Information Security: Understanding Types of Security Attacks and Services, Lecture notes of Information Security and Markup Languages

An overview of information security, focusing on the importance of security, approaches, principles, and types of attacks. It covers passive and active attacks, including interruption, interception, modification, and fabrication. Additionally, it discusses security services such as confidentiality, authentication, integrity, non-repudiation, and access control.

Typology: Lecture notes

2019/2020

Uploaded on 04/14/2020

nitisha-aggarwal-1
nitisha-aggarwal-1 🇮🇳

5 documents

1 / 24

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
INFORMATION SECURITY
Attacks on Computers and Computer
Security
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13
pf14
pf15
pf16
pf17
pf18

Partial preview of the text

Download Information Security: Understanding Types of Security Attacks and Services and more Lecture notes Information Security and Markup Languages in PDF only on Docsity!

INFORMATION SECURITY

Attacks on Computers and Computer Security

Attacks on Computers and Computer

Security:

  • (^) Introduction,
  • (^) The need for security,
  • (^) Security approaches,
  • (^) Principles of security,
  • (^) Types of Security attacks,
  • (^) Security services,
  • (^) Security Mechanisms,
  • (^) A model for Network Security

SECURITY ATTACK

  • (^) any action that compromises the security of information owned by an organization
  • (^) information security is about how to prevent attacks, or failing that, to detect attacks on information-based systems
  • (^) often threat & attack used to mean same thing
  • (^) have a wide range of attacks
  • (^) can focus of generic types of attacks  Passive  Active

TYPES OF SECURITY ATTACKS

Passive Attack

INTERRUPTION

  • (^) An asset of the system is destroyed or becomes unavailable or unusable. It is an attack on availability. Examples:
  • (^) Destruction of some hardware
  • (^) Jamming wireless signals
  • (^) Disabling file management systems

INTERCEPTION

  • (^) An unauthorized party gains access to an asset. Attack on confidentiality. Examples:
  • (^) Wire tapping to capture data in a network.
  • (^) Illicitly copying data or programs
  • (^) Eavesdropping

FABRICATION

  • (^) An unauthorized party inserts a counterfeit object into the system. Attack on Authenticity. Also called impersonation. Examples:
  • (^) Hackers gaining access to a personal email and sending message
  • (^) Insertion of records in data files
  • (^) Insertion of spurious messages in a network

Confidentiality

  • (^) Confidentiality is the protection of transmitted data from passive attacks.
  • (^) It is used to prevent the disclosure of information to unauthorized individuals or systems.
  • (^) It has been defined as “ensuring that information is accessible only to those authorized to have access”.
  • (^) The other aspect of confidentiality is the protection of traffic flow from analysis.
  • (^) Ex: A credit card number has to be secured during online transaction.

Authentication

  • (^) Authentication This service assures that a communication is authentic.
  • (^) For a single message transmission, its function is to assure the recipient that the message is from intended source.
  • (^) For an ongoing interaction two aspects are involved.
  • (^) First, during connection initiation the service assures the authenticity of both parties.
  • (^) Second, the connection between the two hosts is not interfered allowing a third party to masquerade as one of the two parties.
  • (^) Two specific authentication services defines in X.800 are

Integrity

  • (^) Integrity means that data cannot be modified without authorization. Like confidentiality, it can be applied to a stream of messages, a single message or selected fields within a message.
  • (^) Two types of integrity services are available. They are
  • (^) Connection-Oriented Integrity Service: This service deals with a stream of messages, assures that messages are received as sent, with no duplication, insertion, modification, reordering or replays.
  • (^) Destruction of data is also covered here. Hence, it attends to both message stream modification and denial of service.
  • (^) Connectionless-Oriented Integrity Service: It deals with individual messages regardless of larger context, providing protection against message modification only.

Integrity

  • (^) An integrity service can be applied with or without recovery.
  • (^) Because it is related to active attacks, major concern will be detection rather than prevention.
  • (^) If a violation is detected and the service reports it, either human intervention or automated recovery machines are required to recover.

Access Control

  • (^) This refers to the ability to control the level of access that individuals or entities have to a network or system and how much information they can receive.
  • (^) It is the ability to limit and control the access to host systems and applications via communication links.
  • (^) For this, each entity trying to gain access must first be identified or authenticated, so that access rights can be tailored to the individuals.

Availability

  • (^) It is defined to be the property of a system or a system resource being accessible and usable upon demand by an authorized system entity.
  • (^) The availability can significantly be affected by a variety of attacks, some amenable to automated counter measures i.e authentication and encryption and others need some sort of physical action to prevent or recover from loss of availability of elements of a distributed system.