Wszystkie pola: Vulnerabilities - Katalog OPAC zbiorów

Skocz do pozycji: 1.

Tytuł:: Mitigating Cyber Risk in Personal Finance of the Elderly. Insights into Vulnerabilities, Cyber Hygiene and the Role of Personal Cyber Insurance
Autorzy:: Strupczewski, Grzegorz
Powiązania:: https://bibliotekanauki.pl/articles/31342006.pdf
Data publikacji:: 2024-05-09
Wydawca:: Akademia Sztuki Wojennej
Tematy:: cybersecurity
cyber risk
cyber threats to the elderly
cyber hygiene
personal cyber insurance
Opis:: The paper investigates the growing cyber threats to personal finance, faced by the elderly in the digital age. It begins by acknowledging the surge in cyber incidents, particularly impacting seniors amid their increasing engagement in the digital space. The research explores the theoretical background of individual attitudes towards cybersecurity, emphasizing the unique vulnerabilities of the elderly population and their heightened susceptibility to cyber threats. It offers practical recommendations for personal cyber hygiene. Moreover, it introduces personal cyber insurance (PCI) and discusses its advantages and challenges. As the main contribution to the body of knowledge, the study provides a comprehensive understanding of the specific challenges faced by the elderly in the digital realm. It offers practical strategies for risk mitigation and introduces PCI as a means of enhancing resilience. It also sets the groundwork for further exploration and targeted strategies to protect individuals, especially older adults, in the dynamic landscape of cybersecurity.
Źródło:: Cybersecurity and Law; 2024, 11, 1; 281-298
2658-1493
Pojawia się w:: Cybersecurity and Law
Dostawca treści:: Biblioteka Nauki

Artykuł

Zmień widok

na półce

Skocz do pozycji: 2.

Tytuł:: Cyber threats for present and future commercial shipping
Autorzy:: Pawelski, J.
Powiązania:: https://bibliotekanauki.pl/articles/24201417.pdf
Data publikacji:: 2023
Wydawca:: Uniwersytet Morski w Gdyni. Wydział Nawigacyjny
Tematy:: maritime cyber security
maritime cyber resilience
maritime cyber emergency
cyber security vulnerabilities
cyber security in shipping
Opis:: Cyber-attacks are extremely dangerous for all operations relaying upon it-technologies. Today shipping businesses cannot operated without processing large amounts of information. Four biggest shipping companies suffered break-down in their operations after they were struck by malware. International Maritime Organization also was struck by cyber-attack which took its website down. Maritime community noticed rise in cyber-attacks on virtually all computer-based systems on board of vessels. For manned vessels risks to safety of navigation are mitigated by presence of crew on board but remain financial and reputational losses. Introduction of remotely controlled and fully autonomous unmanned vessels will increase seriousness of threats. Cyber-attack may severely hamper ship’s operability or even lead to complete loss of control. International community is developing several countermeasures to protect commercial shipping presently and in future.
Źródło:: TransNav : International Journal on Marine Navigation and Safety of Sea Transportation; 2023, 17, 2; 261--267
2083-6473
2083-6481
Pojawia się w:: TransNav : International Journal on Marine Navigation and Safety of Sea Transportation
Dostawca treści:: Biblioteka Nauki

Artykuł

Zmień widok

na półce

Skocz do pozycji: 3.

Tytuł:: Metody zapewnienia bezpieczeństwa informatycznego aplikacji webowych
Methods of Ensuring IT Security of Web Applications
Autorzy:: Foks, Kacper
Szymoniak, Sabina
Lipiński, Tomasz
Nowacki, Krzysztof
Powiązania:: https://bibliotekanauki.pl/chapters/27657768.pdf
Data publikacji:: 2023-12-14
Wydawca:: Politechnika Częstochowska. Wydawnictwo Politechniki Częstochowskiej
Tematy:: aplikacje internetowe
bezpieczeństwo
podatności
internet applications
security
vulnerabilities
Opis:: Celem tego rozdziału jest zbadanie, jakie czynniki mają wpływ na bezpieczeństwo współczesnych aplikacji webowych. Przedstawiono proces implementacji aplikacji internetowej służącej do przeprowadzenia serii testów, badań i zwiększania bezpieczeństwa aplikacji internetowej. Aplikacja została przebadana przez popularne frameworki, które mają za zadanie zwiększenie bezpieczeństwa aplikacji internetowych. Badanie miało na celu sprawdzenie, jak wygląda proces implementacji aplikacji webowej, gdzie główny nacisk jest kładziony na jej bezpieczeństwo.
The purpose of this chapter is to examine what factors affect the security of modern web applications. As part of the work, the process of implementing a web application was presented, which was used to carry out a series of tests, research and increase the security of the web application. The application has been tested by popular frameworks that are designed to increase the security of web applications. The study was aimed at checking the process of implementing a web application, where the main emphasis is placed on its security.
Źródło:: Potencjał innowacyjny w inżynierii materiałowej i zarządzaniu produkcją; 321-330
9788371939457
Dostawca treści:: Biblioteka Nauki

Artykuł

Zmień widok

na półce

Skocz do pozycji: 4.

Tytuł:: RSA Keys Quality in a Real-world Organizational Certificate Dataset: a Practical Outlook
Autorzy:: Kamiński, Konrad
Mazurczyk, Wojciech
Powiązania:: https://bibliotekanauki.pl/articles/27311954.pdf
Data publikacji:: 2023
Wydawca:: Polska Akademia Nauk. Czasopisma i Monografie PAN
Tematy:: certificates
X.509
RSA keys
PKI
vulnerabilities
RSA factorization
Opis:: This research investigates the intricacies of X.509 certificates within a comprehensive corporate infrastructure. Spanning over two decades, the examined enterprise has heavily depended on its internal certificate authority and Public Key Infrastructure (PKI) to uphold its data and systems security. With the broad application of these certificates, from personal identification on smart cards to device and workstation authentication via Trusted Platform Modules (TPM), our study seeks to address a pertinent question on how prevalent are weak RSA keys within such a vast internal certificate repository. Previous research focused primarily on key sets publicly accessible from TLS and SSH servers or PGP key repositories. On the contrary, our investigation provides insights into the private domain of an enterprise, introducing new dimensions to this problem. Among our considerations are the trustworthiness of hardware and software solutions in generating keys and the consequential implications of identified vulnerabilities on organizational risk management. The obtained results can contribute to enhancing security strategies in enterprises.
Źródło:: International Journal of Electronics and Telecommunications; 2023, 69, 4; 803--810
2300-1933
Pojawia się w:: International Journal of Electronics and Telecommunications
Dostawca treści:: Biblioteka Nauki

Artykuł

Zmień widok

na półce

Skocz do pozycji: 5.

Tytuł:: Systemy wbudowane oraz ich podatności na ataki sprzętowe
Embedded Systems and their Vulnerabilities to Hardware Attacks
Autorzy:: Szczepankiewicz, Konrad
Wnuk, Marian
Powiązania:: https://bibliotekanauki.pl/articles/27323995.pdf
Data publikacji:: 2023
Wydawca:: Wojskowa Akademia Techniczna im. Jarosława Dąbrowskiego
Tematy:: atak sprzętowy
analiza kanału pobocznego
podatności systemów wbudowanych
ochrona urządzeń przed atakami sprzętowymi
hardware attacks
side channel analysis
vulnerabilities of embedded systems
protection of devices against hardware attacks
Opis:: Artykuł opisuje rodzaje ataków sprzętowych nakierunkowanych na systemy wbudowane, a także środki zapobiegawcze oraz metody modelowania zagrożenia bezpieczeństwa. Obecnie w urządzeniach elektronicznych poziom zabezpieczeń od strony oprogramowania jest zazwyczaj wysoki. Z kolei sprzętowe implementacje mogą pozostawiać luki, które atakujący mogą wykorzystać do ekstrahowania informacji lub zaburzania działania urządzenia w niezamierzony przez twórców sposób. Będąc użytkownikiem systemów wbudowanych, krytycznych dla bezpieczeństwa, należy być świadomym niebezpieczeństw spowodowanych lukami w oprogramowaniu, ale również znać zagadnienie analizy kanału pobocznego oraz iniekcji błędów.
The article describes the types of hardware attacks targeting embedded systems, countermeasures, and methods of modelling security threats. In currently used electronic devices, the software usually ensures very high level of security. On the other hand, hardware implementations, often leave vulnerabilities that attackers can use to extract information or disrupt the operation of the device. Being a user of embedded systems, critical for safety, you should be aware of what dangers they may be exposed to from the hardware side and to know the analysis of the side channel and fault injection.
Źródło:: Biuletyn Wojskowej Akademii Technicznej; 2023, 72, 1; 59--68
1234-5865
Pojawia się w:: Biuletyn Wojskowej Akademii Technicznej
Dostawca treści:: Biblioteka Nauki

Artykuł

Zmień widok

na półce

Skocz do pozycji: 6.

Tytuł:: Women, migration, decent work and vulnerabilities in Africa: an investigative analysis
Autorzy:: Ojo, Solomon
Aluko-Arowolo, Sola
Powiązania:: https://bibliotekanauki.pl/articles/9203880.pdf
Data publikacji:: 2023-06-30
Wydawca:: Wydawnictwo Adam Marszałek
Tematy:: Women
Migration
Vulnerabilities
Decent Work
Africa
Nigeria
Opis:: This study investigated women, migration, decent work and vulnerabilities in Africa. Essentially, it is on record that for the last few years more female migrants have been migrating independently for work, education and as heads of households. Despite these improvements, female migrants may still face stronger discrimination, are more vulnerable to mistreatment, and can experience double discrimination as both migrants and as women in their host country in comparison to male migrants. Nonetheless, male migrants are also exposed to vulnerabilities in the migration processes. For example, records have it that every day, women across Libya who have been subjected to forced marriages, sexual abuse, and other dire situations, leave their home countries for the prospect of a better life and with longing for Europe’s safety, they are willing to face an equally perilous route ahead, with the constant risk of being returned to Libyan detention centres, where they are abused, starved, and tortured (Palmucci, 2021). It is based on this that this study was carried out using investigative analysis of women victims who are presently returnees to their home country (Nigeria). Through identified women returnees from some of these countries, most especially Libya, 15 women returnees interacted to share their experiences while outside the country for greener pastures. These 15 women returnees were able to link the authors of this study to other 29 women returnees to Nigeria in the last three to two years.
Źródło:: Reality of Politics; 2023, 24; 121-150
2082-3959
Pojawia się w:: Reality of Politics
Dostawca treści:: Biblioteka Nauki

Artykuł

Zmień widok

na półce

Skocz do pozycji: 7.

Tytuł:: As sociedades em risco e os múltiplos fatores que fragilizam as relações sociais em tempos de pandemia
Autorzy:: Faria, Lina
Castro Santos, Luiz A. de
Chavez Alvarez, Rocio Elizabeth
Powiązania:: https://bibliotekanauki.pl/articles/2131629.pdf
Data publikacji:: 2022-06-30
Wydawca:: Uniwersytet Warszawski. Wydawnictwa Uniwersytetu Warszawskiego
Tematy:: populations at risk
social inequalities
health inequities
vulnerabilities
violence
pandemic
Opis:: O texto é uma reflexão sobre as noções de risco, vulnerabilidades, desigualdades, violências e seus impactos nas sociedades em tempos de pandemia. Abordar as interrelações entre esses conceitos e os fatores que fragilizam as relações sociais é uma problemática que ainda carece de discussão. O objetivo foi analisar algumas proposições conceituais e epistemológicas da teoria da sociedade global de risco de Ulrich Beck, da teoria dos sistemas e o conceito de risco de Niklas Luhmann e a produção de sentidos sobre riscos de Mary Jane Spink, em consonância com a relação paradoxal entre autonomia e vulnerabilidade no “pensar e agir” humano de Paul Ricoeur. Aborda também, o cenário de aprofundamento das desigualdades e das violências entre os grupos em situação de vulnerabilidade, em tempos de pandemia, mais evidente em função do crescimento das taxas de homicídios nos últimos três anos. Essas análises ajudam a entender as inseguranças com as quais a sociedade de risco diariamente se defronta, como uma pandemia, que podem fragilizar ainda mais as condições básicas de vida das populações em situação de vulnerabilidade e ampliar as desigualdades e violências.
This text is a reflection on the perceptions of risk, social inequality, violence, and their impacts on societies in times of pandemic. Addressing the interrelationships between these concepts and the factors that weaken social relations is a problem that still lacks discussion. In discussing these concepts, the aim of the present text is to analyze, although briefly, some conceptual and epistemological proposals and implications of the thought of Ulrich Beck and Niklas Luhmann on reflexive modernization, global risk societies and social systems. In addition, the text examines the social psychologist Mary Jane Spink’s considerations on risk from the point of view of the production of meanings. The text also discusses the paradoxical relationship between autonomy and vulnerability in the human "thinking and acting" of the Paul Ricoeur. The scenario of deepening inequalities and violence among vulnerable groups in these times of pandemic, most evident due to the growth in homicide and unemployment rates, is also discussed in the last three years. These analyses help to understand the insecurity that the risk society faces on a daily basis, such as a pandemic, which can further weaken the basic living conditions of vulnerable populations while expanding inequalities and violence.
Źródło:: Revista del CESLA. International Latin American Studies Review; 2022, 29; 11-28
1641-4713
Pojawia się w:: Revista del CESLA. International Latin American Studies Review
Dostawca treści:: Biblioteka Nauki

Artykuł

Zmień widok

na półce

Skocz do pozycji: 8.

Tytuł:: The CAN Bus in the Maritime Environment – Technical Overview and Cybersecurity Vulnerabilities
Autorzy:: Kessler, G. C.
Powiązania:: https://bibliotekanauki.pl/articles/2063969.pdf
Data publikacji:: 2021
Wydawca:: Uniwersytet Morski w Gdyni. Wydział Nawigacyjny
Tematy:: controller area network
national marine electronics association
cyber security
maritime communication standard
security vulnerabilities
CAN Bus
maritime environment
Opis:: The Controller Area Network (CAN) bus standard was developed in the 1980s and is in widespread use in automobile, vehicular, aviation, and other networks. The CAN bus was introduced in the maritime environment with the adoption of the National Marine Electronics Association (NMEA) 2000 standard in the late-1990s. Many papers have been written about the CAN bus protocols and security vulnerabilities but there is sparse literature about use of the CAN bus in the maritime environment. Part I of this paper is a technical overview, describing CAN bus standards and operation, with particular attention to its use with the NMEA 2000 maritime communications standard. Part II of this paper describes security vulnerabilities in terms of loss of confidentiality, integrity, or availability of information (such as eavesdropping, denial-of-service, and spoofing), and mitigations specific to the maritime environment.
Źródło:: TransNav : International Journal on Marine Navigation and Safety of Sea Transportation; 2021, 15, 3; 531--540
2083-6473
2083-6481
Pojawia się w:: TransNav : International Journal on Marine Navigation and Safety of Sea Transportation
Dostawca treści:: Biblioteka Nauki

Artykuł

Zmień widok

na półce

Skocz do pozycji: 9.

Tytuł:: Monitoring Vulnerabilities in the Residential Real Estate Sector in Poland
Monitorowanie ryzyka na rynku nieruchomości mieszkalnych w Polsce
Autorzy:: Grothe, Magdalena
Powiązania:: https://bibliotekanauki.pl/articles/574333.pdf
Data publikacji:: 2020-06-30
Wydawca:: Szkoła Główna Handlowa w Warszawie. Kolegium Analiz Ekonomicznych
Tematy:: ryzyka w sektorze nieruchomości
sektor nieruchomości mieszkalnych w Polsce
monitorowanie ryzyka
kryzysy w sektorze nieruchomości
real estate vulnerabilities
real estate market in Poland
risk monitoring
real estate crises
Opis:: Artykuł ten stosuje metodę monitorowania ryzyka związanego z sektorem nieruchomości mieszkalnych dla rynku polskiego. Metoda uwzględnia wskaźniki dotyczące trzech wymiarów ryzyka na rynku nieruchomości mieszkalnych: wyceny, zadłużenia gospodarstw domowych i cyklu kredytowego, oraz buduje zagregowaną bezmodelowo miarę ryzyka, która posiada właściwości wczesnego ostrzegania o kryzysie. Artykuł pokazuje, jak można zastosować omawianą metodę monitorowania dla rynku Polski, opisuje dynamikę wskaźników z perspektywy historycznej i ukazuje pozostające luki w danych.
This paper applies a framework for monitoring vulnerabilities in the residential real estate sector to the case of Poland. The framework considers indicators across three dimensions of real estate-related vulnerabilities, i.e. valuation, household indebtedness and the bank credit cycle, and builds a composite model-free measure shown to have a significant forecasting performance for real estate crises. The paper shows how the monitoring can be implemented for the Polish market, discusses the developments from a historical perspective, and highlights remaining data gaps.
Źródło:: Gospodarka Narodowa. The Polish Journal of Economics; 2020, 302, 2; 5-24
2300-5238
Pojawia się w:: Gospodarka Narodowa. The Polish Journal of Economics
Dostawca treści:: Biblioteka Nauki

Artykuł

Zmień widok

na półce

Skocz do pozycji: 10.

Tytuł:: Problem odpowiedzialności za błędy w oprogramowaniu IoT
The problem of liability for IoT software vulnerabilities
Autorzy:: Marciniak, Piotr
Powiązania:: https://bibliotekanauki.pl/articles/1075723.pdf
Data publikacji:: 2020-10-31
Wydawca:: Polskie Wydawnictwo Ekonomiczne
Tematy:: iot
oprogramowanie
prawo autorskie
produkt niebezpieczny
odpowiedzialność producenta
software
copyright
defective product
producer liability
Opis:: Za poprawne działanie urządzeń IoT odpowiada zainstalowane w nich oprogramowanie. Może ono nie tylko zawierać luki, ale i ukryte przed nabywcą elementy lub może nie obejmować jakichkolwiek mechanizmów zapewniających cyberbezpieczeństwo. To sytuacja skrajnie niebezpieczna dla każdego użytkownika, również profesjonalnego. W artykule zaprezentowano obowiązujące regulacje w zakresie odpowiedzialności producentów za braki i błędy w oprogramowaniu, przybliżając istotne luki w zakresie ochrony nabywców z sektorów B2B i B2A. W konkluzjach, wskazując na celowość rozszerzenia obowiązujących na rynku konsumenckim regulacji dotyczących produktów niebezpiecznych, zawarto postulaty de lege ferenda.
The firmware installed on IoT devices is responsible for their proper operation. It may have not only bugs, but also elements hidden from the buyer or the lack of any cybersecurity mechanisms. This is an extremely dangerous situation for any user, including professionals. The study introduces the applicable regulations in the field of producer responsibility for software deficiencies and errors, presenting significant lack of the protection of buyers from B2B and B2A sectors. The conclusions, pointing to the advisability of extending the regulations on defective products applicable to the consumer market, include de lege ferenda postulates.
Źródło:: Przegląd Ustawodawstwa Gospodarczego; 2020, 10; 37-46
0137-5490
Pojawia się w:: Przegląd Ustawodawstwa Gospodarczego
Dostawca treści:: Biblioteka Nauki

Artykuł

Zmień widok

na półce

Skocz do pozycji: 11.

Tytuł:: Worsening Women Trafficking, Multidimensional Poverty and Gender Inequality: The Vulnerabilities, Playouts and Governmental Responses in West Africa
Autorzy:: Abioro, Tunde
Akinyemi, Omolara
Powiązania:: https://bibliotekanauki.pl/articles/2015742.pdf
Data publikacji:: 2020-12-31
Wydawca:: Wydawnictwo Adam Marszałek
Tematy:: poverty
mobility
trafficking
human security
gender inequality
Opis:: Modern governments in modern states in third world countries are overwhelmed with social circumstances that have forced citizens to resort to self-help. Also, prevalent unclear demographic and globalization issues are sometimes neutral lines of justification for either transit or destination posture of the West African states. Concisely, poverty issues have continuously permeated the West Africa region’s fabric, and the challenges seem protracting. It has implications for mobility, (women) trafficking, and human security, among others. The quantitative approach adopted profiled index while evaluating and descriptive methods explained the content. Among other findings, lack of national data and proper immigration service is obvious. Thus, adequate data for national planning is recommended. Further, ongoing regional and national initiatives for possible integration and collaboration to address challenges are advocated.
Źródło:: Polish Political Science Yearbook; 2020, 4 (49); 87-104
0208-7375
Pojawia się w:: Polish Political Science Yearbook
Dostawca treści:: Biblioteka Nauki

Artykuł

Zmień widok

na półce

Skocz do pozycji: 12.

Tytuł:: Functional safety and cyber security analysis for life cycle management of industrial control systems in hazardous plants and oil port critical infrastructure including insurance
Autorzy:: Kosmowski, Kazimierz, T.
Gołębiewski, Dariusz
Powiązania:: https://bibliotekanauki.pl/articles/2068692.pdf
Data publikacji:: 2019
Wydawca:: Uniwersytet Morski w Gdyni. Polskie Towarzystwo Bezpieczeństwa i Niezawodności
Tematy:: functional safety
cyber security
hazardous plants
oil port infrastructure
industrial automation
control systems
hazards
threats
vulnerabilities
risk analysis
key performance indicators
integrated safety
security management
business continuity management
insurance
Opis:: This report addresses selected methodological aspects of proactive reliability, functional safety and cyber security management in life cycle of industrial automation and control systems (IACS) in hazardous plants and oil port critical installations based on the analysis of relevant hazards / threats and evaluation of related risks. In addition the insurance company point of view has been also considered, because nowadays the insurer, interested in decreasing risks to be insured, offers the expertise how to limit effectively risks in life cycle from the design conceptual stage of hazardous plant, through its reliable and safe operation, until decommissioning. Therefore, the risk evaluation model for insurance related decision making for the period considered, e.g. one year, should be plant specific with some predictive properties due to changing environment and business conditions, and usually considerable uncertainty involved. The objective is to evaluate and mitigate risks, and control them proactively, through undertaking appropriate activities within a process based management system according to elaborated policy and strategy that includes organisational and technical aspects, including preventive maintenance activities of sensitive equipment and updating in time the training programmes. Careful evaluating and controlling risks is also crucial for the insurance company. Basic activities of the risk engineers and underwriters in the insurance process are outlined in the context of identified hazards/threats and defined factors that significantly influence risks to be considered in evaluating the insurance premium in the context of terms and conditions specified.
Źródło:: Journal of Polish Safety and Reliability Association; 2019, 10, 1; 99--126
2084-5316
Pojawia się w:: Journal of Polish Safety and Reliability Association
Dostawca treści:: Biblioteka Nauki

Artykuł

Zmień widok

na półce

Skocz do pozycji: 13.

Tytuł:: Hybrid Warfare and Deniability as Understood by the Military
Autorzy:: Gunneriusson, Håkan
Powiązania:: https://bibliotekanauki.pl/articles/594504.pdf
Data publikacji:: 2019
Wydawca:: Wydawnictwo Adam Marszałek
Tematy:: South Chinese Sea
China
ASEAN
PMSC
Hybrid warfare
National security policies
NATO policy and doctrines
exploitation of cultural
asymmetries
state vulnerabilities
reflexive control
NATO Defense College
Opis:: Russia and China are terraforming the maritime environment as part of their warfare. In both cases the actions are illegal and the performance is offensive to its actual nature. In the case of China, the practice is construction of artificial islands in the South Chinese Sea and in the case of Russia it is about the infamous bridge built over the Kerch strait, Ukraine. Neither Russia nor China expects an armed conflict with the West in the near future. That is a reasonable assumption, which is weaponized at the political-strategically level. The attack of this weaponized situation is that the trust in the West. Primarily the EU (European Union) and NATO (North Atlantic Treaty Organization), is eroded for every day which these countries challenges the international system which the western democracies say that they present and defend. China and Russia offer their authoritarian systems as a replacement and there are a lot of pseudo-democratic or even out-right authoritarian regimes on the sideline watching this challenge unfold. The article highlights the difference for the NATO-countries in logic of practice when it comes to the political social field on one hand and the military political field on the other hand. The article uses material from a previously unpublished survey made on NATO-officers then attending courses at NATO Defense College (NDC).
Źródło:: Polish Political Science Yearbook; 2019, 2 (48); 267-288
0208-7375
Pojawia się w:: Polish Political Science Yearbook
Dostawca treści:: Biblioteka Nauki

Artykuł

Zmień widok

na półce

Skocz do pozycji: 14.

Tytuł:: Influence of the Use of Digital Technologies on the Physical Activity of Children Aged 7–17 Years in the Opinion of Parents
Autorzy:: RYWCZYŃSKA, ANNA
JAROSZEWSKI, PRZEMYSŁAW
Powiązania:: https://bibliotekanauki.pl/articles/455525.pdf
Data publikacji:: 2019
Wydawca:: Uniwersytet Rzeszowski
Tematy:: Internet of Toys
Internet of Things
smart connected toys
privacy
vulnerabilities
children safety online
security
research
family
education
awareness raising
Opis:: Toys with integrated technology are not a new thing. We are familiar with talking dolls or remote control cars. However, the interactive toys connected to the internet, which has appeared in recent years, and which are the natural consequence of the development of the internet of things, may bring a revolution to the world of children. Following article is the result of the research project „Internet of Toys a support or a threat to child’s development?” aimed at verifying the readiness to introduce digital toys as well astesting what is the level of security associated with the smart connected toys usage. A mixed methods research: pilot qualitative study in the form of interviews concerning various attitudes and practices relating to the use of digital devices, in particular connected smart toys, together with a quantitative study, gave an overview on the smart toys popularisation and the level of knowledge about their safety. Moreover, tests over selected products from the viewpoint of cyber threats and precautions implemented bythe vendor made it possible to come up with safety recommendations for future or present smart connected toys users. Communicative companions may bring not only fun and education, but also a dose of threats. What happens to the data collected by the toys, how easy it is to reach unauthorised access to the device and who potentially may come into these data possession? Last but not least this article tries to answer the questions on what consequences might bring to children social development, permanent parental supervision,restrictions of children’s privacyand the possibility that digital toys might become a replacement of a real participation in the child’s life.
Źródło:: Edukacja-Technika-Informatyka; 2019, 10, 1; 164-171
2080-9069
Pojawia się w:: Edukacja-Technika-Informatyka
Dostawca treści:: Biblioteka Nauki

Artykuł

Zmień widok

na półce

Skocz do pozycji: 15.

Tytuł:: Inżynieria zabezpieczeń aplikacji internetowych na podstawie analizy zagrożeń i rekomendacji OWASP
Security engineering of web applications based on threat analysis and OWASP recommendations
Autorzy:: Sołtysik-Piorunkiewicz, Anna
Krysiak, Monika
Powiązania:: https://bibliotekanauki.pl/articles/586682.pdf
Data publikacji:: 2019
Wydawca:: Uniwersytet Ekonomiczny w Katowicach
Tematy:: Bezpieczeństwo aplikacji internetowych
Bezpieczeństwo danych i informacji
Inżynieria zabezpieczeń
Open Web Application Security Project (OWASP)
Zagrożenia internetowe
Data and information security
Security engineering
Security of web applications
Threats and vulnerabilities
Opis:: W artykule przedstawiono zagrożenia bezpieczeństwa aplikacji internetowych w projektowaniu i budowie systemów informatycznych w oparciu o wytyczne wynikające z inżynierii bezpieczeństwa oprogramowania. Zidentyfikowano różnorodność i zmienność zagrożeń zabezpieczeń aplikacji internetowych. Celem zaprezentowanych badań jest analiza trendu występowania zagrożeń aplikacji internetowych na podstawie danych fundacji OWASP opublikowanych w latach 2003-2017. W pierwszym punkcie artykułu przedstawiono rolę i zadania fundacji OWASP na tle wytycznych opracowanych przez organizacje zajmujące się bezpieczeństwem aplikacji internetowych. W drugim scharakteryzowano najczęstsze zagrożenia bezpieczeństwa aplikacji internetowych. W trzeciej części dokonano analizy występowania i porównano częstość zagrożeń aplikacji internetowych w latach 2003-2017, a w czwartej przedstawiono sposoby zabezpieczenia aplikacji internetowych oraz rekomendacje do uwzględnienia w projektowaniu i budowie systemów informatycznych z zastosowaniem aplikacji internetowych oraz podczas ich eksploatacji.
The article presents the security threats of web applications in the design and development of information systems based on the guidelines resulting from software security engineering. The article identifies the variety and variability of security threats for web applications. The purpose of the presented research is to analyze the trend in the appearance of threats of web applications which are based on data collected by the OWASP Foundation published over the years 2003-2017. The first chapter of the article presents the role and tasks of the OWASP Foundation against guidelines developed by organizations dealing with the security of web applications. The second chapter describes the most common security threats of web applications. The third chapter analyses the occurrence and compares the frequency of threats to Internet applications in the years 2003-2017, and finally, the fourth chapter presents the ways of protecting web applications and recommendations to be taken into consideration in the design and development of IT systems using web applications and during their usage.
Źródło:: Studia Ekonomiczne; 2019, 390; 91-104
2083-8611
Pojawia się w:: Studia Ekonomiczne
Dostawca treści:: Biblioteka Nauki

Artykuł

Zmień widok

na półce

Informacja

Wyszukujesz frazę "Vulnerabilities" wg kryterium: Wszystkie pola

Źródło danych

Dostawca treści

Kolekcja

Rok wydania

Wydawca

Temat

Autor

Typ dokumentu

Język