Upload File

chapter 15: security (part 1). the security problem security must consider external environment of...

  • Home
  • Documents
  • Chapter 15: Security (Part 1). The Security Problem Security must consider external environment of the system, and protect the system resources Intruders
12
Chapter 15: Security (Part 1)

Upload: wilfred-stevens

Post on 26-Dec-2015

230 views

Category:

Documents


2 download

Report

Tags:

TRANSCRIPT

Page 1: Chapter 15: Security (Part 1). The Security Problem Security must consider external environment of the system, and protect the system resources Intruders

Chapter 15: Security

(Part 1)

Page 2: Chapter 15: Security (Part 1). The Security Problem Security must consider external environment of the system, and protect the system resources Intruders

The Security Problem

Security must consider external environment of the system, and protect the system resources

Intruders (crackers) attempt to breach security

Threat is potential security violation

Attack is attempt to breach security

Attack can be accidental or malicious

Easier to protect against accidental than malicious misuse

Page 3: Chapter 15: Security (Part 1). The Security Problem Security must consider external environment of the system, and protect the system resources Intruders

Security Violations

Categories

Breach of confidentiality

Breach of integrity

Breach of availability

Theft of service

Denial of service

Methods

Masquerading (breach authentication)

Replay attack

Message modification

Man-in-the-middle attack

Session hijacking

Page 4: Chapter 15: Security (Part 1). The Security Problem Security must consider external environment of the system, and protect the system resources Intruders

Standard Security Attacks

Page 5: Chapter 15: Security (Part 1). The Security Problem Security must consider external environment of the system, and protect the system resources Intruders

Security Measure Levels

Security must occur at four levels to be effective:

Physical

Human

Avoid social engineering, phishing, dumpster diving

Operating System

Network

Security is as weak as the weakest link in the chain

Page 6: Chapter 15: Security (Part 1). The Security Problem Security must consider external environment of the system, and protect the system resources Intruders

Program Threats

Trojan Horse

Code segment that misuses its environment

Exploits mechanisms for allowing programs written by users to be executed by other users

Spyware, pop-up browser windows, covert channels

Trap Door

Specific user identifier or password that circumvents normal security procedures

Could be included in a compiler

Logic Bomb

Program that initiates a security incident under certain circumstances

Stack and Buffer Overflow

Exploits a bug in a program (overflow either the stack or memory buffers)

Page 7: Chapter 15: Security (Part 1). The Security Problem Security must consider external environment of the system, and protect the system resources Intruders

Program Threats (Cont.)

Virus dropper inserts virus onto the system Many categories of viruses, literally many thousands of viruses

File – attaches itself to a file Boot – infects boot sector Macro – triggered in program executing macro Source code – looks for source code to modify and insert itself Polymorphic – changes each time it is installed Encrypted – decrypts itself then executes Stealth – modifies parts of the system to avoid detection Tunneling – bypasses anti-virus detection by installing itself in interrupt

handler chain Multipartite – can infect multiple parts of the system Armored – difficult to detect, can be compressd to avoid detection

Page 8: Chapter 15: Security (Part 1). The Security Problem Security must consider external environment of the system, and protect the system resources Intruders

System and Network Threats

Worms – use spawn mechanism; standalone program

Internet worm

Exploited UNIX networking features (remote access) and bugs in finger and sendmail programs

Grappling hook (bootstrap) program uploaded main worm program

Port scanning

Automated attempt to connect to a range of ports on one or a range of IP addresses

Denial of Service

Overload the targeted computer preventing it from doing any useful work

Distributed denial-of-service (DDOS) come from multiple sites at once

Page 9: Chapter 15: Security (Part 1). The Security Problem Security must consider external environment of the system, and protect the system resources Intruders

The Morris Internet Worm

Page 10: Chapter 15: Security (Part 1). The Security Problem Security must consider external environment of the system, and protect the system resources Intruders

Cryptography as a Security Tool

Broadest security tool available

Source and destination of messages cannot be trusted without cryptography

Means to constrain potential senders (sources) and / or receivers (destinations) of messages

Based on secrets (keys)

Page 11: Chapter 15: Security (Part 1). The Security Problem Security must consider external environment of the system, and protect the system resources Intruders

Secure Communication over Insecure Medium

Page 12: Chapter 15: Security (Part 1). The Security Problem Security must consider external environment of the system, and protect the system resources Intruders

Encryption and Decryption using RSA Asymmetric Cryptography


Chapter 8 Intrusion Detection Intruders classes: classes: two most publicized threats to security are malware and intruders two most publicized threats

Intruders - fac.ksu.edu.safac.ksu.edu.sa/sites/default/files/chapter_20.pdf · Intruders • Generally referred to as hacker, cracker. • Intruders trespass networked system through

Intruders & Intrusion Detection Systems 1. 22 Intruders Three classes of intruders:Three classes of intruders: An individual who is not authorized to

Intruders and Viruses in Network Security NS9

lecture26 security issues - GitHub Pages · 2017-11-28 · • Intruders and/or crackers may attempt to breach security • Threat is a potential security violation ... 10. CS420:

Bro: A System for Detecting Network Intruders in Real-Time

Chapter 9 Intruders - cse.hcmut.edu.vnthai/networksecurity/Chapter 09 Intruders.pdf · 5 Intruders One of the two most publicized threats to security is the intruder (the other is

Intruders Urban Explorers

Security. The Security Problem Security must consider external environment of the system, and protect the system resources Intruders (crackers) attempt

Chapter 18. Intruders. 2 Intruders Three classes of intruders Masquerader likely to be an outsider penetrates a system’s access controls to exploit

Resources (TBD) Intruders and Intrusion - WordPress.com · Intruders and Intrusion security problem for networked systems is hostile, or at least unwanted, trespass being unauthorized

ATM Fogging Security System - XSORT · UR Fog™ ATM Security makes it extremely difficult for intruders to successfully rob an ATM. UR Fog™ ATM Security is designed to detect diverse

CSc 8222 Network Security Intruders WenZhan Song Cryptography and Network Security1

Goo Intruders

The intruders 2

YOU’RE HOME NOW...Yale Locking System 2 rollers, 3 hooks, 2 deadbolts and 1 latch, high security system protects your family from intruders. Coupling Bar ... NOW YOU'RE HOME BROCHURE

Chapter 15: Security. The Security Problem Security must consider external environment of the system, and protect the system resources Intruders (crackers)

IP Security. In CERTs 2001 annual report it listed 52,000 security incidents the most serious involving: IP spoofing intruders creating packets

05/01/06 Hofstra University – Network Security Course, CSC290A 1 Network Security Intruders and Viruses

14300501 Cryptography & Network Security · Secure Socket Layer & Transport Layer Security. System Security: Intruders, Viruses. Text Books: 1. William Stallings, “Cryptography

Intruders. Topics Intruders Intrusion detection Password management

The intruders 4

Information System Security, Intruders and password protection Presented by: Yanal Kilani Presented to: Dr. Lo’ai Tawalbeh Summer 2006

INTRUDERS DETECTION AND ALERTNESS SYSTEM WITH … · INTRUDERS DETECTION AND ALERTNESS SYSTEM WITH PIR &WEBCAM TOOLS ... light receive flip OFF and vice versa. ... the PIR sensor

CSCE 815 Network Security Lecture 19 Intruders April 1, 2003

040 Eurocontrolli, Radar system presentation - Technologies · between transmitter and receiver units to detect intruders based on ... The radar based security system uses sensors

CSCE 815 Network Security Lecture 20 Intruders / Intrusion Detection April 3, 2003

Intruders - networking.khu.ac.krnetworking.khu.ac.kr/html/lecture_data/2019_03... · Intruders •Three classes of intruders (hackers or crackers): –Masquerader: no account but

Intruders GOD

Intruders with Caps

Security Engineering Part III Network Securityocw.uc3m.es/.../lecture-notes-1/part-iii-3.pdf · Security Engineering Part III – Network Security Intruders, Malware, Firewalls, and

System Security. The Security Problem Security must consider external environment of the system, and protect the system resources Intruders (crackers)

Cyber Security and the Internet ofThings: Vulnerabilities ... Cyber Security and the Internet ofThings: Vulnerabilities,Threats, Intruders ... and authorization mechanism and second

Towards Effective Software Security through Testing Stage ... · intruders to open security holes. With the development of the Internet, software security problems are becoming even

Outdoor Security Lighting.€¦ · Outdoor Security Lighting. Motion-activated outdoor security lighting can discourage intruders and helps provide peace of mind. Post Lamps. Add