Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security Overview  System protection requirements areas  Types of information protection  Information Architecture dimensions  Public Key Infrastructure.

Published byDennis Adams Modified over 9 years ago

Similar presentations

Presentation on theme: "Security Overview  System protection requirements areas  Types of information protection  Information Architecture dimensions  Public Key Infrastructure."— Presentation transcript:

1 Security Overview  System protection requirements areas  Types of information protection  Information Architecture dimensions  Public Key Infrastructure (PKI)

2 Information Protection Requirements  Confidentiality –Protect from unauthorized disclosure  Integrity –Protect from unauthorized modification  Availability –Reliable/timely access to required resources  Authenticity –Ability to determine authorized source  Non-repudiation –Non-forgeable proof of data originator’s identity and data receipt

3 Types of Information Protection  Encryption  Access control  User identification and authentication  Malicious content detection (viruses)  Audits, including real-time intrusion- detection  Physical Security

4 Information Architecture Dimensions  Information System –Unauthorized intrusion –Denial of service  Information Domain –Users must have freedom of movement within their authorized spheres  Information Content –In-transit –At rest

5 PKI Public Key Infrastructure  Generation of digital certificates –Electronic proof of identity  Issuance of Certificate Revocation Lists (CRLs)  Directories that serve certificates and CRLs

6 PKI Terms  Certificate Authority (CA): Trusted agent that signs and issues digital certificate –Sets rules for use, –Publishes CRLs, –Posts to directory server  Registration Authority (RA): Verifies person’s identity, passes on to CA

7 Defense Messaging System  PKI by itself is considered medium grade security assurance  DMS involves PKI with modifications and additions –DMS is considered “high grade” assurance  Includes detailed policies and custom software  http://www.disa.mil/D2/dms/ http://www.disa.mil/D2/dms/

8 Further reading  DON CIO Information Technology Standards Guidance (1999)– Chapter 3 –http://www.doncio.navy.mil/training/ools/its g/chapter3.html http://www.doncio.navy.mil/training/ools/its g/chapter3.htmlhttp://www.doncio.navy.mil/training/ools/its g/chapter3.html  DoD Computer Emergency Response Team (CERT) –http://199.211.123.12/ http://199.211.123.12/

Download ppt "Security Overview  System protection requirements areas  Types of information protection  Information Architecture dimensions  Public Key Infrastructure."

Similar presentations

Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.

Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.
Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.

Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.
Security by Design A Prequel for COMPSCI 702. Perspective “Any fool can know. The point is to understand.” - Albert Einstein “Sometimes it's not enough.

Security by Design A Prequel for COMPSCI 702. Perspective “Any fool can know. The point is to understand.” - Albert Einstein “Sometimes it's not enough.
Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
Cryptography Chapter 7 Part 4 Pages 833 to 874. PKI Public Key Infrastructure Framework for Public Key Cryptography and for Secret key exchange.

Cryptography Chapter 7 Part 4 Pages 833 to 874. PKI Public Key Infrastructure Framework for Public Key Cryptography and for Secret key exchange.
Grid Security Infrastructure Tutorial Von Welch Distributed Systems Laboratory U. Of Chicago and Argonne National Laboratory.

Grid Security Infrastructure Tutorial Von Welch Distributed Systems Laboratory U. Of Chicago and Argonne National Laboratory.
Report on Attribute Certificates By Ganesh Godavari.

Report on Attribute Certificates By Ganesh Godavari.
Identity Standards (Federal Bridge Certification Authority – Certificate Lifecycle) Oct, 17 2012.

Identity Standards (Federal Bridge Certification Authority – Certificate Lifecycle) Oct,
AAI and universities Roles and functions. The Smart Card Architect Objectives zBuild a secure Authentication and Authorization Infrastructure between.

AAI and universities Roles and functions. The Smart Card Architect Objectives zBuild a secure Authentication and Authorization Infrastructure between.
Public Key Infrastructure Ben Sangster February 23, 2006.

Public Key Infrastructure Ben Sangster February 23, 2006.
Public Key Infrastructure (PKI) Providing secure communications and authentication over an open network.

Public Key Infrastructure (PKI) Providing secure communications and authentication over an open network.
DESIGNING A PUBLIC KEY INFRASTRUCTURE

DESIGNING A PUBLIC KEY INFRASTRUCTURE
WAP Public Key Infrastructure CSCI 5939.02 – Independent Study Fall 2002 Jaleel Syed Presentation No 5.

WAP Public Key Infrastructure CSCI – Independent Study Fall 2002 Jaleel Syed Presentation No 5.
Figure 1: SDR / MExE Download Framework SDR Framework Network Server Gateway MExE Download + Verification Using MExE Repository (Java sandbox) MExE Applet.

Figure 1: SDR / MExE Download Framework SDR Framework Network Server Gateway MExE Download + Verification Using MExE Repository (Java sandbox) MExE Applet.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 9: Planning and Managing Certificate Services.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 9: Planning and Managing Certificate Services.
6/4/2015National Digital Certification Agency1 Security Engineering and PKI Applications in Modern Enterprises Mohamed HAMDI National.

6/4/2015National Digital Certification Agency1 Security Engineering and PKI Applications in Modern Enterprises Mohamed HAMDI National.
Lecture III : Communication Security, Services & Mechanisms Internet Security: Principles & Practices John K. Zao, PhD SMIEEE National Chiao-Tung University.

Lecture III : Communication Security, Services & Mechanisms Internet Security: Principles & Practices John K. Zao, PhD SMIEEE National Chiao-Tung University.
Polytechnic University of Tirana Faculty of Information Technology Computer Engineering Department Identification of on-line users and Digital Signature.

Polytechnic University of Tirana Faculty of Information Technology Computer Engineering Department Identification of on-line users and Digital Signature.
Stephen S. Yau CSE465 & CSE591, Fall 2006 1 Information Assurance (IA) & Security Overview Concepts Security principles & strategies Techniques Guidelines,

Stephen S. Yau CSE465 & CSE591, Fall Information Assurance (IA) & Security Overview Concepts Security principles & strategies Techniques Guidelines,
UNCLASS DoD Public Key Infrastructure LCDR Tom Winnenberg DISA API1 Chief Engineer 25 April 2002.

UNCLASS DoD Public Key Infrastructure LCDR Tom Winnenberg DISA API1 Chief Engineer 25 April 2002.

Similar presentations

Ads by Google