Presentation is loading. Please wait.

Presentation is loading. Please wait.

Presented By: Vinay Kumar.  At the time of invention, Internet was just accessible to a small group of pioneers who wanted to make the network work.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Presented By: Vinay Kumar.  At the time of invention, Internet was just accessible to a small group of pioneers who wanted to make the network work."— Presentation transcript:

1 Presented By: Vinay Kumar

2  At the time of invention, Internet was just accessible to a small group of pioneers who wanted to make the network work.  Protocols were focused on just transmission errors and hardware and software faults.  They did not worry about the network attacks such as intrusions and other attacks.  Now, rapid use of Internet in secure transactions, business and other legitimate usage has made it vulnerable to hackers and attacks.

3  Denial of Service – Attackers prevent the targeted system from being used.  Attacks against Confidentiality – Aim to obtain sensitive information which may endanger people’s privacy.  Attacks against Integrity – Destruction or modification of sensitive data, spreading of false information, etc.

4  Distinguish between  An error, part of system state that cause failure.  A failure, service delivery deviates from the system.  A fault, hypothesized cause of error, e.g.: an intrusion.  Categories to design a safe system:  Fault Prevention  Fault Tolerance  Fault Removal  Fault Forecasting

5  Fault Prevention: Prevent the occurrence or introduction of faults.  Fault Tolerance: Delivering the correct service in the presence of faults.  Fault Removal: Reducing the number or severity of faults.  Fault Forecasting: Estimating, ranking or evaluating the present number, the future numbers and the likely consequence of faults.

6  Organize and manage a system such that an intrusion in one part of the system has no effect on its overall security.  Make it difficult for the same type of attack to succeed in different parts of the system.  An intrusion into a part of the system should not allow the attacker to obtain confidential data.

7 Tolerance Based on Intrusion Detection Intrusion detection paradigms

8 Fragmentation, Redundancy and Scattering Fragmentation consists of splitting the sensitive data into fragments such that a single isolated fragment does not contain any significant information. Fragments are then replicated so that the modification does not impede the reconstruction of correct data. Finally, scattering aims to ensure that an intrusion only gives access to isolated fragments.

9 Malicious and Accidental Fault Tolerance for Internet Applications

10 Dependable Intrusion Tolerance

11  Given the current rate of attacks on Internet, intrusion tolerance appears to be a promising technique to implement secure applications.  The implementation is expensive but it is worth providing for security.

Download ppt "Presented By: Vinay Kumar.  At the time of invention, Internet was just accessible to a small group of pioneers who wanted to make the network work."

Similar presentations

An Overview of ABFT in cloud computing

An Overview of ABFT in cloud computing
Security by Design A Prequel for COMPSCI 702. Perspective “Any fool can know. The point is to understand.” - Albert Einstein “Sometimes it's not enough.

Security by Design A Prequel for COMPSCI 702. Perspective “Any fool can know. The point is to understand.” - Albert Einstein “Sometimes it's not enough.
Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.

Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.
Information System Audit : © South-Asian Management Technologies Foundation Chapter 4: Information System Audit Requirements.

Information System Audit : © South-Asian Management Technologies Foundation Chapter 4: Information System Audit Requirements.
11. Practical fault-tolerant system design Reliable System Design 2005 by: Amir M. Rahmani.

11. Practical fault-tolerant system design Reliable System Design 2005 by: Amir M. Rahmani.
EEC 688/788 Secure and Dependable Computing Lecture 2 Wenbing Zhao Department of Electrical and Computer Engineering Cleveland State University

EEC 688/788 Secure and Dependable Computing Lecture 2 Wenbing Zhao Department of Electrical and Computer Engineering Cleveland State University
Introduction to Security in Computing 01204427 Computer and Network Security Semester 1, 2011 Lecture #01.

Introduction to Security in Computing Computer and Network Security Semester 1, 2011 Lecture #01.
Dependability ITV Model-based Analysis and Design of Embedded Software Techniques and methods for Critical Software Anders P. Ravn Aalborg University August.

Dependability ITV Model-based Analysis and Design of Embedded Software Techniques and methods for Critical Software Anders P. Ravn Aalborg University August.
Lecture 1: Overview modified from slides of Lawrie Brown.

Lecture 1: Overview modified from slides of Lawrie Brown.
Chapter 1 – Introduction

Chapter 1 – Introduction
1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.

1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.
Introducing Computer and Network Security

Introducing Computer and Network Security
EEC 688/788 Secure and Dependable Computing Lecture 2 Wenbing Zhao Department of Electrical and Computer Engineering Cleveland State University

EEC 688/788 Secure and Dependable Computing Lecture 2 Wenbing Zhao Department of Electrical and Computer Engineering Cleveland State University
CSE 322: Software Reliability Engineering Topics covered: Dependability concepts Dependability models.

CSE 322: Software Reliability Engineering Topics covered: Dependability concepts Dependability models.
Design of an Autonomous Anti-DDOS Network (A2D2) Angela Cearns Thesis Proposal Master of Software Engineering University of Colorado, Colorado Springs.

Design of an Autonomous Anti-DDOS Network (A2D2) Angela Cearns Thesis Proposal Master of Software Engineering University of Colorado, Colorado Springs.
Stephen S. Yau CSE465 & CSE591, Fall 2006 1 Information Assurance (IA) & Security Overview Concepts Security principles & strategies Techniques Guidelines,

Stephen S. Yau CSE465 & CSE591, Fall Information Assurance (IA) & Security Overview Concepts Security principles & strategies Techniques Guidelines,
Applied Cryptography for Network Security

Applied Cryptography for Network Security
Cryptography and Network Security Chapter 1. Chapter 1 – Introduction The art of war teaches us to rely not on the likelihood of the enemy's not coming,

Cryptography and Network Security Chapter 1. Chapter 1 – Introduction The art of war teaches us to rely not on the likelihood of the enemy's not coming,
SENG521 (Fall SENG 521 Software Reliability & Testing Defining Necessary Reliability (Part 3b) Department of Electrical & Computer.

SENG521 (Fall SENG 521 Software Reliability & Testing Defining Necessary Reliability (Part 3b) Department of Electrical & Computer.
Network Security PHILADELPHIA UNIVERSITY Ahmad Alghoul 2010-2011 Module 1 Introduction: To Information & Security  Modified by :Ahmad Al Ghoul  Philadelphia.

Network Security PHILADELPHIA UNIVERSITY Ahmad Alghoul Module 1 Introduction: To Information & Security  Modified by :Ahmad Al Ghoul  Philadelphia.

Similar presentations

Ads by Google