Presentation is loading. Please wait.

Presentation is loading. Please wait.

Intro to Network Security. Vocabulary Vulnerability Weakness that can be compromised Threat A method to exploit a vulnerability Attack Use of one or more.

Published byKellie Barber Modified over 8 years ago

Similar presentations

Presentation on theme: "Intro to Network Security. Vocabulary Vulnerability Weakness that can be compromised Threat A method to exploit a vulnerability Attack Use of one or more."— Presentation transcript:

1 Intro to Network Security

2 Vocabulary Vulnerability Weakness that can be compromised Threat A method to exploit a vulnerability Attack Use of one or more threats Countermeasure Action taken to protect from vulnerabilities

3 Threats to System Security Viruses Technically a malicious program which must run to spread itself General use: any malicious program Worm Once started, spreads itself through network Trojan Horse Something that looks good to begin with, but beats you up later Logic Bomb Waits for a trigger and then detonates. Trigger could be date, data, and/or combination of events.

4 Threats to Internet Security System Vulnerabilities A trusted Computer is compromised. Holy Grail is to get the administrative account Application Vulnerabilities Network services User applications Network Vulnerabilities Denial of Service Packet Sniffing Brute Force Attack Brute Force

5 System Countermeasures OS updates particularly Microsoft Antivirus Software System Software Firewall (helps keep out the worms) Disaster Recovery Preparation: Expect the Worst.

6 Network Security Countermeasures Intrusion Detection System Sniffer: listens to packets looking for attack. Tripwire: Lets you know system has been altered. If you don’t know you have been compromised, you can’t recover from it. Sniffing IDS can indicate source and nature of attack. Sniffing IDS that sends an alarm thwarts a coverup. See snort.org

7 Network Countermeasures continued Run only needed services. If the service isn’t running it can’t be exploited Update service frequently, especially after a vulnerability discovery. Application Sercurity Look for updates: especially Microsoft. Disable scripting features if not used.

8 Network Countermeasures still continued DDOS attacks are out of your control. You can secure the server, but the network? Firewall filter is too late. Traceback or Packet tagging must occur “in the cloud.” Stop the Zombies! Stop the Zombies!

9 Packet Sniffing Network sniffing for passords or worse Inside Job Threat has been greatly lessened due to switching Switches can still be compromised Arp spoofing MAC Flooding

10 Brute Force Attacks Use secure Passwords. See 10 Most Common PasswordsSee 10 Most Common Passwords Set (stateful) Firewall Rules to limit logins from 1 host (I use 3 attempts/minute) Account Lockouts CAPTCHA: Those annoying pictures where you have to “GUESS” what the letters are in the picture.

11 Anatomy of an Attack 1. Target Selection 2. Information Gathering Information Gathering 3. Port Scan/Vulnerability Assessment 4. Penetration: successful attack 5. Persist : backdoor 6. Propogate: use trusted machine to spread 7. Payload: DDOS, Surveillance, theft of information, make phone calls,

Download ppt "Intro to Network Security. Vocabulary Vulnerability Weakness that can be compromised Threat A method to exploit a vulnerability Attack Use of one or more."

Similar presentations

Net security - budi rahardjo Overview of Network Security Budi Rahardjo CISCO seminar 13 March 2002.

Net security - budi rahardjo Overview of Network Security Budi Rahardjo CISCO seminar 13 March 2002.
Hackers, Crackers, and Network Intruders: Heroes, villains, or delinquents? Tim McLaren Thursday, September 28, 2000 McMaster University.

Hackers, Crackers, and Network Intruders: Heroes, villains, or delinquents? Tim McLaren Thursday, September 28, 2000 McMaster University.
CHAPTER 2 KNOW YOUR VILLAINS. Who writes it: Malware writers vary in age, income level, location, social/peer interaction, education level, likes, dislikes.

CHAPTER 2 KNOW YOUR VILLAINS. Who writes it: Malware writers vary in age, income level, location, social/peer interaction, education level, likes, dislikes.
1 Topic 1 – Lesson 3 Network Attacks Summary. 2 Questions ► Compare passive attacks and active attacks ► How do packet sniffers work? How to mitigate?

1 Topic 1 – Lesson 3 Network Attacks Summary. 2 Questions ► Compare passive attacks and active attacks ► How do packet sniffers work? How to mitigate?
INDEX  Ethical Hacking Terminology.  What is Ethical hacking?  Who are Ethical hacker?  How many types of hackers?  White Hats (Ethical hackers)

INDEX  Ethical Hacking Terminology.  What is Ethical hacking?  Who are Ethical hacker?  How many types of hackers?  White Hats (Ethical hackers)
1 Protecting Your Computer Internet Annoyances (Already done in Chapter 3) Spam Pop-ups Identity theft phishing hoaxes Spyware.

1 Protecting Your Computer Internet Annoyances (Already done in Chapter 3) Spam Pop-ups Identity theft phishing hoaxes Spyware.
Software Security Threats Threats have been an issue since computers began to be used widely by the general public.

Software Security Threats Threats have been an issue since computers began to be used widely by the general public.
Introduction to Security Computer Networks Computer Networks Term B10.

Introduction to Security Computer Networks Computer Networks Term B10.
Security: Attacks. 2 Trojan Horse Malicious program disguised as an innocent one –Could modify/delete user’s file, send important info to cracker, etc.

Security: Attacks. 2 Trojan Horse Malicious program disguised as an innocent one –Could modify/delete user’s file, send important info to cracker, etc.
How You Can Protect Yourself from Cyber-Attacks Ian G. Harris Department of Computer Science University of California Irvine Irvine, CA 92697 USA

How You Can Protect Yourself from Cyber-Attacks Ian G. Harris Department of Computer Science University of California Irvine Irvine, CA USA
Copyright © 1995-2009 Clifford Neuman - UNIVERSITY OF SOUTHERN CALIFORNIA - INFORMATION SCIENCES INSTITUTE USC CSci530 Computer Security Systems Lecture.

Copyright © Clifford Neuman - UNIVERSITY OF SOUTHERN CALIFORNIA - INFORMATION SCIENCES INSTITUTE USC CSci530 Computer Security Systems Lecture.
Attacks and Malicious Code Chapter 3. Learning Objectives Explain denial-of-service (DoS) attacks Explain and discuss ping-of-death attacks Identify major.

Attacks and Malicious Code Chapter 3. Learning Objectives Explain denial-of-service (DoS) attacks Explain and discuss ping-of-death attacks Identify major.
Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.

Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.
100% Security “ The only system which is truly secure is one which is switched off and unplugged, locked in a titanium lined safe, buried in a concrete.

100% Security “ The only system which is truly secure is one which is switched off and unplugged, locked in a titanium lined safe, buried in a concrete.
Lesson 10 – SECURING YOUR NETWORK Security devices Internal security External security Viruses and other malicious software OVERVIEW.

Lesson 10 – SECURING YOUR NETWORK Security devices Internal security External security Viruses and other malicious software OVERVIEW.
COEN 252: Computer Forensics Router Investigation.

COEN 252: Computer Forensics Router Investigation.
Network Infrastructure Security. LAN Security Local area networks facilitate the storage and retrieval of programs and data used by a group of people.

Network Infrastructure Security. LAN Security Local area networks facilitate the storage and retrieval of programs and data used by a group of people.
R. FRANK NIMS MIDDLE SCHOOL A BRIEF INTRODUCTION TO VIRUSES.

R. FRANK NIMS MIDDLE SCHOOL A BRIEF INTRODUCTION TO VIRUSES.
Internet Safety CSA 105 1.0 September 21, 2010. Internet Threats Malware (viruses) Spyware Spam Hackers Cyber-criminals.

Internet Safety CSA September 21, Internet Threats Malware (viruses) Spyware Spam Hackers Cyber-criminals.
Attacks and Malicious Code Chapter 3. Learning Objectives Explain denial-of-service (DoS) attacks Explain and discuss ping-of-death attacks Identify major.

Attacks and Malicious Code Chapter 3. Learning Objectives Explain denial-of-service (DoS) attacks Explain and discuss ping-of-death attacks Identify major.

Similar presentations

Ads by Google