














Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
database security notes for Computer science course
Typology: Lecture notes
1 / 22
This page cannot be seen from the preview
Don't miss anything!















Computer Security
Computer Security
ļ
Key Security Concepts
Key Security Concepts
Examples of Security
Examples of Security
Requirements
Requirements
ļ
ļ
ļ
Computer Security Challenges
Computer Security Challenges
not simple
not simple
must consider potential attacks
must consider potential attacks
procedures used counter-intuitive
procedures used counter-intuitive
involve algorithms and secret info
involve algorithms and secret info
must decide where to deploy mechanisms
must decide where to deploy mechanisms
battle of wits between attacker / admin
battle of wits between attacker / admin
not perceived on benefit until fails
not perceived on benefit until fails
requires regular monitoring
requires regular monitoring
too often an after-thought
too often an after-thought
regarded as impediment to using system
regarded as impediment to using system
Aspects of Security
Aspects of Security
ļ
ļ¬
security attack
security attack
ļ¬
security mechanism
security mechanism
ļ¬
security service
security service
ļ
ļ¬
threat
threat
a
a potential for violation of security
potential for violation of security
ļ¬
attack
attack
an
an assault on system security, a
assault on system security, a
deliberate attempt to evade security services
deliberate attempt to evade security services
Passive Attacks
Passive Attacks
Security Service
Security Service
ļ¬
enhance security of data processing systems
enhance security of data processing systems
and information transfers of an organization
and information transfers of an organization
ļ¬
intended to counter security attacks
intended to counter security attacks
ļ¬
using one or more security mechanisms
using one or more security mechanisms
ļ¬
often replicates functions normally associated
often replicates functions normally associated
with physical documents
with physical documents
which, for example, have signatures, dates; need
which, for example, have signatures, dates; need
protection from disclosure, tampering, or
protection from disclosure, tampering, or
destruction; be notarized or witnessed; be
destruction; be notarized or witnessed; be
recorded or licensed
recorded or licensed
Security Services
Security Services
ļ
a service provided by a protocol layer of
a service provided by a protocol layer of
communicating open systems, which ensures
communicating open systems, which ensures
adequate security of the systems or of data
adequate security of the systems or of data
transfersā
transfersā
ļ
a processing or communication service
a processing or communication service
provided by a system to give a specific kind of
provided by a system to give a specific kind of
protection to system resourcesā
protection to system resourcesā
Security Mechanism
Security Mechanism
ļ
ļ
ļ
ļ¬
cryptographic techniques
cryptographic techniques
ļ
Security Mechanisms (X.800)
Security Mechanisms (X.800)
specific security mechanisms:
specific security mechanisms:
ļ¬
encipherment, digital signatures, access
encipherment, digital signatures, access
controls, data integrity, authentication
controls, data integrity, authentication
exchange, traffic padding, routing control,
exchange, traffic padding, routing control,
notarization
notarization
pervasive security mechanisms:
pervasive security mechanisms:
ļ¬
trusted functionality, security labels, event
trusted functionality, security labels, event
detection, security audit trails, security
detection, security audit trails, security
recovery
recovery
Model for Network Security
Model for Network Security
ļ
design a suitable algorithm for the security
design a suitable algorithm for the security
transformation
transformation
generate the secret information (keys) used
by the algorithm
by the algorithm
develop methods to distribute and share the
develop methods to distribute and share the
secret information
secret information
specify a protocol enabling the principals to
use the transformation and secret
use the transformation and secret
information for a security service
information for a security service
Model for Network Access
Model for Network Access
Security
Security