Presentation is loading. Please wait.

Presentation is loading. Please wait.

Lecture 1 Page 1 CS 136, Fall 2010 Introduction CS 136 Computer Security Peter Reiher September 23, 2010.

Published byChristiana Kelley Modified over 9 years ago

Similar presentations

Presentation on theme: "Lecture 1 Page 1 CS 136, Fall 2010 Introduction CS 136 Computer Security Peter Reiher September 23, 2010."— Presentation transcript:

1 Lecture 1 Page 1 CS 136, Fall 2010 Introduction CS 136 Computer Security Peter Reiher September 23, 2010

2 Lecture 1 Page 2 CS 136, Fall 2010 Purpose of Class To introduce students to computer security issues To familiarize students with secure software development To learn to handle security in today’s installations and systems

3 Lecture 1 Page 3 CS 136, Fall 2010 Description of Class Topics to be covered Prerequisites Grading Reading materials Homework Office hours Web page

4 Lecture 1 Page 4 CS 136, Fall 2010 Topics to Be Covered Cryptography and authentication –Use, not design and analysis –Crypto classes cover more deeply Access control and security models Secure software design and programming Secure protocols Network security – threats and countermeasures Operating systems security Security analysis and forensics Malware, common attacks, and important defenses

5 Lecture 1 Page 5 CS 136, Fall 2010 Prerequisites CS111 (Operating Systems) CS118 (Computer Networks) Or equivalent classes elsewhere If you aren’t familiar with this material, you’ll be at a disadvantage –Talk to me if you want to take this class, anyway

6 Lecture 1 Page 6 CS 136, Fall 2010 Teaching Assistant Peter Peterson –pahp@cs.ucla.edu Weekly recitation sections Fridays at 8-10 –Royce 164 –Won’t cover new material –But likely to be helpful with problems with lectures Will also handle all homework issues Office hours: TBA

7 Lecture 1 Page 7 CS 136, Fall 2010 Grading Midterm – 25% Exercises – 35% Final – 40%

8 Lecture 1 Page 8 CS 136, Fall 2010 Class Format A lecture class Questions and discussions always welcomed

9 Lecture 1 Page 9 CS 136, Fall 2010 Reading Materials Textbook Non-required supplemental text Optional papers and web pages

10 Lecture 1 Page 10 CS 136, Fall 2010 Textbook Computer Security: Art and Science –By Matt Bishop Available in UCLA bookstore Bishop has a shorter version –That’s not the one we’re using First reading assignment: Chapter 1

11 Lecture 1 Page 11 CS 136, Fall 2010 Supplemental Text Secrets and Lies –By Bruce Schneier Not a textbook at all A philosophy of computer security Great for appreciating the field and problems Not great for depth of technical details Not required –No readings will be assigned from this book –But if you plan to work in this field, read it

12 Lecture 1 Page 12 CS 136, Fall 2010 Papers and Web Pages Non-required reading material Might or might not be assigned each week Usually made available electronically –Through class web page Generally relevant news stories or discussion of security topics

13 Lecture 1 Page 13 CS 136, Fall 2010 Exercises Five assignments Requiring practical work Performed on the Deter testbed –Accessible via the web from any connected location Individual, not group, assignments

14 Lecture 1 Page 14 CS 136, Fall 2010 Exercise Topics 1.Access control and permissions Week 3 2.Exploits Week 4 3.Analysis of attacks and forensics Week 6 4.Man in the middle attacks Week 7 5.Intrusion detection Week 8

15 Lecture 1 Page 15 CS 136, Fall 2010 More on Exercises Each exercise has an associated web page –With full instructions and pointers to necessary tools Due by midnight on Thursday of indicated week Class TA will provide advise and assistance on exercises

16 Lecture 1 Page 16 CS 136, Fall 2010 The Deter Testbed A set of machines devoted to security research and education Located at ISI and SRI Accessible remotely Special accounts set up for this class First discussion section will provide instructions on using Deter –With further assistance from TA

17 Lecture 1 Page 17 CS 136, Fall 2010 Exercise Quizzes You will take a graded quiz before and after each exercise –Multiple choice In the recitation section Graded, counting as part of the exercise grade Related to the subject of the exercise

18 Lecture 1 Page 18 CS 136, Fall 2010 Tests Midterm – Thursday, October 28 in class Final – Thursday, December 9, 3:00 – 6:00 PM Closed book/notes tests

19 Lecture 1 Page 19 CS 136, Fall 2010 Office Hours MW 2-3 Held in 3532F Boelter Hall Other times available by prior arrangement

20 Lecture 1 Page 20 CS 136, Fall 2010 Class Web Page http://www.lasr.cs.ucla.edu/classes/136_fall10 Slides for classes will be posted there –By 5 PM the previous afternoon –In 6-up PDF form or Powerpoint Readings will be posted there –With links to web pages

21 Lecture 1 Page 21 CS 136, Fall 2010 Participation in NSF Research Study I am participating in an NSF-sponsored study on teaching methods –For computer security classes We want to measure effectiveness of using exercises in classes We would like you to participate in that study

22 Lecture 1 Page 22 CS 136, Fall 2010 Format of Study There are quizzes associated with each exercise Designed to test understanding of important concepts To determine if the exercise has helped students understand the concepts better

23 Lecture 1 Page 23 CS 136, Fall 2010 Participation in Study The quizzes represent part of your grade But we will not use the quiz results in the study without your consent Participating in the study will not affect your grade in any way You can withdraw at any time Results will be anonymized –And used only for this study

24 Lecture 1 Page 24 CS 136, Fall 2010 Consent Forms If you are willing to participate, please sign one of the consent forms Return to Dr. Reiher or to Peter Peterson If you change your mind about participation later, just inform one of us

25 Lecture 1 Page 25 CS 136, Fall 2010 Introduction to Computer Security Why do we need computer security? What are our goals and what threatens them?

26 Lecture 1 Page 26 CS 136, Fall 2010 Why Is Security Necessary? Because people aren’t always nice Because a lot of money is handled by computers Because a lot of important information is handled by computers Because our society is increasingly dependent on correct operation of computers

27 Lecture 1 Page 27 CS 136, Fall 2010 History of the Security Problem In the beginning, there was no computer security problem Later, there was a problem, but nobody cared Now, there’s a big problem and people care –Only a matter of time before a real disaster –At least one company went out of business due to a DDoS attack –Identity theft and phishing claim vast number of victims –A cyberattack released a large quantity of sewage in Australia –Recent video showed cyberattack causing an electric transformer to fail –Increased industry spending on cybersecurity

28 Lecture 1 Page 28 CS 136, Fall 2010 Some Examples of Large Scale Security Problems The Internet Worm Modern malicious code attacks Distributed denial of service attacks Vulnerabilities in commonly used systems

29 Lecture 1 Page 29 CS 136, Fall 2010 The Internet Worm Launched in 1988 A program that spread over the Internet to many sites Around 6,000 sites were shut down to get rid of it And (apparently) its damage was largely unintentional The holes it used have been closed –But the basic idea still works

30 Lecture 1 Page 30 CS 136, Fall 2010 Malicious Code Attacks Multiple new viruses, worms, botnets, and Trojan horses appear every week Conficker botnet still infects around 4.5 million computers IM attacks becoming increasingly popular –And cell phone attacks appearing

31 Lecture 1 Page 31 CS 136, Fall 2010 Distributed Denial of Service Attacks Use large number of compromised machines to attack one target –By exploiting vulnerabilities –Or just generating lots of traffic Very common today Attacks are increasing in sophistication In general form, an extremely hard problem

32 Lecture 1 Page 32 CS 136, Fall 2010 The (first) DNS DDoS Attack Attack on the 13 root servers of the DNS system Ping flood on all servers Interrupted service from 9 of the 13 But did not interrupt DNS service in any noticeable way A smaller attack on DNS a few years later –Even less successful

33 Lecture 1 Page 33 CS 136, Fall 2010 Vulnerabilities in Commonly Used Systems 802.11 WEP is fatally flawed –As is WPA Critical vulnerabilities announced in Windows in mid-September (and Mac OS, in June) Many popular applications have vulnerabilities –Recent vulnerabilities in Apple iPhone, Adobe Reader, Firefox, Chrome, etc. Many security systems have vulnerabilities –Symantec Anti-Virus and F5 Firepass VPN are recent examples

34 Lecture 1 Page 34 CS 136, Fall 2010 Electronic Commerce Attacks As Willie Sutton said when asked why he robbed banks, –“Because that’s where the money is” Increasingly, the money is on the Internet Criminals have followed Common problems: –Credit card number theft (often via phishing) –Identity theft (phishing, again, is a common method) –Loss of valuable data from laptop theft –Manipulation of e-commerce sites –Extortion via DDoS attacks or threatened release of confidential data

35 Lecture 1 Page 35 CS 136, Fall 2010 Another Form of Cyberattack Click fraud Based on popular pay-per-click model of Internet advertising Two common forms: –Rivals make you pay for “false clicks” –Profit sharers “steal” or generator bogus clicks to drive up profits

36 Lecture 1 Page 36 CS 136, Fall 2010 Some Recent Statistics From Computer Security Institute Computer Crime and Security Survey, 2008 1 64% of respondents reported malware incidents in last year Total estimated losses by respondents: $5 million –But 3/4s wouldn’t answer that question –Financial fraud, wireless exploits, and loss of personal information were big causes of loss 2009 Symantec report says 98% of IT managers report loss from cyber attacks 1 http://www.gocsi.com/forms/csi_survey.jhtml

37 Lecture 1 Page 37 CS 136, Fall 2010 How Much Attack Activity Is There? Blackhole monitoring on a small (8 node) network 1 Detected 640 billion attack attempts over four month period At peak of Nimda worm’s attack, 2000 worm probes per second 1 Unpublished research numbers from Farnham Jahanian, U. of Michigan, DARPA FTN PI meeting, January 2002.

38 Lecture 1 Page 38 CS 136, Fall 2010 Cyberwarfare Nation states have developed capabilities to use computer networks for such purposes DDoS attacks on Estonia and Georgia –Probably just hackers Continuous cyberspying by many nations Concerns about national vulnerabilities of critical infrastructure –The smart grid will only increase the danger

39 Lecture 1 Page 39 CS 136, Fall 2010 Something Else to Worry About Are some of the attempts to deal with cybersecurity damaging liberty? Does data mining for terrorists and criminals pose a threat to ordinary people? Can I trust Facebook/Google/MySpace/Twitter/whoeve r with my private information? Are we in danger of losing all privacy?

40 Lecture 1 Page 40 CS 136, Fall 2010 But Do We Really Need Computer Security? The preceding examples suggest we must have it Yet many computers are highly insecure Why? Ultimately, because many people don’t think they need security –Or don’t understand what they need to do to get it

41 Lecture 1 Page 41 CS 136, Fall 2010 Why Aren’t All Computer Systems Secure? Partly due to hard technical problems But also due to cost/benefit issues Security costs Security usually only pays off when there’s trouble Many users perceive no personal threat to themselves –“I don’t have anything valuable on my computer” Ignorance also plays a role –Increasing numbers of users are unsophisticated

42 Lecture 1 Page 42 CS 136, Fall 2010 Computer Security and History Much of our computer infrastructure is constrained by legacy issues –Core Internet design –Popular programming languages –Commercial operating systems All developed before security was a concern –Generally with little or no attention to security

43 Lecture 1 Page 43 CS 136, Fall 2010 Retrofitting Security Since security not built into these systems, we try to add it later Retrofitting security is known to be a bad idea Much easier to design in from beginning Patching security problems has a pretty dismal history

44 Lecture 1 Page 44 CS 136, Fall 2010 Problems With Patching Usually done under pressure –So generally quick and dirty Tends to deal with obvious and immediate problem –Not with underlying cause Hard (sometimes impossible) to get patch to everyone Since it’s not organic security, patches sometimes introduce new security problems

45 Lecture 1 Page 45 CS 136, Fall 2010 Speed Is Increasingly Killing Us Attacks are developed more quickly –Often easier to adapt attack than defense to counter it Malware spreads faster –Slammer infected 75,000 nodes in 30 minutes More attackers generating more attacks –US DoD computers targeted at least 43,000 times in first half of 2009

46 Lecture 1 Page 46 CS 136, Fall 2010 What Are Our Security Goals? Confidentiality –If it’s supposed to be a secret, be careful who hears it Integrity –Don’t let someone change something they shouldn’t Availability –Don’t let someone stop others from using services Exclusivity –Don’t let someone use something he shouldn’t

47 Lecture 1 Page 47 CS 136, Fall 2010 What Are the Threats? Theft Privacy Destruction Interruption or interference with computer-controlled services

48 Lecture 1 Page 48 CS 136, Fall 2010 Thinking About Threats Threats are viewed as types of attacks on normal services So, what is normal service? Information Source Information Destination

49 Lecture 1 Page 49 CS 136, Fall 2010 Classification of Threats Secrecy Integrity Availability Exclusivity

50 Lecture 1 Page 50 CS 136, Fall 2010 Interruption Information Source Information Destination The information never reaches the destination

51 Lecture 1 Page 51 CS 136, Fall 2010 Interruption Threats Denial of service Prevents source from sending information to receiver Or receiver from sending requests to source A threat to availability

52 Lecture 1 Page 52 CS 136, Fall 2010 How Do Interruption Threats Occur? Destruction of hardware, software, or data Interference with a communications channel Overloading a shared resource

53 Lecture 1 Page 53 CS 136, Fall 2010 Interception Information Source Information Destination Unauthorized Third Party An unintended party receives the information

54 Lecture 1 Page 54 CS 136, Fall 2010 Interception Threats Data or services are provided to an unauthorized party Either in conjunction with or independent of a legitimate request A threat to secrecy Also a threat to exclusivity

55 Lecture 1 Page 55 CS 136, Fall 2010 How Do Interception Threats Occur? Eavesdropping Masquerading Break-ins Illicit data copying

56 Lecture 1 Page 56 CS 136, Fall 2010 Modification Information Source Information Destination Unauthorized Third Party The destination receives different information than what was originally sent

57 Lecture 1 Page 57 CS 136, Fall 2010 Modification Threats Unauthorized parties modify the data Either on the way to the users Or permanently at the servers A threat to integrity

58 Lecture 1 Page 58 CS 136, Fall 2010 How Do Modification Threats Occur? Interception of data requests/replies Masquerading Break-ins Flaws in applications allowing unintended modifications Other forms of illicit access to servers and their services

59 Lecture 1 Page 59 CS 136, Fall 2010 Fabrication Information Source Information Destination Unauthorized Third Party The destination receives information the source never sent

60 Lecture 1 Page 60 CS 136, Fall 2010 Fabrication Threats Unauthorized parties insert counterfeit objects into the system Causing improper changes in data Or improper use of system resources Or other bad behavior A threat to integrity –And possibly exclusivity

61 Lecture 1 Page 61 CS 136, Fall 2010 How Do Fabrication Threats Occur? Masquerading Bypassing protection mechanisms Duplication of legitimate requests/responses

62 Lecture 1 Page 62 CS 136, Fall 2010 Destruction Threats Information Source Information Destination ? The information is no longer accessible to a legitimate user `

63 Lecture 1 Page 63 CS 136, Fall 2010 Destruction Threats Destroy data, hardware, messages, or software Often easier to destroy something than usefully modify it Often (but not always) requires physical access –As counterexample, consider demo of destroying power generator 1 1 http://www.cnn.com/2007/US/09/26/power.at.risk/index.html?iref=newssearch#cnnSTCVideo

64 Lecture 1 Page 64 CS 136, Fall 2010 Active Threats Vs. Passive Threats Passive threats are forms of eavesdropping –No modification, injections of requests, etc. Active threats are more aggressive Passive threats are mostly to secrecy Active threats are to all properties

65 Lecture 1 Page 65 CS 136, Fall 2010 Social Engineering and Security The best computer security practices are easily subverted by bad human practices –E.g., giving passwords out over the phone to anyone who asks –Or responding to bogus email with your credit card number Social engineering attacks tend to be cheap, easy, effective So all our work may be for naught

66 Lecture 1 Page 66 CS 136, Fall 2010 Social Engineering Example Phishing Attackers send plausible email requesting you to visit a web site To “update” your information Typically a bank, popular web site, etc. The attacker controls the site and uses it to obtain your credit card, SSN, etc. Likelihood of success based on attacker’s ability to convince the victim that he’s real –And that the victim had better go to the site or suffer dire consequences

67 Lecture 1 Page 67 CS 136, Fall 2010 How Popular is Phishing? Anti-Phishing Work Group reported 46,552 unique phishing sites in October 2009 alone 1 –And they probably didn’t find all of them Based on gullibility of humans more than computer vulnerability But can computer scientists do something to help? 1 http://www.antiphishing.org/

68 Lecture 1 Page 68 CS 136, Fall 2010 Why Isn’t Security Easy? Security is different than most other problems in CS The “universe” we’re working in is much more hostile Human opponents seek to outwit us Fundamentally, we want to share secrets in a controlled way –A classically hard problem in human relations

69 Lecture 1 Page 69 CS 136, Fall 2010 What Makes Security Hard? You have to get everything right –Any mistake is an opportunity for your opponent When was the last time you saw a computer system that did everything right? So, must we wait for bug-free software to achieve security?

70 Lecture 1 Page 70 CS 136, Fall 2010 How Common Are Software Security Flaws? SANS publishes weekly compendium of newly discovered security flaws 75 flaws listed in recent SANS Risks digest –Common to see 100+ in a week So 4000-5000 security flaws found per year –Only counting popular software –Only flaws with real security implications –And only those that were publicized

71 Lecture 1 Page 71 CS 136, Fall 2010 Security Is Actually Even Harder The computer itself isn’t the only point of vulnerability If the computer security is good enough, the foe will attack: –The users –The programmers –The system administrators –Or something you never thought of

72 Lecture 1 Page 72 CS 136, Fall 2010 A Further Problem With Security Security costs –Computing resources –People’s time and attention If people use them badly, most security measures won’t do the job Security must work 100% effectively With 0% overhead or inconvenience or learning

73 Lecture 1 Page 73 CS 136, Fall 2010 Another Problem Most computer practitioners know little or nothing about security Few programmers understand secure programming practices Few sysadmins know much about secure system configuration Typical users know even less

74 Lecture 1 Page 74 CS 136, Fall 2010 The Principle of Easiest Penetration An intruder must be expected to use any available means of penetration. This is not necessarily the most obvious means, nor is it necessarily the one against which the most solid defense has been installed. Put another way, –The smart opponent attacks you where you’re weak, not where you’re strong –And most opponents aren’t stupid

75 Lecture 1 Page 75 CS 136, Fall 2010 But Sometimes Security Isn’t That Hard The Principle of Adequate Protection: –Computer items must be protected only until they lose their value. They must be protected to a degree consistent with their value. So worthless things need little protection And things with timely value need only be protected for a while

76 Lecture 1 Page 76 CS 136, Fall 2010 Conclusion Security is important Security is hard A security expert’s work is never done –At least, not for very long Security is full-contact computer science –Probably the most adversarial area in CS Intensely interesting, intensely difficult, and “the problem” will never be solved

Download ppt "Lecture 1 Page 1 CS 136, Fall 2010 Introduction CS 136 Computer Security Peter Reiher September 23, 2010."

Similar presentations

Providing protection from potential security threats that exist for any internet-connected computer is termed e- security. It is important to be able to.

Providing protection from potential security threats that exist for any internet-connected computer is termed e- security. It is important to be able to.
How to protect yourself, your computer, and others on the internet

How to protect yourself, your computer, and others on the internet
Chapter 1  Introduction 1 Chapter 1: Introduction.

Chapter 1  Introduction 1 Chapter 1: Introduction.
Security and Trust in E- Commerce. The E-commerce Security Environment: The Scope of the Problem  Overall size of cybercrime unclear; amount of losses.

Security and Trust in E- Commerce. The E-commerce Security Environment: The Scope of the Problem  Overall size of cybercrime unclear; amount of losses.
Breaking Trust On The Internet

Breaking Trust On The Internet
Is There a Security Problem in Computing? Network Security / G. Steffen1.

Is There a Security Problem in Computing? Network Security / G. Steffen1.
The development of Internet A cow was lost in Jan 14th 2003. If you know where it is, please contact with me. My QQ number is 87881405. QQ is one of the.

The development of Internet A cow was lost in Jan 14th If you know where it is, please contact with me. My QQ number is QQ is one of the.
CHAPTER 2 KNOW YOUR VILLAINS. Who writes it: Malware writers vary in age, income level, location, social/peer interaction, education level, likes, dislikes.

CHAPTER 2 KNOW YOUR VILLAINS. Who writes it: Malware writers vary in age, income level, location, social/peer interaction, education level, likes, dislikes.
EEC 688/788 Secure and Dependable Computing Lecture 2 Wenbing Zhao Department of Electrical and Computer Engineering Cleveland State University

EEC 688/788 Secure and Dependable Computing Lecture 2 Wenbing Zhao Department of Electrical and Computer Engineering Cleveland State University
The Ecommerce Security Environment For most law-abiding citizens, the internet holds the promise of a global marketplace, providing access to people and.

The Ecommerce Security Environment For most law-abiding citizens, the internet holds the promise of a global marketplace, providing access to people and.
IT 221: Introduction to Information Security Principles Lecture 1: Introduction to IT Security For Educational Purposes Only Revised: August 28, 2002.

IT 221: Introduction to Information Security Principles Lecture 1: Introduction to IT Security For Educational Purposes Only Revised: August 28, 2002.
Lecture 2 Page 1 CS 236, Spring 2008 Security Principles and Policies CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Spring, 2008.

Lecture 2 Page 1 CS 236, Spring 2008 Security Principles and Policies CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Spring, 2008.
1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.

1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.
Lecture 1 Page 1 CS 236, Spring 2008 What Are Our Security Goals? Confidentiality –If it’s supposed to be a secret, be careful who hears it Integrity –Don’t.

Lecture 1 Page 1 CS 236, Spring 2008 What Are Our Security Goals? Confidentiality –If it’s supposed to be a secret, be careful who hears it Integrity –Don’t.
Lecture 1 Page 1 CS 236, Spring 2008 Introduction to Computer Security Why do we need computer security? What are our goals and what threatens them?

Lecture 1 Page 1 CS 236, Spring 2008 Introduction to Computer Security Why do we need computer security? What are our goals and what threatens them?
CSCD 434 Spring 2011 Lecture 1 Course Overview. Contact Information Instructor Carol Taylor 315 CEB Phone: 509-359-6908 Office.

CSCD 434 Spring 2011 Lecture 1 Course Overview. Contact Information Instructor Carol Taylor 315 CEB Phone: Office.
Discovering Computers 2010

Discovering Computers 2010
Lecture 11 Electronic Business (MGT-485). Recap – Lecture 10 Transaction costs Network Externalities Switching costs Critical mass of customers Pricing.

Lecture 11 Electronic Business (MGT-485). Recap – Lecture 10 Transaction costs Network Externalities Switching costs Critical mass of customers Pricing.
CS101 Lecture 14 Security. Network = Security Risks The majority of the bad things that can be done deliberately to you or your computer happen when you.

CS101 Lecture 14 Security. Network = Security Risks The majority of the bad things that can be done deliberately to you or your computer happen when you.
PART THREE E-commerce in Action Norton University E-commerce in Action.

PART THREE E-commerce in Action Norton University E-commerce in Action.

Similar presentations

Ads by Google