In this paper we study how the cyber-physical space of a small nation is policed. Our qualitative study is based on content analysis of expert interviews. We found that the country is protected and daily incidents solved by a network of government agencies and private companies, forming a loose public–private partnership network. However, at the time of the study (Winter 2013), we were able to detect two problems. First, it was not clear that sufficient focus would be available to resolve several simultaneous large incidents. Second, cybercrimes are still under-reported, which may hinder the police in building investigation capacity.
Intrusion prevention systems have become a common security measure in the past 20 years. Their promise is the possibility to prevent known attacks against vulnerable, unpatched devices inside enterprise networks. However, evasion techniques that enable the attacker to evade the eye of the intrusion prevention system are a potential problem for this capability. These techniques take advantage of the robustness principle that has guided designers to create systems that will try to recreate protocol content from any input they receive.In this work, we evaluated the effectiveness of 35 well-known evasions against 9 commercial and 1 free, state-of-the-art, intrusion prevention systems. We conducted 4 experiments with one million attacks against each device. Each system lets a significant amount (0.1%-45%) of attacks pass through unrecognized. Our results show that most existing intrusion prevention systems are vulnerable against evasions.
scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.