introduction to computer security
play

Introduction to Computer Security Session 2.1 Networking Basics, - PowerPoint PPT Presentation

Apr 04, 2024 •380 likes •713 views

CSCI-UA.9480 Introduction to Computer Security Session 2.1 Networking Basics, TCP, IP and DNS Prof. Nadim Kobeissi Welcome to Part 2 of the course! Part 2 discusses how computer networks work and security threats their face. Networking

  1. CSCI-UA.9480 Introduction to Computer Security Session 2.1 Networking Basics, TCP, IP and DNS Prof. Nadim Kobeissi

  2. Welcome to Part 2 of the course! Part 2 discusses how computer networks work and security threats their face. Networking basics. ● IP, TCP and DNS. ● Denial of Service. ● Designing Secure Network Systems. ● New Secure Protocols: WireGuard. ● With special guest Jason A. Donenfeld. ● Practical Assignment 1 and mid-term. ● 2 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  3. 2.1a What’s in a Network? 3 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  4. A typical small office network. Networks contain different physical devices with different roles, entry points and attack surfaces. NATs and firewalls may protect intranet ● devices but leave routers vulnerable. Different device types merit different ● security models. 4 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  5. The OSI layer-based model. 1. Physical Layer : Wire radio… 2. Datalink Layer : Ethernet, WiFi, GSM… 3. Network Layer : IP… 4. Transport Layer : TCP/UDP… 5. Session Layer 6. Presentation Layer : XML/UTF- 8… 7. Application Layer : FTP, SSH... 5 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  6. Test your knowledge! At which layer would the Signal protocol operate within WhatsApp? ☐ A : Transport layer. ☐ B : Network layer. ☐ C : Application layer. 6 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  7. Test your knowledge! At which layer would the Signal protocol operate within WhatsApp? ☐ A : Transport layer. ☐ B : Network layer. 🗺 C : Application layer. 7 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  8. Security 2.1b Questions for Network Protocols 8 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  9. “Alice and Bob?” In protocols , we reason about: Principals: Alice, Bob. ● Security goals: confidentiality, authenticity, ● forward secrecy… Use cases and constraints. ● Attacker model. ● Threat model. ● 9 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  10. “Application Security.” In applications and many user-facing systems , we reason about: User compromise: device compromise, ● impersonation, phishing… Server compromise: leaks, database ● hacks… Usability and security. ● 10 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  11. Additional concerns for networks. In networks, we also focus on: Availability : can the network be prevented ● from operating? Access control : who is allowed to access, ● affect or manage data flows? 11 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  12. Test your knowledge! Which security property would denial of service affect? ☐ A : Availability. ☐ B : Access control. ☐ C : Confidentiality. 12 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  13. Test your knowledge! Which security property would denial of service affect? 🗺 A : Availability. ☐ B : Access control. ☐ C : Confidentiality. 13 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  14. 2.1c A Closer Look at Network Components 14 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  15. IP: Internet Protocol. IPv4 : 172.26.85.153 IPv6 : fe80::7d44:8c17:e19b:6e73 ● Public address spaces versus private ● address spaces. IP has no source authentication : we’re ● trusting the client to embed the correct source IP. Anyone can send any packet with any ● source IP. Response will be sent back to this source IP. 15 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  16. IPv4: Internet Protocol version 4. Introduced in September 1981. ● Does not guarantee delivery or proper ● sequencing of messages. Addresses are a sequence of four bytes. ● 16 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  17. Test your knowledge! How many potential IPv4 addresses could exist on the Internet? ☐ A : 32! ☐ B : 256 4 ☐ C : 2 32 17 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  18. Test your knowledge! How many potential IPv4 addresses could exist on the Internet? ☐ A : 32! 🗺 B : 256 4 🗺 C : 2 32 18 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  19. IPv6: Internet Protocol version 6. Introduced in 1998, standardized in 2017. Today, 20% of Internet traffic. Address space of 2 128 compared to 2 32 for ● IPv4. No need for Network Address Translation ● (NAT). Flow Labeling allows for more efficient ● packet handling. 19 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  20. IP: Virtual Private Networks (VPNs.) 20 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  21. TCP: Transmission Control Protocol. Delivers packets in-order (unlike UDP.) Sends a packet stream to a particular ● socket/port on a client. Contains error recovery logic (unlike UDP.) ● Source: Prof. Dan Boneh. 21 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  22. TCP: Transmission Control Protocol. Basic security problems: Network packets pass by untrusted hosts. ● TCP state easily obtained via ● eavesdropping. Denial of Service vulnerabilities. ● Source: Prof. Dan Boneh. 22 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  23. BGP: Routing between autonomous systems. BGP routes between “autonomous systems”, for example your city’s ISP and an ISP in another continent. Route updates are unauthenticated. ● “After receiving a censorship order from the ● telecommunications ministry directing that YouTube.com be blocked, Pakistan Telecom went even further. By accident or design, the company broadcast instructions worldwide claiming to be the legitimate destination for anyone trying to reach YouTube's range of Internet addresses.” – Source: Prof. Dan Boneh. CNet News 23 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  24. DNS: Domain Name System. DNS servers contain maps translating IP addresses to domain names. Name servers advertise to each other which ● IP addresses domains want to map each other to. A record: IP address. ● CNAME record: other domain. ● MX record: mail addresses. ● TXT record: arbitrary text value. ● Etc. ● 24 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  25. DNSSEC. Attempts to force DNS requests to include ● credentials certifying that they are correct. DNS records are cryptographically signed through ● new DNS record types: RRSIG, DNSKEY, DS, NSEC , etc. Chain of signatures goes from the root zone to the ● website being protected (here, Cloudflare is an optional CDN.) 25 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  26. Interesting Experiments to Try. Trace route: see the IP routing path to an ● address. Nmap: Port scanning a server. ● Dig: show DNS records. ● 26 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  27. Test your knowledge! Which security property does DNSSEC attempt to provide? ☐ A : Confidentiality. ☐ B : Authenticity. ☐ C : Access Control. 27 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  28. Test your knowledge! Which security property does DNSSEC attempt to provide? ☐ A : Confidentiality. 🗺 B : Authenticity. ☐ C : Access Control. 28 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  29. 2.1d Some Examples 29 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  30. Ethernet. Confidentiality : None. Even the wire itself ● may be a side-channel (TEMPEST). Integrity : None. ● Availability : Physical attacks, jamming, ● denial of service on endpoints... Access control : MAC filtering (easily ● bypassed.) 30 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  31. WiFi. Confidentiality, integrity : ● Open: none. − WEP: broken. − WPA2: KRACK. WPA3 incoming. − SSID spoofing? − Availability : Physical attacks, jamming, ● denial of service on endpoints... Access control : MAC filtering (easily ● bypassed), RADIUS, WPA-PSK... 31 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  32. GSM. Confidentiality, integrity : ● A5/1 (US/EU): Broken. − A5/2: Broken in real-time (Goldberg et al) − A5/3 (KASUMI): − 2003: Downgrade attack to A5/2. ⚫ 2010: Shown to be broken unlike ⚫ original design (MISTY1.) Availability : Physical attacks, jamming, denial of ● service on endpoints... Access control : SIM. ● 32 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

  33. 2.2 Next time: Denial of Service 33 CSCI-UA.9480: Introduction to Computer Security – Nadim Kobeissi

Recommend

Introduction to Computer Security Rev. Sept 2015 What is Computer Security? 2 Computer

Introduction to Computer Security Rev. Sept 2015 What is Computer Security? 2 Computer

Introduction to Computer Security Rev. Sept 2015 What is Computer Security? 2 Computer Security is the protection of computing systems and the data that they store or access 3 Why is Computer Security Important? Computer Security allows

691 views • 19 slides
Introduction to Computer Security Why do we need computer security? What are our goals and

Introduction to Computer Security Why do we need computer security? What are our goals and

Introduction to Computer Security Why do we need computer security? What are our goals and what threatens them? Lecture 1 Page 1 CS 236 Online Why Is Security Necessary? Because people arent always nice Because a lot of

415 views • 25 slides
Introduction Attacks Security Goals Fall 2010 CS 334 Computer Security 1 What is Computer

Introduction Attacks Security Goals Fall 2010 CS 334 Computer Security 1 What is Computer

Introduction Attacks Security Goals Fall 2010 CS 334 Computer Security 1 What is Computer Security? Generally concerned with protection of computer related assets Risk analysis and management! Manage could mean prevention of

537 views • 26 slides
Outline The web from a security perspective CSci 5271 Introduction to Computer Security SQL

Outline The web from a security perspective CSci 5271 Introduction to Computer Security SQL

Outline The web from a security perspective CSci 5271 Introduction to Computer Security SQL injection Web security, part 1 Announcements intermission Stephen McCamant University of Minnesota, Computer Science & Engineering Web

522 views • 5 slides
Outline Usability and security CSci 5271 Introduction to Computer Security Announcements

Outline Usability and security CSci 5271 Introduction to Computer Security Announcements

Outline Usability and security CSci 5271 Introduction to Computer Security Announcements intermission Day 24: Usability and security Stephen McCamant Usable security example areas University of Minnesota, Computer Science & Engineering

219 views • 5 slides
Outline Usability and security CSci 5271 Introduction to Computer Security Announcements

Outline Usability and security CSci 5271 Introduction to Computer Security Announcements

Outline Usability and security CSci 5271 Introduction to Computer Security Announcements intermission Day 25: Usability and security Stephen McCamant Usable security example areas University of Minnesota, Computer Science & Engineering

419 views • 4 slides
Foundations of Network and Foundations of Network and Computer Security Computer Security J ohn

Foundations of Network and Foundations of Network and Computer Security Computer Security J ohn

Foundations of Network and Foundations of Network and Computer Security Computer Security J ohn Black J CSCI 6268/TLEN 5831, Fall 2004 Introduction UC Davis PhD in 2000 Cryptography Interested in broader security as well

493 views • 12 slides
CSCI 8260 Spring 2016 Computer and Networks Security INTRODUCTION 1 Research in Computer

CSCI 8260 Spring 2016 Computer and Networks Security INTRODUCTION 1 Research in Computer

CSCI 8260 Spring 2016 Computer and Networks Security INTRODUCTION 1 Research in Computer Security Studies in what ways security mechanisms may fail Can we gain access to a computer system without authorizaDon? Can we compromise

986 views • 84 slides
Outline CSci 5271 Big-Picture Introduction Introduction to Computer Security Day 1:

Outline CSci 5271 Big-Picture Introduction Introduction to Computer Security Day 1:

Outline CSci 5271 Big-Picture Introduction Introduction to Computer Security Day 1: Introduction and Logistics Course Logistics Stephen McCamant University of Minnesota, Computer Science & Engineering What is computer security? Two

362 views • 7 slides
Outline Brief introduction to networking CSci 5271 Introduction to Computer Security

Outline Brief introduction to networking CSci 5271 Introduction to Computer Security

Outline Brief introduction to networking CSci 5271 Introduction to Computer Security Announcements intermission Day 13: Network, etc., security overview Some classic network attacks Stephen McCamant University of Minnesota, Computer Science

504 views • 5 slides
Introduction to Computer Security Formal Security Models Pavel Laskov Wilhelm Schickard

Introduction to Computer Security Formal Security Models Pavel Laskov Wilhelm Schickard

Introduction to Computer Security Formal Security Models Pavel Laskov Wilhelm Schickard Institute for Computer Science Security instruments learned so far Symmetric and asymmetric cryptography confidentiality, integrity, non-repudiation

319 views • 29 slides
Outline Security risk and management Some terminology CSci 5271 Introduction to Computer

Outline Security risk and management Some terminology CSci 5271 Introduction to Computer

Outline Security risk and management Some terminology CSci 5271 Introduction to Computer Security Logistics intermission Day 2: Intro to Software and OS Security Example security failures Stephen McCamant University of Minnesota, Computer

608 views • 8 slides
Outline Security risk and management Some terminology CSci 5271 Introduction to Computer

Outline Security risk and management Some terminology CSci 5271 Introduction to Computer

Outline Security risk and management Some terminology CSci 5271 Introduction to Computer Security Logistics intermission Day 2: Intro to Software and OS Security Example security failures Stephen McCamant University of Minnesota, Computer

395 views • 7 slides
INTRODUCTION COMPUTER & NETWORK SECURITY CMSC 414 JAN 25 2018 TODAY What is

INTRODUCTION COMPUTER & NETWORK SECURITY CMSC 414 JAN 25 2018 TODAY What is

INTRODUCTION COMPUTER & NETWORK SECURITY CMSC 414 JAN 25 2018 TODAY What is security? Why is it so hard to achieve? Administrative The security mindset Analyzing a systems security 1. Summarize the system 2.

801 views • 43 slides
INTRODUCTION cf. Schneider, Chapter 1 INTRODUCTION THEY ARE OUT TO GET YOU INTRODUCTION WHAT

INTRODUCTION cf. Schneider, Chapter 1 INTRODUCTION THEY ARE OUT TO GET YOU INTRODUCTION WHAT

ADVANCED COMPUTER SECURITY INTRODUCTION cf. Schneider, Chapter 1 INTRODUCTION THEY ARE OUT TO GET YOU INTRODUCTION WHAT IS SECURITY? A systems security policies describe What the system is supposed to do Store and provide access

479 views • 16 slides
Introduction to Computing Principles

Introduction to Computing Principles

Introduction to Computing Principles Computer Safe Computer Security Attacks Practices What is Computer Security? Computer Security, also known as cybersecurity or IT

975 views • 63 slides
Outline Elections and their security CSci 5271 Introduction to Computer Security System

Outline Elections and their security CSci 5271 Introduction to Computer Security System

Outline Elections and their security CSci 5271 Introduction to Computer Security System security of electronic voting Electronic voting Announcements intermission Stephen McCamant University of Minnesota, Computer Science & Engineering

420 views • 5 slides
Session 1 Introduction to Computer Security Sbastien Combfis Fall 2019 This work is

Session 1 Introduction to Computer Security Sbastien Combfis Fall 2019 This work is

I5020 Computer Security Session 1 Introduction to Computer Security Sbastien Combfis Fall 2019 This work is licensed under a Creative Commons Attribution NonCommercial NoDerivatives 4.0 International License. Objectives Computer

864 views • 61 slides
CSE 543 - Computer Security Lecture 2 - Introduction August 30, 2007 URL:

CSE 543 - Computer Security Lecture 2 - Introduction August 30, 2007 URL:

CSE 543 - Computer Security Lecture 2 - Introduction August 30, 2007 URL: http://www.cse.psu.edu/~tjaeger/cse543-f07/ CSE543 Computer (and Network) Security - Fall 2007 - Professor Jaeger 1 A historical moment Mary Queen of Scots is

631 views • 29 slides
Outline SSL/TLS DNSSEC CSci 5271 Introduction to Computer Security Announcements intermission

Outline SSL/TLS DNSSEC CSci 5271 Introduction to Computer Security Announcements intermission

Outline SSL/TLS DNSSEC CSci 5271 Introduction to Computer Security Announcements intermission Day 19: Web security, part 1 The web from a security perspective Stephen McCamant University of Minnesota, Computer Science & Engineering SQL

492 views • 9 slides
Introduction CMSC 414: Computer and Network Security Spring 2016 What is computer & network

Introduction CMSC 414: Computer and Network Security Spring 2016 What is computer & network

Introduction CMSC 414: Computer and Network Security Spring 2016 What is computer & network security? Normally, we are concerned with correctness Does the software achieve the desired behavior? Security is a form of correctness

682 views • 47 slides
Introduction to Computer Security Cunsheng Ding HKUST, Hong Kong, CHINA cding@cs.ust.hk C.

Introduction to Computer Security Cunsheng Ding HKUST, Hong Kong, CHINA cding@cs.ust.hk C.

Introduction to Computer Security Cunsheng Ding HKUST, Hong Kong, CHINA cding@cs.ust.hk C. Ding - COMP4631 - L02 1 Outline of this Lecture A brief introduction to computer security A theoretical framework of computer security

972 views • 47 slides
Outline SSH SSL/TLS CSci 5271 DNSSEC Introduction to Computer Security Announcements

Outline SSH SSL/TLS CSci 5271 DNSSEC Introduction to Computer Security Announcements

Outline SSH SSL/TLS CSci 5271 DNSSEC Introduction to Computer Security Announcements intermission Protocols and web combined slides The web from a security perspective Stephen McCamant SQL injection University of Minnesota, Computer

490 views • 11 slides
Introduction to Computer Security UNIX Security Pavel Laskov Wilhelm Schickard Institute for

Introduction to Computer Security UNIX Security Pavel Laskov Wilhelm Schickard Institute for

Introduction to Computer Security UNIX Security Pavel Laskov Wilhelm Schickard Institute for Computer Science Genesis: UNIX vs. MULTICS MULTICS (Multiplexed Information and Computing Service) a high-availability, modular, multi-component

480 views • 35 slides

More recommend