14-07-2012, 11:37 AM
Network Security
Network Security.ppt (Size: 485 KB / Downloads: 43)
DEFINITION
Security is concerned with the confidentiality, integrity and availability of data regardless of the form the data.
Security means protecting from unauthorized access, use, disclosure, disruption, modification, or destruction.
Why do we need security?
Protect vital information while still allowing access to those who need it
Trade secrets, medical records, etc.
Provide authentication and access control for resources
Ex: AFS
Guarantee availability of resources
Ex: 5 9’s (99.999% reliability)
Who is vulnerable?
Financial institutions and banks
Internet service providers
Pharmaceutical companies
Government and defense agencies
Contractors to various government agencies
Multinational corporations
ANYONE ON THE NETWORK
Firewalls
Basic problem – many network applications and protocols have security problems that are fixed over time
Difficult for users to keep up with changes and keep host secure
Solution
Administrators limit access to end hosts by using a firewall
Firewall is kept up-to-date by administrators
Denial of Service
Purpose: Make a network service unusable, usually by overloading the server or network
Many different kinds of DoS attacks
SYN flooding
SMURF
Distributed attacks
Mini Case Study: Code-Red
Network Security.ppt (Size: 485 KB / Downloads: 43)
DEFINITION
Security is concerned with the confidentiality, integrity and availability of data regardless of the form the data.
Security means protecting from unauthorized access, use, disclosure, disruption, modification, or destruction.
Why do we need security?
Protect vital information while still allowing access to those who need it
Trade secrets, medical records, etc.
Provide authentication and access control for resources
Ex: AFS
Guarantee availability of resources
Ex: 5 9’s (99.999% reliability)
Who is vulnerable?
Financial institutions and banks
Internet service providers
Pharmaceutical companies
Government and defense agencies
Contractors to various government agencies
Multinational corporations
ANYONE ON THE NETWORK
Firewalls
Basic problem – many network applications and protocols have security problems that are fixed over time
Difficult for users to keep up with changes and keep host secure
Solution
Administrators limit access to end hosts by using a firewall
Firewall is kept up-to-date by administrators
Denial of Service
Purpose: Make a network service unusable, usually by overloading the server or network
Many different kinds of DoS attacks
SYN flooding
SMURF
Distributed attacks
Mini Case Study: Code-Red