Presentation is loading. Please wait.

Presentation is loading. Please wait.

Prof. I. J. Chung Dept. of Computer & Information Science, Korea Univ. 컴퓨터와 인터넷 윤리 Professor I. J. Chung.

Published byAustin Malcolm Bennett Modified over 7 years ago

Similar presentations

Presentation on theme: "Prof. I. J. Chung Dept. of Computer & Information Science, Korea Univ. 컴퓨터와 인터넷 윤리 Professor I. J. Chung."— Presentation transcript:

1 2016-11-201 Prof. I. J. Chung Dept. of Computer & Information Science, Korea Univ. 컴퓨터와 인터넷 윤리 Professor I. J. Chung

2 2016-11-202 Prof. I. J. Chung Dept. of Computer & Information Science, Korea Univ. Breaches and hacking on computer system Prepare for the worst case Investigate and recognize the illegal access and thus prevents the harmful breaches and hacking Develop well in advance of any incident Ethical decision with respect to computer security includes decision which information system and data most need protection Confine the expected damages as little as possible Restore data and computer systems to normal state

3 2016-11-203 Prof. I. J. Chung Dept. of Computer & Information Science, Korea Univ. Breaches and hacking on computer system Provide the formal incident report for future Keep track and record all relevant data and information about security incidents such as: System events and login Specific and particular actions taken Outside communications Do these activities for future prosecution and help for incident eradication and follow-up

4 2016-11-204 Prof. I. J. Chung Dept. of Computer & Information Science, Korea Univ. Eradication effort Record all possible illegal criminal evidences from the system Create disk image and backup all compromised systems for future and as evidence Restore the backup system after the malfunction is eradicated Prevent the malfunctions or hacking from occurring again

5 2016-11-205 Prof. I. J. Chung Dept. of Computer & Information Science, Korea Univ. Intrusion Detection Intrusion detection algorithms with AI technologies BBID (Behavior-Based Intrusion Detection) KBID (Knowledge-Based Intrusion Detection) BBID (Behavior-Based Intrusion Detection) Watch the activities so far and recognize something abnormal if there exists some deviation Establish the model normal behavior of a system and users from reference sources e.g. access traffic at odd hours or users who have not used before KBID (Knowledge-Based Intrusion Detection) Apply the useful information such as specific attacks and system weak points Watch any attempts to exploit these system weak points e.g. repeated failed login, download a file or program to computer system

6 2016-11-206 Prof. I. J. Chung Dept. of Computer & Information Science, Korea Univ. Intrusion Prevention Stronger than intrusion detection Prevent the illegal attacks by blocking the viruses or other threats Common intrusion prevention: Firewall and/or network IPS(Intrusion Prevention System) Firewall and IPS are complementary in that Firewall blocks everything but authorized, valid accesses IPS allows everything but explicitly denied invalid accesses Firewall >> IPS Note: Can you distinguish firewall and IPS?

7 2016-11-207 Prof. I. J. Chung Dept. of Computer & Information Science, Korea Univ. Intrusion Detection Honeypot Installs fake decoy server to identify and investigate the hackers Gives fake network information to the hackers

Download ppt "Prof. I. J. Chung Dept. of Computer & Information Science, Korea Univ. 컴퓨터와 인터넷 윤리 Professor I. J. Chung."

Similar presentations

Computer security Viruses Hacking Backups

Computer security Viruses Hacking Backups
ITIS 1210 Introduction to Web-Based Information Systems Chapter 44 How Firewalls Work How Firewalls Work.

ITIS 1210 Introduction to Web-Based Information Systems Chapter 44 How Firewalls Work How Firewalls Work.
Introducing WatchGuard Dimension. Oceans of Log Data The 3 Dimensions of Big Data Volume –“Log Everything - Storage is Cheap” –Becomes too much data –

Introducing WatchGuard Dimension. Oceans of Log Data The 3 Dimensions of Big Data Volume –“Log Everything - Storage is Cheap” –Becomes too much data –
Guide to Computer Forensics and Investigations1 Network Forensics Overview Network forensics –Systematic tracking of incoming and outgoing traffic To ascertain.

Guide to Computer Forensics and Investigations1 Network Forensics Overview Network forensics –Systematic tracking of incoming and outgoing traffic To ascertain.
Hackers, Crackers, and Network Intruders: Heroes, villains, or delinquents? Tim McLaren Thursday, September 28, 2000 McMaster University.

Hackers, Crackers, and Network Intruders: Heroes, villains, or delinquents? Tim McLaren Thursday, September 28, 2000 McMaster University.
1 No Silver Bullet : Inherent Limitations of Computer Security Technologies Jeffrey W. Humphries Texas A&M University.

1 No Silver Bullet : Inherent Limitations of Computer Security Technologies Jeffrey W. Humphries Texas A&M University.
Access Control Chapter 3 Part 5 Pages 248 to 252.

Access Control Chapter 3 Part 5 Pages 248 to 252.
1 Intrusion Detection CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute May 4, 2004.

1 Intrusion Detection CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute May 4, 2004.
Exam ● On May 15, at 10:30am in this room ● Two hour exam ● Open Notes ● Will mostly cover material since Exam 2 ● No, You may not take it early.

Exam ● On May 15, at 10:30am in this room ● Two hour exam ● Open Notes ● Will mostly cover material since Exam 2 ● No, You may not take it early.
January 14, 2010 Introduction to Ethical Hacking and Network Defense MIS 4600 - © Abdou Illia.

January 14, 2010 Introduction to Ethical Hacking and Network Defense MIS © Abdou Illia.
Intrusion detection Anomaly detection models: compare a user’s normal behavior statistically to parameters of the current session, in order to find significant.

Intrusion detection Anomaly detection models: compare a user’s normal behavior statistically to parameters of the current session, in order to find significant.
Ethics in Information Technology, Second Edition

Ethics in Information Technology, Second Edition
Security Awareness: Applying Practical Security in Your World Chapter 6: Total Security.

Security Awareness: Applying Practical Security in Your World Chapter 6: Total Security.
Computer Security: Principles and Practice

Computer Security: Principles and Practice
John Felber.  Sources  What is an Intrusion Detection System  Types of Intrusion Detection Systems  How an IDS Works  Detection Methods  Issues.

John Felber.  Sources  What is an Intrusion Detection System  Types of Intrusion Detection Systems  How an IDS Works  Detection Methods  Issues.
Department Of Computer Engineering

Department Of Computer Engineering
Network security policy: best practices

Network security policy: best practices
Fermi Computer Incident Response Team Computer Security Awareness Day March 8, 2005 Michael Diesburg.

Fermi Computer Incident Response Team Computer Security Awareness Day March 8, 2005 Michael Diesburg.
Information Systems CS-507 Lecture 40. Availability of tools and techniques on the Internet or as commercially available software that an intruder can.

Information Systems CS-507 Lecture 40. Availability of tools and techniques on the Internet or as commercially available software that an intruder can.
APA of Isfahan University of Technology In the name of God.

APA of Isfahan University of Technology In the name of God.

Similar presentations

Ads by Google