Introduction to Internet Security: Concepts and Mechanisms, Slides of Cryptography and System Security

An introduction to internet security, focusing on measures to deter, prevent, detect, and correct security violations involving the transmission and storage of information. Definitions, security trends, osi security architecture, aspects of security, security attacks, security services, and security mechanisms.

Typology: Slides

2011/2012

Uploaded on 11/05/2012

patel
patel 🇮🇳

3.8

(15)

80 documents

1 / 21

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
Cryptography and
Network Security
Chapter 1
Docsity.com
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13
pf14
pf15

Partial preview of the text

Download Introduction to Internet Security: Concepts and Mechanisms and more Slides Cryptography and System Security in PDF only on Docsity!

Cryptography and

Network Security

Chapter 1

Chapter 1 – Introduction

The art of war teaches us to rely not on the

likelihood of the enemy's not coming, but

on our own readiness to receive him; not

on the chance of his not attacking, but

rather on the fact that we have made our

position unassailable.

— The Art of War, Sun Tzu

Definitions

Computer Security - generic name for the collection of tools designed to protect data and to thwart hackers

Network Security - measures to protect data during their transmission

Internet Security - measures to protect data during their transmission over a collection of interconnected networks

Aim of Course

 our focus is on Internet Security

 which consists of measures to deter,

prevent, detect, and correct security

violations that involve the transmission &

storage of information

OSI Security Architecture

 ITU-T X.800 “Security Architecture for OSI”

 defines a systematic way of defining and

providing security requirements

 for us it provides a useful, if abstract,

overview of concepts we will study

Aspects of Security

 consider 3 aspects of information security:

security attacksecurity mechanismsecurity service

Passive Attacks

Active Attacks

Security Services

 X.800:

“a service provided by a protocol layer of communicating open systems, which ensures adequate security of the systems or of data transfers”

 RFC 2828:

“a processing or communication service provided by a system to give a specific kind of protection to system resources”

Security Services (X.800)

Authentication - assurance that the communicating entity is the one claimed

Access Control - prevention of the unauthorized use of a resource

Data Confidentiality –protection of data from unauthorized disclosure

Data Integrity - assurance that data received is as sent by an authorized entity

Non-Repudiation - protection against denial by one of the parties in a communication

Security Mechanisms (X.800)

 specific security mechanisms:

 encipherment, digital signatures, access controls, data integrity, authentication exchange, traffic padding, routing control, notarization

 pervasive security mechanisms:

 trusted functionality, security labels, event detection, security audit trails, security recovery

Model for Network Security

Model for Network Access

Security

Model for Network Access

Security

 using this model requires us to:

  1. select appropriate gatekeeper functions to identify users
  2. implement security controls to ensure only authorised users access designated information or resources

 trusted computer systems may be useful

to help implement this model