network security cs 236 on line ms program networks and
play

Network Security CS 236 On-Line MS Program Networks and Systems - PowerPoint PPT Presentation

Sep 21, 2022 •46 likes •156 views

Network Security CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 9 Page 1 CS 236 Online Some Important Network Characteristics for Security Degree of locality Media used Protocols used Lecture 9

  1. Network Security CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 9 Page 1 CS 236 Online

  2. Some Important Network Characteristics for Security • Degree of locality • Media used • Protocols used Lecture 9 Page 2 CS 236 Online

  3. Degree of Locality • Some networks are very local – E.g., an Ethernet – Benefits from: • Physical locality • Small number of users and machines • Common goals and interests • Other networks are very non-local – E.g., the Internet backbone – Many users/sites share bandwidth Lecture 9 Page 3 CS 236 Online

  4. Network Media • Some networks are wires, cables, or over telephone lines – Can be physically protected • Other networks are satellite links or other radio links – Physical protection possibilities more limited Lecture 9 Page 4 CS 236 Online

  5. Protocol Types • TCP/IP is the most used – But it only specifies some common intermediate levels – Other protocols exist above and below it • In places, other protocols replace TCP/IP • And there are lots of supporting protocols – Routing protocols, naming and directory protocols, network management protocols – And security protocols (IPSec, ssh, tls) Lecture 9 Page 5 CS 236 Online

  6. Implications of Protocol Type • The protocol defines a set of rules that will always be followed – But usually not quite complete – And they assume everyone is at least trying to play by the rules – What if they don’t? • Specific attacks exist against specific protocols Lecture 9 Page 6 CS 236 Online

  7. Threats To Networks • Wiretapping • Impersonation • Attacks on message – Confidentiality – Integrity • Denial of service attacks Lecture 9 Page 7 CS 236 Online

  8. Wiretapping • Passive wiretapping is listening in illicitly on conversations • Active wiretapping is injecting traffic illicitly • Packet sniffers can listen to all traffic on a broadcast medium – Ethernet or 802.11, e.g. • Wiretapping on wireless often just a matter of putting up an antenna Lecture 9 Page 8 CS 236 Online

  9. Impersonation • A packet comes in over the network – With some source indicated in its header • Often, the action to be taken with the packet depends on the source • But attackers may be able to create packets with false sources Lecture 9 Page 9 CS 236 Online

  10. Violations of Message Confidentiality • Other problems can cause messages to be inappropriately divulged • Misdelivery can send a message to the wrong place – Clever attackers can make it happen • Message can be read at an intermediate gateway or a router • Sometimes an intruder can get useful information just by traffic analysis Lecture 9 Page 10 CS 236 Online

  11. Message Integrity • Even if the attacker can’t create the packets he wants, sometimes he can alter proper packets • To change the effect of what they will do • Typically requires access to part of the path message takes Lecture 9 Page 11 CS 236 Online

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Network Security: Continued CS 236 On-Line MS Program Networks and Systems Security Peter

Network Security: Continued CS 236 On-Line MS Program Networks and Systems Security Peter

Network Security: Continued CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 10 Page 1 CS 236 Online Firewall Configuration and Administration Again, the firewall is the point of attack for intruders

375 views • 16 slides
Evaluating System Security CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Evaluating System Security CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Evaluating System Security CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 15 Page 1 CS 236 Online Evaluating Program Security What if your task isnt writing secure code? Its determining if someone

423 views • 16 slides
Security Principles, Policies, and Tools CS 236 On-Line MS Program Networks and Systems

Security Principles, Policies, and Tools CS 236 On-Line MS Program Networks and Systems

Security Principles, Policies, and Tools CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 2 Page 1 CS 236 Online Outline Security design principles Security policies Basic concepts Security

419 views • 12 slides
Securing Your System CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Securing Your System CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Securing Your System CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 19 Page 1 CS 236 Online Putting It All Together Weve talked a lot about security principles And about security problems And

209 views • 17 slides
Prolog to Lecture 16 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 16 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 16 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 16 Page 1 CS 236 Online Security Evaluations and the US Government The US government runs lots of computers and networks Its a

263 views • 8 slides
Introduction to Cryptography CS 236 On-Line MS Program Networks and Systems Security Peter

Introduction to Cryptography CS 236 On-Line MS Program Networks and Systems Security Peter

Introduction to Cryptography CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 3 Page 1 CS 236 Online Outline What is data encryption? Cryptanalysis Basic encryption methods Substitution ciphers

766 views • 21 slides
More on Cryptography CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

More on Cryptography CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

More on Cryptography CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 4 Page 1 CS 236 Online Outline Desirable characteristics of ciphers Stream and block ciphers Cryptographic modes Uses of

475 views • 29 slides
Prolog to Lecture 3 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 3 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 3 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 3 Page 1 CS 236 Online Mandatory Access Control and the Real World For a long time, things like Bell-La Padula were hard to run

220 views • 6 slides
Prolog to Lecture 4 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 4 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 4 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 4 Page 1 CS 236 Online Brute Force Attacks, the iPhone, and the FBI Recently lots of news about the FBI needing to crack an iPhone It

85 views • 8 slides
Prolog to Lecture 2 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 2 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 2 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 2 Page 1 CS 236 Online Whats This Prolog Stuff? When I can, I will add a short presentation to each lecture Discussing application

234 views • 10 slides
Prolog to Lecture 9 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 9 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 9 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 9 Page 1 CS 236 Online Buffer Overflows Buffer overflows are a big problem One class of defenses concentrates on not allowing attacker

767 views • 8 slides
Intrusion Detection Systems CS 236 On-Line MS Program Networks and Systems Security Peter

Intrusion Detection Systems CS 236 On-Line MS Program Networks and Systems Security Peter

Intrusion Detection Systems CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 11 Page 1 CS 236 Online Outline Introduction Characteristics of intrusion detection systems Some sample intrusion detection

143 views • 12 slides
What is network security? Friends and enemies: Alice, Bob, Trudy What is network security?

What is network security? Friends and enemies: Alice, Bob, Trudy What is network security?

Network security Network security Foundations: what is security? cryptography Network Security Network Security authentication message integrity key distribution and certification Security in practice: Srinidhi Varadarajan

332 views • 6 slides
Advanced Research Issues In Security: Securing Key Internet Technologies CS 236 On-Line MS

Advanced Research Issues In Security: Securing Key Internet Technologies CS 236 On-Line MS

Advanced Research Issues In Security: Securing Key Internet Technologies CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 18 Page 1 CS 236 Online Outline Routing security DNS security Lecture 18 Page 2

556 views • 31 slides
Authentication CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 7

Authentication CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 7

Authentication CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 7 Page 1 CS 236 Online Outline Introduction Basic authentication mechanisms Lecture 7 Page 2 CS 236 Online Introduction Much of

799 views • 30 slides
Network Security Network Security Srinidhi Varadarajan Network security Network security

Network Security Network Security Srinidhi Varadarajan Network security Network security

Network Security Network Security Srinidhi Varadarajan Network security Network security Foundations: what is security? cryptography authentication message integrity key distribution and certification Security in practice:

634 views • 36 slides
PCERE: Fine-grained Parallel Benchmark Decomposition for Scalability Prediction Mihail Popov,

PCERE: Fine-grained Parallel Benchmark Decomposition for Scalability Prediction Mihail Popov,

PCERE: Fine-grained Parallel Benchmark Decomposition for Scalability Prediction Mihail Popov, Chadi Akel, Florent Conti, William Jalby, Pablo de Oliveira Castro UVSQ - PRiSM - ECR Mai 28, 2015 Introduction Evaluate strong scalability

450 views • 27 slides
R 3 B NeuLAND Progress at RIBF and GSI H. Trnqvist, R 3 B NeuLAND, NUSTAR Annual Meeting March

R 3 B NeuLAND Progress at RIBF and GSI H. Trnqvist, R 3 B NeuLAND, NUSTAR Annual Meeting March

R 3 B NeuLAND Progress at RIBF and GSI H. Trnqvist, R 3 B NeuLAND, NUSTAR Annual Meeting March 2016 1/20 Overview NeuLAND Development/manufacturing progress at GSI RIKEN autumn 2015 commissioning and experiments RIKEN accepted

391 views • 20 slides
Controlling Processes and the File System Por$ons courtesy

Controlling Processes and the File System Por$ons courtesy

CSE/ISE 311: Systems Administra5on Controlling Processes and the File System Por$ons courtesy Ellen Liu CSE/ISE 311: Systems Administra5on Outline Controlling

399 views • 24 slides
FROM FILE SYSTEMS TO SERVICES: CHANGING THE DATA MANAGEMENT MODEL IN HPC Simulation, Observation,

FROM FILE SYSTEMS TO SERVICES: CHANGING THE DATA MANAGEMENT MODEL IN HPC Simulation, Observation,

FROM FILE SYSTEMS TO SERVICES: CHANGING THE DATA MANAGEMENT MODEL IN HPC Simulation, Observation, and Software: Supporting exascale storage and I/O ROB ROSS , PHILIP CARNS, KEVIN HARMS, Argonne National Laboratory JOHN JENKINS, AND SHANE SNYDER

718 views • 18 slides
Software Programming tiny devices You would like to have: structured programs with multiple

Software Programming tiny devices You would like to have: structured programs with multiple

Software Programming tiny devices You would like to have: structured programs with multiple concurrent threads good responsiveness to events (some applications pose RT requirements) readable, reusable code Programming tiny devices So what

598 views • 27 slides
Compilers Scope Alex Aiken Scope Matching identifier declarations with uses Important

Compilers Scope Alex Aiken Scope Matching identifier declarations with uses Important

Compilers Scope Alex Aiken Scope Matching identifier declarations with uses Important static analysis step in most languages Including COOL! Alex Aiken Scope Example 1 let y: String abc in y + 3 Example 2 let y:

155 views • 13 slides
CSE 341 Lecture 27 JavaScript scope and closures slides created by Marty Stepp

CSE 341 Lecture 27 JavaScript scope and closures slides created by Marty Stepp

CSE 341 Lecture 27 JavaScript scope and closures slides created by Marty Stepp http://www.cs.washington.edu/341/ Recall: Scope scope : The enclosing context where values and expressions are associated. essentially, the visibility of

578 views • 20 slides
Snowflake Subgroups of CAT(0) Groups Noel Brady and Max Forester Department of Mathematics

Snowflake Subgroups of CAT(0) Groups Noel Brady and Max Forester Department of Mathematics

Snowflake Subgroups of CAT(0) Groups Noel Brady and Max Forester Department of Mathematics University of Oklahoma Geometric Topology in New York, August 15, 2013. N. Brady, M. Forester (U of Oklahoma) Snowflake < CAT(0) GTiNY 08.15.13 1 /

206 views • 18 slides

More recommend