advanced network security
play

Advanced Network Security 1. Course Outline Jaap-Henk Hoepman - PowerPoint PPT Presentation

Feb 05, 2024 •620 likes •1.12k views

Advanced Network Security 1. Course Outline Jaap-Henk Hoepman Digital Security (DS) Radboud University Nijmegen, the Netherlands @xotoxot // * jhh@cs.ru.nl // 8 www.cs.ru.nl/~jhh About me Jaap-Henk Hoepman // Radboud University Nijmegen //

  1. Advanced Network Security 1. Course Outline Jaap-Henk Hoepman Digital Security (DS) Radboud University Nijmegen, the Netherlands @xotoxot // * jhh@cs.ru.nl // 8 www.cs.ru.nl/~jhh

  2. About me Jaap-Henk Hoepman // Radboud University Nijmegen // 28-01-2019 // Course outline 2

  3. About you Applied cryptography? Jaap-Henk Hoepman // Radboud University Nijmegen // 28-01-2019 // Course outline 3

  4. Administrative details n Course code: ● NWI-IMC050, 5 ects n Teachers: ● Jaap-Henk Hoepman ● Harald Vranken n Written exam n Course website ● Not using Blackboard ● Instead see: http://www.cs.ru.nl/~jhh/ans.html n Literature ● Selected papers, see website. n Excercises ● See website. Jaap-Henk Hoepman // Radboud University Nijmegen // 28-01-2019 // Course outline 4

  5. Schedule: see website Jaap-Henk Hoepman // Radboud University Nijmegen // 5 28-01-2019 // Course outline

  6. Rough lecture setup n Several papers per lecture ● Read them in advance ● Ask questions you may have about them after lecture n Homework ● Not graded ● But discussed at start of next lecture ● You are strongly advised to do the homework to get some exercise before the exam Jaap-Henk Hoepman // Radboud University Nijmegen // 28-01-2019 // Course outline 6

  7. Course contents 7

  8. Advanced Network Security CIA Availability n Two quite separate and distinct parts ● Distributed algorithms, in particular fault tolerance ● More traditional advanced network security, like intrusion detection, wireless/cellular network security, etc. Jaap-Henk Hoepman // Radboud University Nijmegen // 28-01-2019 // Course outline 8

  9. Distributed algorithms Jaap-Henk Hoepman // Radboud University Nijmegen // 28-01-2019 // Course outline 9

  10. Fault tolerance: Consensus Jaap-Henk Hoepman // Radboud University Nijmegen // 28-01-2019 // Course outline 10

  11. Jaap-Henk Hoepman // Radboud University Nijmegen // 28-01-2019 // Course outline 11

  12. Consensus n How could you solve it? Jaap-Henk Hoepman // Radboud University Nijmegen // 28-01-2019 // Course outline 12

  13. Fault tolerance: self stabilisation Jaap-Henk Hoepman // Radboud University Nijmegen // 28-01-2019 // Course outline 13

  14. Self-stabilisation n How could it be achieved? Jaap-Henk Hoepman // Radboud University Nijmegen // 28-01-2019 // Course outline 14

  15. Meta-knowledge n Distributed algorithms ● Modelling ● Reasoning ● Designing: “Algorithmics” n Global ‘emergent’ behaviour based on local decisions n The ‘forgotten’ security properties ● Availability ● Privacy Jaap-Henk Hoepman // Radboud University Nijmegen // 28-01-2019 // Course outline 15

  16. Questions? If not, let’s hit the road! * jhh@cs.ru.nl twitter: @xotoxot 8 blog.xot.nl 8 www.cs.ru.nl/~jhh Jaap-Henk Hoepman // Radboud University Nijmegen // 16 28-01-2019 // Course outline

  17. Basics of distributed algorithms

  18. Distributed algorithms are everywhere! n Computer networks n Multi-threaded applications ● Message passing ● Shared memory / message passing ● Routing ● User interface ● DNS ● Browser loading page elements ● … ● Operating system ● Services ● Parallel processing Jaap-Henk Hoepman // Radboud University Nijmegen // 18 28-01-2019 // Course outline

  19. A distributed system has concurrency n Several processes ● Each executing actions sequentially n But working independently ● Individual actions on different processes may overlap in time ● Some actions may take much longer to complete than others n And order of actions on different processes not guaranteed Jaap-Henk Hoepman // Radboud University Nijmegen // 28-01-2019 // Course outline 19

  20. Concurrency: a basic example i := 1, j := 0, thread i := 2 end thread ; thread j := i end thread ; print j Assume for the moment this is an atomic operation n What will be the output of this simple program? n It depends ● Events never take place instantaneous ● Order of execution is not fixed; determined by scheduler Jaap-Henk Hoepman // Radboud University Nijmegen // 28-01-2019 // Course outline 20

  21. i := 1, A basic example: answer j := 0, thread i := 2 end thread ; thread j := i end thread ; n 0 print j n 1 n 2 Jaap-Henk Hoepman // Radboud University Nijmegen // 28-01-2019 // Course outline 21

  22. A slightly more complex example i := 1, j := 0, thread i := 2; print j end thread ; thread j := i; print j end thread ; n Again, what will be the output of this program? Jaap-Henk Hoepman // Radboud University Nijmegen // 28-01-2019 // Course outline 22

  23. A slightly more complex example: answer i := 1, } j := 0, 0 1 n 2 2 → 2 1- printj -1 2 f- i # ? thread i := 2; 2-1 → ' -1 1- j print j in 1- print , end thread ; n 0 2 e- innen ? , thread j := i; } } „ + nu ; ? print j end thread ; n 1 1 Er ? n 0 1?? ● Depends…. Jaap-Henk Hoepman // Radboud University Nijmegen // 28-01-2019 // Course outline 23

  24. i := 1, Indivisibility of events/atomicity j := 0, thread i := 2; print j O n If j:=i and print j are ‘indivisible’ end thread ; o thread j := i; ● Then 0 1 is not a possible output µ print j 1- printje - → 0 - ⇒ 1 1- prints -1 end thread ; 1- i. =L -1 ( i . , → 2 te is ' j 1- print ; 1- prints -1 tj : i -1 1 1- n If j:=i is a read of i followed by a write to j, or if print j is a read of j followed by writing the output to the screen ● Then 0 1 is a possible output i - c- prints .É Äj 0 → ' -1 c- i. =L 1- prints -1 ja Jaap-Henk Hoepman // Radboud University Nijmegen // 28-01-2019 // Course outline 24

  25. What about infinite executions? n Possible outputs: 1 11 i := 0; 01 611 001 thread while i == 0 0011 do print i ; 1 000 Note: indentation! 00011 print i end thread ; thread i := 1 end thread ; Jaap-Henk Hoepman // Radboud University Nijmegen // 25 28-01-2019 // Course outline

  26. Scheduling n Scheduler determines next action to be executed ● In a non-deterministic way ● An executed action is called an event n Note: scheduler is not a real system component ● It just models the influence of (external) factors on which action is executed n Fairness: ● A scheduler is fair if an action that is continuously enabled will always executed eventually ● So: the protocol on the previous slide will eventually terminate Jaap-Henk Hoepman // Radboud University Nijmegen // 28-01-2019 // Course outline 26

  27. Non determinism vs randomness Non-deterministic Random i := 0, i := 0, thread while i == 0 while i == 0 do print i; do i := random(0,1) ; print i print i We cannot say thread i := 1 anything about likelihood! Possible outputs: Possible outputs: 1 1 p = 0.5 01 01 p = 0.25 001 001 p = 0.125 0001 0001 p = 0.063 00001 00001 p = 0.031 Jaap-Henk Hoepman // Radboud University Nijmegen // 27 28-01-2019 // Course outline

  28. Modelling a distributed system n Node (aka process) ● Executes a sequence of actions ● Each action-execution is an event ● Communicates with other nodes through shared memory or message passing n Graph ! = ($, &) of nodes $ and edges & ● ( = $ the number of nodes ), * ∈ & if node ) can communicate data to * ● ● Graph can be directed or undirected Jaap-Henk Hoepman // Radboud University Nijmegen // 28-01-2019 // Course outline 28

  29. Some common topologies in ü : : ) • ✓ seiner ir completely • I connected a r STAR o ( no / l o o . I it I ' \ ° o o o r o o o - ← ~ A broadcast ° in try . Jaap-Henk Hoepman // Radboud University Nijmegen // 28-01-2019 // Course outline 29

  30. while truc Causality: Ordering events print J ← action do → → → - ← events printje printj ; - - Let , be the set of events, and let -, . ∈ , be events n Define the ‘happened before’ relation - → . as follows . n If - is executed before . by the same process, or ● IIIout (Message passing) If - is a send event whose value is received by receive event . , or ● variaties (Shared memory) If - is a write event whose value is read by read event .. ● → → ftp.nnti-lhodeb . Transitivity: if - → . and . → 1 then - → 1 i - n 1- i. 2-1 # j noden : ⑨ We assume - ↛ - n 1-1 1- te 1- r 2-1 : → If neither - → . nor . → - then they are concurrent: - ∥ . n We sometimes write . ↚ - to visually emphasise that . may precede - . - ● I shared µ - → . means that - can have a causal influence on . n vondst , ✓ { i -03 This is a irreflexive partial order over all events n 1- i. = 2-1 hoera : Defined by only looking what can externally be observed ● en readi -1 Does not depend on ‘global time’ 4- ik ● modekikker Extending the total order of events on each individual process ● bed Modelling a causal order among events ● Lies + i. ⇒ → ( Kro } 1- k raadt -1 Jaap-Henk Hoepman // Radboud University Nijmegen // 28-01-2019 // Course outline 30

  31. Execution n When we run a distributed system, the nodes execute their actions. This leads to ● a particular set of events , ● partially ordered using the happened before relation → ● Note: every run may result in a different set of events and a different order among them n This partial order can be extended to a total order ⇒ ● (There are often many different options) n ,, ⟹ is an execution of the system Jaap-Henk Hoepman // Radboud University Nijmegen // 28-01-2019 // Course outline 31

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

What is network security? Friends and enemies: Alice, Bob, Trudy What is network security?

What is network security? Friends and enemies: Alice, Bob, Trudy What is network security?

Network security Network security Foundations: what is security? cryptography Network Security Network Security authentication message integrity key distribution and certification Security in practice: Srinidhi Varadarajan

332 views • 6 slides
Economics of network security Harald Vranken 1 Economics of network security Note that

Economics of network security Harald Vranken 1 Economics of network security Note that

Advanced Network Security (2019-2020) Economics of network security Harald Vranken 1 Economics of network security Note that network in this lecture means Physical communication network (eg. Internet, telephony, fax, telegraph)

769 views • 49 slides
VoIP Security* Professor Patrick McDaniel CSE545 - Advanced Network Security Spring 2011

VoIP Security* Professor Patrick McDaniel CSE545 - Advanced Network Security Spring 2011

VoIP Security* Professor Patrick McDaniel CSE545 - Advanced Network Security Spring 2011 *Thanks to Prof. Angelos Keromytis for materials for these lecture slides. CSE545 - Advanced Network Security - Professor McDaniel Page 1 Example of

941 views • 34 slides
Network Security Network Security Srinidhi Varadarajan Network security Network security

Network Security Network Security Srinidhi Varadarajan Network security Network security

Network Security Network Security Srinidhi Varadarajan Network security Network security Foundations: what is security? cryptography authentication message integrity key distribution and certification Security in practice:

634 views • 36 slides
23-04-18 Advanced Network Security 3. Agreement and consensus I: concepts and protocols for

23-04-18 Advanced Network Security 3. Agreement and consensus I: concepts and protocols for

23-04-18 Advanced Network Security 3. Agreement and consensus I: concepts and protocols for crash failures Jaap-Henk Hoepman Digital Security (DS) Radboud University Nijmegen, the Netherlands @xotoxot // * jhh@cs.ru.nl // 8 www.cs.ru.nl/~jhh

115 views • 8 slides
Course Introduction Professor Patrick McDaniel CSE545 - Advanced Network Security Spring 2011

Course Introduction Professor Patrick McDaniel CSE545 - Advanced Network Security Spring 2011

Course Introduction Professor Patrick McDaniel CSE545 - Advanced Network Security Spring 2011 CSE545 - Advanced Network Security - Professor McDaniel Page 1 Network Security No really good definition, so we will accept the following for

419 views • 20 slides
Advanced Systems Security: Introduction to OS Security Trent Jaeger Systems and Internet

Advanced Systems Security: Introduction to OS Security Trent Jaeger Systems and Internet

Systems and Internet Infrastructure Security Network and Security Research Center Department of Computer Science and Engineering Pennsylvania State University, University Park PA Advanced Systems Security: Introduction to OS Security Trent

770 views • 28 slides
27/04/2017 Advanced Network Security 6. Self-stabilisation Jaap-Henk Hoepman Digital Security

27/04/2017 Advanced Network Security 6. Self-stabilisation Jaap-Henk Hoepman Digital Security

27/04/2017 Advanced Network Security 6. Self-stabilisation Jaap-Henk Hoepman Digital Security (DS) Radboud University Nijmegen, the Netherlands @xotoxot // * jhh@cs.ru.nl // 8 www.cs.ru.nl/~jhh Self-stabilisation: a different failure model n

754 views • 4 slides
Economics of network security Joeri de Ruiter Outline What economic (dis)incentves are at

Economics of network security Joeri de Ruiter Outline What economic (dis)incentves are at

Advanced Network Security Economics of network security Joeri de Ruiter Outline What economic (dis)incentves are at play in network security? Motiwatnnh exbaplesh Econoic principlesh for econoicsh of shecurity

610 views • 31 slides
Routing Security Security Solutions CSE598K/CSE545 - Advanced Network Security Prof. McDaniel -

Routing Security Security Solutions CSE598K/CSE545 - Advanced Network Security Prof. McDaniel -

312 views • 16 slides
Advanced Systems Security: Security-Enhanced Linux Trent Jaeger Systems and Internet

Advanced Systems Security: Security-Enhanced Linux Trent Jaeger Systems and Internet

Systems and Internet Infrastructure Security Network and Security Research Center Department of Computer Science and Engineering Pennsylvania State University, University Park PA Advanced Systems Security: Security-Enhanced Linux Trent

474 views • 26 slides
Advanced Systems Security: Linux Security Modules Trent Jaeger Systems and Internet

Advanced Systems Security: Linux Security Modules Trent Jaeger Systems and Internet

Systems and Internet Infrastructure Security Network and Security Research Center Department of Computer Science and Engineering Pennsylvania State University, University Park PA Advanced Systems Security: Linux Security Modules Trent

872 views • 30 slides
Advanced Systems Security: Hardware Security Trent Jaeger Systems and Internet

Advanced Systems Security: Hardware Security Trent Jaeger Systems and Internet

Systems and Internet Infrastructure Security Network and Security Research Center Department of Computer Science and Engineering Pennsylvania State University, University Park PA Advanced Systems Security: Hardware Security Trent Jaeger

703 views • 46 slides
Advanced Systems Security: Security Kernels Trent Jaeger Systems and Internet Infrastructure

Advanced Systems Security: Security Kernels Trent Jaeger Systems and Internet Infrastructure

Systems and Internet Infrastructure Security Network and Security Research Center Department of Computer Science and Engineering Pennsylvania State University, University Park PA Advanced Systems Security: Security Kernels Trent Jaeger

555 views • 35 slides
CSE 544 Advanced Systems Security Trent Jaeger Systems and Internet Infrastructure Security

CSE 544 Advanced Systems Security Trent Jaeger Systems and Internet Infrastructure Security

Systems and Internet Infrastructure Security Network and Security Research Center Department of Computer Science and Engineering Pennsylvania State University, University Park PA CSE 544 Advanced Systems Security Trent Jaeger Systems and

651 views • 28 slides
Advanced Network Security 6. Agreement and consensus II: Byzantine failures Jaap-Henk Hoepman

Advanced Network Security 6. Agreement and consensus II: Byzantine failures Jaap-Henk Hoepman

Advanced Network Security 6. Agreement and consensus II: Byzantine failures Jaap-Henk Hoepman Digital Security (DS) Radboud University Nijmegen, the Netherlands @xotoxot // * jhh@cs.ru.nl // 8 www.cs.ru.nl/~jhh Byzantine failures are real

477 views • 30 slides
Uncertainty, Default, and Risk (Welch, Chapter 06-A) Ivo Welch Maintained Assumptions Perfect

Uncertainty, Default, and Risk (Welch, Chapter 06-A) Ivo Welch Maintained Assumptions Perfect

Uncertainty, Default, and Risk (Welch, Chapter 06-A) Ivo Welch Maintained Assumptions Perfect Markets 1. No differences in opinion. 2. No taxes. 3. No transaction costs. 4. No big sellers/buyersinfinitely many clones that can buy or

819 views • 42 slides
Developing CSIRTs in Brazilian NREN RNP Mission: To promote the innovative use of advanced

Developing CSIRTs in Brazilian NREN RNP Mission: To promote the innovative use of advanced

Developing CSIRTs in Brazilian NREN RNP Mission: To promote the innovative use of advanced networks. Education and research community: Universities; National Libraries; Research Institutes; Museums; Teaching hospitals;

601 views • 44 slides
TTLink and Bias cables installation 4 l Extensive tests on TT-Link distribution by their fan-outs

TTLink and Bias cables installation 4 l Extensive tests on TT-Link distribution by their fan-outs

Status of TTLink and Wires bias cabling 1. Installation of the TTLink and Wire bias cables 2. Noise measurements using the TTLink 3. Tests to verify the impact on the noise measurements TPC WG WA104/ICARUS Technical Working Group Meeting

198 views • 8 slides
MC714: Sistemas Distribu dos Prof. Lucas Wanner Instituto de Computac ao, Unicamp

MC714: Sistemas Distribu dos Prof. Lucas Wanner Instituto de Computac ao, Unicamp

MC714: Sistemas Distribu dos Prof. Lucas Wanner Instituto de Computac ao, Unicamp Aula 1: Introduc ao e Fundamentos MC714 Sistemas Distrubu dos Professor Lucas Wanner lucas@ic.unicamp.br Hor ario Terc

585 views • 43 slides
Announcements HW4 is out! Due Thursday, July 12, 10 pm Midterm: Monday, July 16 in

Announcements HW4 is out! Due Thursday, July 12, 10 pm Midterm: Monday, July 16 in

CSE 331 Note Card Survey (Anonymous) Software Design and Implementation 1. Keep: What have I been doing well that I should continue doing? 2. Change: What is something I already do, but should change so I do it better? 3. Stop: What is one bad

402 views • 15 slides
Test-Driven Development (TDD) EECS3311 A: Software Design Fall 2018 C HEN -W EI W ANG DbC:

Test-Driven Development (TDD) EECS3311 A: Software Design Fall 2018 C HEN -W EI W ANG DbC:

Test-Driven Development (TDD) EECS3311 A: Software Design Fall 2018 C HEN -W EI W ANG DbC: Supplier DbC is supported natively in Eiffel for supplier : class ACCOUNT create make feature -- Attributes owner : STRING balance : INTEGER feature --

558 views • 37 slides
Searching on/Testing Encrypted Data Lecture 23 Searchable Encryption Searchable Encryption A

Searching on/Testing Encrypted Data Lecture 23 Searchable Encryption Searchable Encryption A

Searching on/Testing Encrypted Data Lecture 23 Searchable Encryption Searchable Encryption A test key T w that allows one to test if Dec SK (C) = w Searchable Encryption A test key T w that allows one to test if Dec SK (C) = w No other

1.62k views • 116 slides
Do gma 1 Deliverables from usability professionals must be highly usable Reports,

Do gma 1 Deliverables from usability professionals must be highly usable Reports,

Myths about usability testing Copies of Slides U X Day Graz 2013 F ive use rs will find 85% o f the usability pro ble ms Rolf Molich - and o the r myths abo ut DialogDesign usability te sting Do gma 1 Deliverables from

659 views • 18 slides

More recommend