Presentation is loading. Please wait.

Presentation is loading. Please wait.

Extranet for Security Professionals Intrusion Scenarios Heather T. Kowalski Tong Xu Ying Hao Hui Huang Bill Halpin Nov. 14, 2000.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Extranet for Security Professionals Intrusion Scenarios Heather T. Kowalski Tong Xu Ying Hao Hui Huang Bill Halpin Nov. 14, 2000."— Presentation transcript:

1 Extranet for Security Professionals Intrusion Scenarios Heather T. Kowalski Tong Xu Ying Hao Hui Huang Bill Halpin Nov. 14, 2000

2 Preview Review of Project Progress Accomplishments Current Status What We Have Learned Today’s Focus: Intrusion Scenarios Future Steps

3 Review Business Mission Central Repository of Security Information Central Location for Information Sharing Secure Environment, Manageable Resource System Architecture Essential Services/Assets Normal Usage Scenarios

4 Primary Users Client WorkStation Router (FW1) Cisco 7200 128.237.144.1 Web Server Windows NT 4.0 (SP6), Hot Fixes DNS RedHat 6.2 Firewall-2 Windows NT 4.0 (SP6) Hot Fixes Database DNS RedHat 6.2 NES 3.63 Cold Fusion 4.5.1 ActiveState Perl 5.5 Tripwire 2.2.1 IPchains Guardian Pro V5 IDS-2 Windows NT 4.0 (SP6) Hot Fixes RealSecure 3.2 IDS-1 Windows NT 4.0 (SP6) Hot Fixes RealSecure 3.2 Visual FoxPro

5 Attackers vs. Legitimate Users Recreational/Casual Hackers Disgruntled Employee Organized Criminal Groups Nation/State ESP User VSO & CR Owners Site Manager Organizational Manager Site Administrator

6 Objectives of Attacks Embarrassment of the Target Organization Embarrassment of the Target User Financial Gain by Selling Acquired Information Improve Hacking Skill Set Fun/Vanity Publicity

7 Attacker Profile: Recreational/Casual Hacker Resources: none or limited Time: depends on opportunity Tools: free/cheap and readily available tools Risk attitude: unaware of consequences and risks Access: from outside network Objective: fun, vanity, skill test, or none Damage: limited

8 Attacker Profile: Disgruntled Employee Resources: enough to create a significant attack Time: depends on malice Risk Attitude: strongly risk averse Access: from inside Objectives: Revenge through embarrassment Financial gain

9 Attackers Profile: Organized Entity Who: organized criminals, fanatics, enemy nations/states, etc Resources and Time: unlimited Risk Attitude: genuine risk seeker Access: external or internal Objectives: Publicity!!! Real Damage!!!

10 Potential Attack Pattern Attack as User Gain the illegal access as end user Gain the illegal access as system administrator Attack on Component Disable or slow down the process ability of a component Attack on Application Induce system crash Induce service failure Induce assets damage

11 Compromisable Components Route DNS Firewall Web Server Database IDS Sniffing, Scans, Enumeration, Malicious Code, Flooding Malicious Code, Buffer Overflow Time, Planning, Buffer Overflow, Password

12 More Facts No intrusion in ESP has been reported since date of establishment ESP has strong physical security Multi-layer protection Dedicated room Only few have physical access Other protective efforts Regular reconfiguration of firewall (once/ per month) Virus signature files are updated daily

13 Recreational Hacker Router (FW1) Firewall-2 DNS2IDS Web Server DNS1 Database IDS

14 Compromised User Workstation Router (FW1) Firewall-2 DNS2IDS Web Server DNS1 Database IDS

15 Admin Console Router (FW1) Firewall-2 DNS2IDS Web Server DNS1 Database IDS

16 Future Plans Regular Saturday Team Meetings Planned Meeting with Client Final Presentation and Report Summary of Findings Recommendations

17 Questions?

18 Type of DOS Attacks Bandwidth consumption Resource starvation Programming flaws Router attacks DNS attacks

19 Examples of DOS Attacks Network based DOS attack ICMP traffics (PING, Echo flood) SYN-flood Windows NT Programming Flaw Attacks Tools: TearDrop, OOB (port 139), Land, Ping of Death Cisco Router Attacking Tools Tool: Land

Download ppt "Extranet for Security Professionals Intrusion Scenarios Heather T. Kowalski Tong Xu Ying Hao Hui Huang Bill Halpin Nov. 14, 2000."

Similar presentations

CS5038 The Electronic Society

CS5038 The Electronic Society
Distance Education Team 1 Adrian Sia Xavier Appé Anoop Georges Salvador Gonzales Augustine Ani Zijian Cao Joe Ondercin SNA Step 3 November 14, 2001.

Distance Education Team 1 Adrian Sia Xavier Appé Anoop Georges Salvador Gonzales Augustine Ani Zijian Cao Joe Ondercin SNA Step 3 November 14, 2001.
Network and Application Attacks Contributed by- Chandra Prakash Suryawanshi CISSP, CEH, SANS-GSEC, CISA, ISO 27001LI, BS 25999LA, ERM (ISB) June 2006.

Network and Application Attacks Contributed by- Chandra Prakash Suryawanshi CISSP, CEH, SANS-GSEC, CISA, ISO 27001LI, BS 25999LA, ERM (ISB) June 2006.
Lesson 3-Hacker Techniques

Lesson 3-Hacker Techniques
Student Application System SNA Step 3 Attacker Profiles and Scenarios 11.14.2001.

Student Application System SNA Step 3 Attacker Profiles and Scenarios
1 Topic 1 – Lesson 3 Network Attacks Summary. 2 Questions ► Compare passive attacks and active attacks ► How do packet sniffers work? How to mitigate?

1 Topic 1 – Lesson 3 Network Attacks Summary. 2 Questions ► Compare passive attacks and active attacks ► How do packet sniffers work? How to mitigate?
Computer Security Fundamentals by Chuck Easttom Chapter 4 Denial of Service Attacks.

Computer Security Fundamentals by Chuck Easttom Chapter 4 Denial of Service Attacks.
Hacking Presented By :KUMAR ANAND SINGH 04-243,ETC/2008.

Hacking Presented By :KUMAR ANAND SINGH ,ETC/2008.
INDEX  Ethical Hacking Terminology.  What is Ethical hacking?  Who are Ethical hacker?  How many types of hackers?  White Hats (Ethical hackers)

INDEX  Ethical Hacking Terminology.  What is Ethical hacking?  Who are Ethical hacker?  How many types of hackers?  White Hats (Ethical hackers)
1 Guide to Novell NetWare 6.0 Network Administration Chapter 14.

1 Guide to Novell NetWare 6.0 Network Administration Chapter 14.
System and Network Security Practices COEN 351 E-Commerce Security.

System and Network Security Practices COEN 351 E-Commerce Security.
Computer Security and Penetration Testing

Computer Security and Penetration Testing
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
Extranet for Security Professionals Essential Services Analysis Heather T. Kowalski Tong Xu Ying Hao Hui Huang Bill Halpin Oct. 31, 2000.

Extranet for Security Professionals Essential Services Analysis Heather T. Kowalski Tong Xu Ying Hao Hui Huang Bill Halpin Oct. 31, 2000.
Distance Education Team 2 Security Architectures and Analysis.

Distance Education Team 2 Security Architectures and Analysis.
Copyright © 2002 Pearson Education, Inc. Slide 5-1 PERTEMUAN 8.

Copyright © 2002 Pearson Education, Inc. Slide 5-1 PERTEMUAN 8.
11/14 SNA Presentation 3 Survivable Network Analysis Oracle Financial System SNA step 3 Ali Ardalan Qianming “Michelle” Chen Yi Hu Jason Milletary Jian.

11/14 SNA Presentation 3 Survivable Network Analysis Oracle Financial System SNA step 3 Ali Ardalan Qianming “Michelle” Chen Yi Hu Jason Milletary Jian.
Beyond the perimeter: the need for early detection of Denial of Service Attacks John Haggerty,Qi Shi,Madjid Merabti Presented by Abhijit Pandey.

Beyond the perimeter: the need for early detection of Denial of Service Attacks John Haggerty,Qi Shi,Madjid Merabti Presented by Abhijit Pandey.
Earl Crane Hap Huynh Jeongwoo Ko Koichi Tominaga 11/14/2000 Physician Reminder System SNA Step 3.

Earl Crane Hap Huynh Jeongwoo Ko Koichi Tominaga 11/14/2000 Physician Reminder System SNA Step 3.
January 14, 2010 Introduction to Ethical Hacking and Network Defense MIS 4600 - © Abdou Illia.

January 14, 2010 Introduction to Ethical Hacking and Network Defense MIS © Abdou Illia.

Similar presentations

Ads by Google