introduction to network security security
play

Introduction to Network Security Security Chapter 1 Network - PDF document

Nov 02, 2022 •267 likes •464 views

Introduction to Network Security Security Chapter 1 Network Architecture Dr. Doug Jacobson - Introduction to 1 Network Security - 2009 Chapter Topics Introduction Layered architecture Key terms Key terms Protocol

  1. Introduction to Network Security Security Chapter 1 Network Architecture Dr. Doug Jacobson - Introduction to 1 Network Security - 2009 Chapter Topics • Introduction • Layered architecture • Key terms • Key terms • Protocol Functions • OSI model • TCP/IP Model Dr. Doug Jacobson - Introduction to 2 Network Security - 2009

  2. Course Overview • Protocols • Protocol Implementations • Security Issues • Security Issues • Performance Issues • Several programming assignments – packet sniffer – spam email Dr. Doug Jacobson - Introduction to 3 Network Security - 2009 1840 1844 First Telegraph line 1861 Over 2200 telegraph offices 1866 First transatlantic cable 1875 First words on a telephone History of Networking 1880 over 30,000 phones 1900 1900 over 600,000 phones 1910 over 5,000,000 phones 1920 over 11,000,000 phones 1950s Point-to-point network to main frames 1960 1968 300 baud modem 1969 ARPA NET (4 nodes) 1970 1971 15 nodes in APRANET 1973 TCP/IP development 1973 Ethernet was proposal in a Ph.D. Dissertation 1977 TCP/IP test bed 1979 UUCPnet 1979 UUCPnet 1980 1980 ARPANET virus (accidental) 1983 TCP/IP becomes the protocol for ARPANET 1984 over 1000 hosts 1986 NSFNET is started 1987 over 10,000 hosts 1988 Internet worm infects over 6,000 hosts 1989 over 100,000 hosts 1990 1991 WWW released by CERN 1992 over 1,000,000 hosts 1995 First ISPs started Dr. Doug Jacobson - Introduction to 4 1996 over 10,000,000 hosts Network Security - 2009 2000

  3. Layered Architecture Protocol Application Application Protocol Protocol Network Services Network Services Communications Network Dr. Doug Jacobson - Introduction to 5 Network Security - 2009 Layered Architecture SAP Service Access Points Protocol Layer N Layer N Layer N Layer N Protocol Layer N-1 Layer N-1 Dr. Doug Jacobson - Introduction to 6 Network Security - 2009

  4. Layered Architecture • Brought about because of a need for standards • Layers: – take information from above (layer N-1) – and pass information below (layer N+1) • The services are provided through the service access • The services are provided through the service access points (SAPs) • Layer functionality is implemented through an entity • Each layer contains one or more entities which are responsible for providing services to the N+1 layer Dr. Doug Jacobson - Introduction to 7 Network Security - 2009 Layered Architecture • In order for layers to carry out functions, they need to communicate • A layer N entity may need to communicate with another layer N entity, which does not with another layer N entity, which does not reside on the same system, to provide the service. • The layer N entity uses the layer N-1 services to communicate with the remote layer N entity. Dr. Doug Jacobson - Introduction to 8 Network Security - 2009

  5. Layered Architecture Rcv_data Send_data Rcv_data Send_data Protocol A Layer Layer A A Send_packet Send_packet Rcv_packet Rcv_packet Protocol B Layer Layer B B Dr. Doug Jacobson - Introduction to 9 Network Security - 2009 Layered Architecture • PROTOCOLS are the rules that have been defined for the layer N to layer N communication. • They represent extra information – example: saying “hello” on the telephone is a protocol • Protocols indicate when to send data, what language to use, etc. • A layer specification defines – what protocol it uses – what it expects as input (SAPs) – what functions it provides • Layer specifications allow multiple vendors to have the same functionality . – (ie: different ethernet card brands) Dr. Doug Jacobson - Introduction to 10 Network Security - 2009

  6. Protocol Data Unit • Protocol Data Unit (PDU) is the combination of data from the higher layer and the protocol or control information. • The protocol or control information created by a layer is called the header. by a layer is called the header. • Each layer adds it’s own header Data Layer 1 H1 D1 H1 D2 Layer 2 H2 H1 D1 H2 H1 D2 Dr. Doug Jacobson - Introduction to 11 Network Security - 2009 Control Information Encapsulation Data Data Protocol A Layer Layer A A Data AH Data AH AH Data Data AH Protocol B Layer Layer B B Data Data BH AH BH AH AH Data BH Data BH AH Dr. Doug Jacobson - Introduction to 12 Network Security - 2009

  7. Key Terms • The protocol defines the rules for PEER entity communication • Service Access Points (SAP) specify how the N entity communicates with the N-1 entity. N entity communicates with the N-1 entity. • Services are provided by the N entity to the N+1 entity • Functions are provided by the entity in coordination with the peer entity. Dr. Doug Jacobson - Introduction to 13 Network Security - 2009 Basic Functions of a Protocol 1. Segmentation and reassembly: – Often physical media or error control issues dictate a maximum data size – Therefore the data must be divided into smaller – Therefore the data must be divided into smaller packets ( Segmentation ) – And eventually put back together ( Reassembly) – Reassembly instructions are included in the header Dr. Doug Jacobson - Introduction to 14 Network Security - 2009

  8. Basic Functions of a protocol 2. Encapsulation: The addition of control information to the data element in the form of a header. • Address: The address of the sender and/or receiver. • Error Detection Code: Some sort of code is often included for error detection. • Protocol Control: Additional information needed to implement the protocol. Dr. Doug Jacobson - Introduction to 15 Network Security - 2009 Basic functions of a protocol 3. Connection Control: – Connectionless Data Transfer • Data is transferred without prior coordination • Data is transferred without prior coordination • No set path – Connection-oriented Data Transfer • A logical association, or Connection , is established between entities before any data is transferred • Example: telephone Dr. Doug Jacobson - Introduction to 16 Network Security - 2009

  9. Connection oriented • The three phases of Connection Control – request/connect phase – request/connect phase – data transfer phase – terminate phase Dr. Doug Jacobson - Introduction to 17 Network Security - 2009 Basic Functions of a protocol 4. Ordered Delivery – Pieces arrive in the same order as sent – Not provided by connectionless protocols – Not provided by connectionless protocols – Not required to be provided by Connection -oriented protocols, but it is common for most. (needed for file transfer) Dr. Doug Jacobson - Introduction to 18 Network Security - 2009

  10. Basic Functions of a protocol 5. Flow Control: – Technique for assuring that the transmitting entity does not overwhelm a transmitting entity does not overwhelm a receiving entity. – Flow Control is typically implemented in several layers. – Flow control is found in most connection- oriented protocols Dr. Doug Jacobson - Introduction to 19 Network Security - 2009 Basic Functions of a protocol 6. Error Control: – Technique that allows a protocol to recover from lost or damaged PDUs. from lost or damaged PDUs. – Three mechanisms: • Positive acknowledgment • Retransmit after timeout • Error detection Dr. Doug Jacobson - Introduction to 20 Network Security - 2009

  11. Basic Functions of a protocol 7. Multiplexing: – Upward Multiplexing occurs when multiple higher level connections are multiplexed on a single lower level connection. Example: many applications utilize TCP (telnet, ftp, email) – Downward Multiplexing occurs when a single higher level connection is multiplexed on multiple lower level connections. (not as common) – Addressing is needed to support multiplexing Dr. Doug Jacobson - Introduction to 21 Network Security - 2009 Multiplexing A1 Data A2 Data A3 Data Protocol A1 Protocol A2 Layer Layer Layer A2 A1 A3 Protocol A3 A1 Data Protocol B Layer A2 B A3 Data BH A1 A2 BH BH A3 Dr. Doug Jacobson - Introduction to 22 Network Security - 2009

  12. Phone System Caller Called Central Offices Party Protocol Pickup Receiver Time Dial Tone Example Dial Number (part 1) Ring the phone Ring tone Pickup Receiver Stop ring tone Calling party Called party Conversion Answers says something (see diagram below) Either party Either party can hang up can hang up Dial Tone Dial Tone Dial Number Busy Signal Dr. Doug Jacobson - Introduction to 23 Network Security - 2009 Protocol Example (part 2) Hello Is John there? Yes, this is John Conversation Good bye, John Good Bye Dr. Doug Jacobson - Introduction to 24 Network Security - 2009

  13. OSI Model • Application • Presentation • Session • Session • Transport • Network • Data Link • Physical Dr. Doug Jacobson - Introduction to 25 Network Security - 2009 Physical Layer • Responsible for the transparent transmission of bit streams across the physical interconnection of systems • Two configurations: – Point-to-point – Multipoint – Multipoint • Physical layer must provide the data link entities with a means to identify the end point. • Physical connection can be Full Duplex or Half Duplex • Physical connection can be either bit serial or N bit parallel • Physical layer must deliver the bits in the same order in which they were offered for transmission by the Data Link Layer. Dr. Doug Jacobson - Introduction to 26 Network Security - 2009

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

What is network security? Friends and enemies: Alice, Bob, Trudy What is network security?

What is network security? Friends and enemies: Alice, Bob, Trudy What is network security?

Network security Network security Foundations: what is security? cryptography Network Security Network Security authentication message integrity key distribution and certification Security in practice: Srinidhi Varadarajan

332 views • 6 slides
Network Security Network Security Srinidhi Varadarajan Network security Network security

Network Security Network Security Srinidhi Varadarajan Network security Network security

Network Security Network Security Srinidhi Varadarajan Network security Network security Foundations: what is security? cryptography authentication message integrity key distribution and certification Security in practice:

634 views • 36 slides
Foundations of Network and Foundations of Network and Computer Security Computer Security J ohn

Foundations of Network and Foundations of Network and Computer Security Computer Security J ohn

Foundations of Network and Foundations of Network and Computer Security Computer Security J ohn Black J CSCI 6268/TLEN 5831, Fall 2004 Introduction UC Davis PhD in 2000 Cryptography Interested in broader security as well

492 views • 12 slides
Introduction to Network Security Security Chapter 5 Physical Network Layer Dr. Doug Jacobson -

Introduction to Network Security Security Chapter 5 Physical Network Layer Dr. Doug Jacobson -

Introduction to Network Security Security Chapter 5 Physical Network Layer Dr. Doug Jacobson - Introduction to 1 Network Security - 2009 Topics Lower Layer Security Physical Layer Overview Common attack methods Ethernet

966 views • 40 slides
Introduction to Network Security Chapter 10 Web Security Dr. Doug Jacobson - Introduction to 1

Introduction to Network Security Chapter 10 Web Security Dr. Doug Jacobson - Introduction to 1

Introduction to Network Security Chapter 10 Web Security Dr. Doug Jacobson - Introduction to 1 Network Security - 2009 Topics WWW HTTP: Hyper Text Transfer Protocol HTTP Security HTML Protocol HTML Security

1.09k views • 74 slides
Introduction to Network Security Security Chapter 7 Transport Layer Protocols Dr. Doug

Introduction to Network Security Security Chapter 7 Transport Layer Protocols Dr. Doug

Introduction to Network Security Security Chapter 7 Transport Layer Protocols Dr. Doug Jacobson - Introduction to 1 Network Security - 2009 Topics TCP Layer Responsible for reliable end-to-end transfer of application data.

632 views • 32 slides
INTRODUCTION COMPUTER & NETWORK SECURITY CMSC 414 JAN 25 2018 TODAY What is

INTRODUCTION COMPUTER & NETWORK SECURITY CMSC 414 JAN 25 2018 TODAY What is

INTRODUCTION COMPUTER & NETWORK SECURITY CMSC 414 JAN 25 2018 TODAY What is security? Why is it so hard to achieve? Administrative The security mindset Analyzing a systems security 1. Summarize the system 2.

801 views • 43 slides
Network Security Where we are in the Course Security crosses all layers Application

Network Security Where we are in the Course Security crosses all layers Application

Network Security Where we are in the Course Security crosses all layers Application Transport Network Link Physical CSE 461 University of Washington 2 Security Threats Security is like performance Means many things

374 views • 13 slides
Network Security Where we are in the Course Security crosses all layers Application

Network Security Where we are in the Course Security crosses all layers Application

Network Security Where we are in the Course Security crosses all layers Application Transport Network Link Physical CSE 461 University of Washington 2 Security Threats Security is like performance Means many things

932 views • 55 slides
Network Security Where we are in the Course Security crosses all layers Applicatjon

Network Security Where we are in the Course Security crosses all layers Applicatjon

Network Security Where we are in the Course Security crosses all layers Applicatjon Transport Network Link Physical CSE 461 University of Washington 2 Security Threats Security is like performance Means many things

1.12k views • 92 slides
Introduction to Network Security Security Chapter 11 Remote Access Security Dr. Doug Jacobson

Introduction to Network Security Security Chapter 11 Remote Access Security Dr. Doug Jacobson

Introduction to Network Security Security Chapter 11 Remote Access Security Dr. Doug Jacobson - Introduction to 1 Network Security - 2009 Topics Remote Access Telnet Rlogin X-Windows X-Windows FTP General

765 views • 52 slides
Introduction to Network Security Chapter 4 Taxonomy of Network-Based Vulnerabilities Dr. Doug

Introduction to Network Security Chapter 4 Taxonomy of Network-Based Vulnerabilities Dr. Doug

Introduction to Network Security Chapter 4 Taxonomy of Network-Based Vulnerabilities Dr. Doug Jacobson - Introduction to 1 Network Security - 2009 Topics Network Security Model Header attacks Protocol Attacks

597 views • 25 slides
Introduction to Network Security Chapter 11 Remote Access Security Dr. Doug Jacobson -

Introduction to Network Security Chapter 11 Remote Access Security Dr. Doug Jacobson -

Introduction to Network Security Chapter 11 Remote Access Security Dr. Doug Jacobson - Introduction to 1 Network Security - 2009 Topics Remote Access Telnet Rlogin X-Windows FTP General Countermeasures

1.48k views • 104 slides
Intro, history, hacking Network Security Lecture 1 Welcome to Network Security Should be able

Intro, history, hacking Network Security Lecture 1 Welcome to Network Security Should be able

Intro, history, hacking Network Security Lecture 1 Welcome to Network Security Should be able to Skills identify design and Ability to analyze the implementation security of networked vulnerabilities in network systems protocols

564 views • 33 slides
Economics of network security Harald Vranken 1 Economics of network security Note that

Economics of network security Harald Vranken 1 Economics of network security Note that

Advanced Network Security (2019-2020) Economics of network security Harald Vranken 1 Economics of network security Note that network in this lecture means Physical communication network (eg. Internet, telephony, fax, telegraph)

769 views • 49 slides
Introduction to Network Security Chapter 5 Physical Network Layer Dr. Doug Jacobson -

Introduction to Network Security Chapter 5 Physical Network Layer Dr. Doug Jacobson -

Introduction to Network Security Chapter 5 Physical Network Layer Dr. Doug Jacobson - Introduction to 1 Network Security - 2009 Topics Lower Layer Security Physical Layer Overview Common attack methods Ethernet

1.01k views • 80 slides
Overview TCP/IP Securing TCP/IP Open Systems Interconnection Model Anatomy of a Packet

Overview TCP/IP Securing TCP/IP Open Systems Interconnection Model Anatomy of a Packet

Overview TCP/IP Securing TCP/IP Open Systems Interconnection Model Anatomy of a Packet Internet Protocol Security (IPSec) Chapter 6 Web Security (HTTP over TLS, Secure-HTTP) Lecturer: Pei-yih Ting 1 2 Introduction to TCP/IP

445 views • 8 slides
COMP 431 The Transport Layer Internet Services & Protocols Transport services and protocols

COMP 431 The Transport Layer Internet Services & Protocols Transport services and protocols

COMP 431 The Transport Layer Internet Services & Protocols Transport services and protocols application Transport protocols: transport Provide logical communication The Transport Layer network between application processes data

227 views • 8 slides
Server Software Design Prof. Chuan-Ming Liu Computer Science and Information Engineering

Server Software Design Prof. Chuan-Ming Liu Computer Science and Information Engineering

Mobile Computing & Software Engineering Lab Mobile Computing & Software Engineering Lab Server Software Design Prof. Chuan-Ming Liu Computer Science and Information Engineering National Taipei University of Technology Taipei, TAIWAN

806 views • 55 slides
Interprocess Communication Mechanisms shared storage These mechanisms have already been

Interprocess Communication Mechanisms shared storage These mechanisms have already been

Interprocess Communication 1 Interprocess Communication Mechanisms shared storage These mechanisms have already been covered. examples: shared virtual memory shared files processes must agree on a name (e.g., a file name, or a

563 views • 32 slides
1 Chapter 3 outline Multiplexing/demultiplexing Multiplexing at send host: Demultiplexing at

1 Chapter 3 outline Multiplexing/demultiplexing Multiplexing at send host: Demultiplexing at

Chapter 3: Transport Layer Our goals: Transport Layer understand learn about transport principles behind layer protocols in the transport layer Internet: services: UDP: connectionless multiplexing/ transport

479 views • 10 slides
IP : Internet Protocol Surasak Sanguanpong nguan@ku.ac.th http://www.cpe.ku.ac.th/~nguan Last

IP : Internet Protocol Surasak Sanguanpong nguan@ku.ac.th http://www.cpe.ku.ac.th/~nguan Last

1/20 IP : Internet Protocol Surasak Sanguanpong nguan@ku.ac.th http://www.cpe.ku.ac.th/~nguan Last updated: July 30, 1999 Applied Network Research Group Department of Computer Engineering, Kasetsart University

263 views • 10 slides
Server types concurrent, connectionless very uncommon a process is created for each

Server types concurrent, connectionless very uncommon a process is created for each

TCP week 8 5/12/02 1 Clients & Servers Client: in general, an application that initiates a peer-to-peer communication end users usually invoke client software Server: waits for incoming communication requests from a client

552 views • 7 slides
Towards 5G: Advancements from IoT to mmWave Communcations Next Generation and Standards

Towards 5G: Advancements from IoT to mmWave Communcations Next Generation and Standards

Towards 5G: Advancements from IoT to mmWave Communcations Next Generation and Standards Princeton IEEE 5G Summit May 26, 2015 5G requirements and challenges Long range, small 1000x network data, energy capacity efficient 10x

766 views • 15 slides

More recommend