Presentation is loading. Please wait.

Presentation is loading. Please wait.

Network and Internet Security Prepared by Dr. Lamiaa Elshenawy

Published byLewis Hart Modified over 9 years ago

Similar presentations

Presentation on theme: "Network and Internet Security Prepared by Dr. Lamiaa Elshenawy"— Presentation transcript:

1 Network and Internet Security Prepared by Dr. Lamiaa Elshenawy
Computer Security Lecture 8 Ch.16 Network and Internet Security Prepared by Dr. Lamiaa Elshenawy

2 Outline Transport-level security Web Security Considerations
Secure Socket Layer and Transport Layer Security Transport Layer Security (TLS) HTTPS Secure Shell (SSH)

3 Transport-level security Key Points
Internet security : is a branch of computer security browser security Secure Socket Layer (SSL) security services between TCP (Transmission Control Protocol) and applications use TCP Transport Layer Service (TLS) SSL/TLS confidentiality & data integrity symmetric encryption & message authentication code (MAC) HTTPS (HTTP over SSL) combination of HTTP and SSL secure communication between Web browser & web server involves provides by provides by Refers to implement

4 Transport-level security Web Security Considerations
Internet is two-way Web is vulnerable to attacks Business transactions Reputations damaged and money lost Web servers subverted Web software hide many potential security flaws vulnerable to a variety of security attacks

5 Transport-level security Web Security Considerations
Web server launching pad attacker access data systems connected to server at local site Untrained (in security matters) users are common clients Web-based services not have tools or knowledge to effective countermeasures

6 Transport-level security Threats on Web

7 Transport-level security Secure Socket Layer and Transport Layer Security
SSL provides basic security services to various higher layer protocols (Hypertext Transfer Protocol (HTTP)), which provides the transfer service for Web client/server interaction SSL architecture

8 Transport-level security Handshake Protocol
Most complex part of SSL Used before any application data is transmitted Allows the server and client to authenticate each other Negotiate an encryption & MAC algorithm & cryptographic keys to protect data Handshake Protocol

9 Transport-level security Handshake Protocol
Type (1 byte) Indicates one of 10 messages Length (3 bytes) length of the message in bytes Content (≥ 0 bytes) parameters associated with this message

10 Transport-level security Handshake Protocol

11 Transport-level security Change Cipher Spec Protocol
Least complex part of SSL Consists of a single message (single byte with the value 1) Updates cipher suite to be used on this connection Change Cipher Spec Protocol

12 Transport-level security Alert Protocol
Convey SSL-related alerts to the peer entity Alert messages are compressed and encrypted Each message in this protocol consists of two bytes 1 Unexpected_ message warning fatal An appropriate message was received 2

13 Transport-level security SSL Record Protocol
SSL Record Protocol provides two security services Confidentiality: Handshake Protocol defines a shared secret key that is used for conventional encryption Message Integrity: Handshake Protocol defines a shared secret key that is used to form a message authentication code (MAC)

14 Transport-level security SSL Record Protocol
SSL Record protocol Operation

15 Transport-level security SSL Record Protocol
Content Type (8 bits): Higher-layer protocol used to process the enclosed fragment. Major Version (8 bits): Indicates major version of SSL in use (SSLv3--- value= 3) Minor Version (8 bits): Indicates minor version of SSL in use (SSLv3--- value= 0) Compressed Length (16 bits): The length of the plaintext fragment (Max= )

16 Transport-level security: HTTPS
What is HTTPS? HTTPS built into all modern Web browsers URL (uniform resource locator) port 443 port 80

17 Transport-level security: SSH
What is SSH? Secure Shell (SSH) is a protocol for secure network communications designed to be simple and inexpensive What are versions of SSH? SSH /file transfer SSH fixes security flaws of SSH1

18 Transport-level security: SSH
SSH Protocol Stack

19 Thank you for your attention

Download ppt "Network and Internet Security Prepared by Dr. Lamiaa Elshenawy"

Similar presentations

Cryptography and Network Security Chapter 16

Cryptography and Network Security Chapter 16
Web security: SSL and TLS

Web security: SSL and TLS
Lecture 6: Web security: SSL

Lecture 6: Web security: SSL
Cryptography and Network Security

Cryptography and Network Security
Secure Socket Layer.

Secure Socket Layer.
SSL CS772 Fall 2011. Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.

SSL CS772 Fall Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.
Socket Layer Security. In this Presentation: need for web security SSL/TLS transport layer security protocols HTTPS secure shell (SSH)

Socket Layer Security. In this Presentation: need for web security SSL/TLS transport layer security protocols HTTPS secure shell (SSH)
7-1 Chapter 7 – Web Security Use your mentality Wake up to reality —From the song, I've Got You under My Skin“ by Cole Porter.

7-1 Chapter 7 – Web Security Use your mentality Wake up to reality —From the song, "I've Got You under My Skin“ by Cole Porter.
An Introduction to Secure Sockets Layer (SSL). Overview Types of encryption SSL History Design Goals Protocol Problems Competing Technologies.

An Introduction to Secure Sockets Layer (SSL). Overview Types of encryption SSL History Design Goals Protocol Problems Competing Technologies.
Chapter 7 Web Security MSc. NGUYEN CAO DAT Dr. TRAN VAN HOAI.

Chapter 7 Web Security MSc. NGUYEN CAO DAT Dr. TRAN VAN HOAI.
Transport Layer Security (TLS) Protocol Introduction to networks and communications(CS555) Prof : Dr Kurt maly Student:Abhinav y.

Transport Layer Security (TLS) Protocol Introduction to networks and communications(CS555) Prof : Dr Kurt maly Student:Abhinav y.
Network Security Essentials Fifth Edition by William Stallings Fifth Edition by William Stallings.

Network Security Essentials Fifth Edition by William Stallings Fifth Edition by William Stallings.
BASIC CRYPTOGRAPHY CONCEPT. Secure Socket Layer (SSL)  SSL was first used by Netscape.  To ensure security of data sent through HTTP, LDAP or POP3.

BASIC CRYPTOGRAPHY CONCEPT. Secure Socket Layer (SSL)  SSL was first used by Netscape.  To ensure security of data sent through HTTP, LDAP or POP3.
Cryptography and Network Security

Cryptography and Network Security
Lecture 22 Internet Security Protocols and Standards

Lecture 22 Internet Security Protocols and Standards
Cryptography and Network Security Chapter 17

Cryptography and Network Security Chapter 17
CSCE 790: Computer Network Security Chin-Tser Huang University of South Carolina.

CSCE 790: Computer Network Security Chin-Tser Huang University of South Carolina.
Lecture 22 Internet Security Protocols and Standards modified from slides of Lawrie Brown.

Lecture 22 Internet Security Protocols and Standards modified from slides of Lawrie Brown.
Chapter 8 Web Security.

Chapter 8 Web Security.
Announcement Final exam: Wed, June 9, 9:30-11:18 Scope: materials after RSA (but you need to know RSA) Open books, open notes. Calculators allowed. 1.

Announcement Final exam: Wed, June 9, 9:30-11:18 Scope: materials after RSA (but you need to know RSA) Open books, open notes. Calculators allowed. 1.

Similar presentations

Ads by Google