matter of fact, her interests and welfare are regarded by her society as morally important—for example, when (...) violent crimes against her being taken to warrant the same punishment and condemnation as equivalent crimes against others. Moral security, thus characterized, is an essential part of what it is to be secure as a human person, and any right to security must include it. In the first part of the paper I critique alternative narrower accounts of the right to security, before defending my account of moral security in Section 2. Section 3 explores how acts of racialized and gendered violence are attacks on the moral security of the victims and of all members of the groups to which the victims belong. Broader structural and institutional forms of racial and sexual discrimination further compound the impact of such acts on moral security. Understanding how racial and sexual discrimination and violence are attacks on moral security offers a new way of thinking about the scope and urgency of a state’s duty to combat racial and sexual discrimination, an issue I explore in the final section of the paper. -/- . (shrink)

This paper examines the notion of the biopolitical body from the standpoint of Foucault’s logic of the security mechanism and the history he tells of vaccine technology. It then investigates how the increasing importance of the genetic code for determining the meaning and limits of the human in the field of 20th century cell biology has been a cause for ongoing transformation in the practices that currently extend vaccine research and development. I argue that these transformations mark the emergence of (...) a new kind of medical subject – the stabilized and infinitely reproducible human cell line – and that the practices and markets exploiting this new form of organism have had a destabilizing effect on the very biopolitical structures that engendered them and, in fact, mark a new way of conceiving the possibilities of cellular life. I call these new ways of organizing power that intervene in the logic of the security measure by mediating the relationship between populations and persons the microbiopolitical. (shrink)

Freedom and security are often portrayed as things that have to be traded off against one another, but this view does not capture the full complexity of the freedom-security relationship. Rather, there seem to be four different ways in which freedom and security connect to each other: freedom can come at the cost of security, security can come at the cost of freedom, freedom can work to the benefit of security, and security can work to the benefit of freedom. This (...) paper analyses each of these connections in turn. It shows that particular understandings of freedom can help us to see particular connections between freedom and security. The practical examples used to illustrate these connections are drawn from the context of the COVID-19 pandemic. It will be suggested that, in the face of challenges such as this one, taking into account all four connections between freedom and security can ultimately help decision-makers in upholding both. (shrink)

Food security brings a number of benefits to humanity from which nobody can be excluded and which can be simultaneously enjoyed by all. An economic understanding of the concept sees food security qualify as a global public good. However, there are four other ways of understanding a public good which are worthy of attention. A normative public good is a good from which nobody ought to be excluded. Alternatively, one might acknowledge the benevolent character of a public good. Others have (...) argued that public goods demand being public in the sense of being visible to all. Finally, it has also been argued that public goods are those goods which need joint action to be produced and maintained. This chapter discusses these five understandings of the public good in relation to food security and highlights the advantage of assessing policies from each of these perspectives. (shrink)

What makes safety claims about general purpose AI systems such as large language models trustworthy? We show that rather than the capabilities of security tools such as alignment and red teaming procedures, it is security practices based on these tools that contributed to reconfiguring the image of AI safety and made the claims acceptable. After showing what causes the gap between the capabilities of security tools and the desired safety guarantees, we critically investigate how AI security practices attempt to fill (...) the gap and identify several shortcomings in diversity and participation. We found that these security practices are part of securitization processes aiming to support (commercial) development of general purpose AI systems whose trustworthiness can only be imperfectly tested instead of guaranteed. We conclude by offering several improvements to the current AI security practices. (shrink)

The philosophical literature on personal relationships is focused on dyads: close relationships between just two people. This paper aims to characterise the value of looser and larger relational networks, particularly from the perspective of liberal political theory. We focus on relational networks' value vis-a-vis the important good of felt security. We begin by characterising felt security and analysing how felt security is produced within dyads. We highlight the ambivalent nature of dyadic relationships as a source of felt security. We then (...) theorise relational networks, explaining how they too can provide felt security. We explore three unappreciated benefits that arise when felt security is garnered from a network, rather than from a dyad. These benefits take liberal political theory as their starting point. We close by considering the implications - for both individual action and institutional design - of using relational networks as a source of felt security. (shrink)

Throughout the history of mankind, energy security has been always seen as a means of protection from disruptions of essential energy systems. The idea of protection from disorders emerged from the process of securing political and military control over energy resources to set up policies and measures on managing risks that affect all elements of energy systems. The various systems placed in a place to achieve energy security are the driving force towards the energy innovations or emerging trends in the (...) energy sector. Our paper discusses energy security status and innovations in the energy sector in European Union (EU). We analyze the recent up-to-date developments of the energy policy and exploitation of energy sources, as well as scrutinize the channels of energy streaming to the EU countries and the risks associated with this energy import. Moreover, we argue that the shift to the low-carbon production of energy and the massive deployment of renewable energy sources (RES) might become the key issue in ensuring the energy security and independency of the EU from its external energy supplies. Both RES, distributed energy resources (DER) and “green energy” that will be based on the energy efficiency and the shift to the alternative energy supply might change the energy security status quo for the EU. (shrink)

In a recent study by Cai et al. about water shortages in Beijing-Tianjin-Hebei urban areas, virtual water has become the central concept of the groundwater security strategy by suggesting increasing imports of water-intensive agricultural products instead of utilizing the depleted groundwater resources for production. However, despite reviewing the content, we could not see how the authors discussed the households’ economic and financial issues from both production and consumption perspectives.

: As cloud-native architectures continue to evolve, microservices have become the foundation for scalable and resilient applications. However, the decentralized nature of microservices introduces significant security challenges, including service-to-service communication security, identity management, and traffic control. Service mesh technologies, such as Istio, Linkerd, and Consul, provide a powerful solution by offering decentralized security enforcement, mutual TLS (mTLS) encryption, fine-grained access control, and observability without modifying application code. This paper explores how service meshes enhance microservices security by implementing zero-trust policies, automatic (...) traffic encryption, and service authentication mechanisms. Through the integration of policy-based access control, workload identity, and anomaly detection, service mesh architectures significantly reduce the risk of unauthorized access, lateral movement attacks, and data breaches. Additionally, this study highlights best practices for deploying secure service meshes in cloud-native environments, ensuring compliance with industry security standards. The findings demonstrate that adopting a service mesh improves security posture while maintaining agility and performance in microservices-based applications. (shrink)

In the context of the digital economy development, the priority component of the economic security of an enterprise is changing from material to digital, constituting an independent element of enterprise security. The relevance of the present research is driven by the need to solve the issue of modernizing the economic security of the enterprise taking into account the new risks and opportunities of digitalization. The purpose of the academic paper lies in identifying the features of preventing internal and external negative (...) influences (threats) in order to guarantee the effective and stable functioning and dynamic social development of the enterprise in the context of digitalization. The research methods are as follows: general scientific research methods, in particular, logical analysis, theoretical substantiation, methods of induction and deduction, formalization and generalization, statistical observation. Results. It has been proposed to introduce the concept of “digital security of the enterprise” for replacing the concept of “information component of economic security” in order to bring the terminology in line with new economic realities. The implementation of the “black box” model has made it possible to identify the latest risks and threats to the economic security of an enterprise within the conditions of the digitalization that differs from the existing ones. The assessment of enterprises’ digital security of the European Union member states has revealed that the digital security level does not depend on the size of the country, however, it is influenced by the institutional environment (in particular, digital development tools in the EU) and the size of enterprises. Also, within the research framework, an assessment of the digital security level of enterprises in the context of digitalization has been proposed. In order to characterize enterprises by the level of digital security, a calculation procedure using the coefficient method has been proposed. (shrink)

This article focuses on the so-called “Area of Freedom, Security and Justice” (ASFJ), namely the policy field of the European Union (EU) that covers judicial and police cooperation, migration and asylum policies and the control of external borders. The article explores how the AFSJ has emerged and how, within it, the relationship between freedom and security has evolved over time and brought about a shift towards a “Security Union”.

As optical network functions increasingly adopt microservice architectures, traditional con-tainer security mechanisms are proving insufficient against sophisticated attacks targeting these critical infrastructure components. This paper introduces a novel framework for securing microser-vice communications in optical networks through the application of Memory Protection Keys (MPK) for enhanced container isolation. Converging containerization technologies with optical networking introduces unique security challenges, particularly in maintaining isolation between sensitive optical control functions while preserving the ultra-low latency requirements essential for network operations. The proposed approach leverages (...) hardware-enforced memory isolation provided by Intel MPK to establish secure domains for optical control functions without sacrificing performance in latency-sensitive applications. The framework includes zero-copy communication protocols between isolated domains, runtime verification through eBPF-based monitoring, and hardware-assisted security mechanisms specifically designed for optical control plane operations. This work addresses the growing tension between security requirements and performance con-straints in software-defined optical networks, offering a balanced approach that improves container security while respecting the strict operational parameters of modern optical control systems. (shrink)

Self-control is integral to successful human agency. Without it we cannot extend our agency across time and secure central social, moral, and personal goods. But self-control is not a unitary capacity. In the first part of this paper we provide a taxonomy of self-control and trace its connections to agency and the self. In part two, we turn our attention to the external conditions that support successful agency and the exercise of self-control. We argue that what we call moral security (...) is a critical foundation for agency. Parts three and four explore what happens to agency when moral security is lacking, as in the case of those subject to racism, and those living in poverty. The disadvantages suffered by those who are poor, in a racial minority or other oppressed group, or suffering mental illness or addiction, are often attributed to a lack of individual self-control or personal responsibility. In particular, members of these groups are often seen as irresponsibly focused on short-term pleasures over long-term good, a view underwritten by particular psychological theories of self-control. We explore how narratives about racism and poverty undermine moral security, and limit and distort the possibility of synchronic and diachronic self-control. Where moral security is undermined, the connection between self-control and diachronic goods often fails to obtain and agency contracts accordingly. We close with some preliminary reflections on the implications for responsibility. (shrink)

As cloud-native architectures continue to evolve, microservices have become the foundation for scalable and resilient applications. However, the decentralized nature of microservices introduces significant security challenges, including service-to-service communication security, identity management, and traffic control. Service mesh technologies, such as Istio, Linkerd, and Consul, provide a powerful solution by offering decentralized security enforcement, mutual TLS (mTLS) encryption, fine-grained access control, and observability without modifying application code. This paper explores how service meshes enhance microservices security by implementing zero-trust policies, automatic traffic (...) encryption, and service authentication mechanisms. Through the integration of policy-based access control, workload identity, and anomaly detection, service mesh architectures significantly reduce the risk of unauthorized access, lateral movement attacks, and data breaches. Additionally, this study highlights best practices for deploying secure service meshes in cloud-native environments, ensuring compliance with industry security standards. The findings demonstrate that adopting a service mesh improves security posture while maintaining agility and performance in microservices-based applications. (shrink)

Perceptually secured knowledge consists of beliefs that amount to knowledge just because they are based on suitable perceptual states. Relationism about the ground of perceptually secured knowledge is the view that if a perceptual state can make a belief based on it amount to knowledge, then it can do that because it constitutes an appropriate kind of relational state, e.g., a state of perceptual acquaintance. I explore the prospects of both maintaining that some beliefs amount to perceptually secured knowledge and (...) developing a relationist account of their ground. (shrink)

We are living in an imbalanced and insecure world. It is torn by violent conflicts on a global scale: between the West and the East, between rich and poor countries, between Christianity and Islam, between the Great Forces and naughty countries, between a global capitalist elite and workers and between the global democratic community and global terrorism. An optimistic thesis will be grounded asserting that varied cultures and civilizations can solve all existing problems and contradictions peacefully and can carry out (...) mutually advantageous cooperation more effectively irrespective of differences between them. Security problems can be explained and defined by means of making use of fundamental philosophical notions. All levels of security are interrelated on a global scale. The problem of regulation of international relations worldwide as regards guaranteeing security of all participants in them is one of primary importance. The present-day multi-polar world could be based on a social and economic pluralism and peace culture. (shrink)

In our study of U.S. counterterrorism programs, we found that anthropology needs a mode of analysis that considers security as a form distinct from insecurity, in order to capture the very heterogeneity of security objects, logics and forms of action. This article first presents a genealogy for the anthropology of security, and identifies four main approaches: violence and State terror; military, militarization, and militarism; para-state securitization; and what we submit as “security analytics.” Security analytics moves away from studying security formations, (...) and how much violence or insecurity they yield, to identifying security forms of action, whether or not they are part of the nation-state. As a framework for anthropological inquiry, it is oriented toward capturing how these forms of action work and what types of security they produce. We then illustrate this approach through our fieldwork on counterterrorism in the domains of law enforcement, biomedical research and federal-state counter extremism. In each of our cases, we use security analytics to arrive at a diagnosis of the form of action. The set of conceptual distinctions that we propose as an aid to approaching empirical situations and the study of security is, on another level, a proposal for an approach to anthropology today. We do not expect that the distinctions that aid us will suffice for every situation. Rather, we submit that this work presents a set of specific insights about contemporary U.S. security, and an example of a new approach to anthropological problems. (shrink)

Scalability, efficiency, and security had been a persistent problem over the years in data mining, several techniques had been proposed and implemented but none had been able to solve the problem of scalability, efficiency and security from cloud computing. In this research, we solve the problem scalability, efficiency and security in data mining over cloud computing by using a restful web services and combination of different technologies and tools, our model was trained by using different machine learning algorithm, and finally (...) using different validation and cross-validation methods to compare and validate our results. We build, train, test and deploy our model by restful API services which can be called through an endpoint, and with very high accuracy and huge success. (shrink)

The importance of Big Data as a foundational component of the AI and ML landscape is not going away anytime soon. As a result, the past fifteen years have seen a tremendous investment in Big Data research. The purpose of this literature review is to compile the most recent results from Big Data studies conducted over the past fifteen years. The study will address questions about the main applications of Big Data analytics, the main challenges and limitations encountered by researchers, (...) and the present and future state of Big Data studies. The review follows a predetermined procedure that automatically examines five major digital libraries. Among the more recent branches of computer science is the study of large amounts of data. Social media, online shopping, blogs, financial institutions, healthcare providers, transactions, websites, applications, opinion forums, and a host of other sources all contribute to the accumulation of data. Various businesses, notably healthcare, make excellent use of it after processing. For data processing and analysis in the industrial sector, these massively generated datasets are indispensable. In order to investigate the value and potential of big data in healthcare and industrial processing applications, this article surveys the published works of numerous writers who have helped with data collecting, analysis, processing, and viewing. Data cleansing, missing value analysis, and outlier analysis are some of the opportunities and problems highlighted, in addition to the benefits and applications of big data. Outlier detection models, as well as methods for detecting and cleaning unclean data, were also suggested in this comprehensive review. (shrink)

This article asks whether a country that suffers from serious environmental problems caused by another country could have a just cause for a defensive war? Danish philosopher Kasper Lippert-Rasmussen has argued that under certain conditions extreme poverty may give a just cause for a country to defensive war, if that poverty is caused by other countries. This raises the question whether the victims of environmental damages could also have a similar right to self-defense. Although the article concerns justice of war, (...) we will concentrate only on the issue of what can be just causes of war, instead of evaluating the entire justification of war. This is to say that we will limit our discussion to the question concerning just cause and leave aside more general questions concerning justness and moral permissibility of war. Our aim is to list the questions that must be made and settled if defensive war in the case of serious environmental problems is said to have (or not to have) a just cause. We will argue that there are three questions that are most important in this context. They are the question concerning liability, the question of collective responsibility, and the question whether environmental harms may create a “sufficient reason” for raising a war. (shrink)

According to principles of modal security, evidence undermines a belief only when it calls into question certain purportedly important modal connections between one’s beliefs and the truth (e.g., safety or sensitivity). Justin Clarke-Doane and Dan Baras have advanced such principles with the aim of blocking evolutionary moral debunking arguments. We examine a variety of different principles of modal security, showing that some of these are too strong, failing to accommodate clear cases of undermining, while others are too weak, failing to (...) do their advertised work of blocking evolutionary moral debunking arguments. If there is a security principle that slips between the horns of this dilemma—one that is both viable and debunker-blocking—it remains to be formulated. (shrink)

Storage Area Network (SAN) security has emerged as a critical component of modern enterprise infrastructure, addressing the challenges posed by exponential data growth and evolving cyber threats. This technical article examines the fundamental components and implementation strategies for securing SAN environments, encompassing access control management, data protection mechanisms, network security infrastructure, physical security controls, compliance frameworks, and best practices. The comprehensive article covers advanced technologies including artificial intelligence-driven monitoring systems, quantumresistant encryption protocols, and automated incident response capabilities, while highlighting the (...) importance of maintaining a balance between security measures and operational efficiency. Through the integration of multiple security layers and automated controls, organizations can establish robust defense mechanisms against emerging threats while ensuring optimal performance of their storage infrastructure. (shrink)

The Internet of Things (IoT) is a rapidly growing technology that connects and integrates billions of smart devices, generating vast volumes of data and impacting various aspects of daily life and industrial systems. However, the inherent characteristics of IoT devices, including limited battery life, universal connectivity, resource-constrained design, and mobility, make them highly vulnerable to cybersecurity attacks, which are increasing at an alarming rate. As a result, IoT security and privacy have gained significant research attention, with a particular focus on (...) developing anomaly detection systems. In recent years, machine learning (ML) has made remarkable progress, evolving from a lab novelty to a powerful tool in critical applications. ML has been proposed as a promising solution for addressing IoT security and privacy challenges. In this article, we conducted a study of the existing security and privacy challenges in the IoT environment. Subsequently, we present the latest ML-based models and solutions to address these challenges, summarizing them in a table that highlights the key parameters of each proposed model. Additionally, we thoroughly studied available datasets related to IoT technology. Through this article, readers will gain a detailed understanding of IoT architecture, security attacks, and countermeasures using ML techniques, utilizing available datasets. We also discuss future research directions for ML-based IoT security and privacy. Our aim is to provide valuable insights into the current state of research in this field and contribute to the advancement of IoT security and privacy. (shrink)

This paper discusses the relation between the human security paradigm and the cosmopolitan democracy scenario as models for humanizing and changing the current international system and transforming it in a global security and development system centered on the individual rather than on the nation state. The main idea for which I argue is that the human security paradigm and the changes it determined in international relations (especially through the responsibility to protect principle) are compatible with the cosmopolitan democracy scenario for (...) changing and transforming the current international system. (shrink)

In the pharmaceutical and healthcare industries, the secure handling of sensitive drug component data is crucial. This project presents a comprehensive system for the secure storage, encryption, and controlled access of drug datasets using modern encryption techniques and cloud-based storage. Users can upload drug-related CSV files through a web interface, which are then processed and encrypted selectively before being uploaded to Amazon S3. Each file is associated with a unique encryption key, which is securely stored and can only be retrieved (...) by authorized users via password-based authentication. The backend is built with Spring Boot, implementing robust encryption logic, metadata storage, and integration with AWS S3. The frontend (developed using Next.js) enables users to upload, view, and manage their encrypted files in an intuitive interface. Key features of the system include role-based access control, data confidentiality, and secure key retrieval mechanisms, ensuring that only legitimate users can decrypt and access sensitive data. This project demonstrates a scalable and secure solution for privacy preserving storage of drug components, making it highly relevant in scenarios where data confidentiality and regulatory compliance are critical. It also lays the groundwork for future integration of machine learning or data mining pipelines once decryption is authorized, ensuring both security and analytical capabilities. (shrink)

Atomic energy developed from 1940 as a subject shrouded in secrecy. Identified successively as a crucial element in military strategy, national status and export aspirations, the research and development of atomic piles (nuclear chain-reactors) were nurtured at isolated installations. Like monastic orders, new national laboratories managed their specialist workers in occupational environments that were simultaneously cosseted and constrained, defining regional variants of a new state-managed discipline: reactor technology. This paper discusses the significance of security in defining the new subject in (...) the USA, UK and Canada – wartime allies with similar political traditions but distinct trajectories in this field during the Cold War. The intellectual borders and content of the subject developed differently in each country, shaped under the umbrella of secrecy by disparate clusters of expertise, industrial traditions, and national goals. The nascent cadre was contained until the mid 1950s by classified publications and state-sponsored specialist courses. The early context of high security filtered its members and capped enduringly both their professional aspirations and public engagement. (shrink)

Network Security Secure Network has now become a need of any organization. The security threats are increasing day by day and making high speed wired/wireless network and internet services, insecure and unreliable. The need is also induced in to the areas like defence, where secure and authenticated access of resources are the key issues related to information security. The security measures should be designed and provided, first a company should know its need of security on the different levels of the (...) organization and then it should be implemented for different levels. Security policies should be designed first before its implementation in such a way, so that future alteration and adoption can be acceptable and easily manageable. (shrink)

Cloud Computing provides vast storage facility. The requirement of this system is to improve the security and transmission performance in the cloud storage environment. Methods: This system provides two level of security for the cloud data. The Client Data Security Contrivance (CDSC) and Cloud Service Provider (CSP) Data Security Contrivance are the two methods which transforms the original data to cipher text. The security algorithm used in CDSC is Linguistic Steganography. Blowfish algorithm is used in CSP Data Security Contrivance to (...) convert the cipher text using a secret-key block cipher of 64-bits. This system is designed to increase security and to improve the transmission performance. Storage-cheating attack model and Privacy-cheating attack model are implemented to protect the data on cloud. Findings: This system increases security and improves transmission performance. The blowfish algorithm is secure against unauthorized attacks and runs faster than the popular existing algorithms. Storage-cheating attack model and Privacy-cheating attack model provides the data confidentiality for data stored in the cloud in higher way. Improvements: The system can be implemented in real cloud system in the future. (shrink)

Since security threats in IoT-enabled smart cities may not appear clear and present to detection mechanisms, efforts have been made to use artificial intelligence methods for anomaly detection. Anomaly detection has been performed using unsupervised learning approaches (Autoencoders, GANs, One Class SVMs) in turn, with these instances considered security threats. In addition, an element for patches and traffic redirection in real time is included in the framework. Results show that the AI detection in general has much more security resilience, decreasing (...) possible attack vectors. This makes the integration of various features like AI, blockchain, and IDS for a solid IoT security a must. Since security threats in IoT-enabled smart cities may not appear clear and present to detection mechanisms, efforts have been made to use artificial intelligence methods for anomaly detection. Anomaly detection has been performed using unsupervised learning approaches (Autoencoders, GANs, One-Class SVMs) in turn, with these instances considered security threats. In addition, an element for patches and traffic redirection in real time is included in the framework. Results show that the AI detection in general has much more security resilience, decreasing possible attack vectors. This makes the integration of various features like AI, blockchain, and IDS for a solid IoT security a must. (shrink)

The authors of the scientific monograph have come to the conclusion that ensuring food security during martial law requires the use of mechanisms to support agricultural exports, diversify logistics routes, ensure environmental safety, provide financial and marketing support. Basic research focuses on assessment the state of agricultural producers, analysing the financial and accounting system, logistics activities, ensuring competitiveness, and environmental pollution. The research results have been implemented in the different decision-making models during martial law, international logistics management, digital audit, agricultural (...) lending, integrated marketing system, risk management and diversification of Ukrainian agricultural exports. The results of the study can be used in the developing of food security policies, programmes and strategies, agricultural production development, decision-making at the level of ministries and agencies that regulate food security management processes. The results can also be used by students and young scientists in the educational process and conducting scientific research on food security during martial law and Ukraine’s recovery economy after the victory. (shrink)

This article addresses a few moments in the evolution of human security law in Iraq, focusing in particular on the Coalition Provisional Authority, the new Iraqi Constitution, Iraqi High Tribunal (successor to the Iraqi Special Tribunal), and the International Criminal Court. It synthesizes the results of some existing research on ongoing impunity for certain crimes against political candidates, journalists, anti-corruption activists, and ethnic and religious minorities, a situation which may have tainted Iraq’s transition to a more democratic republic, while aggravating (...) other conflicts, such as those in Syria. In theory, the institutions of human and national security can help reconcile peoples whose tenuous unity had been shattered in wartime. The sometimes competing priorities and policies of Iraqi politicians, civil society groups, and judges resulted in swift justice for Iraqi officials responsible for mass killings involving Shi’a Arab, Kurdish, and other victims, but a lack of justice for other segments of the population. The emphasis of some claims of injury over others may have "reenchanted" some sectors of Iraqi society with the state and its institutions, while alienating others and contributing to ruptures in the social fabric. The Coalition Provisional Authority, Iraqi leaders, and international community ensured that the high-profile proceedings against former regime officials would not be accompanied or followed by others that some Iraqis might perceive as being as pressing as those of the Iraqi High Tribunal, relating to the impact of sanctions and aerial bombardment, the legality of Iraq's occupation, torture, etc. (shrink)

In Risk Management, security issues arise from complex relations among objects and agents, their capabilities and vulnerabilities, the events they are involved in, and the value and risk they ensue to the stakeholders at hand. Further, there are patterns involving these relations that crosscut many domains, ranging from information security to public safety. Understanding and forming a shared conceptualization and vocabulary about these notions and their relations is fundamental for modeling the corresponding scenarios, so that proper security countermeasures can be (...) devised. Ontologies are instruments developed to address these conceptual clarification and terminological systematization issues. Over the years, several ontologies have been proposed in Risk Management and Security Engineering. However, as shown in recent literature, they fall short in many respects, including generality and expressivity - the latter impacting on their interoperability with related models. We propose a Reference Ontology for Security Engineering (ROSE) from a Risk Treatment perspective. Our proposal leverages on two existing Reference Ontologies: the Common Ontology of Value and Risk and a Reference Ontology of Prevention, both of which are grounded on the Unified Foundational Ontology (UFO). ROSE is employed for modeling and analysing some cases, in particular providing clarification to the semantically overloaded notion of Security Mechanism. (shrink)

Recently there is an increasing technological development in intelligent tutoring systems. This field has become interesting to many researchers. In this paper, we present an intelligent tutoring system for teaching information security. This intelligent tutoring systems target the students enrolled in Advanced Topics in Information Security in the faculty of Engineering and Information Technology at Al-Azhar University in Gaza. Through which the student will be able to study the course and solve related problems. An evaluation of the intelligent tutoring systems (...) was carried out and the results were promising. (shrink)

Enterprise Risk Management involves the process of identification, evaluation, treatment, and communication regarding risks throughout the enterprise. To support the tasks associated with this process, several frameworks and modeling languages have been proposed, such as the Risk and Security Overlay (RSO) of ArchiMate. An ontological investigation of this artifact would reveal its adequacy, capabilities, and limitations w.r.t. the domain of risk and security. Based on that, a language redesign can be proposed as a refinement. Such analysis and redesign have been (...) executed for the risk elements of the RSO grounded in the Common Ontology of Value and Risk. The next step along this line of research is to address the following research problems: What would be the outcome of an ontological analysis of security-related elements of the RSO? That is, can we identify other semantic deficiencies in the RSO through an ontological analysis? Once such an analysis is provided, can we redesign the security elements of the RSO accordingly, in order to produce an improved artifact? Here, with the aid of the Reference Ontology for Security Engineering (ROSE) and the ontological theory of prevention behind it, we address the remaining gap by proceeding with an ontological analysis of the security-related constructs of the RSO. The outcome of this assessment is an ontology-based redesign of the ArchiMate language regarding security modeling. In a nutshell, we report the following contributions: (1) an ontological analysis of the RSO that identifies six limitations concerning security modeling; (2) because of the key role of the notion of prevention in security modeling, the introduction of the ontological theory of prevention in ArchiMate; (3) a well-founded redesign of security elements of ArchiMate; and (4) ontology-based security modeling patterns that are logical consequences of our proposal of redesign due to its underlying ontology of security. As a form of evaluation, we show that our proposal can describe risk treatment options, according to ISO 31000. Finally, besides presenting multiple examples, we proceed with a real-world illustrative application taken from the cybersecurity domain. (shrink)

Many philosophers have claimed that evidence for a theory is better when multiple independent tests yield the same result, i.e., when experimental results are robust. Little has been said about the grounds on which such a claim rests, however. The present essay presents an analysis of the evidential value of robustness that rests on the fallibility of assumptions about the reliability of testing procedures and a distinction between the strength of evidence and the security of an evidence claim. Robustness can (...) enhance the security of an evidence claim either by providing what I call second-order evidence, or by providing back-up evidence for a hypothesis. (shrink)

The rapid advancement of quantum computing poses a significant threat to classical cryptographic systems, particularly those based on RSA, ECC, and other public-key algorithms. With Shor’s algorithm capable of efficiently factoring large numbers and breaking current encryption standards, the transition to postquantum cryptography (PQC) has become a global priority. This paper explores the impact of quantum computing on cryptographic security, the need for quantum-resistant cryptographic algorithms, and ongoing standardization efforts led by organizations such as NIST. We analyze various post-quantum cryptographic (...) techniques, including lattice-based, hash-based, multivariate, and code-based cryptography, assessing their feasibility for real-world implementation. Additionally, we discuss the challenges associated with transitioning to PQC, including computational overhead, interoperability, and regulatory compliance. As the quantum era approaches, organizations must proactively adopt post-quantum cryptographic solutions to safeguard sensitive data and ensure long-term security in a quantum-capable world. (shrink)

Scalability, efficiency, and security had been a persistent problem over the years in data mining, several techniques had been proposed and implemented but none had been able to solve the problem of scalability, efficiency and security from cloud computing. In this research, we solve the problem scalability, efficiency and security in data mining over cloud computing by using a restful web services and combination of different technologies and tools, our model was trained by using different machine learning algorithm, and finally (...) using different validation and cross-validation methods to compare and validate our results. We build, train, test and deploy our model by restful API services which can be called through an endpoint, and with very high accuracy and huge success. (shrink)

This thesis examines the key moral principles that should govern decision-making by police and military when using lethal force. To this end, it provides an ethical analysis of the following question: Under what circumstances, if any, is it morally justified for the agents of state-sanctioned security institutions to use lethal force, in particular the police and the military? Recent literature in this area suggests that modern conflicts involve new and unique features that render conventional ways of thinking about the ethics (...) of armed conflict, and the use of lethal force, as inadequate or redundant. In particular, there is an increased concern with the moral difficulties created by “non-standard” cases. This is where the police or military are obliged to operate outside their conventional contexts. In such non-standard cases, on what moral basis can (or should) state actors – especially the police and military – use lethal force? One approach argues that there is nothing morally exceptional about the use of lethal force by police or military. This says the only available moral justification for using lethal force is killing in self-defence or defence of others. In contrast, I use an institutional approach to develop a moral framework for the state’s morally exceptional use of lethal force. The institutional approach is concerned with the ends (telos) or purpose of a social institution. It says that the moral purpose of a social institution alters the moral responsibilities of its agents; what is referred to as role morality. My analysis demonstrates that there is an important moral distinction between justified killing in self-defence and state-sanctioned uses of lethal force. My claim is that police and military uses of lethal force are not morally justified in the same way as the average person’s use of lethal force (i.e. self-defence or defence of others). Instead, I argue that the state-sanctioned institutional role of police and military give these state actors special moral duties, and therefore exceptional moral justification, for using lethal force. I argue that the institutional end of the police is the preservation of public safety. This includes using lethal force where it is necessary to protect life and prevent serious injury to jurisdictional inhabitants. In contrast, a morally responsible state uses military force to defend the “common good.” That is, when it is necessary to defend the peaceful functioning of a state from armed threats or other forms of political violence. I then conclude that non-standard cases require the addition of jus ad vim (or the just use of military force short-of-war) as a hybrid element to the moral framework for the state-sanctioned use of lethal force. This provides a better way of applying ethics to the use of military force when defending the common good against serious threats in non-standard cases. This is because jus ad vim complements the conventional military paradigm by permitting the use of military capabilities to defend the common good. But, at the same time, it inhibits the move towards the more destructive levels of violence characteristic of conventional warfighting. (shrink)

Data security is, protecting data from ill- conceived get to, utilize, introduction, intrusion, change, examination, recording or destruction. Cloud computing is a sort of Internet-based computing that grants conjoint PC handling resources and information to PCs what's more, different gadgets according to necessity. It is a model that empowers universal, on-request access to a mutual pool of configurable computing resources. At present, security has been viewed as one of the best issues in the improvement of Cloud Computing. The key issue (...) in effective execution of Cloud Computing is to adequately deal with the security in the cloud applications. This paper talks about the part of cryptography in cloud computing to improve the data security. The expectation here is to get bits of knowledge another security approach with the usage of cryptography to secure information at cloud data centers. (shrink)

: Lately there is more attention paid to technological development in intelligent tutoring systems. This field is becoming an interesting topic to many researchers. In this paper, we are presenting an intelligent tutoring system for teaching DES Information Security Algorithm called DES-Tutor. The DES-Tutor target the students enrolled in cryptography course in the department Information Technology in Al-Azhar University in Gaza. Through DES-Tutor the student will be able to study course material and try the exercises of each lesson. An evaluation (...) of the DES-Tutor was carried out and the results were promising. (shrink)

The adoption of multi-cloud environments has become a strategic necessity for organizations seeking scalability, flexibility, and operational efficiency. However, distributing workloads across multiple cloud providers introduces significant security challenges, including authentication vulnerabilities, inconsistent security policies, data breaches, and compliance risks. Traditional security approaches often fail to address the complexity of multi-cloud ecosystems, requiring a more comprehensive risk mitigation strategy. This paper analyses key security risks in multi-cloud architectures and evaluates industry-standard risk assessment frameworks to prioritize effective countermeasures. Our findings indicate (...) that authentication, access control, and secure cloud networking are the most critical areas requiring immediate attention. Threats such as identity mismanagement, insecure data transfers, and lack of unified monitoring further escalate security concerns. To mitigate these risks, we propose a combination of zero-trust architecture, robust identity and access management (IAM), encryption protocols, and AI-driven threat detection. Implementing these strategies can enhance data integrity, regulatory compliance, and overall cloud security posture. By adopting a proactive approach, IT leaders can optimize cybersecurity investments and ensure the resilience of multi-cloud environments. This study provides actionable insights to strengthen security in distributed cloud architectures, enabling organizations to defend against evolving cyber threats. (shrink)

This paper discusses how the general and abstract concept of legitimacy applies to international institutions, using the United Nations Security Council as an example. We argue that the evaluation of the Security Council’s legitimacy requires considering three significant and interrelated aspects: its purpose, competences, and procedural standards. We consider two possible interpretations of the Security Council’s purpose: on the one hand, maintaining peace and security, and, on the other, ensuring broader respect for human rights. Both of these purposes are minimally (...) morally acceptable for legitimacy. Second, we distinguish between three different competences of the UNSC: 1) the decision-making competence, 2) the quasi-legislative competence, and 3) the referral competence. On this basis, we argue that different procedural standards are required to legitimise these competences, which leads to a more differentiated understanding of the Security Council’s legitimacy. While maintaining that the membership structure of the Council is a severe problem for its legitimacy, we suggest other procedural standards that can help to improve its overall legitimacy, which include broad transparency, deliberation, and the revisability of the very terms of accountability themselves. (shrink)

Centred on 'Foams', the third volume of his Spheres trilogy, this article questions the privilege granted by Peter Sloterdijk to motifs of inclusion and exclusion, contending that whilst his prioritization of dwelling as a central aspect of human existence provides a promising counterpoint to the dislocative and isolative effects of post-industrial capitalism, it is compromised by its dependence upon an anti-cosmopolitan outlook that views cultural distantiation as a natural and preferable state of human affairs, and valorizes a purported ontological security (...) attained through defensive postures with respect to perceived foreigners or externalities. Sloterdijk’s conceptualization of culture as a kind of immune system, it is argued, although posited as a rebuke to models of essentialism and ethno-nationalism, provides ontological support to the xenophobic critiques of immigration that are today finding increasing currency. (shrink)

In this study, the idea of the local African community as a social structure ensuring the security of its members is presented. An understanding of the concept of security is first briefly discussed, followed by the meaning of the concept of the local African community. The chapter also makes an a priori distinction between what one can call “moderate” and “radical” types of communal life and two case studies exemplifying them are presented. The chapter aims to analyze the trade off, (...) in terms of provision of security, including economic security, by local communities, for the shaping of a democratic political culture in Sub-Saharan Africa. Most importantly, however, this chapter also highlights the rationality that underpins the seemingly low-quality democratic political activities of members of local African communities. (shrink)

This forum contribution addresses two major themes in de Goede’s original essay on ‘Financial security’: (1) the relationship between stable markets and the proverbial ‘security dilemma’; and (2) the development of new decision-technologies to address risk in the post-World War II period. Its argument is that the confluence of these two themes through rational choice theory represents a fundamental re-evaluation of the security dilemma and its relationship to the rule of law governing market relations, ushering in an era of perpetual (...) physical and financial insecurity. (shrink)

Purpose: The research explored empirical evidence to assess the impact of cyber security and supply chain risk on digital operations in the UAE pharmaceutical industry. Methodology/Design/Approach: Based on responses from 243 personnel working at 14 pharmaceutical manufacturing companies in Dubai, data were examined for normality, instrument validity and regression analysis. Cyber security and SC risk on digital operations were explored by applying convenient sampling and descriptive and analytical research design. Findings: The findings validated the significant positive association between cyber security (...) and supply chain risk with digital operations. Research implications and Limitations: The research model was developed with three variables evaluated only on the pharmaceutical industry in Dubai. Future research should focus on multiple manufacturing industries by covering a larger geographic area. Practical implications: When suppliers are highly concentrated, customer-focused organisations with uncertain levels of digital transformation could improve their ability to manage supply chain risk by diversifying their clients. Pharmaceutical firms may require a greater focus on technology-based manufacturing firms to build and maintain customer trust. Originality Value: To illustrate how the pharmaceutical industry has explored the relationship between cyber security, supply chain risk and digital operations, the research highlights the significant and convoluted consequences of the relationship model that have not been previously considered. (shrink)

I discuss the structure of genealogical debunking arguments. I argue that they undermine our mathematical beliefs if they undermine our moral beliefs. The contrary appearance stems from a confusion of arithmetic truths with (first-order) logical truths, or from a confusion of reliability with justification. I conclude with a discussion of the cogency of debunking arguments, in light of the above. Their cogency depends on whether information can undermine all of our beliefs of a kind, F, without giving us direct reason (...) to doubt that our F-beliefs are modally secure. (shrink)

Abstract: Cloud computing has transformed IT by offering scalability, cost efficiency, and flexibility, yet it has also introduced complex security risks, including misconfigurations, identity mismanagement, and compliance violations. Cloud Security Posture Management (CSPM) has emerged as a critical solution to address these challenges by automating the continuous assessment and remediation of cloud environments. This paper explores the architecture, working mechanisms, and benefits of CSPM, focusing on its role in enforcing security policies through automation. It highlights common cloud security threats, the (...) importance of proactive posture management, and the integration of CSPM with DevSecOps and emerging technologies like AI. Additionally, it discusses leading CSPM tools, their features, and future trends in the domain. By analyzing current practices and research, the paper concludes with strategic recommendations for organizations seeking to enhance cloud security through CSPM. (shrink)

This paper explores the tensions between two disparate approaches to addressing hunger worldwide: Food security and food sovereignty. Food security generally focuses on ensuring that people have economic and physical access to safe and nutritious food, while food sovereignty movements prioritize the right of people and communities to determine their agricultural policies and food cultures. As food sovereignty movements grew out of critiques of food security initiatives, they are often framed as conflicting approaches within the wider literature. This paper explores (...) this tension, arguing that food security is based on a particular model of justice, distributive justice, which limits the sovereignty and autonomy of communities as food producers and consumers. In contrast, food sovereignty movements view food security as a necessary part of food sovereignty, but ultimately insufficient for creating food sustainable communities and limiting wider harms. Rather than viewing food security and food sovereignty as in conflict, we argue that food sovereignty’s justice framework both encompasses and entails justice claims that guide food security projects. (shrink)