An Auto-Verification Method of Security Events Based on Empirical Analysis for Advanced Security Monitoring and Response

Kim, Kyu-Il; Park, Hark-Soo; Choi, Jiyeon; Ko, Sang-Jun; Song, Jungsuk

doi:10.13089/jkiisc.2014.24.3.507

Cited by 3 publications

(2 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Notable video conferencing systems include Zoom, Cisco Webex, Facebook, Microsoft Teams, and Google Meet. Among them, the average number of Zoom users in 2020 increased by over 40 times compared to 2019 [11].…”

Section: Vulnerable Case Of Video Conferencing System Securitymentioning

confidence: 98%

“…In addition to intentional attacks, Zoom has experienced various security vulnerability issues. Zoom was also aware of these, and took measures such as upgrading the encryption algorithm to AES-256-GCM or adding a 2-Factor Authentication method to solve it [11]. Although Zoom has addressed most of the vulnerabilities, its E2EE function has only been partially addressed.…”

Section: Vulnerable Case Of Video Conferencing System Securitymentioning

confidence: 99%

See 1 more Smart Citation

End-to-End Post-Quantum Cryptography Encryption Protocol for Video Conferencing System Based on Government Public Key Infrastructure

Park

Yoo

Ryu

et al. 2023

ASI

View full text Add to dashboard Cite

Owing to the expansion of non-face-to-face activities, security issues in video conferencing systems are becoming more critical. In this paper, we focus on the end-to-end encryption (E2EE) function among the security services of video conferencing systems. First, the E2EE-related protocols of Zoom and Secure Frame (SFrame), which are representative video conferencing systems, are thoroughly investigated, and the two systems are compared and analyzed from the overall viewpoint. Next, the E2EE protocol in a Government Public Key Infrastructure (GPKI)-based video conferencing system, in which the user authentication mechanism is fundamentally different from those used in commercial sector systems such as Zoom and SFrame, is considered. In particular, among E2EE-related protocols, we propose a detailed mechanism in which the post-quantum cryptography (PQC) key encapsulation mechanism (KEM) is applied to the user key exchange process. Since the session key is not disclosed to the central server, even in futuristic quantum computers, the proposed mechanism, which includes the PQC KEM, still satisfies the E2EE security requirements in the quantum environment. Moreover, our GPKI-based mechanism induces the effect of enhancing the security level of the next-generation video conferencing systems up to a quantum-safe level.

show abstract

Section: Vulnerable Case Of Video Conferencing System Securitymentioning

confidence: 98%

Section: Vulnerable Case Of Video Conferencing System Securitymentioning

confidence: 99%

End-to-End Post-Quantum Cryptography Encryption Protocol for Video Conferencing System Based on Government Public Key Infrastructure

Park

Yoo

Ryu

et al. 2023

ASI

View full text Add to dashboard Cite

show abstract

End-to-End PQC Encryption Protocol for GPKI-based Video Conferencing System

Park¹,

Yoo²,

Ryu³

et al. 2023

Preprint

View full text Add to dashboard Cite

Owing to the expansion of non-face-to-face activities, security issues in video conferencing systems are becoming more critical. In this paper, we focus on the end-to-end encryption (E2EE) function among security services of video conferencing systems. First, the E2EE-related protocols of Zoom and Secure Frame (SFrame), which are representative video conferencing systems, are thoroughly investigated, and the two systems are compared and analyzed overall. Next, the E2EE protocol in the Government Public Key Infrastructure (GPKI)-based video conferencing system, in which the user authentication mechanism is fundamentally different from those used in private sector systems, such as Zoom or SFrame, will be considered. In particular, among E2EE-related protocols, we propose a detailed mechanism in which the post-quantum cryptography (PQC) key encapsulation mechanism (KEM) is applied to the user key exchange process. As the session key is not disclosed to the central server even in futuristic quantum computers, the mechanism to which the PQC KEM method proposed in this study is applied satisfies the E2EE security requirements and can be applied to domestic GPKI-based systems. It is expected to contribute in strengthening the safety of the next-generation video conferencing system.

show abstract

A Practical Effectiveness Analysis on Alert Verification Method Based on Vulnerability Inspection

Chun¹,

Lee²,

Kim³

et al. 2014

The Journal of the Korea Contents Association

View full text Add to dashboard Cite

Cyber threats on the Internet are tremendously increasing and their techniques are also evolving constantly. Intrusion Detection System (IDS) is one of the powerful solutions for detecting and analyzing the cyber attacks in realtime. Most organizations deploy it into their networks and operate it for security monitoring and response service. However, IDS has a fatal problem in that it raises a large number of alerts and most of them are false positives. In order to cope with this problem, many approaches have been proposed for the purpose of automatically identifying whether the IDS alerts are caused by real attacks or not. In this paper, we present an alert verification method based on correlation analysis between vulnerability inspection results for real systems that should be protected and the IDS alerts. In addition, we carry out practical experiments to demonstrate the effectiveness of the proposed verification method using two types of real data, i.e., the IDS alerts and the vulnerability inspection results.

show abstract

An Auto-Verification Method of Security Events Based on Empirical Analysis for Advanced Security Monitoring and Response

Cited by 3 publications

References 10 publications

End-to-End Post-Quantum Cryptography Encryption Protocol for Video Conferencing System Based on Government Public Key Infrastructure

End-to-End Post-Quantum Cryptography Encryption Protocol for Video Conferencing System Based on Government Public Key Infrastructure

End-to-End PQC Encryption Protocol for GPKI-based Video Conferencing System

A Practical Effectiveness Analysis on Alert Verification Method Based on Vulnerability Inspection

Contact Info

Product

Resources

About