ISSUE 100

29 November 2019

Article of the Month   Around the World


Data Tethers: Implementation of Environmental Data Access Policies to Eradicate Information Leakage

Shielding data from unintentional misfortune or theft is pivotal in these days in mobile computing. Data Tethers give adaptable ecological approaches, which can be connected to data, indicating security necessities that must be met before getting to data. Here Data Tethers utilizes fine-grain data stream following to keep up these strategies on subsidiary information. This is executed by unique recompilation of inheritance applications which do not have to recompile within source. We exhibit the framework's achievability with micro benchmarks that show person segment execution and benchmarks of applications like word processors and spreadsheets which are genuine client applications.

Since computing devices become littler and progressively versatile, data misfortune because of physical loss of a devices turns out to be increasingly more of an issue for people, organizations, establishments, and government offices. A huge number of delicate records can be lost in a flash when a PC vanishes from a coffeehouse or a blaze drive drops out of a pack. Numerous associations react to this issue by commanding full-plate encryption for versatile gadgets. While full circle encryption is valuable at times, it doesn't help when a running workstation is stolen, or when the secret phrase that opens the encryption is powerless. It likewise offers no instrument to ensure information that is sent over the system, or duplicated to non-encoded capacity devices.�


Target platform is fundamentally single-client machines, especially laptops and other compact gadgets which intermittently leave the safe office condition. Encryption and exceptional taking care of tethered data is limited by DT, limiting its execution of performance. Working framework records, shared libraries and different documents which contains non-client data, for the most part don't have policies joined. However, it isn't blocked for extraordinary situations where this is suitable.

Attaching Data Policies
Policies are joined to data in three different ways, contingent upon data's state. First thing is prepending documents with unique 256-bit marker pursued by at least one policy ID to the data which is in the record. For system streams, arrangement-controlled sections start with unique 256-bit marker, trailed by a begin label that incorporates at least one policy IDs, trailed by data in encoded structure, and shut with end tags. Finally, data in client space memory is named in the word level, with single word of name per data word. Each piece of the name shows the availability of a specific arrangement, that restrains the quantity of approaches per process. But, in most scenarios this is adequate and is like past work. Marks are put away in the client procedure's address space, so no change to special mode is required to increase labels.

Propagation of Policies
Arrangement names must be spread at whatever point the data is replicated. The prevailing past methodologies are specific dialects, particular equipment, and dynamic code revising. While ongoing exploration has concentrated on specific dialects or equipment because of the apparent staggering expense of dynamic recompilation, an essential objective of DT was to show that this methodology was functional in a genuine registering condition. Along these lines, we couldn't depend on uncommon equipment or anticipate that each application be reworked and demonstrated right, given the wide scope of client applications accessible nor was constraining the client to verify applications attractive.

Taint explosion
Taint explosion problem has as of late been a subject of exchange in papers like [9] or [10]. While Data Tethering isn't resistant to taint explosion which is to a great extent unaffected by it. We are centered around fleeting client applications, for example, word processors as opposed to applications with longer running such as databases and webservers. Additionally, since the working framework itself knows about named data, working framework data structures don't end up tainted, spreading it to different procedures.

The Concept of Data Barrier
Strategy controlled data in the DT framework exists either in a scrambled, bundled structure or decoded and named in procedure memory. Reasonably, making data obstruction around a procedure, with data crossing this obstruction being changed over from one structure to the next. Since different devices utilize diverse interfaces in Unix kernel, data obstruction in various ways for many devices are executed by us.

Monitoring the Environment
DT determines natural conditions where data is openly accessible. These might be security prerequisites, for example, availability of virus guards, a few sorts of client personality confirmation or practically some other quantifiable status. Because of the adaptability of arrangements, the policy monitor acknowledges pluggable modules that runs in sandboxes, which can be downloaded when a specific strategy component should be checked.


Expense of running instrumented applications are broken into a few costs. They are changing code, running instrumented code, document framework and system changes, additional memory pages, watch points for ND. We likewise

assess cleanup speed following an arrangement infringement. Virtual machine was used as the machine utilized for our assessment was a virtual machine which was facilitated on a Sun T2000 server including UltraSPARC T1 processor. Virtual Machine is dispensed sixteen cores, and each of the cores around as quick as a Pentium 3 processor of 1 GHz. 


Data Tethering gives another technique for associations to forestall their important and delicate data from getting lost via compact machines and media. Not like full disk encryption, Data Tethering mechanism is able to secure data even when machines are working. Even though Data Tethering execution can be expensive in the most pessimistic scenario, for some end-client applications the reduction in execution isn't detectable. As Data Tethering chips away at legacy binary applications and also user behavior is not required, with the exception of when such conduct would inappropriately spill data.



Ashen Udayanga

Ashen is an undergraduate of Sri Lanka Institute of Information Technology, Faculty of Computing who is currently following Bachelor of Science Honors degree specializing in Cyber Security, currently, he is working as an Intern - Information Security Engineer at Sri Lanka CERT|CC

















1 Statistics on the Internet growth in Sri Lanka
2.The Dragon Research Group (DRG)
3.TSUBAME (Internet threat monitoring system) from JPCERT | CC
4.Shadowserver Foundation
5. Team Cymru
  Army Hires AI Firm to Predict When Aircraft, Vehicles & Weapons Will Break


".....DETROIT � Taking a page from the Air Force, the U.S. Army is expanding its use of artificial intelligence that can predict when its aircraft will break, according to a top service official.

If successful in upcoming trials, the technology will be used more broadly to help manage maintenance and spare parts, said James McPherson, the Army�s No. 2 civilian........."


5 scams to watch out for this shopping season


"....According to Adobe, consumers in the US are predicted to spend a staggering US$143.7 billion this shopping holiday season. Unsurprisingly, smartphones are expected to account for a significant part of the purchases made........."


Google Will Award $1M-Plus to People Who Can Hack Titan M Security Chip


'...Google is willing to award up to $1.5 million to hackers who can successfully hack its Titan M security chip on the company�s Pixel devices as part of an expansion of its Android bug-bounty program unveiled this week.......'

Boeing's poor information security posture threatens passenger safety, national security, researcher says



'.....Boeing test development networks are publicly exposed to the internet, Kubecka said, and at least one of Boeing's email servers is infected with multiple strains of malware. Kubecka believes that the infected email servers are being used to exfiltrate sensitive intellectual property including code used in both civilian passenger aircraft as well as aircraft Boeing sells to the US military........'

Chrome OS: Yo dawg, I heard you like desktops so we put a workspace in your workspace


'.....The virtual desktop feature is the biggest of several updates. Once the update is installed, a New Desk icon appears in the top right corner of the desktop. You can display virtual desktops full screen or side by side, and drag windows between desktops. These operations can be done with touch, mouse, trackpad or using keyboard shortcuts..........'

Month in Brief
Facebook Incidents Reported to Sri Lanka CERT|CC in October 2019


  Statistics - Sri Lanka CERT|CC

Fake �Windows Update� Installs Cyborg Ransomware

'....A malicious spam campaign that informs victims it contains a �critical Windows update� instead leads to the installation of Cyborg ransomware, researchers have found. Further, they were able to access its builder, which can be used to create malware variants......'

New Flaw Lets Rogue Android Apps Access Camera Without Permission

"....An alarming security vulnerability has been discovered in several models of Android smartphones manufactured by Google, Samsung, and others that could allow malicious apps to secretly take pictures and record videos � even when they don't have specific device permissions to do so........"

Do you think you can recognize fake news on Facebook?

�....With the presidential election season moving into high gear, campaign messaging will soon begin increasing dramatically. But for those of us who get our news from social media, a new study from the McCombs School of Business at The University of Texas at Austin offers a strong warning: You can�t trust yourself to discern what�s true and what�s not when you�re on Facebook......�
Qualcomm Chip Flaws Let Hackers Steal Private Data From Android Devices

."....Hundreds of millions of devices, especially Android smartphones and tablets, using Qualcomm chipsets, are vulnerable to a new set of potentially serious vulnerabilities.
According to a report cybersecurity firm CheckPoint shared with The Hacker News, the flaws could allow attackers to steal sensitive data stored in a secure area that is otherwise supposed to be the most protected part of a mobile device... ..."

Notice Board

Training and Awareness Programs - December  2019

Date Event Venue

Brought to you by: