Title: Securing computerised models and data against integrity attacks

Authors: Sanjay Bapna, Sandip C. Patel

Addresses: Information Science and Systems Department, Morgan State University, 1700 E. Cold Spring Lane, Baltimore, MD 21251, USA. ' Information Science and Systems Department, Morgan State University, 1700 E. Cold Spring Lane, Baltimore, MD 21251, USA

Abstract: Many computerised systems use electronic models that get triggered when certain business conditions arise. Unauthorised triggering of such computerised models has been overlooked in the security literature. In this paper, we propose two frameworks to analyse the security of systems that have the data-triggering computerised model architecture. The frameworks help understand how to mitigate the cyber attacks that can be launched against the data-model systems, by modifying the computerised models or the data. We then propose a Deterministic Specification distributed intrusion Detection System (DSdIDS) to secure the data-triggering model systems from internal as well as external cyber threats.

Keywords: computerised models; cyber security; finance models; electronic security; e-security; cyber crimes; unauthorised access; data triggering; data models; deterministic specifications; distributed intrusion; detection systems; DSdIDS; internal threats; external threats; integrity attacks; electronic finance; e-finance.

DOI: 10.1504/IJEF.2010.035729

International Journal of Electronic Finance, 2010 Vol.4 No.4, pp.343 - 354

Published online: 03 Oct 2010 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article