Presentation is loading. Please wait.

Presentation is loading. Please wait.

Computer Security Fundamentals Chuck Easttom Chapter 1 Introduction to to Computer Security.

Published byNeal Patrick Modified over 9 years ago

Similar presentations

Presentation on theme: "Computer Security Fundamentals Chuck Easttom Chapter 1 Introduction to to Computer Security."— Presentation transcript:

1 Computer Security Fundamentals Chuck Easttom Chapter 1 Introduction to to Computer Security

2 © 2012 by Pearson Education, Inc. Chapter 1 Introduction to Computer Security 2 Chapter 1 Objectives Identify top threats to a computer network Assess the likelihood of an attack Define key terms like cracker, sneaker, firewall, and authentication Compare and contrast perimeter and layered approaches to network security Use online resources

3 © 2012 by Pearson Education, Inc. Chapter 1 Introduction to Computer Security 3 Introduction Computer systems and networks are all around us.  Online banking  Automated supermarket checkouts  Online classes  Online shopping  Online travel resources

4 © 2012 by Pearson Education, Inc. Chapter 1 Introduction to Computer Security 4 Introduction (cont.) How is personal information safeguarded? What are the vulnerabilities? What secures these systems?

5 © 2012 by Pearson Education, Inc. Chapter 1 Introduction to Computer Security 5 How Seriously Should You Take Threats to Network Security? Which group do you belong to?  “No one is coming after my computer.”  “The sky is falling!”  Middle ground.

6 © 2012 by Pearson Education, Inc. Chapter 1 Introduction to Computer Security 6 Identifying Types of Threats Malware: MALicious softWARE Security Breaches DoS: Denial o f S ervice attacks Web Attacks Session Hijacking DNS Poisoning

7 © 2012 by Pearson Education, Inc. Chapter 1 Introduction to Computer Security 7 Malware Software with a malicious purpose  Virus  Trojan horse  Spyware  Logic Bomb

8 © 2012 by Pearson Education, Inc. Chapter 1 Introduction to Computer Security 8 Malware (cont.) Virus  One of the two most common types  Usually spreads through e-mail  Uses system resources, causing slowdown or stoppage

9 © 2012 by Pearson Education, Inc. Chapter 1 Introduction to Computer Security 9 Malware (cont.) Trojan Horse  The other most common kind of malware  Named after the wooden horse of ancient history

10 © 2012 by Pearson Education, Inc. Chapter 1 Introduction to Computer Security 10 Malware (cont.) Spyware  The most rapidly growing types of malware Cookies Key logger

11 © 2012 by Pearson Education, Inc. Chapter 1 Introduction to Computer Security 11 Malware (cont.) Logic Bomb  Lays dormant until some logical condition is met, often a specific date.

12 © 2012 by Pearson Education, Inc. Chapter 1 Introduction to Computer Security 12 Compromising System Security Intrusions  Attacks that break through system resources Hackers Crackers Social engineering War-driving

13 © 2012 by Pearson Education, Inc. Chapter 1 Introduction to Computer Security 13 Denial of Service Attacks The attacker does not intrude into the system but just blocks access by authorized users.

14 © 2012 by Pearson Education, Inc. Chapter 1 Introduction to Computer Security 14 Web Attacks The attacker attempts to breach a web application. Common attacks of this type are SQL injection and Cross Site Scripting.

15 © 2012 by Pearson Education, Inc. Chapter 1 Introduction to Computer Security 15 Session Hijacking This is a complex attack that involves actually taking over an authenticated session.

16 © 2012 by Pearson Education, Inc. Chapter 1 Introduction to Computer Security 16 DNS Poisoning This involves altering DNS records on a DNS server to redirect client traffic to malicious websites, usually for identity theft.

17 © 2012 by Pearson Education, Inc. Chapter 1 Introduction to Computer Security 17 Assessing the Likelihood of an Attack on Your Network Viruses  Catch up on new and refurbished viruses Unauthorized use of systems  DoS attacks  Intrusions  Employee misuse

18 © 2012 by Pearson Education, Inc. Chapter 1 Introduction to Computer Security 18 Basic Security Terminology People:  Hackers White hats Black hats Gray hats  Script kiddies  Sneakers  Ethical hackers

19 © 2012 by Pearson Education, Inc. Chapter 1 Introduction to Computer Security 19 Basic Security Terminology (cont.) Devices  Firewall Filters network traffic  Proxy server Disguises IP address of internal host  Intrusion Detection System Monitors traffic, looking for attempted attacks

20 © 2012 by Pearson Education, Inc. Chapter 1 Introduction to Computer Security 20 Basic Security Terminology (cont.) Activities  Authentication  Auditing

21 © 2012 by Pearson Education, Inc. Chapter 1 Introduction to Computer Security 21 Network Security Paradigms How will youprotect your network?  CIA Triangle  Least Privileges  Perimeter security approach  Layered security approach  Proactive versus reactive  Hybrid security method

22 © 2012 by Pearson Education, Inc. Chapter 1 Introduction to Computer Security 22 How Do Legal Issues Impact Network Security? The Computer Security Act of 1987 OMB Circular A-130 See www.alw.nih.gov/Security/FIRST/papers/ legal/statelaw.txt for state computer lawswww.alw.nih.gov/Security/FIRST/papers/ legal/statelaw.txt Health Insurance Portability and Accountability Act of 1996, HIPAA

23 © 2012 by Pearson Education, Inc. Chapter 1 Introduction to Computer Security 23 Online Security Resources CERT  www.cert.org www.cert.org Microsoft Security Advisor  www.microsoft.com/security/default.mspx www.microsoft.com/security/default.mspx F-Secure  www.f-secure.com www.f-secure.com SANS  www.sans.org www.sans.org

24 © 2012 by Pearson Education, Inc. Chapter 1 Introduction to Computer Security 24 Summary Network security is a constantly changing field. You need three levels of knowledge.  Take the courses necessary to learn the basic techniques.  Learn your enterprise system intimately, with all its strengths and vulnerabilities.  Keep current in the ever-changing world of threats and exploits.

Download ppt "Computer Security Fundamentals Chuck Easttom Chapter 1 Introduction to to Computer Security."

Similar presentations

A NASSCOM ® Initiative Comprehensive Computer Security Software An advanced computer security software usually have one or more of the following utilities.

A NASSCOM ® Initiative Comprehensive Computer Security Software An advanced computer security software usually have one or more of the following utilities.
Chapter 1: Fundamentals of Security JV Note: Images may not be relevant to information on slide.

Chapter 1: Fundamentals of Security JV Note: Images may not be relevant to information on slide.
ITIS 1210 Introduction to Web-Based Information Systems Chapter 44 How Firewalls Work How Firewalls Work.

ITIS 1210 Introduction to Web-Based Information Systems Chapter 44 How Firewalls Work How Firewalls Work.
What are computer viruses and its types? Computer Viruses are malicious software programs that damage computer program entering into the computer without.

What are computer viruses and its types? Computer Viruses are malicious software programs that damage computer program entering into the computer without.
COMP6005 An Introduction to Computing Session One: An Introduction to Computing Security Issues.

COMP6005 An Introduction to Computing Session One: An Introduction to Computing Security Issues.
Security and Trust in E- Commerce. The E-commerce Security Environment: The Scope of the Problem  Overall size of cybercrime unclear; amount of losses.

Security and Trust in E- Commerce. The E-commerce Security Environment: The Scope of the Problem  Overall size of cybercrime unclear; amount of losses.
McGraw-Hill/Irwin ©2009 The McGraw-Hill Companies, All Rights Reserved CHAPTER 4 ETHICS AND INFORMATION SECURITY Business Driven Information Systems 2e.

McGraw-Hill/Irwin ©2009 The McGraw-Hill Companies, All Rights Reserved CHAPTER 4 ETHICS AND INFORMATION SECURITY Business Driven Information Systems 2e.
Chapter 4 McGraw-Hill/Irwin Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights reserved. Ethics and Information Security.

Chapter 4 McGraw-Hill/Irwin Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights reserved. Ethics and Information Security.
Computer Security Fundamentals by Chuck Easttom Chapter 4 Denial of Service Attacks.

Computer Security Fundamentals by Chuck Easttom Chapter 4 Denial of Service Attacks.
Security Issues and Challenges in Cloud Computing

Security Issues and Challenges in Cloud Computing
INDEX  Ethical Hacking Terminology.  What is Ethical hacking?  Who are Ethical hacker?  How many types of hackers?  White Hats (Ethical hackers)

INDEX  Ethical Hacking Terminology.  What is Ethical hacking?  Who are Ethical hacker?  How many types of hackers?  White Hats (Ethical hackers)
Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.

Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.
The Ecommerce Security Environment For most law-abiding citizens, the internet holds the promise of a global marketplace, providing access to people and.

The Ecommerce Security Environment For most law-abiding citizens, the internet holds the promise of a global marketplace, providing access to people and.
Barracuda Web Application Firewall

Barracuda Web Application Firewall
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
McGraw-Hill © 2008 The McGraw-Hill Companies, Inc. All rights reserved. Chapter 8 Threats and Safeguards Chapter 8 PROTECTING PEOPLE AND INFORMATION Threats.

McGraw-Hill © 2008 The McGraw-Hill Companies, Inc. All rights reserved. Chapter 8 Threats and Safeguards Chapter 8 PROTECTING PEOPLE AND INFORMATION Threats.
Copyright © 2002 Pearson Education, Inc. Slide 5-1 PERTEMUAN 8.

Copyright © 2002 Pearson Education, Inc. Slide 5-1 PERTEMUAN 8.
Computer Security Fundamentals by Chuck Easttom Chapter 5 Malware.

Computer Security Fundamentals by Chuck Easttom Chapter 5 Malware.

Similar presentations

Ads by Google