Published in Sensors (Basel, Switzerland)
The security of the Internet of Things (IoT) is an important yet often overlooked subject. Specifically, the publicly available information sources about vulnerabilities affecting the connected devices are unsatisfactory. Our research shows that, while the information is available on the Internet, there is no single service offering data focused on...
Published in Sensors (Basel, Switzerland)
Many companies have transformed their telephone systems into Voice over IP (VoIP) systems. Although implementation is simple, VoIP is vulnerable to different types of attacks. The Session Initiation Protocol (SIP) is a widely used protocol for handling VoIP signaling functions. SIP is unprotected against attacks because it is a text-based protocol ...
The number of smartphone users recently surpassed the numbers of desktop users on Internet, and opened up countless development challenges and business opportunities. Not only the fact that the majority of users are connected using their smartphones, but the number of Internet users in general has popularized the massive use of data-driven applicat...
Published in Sensors (Basel, Switzerland)
Over the last decade, video surveillance systems have become a part of the Internet of Things (IoT). These IP-based surveillance systems now protect industrial facilities, railways, gas stations, and even one’s own home. Unfortunately, like other IoT systems, there are inherent security risks which can lead to significant violations of a user’s pri...
Tato diplomová práce se zaobírá problematikou detekce anomálií v sítích. V teoretické části jsou sepsány metody, které využívající statistický přístup, až po metody strojového učení. Následně je vybrána jedna z popsaných metod. V rámci dané metody došlo ke zvolení dvou algoritmů, \textit{Isolation Forest} a \textit{Local Outlier Factor }. Bylo vytv...
Published in SEEU Review
In the last period, especially during the COVID-19 pandemics, individuals as well as institutions globally and in North Macedonia particularly, have failed to correctly respond to the new challenges related to cyber security, online attacks, and fake news. Being that in a state of isolation and quarantine most governmental institutions have heavily...
Published in Proceedings on Privacy Enhancing Technologies
The Internet infrastructure has not been built with security or privacy in mind. As a result, an adversary who has control over a single Autonomous System can set-up mass surveillance systems to gather meta data by passively collecting the headers of the messages they route. To solve this problem, lightweight anonymous routing protocols such as LAP...
Tato práce se zabývá analýzou počítačové sítě společnosti T. J. Sokol Kolín - Atletika. Důraz je kladen především na kybernetickou bezpečnost. Během analýzy je postupováno podle standardu The Penetration Testing Execution Standard. Pro identifikaci a kategorizaci hrozeb je použita metodika STRIDE. Na analýzu je navázáno návrhem a implementací opatř...
V dnešní době má většina větších organizací zřízen svůj bezpečnostní tým, který analyzuje síťový provoz a řeší bezpečnostní incidenty, které by mohly ohrozit provoz organizace. Ač dnes existuje mnoho automatických nástrojů na detekci incidentů, stále má při analýze nezastupitelnou roli člověk. Nástroje na vizualizaci síťového provozu dokáží paralel...
Published in Sensors (Basel, Switzerland)
Security of the Internet of Things is a crucial topic, due to the criticality of the networks and the sensitivity of exchanged data. In this paper, we target the Message Queue Telemetry Transport (MQTT) protocol used in IoT environments for communication between IoT devices. We exploit a specific weakness of MQTT which was identified during our res...
