networking network attacks
play

Networking & Network Attacks Engineering Secure Software Last - PowerPoint PPT Presentation

Apr 18, 2023 •846 likes •1.3k views

Networking & Network Attacks Engineering Secure Software Last Revised: August 28, 2020 SWEN-331: Engineering Secure Software Benjamin S Meyers 1 Why Do We Study Networks? Networks scans are the most prevalent method of understanding

  1. Networking & Network Attacks Engineering Secure Software Last Revised: August 28, 2020 SWEN-331: Engineering Secure Software Benjamin S Meyers 1

  2. Why Do We Study Networks? Networks scans are the most prevalent method of ● understanding an environment, with the intent to use that information to run exploits To understand how to protect your system, you have to ● understand how the system works! Note: In a future lecture, we’ll learn about MITRE ATT&CK, a ● taxonomy of tactics/techniques for general pentesting knowledge Discovery: The adversary is trying to figure out your environment ○ SWEN-331: Engineering Secure Software Benjamin S Meyers 2

  3. How Do Computers Communicate? The 7 layers of the classic OSI model Source: https://www.electronicdesign.com/unused/article/21800810/whats-the-difference-between-the-osi-sevenlayer-network-model-and-tcpip SWEN-331: Engineering Secure Software Benjamin S Meyers 3

  4. OSI Model: Physical Layer Responsible for transmission of unstructured raw data ● between physical device and transmission medium Converts digital data to electrical/radio/optical signals ○ Defines characteristics of voltage levels, data transmission ● rates, physical connectors (pin layouts, signal frequency) Defines specifications for Bluetooth, Ethernet, and USB ● standards Controlled Area Network (CAN) ● Jaguar speed controllers in FIRST Robotics ○ SWEN-331: Engineering Secure Software Benjamin S Meyers 4

  5. OSI Model: DataLink Layer Defines protocols for establishing/terminating physical ● connections and controls how data flows between physically connected devices Two sublayers ● Medium Access Control (MAC) -- controls hardware responsible ○ for interaction with wired/optical/wireless transmission mediums Error control (e.g. collisions) ■ MAC addresses for individual network interfaces ■ Logical Link Control (LLC) -- interface between MAC and OSI ○ Network Layer SWEN-331: Engineering Secure Software Benjamin S Meyers 5

  6. OSI Model: Network Layer Responsible for transferring packets between nodes in ● different networks Routing packets through intermediate nodes ● IPv4 (32bit) and IPv6 (128bit) ○ Path determination ○ IP communication is connectionless (no response necessary) ● SWEN-331: Engineering Secure Software Benjamin S Meyers 6

  7. OSI Model: Transport Layer Responsible for quality of service and data integrity ● e.g. packet loss, bit rate, throughput, transmission delay, ○ availability, jitter Transmission rates (e.g. phone vs. server) ● Packet splitting (segmentation & desegmentation) ● Retransmission ● User Datagram Protocol (UDP) is faster than TCP, but not as ● reliable e.g. post office inspections ● SWEN-331: Engineering Secure Software Benjamin S Meyers 7

  8. OSI Model: Session Layer Responsible for establishing/managing/terminating ● connections between local and remote devices Remote Procedure Calls (RPC) ● One form of Inter-Process Communication (IPC) ○ Authentication and authorization happen here ● Transmission Control Protocol (TCP) spans the Transport and ● Session Layers API’s (e.g. NETBIOS) ● SWEN-331: Engineering Secure Software Benjamin S Meyers 8

  9. OSI Model: Presentation Layer Translates between application-specific data formats and ● network packet formats e.g. conversion from packet to XML (and vice versa) ○ Sometimes called the “syntax” layer ● Some data compression functionality ● Data encoding ● ASCII (7-8 bits per character) vs. EBCDIC (8 bits per character) ○ EBCDIC is non-linear ○ Unicode (UTF8, UTF16) ○ SSL/TLS ● SWEN-331: Engineering Secure Software Benjamin S Meyers 9

  10. OSI Model: Application Layer Interacts with applications that implement communication ● Responsible for displaying received data to the user and ● sending data from the user to the presentation layer (which then gets sent through the other OSI layers) Defines specifications for shared communication protocols ● e.g. HTTP, FTP, SMTP, DNS ○ Application specific protocols (e.g. RDP, LDAP) ○ SWEN-331: Engineering Secure Software Benjamin S Meyers 10 10

  11. Crash Course in Network Communication Classic Model 7 Application 6 Presentation 5 Session 4 Transport 3 Network 2 DataLink 1 Physical OSI 7-Layer Model vs. Modern Network/Internet Model SWEN-331: Engineering Secure Software Benjamin S Meyers 11 11

  12. Crash Course in Network Communication Classic Model 7 Application 6 Presentation 5 Session 4 Transport 3 Network 2 DataLink 1 Physical Physical connection, data rates, bit level handling OSI 7-Layer Model vs. Modern Network/Internet Model SWEN-331: Engineering Secure Software Benjamin S Meyers 12 12

  13. Crash Course in Network Communication Classic Model 7 Application 6 Presentation 5 Session 4 Transport 3 Network 2 DataLink Pack/unpack data frame (MAC source/dest) -- unique identifier 1 Physical Physical connection, data rates, bit level handling OSI 7-Layer Model vs. Modern Network/Internet Model SWEN-331: Engineering Secure Software Benjamin S Meyers 13 13

  14. Crash Course in Network Communication Classic Model 7 Application 6 Presentation 5 Session 4 Transport 3 Network Packet routing (IP Address source/dest and port) to socket 2 DataLink Pack/unpack data frame (MAC source/dest) -- unique identifier 1 Physical Physical connection, data rates, bit level handling OSI 7-Layer Model vs. Modern Network/Internet Model SWEN-331: Engineering Secure Software Benjamin S Meyers 14 14

  15. Crash Course in Network Communication Classic Model 7 Application 6 Presentation 5 Session 4 Transport Responsible for quality of service and data integrity 3 Network Packet routing (IP Address source/dest and port) to socket 2 DataLink Pack/unpack data frame (MAC source/dest) -- unique identifier 1 Physical Physical connection, data rates, bit level handling OSI 7-Layer Model vs. Modern Network/Internet Model SWEN-331: Engineering Secure Software Benjamin S Meyers 15 15

  16. Crash Course in Network Communication Classic Model 7 Application 6 Presentation 5 Session Establishes connection between devices (also maintains, authenticates, etc.) 4 Transport Responsible for quality of service and data integrity 3 Network Packet routing (IP Address source/dest and port) to socket 2 DataLink Pack/unpack data frame (MAC source/dest) -- unique identifier 1 Physical Physical connection, data rates, bit level handling OSI 7-Layer Model vs. Modern Network/Internet Model SWEN-331: Engineering Secure Software Benjamin S Meyers 16 16

  17. Crash Course in Network Communication Classic Model 7 Application 6 Presentation Ensures compatibility between the data formats from lower to upper layers 5 Session Establishes connection between devices (also maintains, authenticates, etc.) 4 Transport Responsible for quality of service and data integrity 3 Network Packet routing (IP Address source/dest and port) to socket 2 DataLink Pack/unpack data frame (MAC source/dest) -- unique identifier 1 Physical Physical connection, data rates, bit level handling OSI 7-Layer Model vs. Modern Network/Internet Model SWEN-331: Engineering Secure Software Benjamin S Meyers 17 17

  18. Crash Course in Network Communication Classic Model 7 Application Works with applications to provide communications & functions 6 Presentation Ensures compatibility between the data formats from lower to upper layers 5 Session Establishes connection between devices (also maintains, authenticates, etc.) 4 Transport Responsible for quality of service and data integrity 3 Network Packet routing (IP Address source/dest and port) to socket 2 DataLink Pack/unpack data frame (MAC source/dest) -- unique identifier 1 Physical Physical connection, data rates, bit level handling OSI 7-Layer Model vs. Modern Network/Internet Model SWEN-331: Engineering Secure Software Benjamin S Meyers 18 18

  19. Crash Course in Network Communication Classic Model Modern Model 7 Application Works with applications to provide communications & functions Applications (FTP, 6 Presentation Ensures compatibility between the data formats from lower to upper layers HTTP, SMTP, etc.) 5 Session Establishes connection between devices (also maintains, authenticates, etc.) 4 Transport TCP Responsible for quality of service and data integrity 3 Network IP Packet routing (IP Address source/dest and port) to socket 2 DataLink Pack/unpack data frame (MAC source/dest) -- unique identifier Ethernet 1 Physical Physical connection, data rates, bit level handling OSI 7-Layer Model vs. Modern Network/Internet Model SWEN-331: Engineering Secure Software Benjamin S Meyers 19 19

  20. TCP/IP Communications Application Application Transport Transport Router Router Source Destination Network Network Network Network Computer Computer DataLink DataLink DataLink DataLink In a typical network, computers are on subnets; routers transmit between subnets SWEN-331: Engineering Secure Software Benjamin S Meyers 20 20

  21. TCP/IP Communications Client Server TCP Packet SEQ=1, LEN=700 TCP Packet ACK=1 TCP Packet SEQ=2, LEN=1000 ⋮ TCP Packet ACK=2 TCP Packet ⋮ SEQ=20, LEN=250 TCP Packet ACK=20 SWEN-331: Engineering Secure Software Benjamin S Meyers 21 21

Recommend

NETWORKING ATTACKS NETWORKING ATTACKS NOTICES Lab #2 extended to Feb. 17 @ 23:59 HW #3

NETWORKING ATTACKS NETWORKING ATTACKS NOTICES Lab #2 extended to Feb. 17 @ 23:59 HW #3

CMPS122: COMPUTER SECURITY NETWORKING ATTACKS NETWORKING ATTACKS NOTICES Lab #2 extended to Feb. 17 @ 23:59 HW #3 due tonight NETWORKING ATTACKS LAST TIME TCP/IP networking stack Physical layer Data link layer Network

1.1k views • 61 slides
Networking Attacks: Link-, IP-, and TCP-layer attacks Network Security Prof. Haojin Zhu

Networking Attacks: Link-, IP-, and TCP-layer attacks Network Security Prof. Haojin Zhu

Networking Attacks: Link-, IP-, and TCP-layer attacks Network Security Prof. Haojin Zhu Materials adopted from Prof. David Wagner 2019 General Communication Security Goals: CIA Confidentiality: No one can read our data / communication

876 views • 60 slides
Using Your Network 10-07-16 Networking & You What is networking? Benefits of

Using Your Network 10-07-16 Networking & You What is networking? Benefits of

Jordan Borrell Networking & Bioengineering Program Using Your Network 10-07-16 Networking & You What is networking? Benefits of networking. Who do I network with? Family/Friends/Neighbors School Connections

395 views • 14 slides
Resilient Networking 6: Attacks on DNS 1 Chapter Outline Overview of DNS Known attacks

Resilient Networking 6: Attacks on DNS 1 Chapter Outline Overview of DNS Known attacks

Resilient Networking 6: Attacks on DNS 1 Chapter Outline Overview of DNS Known attacks on DNS Denial-of-Service Cache Poisoning Securing DNS Split-Split-DNS DNSSEC 2 DNS The Domain Name System Naming Service

1.15k views • 46 slides
Wireless Security Wireless Network Attacks Access control attacks These attacks attempt to

Wireless Security Wireless Network Attacks Access control attacks These attacks attempt to

Wireless Security Wireless Network Attacks Access control attacks These attacks attempt to penetrate a network by using wireless or evading WLAN access control measures, like AP MAC filters and 802.1X port access controls. Type of Attack

184 views • 7 slides
Networking Attacks: Link-, IP-, and TCP-layer attacks CS 161: Computer Security Prof. David Wagner

Networking Attacks: Link-, IP-, and TCP-layer attacks CS 161: Computer Security Prof. David Wagner

Networking Attacks: Link-, IP-, and TCP-layer attacks CS 161: Computer Security Prof. David Wagner February 28, 2013 General Communication Security Goals: CIA Confidentiality: No one can read our data / communication unless we want

1.03k views • 58 slides
Computer Networking NETWORKING Computer Networking Computer network is like a phone system

Computer Networking NETWORKING Computer Networking Computer network is like a phone system

Computer Networking NETWORKING Computer Networking Computer network is like a phone system for computers, data call Basic outline is surprisingly simple, complex details Worth knowing .. using all the time The details of

424 views • 6 slides
Outline Brief introduction to networking CSci 5271 Introduction to Computer Security

Outline Brief introduction to networking CSci 5271 Introduction to Computer Security

Outline Brief introduction to networking CSci 5271 Introduction to Computer Security Announcements intermission Day 13: Network, etc., security overview Some classic network attacks Stephen McCamant University of Minnesota, Computer Science

504 views • 5 slides
Outline Brief introduction to networking CSci 5271 Announcements intermission Introduction to

Outline Brief introduction to networking CSci 5271 Announcements intermission Introduction to

Outline Brief introduction to networking CSci 5271 Announcements intermission Introduction to Computer Security Some classic network attacks Day 13: Network, etc., security overview Stephen McCamant Second half of course University of

429 views • 8 slides
Networking Don Porter CSE 506 Networking (2 parts) Goals: Review networking basics

Networking Don Porter CSE 506 Networking (2 parts) Goals: Review networking basics

Networking Don Porter CSE 506 Networking (2 parts) Goals: Review networking basics Discuss APIs Trace how a packet gets from the network device to the application (and back) Understand Receive livelock and NAPI 4

761 views • 48 slides
beyond network selection: exploiting access network hetero- geneity with named data networking

beyond network selection: exploiting access network hetero- geneity with named data networking

2nd ACM Conference on Information-Centric Networking . Klaus M. Schneider, Udo R. Krieger October 2, 2015 University of Bamberg, Germany 0 beyond network selection: exploiting access network hetero- geneity with named data networking 1

725 views • 25 slides
Successive Network Coding (SNC): A Mitigating Mechanism Against Eavesdropping Attacks In Network

Successive Network Coding (SNC): A Mitigating Mechanism Against Eavesdropping Attacks In Network

Successive Network Coding (SNC): A Mitigating Mechanism Against Eavesdropping Attacks In Network Coding Based Systems Vahid N. Talooki, University of Aveiro, Portugal Network Coding (NC) allows intermediate nodes not only to store and forward

307 views • 4 slides
Overview Network and Server Goal of Security Control Attacks and Penetration Phases of

Overview Network and Server Goal of Security Control Attacks and Penetration Phases of

Overview Network and Server Goal of Security Control Attacks and Penetration Phases of Control Methods of Taking Control Common Points of Attack Multifront Attacks Chapter 12 Auditing to Recognize Attacks Malicious

535 views • 7 slides
Lecture 13: Introduction to Networking Networking is simply communicating between two computers

Lecture 13: Introduction to Networking Networking is simply communicating between two computers

Lecture 13: Introduction to Networking Networking is simply communicating between two computers connected on a network. You can actually set up a network connection on a single computer, as well. A network requires one computer to act as the

388 views • 9 slides
Networking By Destiney Plaza Overview What is networking Architecture Hardware

Networking By Destiney Plaza Overview What is networking Architecture Hardware

Networking By Destiney Plaza Overview What is networking Architecture Hardware Networking Details Topologies Build your own network Networking Connection between two or more devices How do humans

1.31k views • 79 slides
Networking By Destiney Plaza Overview What is networking Architecture Hardware

Networking By Destiney Plaza Overview What is networking Architecture Hardware

Networking By Destiney Plaza Overview What is networking Architecture Hardware Networking Details Topologies Build your own network Networking Connection between two or more devices How do humans

1.06k views • 74 slides
CSE 127: Introduction to Security Lecture 11: Network Attacks Nadia Heninger and Deian Stefan

CSE 127: Introduction to Security Lecture 11: Network Attacks Nadia Heninger and Deian Stefan

CSE 127: Introduction to Security Lecture 11: Network Attacks Nadia Heninger and Deian Stefan UCSD Fall 2019 Some material from Stefan Savage, David Wagner, and Nick Weaver Threat Modeling for Network Attacks Basic security goals:

804 views • 31 slides
Network Threats & Attacks 1 Internet Structure backbone ISP local network Internet

Network Threats & Attacks 1 Internet Structure backbone ISP local network Internet

CS 134 Winter 2018 Lecture 16 Network Threats & Attacks 1 Internet Structure backbone ISP local network Internet service Autonomous system (AS) is a provider (ISP) collection of IP networks under control local network of a single

769 views • 54 slides
Preventing brute force attacks against stack canary protector on networking servers Hector

Preventing brute force attacks against stack canary protector on networking servers Hector

Preventing brute force attacks against stack canary protector on networking servers Hector Marco Preventing brute force attacks against stack canary protector on networking servers Hector Marco-Gisbert , Ismael Ripoll Universit` at Polit`

721 views • 44 slides
CSE 127: Introduction to Security Lecture 10: Network Attacks Deian Stefan UCSD Winter 2020

CSE 127: Introduction to Security Lecture 10: Network Attacks Deian Stefan UCSD Winter 2020

CSE 127: Introduction to Security Lecture 10: Network Attacks Deian Stefan UCSD Winter 2020 Material from Nadia Heninger, Stefan Savage, David Wagner, and Nick Weaver Threat Modeling for Network Attacks Basic security goals:

585 views • 36 slides
CSE 127: Introduction to Security Lecture 13: Network Attacks Deian Stefan UCSD Fall 2020

CSE 127: Introduction to Security Lecture 13: Network Attacks Deian Stefan UCSD Fall 2020

CSE 127: Introduction to Security Lecture 13: Network Attacks Deian Stefan UCSD Fall 2020 Material from Nadia Heninger, Stefan Savage, David Wagner, and Nick Weaver Threat modeling for network attacks Basic security goals:

1.11k views • 39 slides
Network/Internet Threats/Attacks 1 Internet Structure backbone ISP local network Internet

Network/Internet Threats/Attacks 1 Internet Structure backbone ISP local network Internet

Lecture 17 CS 134 Spring 2019 Network/Internet Threats/Attacks 1 Internet Structure backbone ISP local network Internet service Autonomous system (AS) is a provider (ISP) local network collection of IP networks under control of a

643 views • 25 slides
Attacks in SDN Domains Kostas Giotis , Maria Apostolaki, Vasilis Maglaris IEEE/IFIP Network

Attacks in SDN Domains Kostas Giotis , Maria Apostolaki, Vasilis Maglaris IEEE/IFIP Network

NATIONAL TECHNICAL UNIVERSITY OF ATHENS - NTUA SCHOOL OF ELECTRICAL & COMPUTER ENGINEERING NETWORK MANAGEMENT & OPTIMAL DESIGN LABORATORY (NETMODE) A Reputation-based Collaborative Schema for the Mitigation of Distributed Attacks in SDN

631 views • 9 slides
+ Project Physical A Final exam (1 hour) Data Link All equal weighting Network

+ Project Physical A Final exam (1 hour) Data Link All equal weighting Network

Networking 101 Networking 101 Course details Networking 101 Objectives Ma el Auzias How do computers ENSIBS - UBS communicate? What are the mechanisms September 2015 under an HTTP request or a telegram message? Networks are

758 views • 27 slides

More recommend