


















Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
An overview of various security issues and attacks in computer systems. It covers program threats, system and network threats, and cryptography as a security tool. The document also discusses user authentication and implementing security defenses, including firewalls and computer-security classifications. Real-world examples, such as the morris internet worm, are used to illustrate these concepts.
Typology: Slides
1 / 26
This page cannot be seen from the preview
Don't miss anything!



















15: Security 1
15: Security 2
15: Security 4
SECURITY (^) Security Issues
Trojan Horse: A piece of code that misuses its environment. The program seems
innocent enough, however when executed, unexpected behavior occurs.
Trap Doors: Inserting a method of breaching security in a system. For instance,
some secret set of inputs to a program might provide special privileges.
Threat monitoring: Look for unusual activity. Once access is gained, how do you identify
someone acting in an unusual fashion?
Audit Log: Record time, user, and type of access on all objects. Trace problems
back to source.
Worms Use spawning mechanism; standalone programs.
Internet Worm: In the Internet worm, Robert Morse exploited UNIX networking features
(remote access) as well as bugs in finger and sendmail programs. Grappling hook program uploaded main worm program.
Viruses Fragment of code embedded in a legitimate program. Mainly effects
personal PC systems. These are often downloaded via e-mail or as active components in web pages.
Firewall A mechanism that allows only certain traffic between trusted and un-
trusted systems. Often applied to a way to keep unwanted internet traffic away from a system.
15: Security 5
SECURITY
Attacks on a distributed system include:
Modification Changing a portion of the message.
Spurious messages Introducing bogus messages with valid addresses and consistency criteria.
Site impersonation Claiming to be some other logical node.
Replay of previous transmission - repeating previous valid messages. (for example, authorization of cash withdrawal.)
Typical Security Attacks
15: Security 7
SECURITY
Typical Security Attacks
15: Security 8
SECURITY
Typical Security Attacks
15: Security 10
SECURITY
Typical Security Attacks
15: Security 11
SECURITY
Typical Security Attacks
15: Security 13
SECURITY
C = E( M, Ke )
M = D( C, Kd )
Cryptography
15: Security 14
SECURITY
DEFINITIONS:
Cryptosystems are either Conventional or Public Key
Security against attack is either:
The only known unconditionally secure system in common use!
Cryptography
15: Security 16
SECURITY Public Key Cryptosystems
Public Key Repository
KEa
KEb
KEc
15: Security 17
What is computationally difficult? Problems that can't easily be calculated in a finite time. Examples include: factoring the product of two very large prime numbers; the knapsack problem. These problems are NP complete - solution times are exponential in the size of the sample.
SECURITY (^) Public Key Cryptosystems
15: Security 19
SECURITY (^) Public Key Cryptosystems
Let p = 3, q = 11
n = 3 * 11 = 33.
L(n) = ( p - 1 ) ( q - 1 ) = 20. Choose Kd > 11 and prime to 20. Choose Kd = 13.
0 < Ke < 20 Ke = 17. (since 17 * 13 = 221 = 1 ( mod 20 ) )
15: Security 20
Separate the text to be encoded into chunks with values 0 - ( n - 1 ).
SECURITY (^) Public Key Cryptosystems
In our example, we'll use < space = 0, A = 1, B = 2, C = 3, D = 4, E = 5 >.
Then " B A D
21 ^ 17 ( mod 33 ) = 21. 21 ^ 13 ( mod 33 ) = 21. 04 ^ 17 ( mod 33 ) = 16. 16 ^ 13 ( mod 33 ) = 04. 00 ^ 17 ( mod 33 ) = 00. 00 ^ 13 ( mod 33 ) = 00. 25 ^ 17 ( mod 33 ) = 31. 31 ^ 13 ( mod 33 ) = 25. 05 ^ 17 ( mod 33 ) = 14. 14 ^ 13 ( mod 33 ) = 05.
This whole operation works because, though n and Ke are known, p and q are not
public. Thus Kd is hard to guess.
[Note: recently a 100 digit number was successfully factored into two prime numbers.]