Paresh Rathod

Decentralized Fully Redundant Cyber Secure Governmental Communications Concept

This paper focuses on future requirements of broadband data transmission of public protection and disaster relief, critical infrastructure protection and military, and presents the concept of redundant and secure data communication network system in the multi-organizational environment. We are proposing a fully decentralized architecture with optimized critical communication channels. Here, network actors and elements identify and authenticate by establishing physical connection. This concept also recommends, group level user-authorization mechanism for each participating organization. Their respective users of command and control centers are identified, authorized and authenticated to various data sources. The decentralized architecture concept is using the Distributed Systems intercommunication Protocol (DSiP). The concept is highly fault-tolerant in routine as well as crises operations. The software-based approach is independent of heterogeneous data communication technologies, IP networks and telecommunication operator services. The solution enables to build an effective and lasting cyber secure data network for multi organizational environment. Being a fully decentralized concept, networks of individual member organizations are virtually autonomous and hard to upset each other. That allows smooth message and information exchange to enable interoperability.

Service Standardization with Utility Computing and Service Oriented Architecture as a Tool for Public Protection and Disaster Relief

Information and Communication Technology (ICT) service of the Public Protection and Disaster Relief (PPDR) are currently delivered in heterogeneous and tailor made methods. Majority of PPDR actors prefers their own technology, contract and process implementation. Utility, cloud and service-oriented computing are cutting-edge technologies that standardize ICT services and solutions. This paper studies ICT services and argues technologies, contracts and processes should be standardized in PPDR. This research also explores leveraging benefits and challenges of cloud base utility and service-oriented computing.

A Novel Model for Cybersecurity Economics and Analysis

In recent times, major cybersecurity breaches and cyber fraud had huge negative impact on victim organisations. The biggest impact made on major areas of business activities. Majority of organisations facing cybersecurity adversity and advanced threats suffers from huge financial and reputation loss. The current security technologies, policies and processes are providing necessary capabilities and cybersecurity mechanism to solve cyber threats and risks. However, current solutions are not providing required mechanism for decision making on impact of cybersecurity breaches and fraud. In this paper, we are reporting initial findings and proposing conceptual solution. The paper is aiming to provide a novel model for Cybersecurity Economics and Analysis (CEA). We will contribute to increasing harmonization of European cybersecurity initiatives and reducing fragmented practices of cybersecurity solutions and also helping to reach EU Digital Single Market goal. By introducing Cybersecurity Readiness Level Metrics the project will measure and increase effectiveness of cybersecurity programs, while the cost-benefit framework will help to increase the economic and financial viability, effectiveness and value generation of cybersecurity solutions for organisations strategic, tactical and operational imperative. The ambition of the research development and innovation (RDI) is to increase and re-establish the trust of the European citizens in European digital environments through practical solutions.

Cybersecurity Safeguards for the Automotive Emergency Response Vehicles.

A modern Emergency Response Vehicle (ERV) is a combination of emergency services and functional mobile office on the wheels. Researchers have observed that emergency response personnel including Law Enforcement Authorities (LEAs), Police and border guards, could be on the duty while having possibility to use same services compared to fixed office. During our research study, users have registered special demand for mobile office. To meet this demand, designers and engineers have combined a modern vehicle platform with computers, monitors, wireless connectivity and many other devices needed in everyday activities. However, there is continue challenge, the standards are not covering information and cyber security properly. This research paper fulfils that gap by applying the Finnish National Security Auditing Criteria version 2 (KATAKRI II) on eight asset classes that have recognised in Mobile Object Bus Integration (MOBI) project. The outcome is a pragmatic solution that provides large set of safeguards for guaranteeing ERV information

Enhancing the Development of Interaction Between Authorities in Maritime Surveillance

Research study clearly indicates, there is a need for cooperation and information sharing between authorities and other Maritime related actors in security and safety issues on the European level. This study deals with European Common Information Sharing Environment (CISE) for the maritime domain. The purpose of this study was to enhance the development of authorities’ interaction in maritime surveillance. The European testbed for the maritime Common Information Sharing Environment in the 2020 perspective (EUCISE 2020) and Finnish National Common Information Sharing Environment for Maritime Surveillance (FiNCISE) are also surveyed within this study. The research was conducted as a qualitative study and the research method is principally descriptive. The material of this paper consists mainly of the documents of the FiNCISE and EUCISE2020 projects, unclassified material of the Border Guard, and attending to and observing project meetings. In this research, it was found out, that during the FIMAC cooperation, maritime activities have been developed. As a result, organizations have become streamlined by combining overlapping systems and, thus, each operator is able to focus on its own core competence. Significant economic benefits have been achieved in technical surveillance and communication systems’ constructing and maintenance of maritime traffic.

Automatic acceptance testing of the web application security with ITU-T X.805 framework

Web application development companies should ensure the high quality of their products. This can be achieved through high quality of the software development lifecycle. Web applications are mostly running on the Internet and are being exposed to many security threats and malicious operations. The mission of EUCISE2020 project (EUropean test bed for the maritime Common Information Sharing Environment in the 2020 perspective) is to enhance interoperability between systems and networks. The interconnections must be established in a decentralized way using cutting-edge technologies. Hence, it requires innovative and practical solutions from the web development companies. The research problem is being addressed with the Stanford Research Institute NABC (Needs, Approach, Benefits and Competition) method. Our approach is to conceptualize a testing scenario for the web application development process. The concept utilizes the International Telecommunication Union recommended standard security framework (ITU-T X.805) in the context of test automation for end-to-end communications. This study presents a new holistic solution in feature driven fashion. As a result, we propose that building acceptance test scenarios using ITU-T X.805 guidelines in Software Development Lifecycle is a sustainable approach.

A New Redundant Tracking System for Emergency Response

Geographic information systems (GIS) and global navigation satellite systems (GNSS) have transformed emergencies and disasters response across the world. These technologies are enabling emergency management agencies to carry out their duty efficiently. However, current GNSS-based tracking systems have serious technical flaws and vulnerabilities. This paper presents a modular system-level description for a hybrid tracking system. The paper further discusses and suggests how the technical vulnerabilities of GNSS-based tracking systems can be resolve.