Presentation is loading. Please wait.

Presentation is loading. Please wait.

Sensorweb Research Laboratory Georgia State University Fundamentals of Computer Security Song Tan Georgia State University.

Published byLisa Patience Richard Modified over 8 years ago

Similar presentations

Presentation on theme: "Sensorweb Research Laboratory Georgia State University Fundamentals of Computer Security Song Tan Georgia State University."— Presentation transcript:

1 Sensorweb Research Laboratory Georgia State University Fundamentals of Computer Security Song Tan Georgia State University

2 Sensorweb Research Laboratory Georgia State University -2- Outline Concepts about computer security in distributed system. Recent studies about computer security in distributed system. Future vision about the potential research topics.

3 Sensorweb Research Laboratory Georgia State University -3- Concepts

4 Sensorweb Research Laboratory Georgia State University -4-Secure? A secure computer and communication system is a robust system that exhibits the characteristics of secrecy, integrity, availability, reliability and safety in the operation of the system. (Randy Chow,1997)

5 Sensorweb Research Laboratory Georgia State University -5- Secrecy: protection from unauthorized disclosure of system objects. Integrity: only authorized users can modify system objects. Availability: authorized user can have access to the corresponding authorized objects. Reliability and safety: fault-tolerant features.

6 Sensorweb Research Laboratory Georgia State University -6- Risks and Threats? In a distributed system: Open architecture and interactions across a wide range of autonomous and heterogeneous systems over open communication links. Issue: access control and user authentication. Message passing through a communication network. Issue: protection against spoofing and forging.

7 Sensorweb Research Laboratory Georgia State University -7- Risks and threats? Transparency: uniform view of a system that has transparent distribution of computation and resources. Interoperability: the ability to have effective information exchange between hosts and between processes. Issues: Interdomain authentication, secure message transfer between domains and interdomain access control.

8 Sensorweb Research Laboratory Georgia State University -8- Subjects: active entities that access objects. Objects: passive entities whose security attributes must be protected. Access control policy: a security policy that describes how objects are to be accessed by subjects. Flow control policy: a security policy that describes how the information flow is to be regulated.

9 Sensorweb Research Laboratory Georgia State University -9- Security threats and protection approaches

10 Sensorweb Research Laboratory Georgia State University -10- Distributed security architecture

11 Sensorweb Research Laboratory Georgia State University -11- Recent Studies

12 Sensorweb Research Laboratory Georgia State University -12- Segregate Applications at System Level to Eliminate Security Problems: resource separating and grouping mechanism that physically and logically separates system resources by adaptable scale to eliminate security problems and reduce the overall cost.

13 Sensorweb Research Laboratory Georgia State University -13- Security in a PKI-based networking environment: a multi-agent architecture for distributed security management system & control: An approach to design a multi- agent systemmanaging a security management system corporate memory in the form of adistributed semantic Web and describes the resulting architecture.

14 Sensorweb Research Laboratory Georgia State University -14- Future vision

15 Sensorweb Research Laboratory Georgia State University -15- Cloud Security Issues Assurance in service level agreements (SLA) about the users’ private data. The security of corporate data in Software as a service (SaaS), Platform as a service (PaaS), and Infrastructure as a service (IaaS) environment. VM level attacks: VM(Virtual Machine) technology used by cloud vendors are a potential problem in multi-tenant architecture. Enterprises have to merge cloud security policies with their own security metrics and policies.

16 Sensorweb Research Laboratory Georgia State University -16- References R.Chow, T.Johnson. Distributed Operating system & Algorithm,1997. CJ.Jone, “Segregate Applications at System Level to Eliminate Security Problems”, Cluster Computing and the Grid Workshops, 2006. Sixth IEEE International Symposium, 2006. Kandukuri, B.R.; Paturi, V.R.; Rakshit, A., Adv. Software Technol.” Cloud Security Issues”, Services Computing, 2009. SCC '09. G.A.S. Torrellas ; D.V. Cruz, Security in a PKI-based networking environment: a multi-agent architecture for distributed security management system & control, Computational Cybernetics, 2004. ICCC 2004. Farzad Sabahi,” Virtualization-Level Security in Cloud Computing”, Communication Software and Networks (ICCSN), 2011

17 Sensorweb Research Laboratory Georgia State University -17- Thank You

Download ppt "Sensorweb Research Laboratory Georgia State University Fundamentals of Computer Security Song Tan Georgia State University."

Similar presentations

Trust Management of Services in Cloud Environments:

Trust Management of Services in Cloud Environments:
Distributed Systems Major Design Issues Presented by: Christopher Hector CS8320 – Advanced Operating Systems Spring 2007 – Section 2.6 Presentation Dr.

Distributed Systems Major Design Issues Presented by: Christopher Hector CS8320 – Advanced Operating Systems Spring 2007 – Section 2.6 Presentation Dr.
Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.

Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.
1 Computer Security Instructor: Dr. Bo Sun. 2 Course Objectives Understand basic issues, concepts, principles, and mechanisms in computer network security.

1 Computer Security Instructor: Dr. Bo Sun. 2 Course Objectives Understand basic issues, concepts, principles, and mechanisms in computer network security.
CLOUD COMPUTING AN OVERVIEW & QUALITY OF SERVICE Hamzeh Khazaei University of Manitoba Department of Computer Science Jan 28, 2010.

CLOUD COMPUTING AN OVERVIEW & QUALITY OF SERVICE Hamzeh Khazaei University of Manitoba Department of Computer Science Jan 28, 2010.
Lecture 1: Overview modified from slides of Lawrie Brown.

Lecture 1: Overview modified from slides of Lawrie Brown.
8.2 Discretionary Access Control Models Weiling Li.

8.2 Discretionary Access Control Models Weiling Li.
Fundamentals of Computer Security Geetika Sharma Fall 2008.

Fundamentals of Computer Security Geetika Sharma Fall 2008.
Internet Protocol Security An Overview of IPSec. Outline:  What Security Problem?  Understanding TCP/IP.  Security at What Level?  IP Security. 

Internet Protocol Security An Overview of IPSec. Outline:  What Security Problem?  Understanding TCP/IP.  Security at What Level?  IP Security. 
Chapter 1 – Introduction

Chapter 1 – Introduction
1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.

1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.
Introduction to Distributed Systems

Introduction to Distributed Systems
Troy Hutchison Service Oriented Architecture (SOA) Security.

Troy Hutchison Service Oriented Architecture (SOA) Security.
Revision Week 13 – Lecture 2. The exam 5 questions Multiple parts Read the question carefully Look at the marks as an indication of how much thought and.

Revision Week 13 – Lecture 2. The exam 5 questions Multiple parts Read the question carefully Look at the marks as an indication of how much thought and.
Applied Cryptography for Network Security

Applied Cryptography for Network Security
Cryptography and Network Security Chapter 1. Chapter 1 – Introduction The art of war teaches us to rely not on the likelihood of the enemy's not coming,

Cryptography and Network Security Chapter 1. Chapter 1 – Introduction The art of war teaches us to rely not on the likelihood of the enemy's not coming,
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
Cryptography and Network Security Chapter 1 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Chapter 1 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.
Distributed System Concepts and Architectures Summary By Srujana Gorge.

Distributed System Concepts and Architectures Summary By Srujana Gorge.
Distributed Computer Security 8.2 Discretionary Access Control Models - Liang Zhao.

Distributed Computer Security 8.2 Discretionary Access Control Models - Liang Zhao.

Similar presentations

Ads by Google