system security
play

System Security Chapter 29 Computer Security: Art and Science , 2 nd - PowerPoint PPT Presentation

Mar 02, 2023 •347 likes •951 views

System Security Chapter 29 Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 29-1 Outline Introduction Policy Networks Users Authentication Processes Files Retrospective Computer Security: Art

  1. System Security Chapter 29 Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 29-1

  2. Outline • Introduction • Policy • Networks • Users • Authentication • Processes • Files • Retrospective Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 29-2

  3. Introduction • How does administering security affect a system? • Focus on two systems • DMZ web server • User system in development subnet • Assumptions • DMZ system: assume any user of trusted administrative host has authenticated to that system correctly and is a “trusted” user • Development system: standard UNIX or UNIX-like system which a set of developers can use Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 29-3

  4. Policy • Web server policy discussed in Chapter 28 • Focus on consequences • Development system policy components, effects • Comparison Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 29-4

  5. DMZ Web Server: Consequences of Policy 1. Incoming web connections come from outer firewall 2. Users log in from trusted administrative host; web pages also downloaded through it 3. Log messages go to DMZ log host only 4. Web server may query DMZ DNS system for IP addresses 5. Other than these, no network services provided 6. Runs CGI scripts • One writes enciphered data to spool area 7. Implements services correctly, restricts access as much as possible 8. Public keys reside on web server Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 29-5

  6. Constraints on DMZ Web Server WC1 No unrequested network connections except HTTP, HTTPS from outer firewall and SSH from trusted administrative host – Replies to DNS queries from DMZ DNS okay WC2 User access only to those with user access to trusted administrative host – Number of these users as small as possible – All actions attributed to individual account, not group or group account Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 29-6

  7. Constraints on DMZ Web Server WC3 Configured to provide minimal access to system • Transfer of enciphered file to spool area should not be under web server control WC4 Software is high assurance • Needs extensive logging WC5 Contains as few programs, as little software, configuration information, and other data as possible • Minimizes effects of successful attack Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 29-7

  8. Development System • Development network ( devnet ) background • Firewall separating it from other subnets • DNS server • Logging server for all logs • File servers • User database information servers • Isolated system used to build “base system configuration” for deployment to user systems • User systems • What follows applies only to user systems Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 29-8

  9. Devnet User System: Policy Components 1. Only authorized users can use devnet systems; can work on any workstation 2. Sysadmins must be able to access workstations at any time 3. Authorized users trusted not to attack systems 4. All network communications except email confidential, integrity checked 5. Base standard configuration cannot be changed 6. Backups allow any system to be restored 7. Periodic, ongoing audits of devnet systems Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 29-9

  10. Consequences for Infrastructure • Firewall at boundary enforces network security policy • Changes to network policy made only at firewall • Devnet systems need not be as tightly secured • No direct access between Internet, devnet systems • Developers who need to do so have separate workstations connected to commercial ISP • These are physically disconnected from devnet and cannot be easily reconnected Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 29-10

  11. Consequences for User Systems DC1 Communications authenticated, enciphered, integrity checked • Consistent naming scheme across systems DC2 Each workstation has privileged accounts for administrators • Multiple administrative accounts to limit access to particular privileged functions DC3 Notion of “audit” or “login” identity associated with each action • So actions can be tied to individuals Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 29-11

  12. Consequences for User Systems DC4 Need approval to install program, and must install it in special area • Separates it from base system software DC5 Each workstation protects base system software from being altered • Best way: keep it on read-only media DC6 Employee’s files be available continuously • Even if workstation goes down • Same permissions wherever employee accesses them Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 29-12

  13. Consequences for User Systems DC7 Workstations store only transient files, so need not be backed up • Permanent files stores on file server, mounted remotely • Software, kernel on read-only media DC8 Logging system to hold logs needed • Security officers need access to systems, network Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 29-13

  14. Procedural Mechanisms • Some restrictions cannot be enforced by technology • Moving files between ISP workstation, devnet workstation using a floppy • No technological way to prevent this except by removing floppy drive • Infeasible due to nature of ISP workstations • Drib has made procedures, consequences for violating procedures, very clear Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 29-14

  15. Comparison • Spring from different roles • DMZ web server not a general-use computer • Devnet workstation is • DMZ web server policy: focus on web server • System provides that service (and supporting services) only; only administrative users have access as users • Devnet workstation policy: focus on more complex environment • Software creation, testing, maintenance • Many different users Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 29-15

  16. Networks • Both systems need appropriate network protections • Firewalls provide much of this, but separation of privilege says the systems should too • How do administrators configure these? Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 29-16

  17. DMZ Web Server • Accepts web requests only from inner firewall • May allow internal users to access web site for testing purposes in near future • Configuration file for web server software: evaluate allow, then deny lines order allow, deny allow from outer_firewall anything outer firewall sends is okay allow from inner_firewall anything inner firewall sends is okay don’t accept anything else deny from all • Note inner firewall prevents internal hosts from accessing DMZ web server (for now) • If changed, web server configuration will stay same Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 29-17

  18. DMZ Web Server: Web Server • Accepts SSH connections only from trusted administrative host • Configuration file for web software: evaluate allow, then deny lines order allow, deny allow from outer_firewall anything outer firewall sends is okay allow from inner_firewall anything inner firewall sends is okay don’t accept anything else deny from all • Note inner firewall prevents internal hosts from accessing DMZ web server (for now) • If changed, web server configuration will stay same Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 29-18

  19. DMZ Web Server: SSH Server • Accepts SSH connections only from authorized users coming in from trusted administrative server • SSH provides per host and per user authentication • Public keys pre-loaded on web server • Configuration file for ssh server: connections from admin server okay allow trusted_admin_server deny all refuse all others • Note inner firewall prevents other internal hosts from accessing SSH server on this system • Not expected to change Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 29-19

  20. Availability • Need to restart servers if they crash • Automated, to make restart quick • Script #! /bin/sh echo $$ > /var/servers/webdwrapper.pid while true do /usr/local/bin/webd sleep 30 done • If server terminates, 30 sec later it restarts Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 29-20

  21. DMZ Web Server: Clients • DNS client to get IP addresses, host names from DMZ DNS • Client ignores extraneous data • If different responses to query, discard both • Logging client to send log messages to DMZ log server • Log any attempted connections to any port Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 29-21

  22. Devnet Workstation • Servers: • Mail (SMTP) server • Very simple. just forwards mail to central devnet mail server • SSH server • Line printer spooler • Logging server • All use access control wrappers • Used to restrict connections from within devnet as well as duplicate firewall restrictions Computer Security: Art and Science , 2 nd Edition Version 1.0 Slide 29-22

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Linux System Security Tunables Linux System Security Tunables Linux System Security Tunables

Linux System Security Tunables Linux System Security Tunables Linux System Security Tunables

Linux System Security Tunables Linux System Security Tunables Linux System Security Tunables http://outflux.net/slides/2013/drupal/tunables.pdf R0Ng DrupalCon Portland 2013 Kees Cook <keescook@google.com> (pronounced Case) Who is

474 views • 33 slides
System Security I: Introduction TDDD17 Information Security, Second Course Ulf Kargn

System Security I: Introduction TDDD17 Information Security, Second Course Ulf Kargn

System Security I: Introduction TDDD17 Information Security, Second Course Ulf Kargn Department of Computer and Information Science Linkping University System Security 2 Security in computer systems Hardware (System)

838 views • 56 slides
Protection and Security Threat is potential security violation Attack is attempt to breach

Protection and Security Threat is potential security violation Attack is attempt to breach

CSC 4103 - Operating Systems The Security Problem Spring 2007 Security must consider external environment of the system, and protect the system resources Lecture - XX Intruders (crackers) attempt to breach security Protection and

195 views • 4 slides
System Security System Security Aurlien Francillon francill@eurecom.fr Administrativa...

System Security System Security Aurlien Francillon francill@eurecom.fr Administrativa...

System Security System Security Aurlien Francillon francill@eurecom.fr Administrativa... Administrativa... About me Assistant professor at Eurecom since 2011 Doing security research Embedded systems (MCU, smart phones,...)

1.21k views • 100 slides
Module 20: Security The Security Problem Authentication Program Threats System

Module 20: Security The Security Problem Authentication Program Threats System

Module 20: Security The Security Problem Authentication Program Threats System Threats Threat Monitoring Encryption Silberschatz and Galvin 1999 Operating System Concepts 20.1 The Security Problem Security must

155 views • 11 slides
Network and Certificate System Security Requirements Network and Certificate System Security

Network and Certificate System Security Requirements Network and Certificate System Security

Network and Certificate System Security Requirements Network and Certificate System Security Requirements (NCSSR) Effective 1 January 2013 No amendments since passed Included in WebTrust Principles and Criteria for Certification

253 views • 7 slides
Roadmap for Section 7.1 The Security Problem - a Definition Program & System Threats

Roadmap for Section 7.1 The Security Problem - a Definition Program & System Threats

Unit OS7: Security 7.1. The Security Problem Windows Operating System Internals - by David A. Solomon and Mark E. Russinovich with Andreas Polze Roadmap for Section 7.1 The Security Problem - a Definition Program & System Threats Security

518 views • 6 slides
Security Security as term, Possible Security violations Authentication Criteria for

Security Security as term, Possible Security violations Authentication Criteria for

BS1 WS19/20 topic-based slides Security Security as term, Possible Security violations Authentication Criteria for Trust in Computer Systems Three hearts of Windows Security DACLs A Look at Security System is secure if

988 views • 20 slides
Module 19: Security The Security Problem Authentication Program Threats System

Module 19: Security The Security Problem Authentication Program Threats System

Module 19: Security The Security Problem Authentication Program Threats System Threats Securing Systems Intrusion Detection Encryption Windows NT Operating System Concepts Silberschatz, Galvin and Gagne 2002

425 views • 9 slides
System Aware Cyber Security Barry M. Horowitz, PI University of Virginia November, 2012 System

System Aware Cyber Security Barry M. Horowitz, PI University of Virginia November, 2012 System

System Aware Cyber Security Barry M. Horowitz, PI University of Virginia November, 2012 System Aware Cyber Security Operates at the system application-layer , For security inside of the network and perimeter protection provided for the

164 views • 3 slides
Chapter 9: Security Security The security environment Basics of cryptography User

Chapter 9: Security Security The security environment Basics of cryptography User

Chapter 9: Security Security The security environment Basics of cryptography User authentication Attacks from inside the system Attacks from outside the system Protection mechanisms Trusted systems Chapter 9: Security

801 views • 65 slides
Roadmap for Section 7.2. Windows Security Features Components of the Security System Windows

Roadmap for Section 7.2. Windows Security Features Components of the Security System Windows

Unit OS7: Security 7.2. Windows Security Components and Concepts Windows Operating System Internals - by David A. Solomon and Mark E. Russinovich with Andreas Polze Roadmap for Section 7.2. Windows Security Features Components of the Security

453 views • 14 slides
Security in an Operating System Operating systems need to protect against two types of security

Security in an Operating System Operating systems need to protect against two types of security

H Security Security in an Operating System Operating systems need to protect against two types of security violations: Accidental security violations, e.g.: a program accidentally overwrites a file; a user issues rm -rf *,

6.18k views • 28 slides
Overview System Security Scanning Security Scanning and Discovery Important Security Web

Overview System Security Scanning Security Scanning and Discovery Important Security Web

Overview System Security Scanning Security Scanning and Discovery Important Security Web Sites Fingerprinting OS FingerPrinting IP Stacks Share Scans Chapter 14 SNMP Vulnerabilities FingerPrinting TCP/IP Services

439 views • 8 slides
OS Security Thierry Sans Security is a wide topic CSCD27 Computer and Network Security covers

OS Security Thierry Sans Security is a wide topic CSCD27 Computer and Network Security covers

OS Security Thierry Sans Security is a wide topic CSCD27 Computer and Network Security covers Cryptography Network security System security Web security (recap) Protection File systems implement a protection system Who

800 views • 30 slides
CIP 101 Training CIP-007-3a Cyber Security System Security Management Overview September

CIP 101 Training CIP-007-3a Cyber Security System Security Management Overview September

Eric Weston Wally Magda, CISSP, PSP, CISA Compliance Auditor, Cyber Compliance Auditor, Cyber Security Security CIP 101 Training CIP-007-3a Cyber Security System Security Management Overview September 24-25, 2013 Salt Lake City, UT No

2.02k views • 198 slides
U.S. Department of Housing and Urban Development Office of Housing Counseling Facilitated by

U.S. Department of Housing and Urban Development Office of Housing Counseling Facilitated by

U.S. Department of Housing and Urban Development Office of Housing Counseling Facilitated by Booth Management Consulting 7230 Lee Deforest Drive, Suite 202 Columbia, MD 21046 Timekeeping & Personnel Activity Reporting February 7, 2019

626 views • 39 slides
IP Routing: Interdomain CS/ECE 438: Spring 2014 Instructor: Matthew Caesar

IP Routing: Interdomain CS/ECE 438: Spring 2014 Instructor: Matthew Caesar

IP Routing: Interdomain CS/ECE 438: Spring 2014 Instructor: Matthew Caesar http://courses.engr.illinois.edu/cs438/ Internet Routing So far, only considered routing within a domain Many issues can be ignored in this setting because

1.25k views • 75 slides
Provide avenue for input Participation from: Alexandria Federation of Civic Associations

Provide avenue for input Participation from: Alexandria Federation of Civic Associations

Transportation Planning Administrative Guidelines Update Department of Transportation and Environmental Services Transportation Planning Division Why is the City updating its Guidelines? Provide avenue for input from partner firms and the

551 views • 9 slides
Administrative Overview 6 Projects Design Review: Monday before 6:30pm Lab Friend

Administrative Overview 6 Projects Design Review: Monday before 6:30pm Lab Friend

Administrative Overview 6 Projects Design Review: Monday before 6:30pm Lab Friend Center 010 (Fishbowl) COS 318 Project 1 Bootloader Problem We will write an Operating System Manages programs, resources, users, etc.

371 views • 14 slides
Whats new in Sudo 1.9? Peter Czanik / One Identity (Balabit) Todd Miller / One Identity

Whats new in Sudo 1.9? Peter Czanik / One Identity (Balabit) Todd Miller / One Identity

Whats new in Sudo 1.9? Peter Czanik / One Identity (Balabit) Todd Miller / One Identity Overview What is sudo? Sudo 1.8 features Whats new in 1.9? 2 What is sudo? Answers, depending on experience and size of environment:

608 views • 42 slides
Faculty Activity R eporting Workshop Brought to you by Hanna Jarsocrak, Office of Institutional

Faculty Activity R eporting Workshop Brought to you by Hanna Jarsocrak, Office of Institutional

Faculty Activity R eporting Workshop Brought to you by Hanna Jarsocrak, Office of Institutional R esearch Goals Logging into FAR Access your faculty FARs FTE Calculations& Guidelines Adjusting the activity Submit FAR

510 views • 24 slides
District Grant Training District 5440 Introductions Jim Epstein Fort Collins Rotary Club

District Grant Training District 5440 Introductions Jim Epstein Fort Collins Rotary Club

District Grant Training District 5440 Introductions Jim Epstein Fort Collins Rotary Club Introductions Nancy Pettus Jackson Hole Breakfast Tom Dunn Greeley Centennial Wilton Lyles Fort Collins Breakfast Krishna

373 views • 20 slides
Webinar June 2014 Whats in todays presentation: How to convert your proposal and

Webinar June 2014 Whats in todays presentation: How to convert your proposal and

The Florida Division of Cultural Affairs presents 2014-2015 Grantee Management Webinar June 2014 Whats in todays presentation: How to convert your proposal and budget into a Scope of Work and Deliverables Expenditure logs and

728 views • 37 slides

More recommend