Presentation is loading. Please wait.

Presentation is loading. Please wait.

Intrusion.

Published byLiliana Waters Modified over 5 years ago

Similar presentations

Presentation on theme: "Intrusion."— Presentation transcript:

1 Intrusion

2 Intruders Intruders may be human attackers who manage to gain unauthorized access to computer resources or computer programs that seem to be useful, but secretly invade a system or a resource. In general, three types of intruders can be distinguished. Misfeasor Masquerader Clandestine User

3 Types of Intruders Misfeasor : A legitimate user who accesses the data, programs, or resources for which such access is not authorized, or who is authorized for access but misuse privileges. The user is mostly an insider. Masquerader: An unauthorized individual user who penetrates a system’s access controls to exploit a legitimate user’s account.

4 Types of Intruders The user is more likely to be an outsider.
Clandestine User : An individual who seizes supervisory control of the system and uses this control to evade auditing and access controls, or to surpass audit collection. The user can be an outsider or an insider.

5 Types of attacks Backdoor DOS Spoofing TCP/IP Hijacking Exploits

6 Types of attacks Password guessing Brute Force Social Engineering
Eavesdropping Buffer Overflow

7 Intrusion Techniques Physical Intrusion : This type of intrusion assumes that an attacker has physical access to a machine. System Intrusion : This type of hacking assumes that the attacker already has a low-privilege user account on the system. If the system does not have the latest security patches, there is good chance for the attacker to gain additional administrative privileges.

8 Intrusion Techniques Remote Intrusion : This type of hacking involves those attackers who do not have any special privilege and still attempt to break through a system remotely across the network.

9 Protecting Against Intruders
Password Protection The simplest way of protecting user passwords is by keeping them encrypted on the disk so that nobody can attack the system by decrypting the password file. This file should be hidden. To break the password file, the attacker essentially has to guess the password of a user, hash it , and then compare it with entry in password file.

10 Protecting Against Intruders
The Vulnerability of Passwords Exploitation of Weak Passwords Exploitation of User Behaviour Capture of Credentials in Transit.

11 Protecting Against Intruders
Strong Passwords Make it Lengthy Combine letters, symbols and symbols Do not reveal them to others Change passwords regularly

Download ppt "Intrusion."

Similar presentations

Chapter 18: Computer and Network Security Threats

Chapter 18: Computer and Network Security Threats
Understand Database Security Concepts

Understand Database Security Concepts
Ethical Hacking Pratheeba Murugesan. HACKER AENDA  What is Ethical Hacking?  Who are ethical hackers?  Every Website-A Target  Get out of jail free.

Ethical Hacking Pratheeba Murugesan. HACKER AENDA  What is Ethical Hacking?  Who are ethical hackers?  Every Website-A Target  Get out of jail free.
OV 2- 1 Copyright © 2005 Element K Content LLC. All rights reserved. Security Threats  Social Engineering  Software-based Threats  Hardware-based Threats.

OV 2- 1 Copyright © 2005 Element K Content LLC. All rights reserved. Security Threats  Social Engineering  Software-based Threats  Hardware-based Threats.
Lecture 13 Intrusion Detection modified from slides of Lawrie Brown.

Lecture 13 Intrusion Detection modified from slides of Lawrie Brown.
Cryptography and Network Security Chapter 20 Intruders

Cryptography and Network Security Chapter 20 Intruders
Web Defacement Anh Nguyen May 6 th, 2010. Organization Introduction How Hackers Deface Web Pages Solutions to Web Defacement Conclusions 2.

Web Defacement Anh Nguyen May 6 th, Organization Introduction How Hackers Deface Web Pages Solutions to Web Defacement Conclusions 2.
Hacker, Cracker?! Are they the same? No!!! Hacker programmers intensely interested in the arcane and recondite workings of any computer operating system.

Hacker, Cracker?! Are they the same? No!!! Hacker programmers intensely interested in the arcane and recondite workings of any computer operating system.
1 Ola Flygt Växjö University, Sweden +46 470 70 86 49 Intruders.

1 Ola Flygt Växjö University, Sweden Intruders.
Software Security Threats Threats have been an issue since computers began to be used widely by the general public.

Software Security Threats Threats have been an issue since computers began to be used widely by the general public.
Security A system is secure if its resources are used and accessed as intended under all circumstances. It is not generally possible to achieve total security.

Security A system is secure if its resources are used and accessed as intended under all circumstances. It is not generally possible to achieve total security.
Information Networking Security and Assurance Lab National Chung Cheng University 1 Top Vulnerabilities in Web Applications (I) Unvalidated Input:  Information.

Information Networking Security and Assurance Lab National Chung Cheng University 1 Top Vulnerabilities in Web Applications (I) Unvalidated Input:  Information.
Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.

Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.
Intrusion Detection. Intruders Classes (from [ANDE80]: Classes (from [ANDE80]: two most publicized threats to security are malware and intruders two most.

Intrusion Detection. Intruders Classes (from [ANDE80]: Classes (from [ANDE80]: two most publicized threats to security are malware and intruders two most.
AIS, 20141 Passwords Should not be shared Should be changed by user Should be changed frequently and upon compromise (suspected unauthorized disclosure)

AIS, Passwords Should not be shared Should be changed by user Should be changed frequently and upon compromise (suspected unauthorized disclosure)
Silberschatz and Galvin  1999 20.1 Operating System Concepts Module 20: Security The Security Problem Authentication Program Threats System Threats Threat.

Silberschatz and Galvin  Operating System Concepts Module 20: Security The Security Problem Authentication Program Threats System Threats Threat.
The Truth About Protecting Passwords COEN 150: Intro to Information Security Mary Le Carol Reiley.

The Truth About Protecting Passwords COEN 150: Intro to Information Security Mary Le Carol Reiley.
Improving Intrusion Detection System Taminee Shinasharkey CS689 11/2/00.

Improving Intrusion Detection System Taminee Shinasharkey CS689 11/2/00.
Chapter 18 Intruders.

Chapter 18 Intruders.
Lecture 10 Intrusion Detection modified from slides of Lawrie Brown.

Lecture 10 Intrusion Detection modified from slides of Lawrie Brown.

Similar presentations

Ads by Google