tailieunhanh - TCP/IP from a Security Standpoint

You don’t have to know all of the details You do need to know your system What services it is providing What protocols are involved What vulnerabilities is has How to minimize the risks | TCP/IP from a Security Standpoint CS-480b Dick Steflik TCP/IP Guru-ism You don’t have to know all of the details You do need to know your system What services it is providing What protocols are involved What vulnerabilities is has How to minimize the risks Why TCP/IP ? Packet based Provides decentralized control Devices are peers Its routable Independent of transmission medium Open standard Free Robust Flexible Pragmatic Physical Layer Three major categories based on connection behavior Dial-up temporary point-to-point WAN and MAN premanent point-to-point LAN two or more devices communicating over a shared broadcast media Dial-up Dial-up (and modems) Temporarily connected point-to-point uses telephone infrastructure audio frequency modems vulnerabilities Cannot provide physical security along entire communications path Cables are usually run through public infrastructure making physical security almost impossible Peel back the insulation on the wire and connect alligator clips Telephone connection panel in basements of buildings Easy to just clip on to the connections Punch panels Screw terminal connections WAN and MAN WAN and MAN Constantly connected point-to-point uses telephone backbone, microwave, radio, fiber optic dedicated digital leased lines specially conditioned telephone lines (guaranteed quality) 56Kbps - Gbps T1 - 56Kbps T2 - Mbps T3 Mbps OC1 Mbps OC48 - 2488 Mbps OC192 - Gbps CSU/DSU - Carrier Set Unit / Data Set Unit (connection device) can be routed like a layer 3 protocol WAN and MAN (more) Vulnerabilities Because much is done using radio and microwave links interception by a third party is pretty easy (especially radio), laser communication is harder to intercept but is overall less reliable due to environmental issues Remedy Encrypt the data before placing it on an unsecured links like radio, microwave laser LAN Two or more network devices communicating over a shared broadcast media local area, shared communications | TCP/IP from a Security Standpoint CS-480b Dick Steflik TCP/IP Guru-ism You don’t have to know all of the details You do need to know your system What services it is providing What protocols are involved What vulnerabilities is has How to minimize the risks Why TCP/IP ? Packet based Provides decentralized control Devices are peers Its routable Independent of transmission medium Open standard Free Robust Flexible Pragmatic Physical Layer Three major categories based on connection behavior Dial-up temporary point-to-point WAN and MAN premanent point-to-point LAN two or more devices communicating over a shared broadcast media Dial-up Dial-up (and modems) Temporarily connected point-to-point uses telephone infrastructure audio frequency modems vulnerabilities Cannot provide physical security along entire communications path Cables are usually run through public infrastructure making physical security almost impossible Peel back the insulation on the wire and connect alligator clips .

• An ninh - Bảo mật
• Security Standpoint
• TCP IP
• Network security
• attack techniques
• defensive techniques
• operating system security
• application security
• security policy
• Network Security Fundamentals
• Guide to Network Security Fundamentals
• Information security
• Security policy cycle
• Risk identification
• Designing security
• Microsoft networks
• Security design
• Acceptable use policy
• Security policy checklist
• Windows Server 2008
• kỹ thuật viên tin học
• Local Policy
• Local Sercurity Policy
• ứng dụng Group Policy
• Local Security Policy
• hệ thống mạng
• quản trị mạng
• tài liệu học quản trị mạng
• cách làm local security policy
• hệ điều hành
• Windows 7
• Policy
• Local User
• Wireless
• Wireless Network Security
• International Journal of computer science & communication networks
• Information security policy
• Protecting the companys assets
• Integrity and availability
• children
• enviroment
• security
• safety
• Rand
• Security PerspectiveUpper Layers
• Cryptography
• security mechanisms
• Network Security Protocols
• PHP Security
• Data security
• Lecture Data security and encryption
• Mã hóa dữ liệu
• Bảo mật dữ liệu
• IPSec security framework
• IPSec security policy
• Summary of doctoral thesis
• Doctoral summary of History
• Social security policy
• Social security
• Social security in Dien Bien province
• Obtaining food security
• Obtaining food security in Vietnam
• Costs of obtaining food security
• Obtaining food
• Draws policy recommendations
• Security Service
• data transfers RFC 2828