Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security Attacks, Mechanisms, and Services

Published byMelvyn Allen Modified over 5 years ago

Similar presentations

Presentation on theme: "Security Attacks, Mechanisms, and Services"— Presentation transcript:

1 Security Attacks, Mechanisms, and Services

2 Attacks, Services and Mechanisms
Security Attack: Any action that compromises the security of information. Security Mechanism: A mechanism that is designed to detect, prevent, or recover from a security attack. Security Service: A service that enhances the security of data processing systems and information transfers. A security service makes use of one or more security mechanisms.

3

4 Passive Attacks These are in the nature of eavesdropping on, or monitoring of, transmission Attempts to learn or make use of information from system Does not affect system resources Difficult to detect because they do not involve any alteration of data Traffic normally sent and received in a normal fashion Attempt is made to prevent the success of these attacks, usually by means of encryption Thus emphasis is on prevention rather than detection

5 Passive Attacks(cont….)
Release of message contents is easily understood Telephonic conversation, message, or a transferred file may contain sensitive information Emphasis is to prevent opponent from learning

6 Passive Attacks(cont….)
Traffic Analysis Observe patterns of messages Could determine identity and location of communicating hosts Could observe the frequency and length of messages being exchanged

7 Active Attacks Involves modification of data, or false creation of data Attempt to alter system resources or affect their operations Difficult to prevent active attacks Emphasis is to detect active attacks and recover from the damage

8 Active Attacks(cont….)
Masquarade One entity pretendes to be a different entity E.g. Authentication sequences can be captured Replay Involves passive capture of data unit and its subsequent retransmission to produce unauthorized effect

9 Active Attacks(cont….)
Modification of Message Means some portion of a legitimate message is altered, or messages are reordered or delayed, to produce unauthorized affect E.g. ” Allow John Smith to read confidential file accounts” is modified to ” Allow Fred Brown to read confidential file accounts”

10 Active Attacks(cont….)
Denial of Service Prevents normal use of communication facilities Disabling or overloading of entire network

11 Conventional Encryption Principles
An encryption scheme has five ingredients: Plaintext Encryption algorithm Secret Key Ciphertext Decryption algorithm Security depends on the secrecy of the key, not the secrecy of the algorithm

12 Conventional Encryption Principles

13 Cryptography Classified along three independent dimensions:
The type of operations used for transforming plaintext to ciphertext The number of keys used symmetric (single key) asymmetric (two-keys, or public-key encryption) The way in which the plaintext is processed

14 Cryptography can be characterized by:
type of encryption operations used substitution / transposition / product number of keys used single-key or private / two-key or public way in which plaintext is processed block / stream

15 Average time required for exhaustive key search
Key Size (bits) Number of Alternative Keys Time required at 106 Decryption/µs 32 232 = 4.3 x 109 2.15 milliseconds 56 256 = 7.2 x 1016 10 hours 128 2128 = 3.4 x 1038 5.4 x 1018 years 168 2168 = 3.7 x 1050 5.9 x 1030 years

Download ppt "Security Attacks, Mechanisms, and Services"

Similar presentations

Cryptography and Network Security Sixth Edition by William Stallings.

Cryptography and Network Security Sixth Edition by William Stallings.
Cryptography and Network Security Chapter 1

Cryptography and Network Security Chapter 1
Chapter 1 This book focuses on two broad areas: cryptographic algorithms and protocols, which have a broad range of applications; and network and Internet.

Chapter 1 This book focuses on two broad areas: cryptographic algorithms and protocols, which have a broad range of applications; and network and Internet.
Introduction to network security

Introduction to network security
1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.

1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.
Security Overview Hofstra University University College for Continuing Education - Advanced Java Programming Lecturer: Engin Yalt May 24, 2006.

Security Overview Hofstra University University College for Continuing Education - Advanced Java Programming Lecturer: Engin Yalt May 24, 2006.
Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.

Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.
Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.

Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.
Applied Cryptography for Network Security

Applied Cryptography for Network Security
Introduction (Pendahuluan)  Information Security.

Introduction (Pendahuluan)  Information Security.
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
Network Security Sorina Persa Group 3250 Group 3250.

Network Security Sorina Persa Group 3250 Group 3250.
CRYPTOGRAPHIC DATA INTEGRITY ALGORITHMS

CRYPTOGRAPHIC DATA INTEGRITY ALGORITHMS
Introduction (Based on Lecture slides by J. H. Wang)

Introduction (Based on Lecture slides by J. H. Wang)
Network Security. Security Threats 8Intercept 8Interrupt 8Modification 8Fabrication.

Network Security. Security Threats 8Intercept 8Interrupt 8Modification 8Fabrication.
Introduction to Computer and Network Security

Introduction to Computer and Network Security
Cryptography, Authentication and Digital Signatures

Cryptography, Authentication and Digital Signatures
Chapter 20 Symmetric Encryption and Message Confidentiality.

Chapter 20 Symmetric Encryption and Message Confidentiality.
Information Security By:-H.M.Patel. Information security There are three aspects of information security Security service Security mechanism Security.

Information Security By:-H.M.Patel. Information security There are three aspects of information security Security service Security mechanism Security.
Computer and Network Security Rabie A. Ramadan. Organization of the Course (Cont.) 2 Textbooks William Stallings, “Cryptography and Network Security,”

Computer and Network Security Rabie A. Ramadan. Organization of the Course (Cont.) 2 Textbooks William Stallings, “Cryptography and Network Security,”

Similar presentations

Ads by Google