Title: Monitoring Government Web Portals in Cameroon

Issue Number: Vol. 6, No. 3
Year of Publication: Sep - 2017
Page Numbers: 109-120
Authors: Paul Dayang, Theodore Efoumena and Franklin Tchakounte
Journal Name: International Journal of Cyber-Security and Digital Forensics (IJCSDF)
- Hong Kong
DOI:  http://dx.doi.org/10.17781/P002276

Abstract:


This research aims to analyse the most frequent vulnerabilities of Cameroonian governmental web portals and to suggest a suitable monitoring infrastructure. In fact, the technological evolution and the need to intensify the local communication enabled companies and governmental institutions to set up web portals for e-governance, e-education, eadvertising, e-payments, e-registration, e-commerce etc. These e-services manipulate quite sensitive data of individuals and governmental institutions. Attackers are therefore attracted to launch malicious actions to take control over these web systems. After analysing several Cameroonian web portals, one of our main findings is that, unfortunately, administrators of such systems lack expertise and even are not aware of the use of diverse systems for monitoring and securing their infrastructures, exposing therefore the life of users. As a consequence, several attacks perpetrated against web portals are increasingly being registered since 2012. We have analysed 55 web portals. Three groups of vulnerabilities have been identified and categorised. As a solution approach, we propose a distributed monitoring architecture for national web portals. The architecture aims to gather automatically information and analyse them for assistance in security decisionmaking. This work constitutes a considerable step towards preventive measures for strengthening cybersecurity in Cameroon.