Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security is often cited as a major barrier to electronic commerce. Prospective buyers are leery of sending credit card information over the web. Prospective.

Published byTyrone Gilbert Modified over 8 years ago

Similar presentations

Presentation on theme: "Security is often cited as a major barrier to electronic commerce. Prospective buyers are leery of sending credit card information over the web. Prospective."— Presentation transcript:

1

2 Security is often cited as a major barrier to electronic commerce. Prospective buyers are leery of sending credit card information over the web. Prospective sellers worry that hackers will damage their systems. SECURITY

3 Authenticity the sender of a message is who he, she or it claims to be Privacy the contents of a message are secret and only known to the sender and receiver Integrity the contents of a message are not modified (intentionally or accidentally) during transmission Non-repudiation the sender of a message cannot deny that he, she or it actually sent the message Cornerstones of Security

4 A security incident is any network-related activity with negative security implications. This usually means that the activity violates an explicit or implicit security policy. Incidents come in all shapes and sizes. They can come from anywhere on the Internet, although some attacks must be launched from specific systems or networks and some require access to special accounts. An intrusion may be a comparatively minor event involving a single site or a major event in which tens of thousands of sites are compromised. SECURITY INCIDENTS

5 TYPES OF INCIDENTS Incidents can be broadly classified into several kinds: 1.PROBE 2.ACCOUNT COMPROMISE 3.ROOT COMPROMISE 4.PACKET SNIFFER 5.DANIEL OF SERVICE 6.INTERNET INFRASTRUCTURE ATTACKS 7.MALICIOUS CODE

6 PROBE A probe is characterized by unusual attempts to gain access to a system or to discover information about the system. ACCOUNT COMPROMISE An account compromise is the unauthorized use of a computer account by someone other than the account owner, without involving system-level or root-level privileges. An account compromise might expose the victim to serious data loss, data theft, or theft of services.

7 ROOT COMPROMISE A root compromise is similar to an account compromise, except that the account that has been compromised has special privileges on the system. The term root is derived from an account on UNIX systems that typically has unlimited, or "superuser", privileges. PACKET SNIFFER A packet sniffer is a program that captures data from information packets as they travel over the network. That data may include user names, passwords, and proprietary information that travels over the network in clear text.

8 DENIAL-OF-SERVICE The goal of denial-of-service attacks is not to gain unauthorized access to machines or data, but to prevent legitimate users of a service from using it INTERNET INFRASTRUCTURE ATTACKS These rare but serious attacks involve key components of the Internet infrastructure rather than specific systems on the Internet. Examples are network name servers, network access providers, and large archive sites on which many users depend.

9 MALICIOUS CODE Malicious code is a general term for programs that, when executed, would cause undesired results on a system. Users of the system usually are not aware of the program until they discover the damage. Malicious code includes Trojan horses, viruses, and worms.

10 Trojan horses and viruses are usually hidden in legitimate programs or files that attackers have altered to do more than what is expected. Worms are self-replicating programs that spread with no human intervention after they are started. Viruses are also self-replicating programs, but usually require some action on the part of the user to spread inadvertently to other programs or systems. These sorts of programs can lead to serious data loss, downtime, denial of service, and other types of security incidents.

11 Encryption is the conversion of data into a secret code, that cannot be easily understood by unauthorized people. Encryption makes information useless to hackers ENCRYPTION

12 Decryption is the process of converting encrypted data back into its original form, so it can be understood. DECRYPTION

13 The process of converting a message into a secret code and changing the encoded message back to the regular text. CRYPTOGRAPHY

14 There are two primary cryptography techniques. which are used to encrypt text, graphics, and other information in a form that can be recovered by someone who has an appropriate key. Private-key Cryptography Public-key Cryptography Cryptography Techniques

15 A single key is used to encrypt and decrypt information. This technique is called symmetric key encryption. Private-key Cryptography Original Message Ciphered Text Original Message Sender Receiver EncryptionDecryption Private Key

16 1.The most widely used symmetric encryption algorithm is the DES. 2.DES was developed by the National Institute of Standards & Technology (NIST). 3.This algorithms specifies both enciphering and deciphering operations which are based on a binary number called a key. 4.The DES key consist of 64 binary digits (“0”s or “1”s). 56 bits are used directly by the algorithm. The other 8 bits may be used for error detection Data Encryption Standard ( D E S )

17 Public-key cryptography, also known as asymmetric encryption, uses two different keys: a public key and a private key Public-key Cryptography Original Message Ciphered Text Original Message Sender Receiver EncryptionDecryption Public Key of Recipient Private Key of Recipient

18 1.The most popular algorithm with public-key cryptography is the RSA. 2.This Algorithm has never been broken by hackers, so it is seen as the safest encryption method known to date. 3.Ronald Rivest, Adi Shamir, and Leonard Adleman developed the RSA system in 1977 4.RSA key lengths ranging from 512 to 1024 bits. 5.RSA is the most widely used algorithm for encrypting email messages. 6.The main problem with public-key algorithm is their speed. Rivest, Shamir, and Adelman ( R S A )

19 1.The public key is known to all authorized users. 2.The private key is known only to one person – the owner. 3.The sender encrypts the message with the receiver’s public key. This requires that the receiver’s public key be delivered in advance. 4.The message encrypted in this manner can only be decrypted with the receiver’s private key. 5.The most popular algorithm with Public-key cryptography is the RSA.

20 CIPHER TEXT The encoded message is called ciphertext or scrambled message. PLAIN TEXT The un-encoded message is called plaintext. The original message in human readable form. ENCRYPTION ALGORITHM The mathematical formula used to encrypt the plain text into ciphertext and vice versa.

21 DIGITAL SIGNATURE A digital signature is much like a hand signature in that it provides proof that you are the originator of the message (Authentication). A digital signature is an electronic signature that can be used to authenticate the identity of the sender of a message or the signer of a document Digital signatures are based on public-key cryptography.

22 A web server is a computer with special software to host web pages and web applications. Web server's traditional function has been to serve static HTML (and more recently XML) pages. WEB SERVER

23 WEB SERVER….(Cont) Functions: 1.service HTTP requests 2.provide access control, determining who can access particular directories or files on the Web server 3.run scripts and external programs to either add functionality to the Web documents or provide real-time access to database and other dynamic data 4.enable management and administration of both the server functions and the contents of the Web site 5.log transactions that the user makes

24 Firewalls can limit and stop access to computers by unauthorized people or systems. A personal firewall is installed on a local computer and is used to protect personal computers from intruders on the Internet. A network firewall can be a combination of computer software and hardware installed on a computer network to manage usage for the network. Firewalls can be used to stop the spread of viruses and Spam and can be a valuable tool in protecting children online. FIREWALL

Download ppt "Security is often cited as a major barrier to electronic commerce. Prospective buyers are leery of sending credit card information over the web. Prospective."

Similar presentations

Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.

Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.
Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
1 Computer Networks: A Systems Approach, 5e Larry L. Peterson and Bruce S. Davie Chapter 8 Network Security Copyright © 2010, Elsevier Inc. All rights.

1 Computer Networks: A Systems Approach, 5e Larry L. Peterson and Bruce S. Davie Chapter 8 Network Security Copyright © 2010, Elsevier Inc. All rights.
By: Mr Hashem Alaidaros MIS 326 Lecture 6 Title: E-Business Security.

By: Mr Hashem Alaidaros MIS 326 Lecture 6 Title: E-Business Security.
Hacker, Cracker?! Are they the same? No!!! Hacker programmers intensely interested in the arcane and recondite workings of any computer operating system.

Hacker, Cracker?! Are they the same? No!!! Hacker programmers intensely interested in the arcane and recondite workings of any computer operating system.
Principles of Information Security, 2nd edition1 Cryptography.

Principles of Information Security, 2nd edition1 Cryptography.
Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.

Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.
BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.

BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.
Computer and Network Security. Introduction Internet security –Consumers entering highly confidential information –Number of security attacks increasing.

Computer and Network Security. Introduction Internet security –Consumers entering highly confidential information –Number of security attacks increasing.
Cryptographic Technologies

Cryptographic Technologies
Business Data Communications, Fourth Edition Chapter 10: Network Security.

Business Data Communications, Fourth Edition Chapter 10: Network Security.
EECC694 - Shaaban #1 lec #16 Spring2000 5-4-2000 Properties of Secure Network Communication Secrecy: Only the sender and intended receiver should be able.

EECC694 - Shaaban #1 lec #16 Spring Properties of Secure Network Communication Secrecy: Only the sender and intended receiver should be able.
Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
Computer and Network Security Risanuri Hidayat, Ir., M.Sc.

Computer and Network Security Risanuri Hidayat, Ir., M.Sc.
Encryption Methods By: Michael A. Scott 20140508.

Encryption Methods By: Michael A. Scott
 2001 Prentice Hall, Inc. All rights reserved. Chapter 7 – Computer and Network Security Outline 7.1Introduction 7.2Ancient Ciphers to Modern Cryptosystems.

 2001 Prentice Hall, Inc. All rights reserved. Chapter 7 – Computer and Network Security Outline 7.1Introduction 7.2Ancient Ciphers to Modern Cryptosystems.
Chapter 8.  Cryptography is the science of keeping information secure in terms of confidentiality and integrity.  Cryptography is also referred to as.

Chapter 8.  Cryptography is the science of keeping information secure in terms of confidentiality and integrity.  Cryptography is also referred to as.
Encryption is a way to transform a message so that only the sender and recipient can read, see or understand it. The mechanism is based on the use of.

Encryption is a way to transform a message so that only the sender and recipient can read, see or understand it. The mechanism is based on the use of.
Alter – Information Systems 4th ed. © 2002 Prentice Hall 1 E-Business Security.

Alter – Information Systems 4th ed. © 2002 Prentice Hall 1 E-Business Security.
1 Fluency with Information Technology Lawrence Snyder Chapter 17 Privacy & Digital Security Encryption.

1 Fluency with Information Technology Lawrence Snyder Chapter 17 Privacy & Digital Security Encryption.

Similar presentations

Ads by Google