Presentation is loading. Please wait.

Presentation is loading. Please wait.

Client Server Security DeSiaMorePowered by DeSiaMore1.

Published byIlene Jackson Modified over 9 years ago

Similar presentations

Presentation on theme: "Client Server Security DeSiaMorePowered by DeSiaMore1."— Presentation transcript:

1 Client Server Security DeSiaMorePowered by DeSiaMore1

2 Introduction Although client/server architecture is the most popular and widely used computing environment, it the most vulnerable to breaches in security. Why? –Distribution of services between client server which render to damage, fraud and misuse. Security considerations must be in place. DeSiaMorePowered by DeSiaMore2

3 Client and User Security Clients connect to servers and these connections, if left open or not secured, provide entry points for hackers and other intruders that may use data for evil purposes. The distribution of services in client/ server increases the susceptibility of these systems to damage from viruses, fraud, physical damage and misuse than in any centralised computer system. DeSiaMorePowered by DeSiaMore3

4 Security Considerations Security consideration must include: –he host systems –personal computers (PCs) –local area networks (LANs) –global wide area networks (WANs) –Users. DeSiaMorePowered by DeSiaMore4

5 The client PC desktop as the client machine can easily connect to server and hence pose a great threat to organisational data. Located in an open place for users and intruders. Require physical protection. –disk drive locks, –diskless workstations to prevent the loading of unauthorised software and viruses DeSiaMorePowered by DeSiaMore5

6 The Network Intruders can use network to break into computer systems and their various resources –Can sniff the network to read packet of information such as password, company details, etc. Use data encryption DeSiaMorePowered by DeSiaMore6

7 Servers The should be protected with the level of password security applicable to the business. Encrypt database contents cryptogram or advanced DES (Data Encryption Standard) To avoid ‘trial and error’ login attacks to database, servers impose long delay to respond to user. DeSiaMorePowered by DeSiaMore7

8 Users The easiest way to gain illegal entry to the system is by obtaining a valid users ID and password. Password can be discovered when: –User chose short password or can easily be guessed. –User keeps a list of password in a dek drawer. –Share password with another users. –Attacker pretend company IT staff and request password to fix unnamed problem. DeSiaMorePowered by DeSiaMore8

9 Users To overcome this ensure that you have good security policy, and strong password management must be implemented. For more details on establishing Client/Server Security Model read given handout (Client_server security issues.doc) available on my page.my page DeSiaMorePowered by DeSiaMore9

10 Risks Associated with Client/Server Model Apart from the above framework of Client/Server Model there are other risks accompanied by this model:- –Client/Server Development Risks –Workstation Risks –The Network Wire Risk –The DBMS Risk –And other (Read in the given handout (CS_Security.doc)) available on my pagemy page DeSiaMorePowered by DeSiaMore10

11 Client/Server Risks Client/Server Development Risks –Skills of C/Server Development Risks –Rapid Application development Risk. Work Station Risk –Insecurity of PC on the network Add third party security products. PC should be used to work on select application records for few period of time. The Network Wire Risk –Packet data can be read during the communication process. Use encryption methods to encrypt data (Userids and password) DeSiaMorePowered by DeSiaMore11

12 Client/Server Risks The DBMS Risk –C/S computing is based largely on the Database Management Software that supports the applications. Security professional needs to identify System Manager for DBMS “System” or “Sys” for Oracle. –More read on the handout (CS_Security.doc) available on web. DeSiaMorePowered by DeSiaMore12

Download ppt "Client Server Security DeSiaMorePowered by DeSiaMore1."

Similar presentations

Information Management and Technology

Information Management and Technology
Networks. User access and levels Most network security involves users having different levels of user access to the network. The network manager will.

Networks. User access and levels Most network security involves users having different levels of user access to the network. The network manager will.
Web Defacement Anh Nguyen May 6 th, 2010. Organization Introduction How Hackers Deface Web Pages Solutions to Web Defacement Conclusions 2.

Web Defacement Anh Nguyen May 6 th, Organization Introduction How Hackers Deface Web Pages Solutions to Web Defacement Conclusions 2.
Hacking. Learning Objectives: At the end of this lesson you should be able to:

Hacking. Learning Objectives: At the end of this lesson you should be able to:
Chapter 21 Successfully Implementing The Information System

Chapter 21 Successfully Implementing The Information System
Remote Access Network Management Kelly Given Allison Traina.

Remote Access Network Management Kelly Given Allison Traina.
Security Week 10 Lecture 1. Why do we need security? Identify and authenticate people wanting to use the system Prevent unauthorised persons from accessing.

Security Week 10 Lecture 1. Why do we need security? Identify and authenticate people wanting to use the system Prevent unauthorised persons from accessing.
Distributed Information Systems - The Client server model

Distributed Information Systems - The Client server model
Web server security Dr Jim Briggs WEBP security1.

Web server security Dr Jim Briggs WEBP security1.
Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.

Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.
Distributed Systems: Client/Server Computing

Distributed Systems: Client/Server Computing
Client Server Security. Introduction Although client/server architecture is the most popular and widely used computing environment, it the most vulnerable.

Client Server Security. Introduction Although client/server architecture is the most popular and widely used computing environment, it the most vulnerable.
Computer Networks IGCSE ICT Section 4.

Computer Networks IGCSE ICT Section 4.
OCR Computing for GCSE © Hodder Education 2011

OCR Computing for GCSE © Hodder Education 2011
Presented by Manager, MIS.  GRIDCo’s intentions for publishing an Acceptable Use Policy are not to impose restrictions that are contrary to GRIDCo’s.

Presented by Manager, MIS.  GRIDCo’s intentions for publishing an Acceptable Use Policy are not to impose restrictions that are contrary to GRIDCo’s.
COMPUTER CRIME AND TYPES OF CRIME Prepared by: NURUL FATIHAH BT ANAS.

COMPUTER CRIME AND TYPES OF CRIME Prepared by: NURUL FATIHAH BT ANAS.
System Architecture & Hardware Configurations Dr. D. Bilal IS 592 Spring 2005.

System Architecture & Hardware Configurations Dr. D. Bilal IS 592 Spring 2005.
Week 2 File Systems & Unix Commands. File System Hierarchy.

Week 2 File Systems & Unix Commands. File System Hierarchy.
General Purpose Packages

General Purpose Packages
PCI: As complicated as it sounds? Gerry Lawrence CTO

PCI: As complicated as it sounds? Gerry Lawrence CTO

Similar presentations

Ads by Google