• Multi-site Federation For Cyber Range 

      Dua, Simranjeet (Master thesis, 2023)
      Organisasjoner eier vanligvis en viss kapital i infrastruktur fordelt på flere tippesider. En grunnleggende utfordring ligger imidlertid i å optimalisere delingen og utnyttelse av eksisterende infrastruktur og riktig ...
    • An Ontology-Based Context Model for Managing Security Knowledge in Software Development 

      Wen, Shao-Fang; Katt, Basel (Chapter, 2018)
      Software security has been the focus of the security community and practitioners over the past decades. Much security information is widely available in books, open literature or on the internet. We argue that the generated ...
    • Ontology-Based Metrics Computation for System Security Assurance Evaluation 

      Wen, Shao-Fang; Katt, Basel (Journal article; Peer reviewed, 2022)
      Security assurance evaluation (SAE) is a technique that helps organizations to appraise the trust and confidence that a system can be operated correctly and securely. This paper contributes to the research on quantitative ...
    • Ontology-Based Scenario Modeling for Cyber Security Exercise 

      Wen, Shao-Fang; Yamin, Muhammad Mudassar; Katt, Basel (Chapter, 2021)
      The growing demand for cyber security professionals with practical knowledge is boosting the development and conduct of cyber security exercises around the world. Scenarios stand a central position of the exercise, which ...
    • PKI and IoT Security: How to choose the most secure implementation? 

      Myre, Emil (Master thesis, 2021)
      Denne oppgaven vil fokusere på kombinasjonen av teknologiene IoT og PKI og hvordan disse teknologiene kan brukes sammen for å lage sikre løsninger. Den enorme variasjonen av produkter og implementasjonsformer i spesielt ...
    • Preliminary Evaluation of an Ontology-Based Contextualized Learning System for Software Security 

      Wen, Shao-Fang; Katt, Basel (Chapter, 2019)
      Learning software security is a big challenging task in the information technology sector due to the vast amount of security knowledge and the difficulties in understanding the practical applications. The traditional ...
    • Processing of Notifications Produced by Intrusion Detection Systems in CERN’s Security Operations Centre 

      Råheim, Amund Faller (Bachelor thesis, 2017)
      This thesis focuses on the implementation of an application processing notifications produced by intrusion detection systems. Notifications are produced upon detection of a known indicator of compromise in the network ...
    • A Quantitative Security Evaluation and Analysis Model for Web Applications Based on OWASP Application Security Verification Standard 

      Wen, Shao-Fang; Katt, Basel (Peer reviewed; Journal article, 2023)
      In today's digital world, web applications are popular tools used by businesses. As more and more applications are deployed on the web, they are seen as increasingly attractive targets by malicious actors eager to exploit ...
    • SAEOn: An Ontological Metamodel for Quantitative Security Assurance Evaluation 

      Wen, Shao-Fang; Katt, Basel (Chapter, 2023)
      Security assurance is a critical aspect in determining the trustworthiness of information and communication technology systems. Security assurance evaluation (SAE) is the process responsible for gathering assurance shreds ...
    • Security Assurance of REST API based applications 

      Prasher, Nishu (Master thesis, 2018)
      Security assurance is the confidence that a system meets its security requirements, based on specific evidences that an assurance technique provide. In this thesis, I have proposed a quantification method which aims to ...
    • Security Knowledge Management in Open Source Software Communities 

      Wen, Shao-Fang; Kianpour, Mazaher; Katt, Basel (Chapter, 2019)
      Open source software (OSS) communities are groups of individuals, technical or non-technical, interacting with collaborating peers in online communities of practices to develop OSS, solve particular software problems and ...
    • Selecting and Training Young Cyber Talent: A European Cybersecurity Challenge Case Study 

      Yamin, Muhammad Mudassar; Katt, Basel; Torseth, Espen (Peer reviewed; Journal article, 2021)
      With the increasing popularization of cybersecurity concepts due to ever increasing cybersecurity incidents, it is no secret that countries worldwide are investing heavily in cybersecurity education to build the necessary ...
    • Selecting and Training Young Cyber Talent: A Recurrent European Cyber Security Challenge Case Study 

      Yamin, Muhammad Mudassar; Torseth, Espen; Laszlo, Erdodi; Katt, Basel (Peer reviewed; Journal article, 2022)
      Cyber security is a big challenge nowadays. However, the lack of qualified individuals and awareness is making the current situation more problematic. One way to address this problem is through National cyber security ...
    • Serious Games as a Tool to Model Attack and Defense Scenarios for Cyber-Security Exercises 

      Yamin, Muhammad Mudassar; Katt, Basel; Nowostawski, Mariusz (Peer reviewed; Journal article, 2021)
      Technology is evolving rapidly; this poses a problem for security specialists and average citizens as their technological skill sets are quickly made obsolete. This makes the knowledge and understanding of cyber-security ...
    • Sikkerhet i mobilinfrastruktur/autentisering 

      Garder, Henriette Kolby Rohde; Kristiansen, Linn-Mari; Bae, Sturla Høgdahl (Bachelor thesis, 2018)
      Mange nettsteder tilbyr den dag i dag brukere å autentisere seg med en engangskode på SMS i tillegg til å oppgi passord. Dette gjøres fordi man antar at brukeren må ha tilgang til mobiltelefonen sin for å motta engangskoden. ...
    • Sikkerhetsanalyse av SkyHiGh 

      Jensen, Anders Bjørklund; Moohamued, Abdi; Najar, Yobe (Bachelor thesis, 2019)
      Med økende utvikling i den teknologiske verden så har skyplattfomer blitt en populær form for å oppbevare og bearbeide data. De kan brukes til mange ulike formål og betraktes som en veldig viktig del av dagens digitalisering. ...
    • Sikkerhetsanalyse av SkyHiGh 

      Jensen, Anders Bjørklund; Moohamued, Abdi; Najar, Yobe (Bachelor thesis, 2019)
      Med økende utvikling i den teknologiske verden så har skyplattfomer blitt en populær form for å oppbevare og bearbeide data. De kan brukes til mange ulike formål og betraktes som en veldig viktig del av dagens digitalisering. ...
    • Smart Homes: A security threat in disguise 

      Licina, Amar (Master thesis, 2023)
      I de senere årene har den raske veksten av (IoT)-teknologier som har erstattet tradisjonelle husholdning enheter og lovet å tilby enestående bekvemmelighet gjennom smarte hjemmeenheter. Disse IoT-enhetene blir en vanlig ...
    • Smart Policing for a Smart World Opportunities, Challenges and Way Forward 

      Yamin, Muhammad Mudassar; Shalaginov, Andrii; Katt, Basel (Peer reviewed; Journal article, 2020)
      Our world is getting evolved to smart world day by day. This smart world is being developed to make people life easier through the data generated by the smart devices. Data is the fuel that powers the smart world evolution, ...
    • Source Code Patterns of Buffer Overflow Vulnerabilities in Firefox 

      Schuckert, Felix; Hildner, Max; Katt, Basel; Langweg, Hanno (Chapter, 2018)
      We investigated 50 randomly selected buffer overflow vulnerabilities in Firefox. The source code of these vulnerabilities and the corresponding patches were manually reviewed and patterns were identified. Our main contribution ...