Presentation is loading. Please wait.

Presentation is loading. Please wait.

Forms of Network Attacks Gabriel Owens COSC 352 February 24, 2011.

Published byJane Blake Modified over 8 years ago

Similar presentations

Presentation on theme: "Forms of Network Attacks Gabriel Owens COSC 352 February 24, 2011."— Presentation transcript:

1 Forms of Network Attacks Gabriel Owens COSC 352 February 24, 2011

2 Roadmap Definition Different Forms of Attacks Prevention Conclusion Questions??

3 Definition What is a network attack? Passive Active

4 Different Types of Attack Eavesdropping Data Modification Identity Spoofing (IP Address Spoofing) Password Based Attacks Denial of Service Attack Man-In-The-Middle-Attack Compromised-Key Attack Sniffer Attack Application-Layer Attack

5 Eavesdropping Majority of network communications occur in an unsecured or “cleartext” format. Allows attacker to “listen in” or read the network traffic. Known as Sniffing or Snooping Biggest security issue faced by network administrators in an enterprise.

6 Eavesdropping (cont.) Prevention In order to prevent the eavesdropping of data traversed on your network, you must have strong encryption services based on cryptography.

7 Identity Spoofing Computers are identified in an operating system or network by a valid IP Address. Possible for IP Address to be falsely assumed (identity spoofing). Special Programs to construct IP packets that appear to originate from valid addresses inside the corporate intranet. After gaining access with a valid IP, attacker can modify, delete or reroute your data, As well as perform a number of other attacks.

8 Data Modification Step One – Read Data Step Two – Alter Data Modify data in the packet without the knowledge of the sender or receiver. Example: Purchase Requisitions, exchange of items, amounts and billing information

9 Password Based Attacks Access Rights to a computer or network resources are determined by who you are (username and password) If an attacker gains access to a valid user account he is able to do whatever that user can do Obtain lists of valid user and computer names and network information. Modify server and network configurations, including access controls and routing tables. Modify, reroute, or delete your data.

10 Denial of Service Attack Prevents normal use of computer or network by valid users (Unlike Password Based Attack) After gaining access to the network Randomize the attention of your internal Information Systems staff so that they do not see the intrusion immediately, which allows the attacker to make more attacks during the diversion. Send invalid data to applications or network services, which causes abnormal termination or behavior of the applications or services. Flood a computer or the entire network with traffic until a shutdown occurs because of the overload. Block traffic, which results in a loss of access to network resources by authorized users.

11 Man-In-The-Middle Attack Attacker is monitoring, capturing and controlling data sent between you and the person whom you are communicating with transparently At low levels of communication on the network layer, computers might not be able to determine with whom they are exchanging data. Attacker assumes your identity and attempts to gather as much information as possible, while the person you’re communicating with thinks it is you.

12 Compromised-Key Attack Definition: Key – A secret code or number that is needed to interpret secured information. Obtaining a Key: Difficult and Resource- Intensive, but possible. Attacker can use key to gain access on a secured communication without the knowledge of either party. Can also use key to attempt computation of additional keys, which would lead to access to other secure communications.

13 Sniffer Attack Definition: Sniffer – An application or device that can read, monitor, and capture network data exchanges and read network packets. If packets aren’t encrypted, the Sniffer provides a full view of the data inside the packets. Using a Sniffer, an attacker is capable of: Analyzing your network and gain information to eventually cause your network to crash or to become corrupted. Read your communications.

14 Application-Layer Attack Targets application servers by deliberately causing a fault in the server’s operating system or applications. Results in the attacker gaining the ability to bypass normal access controls. Capable of the same damages as a man-in-the-middle attack

15 Application-Layer (cont.) Once the attacker has gained access, he can do any of the following: Read, add, delete, or modify your data or operating system. Introduce a virus program that uses your computers and software applications to copy viruses throughout your network. Introduce a Sniffer program to analyze your network and gain information that can eventually be used to crash or to corrupt your systems and network. Abnormally terminate your data applications or operating systems. Disable other security controls to enable future attacks.

16 Prevention Always have some type of security plan in place. Have some sort of encryption service based on cryptography. Make sure all applications are up-to- date in order to have as little vulnerabilities as possible.

17 Video Denial of Service Attack - Example

18 Resources "Common Types of Network Attacks." Microsoft TechNet: Resources for IT Professionals. Web. 24 Feb. 2011.. "Strengthen Application Defenses to Prevent Network Attacks | TechRepublic." TechRepublic - A Resource for IT Professionals. Web. 24 Feb. 2011.. "Network Security Types of Attack Passive Attack Active." Complete Computer Networking Notes Guides Tutorials. Web. 24 Feb. 2011..

19 Questions Questions??

Download ppt "Forms of Network Attacks Gabriel Owens COSC 352 February 24, 2011."

Similar presentations

Providing protection from potential security threats that exist for any internet-connected computer is termed e- security. It is important to be able to.

Providing protection from potential security threats that exist for any internet-connected computer is termed e- security. It is important to be able to.
By Md Emran Mazumder Ottawa University Student no: 6282845.

By Md Emran Mazumder Ottawa University Student no:
Chapter 1: Fundamentals of Security JV Note: Images may not be relevant to information on slide.

Chapter 1: Fundamentals of Security JV Note: Images may not be relevant to information on slide.
Ragib Hasan University of Alabama at Birmingham CS 491/691/791 Fall 2012 Lecture 2 08/21/2012 Security and Privacy in Cloud Computing.

Ragib Hasan University of Alabama at Birmingham CS 491/691/791 Fall 2012 Lecture 2 08/21/2012 Security and Privacy in Cloud Computing.
Security and Trust in E- Commerce. The E-commerce Security Environment: The Scope of the Problem  Overall size of cybercrime unclear; amount of losses.

Security and Trust in E- Commerce. The E-commerce Security Environment: The Scope of the Problem  Overall size of cybercrime unclear; amount of losses.
1 Topic 1 – Lesson 3 Network Attacks Summary. 2 Questions ► Compare passive attacks and active attacks ► How do packet sniffers work? How to mitigate?

1 Topic 1 – Lesson 3 Network Attacks Summary. 2 Questions ► Compare passive attacks and active attacks ► How do packet sniffers work? How to mitigate?
Lecture 1: Overview modified from slides of Lawrie Brown.

Lecture 1: Overview modified from slides of Lawrie Brown.
Network Attacks Mark Shtern.

Network Attacks Mark Shtern.
Hackers They can u Read the data files u Run the application programs u Modify some files which may cause damages Individuals who gain unauthorized access.

Hackers They can u Read the data files u Run the application programs u Modify some files which may cause damages Individuals who gain unauthorized access.
CSA 223 network and web security Chapter one

CSA 223 network and web security Chapter one
1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.

1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.
Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.

Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.
Security Awareness: Applying Practical Security in Your World, Second Edition Chapter 5 Network Security.

Security Awareness: Applying Practical Security in Your World, Second Edition Chapter 5 Network Security.
Security Awareness: Applying Practical Security in Your World

Security Awareness: Applying Practical Security in Your World
Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Information.

Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Information.
Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.

Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.
Analysis of Attack By Matt Kennedy. Different Type of Attacks o Access Attacks o Modification and Repudiation Attacks o DoS Attacks o DDoS Attacks o Attacks.

Analysis of Attack By Matt Kennedy. Different Type of Attacks o Access Attacks o Modification and Repudiation Attacks o DoS Attacks o DDoS Attacks o Attacks.
Network Infrastructure Security. LAN Security Local area networks facilitate the storage and retrieval of programs and data used by a group of people.

Network Infrastructure Security. LAN Security Local area networks facilitate the storage and retrieval of programs and data used by a group of people.
What is in Presentation What is IPsec Why is IPsec Important IPsec Protocols IPsec Architecture How to Implement IPsec in linux.

What is in Presentation What is IPsec Why is IPsec Important IPsec Protocols IPsec Architecture How to Implement IPsec in linux.
Threat Modeling for Cloud Computing (some slides are borrowed from Dr. Ragib Hasan) Keke Chen 1.

Threat Modeling for Cloud Computing (some slides are borrowed from Dr. Ragib Hasan) Keke Chen 1.

Similar presentations

Ads by Google