Lecture II : Communication Security Services

Size: px

Start display at page:

Download "Lecture II : Communication Security Services"

Claude Parrish
8 years ago
Views:

1 Lecture II : Communication Security Services Internet Security: Principles & Practices John K. Zao, PhD (Harvard) SMIEEE Computer Science Department, National Chiao Tung University

2 2 What is Communication Security? To provide safe communication over unsafe media Alice Eve Safe Communication Bob Alice can send a message to Bob that only Bob can understand Confidentiality Nobody can tamper with message content during communication Integrity Bob can know for sure it was Alice who sent the message Authentication Unsafe Media Medium over which passive and active attacks are possible

message to Bob that only Bob can understand Confidentiality Nobody can tamper with message content

3 Network (Communication) Security Model

4 Passive Attacks

5 Active Attacks

6 6 X.800 : Security Architecture Security Services Different kinds of security protection Service Types Service Layer Mapping Security Mechanisms Different ways to implement security protection Mechanism Definition Service - Mechanism Mapping

Mapping Security Mechanisms Different ways to implement

7 7 Communication Security Services Confidentiality Data Confidentiality Traffic Confidentiality Data Integrity Authentication Data Origin Authentication Peer Authentication Access Control Non-Repudiation Audit Non-Repudiation of Origin Non-Repudiation of Reception Primary Services Availability an after-thought but increasingly important Note: all services are defined here in context of Communication Security

Audit Non-Repudiation of Origin Non-Repudiation of Reception Primary Services Availability an

8 8 Confidentiality Protection of information from disclosure to unauthorized entities (organizations, people, machines, processes). Information includes data contents, size, existence, communication characteristics, etc. Service Types Data Confidentiality / Disclosure Protection Connection Oriented Connectionless Selective Field Traffic Flow Confidentiality Origin Destination Association Message Size Transmission Patterns Accompanied with Data Integrity Protection Mechanisms Data Encryption Symmetric (Secret-Key) Asymmetric (Public-Key)

Service Types Data Confidentiality / Disclosure Protection Connection Oriented Connectionless Selective Field Traffic Flow

9 9 Integrity Protection of data against creation, alteration, deletion, duplication, reordering by unauthorized entities (organizations, people, machines, processes). Integrity violation is always caused by active attacks. Service Types Message Integrity Associated with connectionless communication Message Stream Integrity Associated with connection oriented communication Protection Mechanisms Message Digests (Hashing) Sequence Numbers Nonce ID (Random Number) Time Stamps

Service Types Message Integrity Associated with connectionless communication Message Stream Integrity Associated with

10 10 Authentication Communicating entities are provided with assurance & information of relevant identities of communicating partners (people, machines, processes). Personnel Authentication requires special attention. Service Types Data Origin Authentication Associated with Connectionless Communication Peer Entity Authentication Associated with Connection Oriented Communication Fundamental for access control hence, confidentiality & integrity Protection Mechanisms Password Manual One-Time Password Key Sharing Manual Symmetric Key (Tickets) Asymmetric Key (Certificates) Challenge Response Nonce Based Zero Knowledge Proof

Service Types Data Origin Authentication Associated with Connectionless Communication Peer Entity Authentication Associated with Connection Oriented

11 11 Internet Security - ComSec Services & Mechanisms Spring 2011 Access Control Protection of information resources or services against unauthorized access or use by entities (organizations, people, machines, processes). Policies Subject-Action-Target rules prescribing access restrictions Principles entities own access control privileges Subjects entities exercise access control privileges Privileges rights to access or use resources or services Objects / Targets resources or services accessed/used by subjects Authorization Assertion of access control privileges Delegation Transfer of access control privileges Service Types Subject Based Typing Identity Based Role Based Enforcement Based Typing Mandatory Access Control Management Directed Discretionary Access Control Resource Owner Directed Protection Mechanisms Access Control Lists (ACLs) Object Based Specification Ex.: UNIX File System Capabilities Subject Based Specification Issue Tickets/Certificates

Policies Subject-Action-Target rules prescribing access restrictions Principles entities own access control privileges Subjects entities exercise access control privileges Privileges rights to access

12 12 Non-Repudiation Protection against denial of participation by communicating entities in all or part of a communication. Service Types Non-Repudiation of Origin Non-Repudiation of Reception Protection Mechanisms Notarization Time Stamp Digital Signature

Service Types Non-Repudiation of Origin Non-Repudiation of

13 13 Audit Recording & analyses of participation, roles and actions in information communication by relevant entities. Service Types Off-line Analysis (Computer Forensic) On-line Analysis (Real-time Intrusion Detection) Protection Mechanisms Syslog Intrusion Monitors / Sensors Common Intrusion Detection Framework (CIDF) Common Information Model (CIM)

Service Types Off-line Analysis (Computer Forensic) On-line Analysis (Real-time

14 14 Service vs. Layer Mapping APPLICATION PRESENTATION SESSION TRANSPORT NETWORK DATA LINK PHYSICAL MSP, PEM KEY MGMT TLSP NLSP, IPSP SILS Secure Signaling Relationship between Security Services and Protocol Layers Service Layer * Peer Entity Authentication Y Y Y Data Origin Authentication Y Y Y Access Control Y Y Y Connection Confidentiality Y Y Y Y Y Y Connectionless Confidentiality Y Y Y Y Y Selective Field Confidentiality Y Y Traffic Flow Confidentiality Y Y Y Connection Integrity with Recovery Y Y Connection integrity without Recovery Y Y Y Selective Field Connection Integrity Y Connectionless Integrity Y Y Y Selective Field Connectionless Integrity Y Non-repudiation, Origin Y Non-repudiation, Delivery Y

Protocol Layers Service Layer 1 2 3 4 5 6 7* Peer Entity Authentication Y Y Y Data Origin Authentication Y Y Y Access Control Y Y Y Connection Confidentiality Y Y Y Y Y Y

15 15 Further Reading Textbook Network Security Essentials, Ch. 1, Introduction, pp Web page: Websites X.800 Security Services: on) Availability:

com/networksecurity/ Websites X.800 Security Services: http://en.wikipedia.

Table: Security Services (X.800)

Table: Security Services (X.800) SECURIT SERVICES X.800 defines a security service as a service provided by a protocol layer of communicating open systems, which ensures adequate security of the systems or of data transfers. Also the