34 resultados para Redes de computadores - Medidas de segurança
em Universidade Federal do Rio Grande do Norte(UFRN)
Resumo:
Este trabalho apresenta um levantamento dos problemas associados à influência da observabilidade e da visualização radial no projeto de sistemas de monitoramento para redes de grande magnitude e complexidade. Além disso, se propõe a apresentar soluções para parte desses problemas. Através da utilização da Teoria de Redes Complexas, são abordadas duas questões: (i) a localização e a quantidade de nós necessários para garantir uma aquisição de dados capaz de representar o estado da rede de forma efetiva e (ii) a elaboração de um modelo de visualização das informações da rede capaz de ampliar a capacidade de inferência e de entendimento de suas propriedades. A tese estabelece limites teóricos a estas questões e apresenta um estudo sobre a complexidade do monitoramento eficaz, eficiente e escalável de redes
Resumo:
A maioria da soluções apresentadas como candidatas à implementação de serviços de distribuição de áudio e vídeo, têm sido projetadas levando-se em consideração determinadas condições de infra-estrutura, formato dos fluxos de vídeo a serem transmitidos, ou ainda os tipos de clientes que serão atendidos pelo serviço. Aplicações que utilizam serviços de distribuição de vídeo normalmente precisam lidar com grandes oscilações na demanda pelo serviço devido a entrada e saída de usuários do serviço. Com exemplo, basta observar a enorme variação nos níveis de audiência de programas de televisão. Este comportamento coloca um importante requisito para esta classe de sistemas distribuídos: a capacidade de reconfiguração como conseqüência de variações na demanda. Esta dissertação apresenta um estudo que envolveu o uso de agentes móveis para implementar os servidores de um serviço de distribuição de vídeo denominada DynaVideo. Uma das principais características deste serviço é a capacidade de ajustar sua configuração em conseqüência de variações na demanda. Como os servidores DynaVideo podem replicar-se e são implementados como código móvel, seu posicionamento pode ser otimizado para atender uma dada demanda e, como conseqüência, a configuração do serviço pode ser ajustada para minimizar o consumo de recursos necessários para distribuir vídeo para seus usuários. A principal contribuição desta dissertação foi provar a viabilidade do conceito de servidores implementados como agentes móveis Java baseados no ambiente de desenvolvimento de software Aglet.
Resumo:
A new method to perform TCP/IP fingerprinting is proposed. TCP/IP fingerprinting is the process of identify a remote machine through a TCP/IP based computer network. This method has many applications related to network security. Both intrusion and defence procedures may use this process to achieve their objectives. There are many known methods that perform this process in favorable conditions. However, nowadays there are many adversities that reduce the identification performance. This work aims the creation of a new OS fingerprinting tool that bypass these actual problems. The proposed method is based on the use of attractors reconstruction and neural networks to characterize and classify pseudo-random numbers generators
Resumo:
The traditional perimeter-based approach for computer network security (the castle and the moat model) hinders the progress of enterprise systems and promotes, both in administrators and users, the delusion that systems are protected. To deal with the new range of threats, a new data-safety oriented paradigm, called de-perimeterisation , began to be studied in the last decade. One of the requirements for the implementation of the de-perimeterised model of security is the definition of a safe and effective mechanism for federated identity. This work seeks to fill this gap by presenting the specification, modelling and implementation of a mechanism for federated identity, based on the combination of SAML and X.509 digital certificates stored in smart-cards, following the A3 standard of ICP-Brasil (Brazilian official certificate authority and PKI)
Resumo:
The increasing of the number of attacks in the computer networks has been treated with the increment of the resources that are applied directly in the active routers equip-ments of these networks. In this context, the firewalls had been consolidated as essential elements in the input and output control process of packets in a network. With the advent of intrusion detectors systems (IDS), efforts have been done in the direction to incorporate packets filtering based in standards of traditional firewalls. This integration incorporates the IDS functions (as filtering based on signatures, until then a passive element) with the already existing functions in firewall. In opposite of the efficiency due this incorporation in the blockage of signature known attacks, the filtering in the application level provokes a natural retard in the analyzed packets, and it can reduce the machine performance to filter the others packets because of machine resources demand by this level of filtering. This work presents models of treatment for this problem based in the packets re-routing for analysis by a sub-network with specific filterings. The suggestion of implementa- tion of this model aims reducing the performance problem and opening a space for the consolidation of scenes where others not conventional filtering solutions (spam blockage, P2P traffic control/blockage, etc.) can be inserted in the filtering sub-network, without inplying in overload of the main firewall in a corporative network
Resumo:
A ausência de cuidados do homem com a saúde representa um fenômeno significativo, pois contribui para o aumento da morbidade e mortalidade masculina por causas evitáveis. Essa realidade torna-se mais relevante quando se trata do policial militar, devido às peculiaridades do seu processo de trabalho. Visto isso, considera-se que os cuidados de saúde adotados por policiais militares atrelam-se ao entendimento de que possuem sobre os agravos à saúde, o qual perpassa por concepções de gênero e da profissão. Isso levou ao seguinte questionamento: Como o policial militar concebe os cuidados com a saúde. Objetivou-se analisar concepções de policiais militares sobre cuidados com a saúde. Trata-se de um estudo exploratório e descritivo, com abordagem qualitativa, desenvolvido junto a um Batalhão Militar do Comando de Policiamento de Natal, Rio Grande do Norte, Brasil. A coleta de dados foi realizada no período de junho a julho de 2013. Essa etapa foi antecedida pela anuência do Comandante Geral da Polícia Militar do Rio Grande do Norte, sob a aprovação do Comitê de Ética em Pesquisa da Universidade Federal do Rio Grande do Norte, com o CAAE nº 15449713.7.0000.5537, e autorização formal dos entrevistados mediante a assinatura do Termo de Consentimento Livre e Esclarecido (TCLE), atendendo às exigências da Resolução 466/2012, do Conselho Nacional de Saúde, no que se refere à pesquisa com seres humanos. Participaram do estudo 21 policiais militares, do sexo masculino, que trabalhavam no policiamento ostensivo, não estavam de licença médica e apresentaram condições psicológicas e/ou físicas favoráveis para responder aos questionamentos. Os dados foram coletados por meio de entrevista semiestruturada mediante um roteiro constituído de duas partes: a primeira com questões sociodemográficas com vistas à caracterização dos participantes da pesquisa e a segunda com duas questões norteadoras relativas ao objeto de estudo. Os depoimentos foram tratados conforme o método de análise de conteúdo na modalidade de análise temática segundo Bardin. Desse processo, emergiram três categorias: hábitos de vida de policiais militares, repercussão do trabalho na saúde de policiais militares e atitudes de policiais militares em frente dos problemas de saúde. A análise dos dados foi subsidiada pelo referencial teórico do Modelo de Crenças em Saúde (Health Belief Model), de acordo com as variáveis vulnerabilidade e barreiras . Para respaldar a discussão dos resultados, buscou-se na literatura conhecimentos acerca da saúde do homem e do policial militar. Os resultados apontaram que os entrevistados procuram cuidar da saúde com práticas de exercícios físicos, alimentos saudáveis e preservação do sono. No entanto, vivenciam dores de coluna, ganho de peso, dificuldades para dormir, estresse e sofrimento psicológico. Diante disso, eles buscam apoio quando acometidos por agravos à saúde e reconhecem a necessidade de medidas de segurança durante o serviço. Portanto, notam a sua condição de vulnerabilidade em decorrência de seu ofício, porém enfrentam dificuldades na adoção de práticas preventivas de agravos a saúde. Mediante os resultados, faz-se necessário que o enfermeiro atuante junto a este público elabore, implemente e acompanhe estratégias de atenção a sua saúde
Resumo:
New multimedia applications that use the Internet as a communication media are pressing for the development of new technologies, such as: MPLS (Multiprotocol Label Switching) and DiffServ. These technologies introduce new and powerful features to the Internet backbone, as the provision of QoS (Quality of Service) capabilities. However, to obtain a true end-to-end QoS, it is not enough to implement such technologies in the network core, it becomes indispensable to extend such improvements to the access networks, what is the aim of the several works presently under development. To contribute to this process, this Thesis presents the RSVP-SVC (Resource Reservation Protocol Switched Virtual Connection) that consists in an extension of RSVP-TE. The RSVP-SVC is presented herein as a mean to support a true end-to-end QoS, through the extension of MPLS scope. Thus, it is specified a Switched Virtual Connection (SVC) service to be used in the context of a MPLS User-to-Network Interface (MPLS UNI), that is able to efficiently establish and activate Label Switched Paths (LSP), starting from the access routers that satisfy the QoS requirements demanded by the applications. The RSVP-SVC was specified in Estelle, a Formal Description Technique (FDT) standardized by ISO. The edition, compilation, verification and simulation of RSVP-SVC were made by the EDT (Estelle Development Toolset) software. The benefits and most important issues to be considered when using the proposed protocol are also included
Resumo:
It s notorious the advance of computer networks in recent decades, whether in relation to transmission rates, the number of interconnected devices or the existing applications. In parallel, it s also visible this progress in various sectors of the automation, such as: industrial, commercial and residential. In one of its branches, we find the hospital networks, which can make the use of a range of services, ranging from the simple registration of patients to a surgery by a robot under the supervision of a physician. In the context of both worlds, appear the applications in Telemedicine and Telehealth, which work with the transfer in real time of high resolution images, sound, video and patient data. Then comes a problem, since the computer networks, originally developed for the transfer of less complex data, is now being used by a service that involves high transfer rates and needs requirements for quality of service (QoS) offered by the network . Thus, this work aims to do the analysis and comparison of performance of a network when subjected to this type of application, for two different situations: the first without the use of QoS policies, and the second with the application of such policies, using as scenario for testing, the Metropolitan Health Network of the Federal University of Rio Grande do Norte (UFRN)
Resumo:
Even living in the XXI century are still some difficulties in access to broadband Internet in several Brazilian cities, due to the purchasing power of people and lack of government investment. But even with these difficulties, we seek to encourage the use of wireless technology, which is based on the IEEE 802.11b protocol - also known as Wi-Fi (Wireless Fidelity) Wireless Fidelity Communications, having wide range of commercial applications in the world market, nationally and internationally. In Brazil, this technology is in full operation in major cities and has proved attractive in relation to the access point to multipoint and point-to-point. This paper is a comparative analysis of prediction field, using models based on the prediction of propagation loss. To validate the techniques used here, the Okumura-Hata models, modified Okumura-Hata, Walfisch-Ikegami model, were applied to a wireless computer network, located in the neighborhood of Cajupiranga in the city of Melbourn, in Rio Grande do Norte . They are used for networking wireless 802.11b, using the Mobile Radio to measure signal levels, beyond the heights of the antennas and distances from the transmitter. The performance data versus distance are added to the graphs generated and compared with results obtained through calculations of propagation models
Resumo:
Through numerous technological advances in recent years along with the popularization of computer devices, the company is moving towards a paradigm “always connected”. Computer networks are everywhere and the advent of IPv6 paves the way for the explosion of the Internet of Things. This concept enables the sharing of data between computing machines and objects of day-to-day. One of the areas placed under Internet of Things are the Vehicular Networks. However, the information generated individually for a vehicle has no large amount and does not contribute to an improvement in transit, once information has been isolated. This proposal presents the Infostructure, a system that has to facilitate the efforts and reduce costs for development of applications context-aware to high-level semantic for the scenario of Internet of Things, which allows you to manage, store and combine the data in order to generate broader context. To this end we present a reference architecture, which aims to show the major components of the Infostructure. Soon after a prototype is presented which is used to validate our work reaches the level of contextualization desired high level semantic as well as a performance evaluation, which aims to evaluate the behavior of the subsystem responsible for managing contextual information on a large amount of data. After statistical analysis is performed with the results obtained in the evaluation. Finally, the conclusions of the work and some problems such as no assurance as to the integrity of the sensory data coming Infostructure, and future work that takes into account the implementation of other modules so that we can conduct tests in real environments are presented.
Resumo:
Objective: Evaluate the work structure and process in Psychos ocial Care Centers (CAPS) and the professionals profile, the satisfaction, conditions and work overload. Methods: Cross - sectional study conducted in five CAPS in Campina Grande city. The study sample consisted of five coordinators, 42 graduate professional s, 26 mid - level (technical and auxiliary nurses, and caregivers), and the medical records pertaining to 413 users followed up. Data were collected using validated questionnaires (CAPSUL - rating CAPS in southern Brazil) and adapted to the study, between July and October 2014. The questionnaires were double entered and submitted to validation in the sub - program “Validate Epi Info 3.5.4” , used along with the “SPSS 17.0” for processing the statistical analyzes. Measures of central tendency and dispersion were ap plied to the descriptive analyzes; “Fisher's” exact test to check the CAPS impact on hospital admissions and the “Bonferroni” adjusted to verify the diagnoses according to sex. 5% significance level was adopted. The study was approved by the Ethics Committ ee of the Rio Grande do Norte Federal University (UFRN), protocol 719.435, of 05.30.2014. Results: From the structure analysis were identified contextual factors that influenced the work process of CAPS professionals, such as: deficiencies with regard to h uman resources; forms of health professionals employment and qualifications; temporary contract existence. As to process dimension, it was found that the home visits performance by health professionals shows to be ineffective, given its insufficiency and i rregularity, which can be explained by the high demand, reduced staff and transportation lack. It was low coverage of items inherent to Therapeutic Individual Project, as the income generation program, insertion at work and home visit. The reference and co unter reference flow are still not satisfactorily organized. There was statistically significant difference for the diagnosis, with a predominance of mood disorders related to stress among women and those related to alcohol and other drugs among men (p <0. 05). There was an association between the degree of health professionals satisfaction and working conditions, overload and factors related to the content and working conditions, the security measures, comfort and CAPS appearance, contact between the teams and users, families treatment by the teams, temporary employment relationship. Conclusion: The data collected indicate the need for the CAPS organization through increased investments in the sector in order to enhance the infrastructure as potentiating el ement of practices with a view to changing the care model for mental health proposed by the Psychiatric Reform. It is hoped therefore that this research will contribute to better planning in CAPS unit management, with another tool to improve the dimensions involving the structure and the professional work process and improve this mental health care model.
Resumo:
T'his dissertation proposes alternative models to allow the interconnectioin of the data communication networks of COSERN Companhia Energética do Rio Grande do Norte. These networks comprise the oorporative data network, based on TCP/IP architecture, and the automation system linking remote electric energy distribution substations to the main Operatin Centre, based on digital radio links and using the IEC 60870-5-101 protoco1s. The envisaged interconnection aims to provide automation data originated from substations with a contingent route to the Operation Center, in moments of failure or maintenance of the digital radio links. Among the presented models, the one chosen for development consists of a computational prototype based on a standard personal computer, working under LINUX operational system and running na application, developesd in C language, wich functions as a Gateway between the protocols of the TCP/IP stack and the IEC 60870-5-101 suite. So, it is described this model analysis, implementation and tests of functionality and performance. During the test phase it was basically verified the delay introduced by the TCP/IP network when transporting automation data, in order to guarantee that it was cionsistent with the time periods present on the automation network. Besides , additional modules are suggested to the prototype, in order to handle other issues such as security and prioriz\ation of the automation system data, whenever they are travesing the TCP/IP network. Finally, a study hás been done aiming to integrate, in more complete way, the two considered networks. It uses IP platform as a solution of convergence to the communication subsystem of na unified network, as the most recente market tendencies for supervisory and other automation systems indicate
Resumo:
The Ethernet technology dominates the market of computer local networks. However, it was not been established as technology for industrial automation set, where the requirements demand determinism and real-time performance. Many solutions have been proposed to solve the problem of non-determinism, which are based mainly on TDMA (Time Division Multiple Access), Token Passing and Master-Slave. This work of research carries through measured of performance that allows to compare the behavior of the Ethernet nets when submitted with the transmissions of data on protocols UDP and RAW Ethernet, as well as, on three different types of Ethernet technologies. The objective is to identify to the alternative amongst the protocols and analyzed Ethernet technologies that offer to a more satisfactory support the nets of the industrial automation and distributed real-time application
Resumo:
João Pessoa, the capital city of the state of Paraíba (Northeast Brazil), is reputed throughout the country as a quiet place, although it has been acquiring, over the past years, an urban character with social implications similar to those of major metropolitan Brazilian areas. The new situation is evident by the social inequalities, with the creation of confined spaces, which segregate and cause enclosure of the inhabitants, leading to death the public space. This study correlates accessibility in spatial structure with two types of crime data, burglary and robbery, recorded in 2008 and 2009, by the Secretaria de Segurança da Paraíba (The government agency public in charge of safety), in the district of Manaíra, an upper middle class neighborhood, which has, in recent times, been considered one of the most violent areas in João Pessoa. Sought to understand connections between these events and morpho-social aspects of the built environment, where examined the spatial properties, such as accessibility of the urban net, the presence of control measures, the safety of buildings and their uses. Spatial properties were also validated by the observation of pedestrian flows at strategic points of the study area. It was concluded that the presence of intense flows helps to attract potential thieves, physical security and control offers little protection
Resumo:
Conselho Nacional de Desenvolvimento Científico e Tecnológico
