Abstract image of a woman sitting on books and studying on a laptop

Information security and Attacks

Download as PPT, PDF
S
Sachin Darekar

This document discusses information security and system security. It defines information, information security, and the goals of security including confidentiality, integrity and availability. It describes different types of attacks such as interruption, interception, modification and fabrication. It explains passive attacks like eavesdropping and traffic analysis, as well as active attacks including masquerade, replay, message modification, and denial of service. The document outlines why computer security is needed and covers topics like vulnerabilities, threats, and controls to protect against various security risks.

Engineering
Related topics:
Information Security
1 of 61
Downloaded 44 times
1
2
3
4
5
6
7
8
9
10
11
12
13
Most read
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
Most read
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
Most read
59
60
61
Information Security 7/16/2021 1 System Security
7/16/2021 System Security 2
7/16/2021 System Security 3
7/16/2021 System Security 4 Data + context = Information Information + Rules = Knowledge
Information  Information is a form of knowledge that we acquire through education,communication,Practical experience , Research and Analysis.  It consists of Data, Facts and conclusions. 7/16/2021 System Security 5
Information can be  Created  Modified  Stored  Destroyed  Processed  Used (for proper and improper purposes)  Transmitted  Corrupted  Lost  stolen 7/16/2021 System Security 6
Information can be  Printed or written on paper  Stored electronically  Transmitted by post or using electronic means  Shown on corporate videos  Displayed and published on the web  Verbal or spoken in conversations 7/16/2021 System Security 7
Information Security  Information security, sometimes shortened to InfoSec, is the practice of preventing unauthorized access, use, disclosure, disruption, modification, inspection, recording or destruction of information  Information security in today’s enterprise is “well informed sense of assurance that the information risks and control are in balance  Security is a non functional requirement assumes that the system is correctly implemented according to functional requirement.  Security is a process not a product 7/16/2021 System Security 8
Various Securities  Data security  Data security is the means of ensuring that data is kept safe from corruption and that access to it is suitably controlled.  Computer Security  The objective of computer security includes protection of information and property from theft, corruption, or natural disaster, Malware: malicious software  includes computer viruses, worms, Trojan horses,, Network Security  protect the network and the network-accessible resources from unauthorized access, consistent and continuous monitoring and measurement of its effectiveness 9 7/16/2021 System Security
10 The Need for Computer Security  Why the need for Computer Security?  The value of computer assets and services  What is the new IT environment?  Networks and distributed applications/services  Electronic Commerce (E-commerce, E-business) 7/16/2021 System Security
11 Why need security?
Vulnerability threat and attack Vulnerabilities : i) Weakness in a security system. ii) “Vulnerability" refers to the security flaws in a system that allow an attack to be successful. crack in wall or wall is short in height. Threats : i) Set of circumstances that might exploit vulnerability ii) "threat" refers to the source and means of a particular type of attack Overflow of water, wall may be break Attacks : i) When weakness is exploited Actually breaking of wall. 7/16/2021 System Security 12
7/16/2021 System Security 13
7/16/2021 System Security 14
Security Goals. Security Goals Confidentiality Integrity Availability 7/16/2021 15 System Security
16
17 Threats, Vulnerabilities, and Controls A vulnerability is a weakness in the security system, for example, in procedures, design, or implementation, that might be exploited to cause loss or harm. A threat to a computing system is a set of circumstances that has the potential to cause loss or harm. A threat is blocked by control of a vulnerability.
18 Security of Data Data Confidentiality Data Integrity Data Availability Secure Data Data 7/16/2021 System Security
7/16/2021 System Security 19 "Ensures that only authorized users (confidentiality) have access to accurate and complete information (integrity) when required (availability)
16.20 Attacks The three goals of security—confidentiality, integrity and availability—can be threatened by security attacks. Figure 16.2 relates the taxonomy of attack types to security goals. Figure 16.2 Taxonomy of attacks with relation to security goals
21 Computer Security Requirements  Confidentiality(Secrecy)  Integrity  Availability  Authenticity  Non-repudiation 7/16/2021 System Security
22 Secrecy (Confidentiality)  Secrecy requires that the information in a computer system only be accessible for reading by authorized parties.  This type of access includes:  Printing  Displaying  Other forms of disclosure, 7/16/2021 System Security
23 Integrity  Integrity requires that the computer system asset can be modified only by authorized parties.  Modification includes:  Writing  Changing  Changing status  Deleting and  Creating 7/16/2021 System Security
24 Availability  Availability requires that computer system assets are available to authorized parties.  Availability is a requirement intended to assure that systems work promptly and service is not denied to authorized users. 7/16/2021 System Security
25 Authenticity  Authenticity means that parties in a information services can ascertain the identity of parties trying to access information services.  Also means that the origin of the message is certain.  Receiver should be ensure about sender’s identity, that false sender(imposter) should has not sent the message 7/16/2021 System Security
26 Non-repudiation  Originator of communications can’t deny it later.  Without non-repudiation you could place an order for 1 million dollars of equipment online and then simply deny it later.  Or you could send an email inviting a friend to the dinner and then disclaim it later.  Non-repudiation associates the identity of the originator with the transaction in a non-deniable way. 7/16/2021 System Security
27 Type of Attacks/Threats in Computer Systems  A threat is a danger which could affect the security (confidentiality, integrity, availability) of assets, leading to a potential loss or damage. Hacker using computer is a subject of an attack remote system that is the object of an attack  Interruption  Interception  Modification  Fabrication 7/16/2021 System Security
Security attacks
29
30 • In an interruption, an asset of the system becomes lost, unavailable, or unusable. • If an unauthorized party not only accesses but tampers with an asset, the threat is a modification. • Finally, an unauthorized party might create a fabrication of counterfeit objects on a computing system. Types of Threats • An interception means that some unauthorized party has gained access to an asset.
31 Information Transferring Normal Flow 7/16/2021 System Security
32 Network Security Model Trusted Third Party Principal (sender) Principal (receiver) Security transformation Security transformation attacker 7/16/2021 System Security
33 Attack: Interruption Cut wire lines, Jam wireless signals, Drop packets, • Attack on availability 7/16/2021 System Security
34 Attack: Interruption  An asset of the system is destroyed or becomes unavailable or unusable. This is an attack on the availability.  Examples include destruction of a piece of hardware, such as a hard disk, the cutting of a communication link, or the disabling of the file management system.  DOS - Denial of Service Attacks have become very well known. 7/16/2021 System Security
35 Attack: Interception Wiring, eavesdrop • Attack on confidentiality 7/16/2021 System Security
36 Attack: Interception  Information disclosure/information leakage  An unauthorized party gains access to an asset.  This is an attack on confidentiality.  The unauthorized party could be a person, a program, or a computer.  Examples include:  wiretapping to capture data in a network  the illicit copying of files or programs 7/16/2021 System Security
37 Attack: Modification intercept Replaced info • Attack on integrity 7/16/2021 System Security
38 Attack: Modification  Modification is integrity violation.  An unauthorized party not only gains access to but tampers with an asset.  This is an attack on the integrity.  Examples include changing values in a data file, altering a program so that it performs differently, and modifying the content of a message being transmitted in a network. 7/16/2021 System Security
39 Attack: Fabrication Also called impersonation Ali: this is … Ali: this is … • Attack on authenticity 7/16/2021 System Security
40 Attack: Fabrication  An unauthorized party inserts counterfeit objects into the system. This is an attack on the authenticity. 7/16/2021 System Security
41 Classification of Attacks  Computer Security attacks can be classified into two broad categories:  Passive Attacks can only observe communications or data.  Active Attacks can actively modify communications or data. Often difficult to perform, but very powerful. Examples include  Mail forgery/modification 7/16/2021 System Security
Passive and active attacks  Passive attacks  No modification of content or fabrication  Eavesdropping to learn contents or other information (transfer patterns, traffic flows etc.)  Active attacks  Modification of content and/or participation in communication to  Impersonate legitimate parties  Modify the content in transit  Launch denial of service attacks
43 Passive Attacks and Active Attacks 7/16/2021 System Security
44 Passive Attacks and Active Attacks 7/16/2021 System Security
45 Passive Attacks  Eavesdropping on or monitoring of transmission.  The goal of the opponent is to obtain information that is being transmitted.  Two types:  Release-of-message contents  Traffic Analysis 7/16/2021 System Security
46 Release-of-message Contents  Opponent finds out the contents or the actual messages being transmitted. 7/16/2021 System Security
Passive Attacks
Eavesdropping on a Dialog Client PC Bob Server Alice Dialog Attacker (Eve) intercepts and reads messages Hello Hello
49 Traffic Analysis  More subtle than release-of-message contents.  The opponent figures out information being carried by the messages based on the frequency and timings of the message. 7/16/2021 System Security
Passive Attacks
51 Passive Attacks Problems  Difficult to detect because there is no modification of data.  Protection approach should be based on prevention rather than detection. 7/16/2021 System Security
52 Active Attacks  Active attacks involve some sort of modification of the data stream or the creation of a false stream.  Four sub-categories:  Masquerade  Replay  Modification of Messages  Denial of service 7/16/2021 System Security
53 Masquerade  An entity pretends to be another.  For the purpose of doing some other form of attack.  Example a system claims its IP address to be what it is not, IP spoofing. 7/16/2021 System Security
Active Attacks
55 Replay  First passive capture of data and then its retransmission to produce an unauthorized effect.  Could be disastrous in case of critical messages such as authentication sequences, even if the password were encrypted. 7/16/2021 System Security
Active Attacks
57 Modification of Messages  Some portion of a legitimate message is altered or messages are delayed or reordered to produce an unauthorized effect. 7/16/2021 System Security
Message Alteration Client PC Bob Server Alice Dialog Attacker (Eve) intercepts and alters messages Balance = $1 Balance = $1 Balance = $1,000,000 Balance = $1,000,000
59 Denial of Service - DOS  Prevents the normal use or management of communication facilities.  Such attacks have become very common on the Internet especially against web servers. 7/16/2021 System Security
Denial-of-Service (DoS) Flooding Attack Message Flood Server Overloaded By Message Flood Attacker
7/16/2021 System Security 61

More Related Content

PPTX
Digital world
AjayTalaviya
 
PDF
IaaS, SaaS, PasS : Cloud Computing
Software Park Thailand
 
PPT
Security Attacks.ppt
Zaheer720515
 
PPTX
EVOLUTION OF INTERNET
aliyatabassumshaik
 
PPTX
AI open tools for Research.pptx
Mohammad Usman
 
PPTX
Flutter presentation.pptx
FalgunSorathiya
 
PPTX
History of Computer
Nikki Paccial
 
PPT
Arithmetic progression
Mayank Devnani
 
Digital world
AjayTalaviya
 
IaaS, SaaS, PasS : Cloud Computing
Software Park Thailand
 
Security Attacks.ppt
Zaheer720515
 
EVOLUTION OF INTERNET
aliyatabassumshaik
 
AI open tools for Research.pptx
Mohammad Usman
 
Flutter presentation.pptx
FalgunSorathiya
 
History of Computer
Nikki Paccial
 
Arithmetic progression
Mayank Devnani
 

What's hot (20)

PDF
Cyber Security Vulnerabilities
Siemplify
 
PPT
Basics of Information System Security
chauhankapil
 
PPSX
Security policies
Nishant Pahad
 
PPT
Information Security Principles - Access Control
idingolay
 
PPTX
Introduction to information security
jayashri kolekar
 
PPT
Information Security
Dhilsath Fathima
 
PPT
chapter 1. Introduction to Information Security
elmuhammadmuhammad
 
PDF
Network Security Fundamentals
Rahmat Suhatman
 
PPTX
Security risk management
Prachi Gulihar
 
PPT
Information security.pptx
Veer Rengu korku Govt. College Khaknar
 
PPTX
Cia security model
Imran Ahmed
 
PPTX
Logging, monitoring and auditing
Piyush Jain
 
PPTX
Network attacks
Manjushree Mashal
 
PPTX
Types of attacks
Vivek Gandhi
 
PPTX
System Security-Chapter 1
Vamsee Krishna Kiran
 
PDF
Data security and Integrity
Zaid Shabbir
 
PDF
Email security presentation
SubhradeepMaji
 
PPTX
Security Mechanisms
priya_trehan
 
PPT
Firewall & its configurations
Student
 
PPTX
The CIA triad.pptx
GulnurAzat
 
Cyber Security Vulnerabilities
Siemplify
 
Basics of Information System Security
chauhankapil
 
Security policies
Nishant Pahad
 
Information Security Principles - Access Control
idingolay
 
Introduction to information security
jayashri kolekar
 
Information Security
Dhilsath Fathima
 
chapter 1. Introduction to Information Security
elmuhammadmuhammad
 
Network Security Fundamentals
Rahmat Suhatman
 
Security risk management
Prachi Gulihar
 
Information security.pptx
Veer Rengu korku Govt. College Khaknar
 
Cia security model
Imran Ahmed
 
Logging, monitoring and auditing
Piyush Jain
 
Network attacks
Manjushree Mashal
 
Types of attacks
Vivek Gandhi
 
System Security-Chapter 1
Vamsee Krishna Kiran
 
Data security and Integrity
Zaid Shabbir
 
Email security presentation
SubhradeepMaji
 
Security Mechanisms
priya_trehan
 
Firewall & its configurations
Student
 
The CIA triad.pptx
GulnurAzat
 
Ad

Similar to Information security and Attacks (20)

PPT
Ia 124 1621324143 ia_124_lecture_01
ITNet
 
PPTX
Computer Security Chapter 1
Temesgen Berhanu
 
PPTX
Information Security and Privacy-Unit-1.pptx
NiharikaDubey17
 
PPT
Security information for internet and security
Somesh Kumar
 
PPT
Cyber Crime and Security Ch 1 .ppt
waleejhaider1
 
PPTX
Lecture1-InforSec-Computer and Internet security.pptx
markhorid1
 
PPT
IT-Security Awareness and Training session
sameerroushan
 
PPT
Security Of Information Assets and why it matters.ppt
hellasassin
 
PPT
IT-Security-20210426203847.ppt
ssuser6c59cb
 
PPT
IT-Security-20210426203847.ppt
RamaNingaiah
 
PPT
IT-Security-20210426203847.ppt
Ian Dave Balatbat
 
PPT
IT-Security Assessment for IT assets.ppt
santoshsahu190428
 
PPTX
CS PPT CHP 1 PART 1-Types of attacks and basics of computer security.pptx
ShreyaChavan28
 
PPTX
INTRODUCTION CB start Cyber Security.pptx
faizanaseem873
 
PPTX
Introduction to Computer Security
Kamal Acharya
 
PPT
chapter on Cyber 02.ppt presentation on it
abeeeeeeeer588
 
PPTX
Website security
RIPPER95
 
PPTX
EHEv1 Module 01 Information Security Fundamentals.pptx
beskarplayer
 
PPTX
Lecture-2 about programming download.pptx
MUHAMMADAHMAD173574
 
PPT
Slideshare is
Ashu Pandita Kaul
 
Ia 124 1621324143 ia_124_lecture_01
ITNet
 
Computer Security Chapter 1
Temesgen Berhanu
 
Information Security and Privacy-Unit-1.pptx
NiharikaDubey17
 
Security information for internet and security
Somesh Kumar
 
Cyber Crime and Security Ch 1 .ppt
waleejhaider1
 
Lecture1-InforSec-Computer and Internet security.pptx
markhorid1
 
IT-Security Awareness and Training session
sameerroushan
 
Security Of Information Assets and why it matters.ppt
hellasassin
 
IT-Security-20210426203847.ppt
ssuser6c59cb
 
IT-Security-20210426203847.ppt
RamaNingaiah
 
IT-Security-20210426203847.ppt
Ian Dave Balatbat
 
IT-Security Assessment for IT assets.ppt
santoshsahu190428
 
CS PPT CHP 1 PART 1-Types of attacks and basics of computer security.pptx
ShreyaChavan28
 
INTRODUCTION CB start Cyber Security.pptx
faizanaseem873
 
Introduction to Computer Security
Kamal Acharya
 
chapter on Cyber 02.ppt presentation on it
abeeeeeeeer588
 
Website security
RIPPER95
 
EHEv1 Module 01 Information Security Fundamentals.pptx
beskarplayer
 
Lecture-2 about programming download.pptx
MUHAMMADAHMAD173574
 
Slideshare is
Ashu Pandita Kaul
 
Ad

Recently uploaded (20)

PPTX
Research Writing, Mechanical Engineering
AliAhmedAbdulrasool
 
PDF
V2500 Owner and Operatore Guide for Airbus
RosneyAlfaro2
 
PPT
UNIT-I Machine Learning Essentials for 2nd years
rajeswarigcse
 
PDF
The Journal of Finance - July 1993 - JENSEN - The Modern Industrial Revolutio...
Bhargav Prajwal
 
PDF
IAE-V2500 Engine for Airbus Family 319/320
RosneyAlfaro2
 
PPTX
MODULE 02 - CLOUD COMPUTING-Virtual Machines and Virtualization of Clusters a...
vidya447894
 
PDF
25AF1191PC303 MODULE-1 CHAIN SURVEYING SEMESTER III SURVEYING
Dr. BASWESHWAR JIRWANKAR
 
PPT
Unit - I.lathemachnespct=ificationsand ppt
Praveen Kumar
 
PDF
Engineering Solutions for Ethical Dilemmas in Healthcare (www.kiu.ac.ug)
publication11
 
PDF
LS-6-Digital-Literacy (1) K12 CURRICULUM .pdf
RheaJaneMercado1
 
PPTX
Hardware, SLAM tracking,Privacy and AR Cloud Data.
Meenalochini M
 
PDF
Application of smart robotics in the supply chain
Bhargav Prajwal
 
PPTX
Soft Skills Unit 2 Listening Speaking Reading Writing.pptx
mishragaurav552006
 
PDF
BTCVPE506F_Module 1 History & Theories of Town Planning.pdf
Dr. BASWESHWAR JIRWANKAR
 
PPTX
Unit I - Mechatronics.pptx presentation
ssuser329719
 
PPT
Basics Of Pump types, Details, and working principles.
winbell648
 
PDF
1.-fincantieri-investor-presentation2.pdf
ssuserb4c6b5
 
PDF
Module 1 part 1.pdf engineering notes s7
minnalhacker556
 
PDF
BBC NW_Tech Facilities_30 Odd Yrs Ago [J].pdf
Joseph P. Campbell
 
PPTX
1. Effective HSEW Induction Training - EMCO 2024, O&M.pptx
dkrishnanivas
 
Research Writing, Mechanical Engineering
AliAhmedAbdulrasool
 
V2500 Owner and Operatore Guide for Airbus
RosneyAlfaro2
 
UNIT-I Machine Learning Essentials for 2nd years
rajeswarigcse
 
The Journal of Finance - July 1993 - JENSEN - The Modern Industrial Revolutio...
Bhargav Prajwal
 
IAE-V2500 Engine for Airbus Family 319/320
RosneyAlfaro2
 
MODULE 02 - CLOUD COMPUTING-Virtual Machines and Virtualization of Clusters a...
vidya447894
 
25AF1191PC303 MODULE-1 CHAIN SURVEYING SEMESTER III SURVEYING
Dr. BASWESHWAR JIRWANKAR
 
Unit - I.lathemachnespct=ificationsand ppt
Praveen Kumar
 
Engineering Solutions for Ethical Dilemmas in Healthcare (www.kiu.ac.ug)
publication11
 
LS-6-Digital-Literacy (1) K12 CURRICULUM .pdf
RheaJaneMercado1
 
Hardware, SLAM tracking,Privacy and AR Cloud Data.
Meenalochini M
 
Application of smart robotics in the supply chain
Bhargav Prajwal
 
Soft Skills Unit 2 Listening Speaking Reading Writing.pptx
mishragaurav552006
 
BTCVPE506F_Module 1 History & Theories of Town Planning.pdf
Dr. BASWESHWAR JIRWANKAR
 
Unit I - Mechatronics.pptx presentation
ssuser329719
 
Basics Of Pump types, Details, and working principles.
winbell648
 
1.-fincantieri-investor-presentation2.pdf
ssuserb4c6b5
 
Module 1 part 1.pdf engineering notes s7
minnalhacker556
 
BBC NW_Tech Facilities_30 Odd Yrs Ago [J].pdf
Joseph P. Campbell
 
1. Effective HSEW Induction Training - EMCO 2024, O&M.pptx
dkrishnanivas
 

Information security and Attacks

  • 4. 7/16/2021 System Security 4 Data + context = Information Information + Rules = Knowledge
  • 5. Information  Information is a form of knowledge that we acquire through education,communication,Practical experience , Research and Analysis.  It consists of Data, Facts and conclusions. 7/16/2021 System Security 5
  • 6. Information can be  Created  Modified  Stored  Destroyed  Processed  Used (for proper and improper purposes)  Transmitted  Corrupted  Lost  stolen 7/16/2021 System Security 6
  • 7. Information can be  Printed or written on paper  Stored electronically  Transmitted by post or using electronic means  Shown on corporate videos  Displayed and published on the web  Verbal or spoken in conversations 7/16/2021 System Security 7
  • 8. Information Security  Information security, sometimes shortened to InfoSec, is the practice of preventing unauthorized access, use, disclosure, disruption, modification, inspection, recording or destruction of information  Information security in today’s enterprise is “well informed sense of assurance that the information risks and control are in balance  Security is a non functional requirement assumes that the system is correctly implemented according to functional requirement.  Security is a process not a product 7/16/2021 System Security 8
  • 9. Various Securities  Data security  Data security is the means of ensuring that data is kept safe from corruption and that access to it is suitably controlled.  Computer Security  The objective of computer security includes protection of information and property from theft, corruption, or natural disaster, Malware: malicious software  includes computer viruses, worms, Trojan horses,, Network Security  protect the network and the network-accessible resources from unauthorized access, consistent and continuous monitoring and measurement of its effectiveness 9 7/16/2021 System Security
  • 10. 10 The Need for Computer Security  Why the need for Computer Security?  The value of computer assets and services  What is the new IT environment?  Networks and distributed applications/services  Electronic Commerce (E-commerce, E-business) 7/16/2021 System Security
  • 12. Vulnerability threat and attack Vulnerabilities : i) Weakness in a security system. ii) “Vulnerability" refers to the security flaws in a system that allow an attack to be successful. crack in wall or wall is short in height. Threats : i) Set of circumstances that might exploit vulnerability ii) "threat" refers to the source and means of a particular type of attack Overflow of water, wall may be break Attacks : i) When weakness is exploited Actually breaking of wall. 7/16/2021 System Security 12
  • 15. Security Goals. Security Goals Confidentiality Integrity Availability 7/16/2021 15 System Security
  • 16. 16
  • 17. 17 Threats, Vulnerabilities, and Controls A vulnerability is a weakness in the security system, for example, in procedures, design, or implementation, that might be exploited to cause loss or harm. A threat to a computing system is a set of circumstances that has the potential to cause loss or harm. A threat is blocked by control of a vulnerability.
  • 19. 7/16/2021 System Security 19 "Ensures that only authorized users (confidentiality) have access to accurate and complete information (integrity) when required (availability)
  • 20. 16.20 Attacks The three goals of security—confidentiality, integrity and availability—can be threatened by security attacks. Figure 16.2 relates the taxonomy of attack types to security goals. Figure 16.2 Taxonomy of attacks with relation to security goals
  • 21. 21 Computer Security Requirements  Confidentiality(Secrecy)  Integrity  Availability  Authenticity  Non-repudiation 7/16/2021 System Security
  • 22. 22 Secrecy (Confidentiality)  Secrecy requires that the information in a computer system only be accessible for reading by authorized parties.  This type of access includes:  Printing  Displaying  Other forms of disclosure, 7/16/2021 System Security
  • 23. 23 Integrity  Integrity requires that the computer system asset can be modified only by authorized parties.  Modification includes:  Writing  Changing  Changing status  Deleting and  Creating 7/16/2021 System Security
  • 24. 24 Availability  Availability requires that computer system assets are available to authorized parties.  Availability is a requirement intended to assure that systems work promptly and service is not denied to authorized users. 7/16/2021 System Security
  • 25. 25 Authenticity  Authenticity means that parties in a information services can ascertain the identity of parties trying to access information services.  Also means that the origin of the message is certain.  Receiver should be ensure about sender’s identity, that false sender(imposter) should has not sent the message 7/16/2021 System Security
  • 26. 26 Non-repudiation  Originator of communications can’t deny it later.  Without non-repudiation you could place an order for 1 million dollars of equipment online and then simply deny it later.  Or you could send an email inviting a friend to the dinner and then disclaim it later.  Non-repudiation associates the identity of the originator with the transaction in a non-deniable way. 7/16/2021 System Security
  • 27. 27 Type of Attacks/Threats in Computer Systems  A threat is a danger which could affect the security (confidentiality, integrity, availability) of assets, leading to a potential loss or damage. Hacker using computer is a subject of an attack remote system that is the object of an attack  Interruption  Interception  Modification  Fabrication 7/16/2021 System Security
  • 29. 29
  • 30. 30 • In an interruption, an asset of the system becomes lost, unavailable, or unusable. • If an unauthorized party not only accesses but tampers with an asset, the threat is a modification. • Finally, an unauthorized party might create a fabrication of counterfeit objects on a computing system. Types of Threats • An interception means that some unauthorized party has gained access to an asset.
  • 32. 32 Network Security Model Trusted Third Party Principal (sender) Principal (receiver) Security transformation Security transformation attacker 7/16/2021 System Security
  • 33. 33 Attack: Interruption Cut wire lines, Jam wireless signals, Drop packets, • Attack on availability 7/16/2021 System Security
  • 34. 34 Attack: Interruption  An asset of the system is destroyed or becomes unavailable or unusable. This is an attack on the availability.  Examples include destruction of a piece of hardware, such as a hard disk, the cutting of a communication link, or the disabling of the file management system.  DOS - Denial of Service Attacks have become very well known. 7/16/2021 System Security
  • 35. 35 Attack: Interception Wiring, eavesdrop • Attack on confidentiality 7/16/2021 System Security
  • 36. 36 Attack: Interception  Information disclosure/information leakage  An unauthorized party gains access to an asset.  This is an attack on confidentiality.  The unauthorized party could be a person, a program, or a computer.  Examples include:  wiretapping to capture data in a network  the illicit copying of files or programs 7/16/2021 System Security
  • 37. 37 Attack: Modification intercept Replaced info • Attack on integrity 7/16/2021 System Security
  • 38. 38 Attack: Modification  Modification is integrity violation.  An unauthorized party not only gains access to but tampers with an asset.  This is an attack on the integrity.  Examples include changing values in a data file, altering a program so that it performs differently, and modifying the content of a message being transmitted in a network. 7/16/2021 System Security
  • 39. 39 Attack: Fabrication Also called impersonation Ali: this is … Ali: this is … • Attack on authenticity 7/16/2021 System Security
  • 40. 40 Attack: Fabrication  An unauthorized party inserts counterfeit objects into the system. This is an attack on the authenticity. 7/16/2021 System Security
  • 41. 41 Classification of Attacks  Computer Security attacks can be classified into two broad categories:  Passive Attacks can only observe communications or data.  Active Attacks can actively modify communications or data. Often difficult to perform, but very powerful. Examples include  Mail forgery/modification 7/16/2021 System Security
  • 42. Passive and active attacks  Passive attacks  No modification of content or fabrication  Eavesdropping to learn contents or other information (transfer patterns, traffic flows etc.)  Active attacks  Modification of content and/or participation in communication to  Impersonate legitimate parties  Modify the content in transit  Launch denial of service attacks
  • 43. 43 Passive Attacks and Active Attacks 7/16/2021 System Security
  • 44. 44 Passive Attacks and Active Attacks 7/16/2021 System Security
  • 45. 45 Passive Attacks  Eavesdropping on or monitoring of transmission.  The goal of the opponent is to obtain information that is being transmitted.  Two types:  Release-of-message contents  Traffic Analysis 7/16/2021 System Security
  • 46. 46 Release-of-message Contents  Opponent finds out the contents or the actual messages being transmitted. 7/16/2021 System Security
  • 48. Eavesdropping on a Dialog Client PC Bob Server Alice Dialog Attacker (Eve) intercepts and reads messages Hello Hello
  • 49. 49 Traffic Analysis  More subtle than release-of-message contents.  The opponent figures out information being carried by the messages based on the frequency and timings of the message. 7/16/2021 System Security
  • 51. 51 Passive Attacks Problems  Difficult to detect because there is no modification of data.  Protection approach should be based on prevention rather than detection. 7/16/2021 System Security
  • 52. 52 Active Attacks  Active attacks involve some sort of modification of the data stream or the creation of a false stream.  Four sub-categories:  Masquerade  Replay  Modification of Messages  Denial of service 7/16/2021 System Security
  • 53. 53 Masquerade  An entity pretends to be another.  For the purpose of doing some other form of attack.  Example a system claims its IP address to be what it is not, IP spoofing. 7/16/2021 System Security
  • 55. 55 Replay  First passive capture of data and then its retransmission to produce an unauthorized effect.  Could be disastrous in case of critical messages such as authentication sequences, even if the password were encrypted. 7/16/2021 System Security
  • 57. 57 Modification of Messages  Some portion of a legitimate message is altered or messages are delayed or reordered to produce an unauthorized effect. 7/16/2021 System Security
  • 58. Message Alteration Client PC Bob Server Alice Dialog Attacker (Eve) intercepts and alters messages Balance = $1 Balance = $1 Balance = $1,000,000 Balance = $1,000,000
  • 59. 59 Denial of Service - DOS  Prevents the normal use or management of communication facilities.  Such attacks have become very common on the Internet especially against web servers. 7/16/2021 System Security
  • 60. Denial-of-Service (DoS) Flooding Attack Message Flood Server Overloaded By Message Flood Attacker