Course Title: WEB SECURITY Chapter No: 01 “Introduction to Web-Security” 1 Maiwand Institute Of Higher Education.

Slides:

Advertisements

Similar presentations

Firewalls By Tahaei Fall What is a firewall? a choke point of control and monitoring interconnects networks with differing trust imposes restrictions.

Advertisements

Security in VoIP Networks Juan C Pelaez Florida Atlantic University Security in VoIP Networks Juan C Pelaez Florida Atlantic University.

Computer Security: Principles and Practice Chapter 9 – Firewalls and Intrusion Prevention Systems.

ITIS 1210 Introduction to Web-Based Information Systems Chapter 44 How Firewalls Work How Firewalls Work.

IUT– Network Security Course 1 Network Security Firewalls.

FIREWALLS Chapter 11.

What are computer viruses and its types? Computer Viruses are malicious software programs that damage computer program entering into the computer without.

Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.

FIREWALLS. What is a Firewall? A firewall is hardware or software (or a combination of hardware and software) that monitors the transmission of packets.

FIREWALLS The function of a strong position is to make the forces holding it practically unassailable —On War, Carl Von Clausewitz On the day that you.

(4.4) Internet Protocols Layered approach to Internet Software 1.

Authored by: Rachit Rastogi Computer Science & Engineering Deptt., College of Technology, G.B.P.U.A. & T., Pantnagar.

HIPAA Security Standards What’s happening in your office?

Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.

Security Presented by : Qing Ma. Introduction Security overview security threats password security, encryption and network security as specific.

Security Awareness: Applying Practical Security in Your World, Second Edition Chapter 5 Network Security.

Lesson 11-Virtual Private Networks. Overview Define Virtual Private Networks (VPNs). Deploy User VPNs. Deploy Site VPNs. Understand standard VPN techniques.

Electronic Commerce 2. Definition Ecommerce is the process of buying and selling products and services via distributed electronic media, usually the World.

Network Security. Network security starts from authenticating any user. Once authenticated, firewall enforces access policies such as what services are.

Firewalls CS591 Topics in Internet Security November Steve Miskovitz, Steve Peckham, Kan Hayashi.

FIREWALL TECHNOLOGIES Tahani al jehani. Firewall benefits  A firewall functions as a choke point – all traffic in and out must pass through this single.

Network Security (Firewall) Instructor: Professor Morteza Anvari Student: Xiuxian Chen ID: Term: Spring 2001.

NW Security and Firewalls Network Security

Intranet, Extranet, Firewall. Intranet and Extranet.

Network Security Essentials Chapter 11 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Basic Security Networking for Home and Small Businesses – Chapter 8.

Firewalls Paper By: Vandana Bhardwaj. What this paper covers? Why you need a firewall? What is firewall? How does a network firewall interact with OSI.

1 Chapter 9 E- Security. Main security risks 2 (a) Transaction or credit card details stolen in transit. (b) Customer’s credit card details stolen from.

Chapter 13 – Network Security

Business Computing 550 Lesson 6. 2 Security Threats on Web Sites Issues and vulnerabilities 1.Illegal Access and Use (Hacking the system or users exposing.

OV Copyright © 2013 Logical Operations, Inc. All rights reserved. Network Security  Network Perimeter Security  Intrusion Detection and Prevention.

Introduction of Internet security Sui Wang IS300.

1 Internet Firewalls What it is all about Concurrency System Lab, EE, National Taiwan University R355.

FIREWALLS Vivek Srinivasan. Contents Introduction Need for firewalls Different types of firewalls Conclusion.

11 SECURING YOUR NETWORK PERIMETER Chapter 10. Chapter 10: SECURING YOUR NETWORK PERIMETER2 CHAPTER OBJECTIVES  Establish secure topologies.  Secure.

OV Copyright © 2011 Element K Content LLC. All rights reserved. Network Security  Network Perimeter Security  Intrusion Detection and Prevention.

INTRODUCTION. The security system is used as in various fields, particularly the internet, communications data storage, identification and authentication.

Firewall Technologies Prepared by: Dalia Al Dabbagh Manar Abd Al- Rhman University of Palestine

11 CONFIGURING TCP/IP ADDRESSING AND SECURITY Chapter 11.

Network and Perimeter Security Paula Kiernan Senior Consultant Ward Solutions.

Chapter 01: Introduction to Network Security. Network  A Network is the inter-connection of communications media, connectivity equipment, and electronic.

1 Topic 2: Lesson 3 Intro to Firewalls Summary. 2 Basic questions What is a firewall? What is a firewall? What can a firewall do? What can a firewall.

1 Chapter Overview Password Protection Security Models Firewalls Security Protocols.

Network Security. 2 SECURITY REQUIREMENTS Privacy (Confidentiality) Data only be accessible by authorized parties Authenticity A host or service be able.

Securing the Network Infrastructure. Firewalls Typically used to filter packets Designed to prevent malicious packets from entering the network or its.

1 Network Firewalls CSCI Web Security Spring 2003 Presented By Yasir Zahur.

Internet security  Definition  Types of internet security  Firewalls  Anti spyware  Buffer overflow attack  Phishing  Summary.

Mohammed F & Aya. Peer-to-peer network are usually common in homes and small businesses and are not necessarily expensive. On a peer-to-peer network each.

Role Of Network IDS in Network Perimeter Defense.

“Lines of Defense” against Malware.. Prevention: Keep Malware off your computer. Limit Damage: Stop Malware that gets onto your computer from doing any.

Lect 8 Tahani al jehain. Types of attack Remote code execution: occurs when an attacker exploits a software and runs a program that the user does not.

Regan Little. Definition Methods of Screening Types of Firewall Network-Level Firewalls Circuit-Level Firewalls Application-Level Firewalls Stateful Multi-Level.

I NTRODUCTION TO F IREWALLS. O VERVIEW OF F IREWALLS As the name implies, a firewall acts to provide secured access between two networks A firewall may.

Securing Access to Data Using IPsec Josh Jones Cosc352.

Unit 2 Personal Cyber Security and Social Engineering Part 2.

Week-14 (Lecture-1) Malicious software and antivirus: 1. Malware A user can be tricked or forced into downloading malware comes in many forms, Ex. viruses,

Firewalls. Overview of Firewalls As the name implies, a firewall acts to provide secured access between two networks A firewall may be implemented as.

SAMET KARTAL No one wants to share own information with unknown person. Sometimes while sharing something with someone people wants to keep.

Network System Security - Task 2. Russell Johnston.

Defining Network Infrastructure and Network Security Lesson 8.

CompTIA Security+ Study Guide (SY0-401)

Introduction to Networking

Security in Networking

CompTIA Security+ Study Guide (SY0-401)

* Essential Network Security Book Slides.

Computer Security Firewalls November 19, 2018 ©2004, Bryan J. Higgs.

Firewalls Jiang Long Spring 2002.

Introduction to Network Security

INTERNET SECURITY.

Presentation transcript:

Course Title: WEB SECURITY Chapter No: 01 “Introduction to Web-Security” 1 Maiwand Institute Of Higher Education

Security/ Protection Security Security is the degree of resistance(fight) to, or protection from, harm. It applies to any vulnerable(at risk,defenseless) and valuable(prized) asset, such as a person, residence, community, nation, or organization. Protection The action of protecting someone or something, or the state of being protected. A person or thing that prevents someone or something from suffering harm or injury. Maiwand Institute Of Higher Education 2

Computer security Computer security (Also known as cyber- security or IT Security) is information security as applied to computers and networks. The field covers all the processes and mechanisms by which computer-based equipment, information and services are protected from unintended(unintentional) or unauthorized access, change or destruction. Computer security also includes protection from unplanned events and natural disasters. Maiwand Institute Of Higher Education 3

Web/Internet security Internet security is a branch of computer security specifically related to the Internet, often involving browser security but also network security on a more general level as it applies to other applications or operating systems on a whole. Its objective is to establish rules and measures to use against attacks over the Internet. 4 Maiwand Institute Of Higher Education

M ALICIOUS S OFTWARES / THREATS Maiwand Institute Of Higher Education 5

Malware A computer user can be tricked (mislead, trapped) or forced into downloading software onto a computer that is of malicious( cruel ) intent. Such programs are known as malware and come in many forms, such as viruses, Trojan horses, spyware, and worms. Malicious software is sometimes used to form botnets. 6 Maiwand Institute Of Higher Education

Viruses Viruses are programs that can replicate their structures or effects by infecting other files or structures on a computer. The common use of a virus is to take over a computer to steal data. 7 Maiwand Institute Of Higher Education

Worms Worms are programs that can replicate themselves throughout a computer network, performing malicious tasks throughout. Trojan horse A Trojan horse (commonly known as a Trojan) is a general term for malicious software that pretends to be harmless so that a user willingly allows it to be downloaded onto the computer. 8 Maiwand Institute Of Higher Education

Bot-net A bot-net is a network of "zombie" computers that have been taken over by a "bot" that performs large-scale malicious acts for the creator of the bot-net. 9 Maiwand Institute Of Higher Education

Spyware The term spyware refers to programs that secretly monitor activity on a computer system and report that information to others without the user's consent( permission, agreement ). 10 Maiwand Institute Of Higher Education

Denial-of-service attack A denial-of-service attack (DoS attack) or distributed denial-of-service attack (DDoS attack) is an attempt to make a computer resource unavailable to its intended ( future, planed ) users. Although the means to carry out, motives( reasons ) for, and targets of a DoS attack may vary ( contrast, disagree ), it generally consists ( involves ) of the concerted ( concentrate ) efforts of person or persons to prevent an Internet site or service from functioning efficiently or at all, temporarily or indefinitely. 11 Maiwand Institute Of Higher Education

Buffer overflow attacks A buffer overflow is an attack that could be used by a cracker to get full system access. Buffer overflow attacks are possible when an application that receives data from the network assumes( accept ), rather than checks, that the received data is short enough to be stored properly by the program. Most security applications and suites( groups, collection ) are incapable of sufficient defense against these kinds of attacks. Maiwand Institute Of Higher Education 12

Maiwand Institute Of Higher Education 13

Antivirus Antivirus programs and Internet security programs are useful in protecting a computer or programmable device from malware. Such programs are used to detect and usually eliminate viruses; however, it is now common to see security suites, firewalls, anti-spyware, theft protection, and so on to more thoroughly protect users. Maiwand Institute Of Higher Education 14

Antivirus Traditionally, a user would pay for antivirus software; however, computer users now can, and do, download from a host of free security applications on the Internet. Maiwand Institute Of Higher Education 15

Firewalls A firewall controls access between networks. It generally consists of gateways and filters which vary from one firewall to another. Firewalls also screen network traffic and are able to block traffic that is dangerous. Firewalls act as the intermediate server between SMTP and HTTP connections. Maiwand Institute Of Higher Education 16

Role of firewalls in Internet security and web security Firewalls impose( execut, force ) restrictions on incoming and outgoing packets to and from private networks. All the traffic, whether incoming or outgoing, must pass through the firewall; only authorized traffic is allowed to pass through it. Firewalls create checkpoints between an internal private network and the public Internet, also known as choke points. Maiwand Institute Of Higher Education 17

Role of firewalls in Internet security and web security Firewalls can create choke points based on IP source and TCP port number. They can also serve as the platform for IPsec. Using tunnel( channel ) mode capability, firewall can be used to implement VPNs. Firewalls can also limit network exposure( contacts ) by hiding the internal network system and information from the public Internet. Maiwand Institute Of Higher Education 18

Internet Protocol Security (IPsec) is a technology protocol suite for securing Internet Protocol (IP) communications by authenticating and/or encrypting each IP packet of a communication session. A virtual private network (VPN) extends a private network across a public network, such as the Internet. It enables a computer to send and receive data across shared or public networks Maiwand Institute Of Higher Education 19

Types of firewalls 1.Packet filters 2.Circuit-level gateways 3.Application-level gateways Maiwand Institute Of Higher Education 20

Packet filters Packet filters are one of several different types of firewalls that process network traffic on a packet-by-packet basis. Their main job is to filter traffic from a remote IP host, so a router is needed to connect the internal network to the Internet. The router is known as a screening router, which screens packets leaving and entering the network. Maiwand Institute Of Higher Education 21

Circuit-level gateways The circuit-level gateway is a proxy server that statically defines what traffic will be allowed. Circuit proxies always forward packets containing a given port number, provided the port number is permitted by the rules set. This gateway operates at the network level of an OSI model. The main advantage of a proxy server is its ability to provide Network Address Translation (NAT), which can hide the user's IP address from the Internet, effectively protecting all internal information from the Internet. Maiwand Institute Of Higher Education 22

Application-level gateways An application-level gateway is a proxy server operating at the TCP/IP application level. A packet is forwarded only if a connection is established using a known protocol. Application-level gateways are notable for analyzing entire messages rather than individual packets of data when the data are being sent or received. Maiwand Institute Of Higher Education 23

Security token Some online sites offer customers the ability to use a six-digit code which randomly changes every seconds on a security token. The key on the security token have mathematical computations built-in and manipulate numbers based on the current time built into the device. This means that every thirty seconds there's only a certain possible array of numbers which would be correct to validate access to the online account Maiwand Institute Of Higher Education 24

Security token The website that the user is logging into would be made aware of that devices' serial number and therefore would know the computation and correct time built into the device to verify that the number given is in deed one of the handful of six-digit numbers that would work in that given second cycle. After the seconds the device will present a new random six-digit number which can log into the website. Maiwand Institute Of Higher Education 25

IPsec Protocol This protocol is designed to protect communication in a secure manner using TCP/IP. It is a set of security extensions. It provides security and authentication at the IP layer by using cryptography. To protect the content, the data is transformed using encryption techniques. The IPsec implementation is operated in a host or security gateway environment giving protection to IP traffic. Maiwand Institute Of Higher Education 26