Browsing by study line "Networks"

Various Denial of Service (DoS) attacks are common phenomena in the Internet. They can consume resources of servers, congest networks, disrupt services, or even halt systems. There are many machine learning approaches that attempt to detect and prevent attacks on multiple levels of abstraction. This thesis examines and reports different aspects of creating and using a dataset for machine learning purposes to detect attacks in a web server environment. We describe the problem field, origins and reasons behind the attacks, typical characteristics, and various types of attacks. We detail ways to mitigate the attacks and provide a review of current benchmark datasets. For the dataset used in this thesis, network traffic was captured in a real-world setting, and flow records were labeled. Experiments performed include selecting important features, comparing two supervised learning algorithms, and observing how a classifier model trained on network traffic on a specific date performs in detecting new malicious records over time in the same environment. The model was also tested with a recent benchmark dataset.

Software development speed has significantly increased in recent years with methodologies like Agile and DevOps that use automation, among other technics, to enable continuous delivery of new features and software updates to the market. This increased speed has given rise to concerns over guaranteeing security at such a pace. To improve security in today’s fast-paced software development, DevSecOps was created as an extension of DevOps. This thesis focuses on the experiences and challenges of organizations and teams striving to implement DevSecOps. We first view our concepts through existing literature. Then, we conduct an online survey of 37 professionals from both security and development backgrounds. The results present the participants’ overall sentiments towards DevSecOps and the challenges they struggle with. We also investigate what kind of solutions have been tried to mitigate these issues and if these solutions have indeed worked.

Software engineers frequently deal with state machines and protocols while building telecommunications systems. Finite state machines have grown to become an essential tool for designing and implementing networks due to their ability to model complicated behaviour in a structured and efficient manner. They offer a framework for defining systems as a collection of states and transitions, enabling programmers to create software that can respond to a variety of situations and events. This thesis explores the use of finite state machines in network software, exploring their various applications, advantages, and limitations with a focus on cellular technologies and mobile communications. The study covers a wide range of state machine methods, including control structures, Unified Modelling Language, Specification and Description Language, state patterns, state machine frameworks, and code generators. The objectives of the research include a comprehensive review of existing state machine techniques, analysis of their relative merits as well as shortcomings, modelling and implementation of selected methods to evaluate their effectiveness, and identification of required features to meet network requirements. The thesis compares the Boost Meta State Machine against the TeleNokia Specification and Description Language for a case study followed by a feature-based comparison of quality attributes to evaluate their performance in areas such as system design, development, and evolution and maintenance. The results show that the Boost framework is better suited as a state machine implementation technique for most network software application scenarios. Finally, the thesis identifies potential directions for further research and technical approaches to address the issues discussed, highlighting emerging trends and technologies that are likely to shape the future of this important area of network architecture.

In this thesis, we cover blockchain applications in public administration. First we cover components related to blockchain technology. We cover especially issues related to management of digital evidence, electronic voting, and health data. In the beginning we cover hash functions and the general structure of the blockchain. Then we cover the cryptocurrency Bitcoin as an example of the blockchain technology. The management of the digital evidence is covered by evaluating three published studies. Likewise, the applications related to voting are evaluated in the light of three publications. Lastly, the management of health data is covered by evaluating three publications. For each of the three areas, we present an estimation of the applicability of the blockchain technology, in the form presented in the evaluated publications. Additionally, we cover a few other potential blockchain application areas. Finally, we present the general evaluation of blockchain applicability to the public administration and the conclusion.

Self-Sovereign Identity is a new concept of managaging digital identities in the digital services. The purpose of the Self-Sovereign Identity is to place the user in the center and move towards decentralized model of identity management. Verifiable Credentials, Verifiable Presentations, Identity Wallets and Decentralized Identifiers are part of the Self-Sovereign Identity model. They have also been recently included in the OpenID Connect specifications to be used with the widely used authentication layer built on OAuth 2.0. The OpenID Connect authentication can now be leveraged with the Decetralized Identifiers (DIDs) and the public keys contained in DID Documents. This work assessed the feasibility of integrating the Verifiable Credentials, Verifiable Presentations and Decentralized Identifiers with OpenID Connect in the context of two use cases. The first use case is to integrate the Verifiable Credentials and Presentations into an OpenID Connect server and utilise Single Sign-On in federated environment. The second use case is to ignore the OpenID Provider and enable the Relying Party to authenticate directly with the Identity Wallet. Custom software components, the Relying Party, the Identity Wallet and the Verifiable Credential Issuer were built to support the assessments. Two new authorization flows were designed for the two use cases. The Federated Verifiable Presentation Flow describes the protocol of Relying Party authenticating with OpenID Provider which receives the user information from the Wallet. The flow does not require any changes for any Relying Party using the same OpenID Provider to authenticate and utilise Single Sign-On. The Verifiable Presentation Flow enables the Relying Party to authenticate directly with the Wallet. However, this flow requires multiple changes to Relying Party and benefits of federated environment are not available, e.g., the Single Sign-On. Both of the flows are useful for their own specific use cases. The new flows are utilising the new segments of the Self-Sovereign Identity and are promising steps towards self-sovereignty.

Energy usage and efficiency is an important topic in the area of cloud computing. It is estimated that around 10% of the world’s energy consumption goes towards the global ICT system [1]. One key aspect of the cloud is virtualization, which allows for the isolation and distribution of system resources through the use of virtual machines. In recent years, container technology, which allows for the virtualization of individual processes, has become a popular virtualization technique. However, there is limited research into the scalability of these containers from both an energy efficiency and system performance perspective. This thesis aims to investigate this issue through large-scale benchmarking experiments. Results of the benchmarking experiments indicate that not necessarily the total amount of containers, but the assigned task of each individual container are relevant when considering energy efficiency. Key findings show a link between latency measurements performed by individual containers and allocated CPU cores on the host machine, with additional CPU cores causing a drop in latency as the amount of containers increase. Further, power consumption seems to hit its peak when CPU utilisation is only at 50%, with additional CPU utilisation causing no increase in power consumption. Finally, RAM utilisation seems to scale linearly with the total amount of containers involved.