Presentation is loading. Please wait.

Presentation is loading. Please wait.

About the Presentations The presentations cover the objectives found in the opening of each chapter. All chapter objectives are listed in the beginning.

Published byAubrey Wiggins Modified over 8 years ago

Similar presentations

Presentation on theme: "About the Presentations The presentations cover the objectives found in the opening of each chapter. All chapter objectives are listed in the beginning."— Presentation transcript:

1 About the Presentations The presentations cover the objectives found in the opening of each chapter. All chapter objectives are listed in the beginning of each presentation. You may customize the presentations to fit your class needs. Some figures from the chapters are included. A complete set of images from the book can be found on the Instructor Resources disc.

2 Guide to Firewalls and VPNs, 3 rd Edition Chapter One Introduction to Information Security

3 Guide to Firewalls and VPNs, 3 rd Edition Objectives Explain the component parts of information security in general and network security in particular Define the key terms and critical concepts of information and network security Describe the organizational roles of information and network security professionals Discuss the business need for information and network security 3

4 Guide to Firewalls and VPNs, 3 rd Edition Objectives (cont’d.) Identify the threats posed to information and network security, as well as the common attacks associated with those threats Differentiate threats to information within systems from attacks against information within systems 4

5 Guide to Firewalls and VPNs, 3 rd Edition Introduction Network security –Critical activity for almost every organization Perimeter defense –Cornerstone of most network security programs –Effective firewall Properly configured to be safe and efficient Chapter 1 –Overview of the entire field of information security –How that broader field influences current trends in network security 5

6 Guide to Firewalls and VPNs, 3 rd Edition What Is Information Security? Information security (InfoSec) –Protection of information and its critical elements, –Includes the systems and hardware that use, store, and transmit that information Unified process encompasses –Network security –Physical security –Personnel security –Operations security –Communications security 6

7 Guide to Firewalls and VPNs, 3 rd Edition What Is Information Security? (cont’d.) C.I.A. triangle –Industry standard for computer security –Based on the three characteristics of information that make it valuable to organizations: Confidentiality Integrity Availability 7

8 Guide to Firewalls and VPNs, 3 rd Edition Critical Characteristics of Information Availability –Information is accessible by authorized users Accuracy –Information is free from mistakes or errors Authenticity –Information is genuine or original Confidentiality –Information is protected from disclosure or exposure 8

9 Guide to Firewalls and VPNs, 3 rd Edition Critical Characteristics of Information (cont’d.) Integrity –Information remains whole, complete, and uncorrupted Utility –Information has value for some purpose or end Possession –Information object or item is owned or controlled by somebody 9

10 Guide to Firewalls and VPNs, 3 rd Edition CNSS Security Model U.S. Committee on National Systems Security (CNSS) National Training Standard for Information Security Professionals NSTISSI No. 4011 McCumber Cube –3 x 3 x 3 cube, with 27 cells representing the various areas that must be addressed to secure today’s information systems 10

11 Guide to Firewalls and VPNs, 3 rd Edition CNSS Security Model 11 Figure 1-1 The McCumber Cube @ Cengage Learning 2012

12 Guide to Firewalls and VPNs, 3 rd Edition Balancing Information Security and Access Information security –Process, not an end state Balance protection of information and information assets with the availability of that information to authorized users Security must allow reasonable access –Yet protect against threats 12

13 Guide to Firewalls and VPNs, 3 rd Edition Business Needs First Protect the organization’s ability to function Enable the safe operation of applications implemented on the organization’s IT systems Protect the data the organization collects and uses Safeguard the technology assets in use at the organization 13

14 Guide to Firewalls and VPNs, 3 rd Edition Security Professionals and the Organization Wide range of professionals to support the complex information security program needed by a moderate or large organization Chief information officer (CIO) –Senior technology officer Chief information security officer (CISO) –Responsible for the assessment, management, and implementation of information security in the organization 14

15 Guide to Firewalls and VPNs, 3 rd Edition Security Professionals and the Organization (cont’d.) Information security project team –Champion –Team leader –Security policy developers –Risk assessment specialists –Security professionals –Systems, network, and storage administrators –End users 15

16 Guide to Firewalls and VPNs, 3 rd Edition Data Management Data owners –Responsible for the security and use of a particular set of information Data custodians –Responsible for the storage, maintenance, and protection of the information Data users –Allowed by the data owner to access and use the information to perform their daily jobs 16

17 Guide to Firewalls and VPNs, 3 rd Edition Key Information Security Terminology Security professional must be familiar with common terms –To effectively support any information security effort 17

18 Guide to Firewalls and VPNs, 3 rd Edition Threats and Attacks Threat –Category of object, person, or other entity that poses a potential risk of loss to an asset Asset –Anything that has value for the organization –Can be physical or logical Attack –Intentional or unintentional action that could represent the unauthorized modification, damage, or loss of an information asset 18

19 Guide to Firewalls and VPNs, 3 rd Edition Threats and Attacks (cont’d.) Subject of an attack –Used as an active tool to conduct the attack Object of an attack –Entity being attacked Direct attack –Hacker uses a personal computer to break into a system Indirect attack –System is compromised and used to attack other systems 19

20 Guide to Firewalls and VPNs, 3 rd Edition Vulnerabilities and Exploits Threat agent –Specific instance of a general threat Well-known vulnerabilities –Vulnerabilities that have been examined, documented, and published “Exploit” –Threat agents attempt to exploit a system or information asset –Specific recipe that an attacker creates to formulate an attack 20

21 Guide to Firewalls and VPNs, 3 rd Edition Vulnerabilities and Exploits (cont’d.) Controls, safeguards, or countermeasures –Synonymous terms –Security mechanisms, policies, or procedures that can successfully counter attacks, reduce risk, resolve vulnerabilities, and generally improve the security within an organization 21

22 Guide to Firewalls and VPNs, 3 rd Edition Risk State of being unsecure, either partially or totally, and thus susceptible to attack Described in terms of likelihood Risk management –Involves risk identification, risk assessment or analysis, and risk control Risk appetite or risk tolerance –Amount of risk an organization chooses to live with 22

23 Guide to Firewalls and VPNs, 3 rd Edition Risk (cont’d.) Residual risk –Amount of risk that remains after an organization takes precautions, implements controls and safeguards, and performs other security activities To control risk: –Self-protection –Risk transfer –Self-insurance or acceptance –Avoidance 23

24 Guide to Firewalls and VPNs, 3 rd Edition Security Perimeter and Defense in Depth Security perimeter –Defines the boundary between the outer limit of an organization’s security and the beginning of the outside network –Perimeter does not protect against internal attacks –Organization may choose to set up security domains Defense in depth –Layered implementation of security Redundancy –Implementing technology in layers 24

25 Guide to Firewalls and VPNs, 3 rd Edition Security Perimeter and Defense in Depth (cont’d.) 25 Figure 1-3 Security Perimeter @ Cengage Learning 2012

26 Guide to Firewalls and VPNs, 3 rd Edition Security Perimeter and Defense in Depth (cont’d.) 26 Figure 1-4 Defense in Depth @ Cengage Learning 2012

27 Guide to Firewalls and VPNs, 3 rd Edition Threats to Information Security Table 1-1 –Reveals how many organizations have experienced the listed types of attack or misuse Table 1-2 –12 categories that represent a clear and present danger to an organization’s people, information, and systems 27

28 Guide to Firewalls and VPNs, 3 rd Edition Threats to Information Security (cont’d.) 28 Table 1-1 CSI/FBI Computer Crime and Security Survey (continues)

29 Guide to Firewalls and VPNs, 3 rd Edition29 Table 1-1 CSI/FBI Computer Crime and Security Survey (continues)

30 Guide to Firewalls and VPNs, 3 rd Edition30 Table 1-1 CSI/FBI Computer Crime and Security Survey (continues)

31 Guide to Firewalls and VPNs, 3 rd Edition31 Table 1-1 CSI/FBI Computer Crime and Security Survey (continued)

32 Guide to Firewalls and VPNs, 3 rd Edition32 Table 1-2 Threats to Information Security

33 Guide to Firewalls and VPNs, 3 rd Edition The TVA Triple “TVA Triple” of Threat-Vulnerability-Asset –Use to prioritize your work –T1-V1-A1—Vulnerability 1 that exists between Threat 1 and Asset 1 –T1-V2-A1—Vulnerability 2 that exists between Threat 1 and Asset 1 –T1-V1-A2—Vulnerability 1 that exists between Threat 1 and Asset 2 Organize in a TVA worksheet 33

34 Guide to Firewalls and VPNs, 3 rd Edition34 Table 1-3 Sample TVA spreadsheet

35 Guide to Firewalls and VPNs, 3 rd Edition Other Ways to View Threats Perspectives: –Intellectual property –Software piracy –Shoulder surfing –Hackers –Script kiddies –Packet monkeys –Cracker –Phreaker –Hacktivist or cyberactivist –Cyberterrorist 35

36 Guide to Firewalls and VPNs, 3 rd Edition Other Ways to View Threats (cont’d.) Malicious code, malicious software, or malware –Computer virus: macro virus, boot virus –Worms –Trojan horses –Backdoor, trapdoor, maintenance hook –Rootkit 36

37 Guide to Firewalls and VPNs, 3 rd Edition Other Ways to View Threats (cont’d.) Power irregularities –Spike –Surge –Sag –Brownout –Fault –Blackout 37

38 Guide to Firewalls and VPNs, 3 rd Edition Attacks on Information Assets Attacks occur through a specific act that may cause a potential loss Each of the major types of attack used against controlled systems discussed 38

39 Guide to Firewalls and VPNs, 3 rd Edition Malicious Code Malicious code –Includes viruses, worms, Trojan horses, and active Web scripts –Executed with the intent to destroy or steal information Polymorphic, multivector worm –Constantly changes the way it looks –Uses multiple attack vectors to exploit a variety of vulnerabilities in commonly used software 39

40 Guide to Firewalls and VPNs, 3 rd Edition Malicious Code 40 Table 1-4 Attack Vectors

41 Guide to Firewalls and VPNs, 3 rd Edition Compromising Passwords Bypass access controls by guessing passwords Cracking –Attempting to guess a password Brute force attack –Application of computing and network resources to try every possible combination of options Dictionary attack –Variation on the brute force attack –Narrows the field by selecting specific target accounts and using a list of commonly used passwords 41

42 Guide to Firewalls and VPNs, 3 rd Edition Denial-of-Service (DoS) and Distributed Denial-of-Service (DDoS) Denial-of-service (DoS) attack –Attacker sends a large number of connection or information requests to a target –So many requests are made that the target system cannot handle them along with other, legitimate requests for service Distributed denial-of-service (DDoS) –Coordinated stream of requests against a target from many locations at the same time Any system connected to the Internet is a potential target for denial-of-service attacks 42

43 Guide to Firewalls and VPNs, 3 rd Edition Spoofing Intruder sends messages to IP addresses that indicate to the recipient that the messages are coming from a trusted host 43 Figure 1-6 IP Spoofing @ Cengage Learning 2012

44 Guide to Firewalls and VPNs, 3 rd Edition Man-in-the-Middle Attacker monitors (or sniffs) packets from the network –Modifies them using IP spoofing techniques –Inserts them back into the network Allows the attacker to eavesdrop, change, delete, reroute, add, forge, or divert data 44

45 Guide to Firewalls and VPNs, 3 rd Edition E-mail Attacks E-mail –Vehicle for attacks rather than the attack itself Spam –Used as a means to make malicious code attacks more effective Mail bomb –Attacker routes large quantities of e-mail to the target system 45

46 Guide to Firewalls and VPNs, 3 rd Edition Sniffers Sniffer –Program or device that can monitor data traveling over a network –Used both for legitimate network management functions and for stealing information from a network Impossible to detect Can be inserted almost anywhere Packet sniffers –Work on TCP/IP networks 46

47 Guide to Firewalls and VPNs, 3 rd Edition Social Engineering Process of using social skills to convince people to reveal access credentials or other valuable information to the attacker “People are the weakest link. You can have the best technology, [then] somebody call[s] an unsuspecting employee. That’s all she wrote, baby. They got everything” –Kevin Mitnick 47

48 Guide to Firewalls and VPNs, 3 rd Edition Buffer Overflow Application error –Occurs when more data is sent to a buffer than it can handle Attacker can make the target system execute instructions Attacker can take advantage of some other unintended consequence of the failure 48

49 Guide to Firewalls and VPNs, 3 rd Edition Summary Firewalls and network security –Essential components for securing the systems that businesses use Information security –Protection of information and its critical elements Information security is a process, not a goal Takes a wide range of professionals to support the information security program 49

50 Guide to Firewalls and VPNs, 3 rd Edition Summary (cont’d.) Treat: object, person, or other entity that represents a constant danger to an asset Attack: act that takes advantage of a vulnerability to compromise a controlled system Organization must establish a functional and well- designed information security program 50

Download ppt "About the Presentations The presentations cover the objectives found in the opening of each chapter. All chapter objectives are listed in the beginning."

Similar presentations

Chapter 1 - 1 ADCS CS262/0898/V1 Chapter 1 An Introduction To Computer Security TOPICS Introduction Threats to Computer Systems –Threats, Vulnerabilities.

Chapter ADCS CS262/0898/V1 Chapter 1 An Introduction To Computer Security TOPICS Introduction Threats to Computer Systems –Threats, Vulnerabilities.
Principles of Information Security, 2nd Edition1 Threats and Attacks.

Principles of Information Security, 2nd Edition1 Threats and Attacks.
Information System protection and Security. Need for Information System Security §With the invent of computers and telecommunication systems, organizations.

Information System protection and Security. Need for Information System Security §With the invent of computers and telecommunication systems, organizations.
Is There a Security Problem in Computing? Network Security / G. Steffen1.

Is There a Security Problem in Computing? Network Security / G. Steffen1.
1 Computer Security Instructor: Dr. Bo Sun. 2 Course Objectives Understand basic issues, concepts, principles, and mechanisms in computer network security.

1 Computer Security Instructor: Dr. Bo Sun. 2 Course Objectives Understand basic issues, concepts, principles, and mechanisms in computer network security.
McGraw-Hill/Irwin ©2009 The McGraw-Hill Companies, All Rights Reserved CHAPTER 4 ETHICS AND INFORMATION SECURITY Business Driven Information Systems 2e.

McGraw-Hill/Irwin ©2009 The McGraw-Hill Companies, All Rights Reserved CHAPTER 4 ETHICS AND INFORMATION SECURITY Business Driven Information Systems 2e.
Chapter 4 McGraw-Hill/Irwin Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights reserved. Ethics and Information Security.

Chapter 4 McGraw-Hill/Irwin Copyright © 2011 by The McGraw-Hill Companies, Inc. All rights reserved. Ethics and Information Security.
11 ASSESSING THE NEED FOR SECURITY Chapter 1. Chapter 1: Assessing the Need for Security2 ASSESSING THE NEED FOR SECURITY  Security design concepts 

11 ASSESSING THE NEED FOR SECURITY Chapter 1. Chapter 1: Assessing the Need for Security2 ASSESSING THE NEED FOR SECURITY  Security design concepts 
Lecture 1: Overview modified from slides of Lawrie Brown.

Lecture 1: Overview modified from slides of Lawrie Brown.
Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.

Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.
ISA 3200 NETWORK SECURITY Chapter 1: Introduction to Information Security.

ISA 3200 NETWORK SECURITY Chapter 1: Introduction to Information Security.
Security+ Guide to Network Security Fundamentals

Security+ Guide to Network Security Fundamentals
1 An Overview of Computer Security computer security.

1 An Overview of Computer Security computer security.
FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs,

FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs,
Introducing Computer and Network Security

Introducing Computer and Network Security
Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Qualitative.

Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Qualitative.
Lesson 11-Virtual Private Networks. Overview Define Virtual Private Networks (VPNs). Deploy User VPNs. Deploy Site VPNs. Understand standard VPN techniques.

Lesson 11-Virtual Private Networks. Overview Define Virtual Private Networks (VPNs). Deploy User VPNs. Deploy Site VPNs. Understand standard VPN techniques.
Security+ Guide to Network Security Fundamentals, Third Edition Chapter 9 Performing Vulnerability Assessments.

Security+ Guide to Network Security Fundamentals, Third Edition Chapter 9 Performing Vulnerability Assessments.
Threats and Attacks Principles of Information Security, 2nd Edition

Threats and Attacks Principles of Information Security, 2nd Edition
The Need for Security Chapter 2 Our bad neighbor makes us early stirrers, Which is both healthful and good husbandry. -- William Shakespeare (1564–1616),

The Need for Security Chapter 2 Our bad neighbor makes us early stirrers, Which is both healthful and good husbandry. -- William Shakespeare (1564–1616),

Similar presentations

Ads by Google