Module: Introduction. Professor Trent Jaeger Fall 2010. CSE543 - Introduction to Computer and Network Security

Similar documents
CSC574 - Computer and Network Security Module: Introduction

CIS433/533 - Computer and Network Security Introduction

Module: Introduction. Professor Patrick McDaniel Spring CMPSC443 - Introduction to Computer and Network Security

Lecture 1 - Overview

Advanced System Security

CSE598k / CSE545 Advanced Network Security

Advanced Systems Security

CSC 474 Information Systems Security

CIS 6930/4930 Computer and Network Security. Dr. Yao Liu

CSCI 454/554 Computer and Network Security. Instructor: Dr. Kun Sun

CS 450/650 Fundamentals of Integrated Computer Security

Network Security. Text. Administrative. My Information. Course Focus. Evaluation CEN

Department of Computer & Information Sciences. CSCI-445: Computer and Network Security Syllabus

Course mechanics. CS 458 / 658 Computer Security and Privacy. Course website. Additional communication

CS 458 / 658 Computer Security and Privacy. Course mechanics. Course website. Module 1 Introduction to Computer Security and Privacy.

CSCI 4541/6541: NETWORK SECURITY

CSCI 4250/6250 Fall 2015 Computer and Network Security. Instructor: Prof. Roberto Perdisci

Department of Computer & Information Sciences. INFO-450: Information Systems Security Syllabus

City University of Hong Kong. Information on a Course offered by Department of Electronic Engineering with effect from Semester A in 2012/2013

CPSC 467: Cryptography and Computer Security

CNT5412/CNT4406 Network Security. Course Introduction. Zhenhai Duan

AIRDEFENSE SOLUTIONS PROTECT YOUR WIRELESS NETWORK AND YOUR CRITICAL DATA SECURITY AND COMPLIANCE

Soran University Faculty of Science and Engineering Computer Science Department Information Security Module Specification

Why Security Matters. Why Security Matters. 00 Overview 03 Sept CSCD27 Computer and Network Security. CSCD27 Computer and Network Security 1

Introduction to Security

AIRDEFENSE SOLUTIONS PROTECT YOUR WIRELESS NETWORK AND YOUR CRITICAL DATA SECURITY AND COMPLIANCE

Overview of Network Security The need for network security Desirable security properties Common vulnerabilities Security policy designs

Cisco Advanced Services for Network Security

Security Defense Strategy Basics

FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. Chapter 4 Finding Network Vulnerabilities

Syllabus: IST451. Division of Business and Engineering. Penn State Altoona

Network Security 網 路 安 全. Lecture 1 February 20, 2012 洪 國 寶

CNT4406/5412 Network Security Introduction

Fundamentals of Information Systems Security Unit 1 Information Systems Security Fundamentals

Chapter 6: Fundamental Cloud Security

New York City College of Technology Computer Systems Technology Department

Information Security Policy

WHITE PAPER. The Need for Wireless Intrusion Prevention in Retail Networks

IT 101 Introduction to Information Technology

White Paper. Information Security -- Network Assessment

Avaya TM G700 Media Gateway Security. White Paper

Avaya G700 Media Gateway Security - Issue 1.0

This chapter covers the following topics:

Wireless Network Security

NCS 330. Information Assurance Policies, Ethics and Disaster Recovery. NYC University Polices and Standards 4/15/15.

ITAR Compliance Best Practices Guide

Data Security Incident Response Plan. [Insert Organization Name]

Network Security: Introduction

Network Security Course Specifications

CS5490/6490: Network Security- Lecture Notes - November 9 th 2015

Computer and Network Security

10 Potential Risk Facing Your IT Department: Multi-layered Security & Network Protection. September 2011

Portuguese 11A and 11B are accelerated courses designed only for those students with proficiency in another romance language.

REGULATIONS FOR THE SECURITY OF INTERNET BANKING

MERCER COUNTY COMMUNITY COLLEGE. Division of Business and Technology NET 240

IS Management Information Systems

Course Title: Penetration Testing: Network Threat Testing, 1st Edition

INTRODUCTION TO NETWORK SECURITY. Nischit Vaidya, CISSP Instructor

A Decision Maker s Guide to Securing an IT Infrastructure

IBM Managed Security Services Vulnerability Scanning:

Threats and Attacks. Modifications by Prof. Dong Xuan and Adam C. Champion. Principles of Information Security, 5th Edition 1

Payment Card Industry (PCI) Data Security Standard

Ursuline College Accelerated Program URSULINE COLLEGE

Proactive Credential Monitoring as a Method of Fraud Prevention and Risk Mitigation. By Marc Ostryniec, vice president, CSID

Basics of Internet Security

CS Ethical Hacking Spring 2016

Network Security ITP 457 (4 Units)

The introduction covers the recent changes is security threats and the effect those changes have on how we protect systems.

Network Security Informik Version

RYERSON UNIVERSITY Ted Rogers School of Information Technology Management And G. Raymond Chang School of Continuing Education

Cisco Security Optimization Service

Observation and Findings

St Petersburg College CTS1120 Online. Intro Network Security Foundations - (8 weeks online) Course Syllabus

DBIDS/IACS PRIVACY IMPACT ASSESSMENT (PIA) 2. Name of IT System: Defense Biometric Identification System (DBIDS)

Leveraging innovative security solutions for government. Helping to protect government IT infrastructure, meet compliance demands and reduce costs

Responsible Use of Technology and Information Resources

Network Security. Introduction. Università degli Studi di Brescia Dipartimento di Ingegneria dell Informazione 2014/2015

LAMAR STATE COLLEGE - ORANGE INFORMATION RESOURCES SECURITY MANUAL. for INFORMATION RESOURCES

Securing Applications, Web Services, and Software-As-A-Service (SAAS)

Enterprise Cybersecurity Best Practices Part Number MAN Revision 006

How To Protect Your Network From Attack From A Network Security Threat

GAO INFORMATION SECURITY. Weak Controls Place Interior s Financial and Other Data at Risk. Report to the Secretary of the Interior

Application Security in the Software Development Lifecycle

How To Secure Wireless Networks

Information Security. CS526 Topic 1

Monfort College of Business Semester Course Syllabus ( ) COURSE PREFIX/TITLE: BACS 382 TCP/IP Network Security Sem. Hrs. 3 Ed.

Computer and Network Security

CS 464/564 Networked Systems Security SYLLABUS

Wireless Security Overview. Ann Geyer Partner, Tunitas Group Chair, Mobile Healthcare Alliance

CSUS COLLEGE OF ENGINEERING AND COMPUTER SCIENCE Department of Computer Science (RVR 3018; /6834)

Penetration Testing Service. By Comsec Information Security Consulting

CS 203 / NetSys 240. Network Security

The FBI Cyber Program. Bauer Advising Symposium //UNCLASSIFIED

Information Security Course Specifications

Network Security Policy

COSC 472 Network Security

Juniper Networks Secure

CSET 4750 Computer Networks and Data Communications (4 semester credit hours) CSET Required IT Required

EPI 820/CPH504: Epidemiology in Public Health (Online)


Transcription:

CSE543 - Introduction to Computer and Network Security Module: Introduction Professor Trent Jaeger Fall 2010 1

Some bedtime stories 2

This course We are going to explore why these events are not isolated, infrequent, or even unexpected. Why are we doing so poorly in computing systems at protecting our users and data from inadvertent or intentional harm? The answer: stay tuned! 3

This course... This course is a systems course covering general topics in computer and network security, including: network security, authentication, security protocol design and analysis, social engineering, key management, program safety, intrusion detection, DDOS detection and mitigation, architecture/operating systems security, security policy, group systems, biometrics, web security, languagebased security, and other emerging topics (as time permits) 4

You need to understand... IP Networks Modern Operating Systems Discrete Mathematics Basics of systems theory and implementation E.g., File systems, distributed systems, networking, operating systems,... 5

Goals My goal: to provide you with the tools to understand and evaluate research in computer security. Basic technologies Engineering/research trade-offs How to read/write/present security research papers This is going to be a hard course. The key to success is sustained effort. Failure to keep up with readings and project will likely result in poor grades, and ultimately little understanding of the course material. Pay-off: security competence is a rare, valuable skill 6

Course Materials Website - I am maintaining the course website at http://www.cse.psu.edu/~tjaeger/cse543-f10/ Course assignments, slides, and other artifacts will be made available on the course website. Course textbook Kaufman, C., Perlman, R. and Speciner, M., Network Security (Private Communication in a Public World), 2nd edition, Prentice Hall 2002. 7

Course Calendar The course calendar as all the relevant readings, assignments and test dates The calendar page contains electronic links to online papers assigned for course readings. Please check the website frequently for announcements and changes to the schedule. Students are responsible for any change on the schedule. 8

Grading The course will be graded on exams, quizzes, assignments, projects, and class participation in the following proportions: 40% Projects and Quizzes 20% Mid-term Exam 30% Final Exam 10% Class Participation 9

Assignments, Quizzes, Reviews Exams Conceptual Questions (Basic and Complex) Constructions Precise Answers Quizzes Quick quizzes on the previous lecture and readings Review of Papers (for each class) Define Concepts Comparison with Other Approaches Details of Approach Written and Oral Reviewing Are Important 10

Readings There are a large amount of readings in this course covering various topics. These assignments are intended to: Support the lectures in the course (provide clarity) Augment the lectures and provide a broader exposure to security topics. Students are required to do the reading! About 10-20% of questions on the tests (and most of the quizes) will be off the reading on topics that were not covered in class. You better do the reading or you are going to be in deep trouble when it comes to grades. 11

Course Project End Result: Research Paper Motivation for an Experiment Background Related Work Experimental Approach Experimental Evaluation I will provide sample topic areas Programs and/or libraries on system Start with an Existing System/Approach Break It Improve It Aim for a Research-Quality Result 12

Ethics Statement This course considers topics involving personal and public privacy and security. As part of this investigation we will cover technologies whose abuse may infringe on the rights of others. As an instructor, I rely on the ethical use of these technologies. Unethical use may include circumvention of existing security or privacy measurements for any purpose, or the dissemination, promotion, or exploitation of vulnerabilities of these services. Exceptions to these guidelines may occur in the process of reporting vulnerabilities through public and authoritative channels. Any activity outside the letter or spirit of these guidelines will be reported to the proper authorities and may result in dismissal from the class and or institution. When in doubt, please contact the instructor for advice. Do not undertake any action which could be perceived as technology misuse anywhere and/or under any circumstances unless you have received explicit permission from Professor Jaeger. 13

What is security? Garfinkel and Spafford (1991) A computer is secure if you can depend on it and its software to behave as expected. Harrison, Ruzzo, Ullman (1978) Prevent access by unauthorized users Not really satisfactory does not truly capture that security speaks to the behavior of others Expected by whom? Under what circumstances? 14

Risk At-risk valued resources that can be misused Monetary Data (loss or integrity) Time Confidence Trust What does being misused mean? Privacy (personal) Confidentiality (communication) Integrity (personal or communication) Availability (existential or fidelity) Q: What is at stake in your life? 15

Threats A threat is a specific means by which an attacker can put a system at risk An ability/goal of an attacker (e.g., eavesdrop, fraud, access denial) Independent of what can be compromised A threat model is a collection of threats that deemed important for a particular environment A collection of attacker(s) abilities E.g., A powerful attacker can read and modify all communications and generate messages on a communication channel Q: What were risks/threats in the introductory examples? Slammer Yale/Princeton Estonia 16

Vulnerabilities (attack vectors) A vulnerability is a systematic artifact that exposes the user, data, or system to a threat E.g., buffer-overflow, WEP key leakage What is the source of a vulnerability? Bad software (or hardware) Bad design, requirements Bad policy/configuration System Misuse Unintended purpose or environment E.g., student IDs for liquor store 17

Adversary An adversary is any entity trying to circumvent the security infrastructure The curious and otherwise generally clueless (e.g., script-kiddies) Casual attackers seeking to understand systems Venal people with an ax to grind Malicious groups of largely sophisticated users (e.g, chaos clubs) Competitors (industrial espionage) Governments (seeking to monitor activities) 18

Are users adversaries? Have you ever tried to circumvent the security of a system you were authorized to access? Have you ever violated a security policy (knowingly or through carelessness)? This is know as the insider adversary! 19

Attacks An attack occurs when someone attempts to exploit a vulnerability Kinds of attacks Passive (e.g., eavesdropping) Active (e.g., password guessing) Denial of Service (DOS) Distributed DOS using many endpoints A compromise occurs when an attack is successful Typically associated with taking over/altering resources 20

Participants Participants are expected system entities Computers, agents, people, enterprises, Depending on context referred to as: servers, clients, users, entities, hosts, routers, Security is defined with respect to these entitles Implication: every party may have unique view A trusted third party Trusted by all parties for some set of actions Often used as introducer or arbiter 21

Trust Trust refers to the degree to which an entity is expected to behave What the entity not expected to do? E.g., not expose password What the entity is expected to do (obligations)? E.g., obtain permission, refresh A trust model describes, for a particular environment, who is trusted to do what? Note: you make trust decisions every day Q: What are they? Q: Whom do you trust? 22

Security Model A security model is the combination of a trust and threat models that address the set of perceived risks The security requirements used to develop some cogent and comprehensive design Every design must have security model LAN network or global information system Java applet or operating system The single biggest mistake seen in use of security is the lack of a coherent security model It is very hard to retrofit security (design time) This class is going to talk a lot about security models What are the security concerns (risks)? What are the threats? Who are our adversaries? 23

A Security Model Example Assume we have a University website that hosts courses through the web (e.g., Angel) Syllabus, other course information Assignments submissions Online grading In class: elements of the security model Participants (Trusted) Adversaries Risks Threats 24

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information