System Network Security - E-Commerce - Lecture Slides, Slides of Fundamentals of E-Commerce

E-Commerce is taking over the traditional commerce practices. It is of special concern for the IT students. Following are the key points of these Lecture Slides : System Network Security, Security Overview, Secure Communication, Communication Channels, Packet Switches, Listen, Network Manager, Access Control Lists, Stock Trading, Customer Denies

Typology: Slides

2012/2013

Uploaded on 07/30/2013

asif.ali
asif.ali 🇮🇳

5

(3)

129 documents

1 / 10

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
System and Network
Security Overview
Docsity.com
pf3
pf4
pf5
pf8
pf9
pfa

Partial preview of the text

Download System Network Security - E-Commerce - Lecture Slides and more Slides Fundamentals of E-Commerce in PDF only on Docsity!

System and Network

Security Overview

What is network security about?

 It is about secure communication  What do we mean by secure communication?  Everything is connected by the Internet  We will often use Alice and Bob  Alice is on a vacation and wants to send a commandto her assistant—Bob—or just a computer tocontrol the nuclear power plant, how can she dothat?

Other examples

 Alice sends Bob some sensitive information viaInternet  Network manager remotely changes someAccess Control Lists (intercepts, impersonation)  On-line stock trading, customer denies that shehas sent the order

Cryptography

 Cryptography allows us to disguise data so thateavesdroppers gain no information fromlistening  Cryptography also allows us to createunforgettable message and detect if it has beenmodified in transit: a digital signature is oftenused for this purpose—a magic number

Two kinds of security

 Computer security  Network security

Vulnerabilities of comp sys

 attacks on hardware  attacks on software  deletion, modification (Trojan horse,trapdoor/backdoor, covert channel), infectionthrough computer virus, theft, copying  attacks on data  compromising secrecy & integrity  attacks on other resources  storage media, time, key people

10

Failures of security mechanisms

 Failure to understand the threat model  Failure to understand what a mechanismprotects against and what it does not  Bad design  Implementation fault  Misconfiguration  Bad interaction with other parts  Bad user interface