1.2.3.4.5.6.

8.1

1 PC

2 123

3 4 PC

2001200120 2003125SQL2003811Windows90%5

ScriptJAVAShockwave

2001719 01:05:00 2001719 20:15:00

BOJAVA

1CIH CIHflash BIOS 32Wwdows95/98DOSWINDOWS3.XNTCIHCIH.2626CIH.42627282NATAS .EXE.COM

Worms.Nimda 2001918W32.Nimda.A@mm Worms.NimdaemailIISW32.Nimda.A@mm email,NT/2000IISJavaScript57344.htm, .html. .aspIEOutlook Expressreadme.eml windows9x

W32/Bady.worm 2001718Microsoft Index Server 2.0Windows 2000IISIndexing Service()Index Server ISAPI ExtensionWEB TCP/IP80TCP/IPWEBc:\notworm

Worm.Blaster 2003812RPC DCOMRPCWindowsmsblast.exemsblast.exe69,TFTP,RPC135RPC

(Worm.Sasser) 200451(Worm.Sasser)LSASSavserve.exeavserve.exeTCP5554FTP445LSASS

123

45

8.2 hack2020 70

Carck@ShadowShadowShadow

6E-mailE-mailNetbull(Netthief)WAY2.4Netspyhttp://nj.onlinedown./iparmor.htmPChttp://www.cnlvker.com

IP

bug, FPTguest

200

Internet

20021200222020032 MasterCardVISA

ICSA/FBI, 2001

201/38020

FBI75

TCP/IP

Denial of Service

Eavesdropping

Intrusion

Loss of Integrity

E-Mail (E-Mail Bombing) (Logic Bombing)DDos (Distributed Denial of Service ) (Trojan Horse Program) (Password Intrusion) (Eavesdropping)IP (IP Spoofing) (Viruses)

E-Mail E-MailE-Mail

DDos DDos (Distributed Denial of Service)Web DDosWinNukeBonkTearDropWinArpFluShotBlooPIMPJolt

BO2000Net SpyGlaicer

(Net X-Ray for Windows9598NTSniffit for LinuxSolaries)

IP IPIP

8.3NTFSFATNTFS(RAS)RASTCP/IP 44

VPNHA

IT

VPN

Detection Protect Reaction Recovery Management PDRR(MDPRR)

8.4 ,,

Computer securityISO 21

VPN

8.5 ,,

KEM,EC, C=E(M,K) KEK

(Encryption)(Plaintext)(Ciphertext)(Decryption) (Plaintext) (Ciphertext) (Key) (Encryption)(Decryption)

Hash

YSmmYSYYn,d s=md mod nS SYn,es se mod n=(md)e mod n=mSsYn,dYn,e,

RSApq()n=pq()(n)=(p-1)(q-1)()eged(e, (n))=1()dde1(mod (n))()RSA c=E(m) mc (mod n) D(c) cd mod n

1 p=11,q=132) n=pq=143(n)=(p-1)(q-1)=1203) e=7 ,ged(e, (n))=14) dde1(mod (n))d=103 () 1437143103 ss=85,SYn,e=(143,7),S c=se mod n=857 mod 143=123cYYc=123 n,d=(143,103) 123103 mod 143=85

Hash hash algorithmmessage-digest algorithm digestMD5SHA-1

AliceAlice-2-1AliceBobAliceBobBobAlice

digital signature

CA: Certificate Authorities

DES(Data Encryption Standard)3DESRC4AESRSA

IC

12P208 1-834

199863619933181999812201/3

201/38020

FBI75

TCP/IP

TCP/IPInternetSATAN

E-Mail (E-Mail Bombing) (Logic Bombing) DDos (Distributed Denial of Service ) (Trojan Horse Program) (Password Intrusion) (Eavesdropping) IP (IP Spoofing) (Viruses)

E-Mail E-MailE-MailCGI

(1)IP(2)

DDos DDos (Distributed Denial of Service)Web DDos:WinNukeOOBBonkUDPTearDropIPTCP/IPWinArpLandIPSYNTCPFluShotIPBlooICMPPIMPIGMPJoltICMPUDP windowsIP

FingerFingerX.500X.500 (1)TelnetFTPHTTPSMTPSUID (NetXRay for Windows9598NTSniffit for LinuxSolaries) IP IP TCPIPTCPIP

IT

VPN

VPN