?????????? Computer System and Network Security - PowerPoint PPT Presentation

1 / 114

About This Presentation

Title:

?????????? Computer System and Network Security

Description:

... Information Security -60 COMSEC ... – PowerPoint PPT presentation

Number of Views:40

Avg rating:3.0/5.0

Slides: 115

Provided by: DrLaw194

Category:

more less

Transcript and Presenter's Notes

Title: ?????????? Computer System and Network Security

1
??????????Computer System and Network Security

?????? ??????????

2
?1? ??
??
???????
???????
?????
??
3
?1? ??
??
???????
???????
?????
??
4
????????????????

???????
?????
?????
????
???????????

????
????
????
?????
???????
????

5
??

????????????

6
????????????????????

??,????????????????????????
??,??????????????????????
??????
??????????????
???????????????
??????????????????????

7
??????????(?)

???????,?????????????
???????????,??????????
???????????????
?????
????
????
????

8
??????????(?)

???????????,???
???????
????????

9
??????????(?)

???????
??????
????
????
??/????
??/????
????
??????

10
??????????(?)

????????
????
??
??
????
??????
????
?????

11
??????????(?)

????????????,???
???????
??????????
????????????
??????
???????????
??????????????
?????

12
??????????(?)

?????????,???
????
????????
??????
??
??
??
??
??
??
??????

13
??????????(?)

?????????,???
????
??????
????
????????

14
??????????(?)

???????,??????
??????
????????
????/??
??????????

15
??????????(?)

????????????????
16
??????????(?)

??,??????????????????????

17
?????369??
18
?1? ??
??
???????
???????
?????
??
19
??

??????????
?????
?????
?????
?????
?????

20
??(?)

?????
??????????????????
?????
?????
?????
?????

21
???????

????--?????
??????????
???????
???????
???????
(USA) A. Toffler ?????????????????????????????,??
???????????????????.??????,?????,?????????

22
???????(?)

????????????????,?????????????????????????????????
???????,???????????????????????????

23
????

????(ITInformation Technology)???
ITComputerCommunicationControl

24
?1? ??
??
???????
???????
?????
??
25
?????
26
????

?????(Computer System)
?????????????????????,????????????????????????????
???????????
??(Security)
??????????

27
????(?)

???????
???
???
???
?????
???
???????
???
????
??
????

28
????(?)

?????( Computer Security )
???????????????????
????(Network Security)
???????????????
Internet??(Internet Security)
???????????????????
??????(Information Security)?

29

???????(60??)

???????????-60??(COMSEC)

??
???? ???? ???? ???? ??
??
??
30
???????(80-90??)

???????????
??? Confidentiality
?????????????????????
??? Integrity
?????,???????????
?????,?????????,????????
??? Availability
???????????????????,????????????????????????

31

???????(80-90??)

?????????
????????(Non-repudiation )
???????????????????????
??(Authentication)
??????????????????????????????
??(Accountability)
???????????
???(Reliability)
???????????

32
???????(80-90??)
????????

???
???
???
???
???,???

????,???
???
???
???

33
???????(90????)

????????????(Information Assurance)
??(Protect)
??(Detect)
??(React)
??(Restore)

34
???????

??
??????
??????????????????????????????????????????????????
??????????
??????
?????????

35
?1? ??
??
???????
???????
??????
?????
??
36
??????

??????(Security Architecture)
?????????????????????????,????????????????????????
????????????????????
???????????????????????

37
??????(?)

?????????
????
??????
???????????
??????

38
??????(?)
?????
39
??????(?)
40
????

???(Security Zone )
???????????
????(Security Policy)
??????????

41
????(?)

????????,????????
????
??????????,?????
????????,??????
??????
??
??
??
????,????

42
????????
43
????????(?)

???????

??
??
????
????
????
????
????
??
?
44
???????????

????(Operational Issues)
????(Human Issues)

45
????

??????(Cost-Benefit Analysis)
?? vs.???
????(Risk Analysis)
????????
??????????????
??????????,?????

46
????(?)

?????(Laws and Customs)
??????????????
??????????
??????????????

47
????

?????
?????
????
????
?????????
????????
????(Social engineering)

48
??????
49
????

????
????????????????,????????????????????
?????????
????????
??????????????
??????
?????????????????????? ?

50
????(?)

???????????????????????
???????????????

51
????(Risk Mitigation)

????
????????????
????( Residual Risk RR)
???????????????????
???????(Safeguards for RR)
??????????????
??????????????????????

52
??????
53
????(Security Service)

????(Security Service)
????????????????????
??????????????
????????????
???????????????(Security Mechanism)

54
????(Security Mechanism)

????(Security Mechanism)
?????????????????????
????????????????
????????????????????
???????????
????( cryptographic techniques)

55
X.800???????

??(Authentication)
???????????????????????
????( Access Control)
????????????????????
???(Data Confidentiality)
?????????????????

56
X.800???????(?)

???(Data Integrity)
????????????????????????????
?????(Non-Repudiation,???)
???????????????????????????????

57
X.800???????(?)
???? ????
?????? ??
??(AU) ??????
??(AU) ??????
????(AC) ??????
????(AC) ??????
???(CO) ?????
???(CO) ??????
???(CO) ???????
???(CO) ??????
???(IN) ?????????
???(IN) ??????????
???(IN) ??????????
???(IN) ??????
???(IN) ???????????
???(ND) ????????
???(ND) ????????
58
X.800???????

??(Encipherment)
??????????????,???????????????,???????????????????
??
??????(digital signatures)
????????
??????(access controls)
????????????????????
???????(data integrity)
????????????????????????????

59
X.800???????(?)

??????(authentication exchange)
??????,??????????????????????????????
??????(traffic padding)
??????????????????????????,????????????????
????(Routing Control)
????????????????,??????????
????(Notarization)
????????????????????

60
??????
61
????????????

??????????????
????????????????????
??????????????????????

62
????????????(?)
???? ???? ?? ???? ?? ?? ????? ???? ????? ???? ??
? ? ?????? v v v
? ? ?????? v v
???? ?????? v
???? ?????? v v
? ? ? ????? v v
? ? ? ?????? v
? ? ? ??????? v
? ? ? ?????? v v v
? ? ? ????????? v v
? ? ? ?????????? v v
? ? ? ?????????? v v
? ? ? ?????? v v v
? ? ? ??????????? v v v
??? ???????? v v v
??? ???????? v v v
63
??????
64
????
???
???
???
???
???
???
???
???
???
???
???
???
???
???
???
?????
?????
?????
???
???
???
65
TCP/IP????
??? ??? ??? ????? ???
??? ??? ??? ????? ???
??? ??? ????? ???
66
???????
?? ?? 1 2 3 4 5 6 7
? ? ?????? v v v
? ? ?????? v v v
???? ?????? v v v
???? ?????? v v v
? ? ? ????? v v v v v v
? ? ? ?????? v v v v v
? ? ? ??????? v v
? ? ? ?????? v v v
? ? ? ????????? v v
? ? ? ?????????? v v v
? ? ? ?????????? v
? ? ? ?????? v v v
? ? ? ??????????? v
??? ???????? v
??? ???????? v
67
????????????

????????????????
??
?????????????????
??????????????????,?????????????
???????????????
???????????????

68
????????????(?)

??
????
???????????
???????,?????????,????????????

69
????????????

???????????????
??
???????????????
????????????????????
?????????????????????
???????????????,??????,?????????

70
????????????

??
????????????????????,?????????????????,???????????
??????

71
????????????

??????????????
??
????????
?????????????,?????????????,?????????????????
??????????????
??????????????,????????VPN????,????????????
????????
?????????????????????????????,???????????

72
????????????

??
?????????????????????

73
??????????????

????????
??
????(???????)???? ,????
??
??????
??????????????? ,????????

74
?????????

??????
?????
?????

75
???????

????????????????

?? ????????,????,????? ???????? ??????
??????? ?/?????
?? ???????????? ??? ?????????????
76
???????

???????????????

?? ?????????????????,???? ??????? ???????????
?? ????????? ???????? ??????
77
??????????????
78
????(????)????
????????????
79
Point Point

80
(No Transcript)
81
(No Transcript)
82
(No Transcript)
83
(No Transcript)
84
??????????????????
85
(No Transcript)
86
?1? ??
??
???????
???????
??????
?????
??
87
Attack Vs Threat

??(Attack)
????????????
?????????
???????????,????????
??(Threat)
??????????????
????????
??????,?????????????

88
Attack Vs Threat(?)

?? ??
??????????????
????????????????????????
???????????

89
?????

????????(IATF)3.0?????????5?
????
????
??????
??????
???????

90
????

???????????????????????????????,????????????
????
????
????
????
???????
?????? ,????????(VPN)?????????????????????????

91
????

?????????????????
????
??
??
????
????
?????????
???????,??????????????????????

92
Classes of Threats

??(Disclosure) unauthorized access to
information
Snooping
??(Deception) acceptance of false data
Modification, masquerading/spoofing, repudiation
of origin, denial of receipt
??(Disruption) interruption/prevention of
correct operation
Modification
??(Usurpation) unauthorized control of a system
component
Modification, masquerading/spoofing, delay,
denial of service

93
Classes of Threats(?)

??????
???????(Resources and their Vulnerabilities)
??????( Vulnerability and Attacks)
????(Security Threads )
????(Attack Classification)

94
Classes of Threats(?)

Security Thread-Resources and their
Vulnerabilities

95
Classes of Threats(?)

Security Thread -Vulnerability and Attacks

96
Classes of Threats(?)

Security Thread-Security Threads

97
?????
?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ??
?? ?? ?? ?? ?? ?? ?? ?? ????? ????? ????? ????? ????? ?????
?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ???? ??? ??? ???
?? ?? ?? v v v v v v v v
?? ?? ?? v v v v v
?? ?? ?? v v v v
?? ?? ??/?? v v v v v v v
?? ?? ???? v v v
?? ?? ???? v
?? ?? ???? v v v v v v v v
?? ?? ?? v v v
?? ?? ???? v v
?? ?? ???? v v v
?? ?? ?? v v
?? ?? ?? v v
?? ?? ???? v v v v v v
?? ?? ?? v v v v v v v v
?? ?? ??/?? v v
?? ?? ???? v v v v v v v v
?? ?? ??/?? v v
?? ?? ?? v v v
?? ?? ???? v v v
?? ?? ???? v v v
?? ?? ?? v v v v v
?? ?? ?? v v v v v
?v??????????????
98
Classes of Threats(?)

Security Thread-Attack Classification

99
??????

?????????,????????????????,??????????,??????
C?????????,???????????,????,?????????????????????
???????,????????,????,???????????????
B??????????????,???????????,????,???,????????????
??????????
A???????????,???B??????????,??????? ???,?????????
??????????,???????????????????????????????????????
????????

100
?????
?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ??
?? ?? ?? ?? ?? ?? ??? ????? IP? ??? ???
?? ?? ?? v v v v v
?? ?? ?? v v v
?? ?? ?? v v v v v
?? ?? ??/?? v v v
?? ?? ???? v v v v v
?? ?? ???? v
?? ?? ???? v v v v v
?? ?? ?? v
?? ?? ???? v
?? ?? ???? v
?? ?? ?? v
?? ?? ?? v
?? ?? ???? v v v v v
?? ?? ?? v v v v v
?? ?? ??/?? v
?? ?? ???? v v v v v
?? ?? ??/?? v v v
?? ?? ?? v v v v v
?? ?? ???? v
?? ?? ???? v v v
?? ?? ?? v
?? ?? ?? v
101
????(????)????
??????? ?????????????
102
????
?????????
?????? ??????
103
?????????????
????
??????????????
????????????????????????
????????
104
?????????

??Snort IDS ??,?????????????
????????????,????IDS?????? ?,??????
?????????
IP?????
???? ????, Email,???, SNMP, ??
??????????IDS?????????
?????????????????????????

105
?????????

??????,????????????
???????
??????????
?????????
??????,?????????
???????????????
???????????TCP????
??email, telnet, ftp, web, pop3?

106
???ISP?????----??IP???
???????
??????????, ??DOS???????
107
????????????? -gt??????????? -gt????????????????
-gt ??HUB????SWITCH???????? ?????(TAP)????
10/100 Ethernet 2??????????1???????
Workgroup Ethernet Switch
Workgroup Ethernet Switch
Ethernet TAP
10/100 Ethernet ???
108
????????IP???????
109
Homework 2

Exercise
Write a short paper to express what is
information security architecture
Requirements
No less than 1000 words
The paper should be submitted before April 11,
2008
The short paper should be manuscript version
No electronic version is allowed

110
??

???????????????????????????????
????????????????????
?????????,???????????????
??????????????????
????????????????????????
??????????????????????????
???????,????????????,????????????????????,????????
????????,????????????????

111
??????

??
??? ??,????????? ??????? 2007
??? ?? ??,????????? ??????? 2007
???
??? ? ??,?????????,???????
Christopher M.King, Curitis E.Dalton, T. Ertem
Osmanoglu(?????). ???????????????,???????,2003(Chr
istopher M.King, et al, Security Architecture,
design, deployment Operations )
William Stallings,??????????-?????(???),???????
???,???????,?????????,2004
???,?????????---??????????,1997????,2001????,2003?
???????
???,?????????,?????,2003
????,?????????,?????