introduction to security
play

Introduction to Security Attacks Services Mechanisms CSS441: - PowerPoint PPT Presentation

Oct 22, 2023 •434 likes •678 views

CSS441 Introduction Concepts Architecture Introduction to Security Attacks Services Mechanisms CSS441: Security and Cryptography Sirindhorn International Institute of Technology Thammasat University Prepared by Steven Gordon on 20

  1. CSS441 Introduction Concepts Architecture Introduction to Security Attacks Services Mechanisms CSS441: Security and Cryptography Sirindhorn International Institute of Technology Thammasat University Prepared by Steven Gordon on 20 December 2015 css441y15s2l01, Steve/Courses/2015/s2/css441/lectures/introduction-to-security.tex, r4295 1/23

  2. CSS441 Contents Introduction Concepts Computer Security Concepts Architecture Attacks Services Mechanisms The OSI Security Architecture Security Attacks Security Services Security Mechanisms 2/23

  3. CSS441 What Is Security? Introduction Computer Security Concepts Architecture The protection afforded to an automated Attacks information system in order to attain the applicable Services objectives of preserving the integrity, availability, Mechanisms and confidentiality of information system resources. NIST Computer Security Handbook Network and Internet Security Measures to deter, prevent, detect, and correct security violations that involve transmission of information. Stallings, Cryptography and Network Security 3/23

  4. CSS441 Key Security Concepts Introduction Concepts Architecture Attacks Services Mechanisms Others: Authenticity, Accountability Credit: Figure 1.1 in Stallings, Cryptography and Network Security , 5th Ed., Pearson 2011 4/23

  5. CSS441 Impact of Security Breaches Introduction How do security breaches impact organisations? Concepts ◮ Effectiveness of primary operations are reduced Architecture ◮ Financial loss Attacks Services ◮ Damage to assets Mechanisms ◮ Harm to individuals Different levels of impact. E.g. FIPS Publication 199 defines: Low/Minor, Moderate/Significant, High/Severe 5/23

  6. CSS441 Contents Introduction Concepts Computer Security Concepts Architecture Attacks Services Mechanisms The OSI Security Architecture Security Attacks Security Services Security Mechanisms 6/23

  7. CSS441 ITU-T X.800 Security Architecture for OSI Introduction ◮ Systematic approach to define requirements for security Concepts and approaches to satisfying those requirements Architecture ◮ ITU-T Recommendation X.800, Security Architecture Attacks for OSI Services Mechanisms ◮ Provides abstract view of main issues of security ◮ Security aspects: Attacks, mechanisms and services ◮ Terminology: ◮ Threat: potential violation of security ◮ Attack: assault on system security derived from intelligent threat 7/23

  8. CSS441 Aspects of Security Introduction Security Attack Concepts Architecture Any action that attempts to compromise the security of Attacks information or facilities Services ◮ Threat: potential for violation of security of information Mechanisms or facilities Security Mechanism A method for preventing, detecting or recovering from an attack Security Service Uses security mechanisms to enhance the security of information or facilities in order to stop attacks 8/23

  9. CSS441 Contents Introduction Concepts Computer Security Concepts Architecture Attacks Services Mechanisms The OSI Security Architecture Security Attacks Security Services Security Mechanisms 9/23

  10. CSS441 Types of Attacks Introduction Passive Attack Concepts Architecture ◮ Make use of information, but not affect system Attacks resources, e.g. Services 1. Release message contents Mechanisms 2. Traffic analysis ◮ Relatively hard to detect, but easier to prevent Active Attack ◮ Alter system resources or operation, e.g. 1. Masquerade 2. Replay 3. Modification 4. Denial of service ◮ Relatively hard to prevent, but easier to detect 10/23

  11. CSS441 Release Message Contents Introduction Concepts Architecture Attacks Services Mechanisms Credit: Figure 1.2(a) in Stallings, Cryptography and Network Security , 5th Ed., Pearson 2011 11/23

  12. CSS441 Traffic Analysis Introduction Concepts Architecture Attacks Services Mechanisms Credit: Figure 1.2(b) in Stallings, Cryptography and Network Security , 5th Ed., Pearson 2011 12/23

  13. CSS441 Masquerade Attack Introduction Concepts Architecture Attacks Services Mechanisms Credit: Figure 1.3(a) in Stallings, Cryptography and Network Security , 5th Ed., Pearson 2011 13/23

  14. CSS441 “On the Internet, nobody knows you’re a dog” Introduction Concepts Architecture Attacks Services Mechanisms 14/23 Credit: Peter Steiner, c � The New Yorker magazine

  15. CSS441 Replay Attack Introduction Concepts Architecture Attacks Services Mechanisms Credit: Figure 1.3(b) in Stallings, Cryptography and Network Security , 5th Ed., Pearson 2011 15/23

  16. CSS441 Modification Attack Introduction Concepts Architecture Attacks Services Mechanisms Credit: Figure 1.3(c) in Stallings, Cryptography and Network Security , 5th Ed., Pearson 2011 16/23

  17. CSS441 Denial of Service Attack Introduction Concepts Architecture Attacks Services Mechanisms Credit: Figure 1.3(d) in Stallings, Cryptography and Network Security , 5th Ed., Pearson 2011 17/23

  18. CSS441 Contents Introduction Concepts Computer Security Concepts Architecture Attacks Services Mechanisms The OSI Security Architecture Security Attacks Security Services Security Mechanisms 18/23

  19. CSS441 Defining a Security Service Introduction ◮ ITU-T X.800: service that is provided by a protocol Concepts layer of communicating systems and that ensures Architecture adequate security of the systems or of data transfers Attacks ◮ IETF RFC 2828: a processing or communication service Services that is provided by a system to give a specific kind of Mechanisms protection to system resources ◮ Security services implement security policies and are implemented by security mechanisms 19/23

  20. CSS441 Security Services Introduction 1. Authentication Assure that the communicating entity is Concepts the one that it claims to be. (Peer entity and data Architecture origin authentication) Attacks 2. Access Control Prevent unauthorised use of a resource Services Mechanisms 3. Data Confidentiality Protect data from unauthorised disclosure 4. Data Integrity Assure data received are exactly as sent by authorised entity 5. Non-repudiation Protect against denial of one entity involved in communications of having participated in communications 6. Availability System is accessible and usable on demand by authorised users according to intended goal 20/23

  21. CSS441 Contents Introduction Concepts Computer Security Concepts Architecture Attacks Services Mechanisms The OSI Security Architecture Security Attacks Security Services Security Mechanisms 21/23

  22. CSS441 Security Mechanisms Introduction ◮ Techniques designed to prevent, detect or recover from Concepts attacks Architecture ◮ No single mechanism can provide all services Attacks Services ◮ Common in most mechanisms: cryptographic techniques Mechanisms ◮ Specific security mechanisms from ITU-T X.800: Encipherment, digital signature, access control, data integrity, authentication exchange, traffic padding, routing control, notarisation ◮ Pervasive security mechanisms from ITU-T X.800: Trusted functionality, security label, event detection, security audit trail, security recovery 22/23

  23. CSS441 Security Services and Mechanisms Introduction Concepts Architecture Attacks Services Mechanisms Credit: Table 1.4 in Stallings, Cryptography and Network Security , 5th Ed., Pearson 2011 23/23

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

A (re)introduction to Spring Security Agenda Before Spring Security: Acegi security

A (re)introduction to Spring Security Agenda Before Spring Security: Acegi security

A (re)introduction to Spring Security Agenda Before Spring Security: Acegi security Introducing Spring Security View layer security Whats coming in Spring Security 3 E-mail: craig@habuma.com Blog: http://www.springloaded.info

452 views • 19 slides
INTRODUCTION cf. Schneider, Chapter 1 INTRODUCTION THEY ARE OUT TO GET YOU INTRODUCTION WHAT

INTRODUCTION cf. Schneider, Chapter 1 INTRODUCTION THEY ARE OUT TO GET YOU INTRODUCTION WHAT

ADVANCED COMPUTER SECURITY INTRODUCTION cf. Schneider, Chapter 1 INTRODUCTION THEY ARE OUT TO GET YOU INTRODUCTION WHAT IS SECURITY? A systems security policies describe What the system is supposed to do Store and provide access

479 views • 16 slides
Introduction to the Introduction to the Work of the Security Council Work of the Security

Introduction to the Introduction to the Work of the Security Council Work of the Security

Introduction to the Introduction to the Work of the Security Council Work of the Security Council Security Council Practices and Charter Research Branch Security Council Affairs Division Department of Political Affairs United Nations August

490 views • 28 slides
Introduction to Security Comm. Security Strategy Summary ITS335: IT Security Sirindhorn

Introduction to Security Comm. Security Strategy Summary ITS335: IT Security Sirindhorn

ITS335 Intro. to Security Concepts Threats, Attacks, Assets Introduction to Security Comm. Security Strategy Summary ITS335: IT Security Sirindhorn International Institute of Technology Thammasat University Prepared by Steven Gordon on 2

965 views • 34 slides
Introduction to the Introduction to the Work of the Security Council Work of the Security

Introduction to the Introduction to the Work of the Security Council Work of the Security

Introduction to the Introduction to the Work of the Security Council Work of the Security Council Security Council Affairs Division Department of Political Affairs United Nations August 2013 Outline What is the Security Council?

189 views • 16 slides
Chapter7. Security 7.1 Introduction 7.2 Overview of security techniques 7.3 Cryptographic

Chapter7. Security 7.1 Introduction 7.2 Overview of security techniques 7.3 Cryptographic

Chapter7. Security 7.1 Introduction 7.2 Overview of security techniques 7.3 Cryptographic algorithms 7.4 Digital signatures 7.5 Cryptography pragmatics 7.1. Introduction Why need security mechanisms in DS? Share of resources

364 views • 24 slides
Confidentiality and disclosure Mohamed Sayed Saidngar@yahoo.com Introduction - Introduction to

Confidentiality and disclosure Mohamed Sayed Saidngar@yahoo.com Introduction - Introduction to

Confidentiality and disclosure Mohamed Sayed Saidngar@yahoo.com Introduction - Introduction to data security. - Security requirements. - Types of security threats. - Security risks. - Technologies and security solutions. Introduction

411 views • 37 slides
Introduction to Network Security Chapter 10 Web Security Dr. Doug Jacobson - Introduction to 1

Introduction to Network Security Chapter 10 Web Security Dr. Doug Jacobson - Introduction to 1

Introduction to Network Security Chapter 10 Web Security Dr. Doug Jacobson - Introduction to 1 Network Security - 2009 Topics WWW HTTP: Hyper Text Transfer Protocol HTTP Security HTML Protocol HTML Security

1.09k views • 74 slides
Advanced Systems Security: Introduction to OS Security Trent Jaeger Systems and Internet

Advanced Systems Security: Introduction to OS Security Trent Jaeger Systems and Internet

Systems and Internet Infrastructure Security Network and Security Research Center Department of Computer Science and Engineering Pennsylvania State University, University Park PA Advanced Systems Security: Introduction to OS Security Trent

770 views • 28 slides
Security Overview Security Goals The Attack Space Security Mechanisms

Security Overview Security Goals The Attack Space Security Mechanisms

CSCE Intro to Computer Systems Security Security Overview Security Goals The Attack Space Security Mechanisms Introduction to Cryptography Authentication Authorization Confidentiality Case Studies Security

472 views • 20 slides
Introduction to Computer Security Rev. Sept 2015 What is Computer Security? 2 Computer

Introduction to Computer Security Rev. Sept 2015 What is Computer Security? 2 Computer

Introduction to Computer Security Rev. Sept 2015 What is Computer Security? 2 Computer Security is the protection of computing systems and the data that they store or access 3 Why is Computer Security Important? Computer Security allows

690 views • 19 slides
Introduction to Computer Security Why do we need computer security? What are our goals and

Introduction to Computer Security Why do we need computer security? What are our goals and

Introduction to Computer Security Why do we need computer security? What are our goals and what threatens them? Lecture 1 Page 1 CS 236 Online Why Is Security Necessary? Because people arent always nice Because a lot of

415 views • 25 slides
Preparing for the Unthinkable Cyber Security Chicago 2018 Agenda Introduction Security

Preparing for the Unthinkable Cyber Security Chicago 2018 Agenda Introduction Security

Preparing for the Unthinkable Cyber Security Chicago 2018 Agenda Introduction Security Landscape Meraki Security Demo Security Landscape The Growing Importance of Security MALWARE HAS RISEN BY MORE THAN 10X IN THE LAST YEAR 70% M ALW AR E

604 views • 35 slides
Com puter Security Last tim e Introduction Threat analysis Threats Introduction

Com puter Security Last tim e Introduction Threat analysis Threats Introduction

Com puter Security Last tim e Introduction Threat analysis Threats Introduction to access control Policy matrix Specification Design Implementation Operation and Maintenance Security in the Course Lectures

784 views • 40 slides
Software Defjned Networking Security Outline Introduction What is SDN? SDN attack

Software Defjned Networking Security Outline Introduction What is SDN? SDN attack

Software Defjned Networking Security Outline Introduction What is SDN? SDN attack surface Recent vulnerabilities Security response Defensive technologies Next steps Introduction Security nerd, recovering

790 views • 39 slides
INTRODUCTION COMPUTER & NETWORK SECURITY CMSC 414 JAN 25 2018 TODAY What is

INTRODUCTION COMPUTER & NETWORK SECURITY CMSC 414 JAN 25 2018 TODAY What is

INTRODUCTION COMPUTER & NETWORK SECURITY CMSC 414 JAN 25 2018 TODAY What is security? Why is it so hard to achieve? Administrative The security mindset Analyzing a systems security 1. Summarize the system 2.

801 views • 43 slides
Handout 7 Summary of this handout: Key Exchange Protocols Wide-Mouth Frog Needham-Schroeder

Handout 7 Summary of this handout: Key Exchange Protocols Wide-Mouth Frog Needham-Schroeder

06-20008 Cryptography The University of Birmingham Autumn Semester 2012 School of Computer Science Eike Ritter 8 November, 2012 Handout 7 Summary of this handout: Key Exchange Protocols Wide-Mouth Frog Needham-Schroeder Kerberos

477 views • 10 slides
Comprehensive Privacy Analysis of Deep Learning: Passive and Active White-box Inference

Comprehensive Privacy Analysis of Deep Learning: Passive and Active White-box Inference

Comprehensive Privacy Analysis of Deep Learning: Passive and Active White-box Inference Attacks against Centralized and Federated Learning Milad Nasr 1 , Reza Shokri 2 , Amir Houmansadr 1 1 University of Massachusetts Amherst, 2 National

568 views • 29 slides
Computer Security 3e Dieter Gollmann Security.di.unimi.it/sicurezza1516/ Chapter 16: 1 Chapter

Computer Security 3e Dieter Gollmann Security.di.unimi.it/sicurezza1516/ Chapter 16: 1 Chapter

Computer Security 3e Dieter Gollmann Security.di.unimi.it/sicurezza1516/ Chapter 16: 1 Chapter 16: Communications Security Chapter 16: 2 Agenda Threat model Secure tunnels Protocol design principles IPsec SSL/TLS EAP

899 views • 56 slides
DefRec: Establishing Physical Function Virtualization to Disrupt Reconnaissance of Power Grids

DefRec: Establishing Physical Function Virtualization to Disrupt Reconnaissance of Power Grids

DefRec: Establishing Physical Function Virtualization to Disrupt Reconnaissance of Power Grids Cyber-Physical Infrastructures Hui Lin 1 , Jianing Zhuang 1 , Yih-Chun Hu 2 , Huayu Zhou 1 1 University of Nevada, Reno 2 University of Illinois,

574 views • 33 slides
Contents Introduction to data security Public key cryptosystems: Classical

Contents Introduction to data security Public key cryptosystems: Classical

Contents Introduction to data security Public key cryptosystems: Classical cryptosystems RSA Introduction to modern Prime number generation cryptography Polynomial arithmetic T-79.159 Block ciphers: DES, IDEA,

439 views • 15 slides
De-anonymizing Data CompSci 590.03 Instructor: Ashwin Machanavajjhala Lecture 2 : 590.03 Fall 12

De-anonymizing Data CompSci 590.03 Instructor: Ashwin Machanavajjhala Lecture 2 : 590.03 Fall 12

Source (http://xkcd.org/834/) De-anonymizing Data CompSci 590.03 Instructor: Ashwin Machanavajjhala Lecture 2 : 590.03 Fall 12 1 Announcements Project ideas will be posted on the site by Friday. You are welcome to send me (or talk to

763 views • 65 slides
Active Adversary Lecture 7 CCA Security MAC Active Adversary Active Adversary An active

Active Adversary Lecture 7 CCA Security MAC Active Adversary Active Adversary An active

Active Adversary Lecture 7 CCA Security MAC Active Adversary Active Adversary An active adversary can inject messages into the channel Active Adversary An active adversary can inject messages into the channel Eve can send ciphertexts to Bob

2.08k views • 160 slides
BotNets BotNets- Cybe Cyber T r Torrirism orrirism Ba Batt ttling ling th the t e thr

BotNets BotNets- Cybe Cyber T r Torrirism orrirism Ba Batt ttling ling th the t e thr

BotNets BotNets- Cybe Cyber T r Torrirism orrirism Ba Batt ttling ling th the t e thr hrea eats ts of inte of intern rnet et Assoc. Prof. Dr. Sureswaran Ramadass National Advanced IPv6 Center - Director Why Talk About Botnets?

722 views • 35 slides

More recommend