Presentation is loading. Please wait.

Presentation is loading. Please wait.

Network Security. Announcements Review Assignment - Assessment 3 (due Tuesday, before class) Assessment 3 – Next Thursday Reminders: Network Design Project.

Published byBrook Bennett Modified over 9 years ago

Similar presentations

Presentation on theme: "Network Security. Announcements Review Assignment - Assessment 3 (due Tuesday, before class) Assessment 3 – Next Thursday Reminders: Network Design Project."— Presentation transcript:

1 Network Security

2 Announcements Review Assignment - Assessment 3 (due Tuesday, before class) Assessment 3 – Next Thursday Reminders: Network Design Project No more than 2 per group Proposals due on the day of presentation Sign-ups shortly 2

3 Basics of Network Security Anti-virus / Anti-Spyware Access Controls Firewall Intrusion Protection/Detection Systems Identify fast spreading threats 3

4 Access Controls The four processes of access control

5 Firewalls

6 Example: Packet Filtering Firewalls

7 Intrusion Detection and Prevention Systems (IDPS)

8 Intrusion Detection and Prevention Systems (cont’d.)

9 Basic Network Facts Primary Core Located in Technology Support Center (TSC) Secondary Core located in CIS Disaster Recovery Facility Comprised of Cisco Systems 6500 series switches Distribution layer, Cisco Catalyst 4500 and 3750 series Total network is 311 switches 1600+ Controller based wireless Access Points All devices monitored 24/7 by Netcom staff. Dual connections to the internet via NCREN. Primary pipe is 10gig and backup is 1gig via NCREN BTOP

10 Network Security Cisco Firewall Service Module UNCW uses Cisco Systems ASA5585 devices Primary and Secondary for Redundancy ASA provides up to 20 individual contexts Allows any VLAN on the switch to be passed through to the device to operate as a firewall port and integrates firewall security inside the network infrastructure. ASA evolved from Cisco PIX technology and uses the same time- tested Cisco PIX Operating System, a secure, real-time operating system. Defines the security parameter and enables the enforcement of security policies through authentication, access control lists, and protocol inspection.

11 Network Security Intrusion Prevention Systems UNCW’s Intrusion Prevention Systems – ASA5585 IPS We currently use redundant pairs for continuity. The ASA network intrusion prevention and detection system (IDS/IPS) reputational based, combining the benefits of signature, protocol and anomaly-based inspection. Capable of performing real-time traffic analysis and packet logging on IP networks. Can be used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts. Has a real-time alerting capability for Network Communications Staff Rules are pushed to all IPS systems nightly.

12 12

13 Logical Network Core Traffic Flow

14 Total Network Layout

15 Network Authentication Cisco Identity Services Engine (ISE) is a security policy management and control platform. It automates and simplifies access control and security compliance for wired, wireless, and VPN connectivity. Cisco ISE is primarily used to provide secure access and guest access, support BYOD initiatives. ISE authenticates against Active Directory, meaning credentials are required to access UNCW’s network. ISE is deployed in all building and wireless networks as of fall 2014.

16 STUXNET

17 STUXNET – How it Worked

18 Stuxnet What was it? How did it spread and how far? What are the implications?

19 Stuxnet Precursors: What should we do now?

20 Target – What Happened?

21 Target – How did it happen?

22 Target – How could it have been stopped?

23 Target – Modern Day Hacking

24 Security Discussion TJ Maxx RSA Epsilon Gawker Wikileaks HB Gary 24

25 11.1 Corporate Security: TJ Maxx War-Driving to seek vulnerabilities in wireless networks Breaches took place all the way back to 2005 Albert Gonzalez was mastermind 2005 -2007 sold as many as 170 million ATM/Credit Card #s Typically used SQL injection to launch packet sniffing Now serving 20 years in a federal prison

26 11.1 Corporate Security: RSA Security companies are often the target of many hackers. Another case of phishing emails to get into the company Excel Spreadsheet had a Zero-day exploit Exploit took advantage of Adobe Flash allowing them to install a remote administration tool Used remote admin tool to get deeper information

27 11.1 Corporate Security: Epsilon Occurred earlier this year Primary purpose for stealing Phishing – maquerading as a trustworthy entity to gain access to information Form of Social Engineering Carried out by email spoofing

28 11.1 Passwords: Gawker Hack After hack, the Wall Street Journal Examine a number of passwords (188,279) and here are some of the most commonly found: password qwerty letmein trustno1 passw0rd Can anyone guess the most commonly used?

29 11.1 Corporate Security: Higher Ed Threats Mobile Devices Social Media Viruses (hilarious video attack through FB) Virtualization Embedded devices (number of devices connected to the network) Consumerization of IT (personal devices for organizational use)

30 11.1 Corporate Security: Wikileaks Exposed major security flaws in the US government Not standardized across agencies No user restrictions on copying data Minimal monitoring of users accessing sensitive data Recently, new measures are in place to alleviate problems. Bradley Manning trial begins December 16 th

31 11.1 Corporate Security: HB Gary Found a flaw in content management system Used an SQL Injection to gain access Numerous issues with the system allowed hackers to obtain two passwords: the CEO (Aaron Barr) and COO (Ted Vera) Key takeaway: passwords! Don’t use short, easily deciphered Use different passwords for different accounts

Download ppt "Network Security. Announcements Review Assignment - Assessment 3 (due Tuesday, before class) Assessment 3 – Next Thursday Reminders: Network Design Project."

Similar presentations

FIREWALLS Chapter 11.

FIREWALLS Chapter 11.
Personal Info 1 Prepared by: Mr. NHEAN Sophan  Presenter: Mr. NHEAN Sophan  Position: Desktop Support  Company: Khalibre Co,. Ltd 

Personal Info 1 Prepared by: Mr. NHEAN Sophan  Presenter: Mr. NHEAN Sophan  Position: Desktop Support  Company: Khalibre Co,. Ltd 
1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.

1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.
Wireless and Network Security Integration Defense by Hi-5 Marc Hogue Chris Jacobson Alexandra Korol Mark Ordonez Jinjia Xi.

Wireless and Network Security Integration Defense by Hi-5 Marc Hogue Chris Jacobson Alexandra Korol Mark Ordonez Jinjia Xi.
The Cable Guys Inc. Drew Leach Tom McLoughlin Philip Mauldin Bill Smith.

The Cable Guys Inc. Drew Leach Tom McLoughlin Philip Mauldin Bill Smith.
Chapter 4 McGraw-Hill/Irwin Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights reserved. Ethics and Information Security.

Chapter 4 McGraw-Hill/Irwin Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights reserved. Ethics and Information Security.
Chapter 14 Wireless Attacks, Intrusion Monitoring and Policy

Chapter 14 Wireless Attacks, Intrusion Monitoring and Policy
Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.

Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.
Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.

Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.
IS Network and Telecommunications Risks

IS Network and Telecommunications Risks
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
Trusted Internet Connections. Background Pervasive and sustained cyber attacks against the United States continue to pose a potentially devastating impact.

Trusted Internet Connections. Background Pervasive and sustained cyber attacks against the United States continue to pose a potentially devastating impact.
Lecture 11 Reliability and Security in IT infrastructure.

Lecture 11 Reliability and Security in IT infrastructure.
Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.

Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 1: Exploring the Network Introduction to Networks.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 1: Exploring the Network Introduction to Networks.
Firewalls: General Principles & Configuration (in Linux)

Firewalls: General Principles & Configuration (in Linux)
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 1: Exploring the Network Introduction to Networks.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 1: Exploring the Network Introduction to Networks.
CISCO CONFIDENTIAL – DO NOT DUPLICATE OR COPY Protecting the Business Network and Resources with CiscoWorks VMS Security Management Software Girish Patel,

CISCO CONFIDENTIAL – DO NOT DUPLICATE OR COPY Protecting the Business Network and Resources with CiscoWorks VMS Security Management Software Girish Patel,
© 2012 Cisco and/or its affiliates. All rights reserved. 1 CCNA Security 1.1 Instructional Resource Chapter 10 – Implementing the Cisco Adaptive Security.

© 2012 Cisco and/or its affiliates. All rights reserved. 1 CCNA Security 1.1 Instructional Resource Chapter 10 – Implementing the Cisco Adaptive Security.
Security Risk Management Marcus Murray, CISSP, MVP (Security) Senior Security Advisor, Truesec

Security Risk Management Marcus Murray, CISSP, MVP (Security) Senior Security Advisor, Truesec

Similar presentations

Ads by Google