- Inicio
- RESULTADOS DE INVESTIGACIÓN
- Artículos Científicos WOS y SCOPUS
- Listar Artículos Científicos WOS y SCOPUS por autor
Listar Artículos Científicos WOS y SCOPUS por autor "Bermejo-Higuera, Javier"
Mostrando ítems 1-20 de 21
-
A New Mail System for Secure Data Transmission in Cyber Physical Systems
Piedrahita Castillo, Diego ; Machio, Francisco ; Bermejo-Higuera, Javier ; Bermejo Higuera, Juan Ramón ; Sicilia, Juan Antonio (International Journal of Uncertainty, Fuzziness and Knowledge-Based Systems, 12/2020)This paper provides a complete study on email requirements, with special emphasis on its security aspects and architecture. It explores how current protocols have evolved, the environment in which they have been developed ... -
A new multi-label dataset for Web attacks CAPEC classification using machine learning techniques
Sureda Riera, Tomás; Bermejo Higuera, Juan Ramón ; Bermejo-Higuera, Javier ; Martínez Herraiz, José-Javier; Sicilia, Juan Antonio (Computers & Security, 2022)Context: There are many datasets for training and evaluating models to detect web attacks, labeling each request as normal or attack. Web attack protection tools must provide additional information on the type of attack ... -
A Secure Email Solution Based on Blockchain
Piedrahita, Diego; Bermejo-Higuera, Javier; Machío-Regidor, Francisco (Springer Science and Business Media Deutschland GmbH, 2022)Email is one of the most important online communication services between individuals and businesses. The large amount of information that passes through this medium is the object of desire for many attackers who use a whole ... -
A systematic approach to analysis for assessing the security level of cyber-physical systems in the electricity sector
Sánchez Rodríguez, Miguel Ángel ; Bermejo-Higuera, Javier ; Bermejo Higuera, Juan Ramón ; Sicilia, Juan Antonio ; González-Crespo, Rubén (Elsevier B.V., 2021)In a context of digitalization and technological evolution in all aspects of our lives, the electricity sector could not be left behind. This opens up a new range of possibilities until now unthinkable, which will facilitate ... -
Application of the SAMA methodology to Ryuk malware
Granado-Masid, Ander; Bermejo-Higuera, Javier; Bermejo Higuera, Juan Ramón; Sicilia, Juan Antonio (Journal of Computer Virology and Hacking Techniques, 2023)Malware analysis is an essential discipline for understanding the nature, attack vectors, and weaknesses of systems to combat the threats that emerge every day in the IT security world. To this end, a malware analysis ... -
Benchmarking Approach to Compare Web Applications Static Analysis Tools Detecting OWASP Top Ten Security Vulnerabilities
Bermejo Higuera, Juan Ramón ; Bermejo-Higuera, Javier ; Sicilia, Juan Antonio ; Cubo Villalba, Javier ; Nombela Pérez, Juan José (CMC-Computers Materials & Continua, 2020)To detect security vulnerabilities in a web application, the security analyst must choose the best performance Security Analysis Static Tool (SAST) in terms of discovering the greatest number of security vulnerabilities ... -
Building a dataset through attack pattern modeling and analysis system
Bermejo Higuera, Juan Ramón; Bermejo-Higuera, Javier; Tébar García, Juan Luis; Sicilia, Juan Antonio; Sánchez Rubio, Manuel (Elsevier Ltd, 2022)The different types of cyber-attacks on information and telecommunications systems are becoming increasingly sophisticated and complex, with several defined phases (attack pattern). Therefore, it is necessary to research ... -
Combinatorial method with static analysis for source code security in web applications
Bermejo Higuera, Juan Ramón ; Bermejo-Higuera, Javier ; Sicilia, Juan Antonio ; Sureda Riera, Tomás; Argyros, Christopher I.; Magreñán, Á. Alberto (Tech Science Press, 2021)Security weaknesses in web applications deployed in cloud architectures can seriously affect its data confidentiality and integrity. The construction of the procedure utilized in the static analysis tools of source code ... -
Detecting Malware in Cyberphysical Systems Using Machine Learning: a Survey
Montes, F. ; Bermejo-Higuera, Javier ; Sanchez, L. E.; Bermejo Higuera, Juan Ramón ; Sicilia, Juan Antonio (KSII transactions on internet and information systems, 2021)Among the scientific literature, it has not been possible to find a consensus on the definition of the limits or properties that allow differentiating or grouping the cyber-physical systems (CPS) and the Internet of Things ... -
Effective filter for common injection attacks in online web applications
Ibarra-Fiallos, Santiago; Bermejo-Higuera, Javier; Intriago-Pazmiño, Monserrate; Bermejo Higuera, Juan Ramón; Sicilia, Juan Antonio; Cubo Villalba, Javier (IEEE Access, 2021)Injection attacks against web applications are still frequent, and organizations like OWASP places them within the Top Ten of security risks to web applications. The main goal of this work is to contribute to the community ... -
Hybrid Security Assessment Methodology for Web Applications
Correa, Roddy A.; Bermejo Higuera, Juan Ramón ; Bermejo-Higuera, Javier ; Sicilia, Juan Antonio ; Sánchez Rubio, Manuel ; Magreñán, Á. Alberto (CMES-Computer Modeling in Engineering & Sciences, 2021)This study presents a methodology to evaluate and prevent security vulnerabilities issues for web applications. The analysis process is based on the use of techniques and tools that allow to perform security assessments ... -
Implementation and Security Test of Zero-Knowledge Protocols on SSI Blockchain
Vilchez Moya, Cristina; Bermejo Higuera, Juan Ramón; Bermejo-Higuera, Javier; Sicilia, Juan Antonio (Applied Sciences (Switzerland), 2023)The problem of digital identity acquires more relevance every day in the eyes of a society that spends more and more time connected to the Internet. It has evolved throughout its history to reach a decentralized model known ... -
MMALE a methodology for malware analysis in linux environments
de Vicente Mohino, José Javier ; Bermejo-Higuera, Javier; Bermejo Higuera, Juan Ramón; Sicilia, Juan Antonio ; Sánchez Rubio, Manuel ; Martínez Herraiz, José-Javier (Computers, materials and continua, 2021)In a computer environment, an operating systemis prone to malware, and even the Linux operating system is not an exception. In recent years, malware has evolved, and attackers have becomemore qualified compared to a fewyears ... -
On Attacking Kerberos Authentication Protocol in Windows Active Directory Services: A Practical Survey
Díaz Motero, Carlos ; Bermejo Higuera, Juan Ramón ; Bermejo-Higuera, Javier ; Sicilia, Juan Antonio ; Gámez, Nádia (Institute of Electrical and Electronics Engineers Inc., 2021)Organizations use Active Directory Windows service to authenticate users in a network with the extended Kerberos Authentication protocol. Therefore, it is necessary to investigate its resistance to the different types of ... -
On Combining Static, Dynamic and Interactive Analysis Security Testing Tools to Improve OWASP Top Ten Security Vulnerability Detection in Web Applications
Mateo Tudela, Francesc ; Bermejo Higuera, Juan Ramón ; Bermejo-Higuera, Javier ; Sicilia, Juan Antonio ; Argyros, Michael I (Applied Sciences-Basel, 12/2020)The design of the techniques and algorithms used by the static, dynamic and interactive security testing tools differ. Therefore, each tool detects to a greater or lesser extent each type of vulnerability for which they ... -
Prevention and fighting against web attacks through anomaly detection technology. A systematic review
Sureda Riera, Tomás; Bermejo Higuera, Juan Ramón ; Bermejo-Higuera, Javier ; Martínez Herraiz, José-Javier; Sicilia, Juan Antonio (Sustainability (Switzerland), 01/06/2020)Numerous techniques have been developed in order to prevent attacks on web servers. Anomaly detection techniques are based on models of normal user and application behavior, interpreting deviations from the established ... -
Systematic Approach for Web Protection Runtime Tools’ Effectiveness Analysis
Sureda Riera, Tomás; Bermejo Higuera, Juan Ramón; Bermejo-Higuera, Javier; Sicilia, Juan Antonio; Martínez Herraiz, José-Javier (CMES - Computer Modeling in Engineering and Sciences, 2022)Web applications represent one of the principal vehicles by which attackers gain access to an organization’s network or resources. Thus, different approaches to protect web applications have been proposed to date. Of them, ... -
Systematic Approach to Malware Analysis (SAMA)
Bermejo-Higuera, Javier; Abad-Aramburu, Carlos; Bermejo Higuera, Juan Ramón; Sicilia Urban, Miguel Ángel; Sicilia, Juan Antonio (Applied Sciences, 02/2020)Malware threats pose new challenges to analytic and reverse engineering tasks. It is needed for a systematic approach to that analysis, in an attempt to fully uncover their underlying attack vectors and techniques and find ... -
The application of a new secure software development life cycle (S-SDLC) with agile methodologies
Vicente Mohino, Juan de ; Bermejo-Higuera, Javier ; Bermejo Higuera, Juan Ramón ; Sicilia, Juan Antonio (Electronics (Switzerland), 2019)The software development environment is focused on reaching functional products in the shortest period by making use of the least amount of resources possible. In this scenario, crucial elements such as software quality ... -
The application of blockchain algorithms to the management of education certificates
Maestre, Raúl Jaime; Bermejo-Higuera, Javier; Gámez, Nádia; Bermejo Higuera, Juan Ramón; Sicilia, Juan Antonio; Orcos, Lara (Evolutionary Intelligence, 2022)Blockchain is a new application technology in many sectors and the same is true in the world of education. Therefore, there is an increasingly emerging need to research blockchain technology, as it is still taking its first ...
