检索结果-内蒙古大学图书馆

4th International Conference on Big Data and Security, ICBDS 2022

作者： Zhou, Pei Luo, Xiangyang Du, Shaoyong Shi, Wenqi Guo, Jiashan School of Cyber Science and Engineering Zhengzhou University Zhengzhou450000 China State Key Laboratory of Mathematical Engineering and Advanced Computing Zhengzhou450000 China

ISBN: (纸本)9789819932993

To solve the multi-platform user association problem of complex trajectory matching process and high time cost in cross-platform association positioning of instant messaging users, and at the same time make full use of the information in user trajectories, this paper proposes a supervised learning-based cross-platform instant messaging user association positioning method. The algorithm firstly places probes in the area where the target may appear to obtain user information;then gets user trajectories through the obtained user distance information and time information;selects user features through the classification algorithm of supervised learning, and designs a cross-platform instant messaging user association localization method based on supervised learning, so as to increase the association efficiency and accuracy of cross-platform instant messaging user association. The method conducts specific experiments for the most commonly used instant messaging tools in China, WeChat and Stranger users, and the results show that the method can achieve efficient and reliable association for these two types of instant messaging users. © 2023, The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd.

关键词： Trajectories

来源：评论

学校读者我要写书评

暂无评论

Solve the False-Positive Problem of the Mimic System Based on the Best Mimic Component Set

引用

China Communications 2022年第5期19卷 253-266页

作者： Yuwen Shao Zheng Zhang Xiaomei Wang Chuanxing Pan Jiangxing Wu State Key Laboratory of Mathematical Engineering and Advanced Computing Zhengzhou 450001China China National Digital Switching System Engineering and Technological R&D Center Zhengzhou 450002China

At present,there is a problem of false positives caused by the too vast mimic scope in mimic transformation *** studies have focused on the“compensation”method to deal with this problem,which is expensive and cannot fundamentally solve *** paper provides new insights into coping with the ***,this study summarizes the false-positive problem in the mimic transformation,analyzes its possible harm and the root ***,three properties about the mimic scope are *** on the three properties and security quantification technology,the best mimic component set theory is put forward to solve the false-positive *** are two algorithms,the supplemental method and the subtraction *** best mimic component set obtained by these two algorithms can fundamentally solve the mimic system’s false-positive problem but reduce the cost of mimic *** make up for the lack of previous researches.

关键词： mimic scope the best mimic component set false-positive rate mimic transformation

来源：评论

学校读者我要写书评

暂无评论

Path test data generation using adaptive simulated annealing particle swarm optimization

引用

Soft computing 2024年第17-18期28卷 9587-9607页

作者： Jiao, Chongyang Zhou, Qinglei State Key Laboratory of Mathematical Engineering and Advanced Computing PLA Strategic Support Force Information Engineering University Zhengzhou450001 China Henan Information Engineering School Zhengzhou Vocational College of Industrial Safety Zhengzhou450000 China School of Computer and Artificial Intelligence Zhengzhou University Zhengzhou450001 China

Software testing is an effective means of ensuring software quality. The cost of software testing is the main component of the total cost of software development. The generation of test data is very important in testing, because the efficiency of testing depends on the test data used. A significant part of software testing automation is the test data generation. How to automatically generate test datasets is still an open problem. Search-based software testing (SBST) is a process of generating test data that employs meta-heuristic methods to resolve tough NP-hard problems. The test data generation problem belongs to NP-hard problems. This paper focuses on the automatic generation of test data for path coverage based on control flow criteria in structural testing. Some meta-heuristic algorithms have been used to search for software test data. To advance the efficiency and effectiveness of path test data generation, an adaptive simulated annealing particle swarm optimization (ASAPSO) algorithm is proposed. The probabilistic jumping property of simulated annealing (SA) algorithm is introduced into the particle swarm optimization (PSO) algorithm to make the particle accept bad solution at a certain probability during the searching process, and therefore boost the capacity of the proposed algorithm to bounce from the local optimum. The fitness function is constructed by the branch function superposition to properly guide the search process. In addition, to improve the convergence speed of the algorithm, an adaptive adjustment scheme based on inertial weight and an adjustment scheme based on learning factor are proposed as well. The experimental results show that the proposed method can effectually avoid premature convergence and effectively upgrades the efficiency of generating test data automatically. It is also competitive in solving other complicated optimization problems. © The Author(s), under exclusive licence to Springer-Verlag GmbH Germany, part of Springer Natur

关键词： Software testing

来源：评论

学校读者我要写书评

暂无评论

Research on Unpredetermined Behavior Recognition Techniques Based on Network Attacks 23

Research on Unpredetermined Behavior Recognition Techniques ...

引用

Proceedings of the 2023 5th International Conference on Internet of Things, Automation and Artificial Intelligence

作者： Yuxuan Xiao Jinlong Fei Junyi Wang State Key Laboratory of Mathematical Engineering and Advanced Computing China

ISBN: (纸本)9798400716485

With the increasing number of cyber-attack behaviors, it has caused great harm to the contemporary society. Currently, the cyber attack behavior recognition module is usually implemented by adopting a strategy based on rule-base matching, which often fails to identify the attack behaviors when faced with unpreset path attack behaviors of the actual attack process due to its reliance on predefined abnormal behavior patterns and attack labels. Therefore, this paper proposes an efficient and accurate unpreset behavior detection framework for cyber-attack behaviors, introduces machine learning techniques into the identification of unpreset attack behaviors, proposes an RF-Corr feature importance assessment method based on the Kendall correlation coefficient between features and the feature weight values, and designs an unpreset attack behavior identification method based on BiLSTM neural network, which improves the current effectiveness of identification and detection for unpresetted behavior of cyber attacks, and provides a solution for artificial intelligence detection of unpresetted behavior of cyber attacks.

关键词：

来源：评论

学校读者我要写书评

暂无评论

High-performance optimization of SM4-GCM based on FPGA

High-performance optimization of SM4-GCM based on FPGA

引用

2021 International Conference on advanced computing and Endogenous Security, ICACES 2021

作者： Lv, Shun Sen Li, Bin Chen, Xiaojie Zhou, Qinglei School of Information Engineering Zhengzhou University Zhengzhou China State Key Laboratory of Mathmatical Engineering and Advanced Computing Zhengzhou China

ISBN: (纸本)9781665424493

SM4-GCM is an encryption algorithm with authentication function. The algorithm achieves the purpose of data security and information integrity. The SM4-GCM algorithm, implemented using traditional software methods, has low throughput and high resource consumption. In order to further improve the algorithm performance, this paper uses FPGA to optimize the SM4-GCM algorithm to achieve full-pipeline parallel acceleration. Firstly, the SM4 module is optimized using pipelining techniques. Then, the GHASH module is optimized using the Karatsuba algorithm and fast reduction. Finally, a loosely coupled architecture is used to connect various modules with asynchronous FIFOs, which improves the resource utilization and throughput of the FPGA circuit. The experimental results show that the throughput of the optimized SM4-GCM algorithm reaches 28.8 Gbps. It is better than other schemes, has a higher throughput, and meets the actual application requirements. © 2022 IEEE.

关键词： Pipelines

来源：评论

学校读者我要写书评

暂无评论

Blockchain-Enabled Secure, Fair and Scalable Data Sharing in Zero-Trust Edge-End Environment

引用

IEEE Journal on Selected Areas in Communications 2025年第6期43卷 2056-2069页

作者： Xu, Xiaolong Meng, Ke Xiang, Haolong Cui, Guangming Xia, Xiaoyu Dou, Wanchun Nanjing210044 China Nanjing University of Information Science and Technology School of Software and the Jiangsu Province Engineering Research Center of Advanced Computing and Intelligent Services Nanjing210044 China RMIT University School of Computing Technologies MelbourneVIC3000 Australia Nanjing University State Key Laboratory for Novel Software Technology Nanjing210023 China

In edge computing, the Zero-Trust Security Model (ZTSM), as a key enabling technology for next-generation networks, plays a crucial role in providing authentication for addressing data sharing concerns, such as frequent data breaches, data misuse, and cyberattacks. However, due to the complexity and diversity of edge environments, ZTSM struggles to meet the security requirements of data sharing frameworks solely through enhanced authentication. Consequently, such frameworks with ZTSM still face challenges in ensuring data integrity, evaluating various node behaviors, and coping with the increasing complexity of node attributes. To address these issues, we propose a blockchain-enabled secure, fair and scalable data sharing framework in a zero-trust edge-end environment in this paper. Specifically, we first propose a Merkle forest-based data storage model for the classified storage of loosely coupled data, consequently enhancing the scalability of the model. Then, we design a node behavior-based reputation assessment mechanism to ensure fairness during data sharing. Moreover, a data sharing protocol supervised by smart contract is proposed, working with the aforementioned storage and assessment schemes, to ensure the security of data sharing. Finally, comprehensive security analysis validates the security, fairness and scalability of the proposed framework. Extensive experimental results show that, as transaction volume grows, the time cost of data traversal in the storage model becomes progressively more efficient. Additionally, when the size of the smart contract is increased tenfold, the maximum time cost of the data sharing protocol rises by only 4.98 times. © 1983-2012 IEEE.

关键词： Data integrity

来源：评论

学校读者我要写书评

暂无评论

Research on Web application injection vulnerabilities detection method based on pattern matching

Research on Web application injection vulnerabilities detect...

引用

2022 International Conference on Algorithms, Microchips and Network Applications

作者： Ma, Qican Wu, Zehui Wang, Xinlei Wei, Qiang State Key Laboratory of Mathematical Engineering and Advanced Computing Information Engineering University Zhengzhou450001 China

ISBN: (纸本)9781510653290

Attackers can exploit vulnerabilities in web applications to commit malicious acts such as corrupting application functionality and Trojan horse implantation. For injection vulnerabilities in Web applications, existing methods are limited by the variety of programming languages and the difficulty in extracting semantic information to detect complex vulnerabilities. The paper proposes a pattern matching-based method for identifying injection vulnerabilities in Web applications, which transforms vulnerability identification into path matching in graphical databases by modifying the code property graph to enable it to handle more complex inter-functional relationships in Web applications. In this paper, we designed and implemented a prototype system, VulnFinder. By collecting 100 randomly selected Github high star open-source projects as the dataset for performance testing, we found 262 real vulnerabilities and conducted comparison experiments with static scanning tools RIPS and Cobra, VulnFinder far exceeded the comparison tools in terms of vulnerability determination accuracy, and in terms of the dataset VulnFinder was 94% accurate in determining vulnerabilities in the dataset. In scanning large projects, VulnFinder was approximately 21% more efficient than the comparable methodology tool RIPS. © COPYRIGHT SPIE. Downloading of the abstract is permitted for personal use only.

关键词： Pattern matching

来源：评论

学校读者我要写书评

暂无评论

Automated Quantum Volume Test 2

Automated Quantum Volume Test

引用

2022 2nd International Conference on Electronics, Circuits and Information engineering, ECIE 2022

作者： Liu, Xiaonan He, Ming Wang, Junchao Xie, Haoshan Zhao, Chenyan Information Engineering University State Key Laboratory of Mathematical Engineering and Advanced Computing Zhengzhou450001 China

As a benchmark for the overall performance of quantum computers, quantum volume has the advantage of being able to reflect the depth of running quantum circuits. But, the quantum volume test code provided by IBM needs to be executed manually, and the simulation result of the quantum simulator is used as the result of the volume test, so that users cannot quickly and accurately test the quantum volume of the actual quantum computer required. In response to this problem, this paper designs an automated quantum volume test program. The program automatically generates quantum volume sequences, selects the number of executions of quantum circuits, and defines real quantum computers to facilitate users to perform quantum volume tests on quantum computers provided by the IBM Quantum Cloud Platform. Simultaneously, according to the automated test program, the quantum volume of IBM's four small superconducting quantum computers was tested. The test results show that (1) the quantum computer is different, and the qubit layout and execution times ntrials are the same, will cause the quantum volume is uncertain;(2) the same quantum computer, whether ntrials is the same, the robustness of qubit coupling will be affected to a certain extent. © Published under licence by IOP Publishing Ltd.

关键词： Benchmarking

来源：评论

学校读者我要写书评

暂无评论

A Vulnerability Automation Exploitation Method Based on Symbolic Execution

A Vulnerability Automation Exploitation Method Based on Symb...

引用

2023 International Conference on Electronic Information engineering and Data Processing, EIEDP 2023

作者： Ge, Xueshuai Liu, Tieming Xie, Yaobin Zhang, Yuanyuan Cyberspace Security Department State Key Laboratory of Mathematical Engineering and Advanced Computing Zhengzhou China Information service room Unit 32738 China

ISBN: (纸本)9781510666160

With increasing number of software vulnerabilities, the quantity of attacks utilizing malicious samples is also on rise, leading to intensified adversarial competition. In particular, the application of automatic vulnerability mining techniques has resulted in a significant increase in the number of vulnerabilities, but security researchers often do not have enough time to deal with them. This paper proposes a symbol-execution-based automated vulnerability exploitation method, which can achieve automation of vulnerability detection, classification and exploitation. Finally, this paper designs and implements a prototype system for symbol-execution-based automated vulnerability exploitation, and verifies its effectiveness through experiments. This research provides security analysts with an in-depth understanding of the types of vulnerabilities and determines methods for vulnerability exploitability, further improving the efficiency of analyzing and fixing vulnerabilities. © 2023 SPIE.

关键词： Automation

来源：评论

学校读者我要写书评

暂无评论

A Survey of Automatic Exploitation of Binary Vulnerabilities

A Survey of Automatic Exploitation of Binary Vulnerabilities

引用

2023 International Conference on Computer Network Security and Software engineering, CNSSE 2023

ISBN: (数字)9781510666528

ISBN: (纸本)9781510666511

The mining and exploitation of security vulnerabilities have always been the focus of offensive and defensive confrontations. In recent years, with the application of technologies such as fuzzing in vulnerability mining, the number of discovered vulnerabilities continues to increase, which seriously threatens the security of the network world. With so many vulnerabilities, it is unrealistic to rely solely on manual analysis by security experts, which is not only costly, but also time-consuming, and cannot meet the needs of vulnerability assessment and defense. Therefore, an automated exploit solution for vulnerabilities is urgently needed to solve the problem of low efficiency of manual vulnerability assessment. Existing research has proposed some solutions and achieved certain results. The purpose of this paper is to review and analyze the existing typical research results. © 2023 SPIE.

关键词： Network security

来源：评论

学校读者我要写书评

暂无评论

建议与咨询留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

时间限定

文献类型

馆藏选择

核心期刊

语言

文献类型

帮助

文字说明：

检索规则说明：

检索范例：

分类表

所选分类

限定检索结果

文献类型

馆藏范围

日期分布

学科分类号

主题

机构

作者

语言

请选择保存的检索档案：

请选择收藏分类：

通借通还

建议与咨询 留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

时间限定

文献类型

馆藏选择

核心期刊

语言

文献类型

帮助

文字说明：

检索规则说明：

检索范例：

分类表

所选分类

限定检索结果

文献类型

馆藏范围

日期分布

学科分类号

主题

机构

作者

语言

请选择保存的检索档案： 新增检索档案 确定 取消

请选择收藏分类： 新增自定义分类 确定 取消

通借通还

建议与咨询留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

请选择保存的检索档案：

请选择收藏分类：