Presentation is loading. Please wait.

Presentation is loading. Please wait.

Chapter 14 Computer Security Threats Patricia Roy Manatee Community College, Venice, FL ©2008, Prentice Hall Operating Systems: Internals and Design Principles,

Published byCecil Clark Modified over 9 years ago

Similar presentations

Presentation on theme: "Chapter 14 Computer Security Threats Patricia Roy Manatee Community College, Venice, FL ©2008, Prentice Hall Operating Systems: Internals and Design Principles,"— Presentation transcript:

1 Chapter 14 Computer Security Threats Patricia Roy Manatee Community College, Venice, FL ©2008, Prentice Hall Operating Systems: Internals and Design Principles, 6/E William Stallings

2 Computer Security Confidentiality –Data confidentiality –Privacy Integrity –Data integrity –System integrity Availabilty

3 The Security Requirements Triad

4 Additional Concepts Authenticity Accountability

5 Threats

6

7

8

9 Scope of System Security

10 Assets

11 Intruders Masquerader Misfeasor Clandestine user

12 Intruders

13

14

15 Backdoor Trapdoor Secret entry point Useful for programmers debuggin

16 Logic Bomb Explodes when certain conditions are met –Presence or absence of certain files –Particular day of the week –Particular user running application

17 Trojan Horse Useful program that contains hidden code that when invoked performs some unwanted or harmful function Can be used to accomplish functions indirectly that an unauthorized user could not accomplish directly –User may set file permission so everyone has access

18 Mobile Code Transmitted from remote system to local system Executed on local system without the user’s explicit instruction

19 Multiple-Threat Malware Multipartite virus infects in multiple ways Blended attack uses multiple methods Ex: Nimda has worm, virus, and mobile code characteristics

20 Parts of Virus Infection mechanism Trigger Payload

21 Virus Stages Dormant phase –Virus is idle Propagation phase –Virus places an identical copy of itself into other programs or into certain system areas on the disk 21

22 Virus Stages Triggering phase –Virus is activated to perform the function for which it was intended –Caused by a variety of system events Execution phase –Function is performed 22

23 Simple Virus

24 Compression Virus

25 Virus Classification by Target Boot sector infector File infector Macro virus

26 Virus Classification by Concealment Strategy Encrypted virus –Random encryption key encrypts remainder of virus Stealth virus –Hides itself from detection of antivirus software

27 Virus Classification by Concealment Strategy Polymorphic virus –Mutates with every infection Metamorphic virus –Mutates with every infection –Rewrites itself completely after every iteration

28 Macro Viruses Platform independent –Most infect Microsoft Word documents Infect documents, not executable portions of code Easily spread File system access controls are of limited use in preventing spread 28

29 E-Mail Viruses Attachment Open e-mail Uses e-mail software to replicate

30 Worms Use network connections to spread form system to system Electronic mail facility –A worm mails a copy of itself to other systems 30

31 Worms Remote execution capability –A worm executes a copy of itself on another system Remote log-in capability –A worm logs on to a remote system as a user and then uses commands to copy itself from one system to the other

32 Worm Propagation Model

33 Bots Zombie or drone Program secretly takes of another Internet-attached computer Launch attacks that are difficult to trace to bot’s creator Collection of bots is a botnet

34 Rootkit Set of programs installed on a system to maintain administrator (or root) access to that system Hides its existece

35 System Call Table Modification by Rootkit

Download ppt "Chapter 14 Computer Security Threats Patricia Roy Manatee Community College, Venice, FL ©2008, Prentice Hall Operating Systems: Internals and Design Principles,"

Similar presentations

Computer Security Patricia Roy Manatee Community College, Venice, FL ©2008, Prentice Hall Chapters 14 and 15 Operating Systems: Internals and Design Principles,

Computer Security Patricia Roy Manatee Community College, Venice, FL ©2008, Prentice Hall Chapters 14 and 15 Operating Systems: Internals and Design Principles,
Data and Computer Communications

Data and Computer Communications
30/04/2015Tim S Roberts 20081 COIT13152 Operating Systems T1, 2008 Tim S Roberts.

30/04/2015Tim S Roberts COIT13152 Operating Systems T1, 2008 Tim S Roberts.
Lecture 13 Malicious Software modified from slides of Lawrie Brown.

Lecture 13 Malicious Software modified from slides of Lawrie Brown.
 Application software consists of programs designed to make users more productive and/or assist with personal tasks.  Growth of internet simplified.

 Application software consists of programs designed to make users more productive and/or assist with personal tasks.  Growth of internet simplified.
Chapter 14 Computer Security Threats

Chapter 14 Computer Security Threats
Chapter 18: Computer and Network Security Threats

Chapter 18: Computer and Network Security Threats
Chapter 14 Computer Security Threats

Chapter 14 Computer Security Threats
Informationsteknologi Thursday, October 11, 2007Computer Systems/Operating Systems - Class 161 Today’s class Security.

Informationsteknologi Thursday, October 11, 2007Computer Systems/Operating Systems - Class 161 Today’s class Security.
Malicious Software programs exploiting system vulnerabilities known as malicious software or malware program fragments that need a host program e.g. viruses,

Malicious Software programs exploiting system vulnerabilities known as malicious software or malware program fragments that need a host program e.g. viruses,
1 Pertemuan 05 Malicious Software Matakuliah: H0242 / Keamanan Jaringan Tahun: 2006 Versi: 1.

1 Pertemuan 05 Malicious Software Matakuliah: H0242 / Keamanan Jaringan Tahun: 2006 Versi: 1.
Security Chapter 15. Computer and Network Security Requirements Confidentiality –Requires information in a computer system only be accessible for reading.

Security Chapter 15. Computer and Network Security Requirements Confidentiality –Requires information in a computer system only be accessible for reading.
After this session, you should be able to:

After this session, you should be able to:
Lecture 15 Overview. Kinds of Malicious Codes Virus: a program that attaches copies of itself into other programs. – Propagates and performs some unwanted.

Lecture 15 Overview. Kinds of Malicious Codes Virus: a program that attaches copies of itself into other programs. – Propagates and performs some unwanted.
Henric Johnson1 Chapter 10 Malicious Software Henric Johnson Blekinge Institute of Technology, Sweden

Henric Johnson1 Chapter 10 Malicious Software Henric Johnson Blekinge Institute of Technology, Sweden
Viruses and Worms By: Olga Bibas. Malicious Programs are perhaps the most sophisticated threats to computer systems. These threats can be divided into.

Viruses and Worms By: Olga Bibas. Malicious Programs are perhaps the most sophisticated threats to computer systems. These threats can be divided into.
Lecture slides prepared for “Business Data Communications”, 7/e, by William Stallings and Tom Case, Chapter 18 “Computer and Network Security Threats”.

Lecture slides prepared for “Business Data Communications”, 7/e, by William Stallings and Tom Case, Chapter 18 “Computer and Network Security Threats”.
Data and Computer Communications

Data and Computer Communications
Computer Security: Principles and Practice First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown Chapter 7 – Malicious Software.

Computer Security: Principles and Practice First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown Chapter 7 – Malicious Software.
Malicious Software Malicious Software Han Zhang & Ruochen Sun.

Malicious Software Malicious Software Han Zhang & Ruochen Sun.

Similar presentations

Ads by Google