Insider threats: the major challenge to security risk management

Security risk management is by definition, a subjective and complex exercise and it takes time to perform properly. Human resources are fundamental assets for any organization, and as any other asset, they have inherent vulnerabilities that need to be handled, i.e. managed and assessed. However, the nature that characterize the human behavior and the organizational environment where they develop their work turn these task extremely difficult, hard to accomplish and prone to errors. Assuming security as a cost, organizations are usually focused on the efficiency of the security mechanisms implemented that enable them to protect against external attacks, disregarding the insider risks, which are much more difficult to assess. All these demands an interdisciplinary approach in order to combine technical solutions with psychology approaches in order to understand the organizational staff and detect any changes in their behaviors and characteristics. This paper intends to discuss some methodological challenges to evaluate the insider threats and its impacts, and integrate them in a security risk framework, that was defined according to the security standard ISO/IEC_JTC1, to support the security risk management process.

Deteção de colisões com guardas de segurança

Dissertação de mestrado integrado em Engenharia Eletrónica Industrial e Computadores

Design of a case-based reasoner for information security in military organizations

Information security is concerned with the protection of information, which can be stored, processed or transmitted within critical information systems of the organizations, against loss of confidentiality, integrity or availability. Protection measures to prevent these problems result through the implementation of controls at several dimensions: technical, administrative or physical. A vital objective for military organizations is to ensure superiority in contexts of information warfare and competitive intelligence. Therefore, the problem of information security in military organizations has been a topic of intensive work at both national and transnational levels, and extensive conceptual and standardization work is being produced. A current effort is therefore to develop automated decision support systems to assist military decision makers, at different levels in the command chain, to provide suitable control measures that can effectively deal with potential attacks and, at the same time, prevent, detect and contain vulnerabilities targeted at their information systems. The concept and processes of the Case-Based Reasoning (CBR) methodology outstandingly resembles classical military processes and doctrine, in particular the analysis of “lessons learned” and definition of “modes of action”. Therefore, the present paper addresses the modeling and design of a CBR system with two key objectives: to support an effective response in context of information security for military organizations; to allow for scenario planning and analysis for training and auditing processes.

Looking for mechanisms regulating lung growth in CDH: rat and human studies

Tese de Doutoramento em Ciências da Saúde

Can the dopaminergic-related effects of general anesthetics be linked to mechanisms involved in drug abuse and addiction?

BACKGROUND: General anesthetics (GA) are well known for the ability to induce a state of reversible loss of consciousness and unresponsiveness to painful stimuli. However, evidence from animal models and clinical studies show that GA exposure may induce behavioral changes beyond acute effects. Most research and concerns are focused on changes in cognition and memory. METHODS: We will look at effects of GA on behavior that is mediated by the dopaminergic system. RESULTS: Pharmacological resemblance of GA with drugs of abuse, and the complexity and importance of dopaminergic systems in both reward seeking and addictive illnesses make us believe that it deserves an overview about what is already known and what matters to us as healthcare workers and specifically as anesthesiologists. CONCLUSION: A review of available evidence strongly suggests that there may be a link between the effects of GA on the brain and substance abuse, partly explained by their influence on the dopaminergic system.

Contributo para a compreensão das causas de exclusão de ilicitude e da culpa no crime de acesso ilegítimo

Dissertação de mestrado em Direito e Informática

Genetic regulatory mechanisms by means of extended interactive Petri nets

In our work we have chosen to integrate formalism for knowledge representation with formalism for process representation as a way to specify and regulate the overall activity of a multi-cellular agent. The result of this approach is XP,N, another formalism, wherein a distributed system can be modeled as a collection of interrelated sub-nets sharing a common explicit control structure. Each sub-net represents a system of asynchronous concurrent threads modeled by a set of transitions. XP,N combines local state and control with interaction and hierarchy to achieve a high-level abstraction and to model the complex relationships between all the components of a distributed system. Viewed as a tool XP,N provides a carefully devised conflict resolution strategy that intentionally mimics the genetic regulatory mechanism used in an organic cell to select the next genes to process.