How To Defend Your Network Security

Size: px

Start display at page:

Download "How To Defend Your Network Security"

Clinton West
5 years ago
Views:

1 Network Security Philosophy & Introduction Dr. Enis Karaarslan Muğla University Computer Engineering Department Netseclab.mu.edu.tr Dr. Enis Karaarslan 1

2 2

3 SECURITY PHILOSPHY 3

4 Computer & Network Security has similarities with the security in normal life. 4

5 There is no such thing as %100 Security 5

6 Security at the gates only, is not enough 6

7 A chain is only as strong as its weakest link 7

8 As there is no %100 security So give up? A possible solution: Use more than one chain 8

9 MULTI LAYER SECURITY 9

10 10

11 Security x Usability 11

12 Value of Assets and Expenditures What is the VALUE of your asset (data, prestige )? Keep in mind that Security expenditures should not be greater than the value of the assets 12

13 Risk Analysis Risk analysis is essential If the risk is too low, that/some precaution(s) can be cancelled 13

14 False Sense of Security A false sense of security is worse than a true sense of insecurity. Solution: Never think your system is secure. 14

15 No Template Which Suits All There is no templates which suits all. There is a different solution for different organizations l Different needs l Different assets 15

16 To win a war, one must know the way Sun Tzu The Art of War 16

17 Security is a process, not a product. Bruce Schneier 17

18 MONITOR The system should be monitored for intrusions And immediate action should be taken at attacks 18

19 Warn The Attacker 19

20 Try to Buy time for Make attacking difficult for l Discovery of the attack l Take measures Make decryption difficult so that l The data is not valid or valuable any more. 20

21 Network Awareness Know your enemy (?) Know yourself, l know your assets l know what to protect Know your systems more than the attacker 21

22 FUNDAMENTALS 22

23 Information System and Security ATTACK SECURITY MEASURES ATTACKER VULNERABILITY INFORMATION SYSTEM USERS

24 Vulnerable Systems The systems are vulnerable l Mainly because of bad coding l Must be patched (but can not be done rapidly as they should) l False sense of security 24

25 A vulnerability timeline

26 The Attacker/Intruder The attacker can be called as: Lamer, intruder, attacker (wrongly used as hacker also) Also secret organizations? Also companies (serious antivirus/defence economy) 26

27 Hacker /Lamer /Attacker Hacker is used as attacker/lamer, in the meaning: The intruder, who gets in your system and intends to use for his/her own aims. 27

28 The Attacker The attackers strength is Dedication l Will not stop until he/she gets in l Can use the computer for days long sleepless l Knows the vulnerabilities of systems 28

29 29

30 Network Security Assets Network Security Overall l Network Awareness l Firewall, Intrusion Detection Systems etc l More Host (Computer/Server/NW Device) Security l Physical Security l OS and Application Security l User Management Encryption 30

31 Firewall 31

32 Firewall Basics Rule based access control between networks. Software/hardware based Architecture l Static Packet Filtering l Dynamic Packet Filtering (Statefull inspection) l Application Level Protection Logging and alert capabilities 32

33 Encryption Encryption is the conversion of data into a form, called a ciphertext, that cannot be easily understood by unauthorized people. (Encryption x Decryption) 33

34 Encryption Two different methods (according to key use) l Conventional Two keys are the same l Asymetric (Public Key Encryption) Key pair (public, private) 34

35 Encryption To decyrpt an encrypted data l How much time? l How much Processing (Computing power)? The science which deals with encryption is Cryptology 35

36 END OF THE SESSION Dr. Enis Karaaslan 36

Security Frameworks. An Enterprise Approach to Security. Robert Belka Frazier, CISSP [email protected]

Security Frameworks. An Enterprise Approach to Security. Robert Belka Frazier, CISSP belka@att.net Security Frameworks An Enterprise Approach to Security Robert Belka Frazier, CISSP [email protected] Security Security is recognized as essential to protect vital processes and the systems that provide those