Presentation is loading. Please wait.

Presentation is loading. Please wait.

@Yuan Xue CS 285 Network Security Fall 2008.

Published byPhilomena Dennis Modified over 9 years ago

Similar presentations

Presentation on theme: "@Yuan Xue CS 285 Network Security Fall 2008."— Presentation transcript:

1 @Yuan Xue (yuan.xue@vanderbilt.edu) CS 285 Network Security Fall 2008

2 @Yuan Xue (yuan.xue@vanderbilt.edu) Course Information When and Where Tuesday/Thursday 11am-12:15pm 209 Featheringill HallFeatheringill Hall Instructor: Yuan Xue (yuan.xue@vanderbilt.edu) Office: 383 Jacobs Hall, Phone: 615-322-2926 Office hours: Monday/Thursday 2pm-3pm or by appointment. Web: http://vanets.vuse.vanderbilt.edu/~xue/cs285fall08/index.html

3 @Yuan Xue (yuan.xue@vanderbilt.edu) Books and References Textbook [WS] Cryptography and Network Security: Principles and Practice (4th Edition) by William Stallings Reference books [KPS] Network Security: Private Communication in a Public World (2nd Edition), by Charlie Kaufman, Radia Perlman, Mike Speciner [CSP] Security in Computing (3rd Edition), by Charles P. Pfleeger, Shari Lawrence Pfleeger [MB] Computer Security: Art and Science, by Matthew A. Bishop

4 @Yuan Xue (yuan.xue@vanderbilt.edu) Course Component Lecture Slides + white board Take note Online digest/slides Participation Discussion Presentation Homework 5 assignments Midterm Project Grading Policy  Participation: 10%  Homework: 35%  Midterm: 25%  Project: 30%

5 @Yuan Xue (yuan.xue@vanderbilt.edu) What you will learn from this course What is “ Security ” ? Where the security problems come from?  Potential threats to a system What are the solutions? Apply an appropriate mix of security measures (protective, defensive, etc) Knowing what has worked, what has failed. Security involves many aspects -Operating system, programming language, administration and policy Our Focus Network Security

6 @Yuan Xue (yuan.xue@vanderbilt.edu) Course Topics Security Basics and Principles Symmetric/ Asymmetric Cryptography Basic concept, algorithm, mechanism, Design principles Security Practices Secure protocols, systems and applications Hand-on experiences Secure network programming Hot Topics and Recent Development Wireless security, DoS attack, etc.

7 @Yuan Xue (yuan.xue@vanderbilt.edu) Survey and Feedback Your input is important Online Survey  http://www.zoomerang.com/Survey/?p=WEB22873V62YWQ http://www.zoomerang.com/Survey/?p=WEB22873V62YWQ Feedback

8 @Yuan Xue (yuan.xue@vanderbilt.edu) What is security? In general, security is the condition of being protected against danger or loss. (Wikipedia) In computer security and network security What are the subjects that need to be protected? Let’s start with some terms System  computer, network, application, data, resource Principal: an entity that participate in a system  user, person

9 @Yuan Xue (yuan.xue@vanderbilt.edu) What is security? Computer Security Confidentiality means that only authorized people or system can access the data or resource. Integrity refers to the trustworthiness of data or resources.  Data integrity means that data can only be modified by authorized people or system in authorized ways  Origin integrity means that the source of the data is trustworthy, also called authentication.  Message authentication means messages received are exactly as sent (i.e. no modification, insertion, deletion, or replay), and the ID of the sender is valid.  Note: timing information Availability means that people has the ability to use the information or resource desired.

10 @Yuan Xue (yuan.xue@vanderbilt.edu) Where the security problem comes from? Let’s look at some example systems: Bank Bookkeeping  Core operations customer account, journals recording the transactions  Who has the access to the information? Bank’s own staff – what if they cheat? ATM  Authenticate users based on card and ID number Let’s go Internet  The user – how do we know they are the “real” (authenticate) user?  Protect web servers and bookkeeping database

11 @Yuan Xue (yuan.xue@vanderbilt.edu) Where the security problem comes from? Hospital Patient record system  Who can access the record? – Many parties – insurance company, care giver, researcher, etc Complicated -- role can change Privacy issue – HIPPA Anonymize the record for research  Is it sufficient? Show me all records of 59-year-old males who were treated for a broken collarbone on September 15, 1966 Drug management Let’s go to Web  ….

12 @Yuan Xue (yuan.xue@vanderbilt.edu) Issues that will be addressed in this class

13 @Yuan Xue (yuan.xue@vanderbilt.edu) Network Security Issues From a Computer to Internet Single computer Networking environment  Secure communication in a public environment  Computer system security with remote access Internet Link IP TCP/UDP Application Link IP TCP/UDP Application Link IP Link IP Network Security

14 @Yuan Xue (yuan.xue@vanderbilt.edu) Some Simple Scenarios Internet Link IP TCP/UDP Application Link IP TCP/UDP Application Link IP Link IP Bob Alice Darth Read content of the message from Bob to Alice

15 @Yuan Xue (yuan.xue@vanderbilt.edu) Some Simple Scenarios Internet Link IP TCP/UDP Application Link IP TCP/UDP Application Link IP Link IP Bob Alice Darth Modify content of the message from Bob to Alice

16 @Yuan Xue (yuan.xue@vanderbilt.edu) Some Simple Scenarios Internet Link IP TCP/UDP Application Link IP TCP/UDP Application Link IP Link IP Bob Alice Darth capture the message from Bob to Alice And replay the message later

17 @Yuan Xue (yuan.xue@vanderbilt.edu) Some Simple Scenarios Internet Link IP TCP/UDP Application Link IP TCP/UDP Application Link IP Link IP Bob Alice Darth Pretend to be Bob to send a message to Alice

18 @Yuan Xue (yuan.xue@vanderbilt.edu) Some Simple Scenarios Internet Link IP TCP/UDP Application Link IP TCP/UDP Application Link IP Link IP Bob Alice Darth Interrupt

19 @Yuan Xue (yuan.xue@vanderbilt.edu) Some Simple Scenarios Internet Link IP TCP/UDP Application Link IP TCP/UDP Application Link IP Link IP Bob Alice Darth Observe message pattern

20 @Yuan Xue (yuan.xue@vanderbilt.edu) What are the solutions?

21 @Yuan Xue (yuan.xue@vanderbilt.edu) Why many solutions fail? Protect wrong things Protect right things in the wrong way

22 @Yuan Xue (yuan.xue@vanderbilt.edu) What are the solutions? Security Basics and Principles Symmetric/ Asymmetric Cryptography Basic concept, algorithm, mechanism, Security Practices Secure protocol designs Secure systems and applications

23 @Yuan Xue (yuan.xue@vanderbilt.edu) How to study network security? Principle of Easiest Penetration An intruder are expected to use any available means of penetration. Computer security specialists must consider all possible means of penetration. Learning methodology examine all possible vulnerabilities of the system consider available countermeasures.

Download ppt "@Yuan Xue CS 285 Network Security Fall 2008."

Similar presentations

Chapter 1  Introduction 1 Chapter 1: Introduction.

Chapter 1  Introduction 1 Chapter 1: Introduction.
Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.

Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.
Introduction and Logistics Amir Houmansadr CS660: Advanced Information Assurance Spring 2015.

Introduction and Logistics Amir Houmansadr CS660: Advanced Information Assurance Spring 2015.
L0. Introduction Rocky K. C. Chang, January 2013.

L0. Introduction Rocky K. C. Chang, January 2013.
EEC 688/788 Secure and Dependable Computing Lecture 2 Wenbing Zhao Department of Electrical and Computer Engineering Cleveland State University

EEC 688/788 Secure and Dependable Computing Lecture 2 Wenbing Zhao Department of Electrical and Computer Engineering Cleveland State University
IT 221: Introduction to Information Security Principles Lecture 1: Introduction to IT Security For Educational Purposes Only Revised: August 28, 2002.

IT 221: Introduction to Information Security Principles Lecture 1: Introduction to IT Security For Educational Purposes Only Revised: August 28, 2002.
1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.

1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.
CS 494/594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2010.

CS 494/594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2010.
CSCE 790: Computer Network Security Chin-Tser Huang University of South Carolina.

CSCE 790: Computer Network Security Chin-Tser Huang University of South Carolina.
Data Communication and Networks Lecture 0 Administrivia September 5, 2002 Joseph Conron Computer Science Department New York University

Data Communication and Networks Lecture 0 Administrivia September 5, 2002 Joseph Conron Computer Science Department New York University
Applied Cryptography for Network Security

Applied Cryptography for Network Security
CSCD 434 Spring 2011 Lecture 1 Course Overview. Contact Information Instructor Carol Taylor 315 CEB Phone: 509-359-6908 Office.

CSCD 434 Spring 2011 Lecture 1 Course Overview. Contact Information Instructor Carol Taylor 315 CEB Phone: Office.
“Network Security” Introduction. My Introduction Obaid Ullah Owais Khan Obaid Ullah Owais Khan B.E (I.T) – Hamdard University(2003), Karachi B.E (I.T)

“Network Security” Introduction. My Introduction Obaid Ullah Owais Khan Obaid Ullah Owais Khan B.E (I.T) – Hamdard University(2003), Karachi B.E (I.T)
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
Cryptography and Network Security Chapter 1 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Chapter 1 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.
1 CSE 651: Introduction to Network Security Steve Lai Spring 2010.

1 CSE 651: Introduction to Network Security Steve Lai Spring 2010.
1 Cryptography and Network Security Fourth Edition by William Stallings Lecture slides by Lawrie Brown Changed by: Somesh Jha [Lecture 1]

1 Cryptography and Network Security Fourth Edition by William Stallings Lecture slides by Lawrie Brown Changed by: Somesh Jha [Lecture 1]
Cryptography and Network Security Overview & Chapter 1 Fifth Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Overview & Chapter 1 Fifth Edition by William Stallings Lecture slides by Lawrie Brown.
Computer Network Fundamentals CNT4007C

Computer Network Fundamentals CNT4007C
Cryptography and Network Security Chapter 1

Cryptography and Network Security Chapter 1

Similar presentations

Ads by Google