Presentation is loading. Please wait.

Presentation is loading. Please wait.

Ch 13 Trustworthiness Myungchul Kim

Published byRonald Alexander Modified over 8 years ago

Similar presentations

Presentation on theme: "Ch 13 Trustworthiness Myungchul Kim"— Presentation transcript:

1 Ch 13 Trustworthiness Myungchul Kim mckim@icu.ac.kr

2 2 o Facets of trustworthiness in networked computing systems – Availability – Security o Availability – Intrinsic reliability: software bugs, configuration and operation, emergent behavior -> techniques for fault tolerance and graceful crash recovery: equipment redundancy, data replication, data persistence – Security: countering deliberate threats

3 3 o Security measures – The integrity of the message. – The signature provides authentication, which means a provable identification. – Confidential. – The inability of Alice to later deny she sent the message is called nonrepudiation. – Trusted authority

4 4 o Fig 13.1

5 5 o Examples of threats to messages communicated using the network – Interruption: the delivery of a legitimate message is prevented. – Interception: a message is observed by an intruder and its contents noted. – Modification: a message is modified before it is passed to the recipient. – Fabrication: a message is fabricated, including a false identity for the sender. – Computer virus – Denial of service attack: injecting vast amounts of artificial work or communications that cause a host or network to become overloaded and degrade the performance for legitimate users or crash the application altogether.

6 6

7 7 o Confidentiality – Encryption and Decryption – Symmetric and asymmetric systems – Fig 13.3

8 8 – The asymmetric locking key is called a public key and the asymmetric unlocking key is called a secret key. – Fig 13.4

9 9 o Encryption algorithms – Confidentiality does not depend on the secrecy of the algorithms. – Symmetric protocol: E SK (P) -> C, D SK (C) -> P where E: encryption, D: decryption, SK: secret key, P: plaintext, C: ciphertext – Asymmetric protocol: E BPK (P) -> C, D BSK (C) -> P where E: encryption, D: decryption, BPK: Bob’s public key, BSK: Bob’s secret key, P: plaintext, C: ciphertext

10 10 – Fig 13.5

11 11 o authentication – Verifying the identity of a party over the network – Impersonation is easy over the network – Authentication depends on a trusted third party, called an authority – Biometrics – Challenge-response protocol

12 12 – Fig 13.6

13 13 – Digital certificate and certificate authorities (Fig 13.7)

14 14 – Digital signature (Fig 13.8)

15 15 o Open issues – Increasing vulnerability – National security and law enforcement

Download ppt "Ch 13 Trustworthiness Myungchul Kim"

Similar presentations

By Md Emran Mazumder Ottawa University Student no: 6282845.

By Md Emran Mazumder Ottawa University Student no:
L0. Introduction Rocky K. C. Chang, January 2013.

L0. Introduction Rocky K. C. Chang, January 2013.
Luu Anh Tuan. Security protocol Intruder Intruder behaviors Overhead and intercept any messages being passed in the system Decrypt messages that are.

Luu Anh Tuan. Security protocol Intruder Intruder behaviors Overhead and intercept any messages being passed in the system Decrypt messages that are.
1 Computer Security Instructor: Dr. Bo Sun. 2 Course Objectives Understand basic issues, concepts, principles, and mechanisms in computer network security.

1 Computer Security Instructor: Dr. Bo Sun. 2 Course Objectives Understand basic issues, concepts, principles, and mechanisms in computer network security.
Cryptography and Network Security Chapter 1

Cryptography and Network Security Chapter 1
Chapter 1 This book focuses on two broad areas: cryptographic algorithms and protocols, which have a broad range of applications; and network and Internet.

Chapter 1 This book focuses on two broad areas: cryptographic algorithms and protocols, which have a broad range of applications; and network and Internet.
1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.

1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.
6/9/2015Madhumita. Chatterjee1 Overview of Computer Security.

6/9/2015Madhumita. Chatterjee1 Overview of Computer Security.
CSCE 515: Computer Network Programming Chin-Tser Huang University of South Carolina.

CSCE 515: Computer Network Programming Chin-Tser Huang University of South Carolina.
Wireless Security In wireless networks. Security and Assurance - Goals Integrity Modified only in acceptable ways Modified only by authorized people Modified.

Wireless Security In wireless networks. Security and Assurance - Goals Integrity Modified only in acceptable ways Modified only by authorized people Modified.
8-1 What is network security? Confidentiality: only sender, intended receiver should “understand” message contents m sender encrypts message m receiver.

8-1 What is network security? Confidentiality: only sender, intended receiver should “understand” message contents m sender encrypts message m receiver.
Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.

Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.
Understanding Networked Applications: A First Course Chapter 13 by David G. Messerschmitt.

Understanding Networked Applications: A First Course Chapter 13 by David G. Messerschmitt.
Introduction to Public Key Infrastructure (PKI) Office of Information Security The University of Texas at Brownsville & Texas Southmost College.

Introduction to Public Key Infrastructure (PKI) Office of Information Security The University of Texas at Brownsville & Texas Southmost College.
1 CS 194: Distributed Systems Security Scott Shenker and Ion Stoica Computer Science Division Department of Electrical Engineering and Computer Sciences.

1 CS 194: Distributed Systems Security Scott Shenker and Ion Stoica Computer Science Division Department of Electrical Engineering and Computer Sciences.
Network Security. Contents Security Requirements and Attacks Confidentiality with Conventional Encryption Message Authentication and Hash Functions Public-Key.

Network Security. Contents Security Requirements and Attacks Confidentiality with Conventional Encryption Message Authentication and Hash Functions Public-Key.
Alexander Potapov.  Authentication definition  Protocol architectures  Cryptographic properties  Freshness  Types of attack on protocols  Two-way.

Alexander Potapov.  Authentication definition  Protocol architectures  Cryptographic properties  Freshness  Types of attack on protocols  Two-way.
E-mail Security using Encryption Security Features Message Origin Authentication - verifying that the sender is who he or she says they are Content Integrity.

Security using Encryption Security Features Message Origin Authentication - verifying that the sender is who he or she says they are Content Integrity.
31.1 Chapter 31 Network Security Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display.

31.1 Chapter 31 Network Security Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display.
1 Introduction to Security and Cryptology Enterprise Systems DT211 Denis Manley.

1 Introduction to Security and Cryptology Enterprise Systems DT211 Denis Manley.

Similar presentations

Ads by Google