In areas where conventional network coverage isn’t available, cellular service is routinely parceled out via satellite telephone systems, which provide encryption security for their data transmission through what’s known as the GMR-2 cipher. Such services may be the only option for users in remote or isolated environments, like ocean-going vessels or high-altitude locations – and they’re also a critical choice … Read More
How to Prevent a SQL Injection
If you’re a fan of contemporary thriller movies or television, you’ll no doubt have watched a scene where some enterprising (usually young, and quirky) “hacker” sits in front of a keyboard, flexes their fingers, and spouts knowledgeably about the various methods he/she will use to break into the Pentagon/bank security system, or whatever. The words, “SQL injection” may likely come … Read More
Artificial Intelligence vs Ransomware – Creating More Effective Defenses with Machine Learning
Since 2016 – when a hospital in Los Angeles paid US$17,000 (£14,000) to cure itself of an infection – the healthcare sector in particular and the world, in general, have suffered the effects of a sporadic outbreak of ransomware attacks. Though viruses and other strains of malware can cause headaches, data corruption, and financial losses, they tend to do so … Read More
A Closer Look at Multilevel Lattice Security Models
Organizations looking to regulate access to the information they routinely work with, and computer systems and communications networks seeking to preserve the confidentiality and integrity of the data they store or transmit will typically require some kind of formalized framework to govern how this is done. Information classifications such as Universal, Unclassified, Confidential, Secret, and Top Secret are one manifestation … Read More
What is Link Layer Encryption?
Network security is frequently implemented by considering the network as a series of layers, each dedicated to a particular function (data transport, applications, user interactions, etc.). This model has the underlying logic that, with several layers to have to work against, any potential attacker won’t find it easy to break through to the heart or kernel of the system, where … Read More
The Dangers of MaaS (Malware as a Service)
Information Technology has become a commodity in its own right. Virtually all aspects of IT are now available as some variant of the “XaaS” family, which includes Software as a Service (SaaS), Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and numerous others. They all save time, effort, and money for individuals or enterprise subscribers. And the advantages … Read More
Shift Row Transformation and Other Examples of Advanced Encryption
These days, we’re often warned about the dangers of hacking and data theft, or reminded of the need to protect our vital documents, sensitive information, and credentials by encryption, when they’re transmitted over the internet or an unprotected network. But what does that mean, exactly? Well, in simple terms, encryption is the process of taking a recognizable item (such as … Read More
What is Public Key Infrastructure (PKI) and How is it Used in Cybersecurity?
The process of encryption – the scrambling of information so that it can’t be readily understood, even if it’s intercepted in transit – is all very well as a standalone process for safeguarding the content of the data involved. But encryption is typically performed on documents and messages as a prelude to their transmission. And if the recipient of an … Read More
Cybersecurity Risk Assessment – Qualitative vs Quantitative Assessments
The overall security status of an organization is made up of inputs from the various business units which in turn make up the enterprise – such as Operations, Development, Finance, Audit, and Compliance. One way of establishing the contribution from each department is by assigning it a “risk status” on the basis of cybersecurity risk assessment performed on it over … Read More
The Evolving Role of Artificial Intelligence in Cybersecurity
It’s often been observed that technological advancement is a double-edged sword – and this is especially true in the realm of cybersecurity. Attackers have been known to use automation technology to stage and sustain their strikes – while those same machine learning algorithms and real-time response mechanisms can help enterprises that suffer an assault to speed up their efforts at … Read More