Presentation is loading. Please wait.

Presentation is loading. Please wait.

Introduction Computer Security Threats, Risks, Vulnerabilities and Impacts Mark D. Ryan –

Published byGeoffrey McCoy Modified over 9 years ago

Similar presentations

Presentation on theme: "Introduction Computer Security Threats, Risks, Vulnerabilities and Impacts Mark D. Ryan –"— Presentation transcript:

1 Introduction Computer Security Threats, Risks, Vulnerabilities and Impacts Mark D. Ryan – M.D.Ryan@cs.bham.ac.uk

2 What is computer security?

3 Some example definitions Java is an object-oriented programming language developed by Sun Microsystems and released in 1995. Islam is a monotheistic religion originating with the teachings of Muhammad in the 7 th century. China is the most populous country in the world, and the largest country in East Asia, bordering Mongolia, Russia, Vietnam, Laos, India and others.

4 What is computer security? What kind of thing is security? What does computer security try to achieve? How does it try to achieve it? Computer security is...

5 Possible answer Computer security is a field of engineering concerned with the development and deployment of measures to ensure the protection of computer systems from hostile acts or influences.

6 What are we trying to secure? From whom are we trying to secure those things? What do we want to prevent them from doing?

7 Computer Security: definitions Assets: Things we want to protect (data, systems, services) ‏ Threats: Events that can happen to assets (e.g. loss of confidentiality) ‏ Attacks: Attempts to realise threats Vulnerabilities: Weaknesses of systems which make attacks possible Risk: A measure of the likelihood of occurrence of an attack Impact: A measure of how serious an attack would be Computer security: –Analysing risk and impact of threats –Protecting assets against attacks –Overcoming vulnerabilities –Mitigating risks –Reducing impacts of attacks

8 Computer Security: impact vs. risk Security engineering: –Evaluating risks and impacts of attacks –Deciding appropriate responses (avoidance, reduction, acceptance) ‏ High Risk Low Risk High ImpactLow Impact

9 Computer Security: impact vs. risk Security engineering: –Evaluating risks and impacts of attacks –Deciding appropriate responses (avoidance, reduction, acceptance) ‏ A large-scale virus attack against Microsoft Windows A large-scale spam attackHigh Risk Gaining unauthorised access to Pentagon nuclear weapon systems Gaining unauthorised access to the University's wireless network Low Risk High ImpactLow Impact

10 Some aspects of security Confidentiality Integrity Availability Authentication Non-repudiation

11 Some methods of computer security

12 Authentication Authenticating people, using passwords, biometrics, RSA tokens, smartcards Authenticating platforms, e.g. for network access Authenticating software, before you install it Authenticating services, before you use them

13 Access control Deciding whether an agent can access a resource –agents can be users, or software Deciding whether a packet can reach its destination (firewalls) ‏...

14 Intrusion detection Host intrusion detection –pattern analysis on servers –anti-virus software Network intrusion detection...

15 Cryptography Encryption –Encryption is a method to transform data to render it unusable except by agents possessing certain knowledge, called a key Digital signature –A digital signature is some data that provides evidence that a certain agent asserted certain other data...

16 Who are the attackers? –Used to be: People who get kicks out of vandalism They get attention and the feeling of power –Now it's: Organised criminals They get money

17 Today’s attacker Today’s security

18 How to interpret this mail? From: Verification To: M.d.ryan Subject: Halifax E-mail Verification: m.d.ryan@bham.ac.uk Date: Sun, 26 Oct 2003 06:49:54 +0000 Dear Halifax Bank Member, This email was sent by the Halifax server to verify your e-mail address. You must complete this process by clicking on the link below and entering in the small window your Halifax username and password. This is done for your protection --- because some of our members no longer have access to their email addresses and we must verify it. To verify your e-mail address and access your bank account, click on the link below. If nothing happens when you click on the link (or if you use AOL), copy and paste the link into the address bar of your web browser. http://halifax.co.uk:ac=AA6FDxthlNmaz7OOuYbH@ShOrTwAy.To/x66f94/?7312hL2M5ZHFzNj

19 From: Verification To: M.d.ryan Subject: Halifax E-mail Verification: m.d.ryan@bham.ac.uk Date: Sun, 26 Oct 2003 06:49:54 +0000 Dear Halifax Bank Member, This email was sent by the Halifax server to verify your e-mail address. You must complete this process by clicking on the link below and entering in the small window your Halifax username and password. This is done for your protection --- because some of our members no longer have access to their email addresses and we must verify it. To verify your e-mail address and access your bank account, click on the link below. If nothing happens when you click on the link (or if you use AOL), copy and paste the link into the address bar of your web browser. http://halifax.co.uk:ac=AA6FDxthlNmaz7OOuYbH@ShOrTwAy.To/x66f94/?7312hL2M5ZHFzNj How to interpret this mail?

20 Discussion Phishing: –This is a type of attack known as phishing –It relies on uninformed parties parting with personal details –Phishing attacks cost $500m per year! [The Register, 29/09/04] Syntax: http://a.b@domain.com/path means: –access http://domain.com/path –citing username [ a ] and password [ b ] –http://shortway.to has disappeared, but was available at time of this message. But wait, there’s more…

21 Scenario: Part 2 From: "Halifax plc" Sender: "Halifax plc" To: "mdr@cs.bham.ac.uk" Subject: IMPORTANT NOTICE: From Halifax and Bank of Scotland Date: Sat, 1 Nov 2003 12:24:24 GMT As you may have heard on the news recently a number of fraudulent emails are currently circulating in the UK encouraging bank customers to visit a website where personal card or internet security details are then requested. Please note that we would never send emails that ask you for confidential or personal security information - other than your usual sign-ins to online banking. If you have already received, or receive such an email in the future, please forward this to onlineemailinvestigations@hbosplc.com and then delete it immediately without responding or visiting any site it details. If you are concerned that you may have divulged any personal or security details please call our Helpdesk on 0845 602 0000. Halifax plc. Registered In England No. 2367076. Registered Office: Trinity Road, Halifax, West Yorkshire HX1 2RG. Bank of Scotland. The Governor and Company of the Bank of Scotland, constituted under an Act of Parliament 1695. Head Office: The Mound, Edinburgh EH1 1YZ. Is this real or another fraud?

22 Countermeasures Authenticated email –Digital signatures –Public key certificates Better software –Avoid compromising security for user convenience User education

23 An ongoing saga December 2003, vulnerability announcement: –IE6 can display a different URL in address bar to the one accessed –Same as before, but include non-printing character ( %01 ) before “ @ ” –See: http://www.zapthedingbat.com/security/ex01/vun1.htm September 2004, vulnerability announcement: –JPEG Bug – Attacker can insert malicious code into a JPEG file –File can be e-mailed or downloaded whilst browsing the web –When image is viewed, inserted code is executed –See: http://news.bbc.co.uk/1/hi/technology/3684552.stm

24 An ongoing saga September 2006, vulnerability announcement: –Stack-based buffer overflow in the Vector Graphics Rendering engine (vgx.dll), as used in Microsoft Outlook and Internet Explorer 6.0 on Windows XP SP2, and possibly other versions, allows remote attackers to execute arbitrary code via a Vector Markup Language (VML) file with a long fill parameter within a rect tag. –http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006- 4868

25 The padlock Meaning: https, i.e. traffic between browser and server is encrypted. What if a form is secure (https) but it posts its data back insecurely? How should your browser behave? –It probably means the web designer doesn't understand what s/he is doing, since he is securing the blank form (which is unlikely to be confidential) but then passing the data (likely to be confidential) in the clear. – Tim Williams: "I reported the problem twice [to the web site owners], but they never replied and never bothered fixed the problem."

26 The padlock, continued How do the browsers behave? –IE: initially, warns user about any switch between http and https. Everyone turns this off of course. It doesn't give you any warning after that. –Both KDE Konqueror and Mozilla web browsers warn the user of this particular situation, regardless of whether they have turned off standard warnings. Warning. This is a secure form but it is attempting to send your data back unencrypted. A third party may be able to intercept and view this information. Are you sure you wish to continue? Demo: https://hotstuff.my-place.org.uk/encrypttest.htmlhttps://hotstuff.my-place.org.uk/encrypttest.html

27 Some kinds of attack –Malware –Denial of service –Website defacing –“Social engineering” –Phishing (identity theft) ‏ –Key logging The CIA: –Confidentiality –Integrity –Availability

Download ppt "Introduction Computer Security Threats, Risks, Vulnerabilities and Impacts Mark D. Ryan –"

Similar presentations

Providing protection from potential security threats that exist for any internet-connected computer is termed e- security. It is important to be able to.

Providing protection from potential security threats that exist for any internet-connected computer is termed e- security. It is important to be able to.
Unit 1 Living in the Digital WorldChapter 1 Lets Communicate Internet Safety.

Unit 1 Living in the Digital WorldChapter 1 Lets Communicate Internet Safety.
UNIT 20 The ex-hacker.

UNIT 20 The ex-hacker.
Tips and tools to keep you and your information safe on-line. We will go over a lot of information today, so it is important to pay attention and follow.

Tips and tools to keep you and your information safe on-line. We will go over a lot of information today, so it is important to pay attention and follow.
PHISHING AND ANTI-PHISHING TECHNIQUES Sumanth, Sanath and Anil CpSc 620.

PHISHING AND ANTI-PHISHING TECHNIQUES Sumanth, Sanath and Anil CpSc 620.
What is identity theft, and how can you protect yourself from it?

What is identity theft, and how can you protect yourself from it?
Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.

Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.
Introduction 06-17417 – Computer Security 4 th October 2004 Mark Ryan Computer Security Threats, Risks, Vulnerabilities and.

Introduction – Computer Security 4 th October 2004 Mark Ryan Computer Security Threats, Risks, Vulnerabilities and.
Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services

Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services
What Are Malicious Attacks? Malicious Attacks are any intentional attempts that can compromise the state of your computer. Including but not limited to:

What Are Malicious Attacks? Malicious Attacks are any intentional attempts that can compromise the state of your computer. Including but not limited to:
Wonga example Register Question- What risks do you think businesses face due to IT developments?

Wonga example Register Question- What risks do you think businesses face due to IT developments?
August 15 click! 1 Email Basics Kitsap Regional Library.

August 15 click! 1 Basics Kitsap Regional Library.
FIRST COURSE Computer Concepts Internet and Email Microsoft Office Get to Know Your Computer.

FIRST COURSE Computer Concepts Internet and Microsoft Office Get to Know Your Computer.
Title: The Internet LO: Security risks. Security risks Types of risks: 1.Phishing 2.Pharming 3.Spamming 4.Spyware 5.Cookies 6.Virus.

Title: The Internet LO: Security risks. Security risks Types of risks: 1.Phishing 2.Pharming 3.Spamming 4.Spyware 5.Cookies 6.Virus.
Threats to I.T Internet security By Cameron Mundy.

Threats to I.T Internet security By Cameron Mundy.
SHASHANK MASHETTY Email security. Introduction Electronic mail most commonly referred to as email or e- mail. Electronic mail is one of the most commonly.

SHASHANK MASHETTY security. Introduction Electronic mail most commonly referred to as or e- mail. Electronic mail is one of the most commonly.
E-business Security Dana Vasiloaica Institute of Technology Sligo 22 April 2006.

E-business Security Dana Vasiloaica Institute of Technology Sligo 22 April 2006.
Contents  Viruses Viruses  Computer Worms Computer Worms  Trojans Trojans  Spyware Spyware  Adware Adware  Spam Spam  Hoaxes and Scams Hoaxes and.

Contents  Viruses Viruses  Computer Worms Computer Worms  Trojans Trojans  Spyware Spyware  Adware Adware  Spam Spam  Hoaxes and Scams Hoaxes and.
First Community Bank www.fcbnm.com Prevx Safe Online Rollout & Best Practice Presentation.

First Community Bank Prevx Safe Online Rollout & Best Practice Presentation.
CHC DI Group. What We Will Cover Securing your devices and computers. Passwords. Emails. Safe browsing for shopping and online banks. Social media.

CHC DI Group. What We Will Cover Securing your devices and computers. Passwords. s. Safe browsing for shopping and online banks. Social media.

Similar presentations

Ads by Google