NG HƯ NG H TH TH H N T CH IỆ I C H NH ẠNG T NH N N THẠC HỆ TH NG THÔNG TIN

Size: px
Start display at page:

Download "NG HƯ NG H TH TH H N T CH IỆ I C H NH ẠNG T NH N N THẠC HỆ TH NG THÔNG TIN"

Transcription

1 0 ẠI HỌ QUỐ GIA HÀ ỘI RƯỜG ẠI HỌ ÔG GHỆ G H H G G HƯ G H H H H H IỆ I H H ẠG H H H : HẠ HỆ H G HÔG I H

2 0 ỜI

3 1 Ụ Ụ ỜI... 0 Ụ Ụ... 1 H Ụ G... 3 H Ụ H H H... 4 HƯ G G IH ẠG S S P A V H P P HƯ G H ẠG H I H H...Error! Bookmark not defined.... Error! Bookmark not defined.... Error! Bookmark not defined.... Error! Bookmark not defined.... Error! Bookmark not defined.... Error! Bookmark not defined. HƯ G HƯ G H H H H H... Error! Bookmark not defined. Y... Error! Bookmark not defined. defined. Q Error! Bookmark not... Error! Bookmark not defined.... Error! Bookmark not defined. P... Error! Bookmark not defined.... Error! Bookmark not defined.

4 2 HƯ G HƯ G H H GI H H IH..Error! Bookmark not defined. P... Error! Bookmark not defined. 4.2 V... Error! Bookmark not defined.... Error! Bookmark not defined.... Error! Bookmark not defined.... Error! Bookmark not defined.... Error! Bookmark not defined.... Error! Bookmark not defined. S... Error! Bookmark not defined. HƯ G HƯ G H RI... Error! Bookmark not defined. H... Error! Bookmark not defined.... Error! Bookmark not defined.... Error! Bookmark not defined.... Error! Bookmark not defined. I IỆ H H... 24

5 H Ụ G V 3 A

6 4 H Ụ H H H

7 HƯ G G IH ẠG 1 5. A (hacker) kinh doanh an ninh tro V j, D S G ẹ.

8 S code red DE P F F A& S P F DE SEAL Application Firewall. - P F R IDS R S ure IDS - S IDS - isco Zonebase Policy Firewall - S I O I..

9 7 IP D S G V A F IDS IPS V I ẹ I A. ẹ mechanism) - -to-site IPSec VP - IPS VP - SS VP - GE VP

10 V SAS S A A S V SAS SAS SAS - P Ứ S E Response eam ER) ORRIS DARPA P Ứ S ER ER ER ER H ER - (IS)2: International Information Systems Security ertification onsortium ISSP IS

11 9 H IS IS -InfoSysSec - MIRE (ommon Vulnerabilities and Exposures - VE VE-ID and Security eams, enter for Internet Security (IS). FIRS F f Incident Response

12 10 ISO IE - : - Q : - (compliance): - y ss ontrol): - (risk assessment): - O z S y : - y : - Q y :. - :. - Q : - : - Q :

13 cho., è D., H SSH V! hostname router! ip domain-name example.com! crypto key generate rsa modulus 2048! ip ssh time-out 60 ip ssh authentication-retries 3

14 12 ip ssh source-interface GigabitEthernet 0/1! ip ssh version 2! line vty 0 4 transport input ssh! - ; - P ; - SSH S S ninh V A S y

15 13 D P ER S (ER) Sep15.pdf

16 ninh H A V H A V VISA Kế q V ă 2015 A V - VISA Index V % H Q % % VISA D % D % D ỏ - % - S

17 - ỏ H A A 15? % ả ó 7% ả k ô ỏ A ó 6 % ằ ó 9% k ô Q A D 6 % ợ k ô, ó 8% ú - D A q ặ ẽ M Q. H V

18 ả G q 4 ; 5 A SAS SAS S I W? V???? ỏ V 6 Q 7 Mặ y y 4 M D P F w D S P S y December

19 ô k ò q é yế ị UPP y ị DS ò ị FP ằ é S VER ỏ D S Ê Ỹ H ÔG ƯỢG Ý I 1 UPP DS G 4 FP (brut force login attempt) APAHE Ý II 1 UPP FP (brut force login attempt) qua DS SSH

20 18 5 W HP POS _ Ý III 1 W DS DS SSH Ý I 1 DS DS DS UPP DS DS yế

21 19 V 1: UPP UPP UPP V 2: FP SSH ỏ SSH FP Q H ả ụ ô V AV : - R D P RDP D USD V S V R D P RDP V D ở 3389 RDP 51 y ở 3389 RDP 80 P USD D DD S

22 20 ẳ 8 - AV DD S - - DD S IP I ISP IP I ỏ hack. V " y " y ặ ị q ị x H I 9 H " " - - DD S I V? 1.3 k ả ợ ế ị x

23 21 - W Router WR - R - R ; ; ;. D V ỏ ỏ

24 S. P ß So nh u t ng (Running-config) u nh k n 1.7 V P - - isco WA - R

25 ả ợ - P X ;

26 24 I IỆ H H 1. PGS S (2014), G, HQGH 2. S (2013) HGH 3. V thong-mang-tai-viet-nam-dang-trong-tinh-trang----bo-ngo Jing Zhang, Zakir Durumeric, Michael Bailey, Mingyan Liu, Manish Karir (2014), On the mismanagement and maliciousness of networks. 9. Rostyslav Barabanov (2011), Information Security Metrics - State of the Art 10. isco A Security 2.0 (2016), isco certified etwork Association Security 11. H html ompia Security Enterprise-Security-Baseline-Sep15.pdf

Như ng kiê n thư c câ n biê t vê giâ y phe p cư tru điê n tư (eat)

Như ng kiê n thư c câ n biê t vê giâ y phe p cư tru điê n tư (eat) Như ng kiê n thư c câ n biê t vê giâ y phe p cư tru điê n tư (eat) www.bamf.de/eaufenthaltstitel Mu c lu c Mu c lu c 1 Giâ y phe p cư tru điê n tư 5 2 Tâ m a nh va ca c dâ u ngo n tay 7 3 Ca c qui đi

More information

Lab 2.5.2a Configure SSH

Lab 2.5.2a Configure SSH Lab 2.5.2a Configure SSH Objective Scenario Topology In this lab, the students will complete the following tasks: Configuring a router as a Secure Shell (SSH) server Version 1. Install and configure a

More information

Cloudy With a Chance of Breach Forecasting Cyber Security Incidents

Cloudy With a Chance of Breach Forecasting Cyber Security Incidents Cloudy With a Chance of Breach Forecasting Cyber Security Incidents Manish Karir Yang Liu, Armin Sarabi, Jing Zhang, Parinaz Nagzadeh, Michael Bailey, Mingyan Liu Background Reputation Matters Security

More information

Certificate IV in Business Business Administration

Certificate IV in Business Business Administration Theory Assessment BSBMKG413A Certificate IV in Business Business Administration INSTRUCTOR: INSTRUCTOR S EMAIL: National Code: Unit of Competence: DR. NGHIA TRONG NGUYEN nghiaphd@gmail.com (DBA12 A1 Class)

More information

Network Security Administrator

Network Security Administrator Network Security Administrator Course ID ECC600 Course Description This course looks at the network security in defensive view. The ENSA program is designed to provide fundamental skills needed to analyze

More information

What s Wrong with Information Security Today? You are looking in the wrong places for the wrong things.

What s Wrong with Information Security Today? You are looking in the wrong places for the wrong things. What s Wrong with Information Security Today? You are looking in the wrong places for the wrong things. AGENDA Current State of Information Security Data Breach Statics Data Breach Case Studies Why current

More information

PT Activity: Configure Cisco Routers for Syslog, NTP, and SSH Operations

PT Activity: Configure Cisco Routers for Syslog, NTP, and SSH Operations PT Activity: Configure Cisco Routers for Syslog, NTP, and SSH Operations Instructor Version Topology Diagram Addressing Table Device Interface IP Address Subnet Mask Default Gateway Switch Port R1 FA0/1

More information

Looking at the SANS 20 Critical Security Controls

Looking at the SANS 20 Critical Security Controls Looking at the SANS 20 Critical Security Controls Mapping the SANS 20 to NIST 800-53 to ISO 27002 by Brad C. Johnson The SANS 20 Overview SANS has created the 20 Critical Security Controls as a way of

More information

VLAN Workshop. Presenter: Paul Eriksson. VLAN Workshop 2009 RoamingNet Sweden (www.roamingnet.com) 1

VLAN Workshop. Presenter: Paul Eriksson. VLAN Workshop 2009 RoamingNet Sweden (www.roamingnet.com) 1 VLAN Workshop. Presenter: Paul Eriksson VLAN Workshop 2009 RoamingNet Sweden (www.roamingnet.com) 1 About this presentation A seed from the forum by Randy (Graham)?: http://forum.mikrotik.com/viewtopic.php?f=2&t=24352

More information

Network and Security Controls

Network and Security Controls Network and Security Controls State Of Arizona Office Of The Auditor General Phil Hanus IT Controls Webinar Series Part I Overview of IT Controls and Best Practices Part II Identifying Users and Limiting

More information

PHAT TRIEN TAI CHINH VI MO Of KHU VITC NONG MMlh N01S THOi 1 ~

PHAT TRIEN TAI CHINH VI MO Of KHU VITC NONG MMlh N01S THOi 1 ~ Chu bien: TS. NGUYiN KIM ANH PHAT TRIEN TAI CHINH VI MO Of KHU VITC NONG MMlh N01S THOi 1 ~ IN THE AGRICULTURAL AND RURAL AREAS OF VIETNAM B 376792 NHA XUAT BAN THONG KE HANOI-2010 MUC LUC LQI NOIOAU 3

More information

EC-Council Network Security Administrator (ENSA) Duration: 5 Days Method: Instructor-Led

EC-Council Network Security Administrator (ENSA) Duration: 5 Days Method: Instructor-Led EC-Council Network Security Administrator (ENSA) Duration: 5 Days Method: Instructor-Led Certification: ENSA Exam 312-38 Course Description This course looks at the network security in defensive view.

More information

Lab 8.3.1.2 Configure Basic AP Security through IOS CLI

Lab 8.3.1.2 Configure Basic AP Security through IOS CLI Lab 8.3.1.2 Configure Basic AP Security through IOS CLI Estimated Time: 30 minutes Number of Team Members: Students will work in teams of two. Objective In this lab, the student will learn the following

More information

SECURING YOUR REMOTE DESKTOP CONNECTION

SECURING YOUR REMOTE DESKTOP CONNECTION White Paper SECURING YOUR REMOTE DESKTOP CONNECTION HOW TO PROPERLY SECURE REMOTE ACCESS 2015 SecurityMetrics SECURING YOUR REMOTE DESKTOP CONNECTION 1 SECURING YOUR REMOTE DESKTOP CONNECTION HOW TO PROPERLY

More information

How to integrate RSA ACE Server SecurID Authentication with Juniper Networks Secure Access SSL VPN (SA) with Single Node or Cluster (A/A or A/P)

How to integrate RSA ACE Server SecurID Authentication with Juniper Networks Secure Access SSL VPN (SA) with Single Node or Cluster (A/A or A/P) How to integrate RSA ACE Server SecurID Authentication with Juniper Networks Secure Access SSL VPN (SA) with Single Node or Cluster (A/A or A/P) Scenario # 1: Single Node or Standalone SA... 2 Scenario

More information

ACADEMIA LOCAL CISCO UCV-MARACAY CONTENIDO DE CURSO CURRICULUM CCNA. SEGURIDAD CCNA SECURITY. VERSION 1.0

ACADEMIA LOCAL CISCO UCV-MARACAY CONTENIDO DE CURSO CURRICULUM CCNA. SEGURIDAD CCNA SECURITY. VERSION 1.0 ACADEMIA LOCAL CISCO UCV-MARACAY CONTENIDO DE CURSO CURRICULUM CCNA. SEGURIDAD CCNA SECURITY. VERSION 1.0 Module 1: Vulnerabilities, Threats, and Attacks 1.1 Fundamental Principles of a Secure Network

More information

TotalCloud Phone System

TotalCloud Phone System TotalCloud Phone System Cisco SF 302-08P PoE VLAN Configuration Guide Note: The below information and configuration is for deployment of the Cbeyond managed switch solution using the Cisco 302 8 port Power

More information

CH ENSA EC-Council Network Security Administrator Detailed Course Outline

CH ENSA EC-Council Network Security Administrator Detailed Course Outline CH ENSA EC-Council Network Security Administrator Detailed Course Outline Summary Duration Vendor Audience 5 Days hands-on training EC-Council Security Professionals Level Technology Category Advance Ethical

More information

Secure Shell (SSH) FAQ

Secure Shell (SSH) FAQ Secure Shell (SSH) FAQ Document ID: 19143 Contents Introduction How do I configure SSH terminal line access (also known as reverse telnet)? Is SSH supported on the Catalyst 2900? How can I determine which

More information

INE 2810 Lab Version 1.1

INE 2810 Lab Version 1.1 INE 2810 Lab Version 1.1 I. Objectives II. Story Line III. Background Information IV. Lab Module Outlines Objectives - Let students have hand-on experience on managing routers and switches network monitoring

More information

1.- L a m e j o r o p c ió n e s c l o na r e l d i s co ( s e e x p li c a r á d es p u é s ).

1.- L a m e j o r o p c ió n e s c l o na r e l d i s co ( s e e x p li c a r á d es p u é s ). PROCEDIMIENTO DE RECUPERACION Y COPIAS DE SEGURIDAD DEL CORTAFUEGOS LINUX P ar a p od e r re c u p e ra r nu e s t r o c o rt a f u e go s an t e un d es a s t r e ( r ot u r a d e l di s c o o d e l a

More information

Module 6 Configure Remote Access VPN

Module 6 Configure Remote Access VPN Network Security 2 Module 6 Configure Remote Access VPN Learning Objectives 6.1 Introduction to Cisco Easy VPN 6.2 Configure the Easy VPN Server 6.3 Configure Easy VPN Remote for the Cisco VPN Client 4.x

More information

Critical Controls for Cyber Security. www.infogistic.com

Critical Controls for Cyber Security. www.infogistic.com Critical Controls for Cyber Security www.infogistic.com Understanding Risk Asset Threat Vulnerability Managing Risks Systematic Approach for Managing Risks Identify, characterize threats Assess the vulnerability

More information

Overcoming PCI Compliance Challenges

Overcoming PCI Compliance Challenges Overcoming PCI Compliance Challenges Randy Rosenbaum - Security Services Exec. Alert Logic, CPISM Brian Anderson - Product Manager, Security Services, SunGard AS www.sungardas.com Goal: Understand the

More information

Bottom line you must be compliant. It s the law. If you aren t compliant, you are leaving yourself open to fines, lawsuits and potentially closure.

Bottom line you must be compliant. It s the law. If you aren t compliant, you are leaving yourself open to fines, lawsuits and potentially closure. Payment Card Industry Security Standards Over the past years, a series of new rules and regulations regarding consumer safety and identify theft have been enacted by both the government and the PCI Security

More information

Securing the Connected Enterprise

Securing the Connected Enterprise Securing the Connected Enterprise ABID ALI, Network and Security Consultant. Why Infrastructure Matters Rapidly Growing Markets Global Network Infrastructure and Security Markets 13.7% CAGR over the next

More information

Networking: EC Council Network Security Administrator NSA

Networking: EC Council Network Security Administrator NSA coursemonster.com/uk Networking: EC Council Network Security Administrator NSA View training dates» Overview The EC-Council's NSA certification looks at network security from a defensive view. The NSA

More information

FortyCloud Installation Guide. Installing FortyCloud Gateways Using AMIs (AWS Billing)

FortyCloud Installation Guide. Installing FortyCloud Gateways Using AMIs (AWS Billing) FortyCloud Installation Guide Installing FortyCloud Gateways Using AMIs (AWS Billing) Date Version Changes 9/29/2015 2.0 2015 FortyCloud Ltd. 15 Berkshire Road Mansfield, MA 02048 USA 1 P a g e Introduction

More information

Westpac Merchant. A guide to meeting the new Payment Card Industry Security Standards

Westpac Merchant. A guide to meeting the new Payment Card Industry Security Standards Westpac Merchant A guide to meeting the new Payment Card Industry Security Standards Contents Introduction 01 What is PCIDSS? 02 Why does it concern you? 02 What benefits will you receive from PCIDSS?

More information

Configuring IPSec VPN Tunnel between NetScreen Remote Client and RN300

Configuring IPSec VPN Tunnel between NetScreen Remote Client and RN300 Configuring IPSec VPN Tunnel between NetScreen Remote Client and RN300 This example explains how to configure pre-shared key based simple IPSec tunnel between NetScreen Remote Client and RN300 VPN Gateway.

More information

Penetration testing & Ethical Hacking. Security Week 2014

Penetration testing & Ethical Hacking. Security Week 2014 Penetration testing & Ethical Hacking Security Week 2014 Agenda Penetration Testing Vulnerability Scanning Social engineering Security Services offered by Endava 2 3 Who I am Catanoi Maxim Information

More information

VPN. VPN For BIPAC 741/743GE

VPN. VPN For BIPAC 741/743GE VPN For BIPAC 741/743GE August, 2003 1 The router supports VPN to establish secure, end-to-end private network connections over a public networking infrastructure. There are two types of VPN connections,

More information

Case Study for Layer 3 Authentication and Encryption

Case Study for Layer 3 Authentication and Encryption CHAPTER 2 Case Study for Layer 3 Authentication and Encryption This chapter explains the basic tasks for configuring a multi-service, extranet Virtual Private Network (VPN) between a Cisco Secure VPN Client

More information

PCI Security Scan Procedures. Version 1.0 December 2004

PCI Security Scan Procedures. Version 1.0 December 2004 PCI Security Scan Procedures Version 1.0 December 2004 Disclaimer The Payment Card Industry (PCI) is to be used as a guideline for all entities that store, process, or transmit Visa cardholder data conducting

More information

LAN-Cell to Cisco Tunneling

LAN-Cell to Cisco Tunneling LAN-Cell to Cisco Tunneling Page 1 of 13 LAN-Cell to Cisco Tunneling This Tech Note guides you through setting up a VPN connection between a LAN-Cell and a Cisco router. As the figure below shows, the

More information

Demystifying Penetration Testing for the Enterprise. Presented by Pravesh Gaonjur

Demystifying Penetration Testing for the Enterprise. Presented by Pravesh Gaonjur Demystifying Penetration Testing for the Enterprise Presented by Pravesh Gaonjur Pravesh Gaonjur Founder and Executive Director of TYLERS Information Security Consultant Certified Ethical Hacker (CEHv8Beta)

More information

Things I can do to protect my network from getting Hacked!!!!!! Jazib Frahim, Technical Leader

Things I can do to protect my network from getting Hacked!!!!!! Jazib Frahim, Technical Leader Things I can do to protect my network from getting Hacked!!!!!! Jazib Frahim, Technical Leader Cisco Support Community Expert Series Webcast Today s featured expert is Cisco Technical Leader Ask him questions

More information

How To Protect Your Credit Card Information From Being Stolen

How To Protect Your Credit Card Information From Being Stolen Visa Account Information Security Tool Kit Welcome to the Visa Account Information Security Program 2 Contents 1. Securing cardholder data is everyone s concern 4 2. Visa Account Information Security (AIS)

More information

What IT Auditors Need to Know About Secure Shell. SSH Communications Security

What IT Auditors Need to Know About Secure Shell. SSH Communications Security What IT Auditors Need to Know About Secure Shell SSH Communications Security Agenda Secure Shell Basics Security Risks Compliance Requirements Methods, Tools, Resources What is Secure Shell? A cryptographic

More information

During this lab time you will configure the routing protocol OSPF with IPv4 addresses.

During this lab time you will configure the routing protocol OSPF with IPv4 addresses. Lab 2: OSPF During this lab time you will configure the routing protocol OSPF with IPv4 addresses. It is your responsibility to create an appropriate IPv4 subnet plan and address plan. To ensure a timely

More information

SCHOOL PESTICIDE SAFETY AN D IN TEG R ATED PEST M AN AG EM EN T Statutes put into law by the Louisiana Department of Agriculture & Forestry to ensure the safety and well-being of children and school personnel

More information

- The PIX OS Command-Line Interface -

- The PIX OS Command-Line Interface - 1 PIX OS Versions - The PIX OS Command-Line Interface - The operating system for Cisco PIX/ASA firewalls is known as the PIX OS. Because the PIX product line was acquired and not originally developed by

More information

SHODAN for Penetration Testers. Michael theprez98 Schearer

SHODAN for Penetration Testers. Michael theprez98 Schearer SHODAN for Penetration Testers Michael theprez98 Schearer SHODAN for Penetration Testers What is SHODAN? Basic Operations Penetration Testing Case Study 1: Cisco Devices Case Study 2: Default Passwords

More information

Asheville-Buncombe Technical Community College Department of Networking Technology. Course Outline

Asheville-Buncombe Technical Community College Department of Networking Technology. Course Outline Course Number: SEC 150 Course Title: Security Concepts Hours: 2 Lab Hours: 2 Credit Hours: 3 Course Description: This course provides an overview of current technologies used to provide secure transport

More information

Applying the 80/20 approach for Operational Excellence. How to combat new age threats, optimize investments and increase security.

Applying the 80/20 approach for Operational Excellence. How to combat new age threats, optimize investments and increase security. Applying the 80/20 approach for Operational Excellence How to combat new age threats, optimize investments and increase security Vinod Vasudevan Agenda Current Threat Landscape The 80/20 Approach Achieving

More information

Mục lục chương trình SEO- SMO PRO k15 Update : Oct 1 st 2012

Mục lục chương trình SEO- SMO PRO k15 Update : Oct 1 st 2012 Mục lục chương trình SEO- SMO PRO k15 Update : Oct 1 st 2012 Buổi 1:Giới thiệu Tổng quan về SEO & Chiến lược SEO 17h 45-18h : Đón tiếp, đăng ký 18h -18h15 : Giới thiệu các khách mời và thành phần Giảng

More information

Configuring Personal Firewalls and Understanding IDS. Securing Networks Chapter 3 Part 2 of 4 CA M S Mehta, FCA

Configuring Personal Firewalls and Understanding IDS. Securing Networks Chapter 3 Part 2 of 4 CA M S Mehta, FCA Configuring Personal Firewalls and Understanding IDS Securing Networks Chapter 3 Part 2 of 4 CA M S Mehta, FCA 1 Configuring Personal Firewalls and IDS Learning Objectives Task Statements 1.4 Analyze baseline

More information

How To File A Workers Compensation Claim In Texas

How To File A Workers Compensation Claim In Texas Texas Department of Insurance Division of Workers Compensation 7551 Metro Center Drive, Suite 100 MS-96 Austin, TX 78744-1645 (800) 372-7713 phone (512) 804-4146 fax Employer Notice of No Coverage or Termination

More information

CDW Advanced Image Deployment Service Customer Guide

CDW Advanced Image Deployment Service Customer Guide CDW Advanced Image Deployment Service Customer Guide Contents Service Description... 2 Image Deployment Solutions... 2 Why would my organization use this service?... 2 Benefits of Advanced Imaging over

More information

CCNA Security. Chapter Two Securing Network Devices. 2009 Cisco Learning Institute.

CCNA Security. Chapter Two Securing Network Devices. 2009 Cisco Learning Institute. CCNA Security Chapter Two Securing Network Devices 1 The Edge Router What is the edge router? - The last router between the internal network and an untrusted network such as the Internet - Functions as

More information

Campus Sustainability Assessment and Related Literature

Campus Sustainability Assessment and Related Literature Campus Sustainability Assessment and Related Literature An Annotated Bibliography and Resource Guide Andrew Nixon February 2002 Campus Sustainability Assessment Review Project Telephone: (616) 387-5626

More information

Case Study: Security Implementation for a Non-Profit Hospital

Case Study: Security Implementation for a Non-Profit Hospital Case Study: Security Implementation for a Non-Profit Hospital The Story Security Challenges and Analysis The Case The Clone Solution The Results The Story About the hospital A private, not-for-profit hospital

More information

Protecting Your Data From The Inside Out UBA, Insider Threats and Least Privilege in only 10 minutes!

Protecting Your Data From The Inside Out UBA, Insider Threats and Least Privilege in only 10 minutes! We protect your most sensitive information from insider threats. Protecting Your Data From The Inside Out UBA, Insider Threats and Least Privilege in only 10 minutes! VARONIS SYSTEMS About Me Dietrich

More information

Computer Security Lecture 13

Computer Security Lecture 13 Computer Security Lecture 13 Risk Analysis Erland Jonsson (based on material from Lawrie Brown) Department of Computer Science and Engineering Chalmers University of Technology Sweden Security Management

More information

Table of Contents. FME Cloud Architecture Overview. Secure Operations. Application Security. Shared Responsibility.

Table of Contents. FME Cloud Architecture Overview. Secure Operations. Application Security. Shared Responsibility. FME Cloud Security Table of Contents FME Cloud Architecture Overview Secure Operations I. Backup II. Data Governance and Privacy III. Destruction of Data IV. Incident Reporting V. Development VI. Customer

More information

Windows Remote Access

Windows Remote Access Windows Remote Access A newsletter for IT Professionals Education Sector Updates Issue 1 I. Background of Remote Desktop for Windows Remote Desktop Protocol (RDP) is a proprietary protocol developed by

More information

Cisco Configuring Secure Shell (SSH) on Cisco IOS Router

Cisco Configuring Secure Shell (SSH) on Cisco IOS Router Cisco Configuring Secure Shell (SSH) on Cisco IOS Router Table of Contents Configuring Secure Shell (SSH) on Cisco IOS Routers...1 Contents...1 Introduction...1 Hardware and Software Versions...1 SSHv1

More information

Cybercrime myths, challenges and how to protect our business. Vladimir Kantchev Managing Partner Service Centrix

Cybercrime myths, challenges and how to protect our business. Vladimir Kantchev Managing Partner Service Centrix Cybercrime myths, challenges and how to protect our business Vladimir Kantchev Managing Partner Service Centrix Agenda Cybercrime today Sources and destinations of the attacks Breach techniques How to

More information

Table of Contents. Cisco Configuring IPSec Cisco Secure VPN Client to Central Router Controlling Access

Table of Contents. Cisco Configuring IPSec Cisco Secure VPN Client to Central Router Controlling Access Table of Contents Configuring IPSec Cisco Secure VPN Client to Central Router Controlling Access...1 Introduction...1 Prerequisites...1 Requirements...1 Components Used...1 Conventions...1 Configure...2

More information

Citibank Credit Card Terms and Conditions.

Citibank Credit Card Terms and Conditions. Có hi u l c t ngày 02 tháng 06 n m 2014 Citibank Credit Card Terms and Conditions. Effective 02 June 2014 Trân tr ng c m n Quý khách đã l a ch n s d ng Th Tín d ng Citibank. Vi c đ c và hi u các Đi u kho

More information

A43. Modern Hacking Techniques and IP Security. By Shawn Mullen. Las Vegas, NV IBM TRAINING. IBM Corporation 2006

A43. Modern Hacking Techniques and IP Security. By Shawn Mullen. Las Vegas, NV IBM TRAINING. IBM Corporation 2006 IBM TRAINING A43 Modern Hacking Techniques and IP Security By Shawn Mullen Las Vegas, NV 2005 CSI/FBI US Computer Crime and Computer Security Survey 9 out of 10 experienced computer security incident in

More information

Configuring Secure Shell on Routers and Switches Running Cisco IOS

Configuring Secure Shell on Routers and Switches Running Cisco IOS Configuring Secure Shell on Routers and Switches Running Cisco IOS Document ID: 4145 Contents Introduction Prerequisites Requirements Components Used Conventions SSH v1 vs. SSH v2 Network Diagram Test

More information

Feature Brief. FortiGate TM Multi-Threat Security System v3.00 MR5 Rev. 1.1 July 20, 2007

Feature Brief. FortiGate TM Multi-Threat Security System v3.00 MR5 Rev. 1.1 July 20, 2007 Feature Brief FortiGate TM Multi-Threat Security System v3.00 MR5 Rev. 1.1 July 20, 2007 Revision History Revision Change Description 1.0 Initial Release. 1.1 Removed sectoin on Content Archive and AV

More information

ICND1-100-101 IOS CLI Study Guide (CCENT)

ICND1-100-101 IOS CLI Study Guide (CCENT) ICND1-100-101 IOS CLI Study Guide (CCENT) Hostname: 2. hostname SW1 SWITCH CONFIGURATION Mgmt IP: 2. interface vlan 1 3. ip address 10.0.0.2 4. no shut Gateway: 2. ip default-gateway 10.0.0.1 Local User/Pwd:

More information

C o a t i a n P u b l i c D e b tm a n a g e m e n t a n d C h a l l e n g e s o f M a k e t D e v e l o p m e n t Z a g e bo 8 t h A p i l 2 0 1 1 h t t pdd w w wp i j fp h D p u b l i c2 d e b td S t

More information

WHM Administrator s Guide

WHM Administrator s Guide Fasthosts Customer Support WHM Administrator s Guide This manual covers everything you need to know in order to get started with WHM and perform day to day administrative tasks. Contents Introduction...

More information

Lab 8.3.3b Configuring a Remote Router Using SSH

Lab 8.3.3b Configuring a Remote Router Using SSH Lab 8.3.3b Configuring a Remote Router Using SSH Objectives Use SDM to configure a router to accept SSH connections. Configure SSH client software on a PC. Establish a connection to a Cisco ISR using SSH

More information

Grandstream Networks, Inc. UCM6100 Security Manual

Grandstream Networks, Inc. UCM6100 Security Manual Grandstream Networks, Inc. UCM6100 Security Manual Index Table of Contents OVERVIEW... 3 WEB UI ACCESS... 4 UCM6100 HTTP SERVER ACCESS... 4 PROTOCOL TYPE... 4 USER LOGIN... 4 LOGIN TIMEOUT... 5 TWO-LEVEL

More information

THE OPEN UNIVERSITY OF TANZANIA

THE OPEN UNIVERSITY OF TANZANIA THE OPEN UNIVERSITY OF TANZANIA Institute of Educational and Management Technologies COURSE OUTLINES FOR DIPLOMA IN COMPUTER SCIENCE 2 nd YEAR (NTA LEVEL 6) SEMESTER I 06101: Advanced Website Design Gather

More information

Exam Questions SY0-401

Exam Questions SY0-401 Exam Questions SY0-401 CompTIA Security+ Certification http://www.2passeasy.com/dumps/sy0-401/ 1. A company has implemented PPTP as a VPN solution. Which of the following ports would need to be opened

More information

TechGuard Firewall Products Specs/Parts/Competitive Analysis

TechGuard Firewall Products Specs/Parts/Competitive Analysis TechGuard Firewall Products Specs/Parts/Competitive Analysis 2003 TechGuard Security, LLC TechGuard Great Walls of Fire Firewalls The Great Walls of Fire firewall is a high performance Internet gateway,

More information

Creating Stronger, Safer, Web Facing Code. JPL IT Security Mary Rivera June 17, 2011

Creating Stronger, Safer, Web Facing Code. JPL IT Security Mary Rivera June 17, 2011 Creating Stronger, Safer, Web Facing Code JPL IT Security Mary Rivera June 17, 2011 Agenda Evolving Threats Operating System Application User Generated Content JPL s Application Security Program Securing

More information

SingTel VPN as a Service. Quick Start Guide

SingTel VPN as a Service. Quick Start Guide SingTel VPN as a Service Quick Start Guide Document Control # Date of Release Version # 1 25 April 2014 PT_SN20_1.0 2 3 4 5 6 Page Affected Remarks 2/33 Table of Contents 1. SingTel VPN as a Service Administration...

More information

BYOD and Your Business

BYOD and Your Business BYOD and Your Business Learn about the BYOD trend, the risks associated with this trend, and how to successfully adopt BYOD while securing your network. Agenda The rise of BYOD Security risks associated

More information

TELNET CLIENT 5.11 SSH SUPPORT

TELNET CLIENT 5.11 SSH SUPPORT TELNET CLIENT 5.11 SSH SUPPORT This document provides information on the SSH support available in Telnet Client 5.11 This document describes how to install and configure SSH support in Wavelink Telnet

More information

REGULATIONS FOR THE SECURITY OF INTERNET BANKING

REGULATIONS FOR THE SECURITY OF INTERNET BANKING REGULATIONS FOR THE SECURITY OF INTERNET BANKING PAYMENT SYSTEMS DEPARTMENT STATE BANK OF PAKISTAN Table of Contents PREFACE... 3 DEFINITIONS... 4 1. SCOPE OF THE REGULATIONS... 6 2. INTERNET BANKING SECURITY

More information

ASA 8.x: VPN Access with the AnyConnect VPN Client Using Self Signed Certificate Configuration Example

ASA 8.x: VPN Access with the AnyConnect VPN Client Using Self Signed Certificate Configuration Example ASA 8.x: VPN Access with the AnyConnect VPN Client Using Self Signed Certificate Configuration Example Document ID: 99756 Contents Introduction Prerequisites Requirements Components Used Conventions Background

More information

How To Protect Your Network From Attack From Outside From Inside And Outside

How To Protect Your Network From Attack From Outside From Inside And Outside IT 4823 Information Security Administration Firewalls and Intrusion Prevention October 7 Notice: This session is being recorded. Lecture slides prepared by Dr Lawrie Brown for Computer Security: Principles

More information

Opengear Application Note

Opengear Application Note Opengear Application Note Jared Mallett - Product Marketing Manager How to Implement Cellular Out-Of-Band Connectivity to Manage Your Distributed IT Infrastructure using Opengear Advanced Cellular Routers

More information

Configuring SSH Sentinel VPN client and D-Link DFL-500 Firewall

Configuring SSH Sentinel VPN client and D-Link DFL-500 Firewall Configuring SSH Sentinel VPN client and D-Link DFL-500 Firewall I. Configuring D-Link DFL-500 Firewall 1. Connect your computer to the internal port of the DFL-500 Firewall 2. Change the computer IP address

More information

How To Integrate Security Into Your Application Development

How To Integrate Security Into Your Application Development Six Best Practices of IT Security 187 Ballardvale Street, Wilmington, MA 01887 +1.978.694.1008 2 Table of Contents 1. Make a Self-Assessment...3 2. Believe the Application Security Hype...3 3. Ask Tough

More information

. g .,, . . , Applicability of

More information

Developing an Architectural Framework towards achieving Cyber Resiliency. Presented by Deepak Singh

Developing an Architectural Framework towards achieving Cyber Resiliency. Presented by Deepak Singh Developing an Architectural Framework towards achieving Cyber Resiliency Presented by Deepak Singh Presentation Content Cyber Threat Landscape Cyber Attack and Threat Profile Cyber Threat Map Cyber Security

More information

Using Remote Desktop with No-IP

Using Remote Desktop with No-IP Page 1 of 6 Lost Password? Sign-up Now!. com Support : Guides and Tips : Remote Access : Using Remote Desktop with No-IP Overview The use of Microsoft's Remote Desktop Connection to access another computer

More information

TECHNICAL WHITE PAPER. Symantec pcanywhere Security Recommendations

TECHNICAL WHITE PAPER. Symantec pcanywhere Security Recommendations TECHNICAL WHITE PAPER Symantec pcanywhere Security Recommendations Technical White Paper Symantec pcanywhere Security Recommendations Introduction... 3 pcanywhere Configuration Recommendations... 4 General

More information

Workflow Guide. Establish Site-to-Site VPN Connection using RSA Keys. For Customers with Sophos Firewall Document Date: November 2015

Workflow Guide. Establish Site-to-Site VPN Connection using RSA Keys. For Customers with Sophos Firewall Document Date: November 2015 Workflow Guide Establish Site-to-Site VPN Connection using RSA Keys For Customers with Sophos Firewall Document Date: November 2015 November 2015 Page 1 of 10 Establish Site-to-Site VPN Connection using

More information

HOW SECURE IS YOUR PAYMENT CARD DATA?

HOW SECURE IS YOUR PAYMENT CARD DATA? HOW SECURE IS YOUR PAYMENT CARD DATA? October 27, 2011 MOSS ADAMS LLP 1 TODAY S PRESENTERS Francis Tam, CPA, CISA, CISM, CITP, CRISC, PCI QSA Managing Director PCI Practice Leader Kevin Villanueva,, CISSP,

More information

Overview of Network Security The need for network security Desirable security properties Common vulnerabilities Security policy designs

Overview of Network Security The need for network security Desirable security properties Common vulnerabilities Security policy designs Overview of Network Security The need for network security Desirable security properties Common vulnerabilities Security policy designs Why Network Security? Keep the bad guys out. (1) Closed networks

More information

How to Configure Active Directory based User Authentication

How to Configure Active Directory based User Authentication How to Configure Active Directory based User Authentication You Must Have: Microsoft server with Active Directory configured. Windows 2000 Server is configured as Active Directory server in this example.

More information

z/os Security - FTP Logon Failures

z/os Security - FTP Logon Failures Page 1 of 5 CLEVER Solutions Empowering Global Enterprise z/os Security: FTP Logon Failures Dear Cathy, Does your business have a laissez faire attitude toward z/os security? Most companies do because

More information

CURRENT STATUS OF WIND POWER DEVELOPMENT IN VIETNAM

CURRENT STATUS OF WIND POWER DEVELOPMENT IN VIETNAM MINISTRY OF INDUSTRY AND TRADE General Department of Energy CURRENT STATUS OF WIND POWER DEVELOPMENT IN VIETNAM Pham Trong Thuc Director of Department of New and Renewable Energies June 2015 AGENDA 1.

More information

Beyond Check The Box

Beyond Check The Box Beyond Check The Box Powering Intrusion Investigations PRESENTED BY: Jim Aldridge 27 MARCH 2014 Five Important Capabilities Mapping an IP address to a hostname Identifying the systems to which a specified

More information

CUSTOMER INFORMATION SECURITY AWARENESS TRAINING

CUSTOMER INFORMATION SECURITY AWARENESS TRAINING CUSTOMER INFORMATION SECURITY AWARENESS TRAINING IN T RO DUCT ION T h i s c o u r s e i s d e s i g n e d to p r o v i d e yo u w i t h t h e k n o w l e d g e to p r o t e c t y o u r p e r s o n a l

More information

PCI Compliance. Top 10 Questions & Answers

PCI Compliance. Top 10 Questions & Answers PCI Compliance Top 10 Questions & Answers 1. What is PCI Compliance and PCI DSS? 2. Who needs to follow the PCI Data Security Standard? 3. What happens if I don t comply? 4. What are the basic requirements

More information

Configure an IPSec Tunnel between a Firebox Vclass & a Check Point FireWall-1

Configure an IPSec Tunnel between a Firebox Vclass & a Check Point FireWall-1 Configure an IPSec Tunnel between a Firebox Vclass & a Check Point FireWall-1 This document describes how to configure an IPSec tunnel between a WatchGuard Firebox Vclass appliance (Vcontroller version

More information

Virtual Server and DDNS. Virtual Server and DDNS. For BIPAC 741/743GE

Virtual Server and DDNS. Virtual Server and DDNS. For BIPAC 741/743GE Virtual Server and DDNS For BIPAC 741/743GE August, 2003 1 Port Number In TCP/IP and UDP networks, a port is a 16-bit number, used by the host-to-host protocol to identify to which application program

More information

/ BROCHURE / CHECKLIST: PCI/ISO COMPLIANCE. By Melbourne IT Enterprise Services

/ BROCHURE / CHECKLIST: PCI/ISO COMPLIANCE. By Melbourne IT Enterprise Services / BROCHURE / CHECKLIST: PCI/ISO COMPLIANCE By Melbourne IT Enterprise Services CHECKLIST: PCI/ISO COMPLIANCE If your business handles credit card transactions then you ve probably heard of the Payment

More information