Presentation is loading. Please wait.

Presentation is loading. Please wait.

Who am I? Mats Ohlin Swedish Defence Materiel Administration (FMV) IT Security area –International Standardisation: ISO/IEC JTC 1/SC 27/WG 3 (Security.

Published byAudra Holt Modified over 9 years ago

Similar presentations

Presentation on theme: "Who am I? Mats Ohlin Swedish Defence Materiel Administration (FMV) IT Security area –International Standardisation: ISO/IEC JTC 1/SC 27/WG 3 (Security."— Presentation transcript:

1 Who am I? Mats Ohlin Swedish Defence Materiel Administration (FMV) IT Security area –International Standardisation: ISO/IEC JTC 1/SC 27/WG 3 (Security Evaluation Criteria) –Defence IP Network Security

2 General Mobile Network in Kista –Location Privacy Overview of previous work in the Privacy area Freedom System extensions for mobile users

3 What is Security? If you do not have a (stated) goal, it is not possible to know when you have arrived –Winnie the Puh Security is about the ability to counter identified attacks –Attack agent(s) –Assets (to be protected) System Services System Resources and Information Objects

4 Basic Privacy Terms Anonymity –that a user may use a resource or service without disclosing the user´s identity. The requirements for Anonymity provide protection of the user identity. Pseudonymity –ensures that a user may use a resource or service without disclosing its user identity, but still be accountable for that use.

5 Basic Privacy Terms (2) Unlinkability –ensures that a user may make multiple uses of resources or services without others being able to link these uses together. Unobservability –ensures that a user may use a resource or service without others, especially third parties, being able to observe that the resource or service is being used.

6 Basic assumptions Any [wireless] component must have an ID –Authentication is often necessary End-to-end security solutions is advisable, but... Traffic analysis security is hard to achieve –variable routing –onion routing –dummy traffic –mixing (repackaging)

7 Practical aspects Implementation problems –performance –availability (of Freedom routers) –knowledge about Freedom routers Wireless in practise –Some competent actors may apply special measures –The broad user community will stick with what´s delivered easily managed

8 Practical aspects (2) Political –Some years ago; crypto debate –Now concern about traffic analysis Downside –Internet Tradition of Implicit Trust –Internet abuse Host attacks DNS attacks Routing protocol attack (soon)

9 Practical aspects (3) Gibson Research Corporation in May –Several DDOS attack waves 474 PCs in DDOS attack generating 2.399.237.016 packets (fragments) in 4 days Demands for Authenticated IP (IP-AH) –Trust Management a problem Certificate Management May stimulate further work on Privacy Enhancing Protocols (PET)

10 Practical aspects (4) Further work should include –strict definition of security goals –attack analysis –how make the existence of Freedom Networks more invisible Actually, also big organisations, like defence, is looking at similar techniques for countering traffic analysis

11 Questions DOS attacks against Freedom Networks Common Criteria Definitions Good Enough? Modelling the extent of the attacker´s knowledge necessary for different types of attacks? Business Model; who is going to pay and why?

Download ppt "Who am I? Mats Ohlin Swedish Defence Materiel Administration (FMV) IT Security area –International Standardisation: ISO/IEC JTC 1/SC 27/WG 3 (Security."

Similar presentations

Mobile IP.. 45-7028-115-6. How Mobile IP Works? Agenda What problems does Mobile IP solve? Mobile IP: protocol overview Scope Requirements Design goals.

Mobile IP How Mobile IP Works? Agenda What problems does Mobile IP solve? Mobile IP: protocol overview Scope Requirements Design goals.
ACHIEVING NETWORK LEVEL PRIVACY IN WIRELESS SENSOR NETWORKS.

ACHIEVING NETWORK LEVEL PRIVACY IN WIRELESS SENSOR NETWORKS.
Potential Smart Grid standardisation work in ETSI Security and privacy aspects Carmine Rizzo on behalf of Scott CADZOW, C3L © ETSI 2010. All rights reserved.

Potential Smart Grid standardisation work in ETSI Security and privacy aspects Carmine Rizzo on behalf of Scott CADZOW, C3L © ETSI All rights reserved.
SECURING WIRELESS LANS PRESENTED BY VICTOR C. NWALA CS555 Department of Computer Science Old Dominion University.

SECURING WIRELESS LANS PRESENTED BY VICTOR C. NWALA CS555 Department of Computer Science Old Dominion University.
Computer Networks20-1 Chapter 20. Network Layer: Internet Protocol 20.1 Internetworking 20.2 IPv4 20.3 IPv6.

Computer Networks20-1 Chapter 20. Network Layer: Internet Protocol 20.1 Internetworking 20.2 IPv IPv6.
Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.

Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.
Modelling and Analysing of Security Protocol: Lecture 10 Anonymity: Systems.

Modelling and Analysing of Security Protocol: Lecture 10 Anonymity: Systems.
Security and Privacy Issues in Wireless Communication By: Michael Glus, MSEE EEL 6788 11.

Security and Privacy Issues in Wireless Communication By: Michael Glus, MSEE EEL
Privacy Terminology draft-hansen-privacy-terminology-03.txt Hannes Tschofenig.

Privacy Terminology draft-hansen-privacy-terminology-03.txt Hannes Tschofenig.
Network Isolation Using Group Policy and IPSec Paula Kiernan Senior Consultant Ward Solutions.

Network Isolation Using Group Policy and IPSec Paula Kiernan Senior Consultant Ward Solutions.
Cryptography and Authentication Lab ECE4112 Group4 Joel Davis Scott Allen Quinn.

Cryptography and Authentication Lab ECE4112 Group4 Joel Davis Scott Allen Quinn.
Network Security Topologies Chapter 11. Learning Objectives Explain network perimeter’s importance to an organization’s security policies Identify place.

Network Security Topologies Chapter 11. Learning Objectives Explain network perimeter’s importance to an organization’s security policies Identify place.
Security+ Guide to Network Security Fundamentals

Security+ Guide to Network Security Fundamentals
1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.

1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.
CMSC 414 Computer (and Network) Security Lecture 16 Jonathan Katz.

CMSC 414 Computer (and Network) Security Lecture 16 Jonathan Katz.
I NTERNET A NONYMITY By Esra Erdin. Introduction Types of Anonymity Systems TOR Overview Working Mechanism of TOR I2P Overview Working Mechanism of I2P.

I NTERNET A NONYMITY By Esra Erdin. Introduction Types of Anonymity Systems TOR Overview Working Mechanism of TOR I2P Overview Working Mechanism of I2P.
NETWORKS Lauren Hickman Patrick McCamy Morgan Pace Noah Ryder.

NETWORKS Lauren Hickman Patrick McCamy Morgan Pace Noah Ryder.
1 Representing Identity CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute April 19, 2004.

1 Representing Identity CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute April 19, 2004.
ICT in Politics and Public Administration. Some basic concepts Politics Democracy Public administration & management Public policy.

ICT in Politics and Public Administration. Some basic concepts Politics Democracy Public administration & management Public policy.
Providing Anonymity Services in SIP L. Kazatzopoulos, K. Delakouridis, G.F. Marias PIMRC 2008 Sept. 15,

Providing Anonymity Services in SIP L. Kazatzopoulos, K. Delakouridis, G.F. Marias PIMRC 2008 Sept. 15,

Similar presentations

Ads by Google