Presentation is loading. Please wait.

Presentation is loading. Please wait.

Internet Drivers License CSS411/BIS421 Computing Technology & Public Policy Mark Kochanski Spring 2010.

Published byLoraine Riley Modified over 9 years ago

Similar presentations

Presentation on theme: "Internet Drivers License CSS411/BIS421 Computing Technology & Public Policy Mark Kochanski Spring 2010."— Presentation transcript:

1 Internet Drivers License CSS411/BIS421 Computing Technology & Public Policy Mark Kochanski Spring 2010

2

3 Issues Protection of Infrastructure Protection of Resources ◦ Governments ◦ Industry ◦ Individuals Protection of Intellectual Property Identity Theft Enabling Criminal Investigation

4 Malware Malicious Software ◦ Viruses ◦ Worms ◦ Trojans ◦ Root Kits ◦ Spyware

5 Malware

6 US-CERT Incident Categories CAT 1: Unauthorized Access CAT 2: Denial of Service (DoS) CAT 3: Malicious Code CAT 4: Improper Usage (based on Policy) CAT 5: Scans, Probes, or Attempted Access CAT 6: Under Investigation

7 US-CERT Reported Cyberspace Security Incidents by Category Quarterly Trends FY09 Q1 (June 2009) Quarterly Trends FY06 Q3 (June 2006)

8 US-CERT Reported Cyberspace Security Incidents Quarterly Trends FY09 Q1 (June 2009) Quarterly Trends FY07 Q4 (December 2007)

9 DDoS Attacks DDoS Attacks (Last Two Years) http://www.shadowserver.org/wiki/pmwiki.php/Stats/DDoSCharts

10 Infection Rates Code Red ◦ 150,000 computers in 14 hours NIMDA ◦ Nationwide in 1 hour

11 Example: Spread of the Witty Worm Figure 2: The exponential spread of the Witty worm. The number of active machines in five minutes (green line) stabilized after 45 minutes, indicating that almost all of the vulnerable machines had been compromised. After that point, dynamic addressing (e.g. DHCP) caused the cumulative IP address total (the red line) to continue to rise. We estimate the total number of hosts infected by the Witty worm to be 12,000 hosts at most. Shannon, Colleen and David Moore. “The Spread of the Witty Worm”, CAIDA, 2008. http://www.caida.org/research/security/witty/

12 Uses of Botnets Distributed Denial of Service Attacks Spamming Sniffing Traffic Keylogging Spreading New Malware Leveraging Advertising Manipulating Polls and Games Mass Identity Theft

13 Spam by Botnet Type

14 Example: Rustock

15 Botnet Statistics September 2006: Botnets capable of generating10-20Gbps of junk data Davos 2007: Up to 25% (150 million hosts) may be participants in a botnet Last two year trends [ShadowServer]

16 Hosts on the Internet

17 Quality of Software US CERT [http://www.cert.org/stats/] Through Q3 2008

18 Zero AV Detection

19 IPV4 Network Routing http://www.eventhelix.com/realtimemantra/networking/ip_routing.htm

20 IPV4 Packet Fields

21 IPV4 Infrastructure RIPE NCC (January 2010) http://www.ripe.net/is/hostcount/stats/all/2010-01

22 National Policy National Strategy to Secure Cyberspace, 2003 ◦ Public-private engagement through DHS ◦ Federal Priorities I.A National Cyberspace Security Response System II.A National Cyberspace Security Threat and Vulnerability Reduction Program III.A National Cyberspace Security Awareness and Training Program IV.Securing Governments’ Cyberspace V.National Security and International Federal Information Security Management Act, 2002 (FISMA)

23 National Strategy to Secure Cyberspace, 2003. p. 9

24 Guiding Principles A national effect Use government to facilitate / communicate Protect privacy and civil liberties Regulations and market forces Leverage market forces Accountability and responsibility Ensure flexibility Multiyear planning

25 Government Involvement II. A National Cyberspace Security Threat and Vulnerability Reduction Program Include efforts to ◦ Identify and remediate existing vulnerabilities ◦ Develop systems with fewer vulnerabilities With goals and objectives including ◦ Securing mechanisms of the internet ◦ Improving the security and resilience of key internet protocols ◦ Promoting improved internet routing ◦ Improve management (of the internet)

26 DHS NIPP-Cyber Security (National Infrastructure Protection Plan) Industry-specific partnership: IT Sector ◦ IT SCC Sector Coordinating Council ◦ IT GCC Government Coordinating Council ◦ IT ISAC Information Sharing and Analysis Center ◦ US-CERT U.S. Computer Emergency Readiness Team

27 Security Industry 2005: $4 billion with 13.6% Growth (Gartner)

Download ppt "Internet Drivers License CSS411/BIS421 Computing Technology & Public Policy Mark Kochanski Spring 2010."

Similar presentations

Cyber Crime and Technology

Cyber Crime and Technology
Its a new digital world with new digital dangers….

Its a new digital world with new digital dangers….
AFCEA DC Cyber Security Symposium Military Joint Cyber Command Panel Harry Raduege Lieutenant General, USAF (Ret) Chairman, Center for Network Innovation.

AFCEA DC Cyber Security Symposium Military Joint Cyber Command Panel Harry Raduege Lieutenant General, USAF (Ret) Chairman, Center for Network Innovation.
A NASSCOM ® Initiative Comprehensive Computer Security Software An advanced computer security software usually have one or more of the following utilities.

A NASSCOM ® Initiative Comprehensive Computer Security Software An advanced computer security software usually have one or more of the following utilities.
Code-Red : a case study on the spread and victims of an Internet worm David Moore, Colleen Shannon, Jeffery Brown Jonghyun Kim.

Code-Red : a case study on the spread and victims of an Internet worm David Moore, Colleen Shannon, Jeffery Brown Jonghyun Kim.
UNCLASSIFIED Cybercrime: The Australian Experience Australian Cybercrime Online Reporting Network (ACORN) Conference Assistant Commissioner Tim Morris.

UNCLASSIFIED Cybercrime: The Australian Experience Australian Cybercrime Online Reporting Network (ACORN) Conference Assistant Commissioner Tim Morris.
CUBIC DEFENSE APPLICATIONS Security Summit Discussions Jeff Snyder Vice President, Cyber Programs Cubic Defense Applications.

CUBIC DEFENSE APPLICATIONS Security Summit Discussions Jeff Snyder Vice President, Cyber Programs Cubic Defense Applications.
Lynn Ray ISO Towson University Strategic Planning for IT Security Copyright Lynn Ray, 2007. This work is the intellectual property rights of the author.

Lynn Ray ISO Towson University Strategic Planning for IT Security Copyright Lynn Ray, This work is the intellectual property rights of the author.
Security and Trust in E- Commerce. The E-commerce Security Environment: The Scope of the Problem  Overall size of cybercrime unclear; amount of losses.

Security and Trust in E- Commerce. The E-commerce Security Environment: The Scope of the Problem  Overall size of cybercrime unclear; amount of losses.
Cyber Security R&D Challenges: A Homeland Security Perspective Simon Szykman, Ph.D. Director, Cyber Security R&D 202-254-5802.

Cyber Security R&D Challenges: A Homeland Security Perspective Simon Szykman, Ph.D. Director, Cyber Security R&D
DHS, National Cyber Security Division Overview

DHS, National Cyber Security Division Overview
A Cyber Security Company June 16, 2009 Cyber Security: Current Events and White House Cyberspace Policy Review.

A Cyber Security Company June 16, 2009 Cyber Security: Current Events and White House Cyberspace Policy Review.
1 Telstra in Confidence Managing Security for our Mobile Technology.

1 Telstra in Confidence Managing Security for our Mobile Technology.
SECR 5140-FL Critical Infrastructure Protection Dr. Barry S. Hess Spring 2 Semester Week 3: 1 April 2006.

SECR 5140-FL Critical Infrastructure Protection Dr. Barry S. Hess Spring 2 Semester Week 3: 1 April 2006.
Introduction to Security Computer Networks Computer Networks Term B10.

Introduction to Security Computer Networks Computer Networks Term B10.
1 Understanding Botnet Phenomenon MITP 458 - Kevin Lynch, Will Fiedler, Navin Johri, Sam Annor, Alex Roussev.

1 Understanding Botnet Phenomenon MITP Kevin Lynch, Will Fiedler, Navin Johri, Sam Annor, Alex Roussev.
Welcome to EECS 354 Network Penetration and Security.

Welcome to EECS 354 Network Penetration and Security.
UNCLASSIFIED Secure Indirect Routing and An Autonomous Enterprise Intrusion Defense System Applied to Mobile ad hoc Networks J. Leland Langston, Raytheon.

UNCLASSIFIED Secure Indirect Routing and An Autonomous Enterprise Intrusion Defense System Applied to Mobile ad hoc Networks J. Leland Langston, Raytheon.
Cyberspace and the Police Mamoru TAKAHASHI Head of Computer Forensic Center, Hi-tech Crime Technology Division National Police Agency, Japan.

Cyberspace and the Police Mamoru TAKAHASHI Head of Computer Forensic Center, Hi-tech Crime Technology Division National Police Agency, Japan.
(Geneva, Switzerland, September 2014)

(Geneva, Switzerland, September 2014)

Similar presentations

Ads by Google