Search Results

Documents authored by Almeida, João Rafael

Document
DOI: 10.4230/OASIcs.SLATE.2024.13
Infrastructural Challenges and Good Practices in a Security Operation Center

Authors: Dimitri Alexandre da Silva, José Luís Costa, and João Rafael Almeida

Published in: OASIcs, Volume 120, 13th Symposium on Languages, Applications and Technologies (SLATE 2024)

Abstract
Organizations are facing some challenges in cybersecurity, due to the increasing of cyber threats, vulnerabilities, insufficient cybersecurity frameworks, and scarcity of proficient cybersecurity experts. The criticality of mitigating these challenges is underscored by the European Union’s Network and Information Systems (NIS) Directive. This directive is instrumental in fostering a uniformly high level of cybersecurity throughout the EU, mandating that Member States implement robust national cybersecurity strategies and collaborate effectively in responding to cyber incidents. A possible solution is the implementation of a Security Operations Center (SOC). However, SOCs are not a one-size-fits-all solution and each organization has specific needs depending on their business domain. This task can be complex, and it can be simplified when organizations can identify in the initial stages the infrastructural challenges that may emerge when implementing a SOC. In this paper, we analyzed the main considerations that should be considered when using current frameworks reviewed in the literature. We identified the core operating models that are currently in use and being deployed, and which are the best practices when designing a SOC’s infrastructure.
Cite as

Dimitri Alexandre da Silva, José Luís Costa, and João Rafael Almeida. Infrastructural Challenges and Good Practices in a Security Operation Center. In 13th Symposium on Languages, Applications and Technologies (SLATE 2024). Open Access Series in Informatics (OASIcs), Volume 120, pp. 13:1-13:12, Schloss Dagstuhl – Leibniz-Zentrum für Informatik (2024)

Copy BibTex To Clipboard

@InProceedings{dasilva_et_al:OASIcs.SLATE.2024.13,
  author =	{da Silva, Dimitri Alexandre and Costa, Jos\'{e} Lu{\'\i}s and Almeida, Jo\~{a}o Rafael},
  title =	{{Infrastructural Challenges and Good Practices in a Security Operation Center}},
  booktitle =	{13th Symposium on Languages, Applications and Technologies (SLATE 2024)},
  pages =	{13:1--13:12},
  series =	{Open Access Series in Informatics (OASIcs)},
  ISBN =	{978-3-95977-321-8},
  ISSN =	{2190-6807},
  year =	{2024},
  volume =	{120},
  editor =	{Rodrigues, M\'{a}rio and Leal, Jos\'{e} Paulo and Portela, Filipe},
  publisher =	{Schloss Dagstuhl -- Leibniz-Zentrum f{\"u}r Informatik},
  address =	{Dagstuhl, Germany},
  URL =		{https://drops.dagstuhl.de/entities/document/10.4230/OASIcs.SLATE.2024.13},
  URN =		{urn:nbn:de:0030-drops-220848},
  doi =		{10.4230/OASIcs.SLATE.2024.13},
  annote =	{Keywords: Eduroam, Wi-Fi, Credential stealing, Attack, Network, Security}
}
Document
DOI: 10.4230/OASIcs.SLATE.2024.14
A Study of Security Issues of Eduroam Networks in Portugal

Authors: Luís Miguel Batista, Hélder Gomes, and João Rafael Almeida

Published in: OASIcs, Volume 120, 13th Symposium on Languages, Applications and Technologies (SLATE 2024)

Abstract
Enterprise Wi-Fi networks provide seamless connectivity for businesses and public entities. In educational settings, these networks are essential for delivering services to students. Eduroam is one of the most widely recognized university Wi-Fi enterprise networks. It uses 802.1x protocols and TLS tunnels to establish mutual authentication. Eduroam caters to a diverse population of students and faculty worldwide, managing a vast number of unregulated devices, some of which, require manual configuration to operate in a secure setting. This study aims to evaluate the security robustness of the 802.1x protocol, particularly within the Eduroam framework. A comprehensive study was conducted to examine compliance with institutional instructions for network configuration guidance. The results from 91 Portuguese institutions using Eduroam revealed that many lacked knowledge of Wi-Fi security. This lack of awareness is then passed on to users, resulting in vulnerable connections.
Cite as

Luís Miguel Batista, Hélder Gomes, and João Rafael Almeida. A Study of Security Issues of Eduroam Networks in Portugal. In 13th Symposium on Languages, Applications and Technologies (SLATE 2024). Open Access Series in Informatics (OASIcs), Volume 120, pp. 14:1-14:14, Schloss Dagstuhl – Leibniz-Zentrum für Informatik (2024)

Copy BibTex To Clipboard

@InProceedings{batista_et_al:OASIcs.SLATE.2024.14,
  author =	{Batista, Lu{\'\i}s Miguel and Gomes, H\'{e}lder and Almeida, Jo\~{a}o Rafael},
  title =	{{A Study of Security Issues of Eduroam Networks in Portugal}},
  booktitle =	{13th Symposium on Languages, Applications and Technologies (SLATE 2024)},
  pages =	{14:1--14:14},
  series =	{Open Access Series in Informatics (OASIcs)},
  ISBN =	{978-3-95977-321-8},
  ISSN =	{2190-6807},
  year =	{2024},
  volume =	{120},
  editor =	{Rodrigues, M\'{a}rio and Leal, Jos\'{e} Paulo and Portela, Filipe},
  publisher =	{Schloss Dagstuhl -- Leibniz-Zentrum f{\"u}r Informatik},
  address =	{Dagstuhl, Germany},
  URL =		{https://drops.dagstuhl.de/entities/document/10.4230/OASIcs.SLATE.2024.14},
  URN =		{urn:nbn:de:0030-drops-220855},
  doi =		{10.4230/OASIcs.SLATE.2024.14},
  annote =	{Keywords: Eduroam, Wi-Fi, Credential stealing, Attack, Network, Security}
}
Questions / Remarks / Feedback
X

Feedback for Dagstuhl Publishing


Thanks for your feedback!

Feedback submitted

Could not send message

Please try again later or send an E-mail
© 2023-2024 Schloss Dagstuhl – LZI GmbH About DROPS Imprint Privacy Contact