security and protection
play

Security and Protection Xavier Martorell-Bofill 1 Ren Serral-Graci 1 - PowerPoint PPT Presentation

Feb 22, 2023 •153 likes •517 views

Security and Protection Xavier Martorell-Bofill 1 Ren Serral-Graci 1 Universitat Politcnica de Catalunya (UPC) May 26, 2014 Introduction About security Security components Lectures System administration introduction 1 Operating System

  1. Security and Protection Xavier Martorell-Bofill 1 René Serral-Gracià 1 Universitat Politècnica de Catalunya (UPC) May 26, 2014

  2. Introduction About security Security components Lectures System administration introduction 1 Operating System installation 2 User management 3 Application management 4 System monitoring 5 Filesystem Maintenance 6 Local services 7 Network services 8 9 Security and Protection 10 Virtualization R. Serral-Gracià, et. al Security 2

  3. Introduction About security Security components Outline Introduction 1 Goals About security 2 Security components 3 R. Serral-Gracià, et. al Security 3

  4. Introduction About security Security components Goals Knowledge Main aspects of system’s security Local security Network security Network services security Abilities Installation, execution and analysis about the results of security auditing tools R. Serral-Gracià, et. al Security 4

  5. Introduction About security Security components Outline Introduction 1 About security 2 Security components 3 R. Serral-Gracià, et. al Security 5

  6. Introduction About security Security components What does security mean? Confidentiality Protection against undesired data access Integrity Protection against unwanted destruction modification, or data loss Availability System must be up and running for legitimate users Consistency Avoid unwanted changes to system behavior Isolation Avoid unauthorized access to external people (hackers) R. Serral-Gracià, et. al Security 6

  7. Introduction About security Security components Perfect security? There is not such a thing Even if the machine is down With enough resources (time, money, . . . ) everything is hackable Natural disasters Goal : get a “secure enough” system Secure against automatic attacks ( script kiddies ) Easy to be back up and running R. Serral-Gracià, et. al Security 7

  8. Introduction About security Security components Security and usability Normally two sides of the same coin Highest security, lowest usability Limited access to services and apps Constant identifications Burdensome to the users Slow and tiring More usability means less security Too much security can have the opposed effect Users write all their passwords in a post-it Use tools to automate resource access R. Serral-Gracià, et. al Security 8

  9. Introduction About security Security components Goals in attacking a computer Get information Get/destroy data Denial of Service Obtain resources Use machines as proxy to other attacks (DDoS) R. Serral-Gracià, et. al Security 9

  10. Introduction About security Security components Some attacks Obtain passwords Spoofing: IP , DNS, ARP , Filesystem abuse . . . Man-in-the-middle Unexpected parameters Sniffers Buffer overflows Worms, . . . Race conditions Social Engineering Resource abuse Troyan, Viruses, . . . . . . Port scanning R. Serral-Gracià, et. al Security 10

  11. Introduction About security Security components Outline Introduction 1 About security 2 Security components 3 Physical Security (I) Local Security Network Security R. Serral-Gracià, et. al Security 11

  12. Introduction About security Security components Physical Security Physical access to the console Reboot with a system disk Data stealing (hard drive, backups) System alteration Computer stealing Physical access to network cables Network Monitoring Denial of Service Physical access to the office Look for passwords below the keyboard! Access to destroyed documents R. Serral-Gracià, et. al Security 12

  13. Introduction About security Security components Physical Security (II) Sometimes it doesn’t take a malicious attack to destroy data Accidents: power shortages, fire, . . . Ambient conditions: temperature, humidity, . . . Natural catastrophes: hurricanes, earthquakes, . . . Other: bugs, food, beverages, . . . Sensors, special materials, raised floor, . . . R. Serral-Gracià, et. al Security 13

  14. Introduction About security Security components Local Security Goal: protect against attacks form the users of the system Attacker has a non privileged user account Even a privileged one Users willing to escalate privileges Protect the system locally before connecting it to the network R. Serral-Gracià, et. al Security 14

  15. Introduction About security Security components Passwords Enforce a strong password policy Long passwords (+8 characters) Mix of numbers, letters, and special characters Hard to guess Easy to remember NOT a dictionary word – or variation Password expiration policy Be careful it can become quite annoying Check password strength on each change/periodically Protect encrypted passwords ( /etc/shadow ) R. Serral-Gracià, et. al Security 15

  16. Introduction About security Security components Permission and protection Minimum access policy An user should not access a file he/she doesn’t need Grant the minimum privileges and . . . assign more under demand Grant only group level permissions Assign a sensible file creation mask umask 027 (rwx r-x ---), 022 (rwx r-x r-x) Be aware of potentially dangerous files with SetUID bit Holding system configuration R. Serral-Gracià, et. al Security 16

  17. Introduction About security Security components Resource abuse Excessive use of resources by a single user CPU/processes Memory Disk Set up limits and quotas /etc/security/limits.conf ulimit disk quotas R. Serral-Gracià, et. al Security 17

  18. Introduction About security Security components Filesystem integrity Often attackers modify the filesystem to hide the attack Modification of log files Rootkits Tools to detect changes in the filesystem Through digital signature of files Partition/Devices in read-only R. Serral-Gracià, et. al Security 18

  19. Introduction About security Security components System Logs May contain information about the attacks Permit to know if a system has been compromised Post-mortem analysis Unsecure to store them on the same server Better in a remote server Print them? R. Serral-Gracià, et. al Security 19

  20. Introduction About security Security components Local security – Example tiger : security auditing tool $ sudo tiger Configuring... Will try to check using config for x86_64 running Linux 3.6.8... --CONFIG-- [con005c] Using configuration files for Linux 3.6.8. Using configuration files for generic Linux 3. Tiger security scripts *** 3.2.3, 2008.09.10.09.30 *** 11:21> Beginning security report for asuso.lomillor.org. 11:21> Starting file systems scans in background... 11:21> Checking password files... 11:21> Checking group files... 11:21> Checking user accounts... 11:29> Checking .rhosts files... 11:29> Checking .netrc files... 11:29> Checking ttytab, securetty, and login configuration files... 11:29> Checking PATH settings... 11:30> Checking anonymous ftp setup... 11:30> Checking mail aliases... 11:30> Checking cron entries... 11:30> Checking services configuration... 11:30> Checking NFS export entries... 11:30> Checking permissions and ownership of system files... 11:30> Checking for indications of break-in... 11:30> Performing rootkit checks... 11:37> Performing system specific checks... 12:12> Performing root directory checks... 12:12> Checking for secure backup devices... 12:12> Checking for the presence of log files... 12:12> Checking for the setting of user s umask... 12:12> Checking for listening processes... 12:12> Checking SSHD s configuration... 12:12> Checking the printers control file... 12:12> Checking ftpusers configuration... 12:12> Checking NTP configuration... 12:12> Waiting for filesystems scans to complete... 12:12> Filesystems scans completed... 12:12> Performing check of embedded pathnames... 12:14> Security report completed for asuso.lomillor.org. Security report is in /var/log/tiger/security.report.hostname.121204-11:21 R. Serral-Gracià, et. al Security 20

  21. Introduction About security Security components Exercise Which issues might present if an attacker modifies the environment variables? (i.e., PATH) R. Serral-Gracià, et. al Security 21

  22. Introduction About security Security components Network Security Goal: Protect against attacks coming from the outside Aimed at: The services we are offering The network itself The information our servers is keeping R. Serral-Gracià, et. al Security 22

  23. Introduction About security Security components Network Security Mandatory to use firewalls Two level security: Protected vs DMZ HTTP Private network Public services SMTP R. Serral-Gracià, et. al Security 23

  24. Introduction About security Security components Offered services Security level depends on the offered services System and user information finger , rdate , rusers , . . . Remote login and connection telnet , rlogin , rsh , . . . File and data sharing NFS, Samba, LDAP , FTP , HTTP , . . . E-mail R. Serral-Gracià, et. al Security 24

  25. Introduction About security Security components Network security Minimum access policy Disable all the services Or even uninstall them Enable only the required services and limit the access only to current users Validate the configuration of the installed services Even if disabled R. Serral-Gracià, et. al Security 25

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Chapter 20 Silberschatz and Galvin Security Protection and Security Protection is a strictly

Chapter 20 Silberschatz and Galvin Security Protection and Security Protection is a strictly

Chapter 20 Silberschatz and Galvin Security Protection and Security Protection is a strictly internal problem Protection: mechanism for controlling the access of programs, processes, or users to the resources defined by a computer

499 views • 16 slides
Security 101 Definition of Information Security Information security is the protection of

Security 101 Definition of Information Security Information security is the protection of

Computing Services Information Security Office Security 101 Definition of Information Security Information security is the protection of information and systems from unauthorized access, disclosure, modification, destruction or disruption. The

469 views • 22 slides
Protection & Security Threat is potential security violation Attack is attempt to

Protection & Security Threat is potential security violation Attack is attempt to

CSE 421/521 - Operating Systems The Security Problem Fall 2011 Protecting your system resources, your files, identity, confidentiality, or privacy Lecture - XXVI Intruders (crackers) attempt to breach security Protection &

437 views • 5 slides
Protection and Security Threat is potential security violation Attack is attempt to breach

Protection and Security Threat is potential security violation Attack is attempt to breach

CSC 4103 - Operating Systems The Security Problem Spring 2007 Security must consider external environment of the system, and protect the system resources Lecture - XX Intruders (crackers) attempt to breach security Protection and

195 views • 4 slides
Security 1 Recap: Protection Protection Prevent unintended/unauthorized accesses

Security 1 Recap: Protection Protection Prevent unintended/unauthorized accesses

Security 1 Recap: Protection Protection Prevent unintended/unauthorized accesses Protection domains Class hierarchy: root can to everything a normal user can do + alpha Access control matrix Domains (Users)

575 views • 24 slides
Outline OS security: protection and isolation CSci 5271 OS security: authentication

Outline OS security: protection and isolation CSci 5271 OS security: authentication

Outline OS security: protection and isolation CSci 5271 OS security: authentication Introduction to Computer Security Announcements intermission Day 9: OS security basics Stephen McCamant Basics of access control University of Minnesota,

269 views • 8 slides
Outline Operating System Security Introduction CS 239 Memory protection

Outline Operating System Security Introduction CS 239 Memory protection

Outline Operating System Security Introduction CS 239 Memory protection Interprocess communications protection Security for Networks and File protection System Software Authentication May 20, 2002 Lecture 13 Lecture

348 views • 12 slides
A Brief Intro to Security December 5th, 2013 What is Computer Security? The protection

A Brief Intro to Security December 5th, 2013 What is Computer Security? The protection

A Brief Intro to Security December 5th, 2013 What is Computer Security? The protection afforded to an automated information system in order to attain the applicable objectives of preserving the integrity, availability, and

296 views • 14 slides
Outline Introduction Operating System Security Memory protection CS 239

Outline Introduction Operating System Security Memory protection CS 239

Outline Introduction Operating System Security Memory protection CS 239 Interprocess communications protection File protection Computer Security February 16, 2005 Lecture 10 Lecture 10 Page 1 Page 2 CS 239, Winter 2005

406 views • 8 slides
OS Security Thierry Sans Security is a wide topic CSCD27 Computer and Network Security covers

OS Security Thierry Sans Security is a wide topic CSCD27 Computer and Network Security covers

OS Security Thierry Sans Security is a wide topic CSCD27 Computer and Network Security covers Cryptography Network security System security Web security (recap) Protection File systems implement a protection system Who

800 views • 30 slides
Security Overview Different aspects of security User authentication Protection mechanisms

Security Overview Different aspects of security User authentication Protection mechanisms

CS399 New Beginnings Jonathan Walpole Security Overview Different aspects of security User authentication Protection mechanisms Attacks: - trojan horses, spoofing, logic bombs, trap doors, buffer overflow attacks, viruses, worms, mobile

825 views • 59 slides
Protection, Intelligence & Aerial Reconnaissance PAGE 1 Security & Protection Services

Protection, Intelligence & Aerial Reconnaissance PAGE 1 Security & Protection Services

Security and Protection, Intelligence & Aerial Reconnaissance PAGE 1 Security & Protection Services Research & Intelligence The Core 4 Aerial Surveillance & Reconnaissance K9 Security Support PAGE 2 Who We Are Our

377 views • 10 slides
Security While protection has been discussed throughout the class kernel vs. user mode,

Security While protection has been discussed throughout the class kernel vs. user mode,

Security While protection has been discussed throughout the class kernel vs. user mode, protected memory, file permissions these mechanisms have generally been focused on protection from accidental misuse (software bugs, novice

463 views • 13 slides
ORC Chapter 420-3-26-.15 and 10 CFR Part 37 Changes to Physical Security Protection Requirements

ORC Chapter 420-3-26-.15 and 10 CFR Part 37 Changes to Physical Security Protection Requirements

ORC Chapter 420-3-26-.15 and 10 CFR Part 37 Changes to Physical Security Protection Requirements A Brief History of Security Measures - 11/14/05 - EA-05-090: NRC Order Imposing Increased Controls (IC). In Alabama the Orders were implemented by

498 views • 27 slides
Protection and Security - I Tevfik Ko ar Louisiana State University April 15 th , 2008 1 The

Protection and Security - I Tevfik Ko ar Louisiana State University April 15 th , 2008 1 The

CSC 4103 - Operating Systems Spring 2008 Lecture - XX Protection and Security - I Tevfik Ko ar Louisiana State University April 15 th , 2008 1 The Security Problem Security must consider external environment of the system, and

236 views • 7 slides
Protection & Security Tevfik Ko ar University at Buffalo December 6 th , 2011 1 The

Protection & Security Tevfik Ko ar University at Buffalo December 6 th , 2011 1 The

CSE 421/521 - Operating Systems Fall 2011 Lecture - XXVI Protection & Security Tevfik Ko ar University at Buffalo December 6 th , 2011 1 The Security Problem Protecting your system resources, your files, identity, confidentiality,

362 views • 13 slides
syzkaller Mark Johnston markj@FreeBSD.org FreeBSD Bay Area Vendor Summit October 12, 2019

syzkaller Mark Johnston markj@FreeBSD.org FreeBSD Bay Area Vendor Summit October 12, 2019

syzkaller Mark Johnston markj@FreeBSD.org FreeBSD Bay Area Vendor Summit October 12, 2019 System Call Fuzzing: What? Common syscall usage patterns cover a small space Why would you ever call send(2) after listen(2) ? Increase

744 views • 12 slides
Security in a cloud context David Crooks, for the EGI CSIRT Lessons learned from recent incidents

Security in a cloud context David Crooks, for the EGI CSIRT Lessons learned from recent incidents

Security in a cloud context David Crooks, for the EGI CSIRT Lessons learned from recent incidents www.egi.eu EGI-Engage is co-funded by the Horizon 2020 Framework Programme of the European Union under grant number 654142 Cloud Security EGI

571 views • 16 slides
Accessing Samba from Linux. Whats new? Whats faster? Whats better? Steve French

Accessing Samba from Linux. Whats new? Whats faster? Whats better? Steve French

Accessing Samba from Linux. Whats new? Whats faster? Whats better? Steve French Principal Systems Engineer Primary Data Legal Statement T h i s w o r k r e p r e s e n t s t h e v i e w s o f t h e a u t h o r ( s ) a n d d o e

480 views • 28 slides
Recreating the NSA's MITM Attack 1 Why Should This Topic be Chosen? Goal 1: Understanding how

Recreating the NSA's MITM Attack 1 Why Should This Topic be Chosen? Goal 1: Understanding how

create your own exercise Christoph Schmidt, Team 1 Recreating the NSA's MITM Attack 1 Why Should This Topic be Chosen? Goal 1: Understanding how the NSA uses its access to the Backbone Goal 2: Understanding how MITM attacks can be done

1.02k views • 82 slides
Katacryptology trust or not your favorite cryptotool ? RSA PreSE 1 Robert Erra PreSE 2 LSE

Katacryptology trust or not your favorite cryptotool ? RSA PreSE 1 Robert Erra PreSE 2 LSE

Katacryptology Robert Erra LSE WEEK 2014 Catacrypt ? Why should you Katacryptology trust or not your favorite cryptotool ? RSA PreSE 1 Robert Erra PreSE 2 LSE WEEK 2014 PreSE 3 PreSE 5 PostSE 1 July 17, 2014 PostSE 3 Back to RSA

922 views • 44 slides
Lattice-based cryptography, day 1: simplicity D. J. Bernstein University of Illinois at Chicago;

Lattice-based cryptography, day 1: simplicity D. J. Bernstein University of Illinois at Chicago;

1 Lattice-based cryptography, day 1: simplicity D. J. Bernstein University of Illinois at Chicago; Ruhr University Bochum 2 2000 Cohen cryptosystem Public key: vector of integers K = ( K 1 ; : : : ; K N ) { X; : : : ; X } N .

1.84k views • 164 slides
Discrete Logarithm with Auxiliary Inputs (Special Semester Workshop 4) Jung Hee Cheon (partly

Discrete Logarithm with Auxiliary Inputs (Special Semester Workshop 4) Jung Hee Cheon (partly

Discrete Logarithm with Auxiliary Inputs (Special Semester Workshop 4) Jung Hee Cheon (partly joint work with Taechan Kim and Yongsu Song) Department of Mathematical Sciences and ISaC-RIM Seoul National University December 13, 2013 1 / 41

557 views • 41 slides
Exploring the Effect of an Advance Letter on Response and Eligibility Rates: A M Met eta-Ana

Exploring the Effect of an Advance Letter on Response and Eligibility Rates: A M Met eta-Ana

Exploring the Effect of an Advance Letter on Response and Eligibility Rates: A M Met eta-Ana nalysis S Stud udy for the he Nationa nal I Immuni unization S n Sur urvey (NIS) Abera Wouhib 1 , Jie Zhao 2 , Meena Khare 1 and Vicki Pineau 2

812 views • 17 slides

More recommend