security concepts
play

Security Concepts Deian Stefan Slides adopted from Kirill Levchenko - PowerPoint PPT Presentation

Feb 10, 2023 •43 likes •373 views

CSE 127: Computer Security Security Concepts Deian Stefan Slides adopted from Kirill Levchenko and Stefan Savage Computer Security Analysis and protection of computer systems in an adversarial setting What is an adversary? An adversary

  1. CSE 127: Computer Security Security Concepts Deian Stefan Slides adopted from Kirill Levchenko and Stefan Savage

  2. Computer Security Analysis and protection of computer 
 systems in an adversarial setting

  3. What is an adversary? • An adversary is someone who seeks an outcome detrimental to your interests • We assume rational adversaries ➤ I.e., they act to maximize their payoff

  4. Adversarial Setting Example: Games ➤ Structured adversarial setting ➤ Opposing objectives well-defined

  5. Adversary or Attacker? • An adversary becomes an attacker when they act in a way that is detrimental to your interests • Distinction is not hugely important ➤ Adversary often used in cryptography ➤ Attacker often used in computer security ➤ Both ultimately mean “bad person”

  6. How do we define attackers? • Motives: ➤ Curiosity ➤ Fame ➤ Money ➤ National interest • Resources: ➤ Time, money, and training

  7. Classes of Attackers National Interest Spy Personal Gain Thief Trespasser Personal Fame Curiosity Vandal Author Script-Kiddy Hobbyist Expert Specialist Hacker From David Aucsmith, Microsoft.

  8. Computer Security Analysis and protection of computer 
 systems in an adversarial setting

  9. What do we mean by protection? • Protection of systems against an adversary ➤ Secrecy: Can’t view protected information ➤ Integrity: Can’t modify protected info or process ➤ Availability: Can’t deny access to system for others

  10. Computer Security Analysis and protection of computer 
 systems in an adversarial setting

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Outline Security Principles and Policies Security terms and concepts CS 239 Security

Outline Security Principles and Policies Security terms and concepts CS 239 Security

Outline Security Principles and Policies Security terms and concepts CS 239 Security policies Computer Security Basic concepts Peter Reiher Security policies for real systems January 13, 2005 Lecture 2 Lecture 2 Page 1

347 views • 9 slides
23-04-18 Advanced Network Security 3. Agreement and consensus I: concepts and protocols for

23-04-18 Advanced Network Security 3. Agreement and consensus I: concepts and protocols for

23-04-18 Advanced Network Security 3. Agreement and consensus I: concepts and protocols for crash failures Jaap-Henk Hoepman Digital Security (DS) Radboud University Nijmegen, the Netherlands @xotoxot // * jhh@cs.ru.nl // 8 www.cs.ru.nl/~jhh

115 views • 8 slides
SECURITY TESTING Towards a safer web world AGENDA 1. 3 WS OF SECURITY TESTING 2. SECURITY

SECURITY TESTING Towards a safer web world AGENDA 1. 3 WS OF SECURITY TESTING 2. SECURITY

SECURITY TESTING Towards a safer web world AGENDA 1. 3 WS OF SECURITY TESTING 2. SECURITY TESTING CONCEPTS 3. SECURITY TESTING TYPES 4. TOP 10 SECURITY RISKS Few Security Breaches Date: 2013-14 September 2016, while in negotiations to

404 views • 18 slides
Cracking Drupal Security concepts and pitfalls Klaus Purer Peter Wolanin Security strategies

Cracking Drupal Security concepts and pitfalls Klaus Purer Peter Wolanin Security strategies

Cracking Drupal Security concepts and pitfalls Klaus Purer Peter Wolanin Security strategies Trust - who can do what Principle of least privilege - each site user should have only the permissions necessary to do their job Defense

623 views • 36 slides
Lecture 02 (28.10.2013) Concepts of Safety and Security Christoph Lth Christian Liguda SQS,

Lecture 02 (28.10.2013) Concepts of Safety and Security Christoph Lth Christian Liguda SQS,

Systeme hoher Qualitt und Sicherheit Universitt Bremen, WS 2013/14 Lecture 02 (28.10.2013) Concepts of Safety and Security Christoph Lth Christian Liguda SQS, WS 13/14 SQS, WS 13/14 Where are we? Lecture 01: Concepts of Quality

1.15k views • 50 slides
Introduction to Security Comm. Security Strategy Summary ITS335: IT Security Sirindhorn

Introduction to Security Comm. Security Strategy Summary ITS335: IT Security Sirindhorn

ITS335 Intro. to Security Concepts Threats, Attacks, Assets Introduction to Security Comm. Security Strategy Summary ITS335: IT Security Sirindhorn International Institute of Technology Thammasat University Prepared by Steven Gordon on 2

965 views • 34 slides
Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and

Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and

Cryptography Cryptography Concepts and Terminology Security Concepts Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and Terminology Cryptography School of Engineering and Technology CQUniversity

322 views • 11 slides
Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and

Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and

Cryptography Cryptography Concepts and Terminology Security Concepts Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and Terminology Cryptography School of Engineering and Technology CQUniversity

453 views • 11 slides
Network Security & Privacy Liability: An Overview of Loss Mitigation Concepts and Data Breach

Network Security & Privacy Liability: An Overview of Loss Mitigation Concepts and Data Breach

Network Security & Privacy Liability: An Overview of Loss Mitigation Concepts and Data Breach Response Services March 20 th , 2012 Brian Cole, Managing Director Professional Liability Specialty Practice Overview of Topics Cyber Security

611 views • 21 slides
Security Concepts (cont) Deian Stefan Slides adopted from Kirill Levchenko and Stefan Savage

Security Concepts (cont) Deian Stefan Slides adopted from Kirill Levchenko and Stefan Savage

CSE 127: Computer Security Security Concepts (cont) Deian Stefan Slides adopted from Kirill Levchenko and Stefan Savage Incentives and Deterrents Attackers equation: (expected gain) > (cost of attack) Defenders equation:

301 views • 28 slides
Cracking Drupal Subtitle Security concepts and pitfalls Peter Wolanin Add speaker name here

Cracking Drupal Subtitle Security concepts and pitfalls Peter Wolanin Add speaker name here

Drupaldelphia May 10, 2019 Title slide Cracking Drupal Subtitle Security concepts and pitfalls Peter Wolanin Add speaker name here http://vuln.rocks/crackdru Special thanks to Klaus Purer for creating the original talk and slides Agenda

967 views • 51 slides
SCION: PKI Overview Adrian Perrig Network Security Group, ETH Zrich PKI Concepts: Brief

SCION: PKI Overview Adrian Perrig Network Security Group, ETH Zrich PKI Concepts: Brief

SCION: PKI Overview Adrian Perrig Network Security Group, ETH Zrich PKI Concepts: Brief Introduction PKI: Public-Key Infrastructure Purpose of PKI: enable authentication of an entity Various types of entities Autonomous System

492 views • 32 slides
{ Concepts and Strategic Connections Mad Scientist 2016, Washington DC Elizabeth L. Chalecki,

{ Concepts and Strategic Connections Mad Scientist 2016, Washington DC Elizabeth L. Chalecki,

Environmental Security: 2050 { Concepts and Strategic Connections Mad Scientist 2016, Washington DC Elizabeth L. Chalecki, PhD University of Nebraska Omaha Stimson Center National security resulted from military victory on the

351 views • 24 slides
Roadmap for Section 7.2. Windows Security Features Components of the Security System Windows

Roadmap for Section 7.2. Windows Security Features Components of the Security System Windows

Unit OS7: Security 7.2. Windows Security Components and Concepts Windows Operating System Internals - by David A. Solomon and Mark E. Russinovich with Andreas Polze Roadmap for Section 7.2. Windows Security Features Components of the Security

453 views • 14 slides
Security and Data Privacy Instructor: Pratiksha Thaker cs245.stanford.edu Outline Security

Security and Data Privacy Instructor: Pratiksha Thaker cs245.stanford.edu Outline Security

Security and Data Privacy Instructor: Pratiksha Thaker cs245.stanford.edu Outline Security requirements Key concepts and tools Differential privacy Other security tools CS 245 2 Outline Security requirements Key concepts and tools

1.53k views • 86 slides
Security and Data Privacy Instructor: Matei Zaharia cs245.stanford.edu Outline Security

Security and Data Privacy Instructor: Matei Zaharia cs245.stanford.edu Outline Security

Security and Data Privacy Instructor: Matei Zaharia cs245.stanford.edu Outline Security requirements Key concepts and tools Differential privacy Other security tools CS 245 2 Outline Security requirements Key concepts and tools

873 views • 62 slides
Using A Cost-Based Framework For Analyzing Denial Of Service Presented By: Joan Paul A

Using A Cost-Based Framework For Analyzing Denial Of Service Presented By: Joan Paul A

Using A Cost-Based Framework For Analyzing Denial Of Service Presented By: Joan Paul A Cost-Based Framework for Analysis of Denial of Service in Networks Catherine Meadows (2001) Analyzing DoS-Resistance of Protocols Using a

287 views • 28 slides
Miscellaneous Requirements 120 Contents Contract Pricing and Types of Contracts

Miscellaneous Requirements 120 Contents Contract Pricing and Types of Contracts

10 CHAPTER Miscellaneous Requirements 120 Contents Contract Pricing and Types of Contracts Contractor Responsibility HUD Limited Denial of Participation GSA Debarment or Suspension Evaluating Cost and Price Protests

526 views • 29 slides
Denial of Service Defense in Practice and Theory Eddie Kohler UCLA/Mazu Networks

Denial of Service Defense in Practice and Theory Eddie Kohler UCLA/Mazu Networks

Denial of Service Defense in Practice and Theory Eddie Kohler UCLA/Mazu Networks USENIX April 13, 2005 1 About this talk Idiosyncratic Broad

481 views • 44 slides
Low-Rate TCP-Targeted Denial of Service A9acks (The Shrew

Low-Rate TCP-Targeted Denial of Service A9acks (The Shrew

Low-Rate TCP-Targeted Denial of Service A9acks (The Shrew vs. the Mice and Elephants) Aleksandar Kuzmanovic and Edward W. Knightly. In ACM

583 views • 29 slides
Automated Detection of Guessing and Denial of Service Attacks in Security Protocols Marius Minea

Automated Detection of Guessing and Denial of Service Attacks in Security Protocols Marius Minea

Automated Detection of Guessing and Denial of Service Attacks in Security Protocols Marius Minea Politehnica University of Timi soara CMACS seminar, CMU, 18 March 2010 In this talk Formalizing attacks on protocols denial of service by

732 views • 45 slides
Insecurity of Voice Solution VoLTE in LTE Mobile Networks Chi-Yu Li 1 , Guan-Hua Tu 1 , Chunyi

Insecurity of Voice Solution VoLTE in LTE Mobile Networks Chi-Yu Li 1 , Guan-Hua Tu 1 , Chunyi

Insecurity of Voice Solution VoLTE in LTE Mobile Networks Chi-Yu Li 1 , Guan-Hua Tu 1 , Chunyi Peng 2 , Zengwen Yuan 1 , Yuanjie Li 1 , Songwu Lu 1 , Xinbing Wang 3 1: University of California, Los Angeles; 2: The Ohio State University; 3:

534 views • 32 slides
Dragonfly Handshake of WPA3 and EAP-pwd Mathy Vanhoef and Eyal Ronen Real World Crypto, New

Dragonfly Handshake of WPA3 and EAP-pwd Mathy Vanhoef and Eyal Ronen Real World Crypto, New

Dragonblood : Analyzing the Dragonfly Handshake of WPA3 and EAP-pwd Mathy Vanhoef and Eyal Ronen Real World Crypto, New York, 10 January 2020. Background: Wi-Fi Security 1999: Wired Equivalent Privacy (WEP) Broken in 2001 [FMS01] 2003:

818 views • 62 slides
Welcome! The Webinar will Begin Shortly To Hear Audio To choose your audio connecon, click

Welcome! The Webinar will Begin Shortly To Hear Audio To choose your audio connecon, click

Welcome! The Webinar will Begin Shortly To Hear Audio To choose your audio connecon, click on the phone icon at the boom of the screen There is NO hold music, so you will not hear anything until the webinar begins. Slides/Materials

767 views • 60 slides

More recommend