Presentation is loading. Please wait.

Presentation is loading. Please wait.

CPT 123 Internet Skills Class Notes Internet Security Session A.

Published byAnis Ward Modified over 8 years ago

Similar presentations

Presentation on theme: "CPT 123 Internet Skills Class Notes Internet Security Session A."— Presentation transcript:

1 CPT 123 Internet Skills Class Notes Internet Security Session A

2 Internet Security Why security Server software security problems Server software security solutions Security Policies

3 Internet Security Anyone connected to the Net should be concerned about data security and the safety of their system Internet has surpassed two million reachable hosts Number of users unknown

4 Internet Security Most Internauts are well-behaved Yet there does exist ill-behaved and malicious users within the large Internaut population Individual user that runs Internet clients seldom has anything to be concerned about

5 Internet Security The office network; business networks; and government networks, on the other hand, have much to be concerned about when it comes to legacy data on their systems Their systems could come under an INTERNAUT ATTACK There is hope

6 Internet Security In the nut shell, security is the process of keeping anyone from doing things you don’t want them to do to with, on, or from computers or peripheral devices Determine what resources need to be protected

7 Internet Security Now computers running software with sensitive legacy data is a resource to protect Software with configuration files may contain sensitive information must be protected

8 Internet Security A hacker, cracker, or attacker who compromises or impersonates a host will have access to all of its resources: files, hard drives, etc.. Internaut attackers may be more interested in the laundry further ongoing connections to other more targets.

9 Internet Security Defining what needs protecting in general dictates the host-specific measures needed Machines running sensitive files may need extra levels of passwords, file encryption, a password policy, etc..

10 Internet Security If the target is network connection, the network administrator may ask for certain privileges to access the network When these privileges are activated, extra logging activities may take place on the system Sometimes if you want to protect all resources Internaut attackers must be stopped at the front door

11 Internet Security Not all attacks come from the outside Must define who the system must be protected from Different levels of attacks require different levels of security

12 Internet Security Security against a teenager with a modem may not be good enough for an intelligent, malicious, dedicated group of individuals For the teenager an enhanced password system may do the job For the others wiretapping, cryptanalysis, or monitoring the electronic emissions of computers and wires may be needed

13 Internet Security The security defenses are proportional to the value of the resources and assets to be protected Yet the cost of security on the system is also a factor Some systems may require extra routers or computers to build a firewall gateway

14 Internet Security There is also the cost of training or hiring individuals to administer the security, develop security software, or to buy security software Too much or too little can hurt a system Keeping hackers, crackers, or attackers off your system depends on how assets are valued

15 Internet Security An Internaut attacker that enters the system will be able to send nasty notes or data from the system, using a legal user ID or may use the system to enter other systems pretending to be one of the systems users

16 Internet Security Due to the dynamic nature of the environment server software is often developed rapidly and has not passed rigorous security testing and may have serious vulnerabilities Yet, there are tools and protocols to protect the system from being compromised

17 Internet Security Yes, the largest threat exists when you decide to serve information on the Internet When an information server is placed on the Internet, it should reside in a system designed and dedicated solely for such a purpose Only information to be distributed should reside on that system

18 Internet Security Make the assumption that information on the system will be available to the Internet public Therefore, the server system should be disconnected from the rest of a systems network to provide minimum security exposure

19 Internet Security Not always practical therefore a firewall or a firewall gateway may be necessary A firewall gateway is to serve the line of trust at certain key points It trust only a few other machines and only for certain functions

20 Internet Security A firewall is a perimeter defense Firewalls do not provide any protection once an Internaut attacker has passed them A firewall is one or more components of a network that permits only authorized inbound and outbound traffic

21 Internet Security Firewalls have a higher security profile than any other component on the network A firewall usually sits between the Internet and the local network It provides extensive tools to enforce a security policy and is meant to screen client and server request

Download ppt "CPT 123 Internet Skills Class Notes Internet Security Session A."

Similar presentations

Network Security Essentials Chapter 11

Network Security Essentials Chapter 11
Firewalls By Tahaei Fall 2012. What is a firewall? a choke point of control and monitoring interconnects networks with differing trust imposes restrictions.

Firewalls By Tahaei Fall What is a firewall? a choke point of control and monitoring interconnects networks with differing trust imposes restrictions.
Guide to Network Defense and Countermeasures Second Edition

Guide to Network Defense and Countermeasures Second Edition
ITIS 1210 Introduction to Web-Based Information Systems Chapter 44 How Firewalls Work How Firewalls Work.

ITIS 1210 Introduction to Web-Based Information Systems Chapter 44 How Firewalls Work How Firewalls Work.
Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.

Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.
FIREWALLS. What is a Firewall? A firewall is hardware or software (or a combination of hardware and software) that monitors the transmission of packets.

FIREWALLS. What is a Firewall? A firewall is hardware or software (or a combination of hardware and software) that monitors the transmission of packets.
FIREWALLS The function of a strong position is to make the forces holding it practically unassailable —On War, Carl Von Clausewitz On the day that you.

FIREWALLS The function of a strong position is to make the forces holding it practically unassailable —On War, Carl Von Clausewitz On the day that you.
Winter 20021 CMPE 155 Week 7. Winter 20022 Assignment 6: Firewalls What is a firewall? –Security at the network level. Wide-area network access makes.

Winter CMPE 155 Week 7. Winter Assignment 6: Firewalls What is a firewall? –Security at the network level. Wide-area network access makes.
Chapter 10: Data Centre and Network Security Proxies and Gateways * Firewalls * Virtual Private Network (VPN) * Security issues * * * * Objectives:

Chapter 10: Data Centre and Network Security Proxies and Gateways * Firewalls * Virtual Private Network (VPN) * Security issues * * * * Objectives:
Chapter 11 Firewalls.

Chapter 11 Firewalls.
Security Presented by : Qing Ma. Introduction Security overview security threats password security, encryption and network security as specific.

Security Presented by : Qing Ma. Introduction Security overview security threats password security, encryption and network security as specific.
System and Network Security Practices COEN 351 E-Commerce Security.

System and Network Security Practices COEN 351 E-Commerce Security.
N ETWORK S ECURITY Presented by: Brent Vignola. M ATERIAL OVERVIEW … Basic security components that exist in all networks Authentication Firewall Intrusion.

N ETWORK S ECURITY Presented by: Brent Vignola. M ATERIAL OVERVIEW … Basic security components that exist in all networks Authentication Firewall Intrusion.
5/4/01EMTM 5531 EMTM 553: E-commerce Systems Lecture 7b: Firewalls Insup Lee Department of Computer and Information Science University of Pennsylvania.

5/4/01EMTM 5531 EMTM 553: E-commerce Systems Lecture 7b: Firewalls Insup Lee Department of Computer and Information Science University of Pennsylvania.
Firewall Security Chapter 8. Perimeter Security Devices Network devices that form the core of perimeter security include –Routers –Proxy servers –Firewalls.

Firewall Security Chapter 8. Perimeter Security Devices Network devices that form the core of perimeter security include –Routers –Proxy servers –Firewalls.
EECS 598-2 Presentation Web Tap: Intelligent Intrusion Detection Kevin Borders.

EECS Presentation Web Tap: Intelligent Intrusion Detection Kevin Borders.
This work is supported by the National Science Foundation under Grant Number DUE-0302909. Any opinions, findings and conclusions or recommendations expressed.

This work is supported by the National Science Foundation under Grant Number DUE Any opinions, findings and conclusions or recommendations expressed.
Security Awareness: Applying Practical Security in Your World

Security Awareness: Applying Practical Security in Your World
Firewall and Proxy Server Director: Dr. Mort Anvari Name: Anan Chen Date: Summer 2000.

Firewall and Proxy Server Director: Dr. Mort Anvari Name: Anan Chen Date: Summer 2000.
Department Of Computer Engineering

Department Of Computer Engineering

Similar presentations

Ads by Google