The address resolution protocol (ARP) is one of the most important communication protocols in a local area network (LAN). However, since there no authentication procedure, ARP vulnerable to cyberattack such as spoofing. Since spoofing can be connected critical attacks, including man-in-the-middle (MITM) attack, detecting initially without returning false-positive alarms important. In general, h...

Cybersecurity information sharing is a proactive and collaborative measure in enhancing organizational security by exchanging cybersecurity using centralized repository service. However, practice, the use of services poses threat to distributed denial-of-service (DDoS) attacks which can result system failure cause single point as well man-in-the-middle (MITM) modification theft exchanged inform...

The Signal Protocol is one of the most popular privacy protocols today for protecting Internet chats and supports end-to-end encryption. Nevertheless, despite its many advantages, not resistant to Man-In-The-Middle (MITM) attacks because a malicious server can distribute forged identity-based public keys during user registration phase. To address this problem, we proposed IBE-Signal scheme that...

To filter SSL/TLS-protected traffic, some antivirus and parental-control applications interpose a TLS proxy in the middle of the host’s communications. We set out to analyze such proxies as there are known problems in other (more matured) TLS processing engines, such as browsers and common TLS libraries. Compared to regular proxies, client-end TLS proxies impose several unique constraints, and ...

Content Delivery Networks (CDNs) play a vital role in today’s Internet ecosystem. To reduce the latency of loading website’s content, CDNs deploy edge servers different geographic locations. CDN providers also offer important security features including protection against Denial Service (DoS) attacks, Web Application Firewalls (WAFs), and recently, issuing managing certificates for their custom...

Abstract Explanation mechanisms for intelligent systems are typically designed to respond specific user needs, yet in practice these tend have a wide variety of users. This can present challenge organisations looking satisfy the explanation needs different groups using an individual system. In this paper we explainability framework formed catalogue methods, and integrate with range projects wit...

In this paper, combining the biclique cryptanalysis with the MITM attack, we present the first key recovery method for the full ARIA256 faster than brute-force. The attack requires 280 chosen plaintexts, and the time complexity is about 2255.2 full-round ARIA encryptions in the processing phase. keywords: Block Cipher; ARIA-256; Biclique structure

Many users would prefer the privacy of end-to-end encryption in their online communications if it can be done without significant inconvenience. However, because existing key distribution methods cannot be fully trusted enough for automatic use, key management has remained a user problem. We propose a fundamentally new approach to the key distribution problem by empowering end-users with the ca...

This paper presents the first wireless pairing protocol that works in-band, with no pre-shared keys, and protects against MITM attacks. The main innovation is a new key exchange message constructed in a manner that ensures an adversary can neither hide the fact that a message was transmitted, nor alter its payload without being detected. Thus, any attempt by an adversary to interfere with the k...

Man in the middle attacks involve the interception and retransmission of electronic messages in a way that the original parties will presume that their communication is secure. Such an attack could be a threat to any electronic voting scenario. This paper proposes a novel method for preventing this kind of attacks by including in the transaction a challenge-response test. The human end-user is ...