Interpreting the negative mood-helping literature via "mega"-analysis: A contrary view.

"Mega"-analysis was developed by M. Carlson and N. Miller (see record 1987-31249-001) as an extension of traditional meta-analytic procedures for conducting integrative reviews of existing research literatures. One such mega-analysis was conducted by Carlson and Miller to synthesize the literature on the relation between negative mood states and helping. That analysis found no support for a theoretical account (negative state relief) that had been confirmed previously by using various experimental approaches. In an attempt to reconcile the discrepancy, the logic and methods used in Carlson and Miller's mega-analysis of the negative mood-helping literature were examined, and several serious problems were found. These problems are discussed, and data are presented to show that the results of that mega-analysis, and perhaps all mega-analyses, should not be viewed with confidence. (PsycINFO Database Record (c) 2010 APA, all rights reserved)     

A Data Security Framework for Cloud Computing Services

Cyberattacks are difficult to prevent because the targeted companies and organizations are often relying on new and fundamentally insecure cloud-based technologies, such as the Internet of Things. With increasing industry adoption and migration of traditional computing services to the cloud, one of the main challenges in cybersecurity is to provide mechanisms to secure these technologies. This work proposes a Data Security Framework for cloud computing services (CCS) that evaluates and improves CCS data security from a software engineering perspective by evaluating the levels of security within the cloud computing paradigm using engineering methods and techniques applied to CCS. This framework is developed by means of a methodology based on a heuristic theory that incorporates knowledge generated by existing works as well as the experience of their implementation. The paper presents the design details of the framework, which consists of three stages: identification of data security requirements, management of data security risks and evaluation of data security performance in CCS.     

石油石化系统言息安全态势评估指标体系研究

文章阐述了石油石化系统信息安全态势评估指标体系的研究意义,提出了指标体系的研究思路,分析了指标体系的基本构成,说明了指标体系的总体框架,并对指标体系的数据获取和应用前景作了介绍。对于丰富和完善国家信息安全态势评估指标体系,是一个有意义的探索。     

电子签章安全漏洞分析研究

文章介绍了电子签章产品的一般结构,提出了电子签章产品的安全漏洞为无法保护文档框架和格式、无法保护文档所有数据和产品自身安全漏洞,分析了漏洞存在原因,并从产品的标准制定、功能完善、自身安全性加固三方面提出了改进建议。     

RFID芯片在物联网应用中的设计与研究

文章就政府主管部门在物联网应用环境下,在物品监管、证件关联和失控溯源等管控过程中的RFID芯片的信息安全问题进行了研究,特别是针对工作在915．0MHz频段的RFID芯片的安全机制,分析了在保证实时掌握监管物品本身的状态、随时检查与之对应的监管证件和文书状态、实时绑定监管物品的信息与物联网视频监控的管控要求下的信息安全机制,并提出了可资借鉴的信息安全解决方案。     

物联网网络层中基于IPv6的信息安全产品发展趋势研究

文章通过对物联网中的IPv6相关原理、技术等方面的研究和分析,对信息安全产品在新环境下的技术以及应用发展趋势进行分析阐述。为确定信息安全产品标准编制、研发应用等方面的发展方向提供参考,对物联网建设过程中的信息安全产业发展具有积极的建设意义。     

赛博空间态势感知技术研究

文章从赛博空间的概念和态势感知的流程出发,构建赛博空间态势感知框架,以安全栓测和安全事件分析技术为支撑,提出多层次多角度的态势评估模型,在此基础上使用时间序列分析方法预测安全态势的发展趋势。     

浅析管理在信息系统安全中的必要性

在信息系统安全规划和设计中,管理作为信息系统的安全基础和信息系统各安全层面的基本要素,已经成为构建安全、可用信息系统不可或缺的必要条件。文章针对管理在信息系统安全中的作用、特点进行了论述,并结合等级保护政策提出了相应的管理建议。     

一种基于网络安全风险评估的入侵检测方法

针对传统的入侵检测系统存在报警数量大、误报率高等缺陷,提出了一种基于网络安全风险评估的入侵检测方法,该方法基于入侵检测结果,引入抗体浓度随入侵强度动态变化这一人工免疫理论的最新研究成果进行网络安全风险的计算,然后根据当前网络面临的实时安全风险动态设置报警策略。实验结果表明,该方法能够实时、定量地计算主机和网络所面临的风险,并极大地降低报警数量和误报率。     

一种基于灰色关联分析的信息安全风险评估方法研究

随着信息化进程的快速发展,保障信息系统的安全性和降低信息系统潜在的风险,一直是国内外学者关注的焦点,而风险评估正是解决该问题的有效方法之一,但是在风险评估过程中存在评估指标难以量化、风险值难以界定等困难,因此文章提出了一种基于灰色关联分析的信息安全风险评估方法,该方法首先建立了信息系统的风险评估指标体系,其次将评估的信息系统与最优信息系统进行关联度分析,最后得出信息系统风险的准确度量。该方法可以使信息系统的评估过程简单化,标准化。