







Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
An overview of network security, focusing on threats, consequences, and countermeasures. It covers various aspects of security, including integrity, confidentiality, denial of service, and authentication. The text also discusses different security facilities in the tcp/ip protocol stack and their roles in securing data transmission. Students can use this document as a reference for understanding network security concepts and protocols.
Typology: Study notes
1 / 13
This page cannot be seen from the preview
Don't miss anything!








Threats Consequences Countermeasures Integrity • Modification of data • Loss of information • Cryptographic checksums
Handshake Protocol SSL Change Cipher Spec Protocol SSL Alert Protocol
(a) Change Cipher Spec Protocol 1 byte Type (c) Handshake Protocol 1 byte Length 3 bytes Content ≥ 0 bytes (d) Other Upper-Layer Protocol (e.g., HTTP) OpaqueContent ≥ 1 byte Level (b) Alert Protocol 1 byte 1 byte Alert
server_ ke^ y^ _e xchan g^ e
Time client_hello ce r tifi cate c l ie n t_ key_e xchange c ertifi c ate_v erify c han ge _ cipher_s pec finished server_hello ce^ rtif icate certi^ fi c^ a^ te_r equest s^ e^ rve r^ h^ e^ llo done change _^ ciph er_spe c fin^ i^ shed Establish security capabilities, including protocol version, session ID, cipher suite, compression method, and initial random numbers. Server may send certificate, key exchange, and request certificate. Server signals end of hello message phase. Client sends certificate if requested. Client sends key exchange. Client may send certificate verification. Change cipher suite and finish handshake protocol. Note: Shaded transfers are optional or situation-dependent messages that are not always sent.
Internet
Payment Network Internet
PI = Payment Information OI = Order Information H = Hash function (SHA-1) || = Concatenation PIMD = PI message digest OIMD = OI message digest POMD = Payment Order message digest E = Encryption (RSA) KRc = Customer's private signature key
OI = Order Information OIMD = OI message digest POMD = Payment Order message digest D = Decryption (RSA) H = Hash function (SHA-1) KUc = Customer's public signature key OIMD
Passed on by merchant to payment gateway
Digital Envelope Request Message Dual Signature
Cardholder Certificate
PIMD