web browsing cryptography vpn pgp
play

Web Browsing, Cryptography, VPN, PGP Week 5 Frank Chen | Spring - PowerPoint PPT Presentation

Aug 28, 2022 •32 likes •542 views

Keybase, a company that strives to provide everyone with GPG CS 88S Web Browsing, Cryptography, VPN, PGP Week 5 Frank Chen | Spring 2017 Frank Chen | Spring 2017 Agenda Review last weeks material How the Internet Works, abridged

  1. Keybase, a company that strives to provide everyone with GPG CS 88S Web Browsing, Cryptography, VPN, PGP Week 5 Frank Chen | Spring 2017 Frank Chen | Spring 2017

  2. Agenda ● Review last week’s material ● How the Internet Works, abridged ● Cryptography/PGP ● How does a VPN Work? ● What is Proxy Browsing? ● Wireshark Demo Frank Chen | Spring 2017

  3. Mid-Quarter Feedback & Final Project Frank Chen | Spring 2017

  4. Agenda ● Review last week’s material ● How the Internet Works, abridged ● Cryptography/PGP ● How does a VPN Work? ● What is Proxy Browsing? ● Wireshark Demo Frank Chen | Spring 2017

  5. A typical Authentication Session AUTHENTICATED! PASSWORD If YES Proceed to your personal STORED ONLINE information/profile LOGIN SCREEN (SHA-1 HASH) Username : fc1995 Hash the fc1995: Password : earl123 Input 4cf39465730e75ebbec21 Password c67facaba7a08d82f0f DENIED! If NO Do the two match? Try again. Frank Chen | Spring 2017

  6. A typical Dictionary Attack RETRIEVED THE PASSWORD PASSWORD FROM If YES PASSWORD File Proceed to use the DICTIONARY password to login to your (SHA-1 HASH) account ...Dog, Dogs, Dogcatcher, Hash the fc1995: Dogcatchers, Dogberry, Input 4cf39465730e75ebbec21 Dogberries, Dogma, CONTINUE! c67facaba7a08d82f0f Password Dogmatic, Dogmatized, If NO Dog1. Dog2, Dog3, Dog4... Dictionary Attacks can Do the two hashes match? submit up to 1000 attempts per minute Frank Chen | Spring 2017

  7. Password Managers Frank Chen | Spring 2017

  8. Agenda ● Review last week’s material ● How the Internet Works, abridged ● Cryptography/PGP ● How does a VPN Work? ● What is Proxy Browsing? ● Wireshark Demo Frank Chen | Spring 2017

  9. What happens when you type www.google.com ? Frank Chen | Spring 2017

  10. 1 2 3 4 5 6 7 What happens when you type www.google.com ? Frank Chen | Spring 2017

  11. 1 2 3 4 5 6 7 Using a Browser Def: A Program installed on your computer that allows you to visit websites. Frank Chen | Spring 2017 Source: http://bit.ly/2oX9Gwr

  12. 1 2 3 4 5 6 7 There are many Browsers Frank Chen | Spring 2017

  13. 1 2 3 4 5 6 7 Browser checks cache Def: The browser cache is a temporary storage location on your computer for files downloaded by your browser to display websites. Frank Chen | Spring 2017

  14. 1 2 3 4 5 6 7 Browser checks cache Frank Chen | Spring 2017

  15. 1 2 3 4 5 6 7 Browser asks OS for IP Address Def: Operating System (OS) is the software that supports a computer's basic functions Frank Chen | Spring 2017

  16. 1 2 3 4 5 6 7 Browser asks OS for IP Address Def: Internet Protocol (IP) Address is a unique string of numbers separated by periods that identifies each computer Ex. 172.217.11.78 (Google's IP Address) Frank Chen | Spring 2017

  17. 1 2 3 4 5 6 7 OS makes DNS Lookup for IP Def: Domain Name System (DNS) Lookup translates the domain name into an IP address your browser can use Frank Chen | Spring 2017 Video: http://bit.ly/1jld0uV

  18. 1 2 3 4 5 6 7 Browser sends HTTP request Def: The Hypertext Transfer Protocol (HTTP) is the foundation of data communication for the World Wide Web Note: OSI Model-related subjects, TCP and UDP are out of scope for this course. Frank Chen | Spring 2017

  19. 1 2 3 4 5 6 7 Browser reads response from server Def: Client/Server Model - A server host runs programs to share resource with clients. A client does not share resources, but requests a server's content or service function. Frank Chen | Spring 2017

  20. 1 2 3 4 5 6 7 Browser reads response from server Def: The server's Response to the client includes the status code, such as 404 Not Found, or 200 Successful. Frank Chen | Spring 2017 List of HTTP Status Code: http://bit.ly/2ptqwnG

  21. 1 2 3 4 5 6 7 Frank Chen | Spring 2017 List of HTTP Status Code: http://bit.ly/2ptqwnG

  22. 1 2 3 4 5 6 7 Browser renders page to display Def: The response from server contains HTML, CSS, Javascript, images, and all resources needed to render a webpage for the client. Frank Chen | Spring 2017

  23. 1 2 3 4 5 6 7 Frank Chen | Spring 2017

  24. Agenda ● Review last week’s material ● How the Internet Works, abridged ● Cryptography/PGP ● How does a VPN Work? ● What is Proxy Browsing? ● Wireshark Demo Frank Chen | Spring 2017

  25. Cryptography Def: Constructing and analyzing protocols that prevent third parties or the public from reading private messages Frank Chen | Spring 2017

  26. Symmetric Key Cryptography Def: Algorithms for cryptography that use the same cryptographic keys for both encryption of plaintext and decryption of ciphertext Frank Chen | Spring 2017 Source: http://bit.ly/2ppmeiW

  27. The Key Exchange Problem Frank Chen | Spring 2017

  28. The Trust Problem Frank Chen | Spring 2017

  29. Scalability Frank Chen | Spring 2017

  30. Public Key Cryptography Def: Cryptographic system that uses pairs of keys: public keys which may be disseminated widely, and private keys which are known only to the owner. Frank Chen | Spring 2017

  31. Public Key Cryptography Authentication Encryption Public key is used to whereby only the holder of verify that a holder of the paired private key can the paired private key decrypt the message sent the message encrypted with the public key Frank Chen | Spring 2017

  32. Symmetric Key Key used to unlock and lock the drawer Frank Chen | Spring 2017 Source: http://bit.ly/1I2YUeS

  33. Public/Private Key Private Key turns Public Key turns only only clockwise counter-clockwise Frank Chen | Spring 2017 Image Source: http://bit.ly/1I2YUeS

  34. How do you verify someone on the Internet? Frank Chen | Spring 2017

  35. Pretty Good Privacy (PGP) Def: PGP is a program used for signing, encrypting, and decrypting texts, e-mails, files, directories, and whole disk partitions and to increase the security of e-mail communications GnuPG is the free version of PGP Frank Chen | Spring 2017 Source: http://bit.ly/2pCWEp7

  36. Demo Frank Chen | Spring 2017 Source: http://bit.ly/2qrJgDs

  37. Agenda ● Review last week’s material ● How the Internet Works, abridged ● Cryptography/PGP ● How does a VPN Work? ● What is Proxy Browsing? ● Wireshark Demo Frank Chen | Spring 2017

  38. Virtual Private Network (VPN) Def: VPNs allow users to securely access a private network and share data remotely through public networks. Much like a firewall protects your data on your computer, VPNs protect it online. Frank Chen | Spring 2017

  39. Virtual Private Network (VPN) Internet Websites, You Service Resources Provider (ISP) Frank Chen | Spring 2017

  40. Virtual Private Network (VPN) Internet Websites, You Service Resources Provider (ISP) VPN Tunnel Frank Chen | Spring 2017 Source: http://bit.ly/2qBrNZh

  41. UCLA VPN Demo Frank Chen | Spring 2017

  42. Should you use a VPN? Frank Chen | Spring 2017

  43. Pro Con ● ISPs cannot track you ● Ads on free VPNs ● Good for protection in ● VPNs still log your public Wi-Fi setting activity ● Network traffic ● Slow Internet Traffic always encrypted Frank Chen | Spring 2017 Source: http://bit.ly/2qyFTuD

  44. Agenda ● Review last week’s material ● How the Internet Works, abridged ● Cryptography/PGP ● How does a VPN Work? ● What is Proxy Browsing? ● Wireshark Demo Frank Chen | Spring 2017

  45. Proxy Server Def: A server set up as intermediary for the client and server Using a Proxy can allow a user to spoof their IP address Frank Chen | Spring 2017

  46. Hide My Ass Demo Frank Chen | Spring 2017 Source: https://www.hidemyass.com/proxy

  47. Difference between Proxy and VPN? Frank Chen | Spring 2017 Source: http://bit.ly/2pS9liS

  48. Agenda ● Review last week’s material ● How the Internet Works, abridged ● Cryptography/PGP ● How does a VPN Work? ● What is Proxy Browsing? ● Wireshark Demo Frank Chen | Spring 2017

  49. Wireshark Frank Chen | Spring 2017

  50. S�f��� �� ��� C���� T�� Always use HTTPS or VPN Source: Source: https://www.eff.org/ http://bit.ly/2p5R4KX https-everywhere Frank Chen | Spring 2017

  51. Authy, a 2-Factor Authentication Application Next Week... Frank Chen | Spring 2017

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Practical Cryptography for a Peer-to-Peer Web Browsing System A. Pokluda Cheriton School of

Practical Cryptography for a Peer-to-Peer Web Browsing System A. Pokluda Cheriton School of

Introduction Cryptography in P2P Systems A P2P Web Browsing System Comparison of Implementations in C Summary Practical Cryptography for a Peer-to-Peer Web Browsing System A. Pokluda Cheriton School of Computer Science University of

462 views • 21 slides
Models for Models for Retrieval and Browsing Retrieval and Browsing - Structural Models and

Models for Models for Retrieval and Browsing Retrieval and Browsing - Structural Models and

Models for Models for Retrieval and Browsing Retrieval and Browsing - Structural Models and Browsing Berlin Chen 2004 Reference : 1. Modern Information Retrieval , chapter 2 Taxonomy of Classic IR Models Set Theoretic Fuzzy Extended Boolean

837 views • 29 slides
Performance Metrics for Web Browsing draft fan ippm web metrics 00 Peng Fan

Performance Metrics for Web Browsing draft fan ippm web metrics 00 Peng Fan

Performance Metrics for Web Browsing draft fan ippm web metrics 00 Peng Fan Motivation Web browsing is a basic internet service, with a large population of users and proportion of traffic Understanding web browsing

578 views • 10 slides
Models for Models for Retrieval and Browsing Retrieval and Browsing - Fuzzy Set, Extended

Models for Models for Retrieval and Browsing Retrieval and Browsing - Fuzzy Set, Extended

Models for Models for Retrieval and Browsing Retrieval and Browsing - Fuzzy Set, Extended Boolean, Generalized Vector Space Models Berlin Chen 2004 Reference: 1. Modern Information Retrieval . Chapter 2 Taxonomy of Classic IR Models Set

511 views • 30 slides
Secure Browsing and Email Web Browsing with HTTPS Secure Email with OpenPGP Organised by Steven

Secure Browsing and Email Web Browsing with HTTPS Secure Email with OpenPGP Organised by Steven

Free Technology Workshop Secure Browsing and Email Web Browsing with HTTPS Secure Email with OpenPGP Organised by Steven Gordon Room RS309 9am - 12noon Friday 27 June 2014 http://ict.siit.tu.ac.th/moodle/ Adresses Local copies of

667 views • 19 slides
Forced/forceful browsing sws2 1 Forced browsing (not in book!) Supplying a URL directly

Forced/forceful browsing sws2 1 Forced browsing (not in book!) Supplying a URL directly

Software and Web Security 2 Forced/forceful browsing sws2 1 Forced browsing (not in book!) Supplying a URL directly (forcing the URL) rather than by accessing it by following links from other pages Modify (numerical) value in known

1.16k views • 38 slides
The Evolving Architecture of the Web Nick Sullivan Head of Cryptography CFSSL Universal SSL

The Evolving Architecture of the Web Nick Sullivan Head of Cryptography CFSSL Universal SSL

The Evolving Architecture of the Web Nick Sullivan Head of Cryptography CFSSL Universal SSL Keyless SSL Privacy Pass Geo Key Manager Recently Standards work TLS 1.3 C on peting Goals make browsing more performant private HTTP DNS

789 views • 77 slides
HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography & http://cseweb.ucsd.edu/users/mihir/cse207/ Brief History: Proliferation of computers and communication systems in 1960s brought with it a demand to protect

273 views • 24 slides
Web Browsing Topics Physical Exchange of Web Web Browsing 101 Technology Information

Web Browsing Topics Physical Exchange of Web Web Browsing 101 Technology Information

10/24/2011 Web Browsing Topics Physical Exchange of Web Web Browsing 101 Technology Information Browsers Web Evolution of Applications Technology NAGTRI Webinar Series NCJRL / NAAG NAGTRI Webinar Series NCJRL / NAAG Personal

267 views • 12 slides
UCognito: Private Browsing without Tears Meng Xu, Yeongjin Yang, Xinyu Xing, Taesoo Kim, Wenke

UCognito: Private Browsing without Tears Meng Xu, Yeongjin Yang, Xinyu Xing, Taesoo Kim, Wenke

UCognito: Private Browsing without Tears Meng Xu, Yeongjin Yang, Xinyu Xing, Taesoo Kim, Wenke Lee Georgia Institute of Technology 1 Private Browsing Mode Private Browsing Incognito Mode Guest Mode InPrivate Private Window 2 Private

645 views • 46 slides
Basic Cryptography Ge Zhang What is Cryptography Cryptography Cryptosystem: 5-tuple (M,

Basic Cryptography Ge Zhang What is Cryptography Cryptography Cryptosystem: 5-tuple (M,

Karlstad University Basic Cryptography Ge Zhang What is Cryptography Cryptography Cryptosystem: 5-tuple (M, C, E, D, K) M: the set of plaintexts C: the set of ciphertexts E: M x K -> C enciphering functions D: C x K

446 views • 40 slides
Agenda CPSC 533C Information Visualization Project Update Motivation: Exploratory browsing?

Agenda CPSC 533C Information Visualization Project Update Motivation: Exploratory browsing?

Agenda CPSC 533C Information Visualization Project Update Motivation: Exploratory browsing? Exploratory Browsing in The ideal infovis solution: what should it be? Music Space Related work: displaying query-based results

473 views • 6 slides
Intro to Cryptography Definitions Cryptography Cryptanalysis Cryptology CRYPTOGRAPHY

Intro to Cryptography Definitions Cryptography Cryptanalysis Cryptology CRYPTOGRAPHY

Intro to Cryptography Definitions Cryptography Cryptanalysis Cryptology CRYPTOGRAPHY Plaintext Cyphertext More definitions block cipher stream cipher hash function shared key public key digital signature

383 views • 16 slides
Symmetric Key Cryptography Introduction to Symmetric Key Cryptography What can we do?

Symmetric Key Cryptography Introduction to Symmetric Key Cryptography What can we do?

PQCRYPTO Summer School on Post-Quantum Cryptography 2017 Stefan Klbl June 20th, 2017 DTU Compute, Technical University of Denmark Symmetric Key Cryptography Introduction to Symmetric Key Cryptography What can we do? Authentication

711 views • 47 slides
Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and

Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and

Cryptography Cryptography Concepts and Terminology Security Concepts Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and Terminology Cryptography School of Engineering and Technology CQUniversity

322 views • 11 slides
Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and

Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and

Cryptography Cryptography Concepts and Terminology Security Concepts Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and Terminology Cryptography School of Engineering and Technology CQUniversity

453 views • 11 slides
Memory Hierarchy (Performance Optimization) 2 Lab Schedule Activities Assignments Due

Memory Hierarchy (Performance Optimization) 2 Lab Schedule Activities Assignments Due

Computer Systems and Networks ECPE 170 University of the Pacific Memory Hierarchy (Performance Optimization) 2 Lab Schedule Activities Assignments Due Today Tonight Background discussion Lab 7 due by 11:59pm

961 views • 42 slides
Get a perfect 100 in Google PageSpeed and what will happen if you don't Mike Carper (mikeytown2)

Get a perfect 100 in Google PageSpeed and what will happen if you don't Mike Carper (mikeytown2)

Get a perfect 100 in Google PageSpeed and what will happen if you don't Mike Carper (mikeytown2) @mcarper Your site just went live after being under construction for months You have varnish, redis, fastly, and cloudfront! Hosted on a

1.06k views • 78 slides
Memory Hierarchy Y. K. Malaiya Acknowledgements Computer Architecture, Quantitative Approach -

Memory Hierarchy Y. K. Malaiya Acknowledgements Computer Architecture, Quantitative Approach -

Memory Hierarchy Y. K. Malaiya Acknowledgements Computer Architecture, Quantitative Approach - Hennessy, Patterson Vishwani D. Agrawal Review: Major Components of a Computer Processor Devices Control Input Memory Datapath Output Cache

750 views • 46 slides
Applied Algorithm Design Lecture 3 Pietro Michiardi Eurecom Pietro Michiardi (Eurecom) Applied

Applied Algorithm Design Lecture 3 Pietro Michiardi Eurecom Pietro Michiardi (Eurecom) Applied

Applied Algorithm Design Lecture 3 Pietro Michiardi Eurecom Pietro Michiardi (Eurecom) Applied Algorithm Design Lecture 3 1 / 75 PART I : GREEDY ALGORITHMS Pietro Michiardi (Eurecom) Applied Algorithm Design Lecture 3 2 / 75 Greedy

1.01k views • 75 slides
The Clock is Still Ticking: Timing Attacks in the Modern Web Tom Van Goethem, Wouter Joosen,

The Clock is Still Ticking: Timing Attacks in the Modern Web Tom Van Goethem, Wouter Joosen,

The Clock is Still Ticking: Timing Attacks in the Modern Web Tom Van Goethem, Wouter Joosen, Nick Nikiforakis Background: Timing attacks Introduced by Felten et al. in 2000. A side-channel attack analyzing the time that it takes to a

642 views • 21 slides
Welcome! Todays Agenda: Introduction The Idealized Cache Model Divide and

Welcome! Todays Agenda: Introduction The Idealized Cache Model Divide and

/INFOMOV/ Optimization & Vectorization J. Bikker - Sep-Nov 2019 - Lecture 12: Cache - Oblivious Welcome! Todays Agenda: Introduction The Idealized Cache Model Divide and Conquer Sorting Digest INFOMOV

783 views • 35 slides
Finding a Needle in Haystack Presentation by: Neelim Haider Authors (of paper): Doug Beaver,

Finding a Needle in Haystack Presentation by: Neelim Haider Authors (of paper): Doug Beaver,

Finding a Needle in Haystack Presentation by: Neelim Haider Authors (of paper): Doug Beaver, Sanjeev Kumar, Harry C. Li, Jason Sobel, Peter Vajgel Question 1: : Please briefly introduce the Haystacks architecture. Haystack consists of 3

377 views • 12 slides
Use Logical Decoding to build your own application cache By Blagoj Atanasovski Powered by Who

Use Logical Decoding to build your own application cache By Blagoj Atanasovski Powered by Who

Use Logical Decoding to build your own application cache By Blagoj Atanasovski Powered by Who am I Software Engineer at Sorsix https://www.sorsix.com/ I work on: Backends for Web Applications Solutions for Fast Data

782 views • 39 slides

More recommend