Presentation is loading. Please wait.

Presentation is loading. Please wait.

FIT5037 Advanced Network Security --- Modern Computing and Security --- Lecture 1.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "FIT5037 Advanced Network Security --- Modern Computing and Security --- Lecture 1."— Presentation transcript:

1 FIT5037 Advanced Network Security --- Modern Computing and Security --- Lecture 1

2 FIT5037 - Advanced Network Security2 Schedule n 1. Modern Computing and Network Security n 2. Elliptic Curve public key system n 3. Design and Implementation of RSA and ECC n 4. Strengthening and managing firewalls and other network components n 5. Intrusion Detection Systems: concepts and designs n 6. Intrusion Detection Systems: implementation and configuration using Snort n 7. Wireless security: principles and practice in depth n 8. Security in trusted-based computing environments n 9. Security, load balancing and network performance n 10. Secure network architecture: design and implementation n 11. Readings and discussion about future of Network Security n 12. Main Research in Security n 13. Test

3 FIT5037 - Advanced Network Security3 Modern Computing and Network Security n 1. Will the future networks be wireless and companies need to provide more wireless communications and services. n 2. How can companies provide secure wireless communications for mobile users including users using mobile phones, or smart cards? n 3. What can happen if computers double their computational capacity in every six months? n 4. What will be the important factors in network security? Cryptography? Firewalls? VPN? n 5. How can we provide adequate security for peer- to-peer communications?

4 FIT5037 - Advanced Network Security4 Modern Computing and Network Security n 6. Private key systems are still useful however, key distribution is a problem. Is there any way that this problem can be resolved without replying on public key technology. n 7. Trusted-based computing environments will increase the efficiency of networks and Internet services, however security is a big concern. Which technology should be employed to provide adequate security for such environments.

5 FIT5037 - Advanced Network Security5 Answers n 1. The future networks will be wireless and companies need to provide more wireless communications and services. çThe number of wireless customers and wireless networks in UK and USA has been increased quickly. çSeveral hardware and software vendors such as CISCO, IBM, Microsoft have focussed more on their wireless products, such as wireless routers (CISCO), Pervasive computing, Wireless Network Auditor, WebSphere (IBM), Wireless-G (Microsoft), etc.

6 FIT5037 - Advanced Network Security6 Answers n 2. How can companies provide secure wireless communications for mobile users including users using mobile phones, or smart cards? çResearch on new cryptographic technology particularly Elliptic Curve Cryptography promises more efficient and secure solutions than that we currently have.

7 FIT5037 - Advanced Network Security7 Answers n 3. What can happen if computers double their computational capacity in every six months? (Quantum computing and optical computing) Especially fast computers with affordable price. çThere will be millions of people who can have a chance to try to break the current cryptographic algorithms. çSuper computers will be much faster and there is a high chance that many applications based on the existing cryptography will become vulnerable. çHackers will have better machines to run their software to quickly find vulnerabilities in many systems which are not upgraded in time. çMany network components will need to be updated because of the update in cryptography, and the discovery of vulnerabilities due to the advance of technology.

8 FIT5037 - Advanced Network Security8 Answers n 4. What will be the important factors in network security? Cryptography? Firewalls? VPN? çCryptography will be more important because of the demand for wireless communications, peer-to-peer communications, more Internet services, etc. ç Firewalls will still play a critical role because many companies will still rely on firewalls to protect their networks. However, wireless firewalls need to be developed. çVPN role depends on the popularity of wireless communications. çIDS and Prevention Systems will play a critical role in future networks, especially national and international networks and trusted-based computing environments.

9 FIT5037 - Advanced Network Security9 Answers n 5. How can we provide adequate security for peer-to-peer communications? çNew authentication techniques must be developed. çNew cryptography must be developed for peer-to-peer wireless communications. çDigital signature technology should be improved to assist peer-to-peer communications.

10 FIT5037 - Advanced Network Security10 Answers n 6. Private key systems are still useful however, key distribution is a problem. Is there any way that this problem can be resolved without replying on public key technology. çQuantum cryptography will possibly be the solution. çAdvanced cryptographic techniques can provide ways for secret key exchange without relying on a single permanent secret key.

11 FIT5037 - Advanced Network Security11 Answers n 7. Trusted-based computing environments will increase the efficiency of networks and Internet services, however security is a big concern. Which technology should be employed to provide adequate security for such environments. çThe application of new digital signature technologies together with IDS will need to be developed. çNew secure network architectures will need to be developed.

12 FIT5037 - Advanced Network Security12 How to do it n Searching for new cryptographic algorithms çSmall key size. çFast encrypting and decrypting and digital signature generation. çRequire less computational power, more suitable for mobile devices such as mobile phones and smart cards. çAlgorithms must be flexible and highly scalable.

13 FIT5037 - Advanced Network Security13 How to do it n Design and implement more efficient cryptographic algorithms for wireless communications. Eg. More research work on ECC and other cryptographic technology. n Further research in pervasive computing (see Le et al’s paper on “ Mobile ticket engine”). n Design and implement better algorithms for peer-to-peer communications. E.g Design better authentication techniques that can provide more secure and better authentication (see Le’s paper on “strong authentication for peer-to-peer communication”, and Keng, Le, and Srini’s paper on “Secure Internet payment system”). n Design and implement better firewalls for wired and wireless networks. E.g, (see SAFE firewalls from CISCO). n Design and implement better IDS and Prevention Systems which allow different networks to work and support each other. E.g (proposed work from Le on trusted-based computing and cooperating networks). n Design and implement better algorithms to balance security, load balancing, and network performance. (See Le’s load balancing in distributed environments.) (Please note that there are many other papers related to the above topics)

14 FIT5037 - Advanced Network Security14 What will we do in CPE5021 n Theoretically discuss ECC and compare ECC and RSA. Then practically you will design and implement both algorithms to completely understand the two most important public key systems. n Theoretically discuss all types of firewalls including wireless firewalls. You will then experiment the practical implementation and configuration of important types of firewalls including packet filtering and application-based firewalls.

15 FIT5037 - Advanced Network Security15 What will we do in CPE5021 n Theoretically discuss quantum cryptography and emerging techniques for secure key distribution. n Theoretically discuss the design and implementation of IDS. You will then practically experiment the Snort system to understand how important IDS in network security in the future.

16 FIT5037 - Advanced Network Security16 What will we do in CPE5021 n Theoretically discuss wireless security in depth, including principles and techniques for software applications, network architectures and security design. You will have the opportunity to design and set up simple and secure wireless networks (this depends on whether we have time and you have some required equipments or not!). We currently only have a few APs. n Theoretically discuss the design and implementation of secure network architectures. This will help you understand the fast-growing wireless networks, peer-to-peer communications and trusted-based computing environments. n Theoretically discuss the relation between load balancing, network performance and security.

17 FIT5037 - Advanced Network Security17 What will we do in CPE5021 n Theoretically discuss trusted-based computing and the role of IDS and digital signature. This will provide you an understanding of future software and networks. n In order to understand the existing networks and security problems, you are required to do self-study on the existing systems, look for vulnerabilities and find proper techniques to show that possible attacks may occur to some of the existing systems (this work is strictly carried on your own system ONLY).

18 FIT5037 - Advanced Network Security18 Conclusion n Due to the short period of time (12 weeks), we cannot do as much as we wish to do. n Practical works will give you a deep understanding of important theory in network security. n The main focuses of CPE5021 are advanced cryptography, firewalls, IDS, wireless security, secure network architectures, peer-to-peer, pervasive and trusted-based computing environments. n Please note that some popular security technologies today can become obsolete in the next few years.

19 FIT5037 - Advanced Network Security19

Download ppt "FIT5037 Advanced Network Security --- Modern Computing and Security --- Lecture 1."

Similar presentations

Software Bundle ViPNet Secure Remote Access Arrangement using ViPNet Mobile © Infotecs.

Software Bundle ViPNet Secure Remote Access Arrangement using ViPNet Mobile © Infotecs.
Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.

Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.
Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, 2010. ICWCSC 2010. International.

Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, ICWCSC International.
Hardware Cryptographic Coprocessor Peter R. Wihl Security in Software.

Hardware Cryptographic Coprocessor Peter R. Wihl Security in Software.
SAFE Blueprint and the Security Ecosystem. 2 Chapter Topics  SAFE Blueprint Overview  Achieving the Balance  Defining Customer Expectations  Design.

SAFE Blueprint and the Security Ecosystem. 2 Chapter Topics  SAFE Blueprint Overview  Achieving the Balance  Defining Customer Expectations  Design.
TCPA TCPA TCPA T rusted C omputing P latform A lliance Saurabh Phansalkar.

TCPA TCPA TCPA T rusted C omputing P latform A lliance Saurabh Phansalkar.
The Cable Guys Inc. Drew Leach Tom McLoughlin Philip Mauldin Bill Smith.

The Cable Guys Inc. Drew Leach Tom McLoughlin Philip Mauldin Bill Smith.
Cryptography and Data Security: Long-Term Challenges Burt Kaliski, RSA Security Northeastern University CCIS Mini Symposium on Information Security November.

Cryptography and Data Security: Long-Term Challenges Burt Kaliski, RSA Security Northeastern University CCIS Mini Symposium on Information Security November.
Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.

Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.
1 Jeremy Wyant W3C DRM Workshop 23 January 2001 Establishing Security Requirements For DRM Enabled Systems.

1 Jeremy Wyant W3C DRM Workshop 23 January 2001 Establishing Security Requirements For DRM Enabled Systems.
Firewall Configuration Strategies

Firewall Configuration Strategies
Using Cryptographic ICs For Security and Product Management Misconceptions about security Network and system security Key Management The Business of Security.

Using Cryptographic ICs For Security and Product Management Misconceptions about security Network and system security Key Management The Business of Security.
FIT3105 Smart card based authentication and identity management Lecture 4.

FIT3105 Smart card based authentication and identity management Lecture 4.
Security Awareness: Applying Practical Security in Your World

Security Awareness: Applying Practical Security in Your World
Lesson 11-Virtual Private Networks. Overview Define Virtual Private Networks (VPNs). Deploy User VPNs. Deploy Site VPNs. Understand standard VPN techniques.

Lesson 11-Virtual Private Networks. Overview Define Virtual Private Networks (VPNs). Deploy User VPNs. Deploy Site VPNs. Understand standard VPN techniques.
Business Data Communications, Fourth Edition Chapter 10: Network Security.

Business Data Communications, Fourth Edition Chapter 10: Network Security.
1 Hidden Exponent RSA and Efficient Key Distribution author: He Ge Cryptology ePrint Archive 2005/325 PDFPDF 報告人:陳昱升.

1 Hidden Exponent RSA and Efficient Key Distribution author: He Ge Cryptology ePrint Archive 2005/325 PDFPDF 報告人:陳昱升.
CSCD 434 Spring 2011 Lecture 1 Course Overview. Contact Information Instructor Carol Taylor 315 CEB Phone: 509-359-6908 Office.

CSCD 434 Spring 2011 Lecture 1 Course Overview. Contact Information Instructor Carol Taylor 315 CEB Phone: Office.
Cryptography and Network Security Chapter 1. Chapter 1 – Introduction The art of war teaches us to rely not on the likelihood of the enemy's not coming,

Cryptography and Network Security Chapter 1. Chapter 1 – Introduction The art of war teaches us to rely not on the likelihood of the enemy's not coming,
Cryptography and Network Security Chapter 1 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Chapter 1 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.

Similar presentations

Ads by Google