DOCSLIB.ORG

Analysis and Evaluation of Email Security

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Analysis and Evaluation of Email Security Al-Azhar University – Gaza Deanship of Postgraduate Studies Faculty of Engineering & Information Technology Master of Computing and Information System Analysis and Evaluation of Email Security Prepared by Mohammed Ahmed Maher Mahmoud Al-Nakhal Supervised by Dr. Ihab Salah Al-Dein Zaqout A Thesis submitted in partial fulfillment of the requirements for the degree of Master of Computing and Information Systems 2018 جامعةةةةةةةةةة ةةةةةةةةةة – غةةةةةةةةةة عمةةةةةةةةةاا لعل اةةةةةةةةةا لع ةةةةةةةةةا ك هلنعا وتكنولوج ا ملع وما ماجسةةةاحل بواةةةم وعلةةةت ملع ومةةةا حتليل وتقييم أمن الربيد اﻹلكرتوني إعداد الباحث حممد أمحد ماهر حممود النخال إشراف الدكتور/ إيهاب صﻻح الدين زقوت قدمت هذه الرسالة استكماﻻً لمتطلبات الحصول على درجة الماجستير في الحوسبة ونظم المعلومات من كلية الهندسة وتكنولوجيا المعلومات – جامعة اﻷزهر – غزة 2018 قَالُوا سُبْحَانَكَ لَا عِلْمَ لَنَا إِلَّا مَا عَلَّمْتَنَا إِنَّكَ أَنْتَ الْعَلِيمُ الْحَكِيمُ صدق اهلل العظيم سورة البقرة ) آية 32( i Dedication To my parents who take my hands and walk me among the ports of life, what is clear in their paths. Thanks to them and hope from Almighty Allah to keep them for me and extend in their age ... To my loving, forgiving and supportive wife who created the atmosphere for me to complete this work. To my brother Mahmoud and sisters Dema and Dania …... To the martyrs of Palestine who fought for the sake of Almighty Allah. ii Acknowledgment The prophet Mohammad (Peace Be Upon Him) says, “He who does not thank people, does not thank Allah “. Completing and issuing such dissertation would not have been possible without the help and support of the people who ably guided this dissertation through the whole process. I feel greatly indebted to the supervisor DR. Ihab Zaqot for his continuous support, guidance and caring, I would also like to thank the Faculty members who have made every effort for me, Dr. Ahmed Mahmoud and Dr. Yosef Abo Shaaban, I would also like to thank Prf. Sami Abu Nasser who taught how to write researches and papers which published in scientific journals. Great thanks for Dr. Ahmed Maher Al Nakhal, my dear father, for helping in writing such desertion and proof reading. Completing this work would have been all the more difficult were it not for the support and friendship provided by the other members of the master of Computer and Information System in Al-Azhar University, I am indebted to them for their help. iii Abstract A new idea is proposed for encrypting electronic messages by using algorithms that are circulated through a key agreed upon by the sender and receiver. The encrypted message is handled and stored in the database, the system is internal, and sends messages only to people registered in the system. If the system compromised or lost the user's password, the message remains encrypted and you need the same key to decrypt it, so the message is kept secret even if the account or system is lost. The system principle depends on the registry for authentication and then get permissions to use the commands related to sending, receiving and reviewing messages and others. The researcher has implemented two algorithms, i.e. the idea that the user has the right to choose encrypted algorithms for the message, the first algorithm is symmetric and the other is asymmetric. The proposed system will encrypt the messages upon the choice of the user. The encryption and decryption process were very successful for the two algorithms. The algorithms were called to encrypt messages and decrypt without any problems regarding encryption and decryption. The algorithms worked & was implemented pursuant to what planned by the researcher and gave expected results, the result is that encryption and decryption of text messages and storing the messages in the database are coded (E-code) consequently that a hacker cannot read text message content. Keywords: Encrypt, Decrypt, Authentication, Password-Based Key Derivation Function 2 (PBKDF2), Data Encryption Standard )DES). iv الملخص تم اقتراح و طرح فكرر ديدري شتير در اشرلراﻹل ارشكتروبدرت دالرتليام اشلوارالدرا اشتر دتم تياوشها دالتليام ل تاح لت ق علده لن قدل اشلرلل واشلتلق . دتم لعاشدت اشرلاشت اشلي ر وتلادبهررا فررر قاعررري اشددابررا ودكررون اشب ررام يالليدررا ودرلررل اشرلرراﻹل فقررط شرر ا يررلا اشللدلدن ف اشب ام . ذا كان اشب ام قري ترام الترقره فو فقري كللرت اشلررور اشلامرت داشللرتليم ت ل اشرلاشت لي ر وتحتاج ش ب س اشل تاح ش ك تي درها شذشك بدق اشرلاشت لرردت حتر فر حاشررت فقرري اشحلررال فو اشب ررام .دعتلرري لدرريف اشب ررام علرر اشتلررددل شللمررايقت ولررن ررم اشحمررول علر فذوبرا تلرتليام ا والرر اشلتعلقرت د رلرال وتلقر ولرادعرت اشرلراﻹل و درهرا .قرام اشداحر دتب دررذ لرروارالدتدن فر فكررر فن اشللررتليم شيدرره اشحررق فرر التدررار لوارالدررا شتيرر در اشرلرراشت اشبمرردت اشلوارالدررت ا وشرر لتلا لررت وا لرررغ دررر لتلا لررت .لرردقوم اشب ررام اشلقترررح دتيرر در اشرلرراﻹل دبرررا علرر التدرررار اشللرررتليم .شقرري كابرر عللدررت اشتيرر در وفررك اشتيرر در بادحررت درريا شللرروارالدتدن . ان عللدررت الررتيعا اشلوارالدررا شتيرر در اشرلرراﻹل وفررك تيرر درها تلرر يون فر ليرراكل تتعلررق داشتيرر در وفررك اشتيرر در . شقرري ب ررذ و عللرر اشلوارالدررا وفقيررا شلررا لطررط شرره اشداحرر وقرريل اشبترراﻹو اشلتوقعررت و اشلردررو و قرري كابرر اشبتددررت هرر فن تيرر در وفررك تيرر در اشرلاﻹل اشبمدت وتلادن اشرلاﻹل ف قاعي اشددابا درتم ترلداهرا وداشتراش ت دلرتطدا اشللتررق اشهاكر قرا لحتوغ اشرلاﻹل اشبمدت. الكلمات المفتاحية: اشتي در فك اشتي در اشلمايقت فذوبا قاعي ددابا كللت تي در ل تاح تي در. v Table of Contents ABSTRACT .......................................................................................................................... I V .................................................................................................................................... الملخص DEDICATION .................................................................................................................... II ACKNOWLEDGMENT ................................................................................................... III TABLE OF CONTENTS .................................................................................................. VI LIST OF ABBREVIATIONS ............................................................................................. X LIST OF FIGURES........................................................................................................... IX CHAPTER ONE INTRODUCTION ..................................................................................1 1.1 INTRODUCTION ..........................................................................................................2 1.2 STATEMENT OF THE PROBLEM............................................................................4 1.3 OBJECTIVES .................................................................................................................5 1.3.1 MAIN OBJECTIVES ....................................................................................................... 5 1.3.2 SPECIFIC OBJECTIVES ................................................................................................. 5 1.4 SIGNIFICANCE OF THE THESIS .............................................................................5 1.5 SCOPE AND LIMITATIONS OF THE THESIS .......................................................5 1.5.1 MAIN SCOPE ................................................................................................................ 6 1.5.2 MAIN LIMITATIONS ..................................................................................................... 6 1.6 METHODOLOGY .........................................................................................................6 1.7 THESIS OUTLINE ........................................................................................................7 CHAPTER TWO LITERATURE REVIEW ....................................................................8 INTRODUCTION ................................................................................................................9 2.1 PRETTY GOOD PRIVACY (PGP) .............................................................................9 2.2 PRIVACY ENHANCED MAIL (PEM) .....................................................................10 2.3 THREATS ON EMAIL ...............................................................................................10 2.3.1 EAVESDROPPING ........................................................................................................ 10 2.3.2 IDENTITY THEFT ........................................................................................................ 10 2.3.3 MESSAGE MODIFICATION ......................................................................................... 11 2.3.4 FALSE MESSAGES ...................................................................................................... 11 2.3.5 UNPROTECTED BACKUPS .......................................................................................... 11 2.3.6 REPUDIATION ............................................................................................................. 11 2.3.7 EMAIL SPOOFING ....................................................................................................... 11 vi 2.3.8 EMAIL SPAMMING ..................................................................................................... 11 2.3.9 EMAIL BOMBING ....................................................................................................... 12 2.3.10 SENDING THREATS ..................................................................................................
Load more

Recommended publications
  • Mining of Massive Datasets
    Mining of Massive Datasets Anand Rajaraman Kosmix, Inc. Jeffrey D. Ullman Stanford Univ. Copyright c 2010, 2011 Anand Rajaraman and Jeffrey D. Ullman ii Preface This book evolved from material developed over several years by Anand Raja- raman and Jeff Ullman for a one-quarter course at Stanford. The course CS345A, titled “Web Mining,” was designed as an advanced graduate course, although it has become accessible and interesting to advanced undergraduates. What the Book Is About At the highest level of description, this book is about data mining. However, it focuses on data mining of very large amounts of data, that is, data so large it does not fit in main memory. Because of the emphasis on size, many of our examples are about the Web or data derived from the Web. Further, the book takes an algorithmic point of view: data mining is about applying algorithms to data, rather than using data to “train” a machine-learning engine of some sort. The principal topics covered are: 1. Distributed file systems and map-reduce as a tool for creating parallel algorithms that succeed on very large amounts of data. 2. Similarity search, including the key techniques of minhashing and locality- sensitive hashing. 3. Data-stream processing and specialized algorithms for dealing with data that arrives so fast it must be processed immediately or lost. 4. The technology of search engines, including Google’s PageRank, link-spam detection, and the hubs-and-authorities approach. 5. Frequent-itemset mining, including association rules, market-baskets, the A-Priori Algorithm and its improvements. 6.
    [Show full text]
  • Linux Administrators Security Guide LASG - 0.1.1
    Linux Administrators Security Guide LASG - 0.1.1 By Kurt Seifried ([email protected]) copyright 1999, All rights reserved. Available at: https://www.seifried.org/lasg/. This document is free for most non commercial uses, the license follows the table of contents, please read it if you have any concerns. If you have any questions email [email protected]. A mailing list is available, send an email to [email protected], with "subscribe lasg-announce" in the body (no quotes) and you will be automatically added. 1 Table of contents License Preface Forward by the author Contributing What this guide is and isn't How to determine what to secure and how to secure it Safe installation of Linux Choosing your install media It ain't over 'til... General concepts, server verses workstations, etc Physical / Boot security Physical access The computer BIOS LILO The Linux kernel Upgrading and compiling the kernel Kernel versions Administrative tools Access Telnet SSH LSH REXEC NSH Slush SSL Telnet Fsh secsh Local YaST sudo Super Remote Webmin Linuxconf COAS 2 System Files /etc/passwd /etc/shadow /etc/groups /etc/gshadow /etc/login.defs /etc/shells /etc/securetty Log files and other forms of monitoring General log security sysklogd / klogd secure-syslog next generation syslog Log monitoring logcheck colorlogs WOTS swatch Kernel logging auditd Shell logging bash Shadow passwords Cracking passwords John the ripper Crack Saltine cracker VCU PAM Software Management RPM dpkg tarballs / tgz Checking file integrity RPM dpkg PGP MD5 Automatic
    [Show full text]
  • Iclab: a Global, Longitudinal Internet Censorship Measurement Platform
    ICLab: A Global, Longitudinal Internet Censorship Measurement Platform Arian Akhavan Niaki∗y Shinyoung Cho∗yz Zachary Weinberg∗x Nguyen Phong Hoangz Abbas Razaghpanahz Nicolas Christinx Phillipa Gilly yUniversity of Massachusetts, Amherst zStony Brook University xCarnegie Mellon University {arian, shicho, phillipa}@cs.umass.edu {shicho, nghoang, arazaghpanah}@cs.stonybrook.edu {zackw, nicolasc}@cmu.edu Abstract—Researchers have studied Internet censorship for remains elusive. We highlight three key challenges that must nearly as long as attempts to censor contents have taken place. be addressed to make progress in this space: Most studies have however been limited to a short period of time and/or a few countries; the few exceptions have traded off detail Challenge 1: Access to Vantage Points. With few ex- for breadth of coverage. Collecting enough data for a compre- ceptions,1 measuring Internet censorship requires access to hensive, global, longitudinal perspective remains challenging. “vantage point” hosts within the region of interest. In this work, we present ICLab, an Internet measurement The simplest way to obtain vantage points is to recruit platform specialized for censorship research. It achieves a new balance between breadth of coverage and detail of measurements, volunteers [37], [43], [73], [80]. Volunteers can run software by using commercial VPNs as vantage points distributed around that performs arbitrary network measurements from each the world. ICLab has been operated continuously since late vantage point, but recruiting more than a few volunteers per 2016. It can currently detect DNS manipulation and TCP packet country and retaining them for long periods is difficult. Further, injection, and overt “block pages” however they are delivered.
    [Show full text]
  • Introduction to Linux and Using CSC Environment Efficiently
    Introduction to Linux and Using CSC Environment Efficiently Introduction UNIX A slow-pace course for absolute UNIX beginners February 10th, 2014 Lecturers (in alphabetical order): Tomasz Malkiewicz Atte Sillanpää Thomas Zwinger Program 09:45 – 10:00 Morning coffee + registration 10:00 – 10:15 Introduction to the course (whereabouts, etc.) 10:15 – 10:45 What is UNIX/Linux: history and basic concepts (multi-user, multi-tasking, multi-processor) 10:45 – 11:15 Linux on my own computer: native installation, dual-boot, virtual appliances 11:15 – 11:45 A first glimpse of the shell: simple navigation, listing, creating/removing files and directories 11:45 – 12:45 lunch 12:45 – 13:00 Text editors: vi and emacs 13:00 – 13:45 File permissions: concepts of users and groups, changing permissions/groups 13:45 – 14:15 Job management: scripts and executables, suspending/killing jobs, monitoring, foreground/background 14:15 – 14:30 coffee break 14:30 – 15:00 Setup of your system: environment variables, aliases, rc-files 15:00 – 15:30 A second look at the shell: finding files and contents, remote operations, text-utils, changing shells 15:30 – 17:00 Troubleshooter: Interactive session to deal with open questions and specific problems Program All topics are presented with interactive demonstrations Additionally, exercises to each of the sections will be provided The Troubleshooter section is meant for personal interaction and is (with a time- limit to 17:00) kept in an open end style Practicalities Keep the name tag visible Lunch is served in the same building.
    [Show full text]
  • Latexsample-Thesis
    INTEGRAL ESTIMATION IN QUANTUM PHYSICS by Jane Doe A dissertation submitted to the faculty of The University of Utah in partial fulfillment of the requirements for the degree of Doctor of Philosophy Department of Mathematics The University of Utah May 2016 Copyright c Jane Doe 2016 All Rights Reserved The University of Utah Graduate School STATEMENT OF DISSERTATION APPROVAL The dissertation of Jane Doe has been approved by the following supervisory committee members: Cornelius L´anczos , Chair(s) 17 Feb 2016 Date Approved Hans Bethe , Member 17 Feb 2016 Date Approved Niels Bohr , Member 17 Feb 2016 Date Approved Max Born , Member 17 Feb 2016 Date Approved Paul A. M. Dirac , Member 17 Feb 2016 Date Approved by Petrus Marcus Aurelius Featherstone-Hough , Chair/Dean of the Department/College/School of Mathematics and by Alice B. Toklas , Dean of The Graduate School. ABSTRACT Blah blah blah blah blah blah blah blah blah blah blah blah blah blah blah. Blah blah blah blah blah blah blah blah blah blah blah blah blah blah blah. Blah blah blah blah blah blah blah blah blah blah blah blah blah blah blah. Blah blah blah blah blah blah blah blah blah blah blah blah blah blah blah. Blah blah blah blah blah blah blah blah blah blah blah blah blah blah blah. Blah blah blah blah blah blah blah blah blah blah blah blah blah blah blah. Blah blah blah blah blah blah blah blah blah blah blah blah blah blah blah. Blah blah blah blah blah blah blah blah blah blah blah blah blah blah blah.
    [Show full text]
  • Pipenightdreams Osgcal-Doc Mumudvb Mpg123-Alsa Tbb
    pipenightdreams osgcal-doc mumudvb mpg123-alsa tbb-examples libgammu4-dbg gcc-4.1-doc snort-rules-default davical cutmp3 libevolution5.0-cil aspell-am python-gobject-doc openoffice.org-l10n-mn libc6-xen xserver-xorg trophy-data t38modem pioneers-console libnb-platform10-java libgtkglext1-ruby libboost-wave1.39-dev drgenius bfbtester libchromexvmcpro1 isdnutils-xtools ubuntuone-client openoffice.org2-math openoffice.org-l10n-lt lsb-cxx-ia32 kdeartwork-emoticons-kde4 wmpuzzle trafshow python-plplot lx-gdb link-monitor-applet libscm-dev liblog-agent-logger-perl libccrtp-doc libclass-throwable-perl kde-i18n-csb jack-jconv hamradio-menus coinor-libvol-doc msx-emulator bitbake nabi language-pack-gnome-zh libpaperg popularity-contest xracer-tools xfont-nexus opendrim-lmp-baseserver libvorbisfile-ruby liblinebreak-doc libgfcui-2.0-0c2a-dbg libblacs-mpi-dev dict-freedict-spa-eng blender-ogrexml aspell-da x11-apps openoffice.org-l10n-lv openoffice.org-l10n-nl pnmtopng libodbcinstq1 libhsqldb-java-doc libmono-addins-gui0.2-cil sg3-utils linux-backports-modules-alsa-2.6.31-19-generic yorick-yeti-gsl python-pymssql plasma-widget-cpuload mcpp gpsim-lcd cl-csv libhtml-clean-perl asterisk-dbg apt-dater-dbg libgnome-mag1-dev language-pack-gnome-yo python-crypto svn-autoreleasedeb sugar-terminal-activity mii-diag maria-doc libplexus-component-api-java-doc libhugs-hgl-bundled libchipcard-libgwenhywfar47-plugins libghc6-random-dev freefem3d ezmlm cakephp-scripts aspell-ar ara-byte not+sparc openoffice.org-l10n-nn linux-backports-modules-karmic-generic-pae
    [Show full text]
  • Linux Administrators Security Guide LASG - 0.1.0
    Linux Administrators Security Guide LASG - 0.1.0 By Kurt Seifried ([email protected]) copyright 1999, All rights reserved. Available at: https://www.seifried.org/lasg/ This document is free for most non commercial uses, the license follows the table of contents, please read it if you have any concerns. If you have any questions email [email protected]. If you want to receive announcements of new versions of the LASG please send a blank email with the subject line “subscribe” (no quotes) to [email protected]. 1 Table of contents License Preface Forward by the author Contributing What this guide is and isn't How to determine what to secure and how to secure it Safe installation of Linux Choosing your install media It ain't over 'til... General concepts, server verses workstations, etc Physical / Boot security Physical access The computer BIOS LILO The Linux kernel Upgrading and compiling the kernel Kernel versions Administrative tools Access Telnet SSH LSH REXEC NSH Slush SSL Telnet Fsh secsh Local YaST sudo Super Remote Webmin Linuxconf COAS 2 System Files /etc/passwd /etc/shadow /etc/groups /etc/gshadow /etc/login.defs /etc/shells /etc/securetty Log files and other forms of monitoring sysklogd / klogd secure-syslog next generation syslog Log monitoring logcheck colorlogs WOTS swatch Kernel logging auditd Shell logging bash Shadow passwords Cracking passwords Jack the ripper Crack Saltine cracker VCU PAM Software Management RPM dpkg tarballs / tgz Checking file integrity RPM dpkg PGP MD5 Automatic updates RPM AutoRPM
    [Show full text]
  • Proquest Dissertations
    Saving Grace: Saqshbandi Spiritual Transmission in the Asian Sub-Continent, 1928-1997 Item Type text; Dissertation-Reproduction (electronic) Authors Lizzio, Kenneth Paul Publisher The University of Arizona. Rights Copyright © is held by the author. Digital access to this material is made possible by the University Libraries, University of Arizona. Further transmission, reproduction or presentation (such as public display or performance) of protected items is prohibited except with permission of the author. Download date 04/10/2021 09:49:29 Link to Item http://hdl.handle.net/10150/270114 INFORMATION TO USERS This manuscript has been reproduced from the microfilm master. UMI films the text directly from the original or copy submitted. Thus, some thesis and dissertation copies are in typewriter face, while others may be from any type of computer printer. The quality of this reproduction is dependent upon the quality of the copy submitted. Broken or indistina print, colored or poor quality illustrations and photographs, print bleedthrough, substandard margins, and improper alignment can adversely affect reproduction. In the unlikely event that the author did not send UMI a complete manuscript and there are missing pages, these will be noted. Also, if unauthorized copyright material had to be removed, a note will indicate the deletion. Oversize materials (e.g., maps, drawings, charts) are reproduced by sectioning the original, beginning at the upper left-hand comer and continuing from left to right in equal sections with small overlaps. Each original is also photographed in one exposure and is included in reduced form at the back of the book. Photographs included in the original manuscript have been reproduced xerographically in this copy.
    [Show full text]
  • Integral Estimation in Quantum Physics
    INTEGRAL ESTIMATION IN QUANTUM PHYSICS by Jane Doe A dissertation submitted to the faculty of The University of Utah in partial fulfillment of the requirements for the degree of Doctor of Philosophy in Mathematical Physics Department of Mathematics The University of Utah May 2016 Copyright c Jane Doe 2016 All Rights Reserved The University of Utah Graduate School STATEMENT OF DISSERTATION APPROVAL The dissertation of Jane Doe has been approved by the following supervisory committee members: Cornelius L´anczos , Chair(s) 17 Feb 2016 Date Approved Hans Bethe , Member 17 Feb 2016 Date Approved Niels Bohr , Member 17 Feb 2016 Date Approved Max Born , Member 17 Feb 2016 Date Approved Paul A. M. Dirac , Member 17 Feb 2016 Date Approved by Petrus Marcus Aurelius Featherstone-Hough , Chair/Dean of the Department/College/School of Mathematics and by Alice B. Toklas , Dean of The Graduate School. ABSTRACT Blah blah blah blah blah blah blah blah blah blah blah blah blah blah blah. Blah blah blah blah blah blah blah blah blah blah blah blah blah blah blah. Blah blah blah blah blah blah blah blah blah blah blah blah blah blah blah. Blah blah blah blah blah blah blah blah blah blah blah blah blah blah blah. Blah blah blah blah blah blah blah blah blah blah blah blah blah blah blah. Blah blah blah blah blah blah blah blah blah blah blah blah blah blah blah. Blah blah blah blah blah blah blah blah blah blah blah blah blah blah blah. Blah blah blah blah blah blah blah blah blah blah blah blah blah blah blah.
    [Show full text]
  • An A-Z Index of the Windows XP Command Line by : Ir
    An A-Z Index of the Windows XP command line By : Ir. Teguh W. a ADDUSERS Add or list users to/from a CSV file ARP Address Resolution Protocol ASSOC Change file extension associations ASSOCIAT One step file association ATTRIB Change file attributes b BOOTCFG Edit Windows boot settings BROWSTAT Get domain, browser and PDC info c CACLS Change file permissions CALL Call one batch program from another CD Change Directory - move to a specific Folder CHANGE Change Terminal Server Session properties CHKDSK Check Disk - check and repair disk problems CHKNTFS Check the NTFS file system CHOICE Accept keyboard input to a batch file CIPHER Encrypt or Decrypt files/folders CleanMgr Automated cleanup of Temp files, recycle bin CLEARMEM Clear memory leaks CLIP Copy STDIN to the Windows clipboard. CLS Clear the screen CLUSTER Windows Clustering CMD Start a new CMD shell COLOR Change colors of the CMD window COMP Compare the contents of two files or sets of files COMPACT Compress files or folders on an NTFS partition COMPRESS Compress individual files on an NTFS partition CON2PRT Connect or disconnect a Printer CONVERT Convert a FAT drive to NTFS. COPY Copy one or more files to another location CSCcmd Client-side caching (Offline Files) CSVDE Import or Export Active Directory data d DATE Display or set the date DEFRAG Defragment hard drive DEL Delete one or more files DELPROF Delete NT user profiles DELTREE Delete a folder and all subfolders DevCon Device Manager Command Line Utility DIR Display a list of files and folders DIRUSE Display disk usage DISKCOMP
    [Show full text]
  • Privacy-Preserving Record Linkage in Large Databases Using Secure Multiparty Computation Peeter Laud1* and Alisa Pankova1,2
    Laud and Pankova BMC Medical Genomics 2018, 11(Suppl 4):84 https://doi.org/10.1186/s12920-018-0400-8 TECHNICAL ADVANCE Open Access Privacy-preserving record linkage in large databases using secure multiparty computation Peeter Laud1* and Alisa Pankova1,2 From iDASH Privacy and Security Workshop 2017 Orlando, FL, USA.14 October 2017 Abstract Background: Practical applications for data analysis may require combining multiple databases belonging to different owners, such as health centers. The analysis should be performed without violating privacy of neither the centers themselves, nor the patients whose records these centers store. To avoid biased analysis results, it may be important to remove duplicate records among the centers, so that each patient’s data would be taken into account only once. This task is very closely related to privacy-preserving record linkage. Methods: This paper presents a solution to privacy-preserving deduplication among records of several databases using secure multiparty computation. It is build upon one of the fastest practical secure multiparty computation platforms, called Sharemind. Results: The tests on ca 10 million records of simulated databases with 1000 health centers of 10000 records each show that the computation is feasible in practice. The expected running time of the experiment is ca. 30 min for computing servers connected over 100 Mbit/s WAN, the expected error of the results is 2−40, and no errors have been detected for the particular test set that we used for our benchmarks. Conclusions: The solution is ready for practical use. It has well-defined security properties, implied by the properties of Sharemind platform.
    [Show full text]
  • Browser Fingerprint Coding Methods Increasing the Effectiveness of User Identification in the Web Traffic
    JAISCR, 2020, Vol. 10, No. 4, pp. 243 – 253 10.2478/jaiscr-2020-0016 BROWSER FINGERPRINT CODING METHODS INCREASING THE EFFECTIVENESS OF USER IDENTIFICATION IN THE WEB TRAFFIC 1, 2 3 Marcin Gabryel ∗, Konrad Grzanek , Yoichi Hayashi 1Department of Computer Engineering, Czestochowa University of Technology, al. Armii Krajowej 36, 42-200 Cze¸stochowa, Poland 2Information Technology Institute, University of Social Sciences, 90 - 113 Lodz Clark University, Worcester, MA 01610, USA 3Department of Computer Science, Meiji University, Japan ∗E-mail: [email protected] Submitted: 14th October 2019; Accepted: 29th April 2020 Abstract Web-based browser fingerprint (or device fingerprint) is a tool used to identify and track user activity in web traffic. It is also used to identify computers that are abusing online advertising and also to prevent credit card fraud. A device fingerprint is created by extract- ing multiple parameter values from a browser API (e.g. operating system type or browser version). The acquired parameter values are then used to create a hash using the hash func- tion. The disadvantage of using this method is too high susceptibility to small, normally occurring changes (e.g. when changing the browser version number or screen resolution). Minor changes in the input values generate a completely different fingerprint hash, mak- ing it impossible to find similar ones in the database. On the other hand, omitting these unstable values when creating a hash, significantly limits the ability of the fingerprint to distinguish between devices. This weak point is commonly exploited by fraudsters who knowingly evade this form of protection by deliberately changing the value of device pa- rameters.
    [Show full text]