Awais Abdul Khaliq scite author profile

Awais Abdul Khaliq

2Publications

9Citation Statements Received

55Citation Statements Given

How they've been cited

How they cite others

Affiliations

COMSATS University Islamabad

Publications

Order By: Most citations

Last Line of Defense: Reliability Through Inducing Cyber Threat Hunting With Deception in SCADA Networks

et al. 2021

View full text Add to dashboard Cite

There exists a gap between existing security mechanisms and their ability to detect advancing threats. Antivirus and EDR (End Point Detection and Response) aim to detect and prevent threats; such security mechanisms are reactive. This approach did not prove to be effective in protecting against stealthy attacks. SCADA (Supervisory Control and Data Acquisition) security is crucial for any country. However, SCADA is always an easy target for adversaries due to a lack of security for heterogeneous devices. An attack on SCADA is mainly considered a national-level threat. Recent research on SCADA security has not considered "unknown threats," which has left a gap in security. The proactive approach, such as threat hunting, is the need of the hour. In this research, we investigated that threat hunting in conjunction with cyber deception and kill chain has countervailing effects on detecting SCADA threats and mitigating them. We have used the concept of "decoy farm" in the SCADA network, where all attacks are engaged. Moreover, we present a novel threat detection and prevention approach for SCADA, focusing on unknown threats. To test the effectiveness of approach, we emulated several Linux and Windows-based attacks on a simulated SCADA network. We have concluded that our approach detects and prevents the attacker before using the current reactive approach and security mechanism for SCADA with enhanced protection for heterogeneous devices. The results and experiments show that the proposed threat hunting approach has significantly improved the threat detection ability.

show abstract

A Secure and Privacy Preserved Parking Recommender System Using Elliptic Curve Cryptography and Local Differential Privacy

et al. 2022

View full text Add to dashboard Cite

The privacy preservation has received considerable attention from organizations as the growing population is apprehensive regarding personal data being preserved. Smart Parking is a parking strategy that combines technology and human innovation in an effort to use as few resources as possible(such as time and space) to achieve faster and easier parking spots of vehicles. Smart parking systems utilize third-party parking recommender systems to offer customized parking space recommendations to its users based on their past parking experience. However, indiscriminately sharing a user's data with a third party recommendation system may expose their personal information. As their activity and node mobility can be deduced from previous paring experience. There are several privacy and security issues in existing systems, such as identity and location disclosure, availability and authenticity issues. Another problem with existing solutions is that most distributed systems need a third party to anonymize user data for privacy preservation. Therefore, this article fills the described research gaps by introducing parking recomender systems using Local Differential Privacy (LDP) and Elliptic Curve Cryptography (ECC). Based on ECC we proposed the mutual authentication mechanism using Hash-based message authentication code (HMAC) to provide anonymity and integrity during communication. Moreover, given the risks to security and privacy posed by untrustworthy third parties. We used LDP which uses the Laplace distribution technique to add noise randomly and eliminates any necessity for a third party for data perturbation. In addition to LDP , we utilized the IOTA distributed ledger technology (DLT) to provide a new level of security that ensures immutability, scalability, and quantum secrecy and decentralized the system. Our experiments demonstrate that, in addition to preserving the driver's privacy and security, our proposed model has low storage overheads, computation, and communication costs.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.