Research throws up vulnerability in alarms

RESEARCHERS have been able to exploit vulnerabilities in a number of car alarm systems enabling them to unlock doors and start the engine.

Dr Budi Arief, from the School of Computing at the University of Kent is an expert on cyber security with a focus on cybercrime, security of computer-based systems, the Internet of Things, and ransomware and was interviewed by Business Motoring.

He said: “As technology progresses and devices are becoming more interconnected through the concept of Internet of Things (IoT), there is a growing risk that any additional feature may introduce security vulnerabilities to the overall system.
“This is a case aptly demonstrated by a recent report of security vulnerabilities in three specialist car alarm systems that would have allowed attackers to steal or hijack affected vehicles.

“It is not surprising that third-party car alarm systems that allow their users to control the alarm – or even the car – remotely may contain security vulnerabilities. These third-party systems have likely gone through a less rigorous process of security evaluation compared to those systems developed directly by the official car manufacturer.”

“Nevertheless, there is no guarantee that the latter would be 100% secure, as it is pretty much impossible to prove the absence of flaws.
“What is ironic here is that whoever bought these vulnerable car alarm systems did so out of a desire to improve the security of their vehicle. But inadvertently, they introduced security vulnerabilities that would allow attackers to take control of their vehicle.
“In a sense, it would have been better if these car owners did not bother to add a third-party system that may or may not have been approved by the car manufacturer.
“All of these demonstrate the need to carry out a more thorough test on any computer systems (especially those that allow remote connections), instead of rushing them to customers in order to capture a niche market before any competitors did so.
“This is not a unique incident, there are many similar cases of IoT devices such as cameras, home security kits, and even smart locks that have been shown to be vulnerable to attacks. Unfortunately, the IoT market is akin to a gold rush for new features rather than security, and this is a challenge that needs to be addressed urgently.”

Posted in research, security | Leave a comment

Future bank cards might “combine fingerprint scanning with fascial recognition”

Royal Bank of Scotland will launch on a pilot basis a biometric card that will allow customers to verify their purchases with their fingerprint.

Head of Data Science Research Group at the University of Kent, Dr Palaniappan Ramaswamy, was interviewed by Sputnik News and  explained how these new cards work.

How do biometric bank cards work?

Dr Palaniappan Ramaswamy said ” This technology is not new. It’s very similar to the fingerprint scanner that’s on the phone [used] to unlock it. So, how these technologies actually work on the card is that there is a scanner on the card, and the user places the finger on it. The scanned card is then matched to the stored fingerprint to authenticate the user.”

With the introduction of contactless payment and the testing of biometric bank cards, are people most likely to drop pin codes altogether?

Dr Palaniappan Ramaswamy said ” It is very likely that we will drop PIN codes, obviously, it’s quite a difficult [issue]. I mean, we forget the PIN code, and [there’s] also the problem of shoulder surfing — someone at the back, for example, who could actually look after our PIN, [making] it possible to be stolen. So it’s very likely that we will drop the PIN. And of course, fingerprint [recognition] offers a lot of convenience in that sense, because we have our finger [with us] all the time. Although there is the issue of possible fraud: research has shown that it’s quite easy to lift fingerprints from surfaces, for example, a glass that we touch, and print it out using high-quality printers; and we can use this to get through the system.”

RBS is currently collaborating with digital security company Gemalto. The UK managing director the firm, Howard Berg, told the BBC that using a fingerprint rather than a PIN code when authorising transactions has plenty of advantages, including speed, convenience and enhanced security. But will our transactions as well as biometric data be really safer than they are now.

Dr Palaniappan Ramaswamy said “The fingerprints are not actually stored in the bank’s database, they’re actually stored on the card. And although there is more security in using fingerprint [recognition] rather than, for example, PIN codes — for the reason that I’ve just said —, it’s quite easy for an imposter to use the system. So I think that in the future there will be more than one modality, more than one scanner that will be used to authenticate someone. For example, it could be fingerprints combined with facial recognition. There are also talks about using more advanced methods, such as heart rhythm and brain patterns.”

 

Posted in News, opinion, research | Leave a comment

Computing students reach final of start-up competition

Three students from the School of Computing have gone through to the final of the Business Start-up Journey (BSUJ) and will pitch their ideas at the Business Start-Up Journey showcase on Wednesday 20 March 2019.

The BSUJ is an inspirational programme which brings student business start-up ideas to life. Students attend talks and workshops on all aspects of business including financial, legal and marketing, as well as mentoring sessions, to help take their business ideas further.

Tomiwa Sosanya, a second year BSc Computer Science with a year in Industry student, customizes trainers on his website ‘Do You Customs’ and hopes to build a platform bringing together artists/makers who customize products.

Aishat Alonge, a final year BSc Computer Science student, is pitching with a Kent Business School student on an idea to build a platform connecting beauty businesses to new customers.

Fern Hennell, a final year BSc Business Information Technology student will pitch her candles based on famous books business.

Tomiwa said ‘The BSUJ has helped me change my hobby into an actual business. Instead of thinking about when the next customer is coming, I am thinking about how to attract more customers and how to provide a better service.’

We wish all the students good luck for the final pitch at the Business Start-up Journey showcase.

Posted in News | Tagged , , , | Leave a comment

Students celebrate at Computing Showcase

Final year students from the School of Computing celebrated their final year projects at the School of Computing Showcase on Friday 15 March with several prizes sponsored by local companies and partners.

The Innovation prize, sponsored by Kent Innovation and Enterprise and awarded to support early stage entrepreneurship, was won by Maaz Mehmood, Praag Dogra, Jack Madden, Stelianos Martis and Dylan Osei-Bonsu for their project ‘Leap Motion’, which interprets sign language for those hard of hearing or unable to communicate and who do not understand sign language.

The Best User Experience prize, sponsored by Holiday Extras and awarded to the student who demonstrated an understanding of their end user through an excellent user experience, was awarded to Elina Voitane, Karlis Jaunslavietis, Priyesh Patel and Afzaal Ahmad Razeen for ‘Echobook’, an Echo Parakeet tracking system to help The Mauritian Wildlife Foundation to manage and monitor the Echo Parakeet population.

The Most Innovative use of Modern Technology prize, sponsored by Holiday Extras and awarded to the student who implemented modern web/programming languages and frameworks to create their product, was awarded to Christian Dalby for his project ‘Weighter’. Weighter is an Android App focusing on exploring the potential benefits artificial intelligence can have on an individual’s fitness by providing users with a convenient and familiar approach to personal training, without the possible intimidation of a human trainer.

The prize for the Most Original/Unique project, sponsored by SardJV, was awarded to Aaron Argent, Tom Kawalczyk, Jack Smith, Jamie Swanborough and Molly Walmsley for the Turing Machine Simulator. The aim of this project was to develop and improve an already existing Turing Machine Simulator web application by redesigning and utilising extra space for the simulator, creating a friendlier user interface and adding error messages to create a more accessible and friendly learning environment.

The Best Poster prize, sponsored by the School of Computing and voted for by the visitors to the Computing Showcase, was awarded to Joanna Zhang and Damon Sweeney for Coop Control. Coop Control is a platform that accommodates a modular network of devices and sensors that monitor and automate tasks for chicken keepers, from door control to informing the user when the water level in the drinker has fallen below a given threshold.

Congratulations to the prize-winners and to all the final year students for their amazing range of projects.

Posted in News | Tagged , , , | Leave a comment

Join Us – 2 new Lectureships

The School of Computing is seeking to appoint 2 new Lecturers (Assistant Professors) in Cyber Security to support the growth plan of the Kent Interdisciplinary Research Centre in Cyber Security (KirCCS).

Applications are invited from candidates in any research area that can complement or enhance the existing research strengths of the KirCCS and the Cyber Security research group at the School of Computing, especially in the socio-technical security theme. Successful candidates will be made members of both KirCCS and the Institute of Advanced Studies in Cyber Security and Conflict (SoCyETAL). SoCyETAL will have a dedicated physical space allowing researchers from different schools and disciplines to work together, and there will be dedicated PhD studentships for members of SoCyETAL.

We are particularly interested in candidates who have worked with researchers in social science disciplines including but not limited to Psychology, Law, Sociology, Business, and Economics. Candidates with research experience in Artificial Intelligence are welcome, especially if that research goes beyond pure technical issues into topics such as human behaviour, ethics, law, transparency, trust, fairness, and policy.

For more details about the vacancies and to apply for the posts, please visit the following web page: https://jobs.kent.ac.uk/STM1002.

For informal queries, please contact the KirCCS Centre Director and the SoCyETAL Co-Director Prof Shujun Li and the Head of School of Computing Prof Richard Jones.

Posted in News, research | Tagged , , , , | Leave a comment

David Chadwick takes part in I’m a Scientist get me out of here

Professor David Chadwick is taking part in I’m a Scientist, get me out of here! from 4-15 March, as part of British Science Week.

I’m a Scientist is an online activity for school students to connect with scientists. It is an X Factor-style competition between scientists, where students are the judges. Students challenge the scientists over fast-paced online text-based live chats. They can ask anything they want, and vote for their favourite scientist to win a prize of £500 to communicate their work with the public.

The event started on 4 March when students started asking questions of the Scientists. Thursday 7 March saw the first live chat, with students encouraged to log in with family and friends and ask questions. Tuesday 12 March is the start of the evictions when the scientists with the least votes will be evicted from the competition. The final live chat is on Friday 15 March and at 3pm the voting closes and the winners of I’m a Scientist, Get me out of here are announced.

David said ‘Some of the initial questions the students asked were very penetrating, and you had to think long and hard before answering. But this was fine as you had plenty of time. However, when the live chat started you had no time to think as the questions were coming thick and fast, in fact, faster than you could touch type your answers. So it was quite a challenge to give the students a meaningful answer that would both engage and enthral them, whilst simultaneously not make you look like an idiot who should be thrown out straight away!”

You can review David’s profile and see the questions and his answers at https://relationshipsm19.imascientist.org.uk/profile/davidchadwick/

Posted in News | Tagged , , , | Leave a comment

Summer school opportunity for computing students

Students from the School of Computing can apply for free places on immersive summer schools in France. The three-week courses, which are taught in English, each explore a different theme in depth.

The topics available this year are:

  • AI and Robotics
  • Blockchain
  • Internet of Things (IoT)
  • Video Games

The summer schools take place at Epitech, a university-level institution that specialises in computing. They have 12 campuses across France. At the summer school everyone starts with a 1-week intensive course in C and Python programming. The remaining two weeks involve a project in the chosen theme. There are also cultural activities such as sightseeing trips.

There are two free summer school places for Kent students. They are suitable for first and second-year undergraduates in the School of Computing (Canterbury or Medway). Students need to apply by 15 April 2019.

Further details and how to apply available at: https://www.cs.kent.ac.uk/people/staff/pgk/episum.html

Posted in international, News | Tagged , , , | Leave a comment

KirCCS researchers win two major awards at the Network and Distributed System Security Symposium 2019

Kent Interdisciplinary Research Centre in Cyber Security (KirCCS) are pleased to announce that two of their  members, Dr Jason Nurse and Dr Orcun Cetin, have won  major awards at the Network and Distributed System Security Symposium 2019 (NDSS) which took place in San Diego last February.

NDSS, one of the “Big 4” conferences in the cyber security field,  fosters information exchange among researchers and practitioners of network and distributed system security. The major goal is to encourage and enable the internet community to apply, deploy and advance the state of available security technologies.

Dr Jason Nurse, Core member of the Centre and  lecturer at the School of Computing, and his co-authors won the Distinguished Poster Presentation Award for their work “Cybercrime investigators are users too! Understanding the socio-technical challenges faced by law enforcement”.

His poster can be seen here: www.ndss-symposium.org/wp-content/uploads/2019/02/ndss2019posters_paper_23.pdf

Jason said, “It was a great to see our research on Cybercrime Investigations win this Network and Distributed System Security Symposium (NDSS) award. Cybercrime investigators – both in law enforcement and in private industry – face numerous challenges when policing and responding to online crimes. Our work is one of the first trying to identify these broad issues and propose recommendations for addressing them. The socio-technical nature of our research is quite novel, and we have also published the full paper of this research in the Workshop on Usable Security and Privacy (USEC) 2019. We hope our findings can be useful to guide researchers in better supporting law enforcement, and for law enforcement in understanding the breath of challenges faced.”

Dr Orcun Cetin, Research Associate working at the Centre and School of Computing, and his co-authors won the Distinguished Paper Award for their work “Cleaning up the internet of evil things: real-world evidence on ISP and consumer efforts to remove mirai”

Orcun, who attended the conference, said “This is an incredible honour. Very glad to see that interdisciplinary studies are getting recognition in NDSS community. This award shows the importance of Kent Interdisciplinary Research Centre in Cyber Security (KirCCS)”.

His paper can be seen here: www.ndss-symposium.org/ndss-paper/cleaning-up-the-internet-of-evil-things-real-world-evidence-on-isp-and-consumer-efforts-to-remove-mirai/

Congratulations to them on such great achievements.

Posted in awards, international, News, research, security | Leave a comment

School of Computing ‘Women in Computing’ lunch

On Tuesday 26 February, Jacqui Chetty, Student Success Manager at The School of Computing, hosted a “Women in Computing” lunch bringing 24 of its female students together.

This event encouraged our female students to get-together over lunch, get to know each other a little more and share their experiences about being a women at the University of Kent and School of Computing.

Following the buffet lunch, the students were invited to take part in some activities and express their “likes” and their “wishes” as a female student in the school. The “wish” list outweighed the “like” list generating some interesting food for thought for Jacqui to consider moving forward.

Jacqui said “We held a women’s event and there was a great turnout. Female students were given an opportunity express how they felt about being a minority group within the school of computing. Although female students within the department perform well academically, listening to their “I wish” list I recognised that we could be providing them with more support. We look forward to implementing some of these.”

Professor Ursula Martin, from the University of Oxford, joined in to share her own experience prior to giving her presentation to the whole school about “The Scientific life of Ada Lovelace” and why computer scientists should care about history. Ada, Countess of Lovelace is best known for a remarkable article about Babbage’s unbuilt computer, the Analytical Engine. The comprehensive archive of Lovelace’s papers is preserved in Oxford’s Bodleian Library and displays Lovelace’s wide scientific interests in everything from geology, to acoustics to chemistry.

Professor Martin started the talk by exploring Lovelace, her background, her scientific ideas and her contemporary legacy and reflecting more broadly on the role of history for computing in present day thinking about the discipline.

A great day enjoyed by all!

Posted in News, women in computing | Leave a comment

New Phd Scholarships available in the School of Computing

The School of Computing is delighted to offer a range of PhD scholarships for entry in September 2019. You can apply for a degree in any topic that falls within our range of expertise in the areas of:

The scholarships provide a bursary of £15,009 plus fees at the home/EU rate at £4,327, for entry in September 2019. Scholarships are normally awarded annually for three years (36 months) for a full-time PhD student, subject to satisfactory progression through each year of study.

We are also offering four specific projects, with more defined research plans as listed below:

Further details of the scholarships are available at: www.cs.kent.ac.uk/research/studyingforaphd/fundingopportunities.html
Details of how to apply at:
www.cs.kent.ac.uk/research/studyingforaphd/howtoapply.html

Posted in News, PhD studentship, research | Tagged , , , | Leave a comment