Presentation is loading. Please wait.

Presentation is loading. Please wait.

CPSC 441 TUTORIAL TA: FANG WANG NETWORK SECURITY.

Published byPiers Sharp Modified over 9 years ago

Similar presentations

Presentation on theme: "CPSC 441 TUTORIAL TA: FANG WANG NETWORK SECURITY."— Presentation transcript:

1 CPSC 441 TUTORIAL TA: FANG WANG NETWORK SECURITY

2 The field of network security is about: how bad guys can attack computer networks how we can defend networks against attacks how to design architectures that are immune to attacks Internet not originally designed with (much) security in mind original vision: “a group of mutually trusting users attached to a transparent network” Security considerations in all layers! 2

3 MALWARE Malware can get in host from a virus, worm, or trojan horse. Spyware malware can record keystrokes, web sites visited, upload info to collection site. Infected host can be enrolled in a botnet, used for spam and DDoS (denial of service)attacks. Malware is often self-replicating: from an infected host, seeks entry into other hosts 3

4 TYPES OF MALWARE Trojan horse Hidden part of some otherwise useful software Today often on a Web page (Active-X, plugin) Virus infection by receiving object (e.g., e-mail attachment), actively executing self-replicating: propagate itself to other hosts, users Worm: infection by passively receiving object that gets itself executed self- replicating: propagates to other hosts, users Sapphire Worm: aggregate scans/sec in first 5 minutes of outbreak (CAIDA, UWisc data) 4

5 DENIAL OF SERVICE 1. select target 2. break into hosts around the network 3. send packets toward target from compromised hosts target Bad guys can attack servers and network infrastructure Denial of service (DoS): attackers make resources (server, bandwidth) unavailable to legitimate traffic by overwhelming resource with bogus traffic 5

6 PACKET SNIFFING The bad guys can sniff packets broadcast media (shared Ethernet, wireless) reads/records all packets (e.g., including passwords!) passing by A B C src:B dest:A payload Wireshark software is an example of a packet-sniffer 6

7 IP SPOOFING The bad guys can use false source addresses IP spoofing: send packet with false source address A B C src:B dest:A payload 7

8 RECORD AND PLAYBACK The bad guys can record and playback sniff sensitive info (e.g., password), and use later password holder is the legit user from system point of view A B C src:B dest:A user: B; password: foo 8

9 SECURE COMMUNICATION Bob and Alice want to communicate securely. Trudy (intruder) may intercept, delete, add messages secure sender secure receiver channel data, control messages data Alice Bob Trudy 9

10 CRYPTOGRAPHY “… is the practice and study of techniques for secure communication” [Wikipedia]. Goals: Confidentiality: only sender, intended receiver should “understand” message contents sender encrypts message receiver decrypts message Authentication: sender, receiver want to confirm identity of each other Message integrity: sender, receiver want to ensure message not altered (in transit, or afterwards) without detection Access and availability: services must be accessible and available to users 10

11 THE LANGUAGE OF CRYPTOGRAPHY m plaintext message K A (m) ciphertext, encrypted with key K A m = K B (K A (m)) plaintext ciphertext K A encryption algorithm decryption algorithm Alice’s encryption key Bob’s decryption key K B 11

12 SIMPLE ENCRYPTION SCHEME substitution cipher: substituting one thing for another monoalphabetic cipher: substitute one letter for another plaintext: abcdefghijklmnopqrstuvwxyz ciphertext: mnbvcxzasdfghjklpoiuytrewq Plaintext: bob. i love you. alice ciphertext: nkn. s gktc wky. mgsbc E.g.: Key: the mapping from the set of 26 letters to the set of 26 letters 12

13 TYPES OF CRYPTOGRAPHY Crypto often uses keys: Algorithm is known to everyone Only “keys” are secret Public key cryptography Involves the use of two keys Symmetric key cryptography Involves the use one key Hash functions Involves the use of no keys Nothing secret: How can this be useful? 13

14 MESSAGE INTEGRITY Allows communicating parties to verify that received messages are authentic. Content of message has not been altered Source of message is who/what you think it is Message has not been replayed Sequence of messages is maintained Hash functions are useful here. 14

15 MESSAGE DIGESTS Function H( ) that takes as input an arbitrary length message and outputs a fixed- length string: “message signature” H( ) is often called a “hash function” To be able check the integrity of a message: Sender sends the message signature along with the message Receiver applies the hash function on the received message and compares it to the message signature Desirable properties: Easy to calculate Irreversibility: Can’t determine m from H(m) Collision resistance: Computationally difficult to produce m and m’ such that H(m) = H(m’) Seemingly random output large message m H: Hash Function H(m) 15

16 SYMMETRIC KEY CRYPTOGRAPHY symmetric key crypto: Bob and Alice share same (symmetric) key: K Q: how do Bob and Alice agree on key value? plaintext ciphertext K encryption algorithm decryption algorithm K plaintext message, m K (m) m = K(K(m)) 16

17 PUBLIC KEY CRYPTOGRAPHY Problem with symmetric keys cryptography: requires sender, receiver know shared secret key Q: how to agree on key in first place (particularly if never “met”)? public key cryptography o radically different approach [Diffie- Hellman76, RSA78] o sender, receiver do not share secret key o public encryption key known to all o private decryption key known only to receiver 17

18 IP VULNERABILITIES Unencrypted transmission – Eavesdropping possible at any intermediate host during routing No source authentication – Sender can spoof source address, making it difficult to trace packet back to attacker No integrity checking – Entire packet, header and payload, can be modified while en route to destination, enabling content forgeries, redirections, and man-in-the- middle attacks No bandwidth constraints – Large number of packets can be injected into network to launch a denial-ofservice attack – Broadcast addresses provide additional leverage 18

19 TCP SYN FLOODING ATTACK 19

20 REFERENCES Some of the slides are from the course of CPSC626 network security Some slides from Computer Networking: A Top Down Approach, 5th edition. Jim Kurose, Keith Ross, Addison- Wesley, April 2009. 20

Download ppt "CPSC 441 TUTORIAL TA: FANG WANG NETWORK SECURITY."

Similar presentations

Chapter 8 Network Security

Chapter 8 Network Security
Network Security7-1 Chapter 7 Network Security Computer Networking: A Top Down Approach Featuring the Internet, 2 nd edition. Jim Kurose, Keith Ross Addison-Wesley,

Network Security7-1 Chapter 7 Network Security Computer Networking: A Top Down Approach Featuring the Internet, 2 nd edition. Jim Kurose, Keith Ross Addison-Wesley,
Data Communications and Computer Networks Chapter 1 CS 3830 Lecture 5 Omar Meqdadi Department of Computer Science and Software Engineering University of.

Data Communications and Computer Networks Chapter 1 CS 3830 Lecture 5 Omar Meqdadi Department of Computer Science and Software Engineering University of.
L0. Introduction Rocky K. C. Chang, January 2013.

L0. Introduction Rocky K. C. Chang, January 2013.
1 CS 854 – Hot Topics in Computer and Communications Security Fall 2006 Introduction to Cryptography and Security.

1 CS 854 – Hot Topics in Computer and Communications Security Fall 2006 Introduction to Cryptography and Security.
Network Security Hwajung Lee. What is Computer Networks? A collection of autonomous computers interconnected by a single technology –Interconnected via:

Network Security Hwajung Lee. What is Computer Networks? A collection of autonomous computers interconnected by a single technology –Interconnected via:
1 Counter-measures Threat Monitoring Cryptography as a security tool Encryption Digital Signature Key distribution.

1 Counter-measures Threat Monitoring Cryptography as a security tool Encryption Digital Signature Key distribution.
Introduction to Security Computer Networks Computer Networks Term B10.

Introduction to Security Computer Networks Computer Networks Term B10.
Introduction 1-1 Chapter 1 Introduction These additional slides are adapted from the slides of the textbook. Computer Networking: A Top Down Approach,5th.

Introduction 1-1 Chapter 1 Introduction These additional slides are adapted from the slides of the textbook. Computer Networking: A Top Down Approach,5th.
1 Network Security What is network security? Principles of cryptography Authentication Access control: firewalls Attacks and counter measures.

1 Network Security What is network security? Principles of cryptography Authentication Access control: firewalls Attacks and counter measures.
8: Network Security8-1 21 - Security. 8: Network Security8-2 Chapter 8 Network Security A note on the use of these ppt slides: We’re making these slides.

8: Network Security Security. 8: Network Security8-2 Chapter 8 Network Security A note on the use of these ppt slides: We’re making these slides.
7: Network Security1 Chapter 7: Network security – Author? Foundations: r what is security? r cryptography r authentication r message integrity r key distribution.

7: Network Security1 Chapter 7: Network security – Author? Foundations: r what is security? r cryptography r authentication r message integrity r key distribution.
Chapter 8 Network Security Computer Networking: A Top Down Approach, 5 th edition. Jim Kurose, Keith Ross Addison-Wesley, April 2009.

Chapter 8 Network Security Computer Networking: A Top Down Approach, 5 th edition. Jim Kurose, Keith Ross Addison-Wesley, April 2009.
8-1 What is network security? Confidentiality: only sender, intended receiver should “understand” message contents m sender encrypts message m receiver.

8-1 What is network security? Confidentiality: only sender, intended receiver should “understand” message contents m sender encrypts message m receiver.
8-1 Internet security threats Mapping: m before attacking: gather information – find out what services are implemented on network  Use ping to determine.

8-1 Internet security threats Mapping: m before attacking: gather information – find out what services are implemented on network  Use ping to determine.
1 ITC242 – Introduction to Data Communications Week 11 Topic 17 Chapter 18 Network Security.

1 ITC242 – Introduction to Data Communications Week 11 Topic 17 Chapter 18 Network Security.
CSE401n:Computer Networks

CSE401n:Computer Networks
Network Security understand principles of network security:

Network Security understand principles of network security:
Lecture 3 Introduction 1-1 Chapter 1: roadmap 1.1 What is the Internet? 1.2 Network edge  end systems, access networks, links 1.3 Network core  circuit.

Lecture 3 Introduction 1-1 Chapter 1: roadmap 1.1 What is the Internet? 1.2 Network edge  end systems, access networks, links 1.3 Network core  circuit.
8: Network Security8-1 Chapter 8 Network Security A note on the use of these ppt slides: We’re making these slides freely available to all (faculty, students,

8: Network Security8-1 Chapter 8 Network Security A note on the use of these ppt slides: We’re making these slides freely available to all (faculty, students,

Similar presentations

Ads by Google