prolog to lecture 16 cs 236 on line ms program networks
play

Prolog to Lecture 16 CS 236 On-Line MS Program Networks and - PowerPoint PPT Presentation

Mar 07, 2023 •174 likes •263 views

Prolog to Lecture 16 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 16 Page 1 CS 236 Online Security Evaluations and the US Government The US government runs lots of computers and networks Its a

  1. Prolog to Lecture 16 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 16 Page 1 CS 236 Online

  2. Security Evaluations and the US Government • The US government runs lots of computers and networks • It’s a big, obvious target – And does get attacked a lot • We obviously want its systems to be secure • How to evaluate their system security? Lecture 16 Page 2 CS 236 Online

  3. Something That Didn’t Work • FISMA (Federal Information Security Management Act of 2002) • Result of law intended to improve security of government systems – Passed in 2002 • Required NIST to set standards • Other gov’t agencies needed to document what they did to meet them Lecture 16 Page 3 CS 236 Online

  4. What Happened With FISMA • Turned into an exercise in generating reports • All agencies had to do was write lengthy reports • Small companies went into business writing the reports • But most government systems’ security was not actually improved Lecture 16 Page 4 CS 236 Online

  5. What’s the Lesson For Us? • Not just that government tends to useless bureaucracy • Rather, be sure to ask for the right thing from security reviews • What you really want is to know whether you’re secure • And what to do to become more so Lecture 16 Page 5 CS 236 Online

  6. What Was the Problem With FISMA? • Did not force agencies to actually improve security – You just had to write reports • Did not focus on practical methods of improving security • Did not take into account dynamic and changing nature of threats Lecture 16 Page 6 CS 236 Online

  7. How Can You Do Better? • If you’re involved in a security evaluation, keep your eye on the ball • Look at things that strongly affect real security – In ways relevant to your situation • Consider the real threats you’re facing • Think about and report on where the system needs to be improved Lecture 16 Page 7 CS 236 Online

  8. The New Government Approach • FISMA 2.0 • Passed by House of Representatives (2012) • Intended to place more emphasis on actually securing systems – Automated security reporting – Mandating security requirements in contracts – Continuous security monitoring – Legislates federal CTO Lecture 16 Page 8 CS 236 Online

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Prolog to Lecture 2 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 2 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 2 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 2 Page 1 CS 236 Online Whats This Prolog Stuff? When I can, I will add a short presentation to each lecture Discussing application

234 views • 10 slides
Prolog to Lecture 3 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 3 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 3 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 3 Page 1 CS 236 Online Mandatory Access Control and the Real World For a long time, things like Bell-La Padula were hard to run

220 views • 6 slides
Prolog to Lecture 4 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 4 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 4 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 4 Page 1 CS 236 Online Brute Force Attacks, the iPhone, and the FBI Recently lots of news about the FBI needing to crack an iPhone It

85 views • 8 slides
Prolog to Lecture 9 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 9 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 9 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 9 Page 1 CS 236 Online Buffer Overflows Buffer overflows are a big problem One class of defenses concentrates on not allowing attacker

767 views • 8 slides
Logic and Prolog Lecture 10 Logic Programming The meaning of a Prolog program can be

Logic and Prolog Lecture 10 Logic Programming The meaning of a Prolog program can be

Logic and Prolog Lecture 10 Logic Programming The meaning of a Prolog program can be explained very naturally using First Order Predicate Logic (FOPL). This gives a theoretical basis for Prolog and related computational systems.

568 views • 4 slides
Learn Prolog Now! SWI Prolog Freely available Prolog interpreter Works with Linux,

Learn Prolog Now! SWI Prolog Freely available Prolog interpreter Works with Linux,

Learn Prolog Now! SWI Prolog Freely available Prolog interpreter Works with Linux, Windows, or Mac OS There are many more Prolog interpreters Not all are ISO compliant/free Lecture 1 Theory Introduction to

1.01k views • 76 slides
Network Security CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture

Network Security CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture

Network Security CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 9 Page 1 CS 236 Online Some Important Network Characteristics for Security Degree of locality Media used Protocols used Lecture 9

156 views • 11 slides
Introduction to Cryptography CS 236 On-Line MS Program Networks and Systems Security Peter

Introduction to Cryptography CS 236 On-Line MS Program Networks and Systems Security Peter

Introduction to Cryptography CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 3 Page 1 CS 236 Online Outline What is data encryption? Cryptanalysis Basic encryption methods Substitution ciphers

766 views • 21 slides
More on Cryptography CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

More on Cryptography CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

More on Cryptography CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 4 Page 1 CS 236 Online Outline Desirable characteristics of ciphers Stream and block ciphers Cryptographic modes Uses of

475 views • 29 slides
An Introduction to Prolog Programming 1 What is Prolog? Prolog ( pro gramming in log ic) is a

An Introduction to Prolog Programming 1 What is Prolog? Prolog ( pro gramming in log ic) is a

An Introduction to Prolog Programming 1 What is Prolog? Prolog ( pro gramming in log ic) is a logic-based programming language: programs correspond to sets of logical formulas and the Prolog interpreter uses logical methods to resolve

1.18k views • 72 slides
Authentication CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 7

Authentication CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 7

Authentication CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 7 Page 1 CS 236 Online Outline Introduction Basic authentication mechanisms Lecture 7 Page 2 CS 236 Online Introduction Much of

799 views • 30 slides
Evaluating System Security CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Evaluating System Security CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Evaluating System Security CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 15 Page 1 CS 236 Online Evaluating Program Security What if your task isnt writing secure code? Its determining if someone

423 views • 16 slides
Network Security: Continued CS 236 On-Line MS Program Networks and Systems Security Peter

Network Security: Continued CS 236 On-Line MS Program Networks and Systems Security Peter

Network Security: Continued CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 10 Page 1 CS 236 Online Firewall Configuration and Administration Again, the firewall is the point of attack for intruders

375 views • 16 slides
Securing Your System CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Securing Your System CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Securing Your System CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 19 Page 1 CS 236 Online Putting It All Together Weve talked a lot about security principles And about security problems And

209 views • 17 slides
Security Principles, Policies, and Tools CS 236 On-Line MS Program Networks and Systems

Security Principles, Policies, and Tools CS 236 On-Line MS Program Networks and Systems

Security Principles, Policies, and Tools CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 2 Page 1 CS 236 Online Outline Security design principles Security policies Basic concepts Security

419 views • 12 slides
Intrusion Detection Systems CS 236 On-Line MS Program Networks and Systems Security Peter

Intrusion Detection Systems CS 236 On-Line MS Program Networks and Systems Security Peter

Intrusion Detection Systems CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 11 Page 1 CS 236 Online Outline Introduction Characteristics of intrusion detection systems Some sample intrusion detection

143 views • 12 slides
DS595/CS525 Reinforcement Learning Prof. Yanhua Li Time: 6:00pm 8:50pm R Zoom Lecture Fall

DS595/CS525 Reinforcement Learning Prof. Yanhua Li Time: 6:00pm 8:50pm R Zoom Lecture Fall

This lecture will be recorded!!! Welcome to DS595/CS525 Reinforcement Learning Prof. Yanhua Li Time: 6:00pm 8:50pm R Zoom Lecture Fall 2020 Last Lecture v Model Free Control Generalized policy iteration Control with Exploration

543 views • 50 slides
Coherence Spaces for Computable Analysis II K e i M a t s u mo t o a n d K a z u

Coherence Spaces for Computable Analysis II K e i M a t s u mo t o a n d K a z u

Supported by JSPS Core-to-Core Program Coherence Spaces for Computable Analysis II K e i M a t s u mo t o a n d K a z u s h i g e T e r u i ( R I M S , K y o t o U n i v e r s i t y ) 1 Background

994 views • 44 slides
The Behavioral Approach to Systems Theory Paolo Rapisarda, Un. of Southampton, U.K. & Jan

The Behavioral Approach to Systems Theory Paolo Rapisarda, Un. of Southampton, U.K. & Jan

The Behavioral Approach to Systems Theory Paolo Rapisarda, Un. of Southampton, U.K. & Jan C. Willems, K.U.Leuven, Belgium MTNS 2006 Kyoto, Japan, July 2428, 2006 Lecture 3: State and state construction Lecturer: Paolo Rapisarda

1.19k views • 90 slides
Introduction to magnetic symmetry III. Magnetic space groups vs. Iirreps J. Manuel Perez-Mato

Introduction to magnetic symmetry III. Magnetic space groups vs. Iirreps J. Manuel Perez-Mato

Introduction to magnetic symmetry III. Magnetic space groups vs. Iirreps J. Manuel Perez-Mato Facultad de Ciencia y Tecnologa Universidad del Pas Vasco, UPV-EHU BILBAO, SPAIN Distortions transforming according to irreducible representations

811 views • 38 slides
STATE BUSINESS RELATIONS AND ECONOMIC DEVELOPMENT IN AFRICA AND INDIA KUNAL SEN IDPM,

STATE BUSINESS RELATIONS AND ECONOMIC DEVELOPMENT IN AFRICA AND INDIA KUNAL SEN IDPM,

STATE BUSINESS RELATIONS AND ECONOMIC DEVELOPMENT IN AFRICA AND INDIA KUNAL SEN IDPM, UNIVERSITY OF MANCHESTER AND JOINT RESEARCH DIRECTOR, EFFECTIVE STATES AND INCLUSIVE DEVELOPMENT (ESID) RESEARCH CENTRE WHAT WE TRY TO DO IN THE BOOK

397 views • 23 slides
Future of Enzo Michael L. Norman James Bordner LCA/SDSC/UCSD SDSC Resources Data to

Future of Enzo Michael L. Norman James Bordner LCA/SDSC/UCSD SDSC Resources Data to

Future of Enzo Michael L. Norman James Bordner LCA/SDSC/UCSD SDSC Resources Data to Discovery Host SDNAP San Diego network access point for multiple 10 Gbs WANs ESNet, NSF TeraGrid, CENIC, Internet2, StarTap 19,000 Sq-ft,

694 views • 31 slides
An Online Learning-Based Task Offloading Framework for 5G Small Cell Networks ICPP2020 1

An Online Learning-Based Task Offloading Framework for 5G Small Cell Networks ICPP2020 1

An Online Learning-Based Task Offloading Framework for 5G Small Cell Networks ICPP2020 1 Background & Motivation System Model Outline Algorithm Design Analysis & Performance Conclusion ICPP2020 2 Background &

373 views • 26 slides
Pay by Design Teacher Performance Pay Design and the Distribu6on of Student Achievement Sean an

Pay by Design Teacher Performance Pay Design and the Distribu6on of Student Achievement Sean an

Pay by Design Teacher Performance Pay Design and the Distribu6on of Student Achievement Sean an S Sylvia ( a (Re Renmin Un University of of C China) a) with Prashant Loyalka (Stanford University) Chengfang Liu (Chinese Academy of

355 views • 34 slides

More recommend