protecting yourself apps methods practices
play

Protecting yourself: apps, methods, practices Week 6 Frank Chen | - PowerPoint PPT Presentation

Yubikey, a physical key that provides 2-factor authentication CS 88S Protecting yourself: apps, methods, practices Week 6 Frank Chen | Spring 2017 Frank Chen | Spring 2017 Agenda WireShark Demo, Final Project Review last weeks


  1. Yubikey, a physical key that provides 2-factor authentication CS 88S Protecting yourself: apps, methods, practices Week 6 Frank Chen | Spring 2017 Frank Chen | Spring 2017

  2. Agenda ● WireShark Demo, Final Project ● Review last week’s material ● HTTPS, Safe Practices Online ● 2 Factor Authentication ● Back up everything ● Use a Password Manager Frank Chen | Spring 2017

  3. Agenda ● WireShark Demo, Final Project ● Review last week’s material ● HTTPS, Safe Practices Online ● 2 Factor Authentication ● Back up everything ● Use a Password Manager Frank Chen | Spring 2017

  4. YouTube Phish Frank Chen | Spring 2017 Source: http://bit.ly/2pIoWQW

  5. Google Docs Phish Frank Chen | Spring 2017 Source: http://bit.ly/2pIoWQW

  6. Google Docs Phish Frank Chen | Spring 2017 Source: http://bit.ly/2pIoWQW

  7. Wireshark Demo Frank Chen | Spring 2017

  8. Final Project kfrankc.me/cs88s/final_project.pdf Frank Chen | Spring 2017 Image Source: http://bit.ly/2pIoWQW

  9. Agenda ● WireShark Demo, Final Project ● Review last week’s material ● HTTPS, Safe Practices Online ● 2 Factor Authentication ● Back up everything ● Use a Password Manager Frank Chen | Spring 2017

  10. 1 2 3 4 5 6 7 What happens when you type www.google.com ? Frank Chen | Spring 2017

  11. Symmetric Key Key used to unlock and lock the drawer Frank Chen | Spring 2017 Source: http://bit.ly/1I2YUeS

  12. Public/Private Key Private Key turns Public Key turns only only clockwise counter-clockwise Frank Chen | Spring 2017 Image Source: http://bit.ly/1I2YUeS

  13. Virtual Private Network (VPN) Internet Websites, You Service Resources Provider (ISP) VPN Tunnel Frank Chen | Spring 2017 Source: http://bit.ly/2qBrNZh

  14. So Far... cybersecurity ✔ protect myself ✘ hack ✔ privacy ✘ money, personal contact, identification ✔ extra ( security in IoT devices ) ✘ Frank Chen | Spring 2017

  15. Agenda ● WireShark Demo, Final Project ● Review last week’s material ● HTTPS, Safe Practices Online ● 2 Factor Authentication ● Back up everything ● Use a Password Manager Frank Chen | Spring 2017

  16. HTTP Def: HTTP (Hypertext Transfer Protocol) is the procedure for exchanging information on the Internet It is easy to intercept Frank Chen | Spring 2017

  17. How secure is HTTP? ✘ Authentication ✘ Integrity ✘ Privacy Frank Chen | Spring 2017

  18. HTTPS, abridged Source: http://bit.ly/2qEPNyc Frank Chen | Spring 2017

  19. HTTPS, abridged Def: HTTPS is HTTP over Secure Socket Layer. HTTPS encrypts an HTTP message prior to transmission and decrypts a message upon arrival via SSL Transaction. Frank Chen | Spring 2017

  20. SSL Transaction Browser Server Browser Generate Public Key Encrypt data using Decrypt data using its Give Server Send back to using RSA Algorithm Browser's public key own private key Public Key Browser Source: http://bit.ly/2pTzoTY ***Note: To further understand the relationship between SSL and HTTP, you'll first need to understand the OSI model of Computer Networks, which is out of the scope of this class. Frank Chen | Spring 2017

  21. SSL Transaction Image Source: http://bit.ly/2qoE6w9 Frank Chen | Spring 2017

  22. How secure is HTTPS? ✔ Authentication ✔ Integrity ✔ Privacy Frank Chen | Spring 2017

  23. HTTPS Everywhere ● Browser Extension ● Automatically redirect HTTP webpage into HTTPS webpage if possible ● Open Source Source: http://bit.ly/2qcu3df Frank Chen | Spring 2017

  24. Be Wary of Public Wi-Fi Frank Chen | Spring 2017

  25. Be Wary of Email Links Frank Chen | Spring 2017

  26. Agenda ● WireShark Demo, Final Project ● Review last week’s material ● HTTPS, Safe Practices Online ● 2 Factor Authentication ● Back up everything ● Use a Password Manager Frank Chen | Spring 2017

  27. Authentication What you know What you own Who you are Frank Chen | Spring 2017

  28. Authentication What you know What you own Who you are Frank Chen | Spring 2017

  29. Which Password is more secure? monkey-ocean-superior-pillow 3058472038475 Frank Chen | Spring 2017

  30. They are about the same Source: http://bit.ly/2pmNOuB Frank Chen | Spring 2017

  31. Which Password is more secure? monkey-ocean-superior-pillow 4 common words: 2000 4 ~ 2 43.9 combinations 3058472038475 13 random digits: 10 13 ~ 2 43.2 combinations Source: http://bit.ly/2pmNOuB Frank Chen | Spring 2017

  32. Authentication What you know What you own Who you are Frank Chen | Spring 2017

  33. Yubikey ● Physical 2-Factor Authentication Device ● Generates One-Time-Passwords (OTPs) Frank Chen | Spring 2017

  34. Yubikey's OTP cccjgjgkhcbb irdrfdnlnghhfgrtnnlgedjlftrbdeut cccjgjgkhcbb gefdkbbditfjrlniggevfhenublfnrev cccjgjgkhcbb cvchfkfhiiuunbtnvgihdfiktncvlhck Frank Chen | Spring 2017

  35. Source: http://bit.ly/2qP6yUb Frank Chen | Spring 2017

  36. Yubikey Demonstration Frank Chen | Spring 2017

  37. 2-Factor OTP Generators Frank Chen | Spring 2017

  38. Authentication What you know What you own Who you are Frank Chen | Spring 2017

  39. Fingerprint Scanner Source: http://apple.co/1En9Tz7 Frank Chen | Spring 2017

  40. Single Sign-On Source: https://shibboleth.net/ Source: https://www.okta.com/ Frank Chen | Spring 2017

  41. Agenda ● WireShark Demo, Final Project ● Review last week’s material ● HTTPS, Safe Practices Online ● 2 Factor Authentication ● Back up everything ● Use a Password Manager Frank Chen | Spring 2017

  42. Cloud Storage Frank Chen | Spring 2017

  43. External Hard Drive Frank Chen | Spring 2017

  44. Agenda ● WireShark Demo, Final Project ● Review last week’s material ● HTTPS, Safe Practices Online ● 2 Factor Authentication ● Back up everything ● Use a Password Manager Frank Chen | Spring 2017

  45. Password Managers Frank Chen | Spring 2017

  46. S�f��� �� ��� C���� T�� Follow at least one of the Practices listed today! Frank Chen | Spring 2017

  47. Facebook's massive data center in Luleå Next Week... Frank Chen | Spring 2017

Recommend


More recommend