June 22 ~ 23, 2024, Sydney, Australia
Kamronbek Yusupov1, Md Rezanur Islam1, Insu Oh2, Mahdi Sahlabadi2, and Kangbin Yim2, 1Software Convergence, Soonchunhyang University, Asan-si, South Korea, 2Department of Information Security Engineering, Soonchunhyang University, Asan-si, South Korea
This research focuses on evaluating the security of an intrusion detection system in a CAN bus-based vehicle control network. A series of studies were conducted to evaluate the performance of models proposed by previous researchers, testing their effectiveness in real-world scenarios as opposed to those on which they were trained. The article demonstrates that models trained and tested on the same dataset can only sometimes be considered adequate. An approach that included models trained only on CAN ID, Payload, or full data was chosen. The research results show that such methods are ineffective enough in real-world attack scenarios because they cannot distinguish between new scenarios not presented during training. The results of testing the models in various attack scenarios are presented, and their limitations are identified. In addition, a new method is proposed explicitly for attack scenarios that may occur in the real-world use of an in-vehicle CAN communication system.
Intrusion Detection System, Controller Area Network, In-Vehicle Network, LSTM.
Sara Abbaspour Asadollah, School of Innovation, Design and Engineering, Mälardalen University Västerås, Sweden
Ensuring digital privacy is critical to protecting sensitive information and guarding against malicious actors in todays interconnected world. This work-in-progress paper explores the concept of digital privacy and its importance in maintaining online security. We highlight the importance of robust strategies to protect information by examining the consequences of failing to prioritize digital privacy, including identity attack scenarios in industrial applications by proposing a systematic approach to improving digital privacy. Our methodology includes creating a Data Flow Diagram (DFD) to visualize the data flow within the system and applying the STRIDE threat modeling framework to identify potential threats, with a focus on privacy-related aspects. We then extract privacy-related threats and create attack scenarios to guide testers to validate system security. To validate our methodology, we plan to conduct a case study in an industrial application, an automated train control system. By analyzing the data flow and identifying potential attack scenarios, we want to demonstrate the effectiveness of our approach in real-world applications. We also want to automate the process and collaborate with more industries to ensure scalability and practical applicability.
Privacy-related threats, Cyberattack scenario, Information security, Data protection.
Mahmuda Akter and Nour Moustafa, The School of Systems and Computing, University of New South Wales Canberra, ACT 2612, Australia
The Internet of Things (IoT) forms intelligent systems, such as smart cities and factories, to enhance intellectual productivity and provide revolutionary and automated services to end-users and organisations. However, a future IoT ecosystem requires more dynamicity and heterogeneity with advanced privacy preservation. Federated Learning (FL) addresses the challenge of maintaining data privacy by using a privacy-preserving sharing mechanism instead of transmitting raw data. However, the latest cyber threats cause privacy breaches in existing Federated Learning schemes. This study presents a systematic analysis of Federated Learning-based privacypreserving methods in IoT systems. A standard IoT architecture with possible privacy threats is illustrated. Also, Federated Learning schemes and their taxonomies are discussed in a privacypreserving manner, with initial experiments proving the significance of Federated Learning-based privacy preservation in IoT environments and finding acceptable noise addition in differential privacy by keeping higher testing accuracy in different settings to enhance privacy preservation of federated learning. Various Federated Learning schemes, challenges and future research directions are covered.
Federated Learning, Privacy Preserving, Internet of Things (IoT), Privacy Threats.
Waleed A Al Maamari1, Muhammad R Ahmed2, 3, Rusmawati Binti Said1, Mohammed H Marhaban2, 1School of Business and Economics, University Putra Malaysia, Selangor, Malaysia, 2Faculty of Engineering, University Putra Malaysia, Selangor, Malaysia, 3Military Technological College, Muscat, Oman
In the current cybersecurity environment, incident response holds paramount importance for organizations concerned with the need to maintain security process and mitigate potential breaches. Therefore, this paper analyzes the emerging trends and persistent challenges as shaping incident response practices. These emerging trends—ransomware attacks, the integration of AI and ML, proactive threat hunting, cloud security incident response, and threat intelligence sharing—also bring with them new opportunities for the development of incident response. However, current challenges to Incident response effectiveness include resource constraints, skill shortages, issues of regulatory compliance, organizational silos, and cultural barriers. These can only be addressed through investment in advanced technologies, training on an ongoing basis, collaborative partnerships, and proactive efforts in regulatory compliance. Organizations can strengthen their incident response postures and effectively mitigate cyber risks by making a priority of leadership commitment, fostering a cybersecurity-aware culture, and embracing proactive measures to meet the exigencies of the changing cybersecurity landscape.
Incident Response, Cybersecurity, Emerging Trends, Persistent Challenges, Organizational Resilience.
Mikhail Diyachkov1, Arkadi Yakubov1, Hadassa Daltrophe1, and Kiril Danilchenko2, 1Shamoon College of Engineering, Ashdod, Israel, 2University of Waterloo, Waterloo, Ontario, Canada
With the proliferation of deep learning, steganography techniques can now leverage neural networks to imperceptibly hide secret information within digital media. This presents potential risks of propagating malware covertly. We present an innovative deep-learning framework that embeds malware within images for stealthy distribution. Our methodology transforms malware programs into image representations using a specialized neural network. These image representations are then embedded seamlessly within innocuous cover images using an encoding network. The resulting stego images appear unmodified to the naked eye. We develop a separate network to extract the malware from stego images. This attack pipeline allows the malware to bypass traditional signature-based detection. We experimentally demonstrate the efficacy of our approach and discuss its implications. Our framework achieves high-fidelity reconstruction of embedded malware programs with minimal distortions in the cover images. We also analyze the impact of loss functions on concealment and extraction capacity. The proposed technique represents a significant advancement in AI-driven steganography. By highlighting an intriguing attack vector, our work motivates research into more robust defensive solutions. Our study promotes responsible disclosure by releasing the attack implementation as open-source
Waleed A Al Maamari1, Muhammad R Ahmed2, 3, Rusmawati Binti Said1, Mohammed H Marhaban2, 1School of Business and Economics, University Putra Malaysia, Selangor, Malaysia, 2Faculty of Engineering, University Putra Malaysia, Selangor, Malaysia, 3Military Technological College, Muscat, Oman
In the current cybersecurity environment, incident response holds paramount importance for organizations concerned with the need to maintain security process and mitigate potential breaches. Therefore, this paper analyzes the emerging trends and persistent challenges as shaping incident response practices. These emerging trends—ransomware attacks, the integration of AI and ML, proactive threat hunting, cloud security incident response, and threat intelligence sharing—also bring with them new opportunities for the development of incident response. However, current challenges to Incident response effectiveness include resource constraints, skill shortages, issues of regulatory compliance, organizational silos, and cultural barriers. These can only be addressed through investment in advanced technologies, training on an ongoing basis, collaborative partnerships, and proactive efforts in regulatory compliance. Organizations can strengthen their incident response postures and effectively mitigate cyber risks by making a priority of leadership commitment, fostering a cybersecurity-aware culture, and embracing proactive measures to meet the exigencies of the changing cybersecurity landscape.
Incident Response, Cybersecurity, Emerging Trends, Persistent Challenges, Organizational Resilience.
Mikhail Diyachkov1, Arkadi Yakubov1, Hadassa Daltrophe1, and Kiril Danilchenko2, 1Shamoon College of Engineering, Ashdod, Israel, 2University of Waterloo, Waterloo, Ontario, Canada
With the proliferation of deep learning, steganography techniques can now leverage neural networks to imperceptibly hide secret information within digital media. This presents potential risks of propagating malware covertly. We present an innovative deep-learning framework that embeds malware within images for stealthy distribution. Our methodology transforms malware programs into image representations using a specialized neural network. These image representations are then embedded seamlessly within innocuous cover images using an encoding network. The resulting stego images appear unmodified to the naked eye. We develop a separate network to extract the malware from stego images. This attack pipeline allows the malware to bypass traditional signature-based detection. We experimentally demonstrate the efficacy of our approach and discuss its implications. Our framework achieves high-fidelity reconstruction of embedded malware programs with minimal distortions in the cover images. We also analyze the impact of loss functions on concealment and extraction capacity. The proposed technique represents a significant advancement in AI-driven steganography. By highlighting an intriguing attack vector, our work motivates research into more robust defensive solutions. Our study promotes responsible disclosure by releasing the attack implementation as open-source
Nikhil Ghadge, Software Architect, Workforce Identity Cloud, Okta.Inc
Identity management has become increasingly critical in todays digital landscape, where sensitive data is exposed to frequent breaches and unauthorized access. This research aims to investigate the best practices for governance and administration to strengthen identity management systems, focusing on security, privacy, and usability. By examining current industry standards, regulations, and technological advancements, the study seeks to provide valuable insights for organizations looking to enhance their identity management capabilities. The research methodology employs a mixed-methods approach, combining quantitative surveys and data analysis with qualitative interviews to gather a comprehensive understanding of existing practices and challenges in identity governance and administration. The study explores key components such as authentication, authorization, and access control, offering practical recommendations to improve the effectiveness of identity management strategies. The research highlights the importance of adopting role-based access control (RBAC), continuous monitoring and compliance, identity lifecycle management, and the integration of identity governance with IT infrastructure. It also emphasizes the significance of effective password management, authentication measures, and the implementation of Single Sign-On (SSO) solutions to enhance security and user experience. Furthermore, the study underscores the critical role of data encryption and protection measures in safeguarding sensitive information and mitigating the risk of data breaches. By adhering to best practices in identity management, organizations can improve their overall cybersecurity posture, ensure compliance with regulations, and foster trust among stakeholders in an increasingly complex digital environment.
Identity and Access Management, Digital Identity, Authentication, Authorization, Governance.
Carlos Olea, Holly Tucker, Jessica Phelan, Cameron Pattison, Shen Zhang, Maxwell Lieb, Doug Schmidt, Jules White, Department of Computer Science, Vanderbilt University, Nashville, TN, United States
Prompt engineering for the effective use of LLMs has become an important and useful area of research since the advent of highly performant LLMs. Various patterns of prompting have proven effective, among them chain of thought, self consistency and personas. In this paper we measure the effect of both single and multi-agent personas in various knowledge-testing environ- ments, multiple choice and short answer environments. We present our methodology and find that the use of single and multi-agent personas have nominal effects in summation multiple choice tasks and that single-agent expert personas have benefits in short answer tasks. We then hypothesize a spectrum of effect for both single and multi-agent persona usage given our findings.
Prompt Engineering, Large Language Models, Question Answering.
Agampreet Saini,Dr. Rahul Kumar Singh, Dr. Manoj Kumar Sachan, UPES, Dehradun, India
The scope of financial time series prediction has evolved significantly, driven by the surging availability of data and computational advancements. This transition has seen the traditional statistical methods give way to present-day machine learning and deep learning techniques. Despite these strides, challenges continue to exist, with market unpredictability, dimensionality issues, and overfitting in high-frequency data standing as primary obstacles. Newer machine learning models are better than old ones at predicting stocks. When electronic trading and yield optimisation come together, they make these models even better. Deep learning has completely changed machine learning, especially in forecasting financial trends over time. Complex deep learning models lack interpretability, hindering real-world adoption. Considering this we have used two deep learning models which are Long Short-Term Memory and Convolutional Neural Network and trained these on apple stock market data over the years along with one machine learning model i.e. Linear Regression. Then we have compared the accuracy of all the models based on their R-squared Score value.
Financial time series, machine learning, deep learning, market unpredictability, R-squared Score.
Janga Bussaja, Independent Researcher, USA
The system outlined in this proposal exists in a conceptual phase, awaiting the necessary resources for implementation. The theoretical framework presented herein lays the foundation for the development and deployment of Smoky, an innovative artificial intelligence system designed to confront systemic racism. Grounded in African-centered scholarship and equipped with sophisticated monitoring capabilities, Smoky stands as a pioneering endeavor in the realm of leveraging technology for social equity. This scholarly exploration delves into the conceptualization, development, and potential applications of Smoky as a formidable asset in the ongoing struggle against racial injustice. As with any transformative idea, securing funding and support is paramount to transitioning from theory to tangible action. This paper serves as a call to philanthropists and potential collaborators to join in the realization of this vision, contributing to the advancement of technology-driven solutions for social justice.
African-centered Language Model (LLM), Systemic Racism, White Supremacy, Social Justice, Artificial Intelligence (AI) Algorithms, Knowledge Representation, Neural Networks, Data Mining, Machine Learning, Information Retrieval, Natural Language Processing (NLP), Multimedia Analysis, Pattern Recognition, Cognitive Informatics, Planetary Chess, Counter-racist Scholars, Biases in AI, Hybrid Intelligent Systems, Evolutionary Computing, Technical Challenges in AI Development.
JHaocheng Yang1, Tyler Boulom2, 1Immersion academy, 4010 Barranca Parkway, Irvine, CA 92604, 2Computer Science Department, California State Polytechnic University, Pomona, CA 91768
This paper addresses the challenge of disengagement and lack of motivation among students learning history, often attributed to traditional teaching methods that fail to captivate their interest. We propose an innovative solution through an educational role-playing game (RPG) that integrates adaptive AI to create a personalized, immersive learning environment [1]. This game allows students to explore historical events as active participants rather than passive recipients, enhancing engagement and retention of information. Key technologies include an adaptive AI system that tailors content to individual learning styles and a game-based platform that encourages exploration and decision-making [2]. Challenges such as ensuring historical accuracy, maintaining user engagement, and addressing diverse educational needs were addressed through iterative design and testing, incorporating feedback from real-world classroom settings. Experimental application across various educational scenarios demonstrated significant improvements in student engagement and historical knowledge comprehension. Results indicated that students not only enjoyed learning about history through this interactive platform but also developed a deeper understanding of the subject matter. Ultimately, this RPG-based educational tool offers a compelling alternative to traditional history education, promoting active learning and sustained interest [3]. Its ability to adapt to individual learner profiles and engage students in meaningful ways makes it an invaluable resource in educational environments striving to enhance both learning outcomes and student motivation.
Interactive Learning, Educational Role-Playing Games, Unity, Artificial Intelligence.
Chenyue Shao1, Garret Washburn2, 1Campion School, Agiou Ioulianis street, Pallini, 15351, Athens, Greece, 2Computer Science Department, California State Polytechnic University, Pomona, CA 91768
In the modern computing age, where it seems that almost everyone has a computer, the organization of individuals file structures has become increasingly more and more unorganized [1]. In an effort to solve this problem, the File Sorter application proposed in this paper enables a user to easily sort their files with the help of an AI model designed to sort files accurately and efficiently. The File Sorter application utilizes AI to predict where a file should go given a dataset [2]. To test this application, we employed experiments to design how time efficient the File Sorter was as well as how accurately it sorted files, in which both experiments displayed no inefficiency. The public should use the File Sorter application because it accurately and efficiently sorts files in varying manners, and it is good practice for an individual to maintain a healthy file structure because it enables a productive file structure workflow.
File Organization, AI Sorting, File Management, Productivity Tools.
Rani Aher, Dr. Mandaar Pande, Department of Symbiosis Centre for Information Technology Symbiosis International University, Plot No:15, Rajiv Gandhi Infotech Park, MIDC, Hinjewadi, Phase 1,Pune, Maharashtra 411057, India
A development of systems capable of compressing audio files is a very appealing research topic. This is due to the necessity to improve storage utilisation and accelerate data transfer over restricted communication channels. As a result, numerous investigators have explored and developed many methods, also to compress audio information with several approaches as well as ways, every one of them have negative consequences such as excessive time consumption or complex computations and remains a key problem. Recent improvements in deep learning has prompted researchers to use unified deep network models to investigate challenges needing highly organised data. The building and design of such models for compressing audio signals has been problematic due to the demand for discrete representations that are difficult to train. This research focuses on quantum neural networks for audio file compression. Our method is based on an innovative encoding process that embeds audio signals in quantum states. For the BBC sound dataset, our framework can compress larger files than previously possible while achieving a best compression ratio than classical neural networks.
Audio compression, Quantum Theory, Quantum Machine Learning, Deep Learning, Quantum States, Q-bit.
Omar Hujran, Department of Statistics and Business Analytics, United Arab Emirates University, Al Ain City, United Arab Emirates
The rapid advancement of smart technologies has significantly bolstered the governments capabilities for digital transformation. The integration of these technologies in various government functions is expanding, showcasing dynamic capabilities that have the potential to fully unlock the transition from digital to data-driven smart government. Despite the widespread acknowledgment of the importance of smart government services, there is a notable dearth of research in this area. Additionally, the existing e-government literature lacks a comprehensive criterion for evaluating smart government, serving as a single reference to guide governments in this transformative journey. Thus, the aim of this study is to fill these gaps in the literature. Results from this study reveal that Abu Dhabi government employs emerging technologies, including artificial intelligence, cloud computing, open-access government data, mobile applications, sensors, and social networking. The significance of the current study lies in the inclusion of specific measures to assess smart government maturity.
Smart Government, E-government, Maturity Model, Digital Transformation, UAE.
Yuanshou Chang1, Yu Sun2, 1Arizona State University, 1151 S Forest Ave, Tempe, AZ 85281, 2Computer Science Department, California State Polytechnic University, Pomona, CA91768
In the burgeoning landscape of artificial intelligence, Large Language Models (LLMs) such as GPT have surgedinpopularity, embedding themselves into the fabric of daily digital interactions [1]. As these models assume a pivotal role in shaping discourse, understanding their inherent political biases becomes crucial. This paper delves intothepolitical stance of GPT, examining its consistency and the potential for modification through prompt engineering. Our investigation reveals that GPT exhibits a consistent left-libertarian stance, a finding that underscores theimportance of recognizing and addressing the ideological underpinnings of AI technologies [2]. Furthermore, weexplore the feasibility of altering GPTs political stance towards neutral and right-authoritarian positions throughstrategic prompt design. This research not only illuminates the political dimensions of LLMs but also opens avenuesfor more balanced and controlled AI interactions, of ering insights into the complex interplay between technology, ideology, and user agency.
Prompt Engineering, Artificial Intelligence, Political Bias, Large Language Models (LLMs).
Anurag Yadav1, Neeraj Yadav2, Major Singh Goraya3, 1Sant Longowal Institute of Engineering and Technology, Sangrur, India, 2Bennett University, Greater Noida, India, 3Sant Longowal Institute of Engineering and Technology, Sangrur, India
Selecting a cloud service provider (CSP) from a wide range of options with varying offerings poses a crucial challenge for service requesting consumers (SRCs). The decision criteria outlined in Service Level Agreement (SLA), which defines the Quality of Service (QoS) offered by the CSP, help in selecting a suitable provider. However, relying solely on the SLA for evaluating the merits of a CSP is insufficient. Therefore, the Quality of Experience (QoE) has gained significance in assessing the overall satisfaction of the (SRC). Additionally, monitoring consumer buying behaviour is essential from a business perspective, as all aspects of a business transaction should be mutually beneficial for both the CSP and SRC. Therefore, a new framework is proposed to determine the relative rankings of CSPs and SRCs. Effectiveness of the framework is established through experiments on the QWS cloud dataset, which reveal positive results in terms of implementation complexity and time required.
Cloud Computing, Cloud Service Selection, Quality of Experience, Quality of Service, Multi Criteria Decision making.
Muhammad R Ahmed1, 2, Woshan Srimal1, Thirein Myo1, Mohammed A aseeri3, T. Raja Rani1, Mohammed H Marhaban2, 1Military Technological College, Muscat, Oman, 2Faculty of Engineering, University Putra Malaysia, Selangor, Malaysia, 3King Abdulaziz City for Science and Technology, Riyadh, Saudi Arabia
Computer vision has been increasingly interested in image classification over the past couple of decades. A manual classification of an image can be a very difficult task and time-consuming process; however, automated image classification can provide a highly accurate result using different methods of image classification. It is very challenging to analyze images automatically by a system when compared to the manual classification with human vision. The basic idea behind classification systems is to capture images, and to process those images simultaneously for categorizing them. Basically, image classification involves classifying an image on the basis of similarities and features. If the images are noisy, blurry, have clusters in the background, or are of poor quality, the results may be inaccurate or false. Considering this, it is necessary to develop an accurate algorithm for classifying images. In this work, we have implemented Convolutional Neural Network (CNN) to classify the images. CNN is a deep learning based machine learning algorithm which mimics the human biological vision system and it can automatically detect the features without the human interaction. In future, we would like to combine with method with another algorithm.
Deep Learning, ANN, CNN, Keras, Image Classification.
Andrew Liu1, Andrew Park2, 1Crean Lutheran High School, 12500 Sand Canyon Ave, Irvine, CA 92618, 2Computer Science Department, California State Polytechnic University, Pomona, CA 91768
This research paper illuminates the growing necessity for innovative educational platforms in the biomedical field, given the burgeoning population and consequent demand for medical professionals. Proposing a novel solution, the project introduces a Virtual Reality (VR) application, designed using the Unity game engine, to foster scientific exploration within a simulated forensic laboratory environment [1]. Key components of the program include a VR Control System, accurate emulations of scientific equipment, and a cohesive puzzle design to drive user engagement and analytical thinking. Challenges such as VR controls comfort, environment scaling, and asset acquisition were navigated, enhancing the user experience. The application was subjected to user experimentation, particularly with high school students, through two distinct surveys assessing user experience and feedback for enhancements. Results indicated a notable engagement among the younger demographic with a demand for additional levels and specific improvements on equipment like the centrifuge [2]. The feedback gathered underscores the project’s potential in revolutionizing biomedical education, providing an immersive, interactive, and enjoyable learning platform. By addressing the feedback and expanding the project further, the VR application holds promise in significantly contributing to the educational domain, preparing the next generation of medical professionals in a cost-effective and engaging manner.
VR Puzzles, Forensics, Investigations, Unity.
Muhammad Garba, Muhammad Abdurrahman Usman and Anas Muhammad Gulumbe, Department of Computer Science, Faculty of Physical Sciences, Kebbi State University of Science & Technology, Aliero. Nigeria
The study focuses on predicting breast cancer survival using naïve bayes techniques and compares several machine learning models across large dataset of 310,000 patient records. The survival and non-survival classes were the two main categories. The objective of the study was to assess the effectiveness of the Naïve Bayes classifier in the data mining area and to attain noteworthy outcomes for survival classification that were consistent with the body of existing literature. Naive Bayes achieved an average accuracy of 91.08%, indicating reliable performance but with some variability across folds. Logistic Regression achieved an accuracy of 94.84%, excelling in identifying instances of class 1 but struggling with class 0. Decision Tree model, with an accuracy of 93.42%, showed similar performance trends. At 95.68% accuracy, Random Forest outperformed Decision Tree. However, all models faced challenges in classifying instances of class 0 accurately. The Naive Bayes algorithm was compared with K-Nearest Neighbors (KNN) and Support Vector Machines (SVM). Future research will enhance prediction models with new methods and address the challenge of accurately identifying instances of class 0. .
Machine Learning, Data Mininig,Naïve Bayes, Cancer, random survival forest.
Najlae Jennan and El Mehdi Mellouli, Laboratory of Engineering, Systems and Applications, Sidi Mohamed Ben, Abdellah University, Fez, Morocco