Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security Presented by : Qing Ma. Introduction Security overview security threats password security, encryption and network security as specific.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Security Presented by : Qing Ma. Introduction Security overview security threats password security, encryption and network security as specific."— Presentation transcript:

1 Security Presented by : Qing Ma

2 Introduction Security overview security threats password security, encryption and network security as specific

3 Security overview Why do we need security? Security is basic requirement because global computing is inherently insecure. Also Information security computer security protects the information you stored in the computer

4 Security overview What are you trying to protect? You should analyze your system to know what you protecting and why you are protecting it. What value it has, and who has responsibility for your data and other assets.

5 Security threats A security threat can be as simple as interfering with your network normal operation or actively cracking you security and changing or taking control of network resources.

6 Security threats The major types of threats are: denial OS service(DoS)attack buffer overflow Trojan horses intruders and physical security intercepted transmissions social engineering lack of user support

7 Password security and encryption What is encryption? Transform original information into altered information of random text intruder can not read password in the file, even if file security is breached original password not preserved in the memory, when login just do the compare

8 Password security and encryption Shadow password file:store encrypted password data in file, which has the most restrictive protection. Cryptographic keys: private key--use both to encrypt and to decrypt information public key system--use two keys with private one encrypt a message, with public one decrypt by the recipient

9 Password security and encryption Shell and file access telnet--use the standard user list for the OS, no encryption or authentication ftp--has basic authentication and access privilege protection SSh(secure shell)--a protocol that lets you log in and execute commands on another machine over network

10 Password security and encryption Secure socket layer(SSL)--developed by Netscape that sits above the TCP/IP layer but below the higher protocols(http,ftp,ldap) provide standard way for authentication secure files options SCP--part of SSH, provide authentication and encryption ftp over SSH--render insecure utility more protected SSL ftp--prevent packet sniffing

11 Network security Why network security network security is becoming more and more important as people spend more time connected. What makes it worse is that information can be leaked from the inside of your network to the internet.

12 Network security Protocols protocol allow user to think at the high level of a communication. The software and hardware create a protocol stack, which is layered architecture for communication. Two protocol stack: OSI(open system interconnection) and TCP/IP(transmission control protocol and internet protocol

13 Network security Network ISO/OSI model application layer presentation layer session layer transport layer network layer data link layer physical layer

14

15 Network security Trusted/untrusted system communication between trusted and untrusted networks must have rules associated with it. A trusted system is inside a security perimeter. Information outside the trusted network treated as single sensitivity level.

16 Network security A gateway controls traffic from inside and outside. The function of gateway is label and filter data. Firewall a firewall is a system designed to prevent unauthorized access to or from a private network.

17 firewall How does it work? It is used to prevent unauthorized internet users form accessing private networks connected to the internet and intranet. All messages entering or leaving the intranet pass through the firewall, which examines each message and blocks those that don’t meet the specified security criteria.

18 firewall Fig1 firewall/proxy server

19 firewall How does a proxy server work? Run at the application level of network protocol stack for each different type of services control internal users access the Internet and Internet users access the inside the world return response to request from inside the firewall

20 firewall Defensive strategies firewall is perimeter defense system with “choke point” monitor and block access at choke points separate department and implement encryption throughout your organization firewall do not protect against leaks

21 firewall Fig2 firewall provide perimeter defenses with choke points, like medieval castles

22

23 firewall Classifying firewalls screening router(packet filters) proxy server gateway circuit-level gateway application-level gateway stateful inspection techniques

24 firewall Fig 3 a screening router

25 firewall Fig4 a proxy server

26 firewall Firewall policies block all traffic, then allow specific services on case-by-case basis network traffic and from outside networks such as the Internet must pass through the firewall. The traffic must be filtered to allow only authorized packets to pass

27 firewall Never use a firewall for genera-purpose file storage or to run programs, except for those required by the firewall do not allow any passwords or internal addresses to cross the firewall accept the fact that you might need to completely restore public systems from backup in the event of an attack

28

Download ppt "Security Presented by : Qing Ma. Introduction Security overview security threats password security, encryption and network security as specific."

Similar presentations

Firewalls By Tahaei Fall 2012. What is a firewall? a choke point of control and monitoring interconnects networks with differing trust imposes restrictions.

Firewalls By Tahaei Fall What is a firewall? a choke point of control and monitoring interconnects networks with differing trust imposes restrictions.
Firewalls 2014.04.07 Uyanga Tserengombo

Firewalls Uyanga Tserengombo
FIREWALLS Chapter 11.

FIREWALLS Chapter 11.
Firewalls Dr.P.V.Lakshmi Information Technology GIT,GITAM University

Firewalls Dr.P.V.Lakshmi Information Technology GIT,GITAM University
Final Presentation Topics 1) Firewalls 1) Firewalls 2) Virtual Private Networks 2) Virtual Private Networks 3) Secure Socket Layer 3) Secure Socket Layer.

Final Presentation Topics 1) Firewalls 1) Firewalls 2) Virtual Private Networks 2) Virtual Private Networks 3) Secure Socket Layer 3) Secure Socket Layer.
Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.

Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.
FIREWALLS. What is a Firewall? A firewall is hardware or software (or a combination of hardware and software) that monitors the transmission of packets.

FIREWALLS. What is a Firewall? A firewall is hardware or software (or a combination of hardware and software) that monitors the transmission of packets.
FIREWALLS The function of a strong position is to make the forces holding it practically unassailable —On War, Carl Von Clausewitz On the day that you.

FIREWALLS The function of a strong position is to make the forces holding it practically unassailable —On War, Carl Von Clausewitz On the day that you.
CSCI 530 Lab Firewalls. Overview Firewalls Capabilities Limitations What are we limiting with a firewall? General Network Security Strategies Packet Filtering.

CSCI 530 Lab Firewalls. Overview Firewalls Capabilities Limitations What are we limiting with a firewall? General Network Security Strategies Packet Filtering.
Chapter 10: Data Centre and Network Security Proxies and Gateways * Firewalls * Virtual Private Network (VPN) * Security issues * * * * Objectives:

Chapter 10: Data Centre and Network Security Proxies and Gateways * Firewalls * Virtual Private Network (VPN) * Security issues * * * * Objectives:
HIPAA Security Standards What’s happening in your office?

HIPAA Security Standards What’s happening in your office?
Security Firewall Firewall design principle. Firewall Characteristics.

Security Firewall Firewall design principle. Firewall Characteristics.
Network Security Topologies Chapter 11. Learning Objectives Explain network perimeter’s importance to an organization’s security policies Identify place.

Network Security Topologies Chapter 11. Learning Objectives Explain network perimeter’s importance to an organization’s security policies Identify place.
Chapter 11 Firewalls.

Chapter 11 Firewalls.
Firewall Configuration Strategies

Firewall Configuration Strategies
Security+ Guide to Network Security Fundamentals

Security+ Guide to Network Security Fundamentals
19.1 Silberschatz, Galvin and Gagne ©2003 Operating System Concepts with Java Chapter 19: Security The Security Problem Authentication Program Threats.

19.1 Silberschatz, Galvin and Gagne ©2003 Operating System Concepts with Java Chapter 19: Security The Security Problem Authentication Program Threats.
Chapter 12 Network Security.

Chapter 12 Network Security.
Information Security 1 Information Security: Demo of Some Security Tools Jeffy Mwakalinga.

Information Security 1 Information Security: Demo of Some Security Tools Jeffy Mwakalinga.
Security Awareness: Applying Practical Security in Your World

Security Awareness: Applying Practical Security in Your World

Similar presentations

Ads by Google