两种面向推荐系统的数据压缩方法

今日头条的服务器每天都会产生规模庞大的训练数据,为方便进行训练,这些数据都具有特定的格式和分布特征。使用不同类型的通用压缩算法(字典类型及非字典类型)进行测试,发现单独任何一种算法都无法在满足业务需求(速率需求和CPU占比等)的同时获得较为可观的压缩比。针对今日头条的训练数据,提出了分段聚类压缩和Hash recoding压缩两种策略。实验结果表明,分段聚类压缩方式在更好地保证了压缩率的同时提高了压缩速率的目的;Hash recoding压缩方式则更好地达到了以少量压缩速率的损失换取更可观的压缩率的目的。分段聚类方式搭配Gzip压缩算法的组合能使压缩速率提高300%以上;Hash recoding方式匹配Snappy压缩算法能使压缩率缩小50%以上。根据实际需求,不论选择哪种策略,对于降低今日头条的运营成本,提升业务处理的效率,提供更好的用户体验,都有一定意义。     

一种抗独立攻击的WSN三维安全定位算法

为解决无线传感器网络中节点定位缺乏安全性和定位精度不高的问题,基于最速下降法与牛顿迭代法提出了一种新的三维安全定位算法。该算法首先给出三维空间下未知节点定位的计算方法和独立攻击模型,然后利用最速下降法和恶意锚节点检测技术选出最优锚节点数据,并结合牛顿迭代法实现了快速高精度的三维安全定位。实验结果表明,在危险的环境下,该算法能有效抵抗独立攻击以及在定位精度和未知节点可成功定位率方面都具有较好的优势。     

ARP攻击与防御分析

ARP攻击会造成联网不稳定,经常致使个人或企业遭受重大损失。本文简述了几种常见的ARP攻击方式,并重点就其中一种攻击方式做了深度剖析,以实验的方式更进一步地将协议原理加以验证,最后本文对ARP攻击的防御手段及防御措施的配置方式做出了较为深入的分析和探讨。     

Microsoft Windows vs. Apple Mac OS X: Resilience against ARP cache poisoning attack in a local area network

ABSTRACT

Robust security measures are integrated into new release versions of operating systems (OSs) to ensure that users have a more secure and reliable environment in which to run their daily tasks. In this article, through extensive practical experiments, we evaluate and compare the resilience of popular versions of Microsoft Windows OSs and Apple Mac OS X against Address Resolution Protocol (ARP) cache poisoning attack in a local area network (LAN). The experimental results demonstrate clearly that all tested versions of Windows OSs and Apple Mac OS X are vulnerable to the ARP cache poisoning attack, and do not deploy built-in efficient security features to prevent success of this attack. In addition, the experimental results directly contradict the common belief that Windows OSs are always less secure than Apple OSs. On the other hand, the article analyzes the efforts that have been made and the different methods that have been applied to detect and prevent ARP cache poisoning attacks. The article shows that none of these efforts and methods has been able to give satisfactory results.     

Compressed sensing of superimposed chirps with adaptive dictionary refinement

The compressed sensing （CS） theory shows that accurate signal reconstruction depends on presetting an appropriate signal sparsifying dictionary. For CS of superimposed chirps, this dictionary is typically taken to be a waveform-matched dictionary formed by blindly diseretizing the frequency-chirp rate plane. However, since practical target parameters do not lie exactly on gridding points of the assumed dictionary, there is always mismatch between the assumed and the actual sparsifying dictionaries, which will cause the performance of conventional CS reconstruction methods to degrade considerably. To address this, we model the waveform- matched sparsifying dictionary as a parameterized one by treating its sampled frequency-chirp rate grid points as the underlying parameters. As a consequence, the sparsifying dictionary becomes refinable and its refinement can be achieved by optimizing the underlying parameters. Based on this, we develop a novel reconstruction algorithm for CS of superimposed chirps by utilizing the variational expectation-maximization （EM） algorithm. By alternating between steps of sparse coefficients estimation and dictionary parameters optimization, the algorithm integrates the process for dictionary refinement into that of signal reconstruction, and thus can achieve sparse reconstruction and dictionary optimization simultaneously. Experimental results demonstrate that the algorithm effectively deals with the performance degradation incurred by dictionary mismatch, and also outperforms the state-of-the-art CS reconstruction methods both in compressing the signal measurements and in suppressing the measurement noise.     

防范黑客入侵确保数据库安全探讨

各种数据库应用系统中大量数据的安全问题、敏感数据的防窃取和防篡改问题,越来越引起人们的高度重视。普通的黑客从进入到退出一次数据攻击只需用不到10 s就可完成,这个时间对于数据库管理员来说无论如何都几乎不够。从三个层面上分析黑客入侵成功原因,对如何确保数据库的安全进行了探讨。     

计算机远程控制研究

介绍了一种计算机远程控制技术的设计方案。软件采用/Delphi/语言和UDP协议,设计了一个简单的远程控制程序实例,实现对被控方主机的远程控制。     

软件开发框架模型——现实世界问题的结构化分析

对软件开发框架模型提出了一种新的构化的分析方法,同时介绍了常用的结构化分析的工具及其更实用情况。     

浅谈园区接入层网络安全技术

针对园区网络接入层的网络安全问题,阐述接入层网络下的端口安全技术、ARP欺骗、DHCP攻击等原理和相应的防范措施.