Presentation is loading. Please wait.

Presentation is loading. Please wait.

Information Security MGMT 661 - Summer 2012 Night #4, Lecture Part 2.

Published byRichard Hall Modified over 9 years ago

Similar presentations

Presentation on theme: "Information Security MGMT 661 - Summer 2012 Night #4, Lecture Part 2."— Presentation transcript:

1 Information Security MGMT 661 - Summer 2012 Night #4, Lecture Part 2

2 Common Problems Phishing and Spoofing Viruses ◦ Worms ◦ Trojan Horse Spyware ◦ Key loggers

3 How secure is the Internet? How a web page request works ◦ it’s more like a series of text messages than a phone call ◦ lots of machines see those packets Sniffing Denial-Of-Service Attack ◦ Distributed Dos

4 Encryption 101 Single Key Encryption ◦ One key used for encryption and decryption ◦ The key is private ◦ Used for secure email and VPNs Public Key Encryption ◦ The one key for encryption is public ◦ The other key for decryption is private ◦ Used for the web  No Encryption Scheme is 100% unbreakable

5 Single Key Example: Simple Substitution Cipher Key = list of character substitutions Example: Key = “Chair” A B C D E F G H I J K L M N O P Q R S T U V W X Y Z Y Z c h a i r B D E F G J K L M N O P Q S T U V W X

6 Breaking the Substitution Cipher

7 Data Encryption Standard adopted by National Institute of Standards in 1977 70,000,000,000,000,000 possible keys Annual Contest to Break ◦ 2006 - University of Bochum (Germany) used $10,000 hardware to get average search time of 6.4 days Triple DES is very common

8 Wireless Security Textbook Figure 8-2

9 Threat Analysis People ◦ Hackers, Vandals, Cyber-Terrorists ◦ Disgruntled Employees ◦ Careless Employees Physical ◦ Fire, Water, Weather, … ◦ Hardware Failure ◦ Software Error

10 Mitigation Data Backup Data Backup ◦ Automated backup ◦ Offsite backup service ◦ Fault Tolerant Servers Security Policies Security Policies ◦ Appropriate Use Policy ◦ Firewalls ◦ Physical access to computing equipment ◦ Passwords ◦ Levels of access

11 Next Class Your ideas for where business and IT are headed in the future Midterm Exam

Download ppt "Information Security MGMT 661 - Summer 2012 Night #4, Lecture Part 2."

Similar presentations

Privacy & Other Issues. Acceptable Use Policies When you sign up for an account at school or from an Internet Service Provider, you agree to their rules.

Privacy & Other Issues. Acceptable Use Policies When you sign up for an account at school or from an Internet Service Provider, you agree to their rules.
1 MIS 2000 Class 22 System Security Update: Winter 2015.

1 MIS 2000 Class 22 System Security Update: Winter 2015.
Crime and Security in the Networked Economy Part 4.

Crime and Security in the Networked Economy Part 4.
1 Topic 1 – Lesson 3 Network Attacks Summary. 2 Questions ► Compare passive attacks and active attacks ► How do packet sniffers work? How to mitigate?

1 Topic 1 – Lesson 3 Network Attacks Summary. 2 Questions ► Compare passive attacks and active attacks ► How do packet sniffers work? How to mitigate?
Chapter 4 McGraw-Hill/Irwin Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights reserved. Ethics and Information Security.

Chapter 4 McGraw-Hill/Irwin Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights reserved. Ethics and Information Security.
Define and identify unethical practices such as hacking, phone fraud, online piracy, cyberstalking, and data vandalism. Use of employer’s computers for.

Define and identify unethical practices such as hacking, phone fraud, online piracy, cyberstalking, and data vandalism. Use of employer’s computers for.
Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.

Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.
Security+ Guide to Network Security Fundamentals

Security+ Guide to Network Security Fundamentals
Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.

Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.
Introduction to Security Computer Networks Computer Networks Term B10.

Introduction to Security Computer Networks Computer Networks Term B10.
CHAPTER 4 Information Security. Announcements Project 2 – due today before midnight Tuesday Class Quiz 1 – Access Basics Questions/Comments.

CHAPTER 4 Information Security. Announcements Project 2 – due today before midnight Tuesday Class Quiz 1 – Access Basics Questions/Comments.
Lecture 10 Security and Control.

Lecture 10 Security and Control.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
McGraw-Hill © 2008 The McGraw-Hill Companies, Inc. All rights reserved. Chapter 8 Threats and Safeguards Chapter 8 PROTECTING PEOPLE AND INFORMATION Threats.

McGraw-Hill © 2008 The McGraw-Hill Companies, Inc. All rights reserved. Chapter 8 Threats and Safeguards Chapter 8 PROTECTING PEOPLE AND INFORMATION Threats.
Business Data Communications, Fourth Edition Chapter 10: Network Security.

Business Data Communications, Fourth Edition Chapter 10: Network Security.
Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services

Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services
Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.

Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.
Lesson 10 – SECURING YOUR NETWORK Security devices Internal security External security Viruses and other malicious software OVERVIEW.

Lesson 10 – SECURING YOUR NETWORK Security devices Internal security External security Viruses and other malicious software OVERVIEW.

Similar presentations

Ads by Google