Presentation is loading. Please wait.

Presentation is loading. Please wait.

Network Security (the Internet Security)

Published byRosemary Johns Modified over 6 years ago

Similar presentations

Presentation on theme: "Network Security (the Internet Security)"— Presentation transcript:

1 Network Security (the Internet Security)
Kittiphan Techakittiroj

2 Goals of Security Ensure the only authorized individuals have access to information Preventing unauthorized creation, alteration, or destruction of data Ensuring that legimate users are not denied access to information Ensuring that resources are used in legitimate way

3 Classication of Security
Communication security signal Computer security user permission file sharing access control

4 Classication of Security
Classication of Security (secondary) Physical security: locks on doors, access badges, biometrics Personnel security: employee screening Administrative security: investigation of security breaches, policy Information/data security: controlling the reporduction of sensitive material Online security: controlling access to online data

5 Classication of Security Violation
Cracking Spoofing Snooping Social Engineering Denial of Service

6 Classification of Security Violation
Cracking Often called as “Hacking” Break through the security by using the knowledge of Software Engineer Computer Network Operating System etc.

7 Classification of Security Violation: Cracking
Cracker few real crackers (super crackers) other cracker used asking expert public available information (WWW) protected by security report patches, updates and hot fixes

8 Classification of Security Violation
Spoofing Act as the others, e.g. fake e.g. sending an by pretending to be other (theoritical can be any name) fake IP: e.g. to gain accesses to the prohibit area

9 Classification of Security Violation
Spoofing Starting point for other security violation False information protected by digital signature digital certification

10 Classification of Security Violation
Snooping Steal information during transmission Hardware: Packet Sniffer usually need access to the physical network Software: capture keystroke

11 Classification of Security Violation
Snooping cont. Other: Trashing (happened to credit card number) protected by: encryption security access control

12 Classification of Security Violation
Social Engineering Talking between user and cracker Serious and Common protected by: policy knowledge of users

13 Classification of Security Violation
Denial of Service attack the weakness of the network, e.g. spamming (mail bomb) spamming web request WinNuke protected by: hot fixes & patches firewall logging system

14 Benefit of Security Confidentiality
Authentication (including access control) Message Digest (including data integrity) protect unknown modification, e.g. virus sampling keywords of the information and do the encryption Non-repudiation: digital signature & certification

15 Potential Security Risk
Lack of safeguards poorly configured & administered systems basic security problems with communication protocol (IP, TCP, UDP) faulty service program basic security problem with service programs (WWW, FTP)

16 General rules for Protection
software current & update fixed & patch & upgrade encrypt sensitive information train user & administrator password & security policy monitoring: 100% monitor --> 100% secure

17 Standard Technology on Security
General rules for Protection Standard Technology on Security firewall: packet filtering & proxy encryption VPN (virtual private network) digital signature & certification SET S-HTTP

18 Emerging Technology on Security
General rules for Protection Emerging Technology on Security encryption IPSec (IP Security Protocol) SSL or TLS (Transport Layer Security) CDSA (Common Data Security Architecture) XBSS (Baseline Security Services) XDAS (Distribute Audit Service) XSSO (Single Sign On)

19 Reference Books Developing Secure Commerce Applications by Online O’Reilly Web Development Courses ( 1999)

Download ppt "Network Security (the Internet Security)"

Similar presentations

FIREWALLS. What is a Firewall? A firewall is hardware or software (or a combination of hardware and software) that monitors the transmission of packets.

FIREWALLS. What is a Firewall? A firewall is hardware or software (or a combination of hardware and software) that monitors the transmission of packets.
Kittiphan Techakittiroj (21/05/58 10:00 น. 21/05/58 10:00 น. 21/05/58 10:00 น.) Firewall Kittiphan Techakittiroj

Kittiphan Techakittiroj (21/05/58 10:00 น. 21/05/58 10:00 น. 21/05/58 10:00 น.) Firewall Kittiphan Techakittiroj
Chapter 10: Data Centre and Network Security Proxies and Gateways * Firewalls * Virtual Private Network (VPN) * Security issues * * * * Objectives:

Chapter 10: Data Centre and Network Security Proxies and Gateways * Firewalls * Virtual Private Network (VPN) * Security issues * * * * Objectives:
Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.

Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.
Security+ Guide to Network Security Fundamentals

Security+ Guide to Network Security Fundamentals
Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.

Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.
Secure communications Week 10 – Lecture 2. To summarise yesterday Security is a system issue Technology and security specialists are part of the system.

Secure communications Week 10 – Lecture 2. To summarise yesterday Security is a system issue Technology and security specialists are part of the system.
Risks, Controls and Security Measures

Risks, Controls and Security Measures
Web server security Dr Jim Briggs WEBP security1.

Web server security Dr Jim Briggs WEBP security1.
Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.

Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.
Chapter 19 Security.

Chapter 19 Security.
Firewall 2 * Essential Network Security Book Slides. IT352 | Network Security |Najwa AlGhamdi 1.

Firewall 2 * Essential Network Security Book Slides. IT352 | Network Security |Najwa AlGhamdi 1.
Alter – Information Systems 4th ed. © 2002 Prentice Hall 1 E-Business Security.

Alter – Information Systems 4th ed. © 2002 Prentice Hall 1 E-Business Security.
Kittiphan Techakittiroj (24/08/58 22:49 น. 24/08/58 22:49 น. 24/08/58 22:49 น.) Digital Certification Kittiphan Techakittiroj

Kittiphan Techakittiroj (24/08/58 22:49 น. 24/08/58 22:49 น. 24/08/58 22:49 น.) Digital Certification Kittiphan Techakittiroj
Lecture 12 Electronic Business (MGT-485). Recap – Lecture 11 E-Commerce Security Environment Security Threats in E-commerce Technology Solutions.

Lecture 12 Electronic Business (MGT-485). Recap – Lecture 11 E-Commerce Security Environment Security Threats in E-commerce Technology Solutions.
Kittiphan Techakittiroj (04/09/58 19:56 น. 04/09/58 19:56 น. 04/09/58 19:56 น.) Network Security (the Internet Security) Kittiphan Techakittiroj

Kittiphan Techakittiroj (04/09/58 19:56 น. 04/09/58 19:56 น. 04/09/58 19:56 น.) Network Security (the Internet Security) Kittiphan Techakittiroj
1/28/2010 Network Plus Security Review Identify and Describe Security Risks People –Phishing –Passwords Transmissions –Man in middle –Packet sniffing.

1/28/2010 Network Plus Security Review Identify and Describe Security Risks People –Phishing –Passwords Transmissions –Man in middle –Packet sniffing.
AIS, 20141 Passwords Should not be shared Should be changed by user Should be changed frequently and upon compromise (suspected unauthorized disclosure)

AIS, Passwords Should not be shared Should be changed by user Should be changed frequently and upon compromise (suspected unauthorized disclosure)
Tutorial Chapter 5. 2 Question 1: What are some information technology tools that can affect privacy? How are these tools used to commit computer crimes?

Tutorial Chapter 5. 2 Question 1: What are some information technology tools that can affect privacy? How are these tools used to commit computer crimes?
1.Too many users 2.Technical factors 3.Organizational factors 4.Environmental factors 5.Poor management decisions Which of the following is not a source.

1.Too many users 2.Technical factors 3.Organizational factors 4.Environmental factors 5.Poor management decisions Which of the following is not a source.

Similar presentations

Ads by Google