Presentation is loading. Please wait.

Presentation is loading. Please wait.

ICS 1431 12. Protection/Security Interface 12.1 Security Threats –Types of Damage –Vulnerable Resources –Types of Attacks 12.2 Functions of a Protection.

Published byAron Thornton Modified over 8 years ago

Similar presentations

Presentation on theme: "ICS 1431 12. Protection/Security Interface 12.1 Security Threats –Types of Damage –Vulnerable Resources –Types of Attacks 12.2 Functions of a Protection."— Presentation transcript:

1 ICS 1431 12. Protection/Security Interface 12.1 Security Threats –Types of Damage –Vulnerable Resources –Types of Attacks 12.2 Functions of a Protection System 12.3 User Authentication –Approaches to Authentication –Passwords 12.4 Secure Communication –Principles of Cryptography –Secret-Key Cryptosystems –Public-Key Cryptosystems

2 ICS 1432 Security threats types of damage –information disclosure –information destruction –unauthorized use of services –denial of service vulnerable resources –hardware (CPU, memory, devices) –software (files, processes, VM)

3 ICS 1433 Types of attacks from within –direct access as a valid process browsing for information (main memory, disks) leaking of information –indirect access via agent (perpetrator not present during attack) Trojan horse trap door (bypass authentication)

4 ICS 1434 Types of attacks from outside –via legitimate channels viruses worms remote execution –via illegitimate channels wire tapping (passive or active) searching of waste

5 ICS 1435 Types of attacks viruses –designed to replicate themselves removable storage media, email, file transfer –intended to cause damage –need a host program attach to and modify host execute as part of host –virus detection check program length (virus can hide or compress program) check for virus “signature” (viruses use encryption)

6 ICS 1436 Types of attacks worms –intended to cause damage –exploit some system weakness to replicate –no host needed Example: Morris worm –3 separate attacks: rsh: spawn process on remote machine (trusted machines) sendmail: in debug mode, may mail itself and start finger: buffer overflow not checked (Figure 12-2)

7 ICS 1437 Types of attacks remote execution –upload and start code on remote machine –mobile agent: may migrate among machines unlike worm, relies on legitimate servers for migration –protection interpret code -- safe but slow sandboxing -- limit scope and capabilities

8 ICS 1438 Types of attacks masquerading –impersonate process, user, service –used from outside: steal password, login as “legitimate” user break communication line, assume session –used from within: impersonate login shell, steal password trail and error – e.g., try to guess password (from outside) or by examining password files (from within)

9 ICS 1439 Functions of a protection system external safeguards –guard physical access (locks, badges, cameras) verification of user identity access control –can S perform f on R information flow control –can S get information contained in R (indirectly) communication safeguards –protect public/vulnerable lines: cryptography threat monitoring

10 ICS 14310 User authentication approaches: –knowledge of some information password, dialog –possession of some artifact machine-readable cards (ATM) combine with knowledge (PIN) –physical characteristics of person fingerprint hand geometry face geometry retina or iris scan voice print signature dynamics

11 ICS 14311 User authentication problem with biometrics: uncertainty in recognition –system generates number 0  n  1 –bimodal distribution: Figure 12-3 –threshold must be chosen to minimize both false alarms acceptance of imposter

12 ICS 14312 User authentication passwords –protect stored password files from access –prevent trial and error (guessing) protecting password files –maintain unencrypted; rely on access control –encrypt using one-way function H; keep only H(pw) with user name at login, compute H(pw’) and compare with H(pw)

13 ICS 14313 User authentication preventing passwords guessing –system-generated difficult to memorize –system-validated accept only passwords that obey specifications (length, mix of letters/digits, upper/lower case) employ password-cracking programs to reject easy- to-guess passwords –time-limited expiration date or number of uses

14 ICS 14314 User authentication one-time passwords –smart card –use secret function; apply to challenge n generated by system; e.g. f(n)=3*n/2 –use one-way function to generate series of one- time passwords from one password pw H(H(pw)) H(pw) pw intruder can derive H(H(pw)) from H(pw) but not H(pw) from H(H(pw)) because H -1 is unknown

15 ICS 14315 User authentication system-extended passwords –for each pw, generate random number slt (called “salt”) –store: user name, slt, H(slt,pw) Figure 12-4 –testing if a string s is a valid password of any user: w/o salting: check for H(s) w/ salting: check for every H(slt,s) –salting does not reduce guessing of password of a specific user

16 ICS 14316 Secure communication principles of cryptography C = E(P,K) P = D(C,K) = D(E(P,K),K) goals: –secrecy (message content not revealed) –integrity (message not modified) –authenticity of creator (prove that S created message, regardless of who sent it) –authenticity of sender (prove that S sent message)

17 ICS 14317 Secure communication secret-key cryptosystems –symmetric: both S and R have common secret key Figure 12-4

18 ICS 14318 Secure communication secret-key cryptosystems –enforcing secrecy only R can decrypt –enforcing integrity intruder cannot produce valid message –enforcing authenticity of creator not possible, S can deny –enforcing authenticity of sender must prevent replay: nonce or timestamp

19 ICS 14319 Secure communication use nonce N to prevent replay of message S R  N C=E({P,N},K)  –capturing either message does not help; both are different every time use timestamp T to prevent replay S R C=E({P,T},K)  –limits possible replay to a chose time interval

20 ICS 14320 Secure communication key distribution and authentication –both S and R must have the same key K –trusted server approach: each process has a secret key to communicate with KDC at runtime, process A may request session key to communicate with process B KDC A B  A,B E({K AB,B,tkt},K A )  tkt  ______________ tkt=E({K AB,A},K B )

21 ICS 14321 Secure communication public-key cryptosystems –asymmetric: different key for encryption and decryption –one cannot be derived from the other –one is made public, the other is kept secret Figure 12-7

22 ICS 14322 Secure communication public-key cryptosystems C = E(E(P,K S priv ),K R publ ) –enforcing secrecy only R can decrypt message using K R priv –enforcing integrity intruder cannot produce valid message without K S priv –enforcing authenticity of creator same as integrity: only S knows K S priv –enforcing authenticity of sender use nonce or timestamp to prevent replay

23 ICS 14323 Secure communication Example: RSA C = E(P) = P e mod n P = D(C) = C d mod n –e, n: public encryption key –d, n: secret decryption key; d cannot be derived from e

24 ICS 14324 Secure communication Example: RSA –choose large prime numbers p and q; compute n=p*q Ex: p=5, q=7, n=35 –choose d as large prime number with no common factors with (p  1)*(q  1) Ex: (5  1)*(7  1)=24, d=5 or 7 or 11 (choose 11) –choose e such that e*d mod (p  1)*(q  1) = 1 Ex: e*11 mod 24 = 1; e = 11 or 35 or 59 or 83 … C = E(P) = P 59 mod 35 P = D(C) = C 11 mod 35

25 ICS 14325 Secure communication public key distribution and authentication –making key public is easy, but need to authenticate: when a process A uses a public key K, prove that K is A’s public key –trusted server approach KDC A  A,B E({B,K B publ },K KDC priv )  –KDC provides B’s public key K B publ –K KDC priv guarantees authenticity (KDC sent it)

26 ICS 14326 Secure communication digital signatures –a plaintext document M is to be signed –generate digest: d = H(M) H is a one-way function H minimizes collisions (d is different for every M) Figure 12-8 –decryption authenticates sender; it proves sender send d –d=d’ authenticates M; d cannot be linked with any other document but M; i.e., sender signed M

Download ppt "ICS 1431 12. Protection/Security Interface 12.1 Security Threats –Types of Damage –Vulnerable Resources –Types of Attacks 12.2 Functions of a Protection."

Similar presentations

12. Protection/Security Interface

12. Protection/Security Interface
Lecture 6 User Authentication (cont)

Lecture 6 User Authentication (cont)
Dr. Kalpakis CMSC 421, Operating Systems. Fall 2008 URL: Security.

Dr. Kalpakis CMSC 421, Operating Systems. Fall 2008 URL: Security.
Cryptographic Security CS5204 – Operating Systems1.

Cryptographic Security CS5204 – Operating Systems1.
1 Computer Security Instructor: Dr. Bo Sun. 2 Course Objectives Understand basic issues, concepts, principles, and mechanisms in computer network security.

1 Computer Security Instructor: Dr. Bo Sun. 2 Course Objectives Understand basic issues, concepts, principles, and mechanisms in computer network security.
COEN 350: Network Security Authentication. Between human and machine Between machine and machine.

COEN 350: Network Security Authentication. Between human and machine Between machine and machine.
Silberschatz, Galvin and Gagne  2002 19.1 Operating System Concepts The Security Problem A system is secure iff its resources are used and accessed as.

Silberschatz, Galvin and Gagne  Operating System Concepts The Security Problem A system is secure iff its resources are used and accessed as.
19.1 Silberschatz, Galvin and Gagne ©2003 Operating System Concepts with Java Chapter 19: Security The Security Problem Authentication Program Threats.

19.1 Silberschatz, Galvin and Gagne ©2003 Operating System Concepts with Java Chapter 19: Security The Security Problem Authentication Program Threats.
Security strategy. What is security strategy? How an organisation plans to protect and respond to security attacks on their information technology assets.

Security strategy. What is security strategy? How an organisation plans to protect and respond to security attacks on their information technology assets.
Lecture III : Communication Security, Services & Mechanisms Internet Security: Principles & Practices John K. Zao, PhD SMIEEE National Chiao-Tung University.

Lecture III : Communication Security, Services & Mechanisms Internet Security: Principles & Practices John K. Zao, PhD SMIEEE National Chiao-Tung University.
Security A system is secure if its resources are used and accessed as intended under all circumstances. It is not generally possible to achieve total security.

Security A system is secure if its resources are used and accessed as intended under all circumstances. It is not generally possible to achieve total security.
Wireless Security In wireless networks. Security and Assurance - Goals Integrity Modified only in acceptable ways Modified only by authorized people Modified.

Wireless Security In wireless networks. Security and Assurance - Goals Integrity Modified only in acceptable ways Modified only by authorized people Modified.
8.1 Learning Objectives To become familiar with the range of security threats faced by networked and distributed systems (DSs); To examine various cryptographic.

8.1 Learning Objectives To become familiar with the range of security threats faced by networked and distributed systems (DSs); To examine various cryptographic.
Computer and Network Security. Introduction Internet security –Consumers entering highly confidential information –Number of security attacks increasing.

Computer and Network Security. Introduction Internet security –Consumers entering highly confidential information –Number of security attacks increasing.
CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.
Silberschatz, Galvin and Gagne  2002 19.1 Operating System Concepts Module 19: Security The Security Problem Authentication Program Threats System Threats.

Silberschatz, Galvin and Gagne  Operating System Concepts Module 19: Security The Security Problem Authentication Program Threats System Threats.
Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.

Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.
Protection and Security CSCI 444/544 Operating Systems Fall 2008.

Protection and Security CSCI 444/544 Operating Systems Fall 2008.
 2001 Prentice Hall, Inc. All rights reserved. Chapter 7 – Computer and Network Security Outline 7.1Introduction 7.2Ancient Ciphers to Modern Cryptosystems.

 2001 Prentice Hall, Inc. All rights reserved. Chapter 7 – Computer and Network Security Outline 7.1Introduction 7.2Ancient Ciphers to Modern Cryptosystems.
Chapter 31 Network Security

Chapter 31 Network Security

Similar presentations

Ads by Google