Bendig, H. . (2020). Untersuchung von opensource Datenbanksystemen auf Härtungsmaßnahmen unter Betrachtung des BSI IT-Grundschutz-Kompendium. Wismar University of Applied Sciences. Abgerufen von https://it-forensik.fiw.hs-wismar.de/index.php/Henner_Bendig
Abstract
Die Relevanz von Opensource Software (OSS) steigt immer weiter an. Laut einer Studie der Bitkom setzen heutzutage 69% aller Unternehmen, bewusst OSS ein und bis zu 75% der Unternehmen planen OSS einzusetzen [1]. Gleichzeitig steigt die Gefahr von Angriffen auf moderne Technologien [2]. Datenbanksysteme (DBS) stehen heute schon auf Platz 4 der am häufigsten angegriffenen IT-Systeme [3]. Die Wichtigkeit von Daten im heutigen Zeitalter steigt noch immer weiter man, somit ist eine noch höhere Angriffswahrscheinlichkeit auf DBS wahrscheinlich. In dieser Arbeit wurde die Umsetzbarkeit des Bausteins „APP.4.3 – Relationale Datenbanken“ des IT-Grundschutzkompendium der Bundesagentur für Sicherheit in der Informationstechnik (BSI) in den Opensource DBS Oracle MySQL, PostgreSQL und MongoDB untersucht. Die drei gewählten Systeme sind die derzeit am meist verbreiteten Opensource Datenbanksysteme und bedürfen daher erhöhte Aufmerksamkeit [4] [5]. Organisatorische Maßnahmen wurden anhand von Empfehlungen, Vorgaben und Beispielen erarbeitet. Technische Maßnahmen wurden nach Möglichkeit direkt in den DBS umgesetzt. Sofern keine interne Umsetzung notwendig war, wurden Opensource Erweiterungen von Drittanbietern gesucht und getestet. Anhand der vom BSI bereitgestellten Auditorencheckliste wurden die Maßnahmen bewertet. Organisatorische Maßnahmen wurden aus der Wertung herausgenommen. Es wurden die Punktekategorien 0 für gar nicht umsetzbar, 1 für teilweise umsetzbar und 2 für komplett umsetzbar vergeben. MySQL erreichte 73% der möglichen Punkte, PostgreSQL 67% und MongoDB 47%. Ein Großteil der notwendigen Funktionen wird vom Originalhersteller zwar bereitgestellt aber ist nur in der kommerziell verfügbaren Variante der Systeme aktivierbar.
Abstract: The relevance of Open Source Software (OSS) is constantly increasing. According to a study by Bitkom, 69% of all companies today use OSS consciously and up to 75% of companies plan to use OSS [1]. At the same time the danger of attacks on modern technologies is increasing [2]. Database systems (DBS) are already in 4th place among the most frequently attacked IT systems [3]. The importance of data in today s age is still increasing, so an even higher probability of attack on DBS is likely. In this thesis the feasibility of the module ‚APP.4.3 - Relational Databases‘ of the IT basic protection compendium of the German Federal Agency for Information Security (BSI) was examined in the open source DBS Oracle MySQL, PostgreSQL and MongoDB. The three chosen systems are currently the most widespread open source database systems and therefore require special attention [4] [5]. Organisational requirements were developed on the basis of recommendations, specifications and examples. Where possible, technical requirements were implemented directly in the DBS. As far as no internal implementation was possible, open source extensions of third-party providers were searched and tested. The requirements were evaluated using the auditor checklist provided by the BSI. Organizational requirements were removed from the evaluation. The point categories 0 for not realizable at all, 1 for partially realizable and 2 for completely realizable were assigned. MySQL achieved 73% of the possible points, PostgreSQL 67% and MongoDB 47%. Most of the required functions are provided by the original manufacturer but can only be activated in the commercially available version of the systems.
Zander, S. ., Montag, M. ., Wetzel, S. ., & Bertel, S. . (2020). A gender issue? - How touch-based interactions with dynamic spatial objects support performance and motivation of secondary school students. Computers & Education, 143, 103677. http://doi.org/https://doi.org/10.1016/j.compedu.2019.103677
Abstract
Mobile devices are seen to incorporate characteristics which can support learning and problem solving in general and specific abilities, such as spatial ones (e.g. mental rotation). Central relevant characteristics of these devices are the availability of multiple representations (e.g. dynamic and static) and the direct interaction via touch, pointing and tracing with displayed information. The primary aim of the present study was to investigate the effectiveness of direct interactive, dynamic interactions with spatial tasks on mobile devices as compared to purely static, non-interactive versions of the same tasks. We expected that dynamic, interactive tasks support mental processes while solving spatial tasks would be especially helpful for learners with difficulties in mental rotation and low expectancies regarding their spatial abilities. Therefore, the second focus of the study was to examine whether the expected beneficial effects of dynamic interactions were equally beneficial for both genders. This was motivated by previous studies that revealed gender differences in performance and motivational beliefs regarding spatial tasks to the disadvantage of females. We used a mixed within-between subject design with presentation format (static vs. dynamic) and gender (female vs. male) as factors and success rate, mental effort, intrinsic motivation, and frustration as dependent variables. The study was conducted in four classes (7th grade, N = 46) in two secondary schools. To test gender related pre-assumptions, spatial abilities and motivation were assessed before solving the actual rotation tasks. A MANOVA with single-comparison follow-up tests revealed increased success rates and decreased mental effort for both genders in the dynamic condition, whereas beneficial effects for intrinsic motivation and frustration were restricted to female students. Process data for rotation behavior was registered for dynamic tasks: an analysis hinted at more exploratory ways of solving spatial tasks for females and at more goal-oriented approaches for male students.
Tutdere, S. ., & Uzunkol, O. . (2020). Construction of arithmetic secret sharing schemes by using torsion limits. Hacettepe Journal of Mathematics and Statistics, 49, 638–647. http://doi.org/10.15672/hujms.460348
Odenwald, J. ., Bertel, S. ., & Echtler, F. . (2020). Tabletop Teleporter: Evaluating the Immersiveness of Remote Board Gaming. In Proceedings of the 9TH ACM International Symposium on Pervasive Displays (S. 79–86). New York, NY, USA: Association for Computing Machinery. http://doi.org/10.1145/3393712.3395337
Abstract
Communication with remote persons over a video link is common today, e.g. to connect with family members abroad, particularly during the COVID-19 pandemic. However, social activities such as board games are rarely shared in this way, as common video chat software does not support this scenario well. However, interactive tabletops provide inherent support for natural tangible interaction with items on the tabletop surface.We present the Tabletop Teleporter, a setup designed to merge two remote locations into a single shared interaction space. We evaluate the system using a board game, focusing on the perceived immersion and connectedness of participants. Our evaluation shows that most measures for the social quality of a remotely shared game are not significantly different from one played with co-located participants, and that players prefer our setup over a pure videochat scenario.
Dylus, S. ., Christiansen, J. ., & Teegen, F. . (2020). Implementing a Library for Probabilistic Programming Using Non-Strict Non-Determinism. Theory and Practice of Logic Programming, 20, 147–175. http://doi.org/10.1017/S1471068419000085