protecting yourself apps methods practices
play

Protecting yourself: apps, methods, practices Week 6 Frank Chen | - PowerPoint PPT Presentation

Aug 14, 2022 •22 likes •492 views

Yubikey, a physical key that provides 2-factor authentication CS 88S Protecting yourself: apps, methods, practices Week 6 Frank Chen | Spring 2017 Frank Chen | Spring 2017 Agenda WireShark Demo, Final Project Review last weeks

  1. Yubikey, a physical key that provides 2-factor authentication CS 88S Protecting yourself: apps, methods, practices Week 6 Frank Chen | Spring 2017 Frank Chen | Spring 2017

  2. Agenda ● WireShark Demo, Final Project ● Review last week’s material ● HTTPS, Safe Practices Online ● 2 Factor Authentication ● Back up everything ● Use a Password Manager Frank Chen | Spring 2017

  3. Agenda ● WireShark Demo, Final Project ● Review last week’s material ● HTTPS, Safe Practices Online ● 2 Factor Authentication ● Back up everything ● Use a Password Manager Frank Chen | Spring 2017

  4. YouTube Phish Frank Chen | Spring 2017 Source: http://bit.ly/2pIoWQW

  5. Google Docs Phish Frank Chen | Spring 2017 Source: http://bit.ly/2pIoWQW

  6. Google Docs Phish Frank Chen | Spring 2017 Source: http://bit.ly/2pIoWQW

  7. Wireshark Demo Frank Chen | Spring 2017

  8. Final Project kfrankc.me/cs88s/final_project.pdf Frank Chen | Spring 2017 Image Source: http://bit.ly/2pIoWQW

  9. Agenda ● WireShark Demo, Final Project ● Review last week’s material ● HTTPS, Safe Practices Online ● 2 Factor Authentication ● Back up everything ● Use a Password Manager Frank Chen | Spring 2017

  10. 1 2 3 4 5 6 7 What happens when you type www.google.com ? Frank Chen | Spring 2017

  11. Symmetric Key Key used to unlock and lock the drawer Frank Chen | Spring 2017 Source: http://bit.ly/1I2YUeS

  12. Public/Private Key Private Key turns Public Key turns only only clockwise counter-clockwise Frank Chen | Spring 2017 Image Source: http://bit.ly/1I2YUeS

  13. Virtual Private Network (VPN) Internet Websites, You Service Resources Provider (ISP) VPN Tunnel Frank Chen | Spring 2017 Source: http://bit.ly/2qBrNZh

  14. So Far... cybersecurity ✔ protect myself ✘ hack ✔ privacy ✘ money, personal contact, identification ✔ extra ( security in IoT devices ) ✘ Frank Chen | Spring 2017

  15. Agenda ● WireShark Demo, Final Project ● Review last week’s material ● HTTPS, Safe Practices Online ● 2 Factor Authentication ● Back up everything ● Use a Password Manager Frank Chen | Spring 2017

  16. HTTP Def: HTTP (Hypertext Transfer Protocol) is the procedure for exchanging information on the Internet It is easy to intercept Frank Chen | Spring 2017

  17. How secure is HTTP? ✘ Authentication ✘ Integrity ✘ Privacy Frank Chen | Spring 2017

  18. HTTPS, abridged Source: http://bit.ly/2qEPNyc Frank Chen | Spring 2017

  19. HTTPS, abridged Def: HTTPS is HTTP over Secure Socket Layer. HTTPS encrypts an HTTP message prior to transmission and decrypts a message upon arrival via SSL Transaction. Frank Chen | Spring 2017

  20. SSL Transaction Browser Server Browser Generate Public Key Encrypt data using Decrypt data using its Give Server Send back to using RSA Algorithm Browser's public key own private key Public Key Browser Source: http://bit.ly/2pTzoTY ***Note: To further understand the relationship between SSL and HTTP, you'll first need to understand the OSI model of Computer Networks, which is out of the scope of this class. Frank Chen | Spring 2017

  21. SSL Transaction Image Source: http://bit.ly/2qoE6w9 Frank Chen | Spring 2017

  22. How secure is HTTPS? ✔ Authentication ✔ Integrity ✔ Privacy Frank Chen | Spring 2017

  23. HTTPS Everywhere ● Browser Extension ● Automatically redirect HTTP webpage into HTTPS webpage if possible ● Open Source Source: http://bit.ly/2qcu3df Frank Chen | Spring 2017

  24. Be Wary of Public Wi-Fi Frank Chen | Spring 2017

  25. Be Wary of Email Links Frank Chen | Spring 2017

  26. Agenda ● WireShark Demo, Final Project ● Review last week’s material ● HTTPS, Safe Practices Online ● 2 Factor Authentication ● Back up everything ● Use a Password Manager Frank Chen | Spring 2017

  27. Authentication What you know What you own Who you are Frank Chen | Spring 2017

  28. Authentication What you know What you own Who you are Frank Chen | Spring 2017

  29. Which Password is more secure? monkey-ocean-superior-pillow 3058472038475 Frank Chen | Spring 2017

  30. They are about the same Source: http://bit.ly/2pmNOuB Frank Chen | Spring 2017

  31. Which Password is more secure? monkey-ocean-superior-pillow 4 common words: 2000 4 ~ 2 43.9 combinations 3058472038475 13 random digits: 10 13 ~ 2 43.2 combinations Source: http://bit.ly/2pmNOuB Frank Chen | Spring 2017

  32. Authentication What you know What you own Who you are Frank Chen | Spring 2017

  33. Yubikey ● Physical 2-Factor Authentication Device ● Generates One-Time-Passwords (OTPs) Frank Chen | Spring 2017

  34. Yubikey's OTP cccjgjgkhcbb irdrfdnlnghhfgrtnnlgedjlftrbdeut cccjgjgkhcbb gefdkbbditfjrlniggevfhenublfnrev cccjgjgkhcbb cvchfkfhiiuunbtnvgihdfiktncvlhck Frank Chen | Spring 2017

  35. Source: http://bit.ly/2qP6yUb Frank Chen | Spring 2017

  36. Yubikey Demonstration Frank Chen | Spring 2017

  37. 2-Factor OTP Generators Frank Chen | Spring 2017

  38. Authentication What you know What you own Who you are Frank Chen | Spring 2017

  39. Fingerprint Scanner Source: http://apple.co/1En9Tz7 Frank Chen | Spring 2017

  40. Single Sign-On Source: https://shibboleth.net/ Source: https://www.okta.com/ Frank Chen | Spring 2017

  41. Agenda ● WireShark Demo, Final Project ● Review last week’s material ● HTTPS, Safe Practices Online ● 2 Factor Authentication ● Back up everything ● Use a Password Manager Frank Chen | Spring 2017

  42. Cloud Storage Frank Chen | Spring 2017

  43. External Hard Drive Frank Chen | Spring 2017

  44. Agenda ● WireShark Demo, Final Project ● Review last week’s material ● HTTPS, Safe Practices Online ● 2 Factor Authentication ● Back up everything ● Use a Password Manager Frank Chen | Spring 2017

  45. Password Managers Frank Chen | Spring 2017

  46. S�f��� �� ��� C���� T�� Follow at least one of the Practices listed today! Frank Chen | Spring 2017

  47. Facebook's massive data center in Luleå Next Week... Frank Chen | Spring 2017

Recommend

OSGi Best and Worst Practices Martin Lippert Context Client apps using: Swing,

OSGi Best and Worst Practices Martin Lippert Context Client apps using: Swing,

OSGi Best and Worst Practices Martin Lippert Context Client apps using: Swing, Hibernate, JDO, JDBC, JNI, SOAP, a lot of Apache stuff, JUnit, FIT, Spring DM, Jetty, CICS-Adaptor, Server apps using: JDO, Hibernate, SOAP,

583 views • 41 slides
Small Business Apps WHAT ARE MOBI LE APPS ? W h a t are mob i le apps ? A little bit of

Small Business Apps WHAT ARE MOBI LE APPS ? W h a t are mob i le apps ? A little bit of

WELCOME Small Business Apps WHAT ARE MOBI LE APPS ? W h a t are mob i le apps ? A little bit of information An App is a piece of so ware (a program) that needs to be installed on Mobile Apps are device specific, meaning that an App that runs

268 views • 12 slides
Challenges and Best Practices Managing Fiduciary Powers and Duties; Controlling, Protecting and

Challenges and Best Practices Managing Fiduciary Powers and Duties; Controlling, Protecting and

Presenting a live 90-minute webinar with interactive Q&A Trust Administration: Challenges and Best Practices Managing Fiduciary Powers and Duties; Controlling, Protecting and Distributing Trust Assets; Disbursing Fees and Expenses TUESDAY,

2.53k views • 113 slides
Mobile Apps: 10 Best Practices for Construction Industry Agenda: Provide 10 actionable and

Mobile Apps: 10 Best Practices for Construction Industry Agenda: Provide 10 actionable and

Mobile Apps: 10 Best Practices for Construction Industry Agenda: Provide 10 actionable and concrete examples of how to use mobile apps in construction industry First some stats Construction businesses most commonly use mobile

619 views • 21 slides
Boxing them in Buggy apps can crash other apps The Kernel App 1 App 2 App 3 Buggy apps can

Boxing them in Buggy apps can crash other apps The Kernel App 1 App 2 App 3 Buggy apps can

Boxing them in Buggy apps can crash other apps The Kernel App 1 App 2 App 3 Buggy apps can crash OS wants to be your friend Buggy apps can hog all resources Operating System Malicious apps can violate Reading and writing memory, privacy

548 views • 17 slides
F ROM WEBSITES TO APPS , AND NOW FROM APPS TO CHATBOTS ? A NTNIO B RANCO FROM APPS TO CHATBOTS

F ROM WEBSITES TO APPS , AND NOW FROM APPS TO CHATBOTS ? A NTNIO B RANCO FROM APPS TO CHATBOTS

F ROM WEBSITES TO APPS , AND NOW FROM APPS TO CHATBOTS ? A NTNIO B RANCO FROM APPS TO CHATBOTS CEO of large social network in annual development conference 2 months ago Shared vision for next 2 decades: past : with advent of PCs, companies

498 views • 14 slides
Good practices at the national level Good practices at the national level protecting the

Good practices at the national level Good practices at the national level protecting the

Good practices at the national level Good practices at the national level protecting the occupational health of protecting the occupational health of health workers health workers ILO International OSH Conference ILO International OSH

689 views • 44 slides
Development Techniques for Native/Hybrid Tizen Apps Presented by Kirill Kruchinkin Agenda

Development Techniques for Native/Hybrid Tizen Apps Presented by Kirill Kruchinkin Agenda

Development Techniques for Native/Hybrid Tizen Apps Presented by Kirill Kruchinkin Agenda Introduction and Definitions Practices Case Studies 2 Introduction & Definitions 2 App Types Browser Apps Installable Apps

402 views • 36 slides
The Kernel wants to be your friend Boxing them in Buggy apps can crash other apps App 1 App 2

The Kernel wants to be your friend Boxing them in Buggy apps can crash other apps App 1 App 2

The Kernel wants to be your friend Boxing them in Buggy apps can crash other apps App 1 App 2 App 3 Buggy apps can crash OS Buggy apps can hog all resources Operating System Malicious apps can violate Reading and writing memory, privacy

1.15k views • 67 slides
Source Water Protection Best Management Practices and Other Measures for Protecting Drinking

Source Water Protection Best Management Practices and Other Measures for Protecting Drinking

August 2002 Source Water Protection Best Management Practices and Other Measures for Protecting Drinking Water Supplies 11 August 2002 Acknowledgements The U. S. Environmental Protection Agency would like to acknowledge the contributions

1.56k views • 125 slides
Vembu Technologies Experience 100+ Countries 24X7 Support www.vembu.com Best practices for

Vembu Technologies Experience 100+ Countries 24X7 Support www.vembu.com Best practices for

Vembu Technologies Experience 100+ Countries 24X7 Support www.vembu.com Best practices for protecting your data center from disaster Criterias for protecting a Data-center Achieving your objectives Agenda How Vembu ensures data protection?

463 views • 22 slides
Apps to Communicate with Students Josh Tjosaas-Northland Community and Technical

Apps to Communicate with Students Josh Tjosaas-Northland Community and Technical

Devices, Methods and Apps to Communicate with Students Josh Tjosaas-Northland Community and Technical College-Moorhead, MN Mike Mastey-Ridgewater College- Belgrade, MN We are going to highlight some of our favorite apps from our phones,

846 views • 57 slides
By: Taylor Thomas & Ashley Fischer There are apps for just about EVERYTHING! There are

By: Taylor Thomas & Ashley Fischer There are apps for just about EVERYTHING! There are

By: Taylor Thomas & Ashley Fischer There are apps for just about EVERYTHING! There are new apps being developed and posted everyday. Some of the best apps you will ever find are FREE! There are two ways to download apps for

606 views • 38 slides
OAuth 2.0 for Browser Based Apps OAuth Security Workshop 2019 David Waite, Principal Technical

OAuth 2.0 for Browser Based Apps OAuth Security Workshop 2019 David Waite, Principal Technical

OAuth 2.0 for Browser Based Apps OAuth Security Workshop 2019 David Waite, Principal Technical Architect, Ping Identity Purpose Best Current Practices Document Builds mostly on RFC 8252 - OAuth 2.0 for Native Apps I-D

386 views • 10 slides
Adaptive Progressive Web Apps PWA Progressive Web Apps are just great websites that can behave

Adaptive Progressive Web Apps PWA Progressive Web Apps are just great websites that can behave

Adaptive Progressive Web Apps PWA Progressive Web Apps are just great websites that can behave like native apps Progressive Web Apps are just great apps, powered by Web technologies and delivered with Web infrastructure.

454 views • 32 slides
Using Research and Development to Redesign: Immediately Implementable Methods and Practices to

Using Research and Development to Redesign: Immediately Implementable Methods and Practices to

WEBINAR Using Research and Development to Redesign: Immediately Implementable Methods and Practices to Accelerate Learning and Results for ALL Kids September 8, 2020 Welcome Introduce yourselves. Share who you are, where you are from,

914 views • 52 slides
Pr Protecting Ourselves, Pr Protecting Ot Other hers Pa Part 1: Wha What to Wear at Work k

Pr Protecting Ourselves, Pr Protecting Ot Other hers Pa Part 1: Wha What to Wear at Work k

6/2/20 HealthMatters in our Homes Pr Protecting Ourselves, Pr Protecting Ot Other hers Pa Part 1: Wha What to Wear at Work k and nd Wh Why 1 During this presentation, we will: Summarize what COVID-19 is, how it spreads, and who

463 views • 19 slides
2015-16 Results: Thank You! Goal = 415,000 apps Actual = 427,695 apps $30,000 in

2015-16 Results: Thank You! Goal = 415,000 apps Actual = 427,695 apps $30,000 in

More Than a Meal Campaign 2016-17 Two applications, one deadline, many student resources 2015-16 Results: Thank You! Goal = 415,000 apps Actual = 427,695 apps $30,000 in recognition awards $60M/3 yrs in new revenue to the

345 views • 10 slides
All About Apps Well cover... Whats an app? What are app permissions? What do

All About Apps Well cover... Whats an app? What are app permissions? What do

All About Apps Well cover... Whats an app? What are app permissions? What do companies gain by getting your permission? Typical permissions requested by apps How to check up on apps already on your phone App safety

134 views • 11 slides
in Android apps Shin Hwei Zhen Xiang Abhik Tan Dong Gao Roychoudhury 2 Prevalence of

in Android apps Shin Hwei Zhen Xiang Abhik Tan Dong Gao Roychoudhury 2 Prevalence of

Repairing crashes in Android apps Shin Hwei Zhen Xiang Abhik Tan Dong Gao Roychoudhury 2 Prevalence of Mobile Apps App Store Google Play Launched with 500 apps. 3.5 millions apps By July 17, 10 millions available for download apps

518 views • 22 slides
Hails: Protecting Data Privacy in Untrusted Web Applications Daniel B. Giffin, Amit Levy, Deian

Hails: Protecting Data Privacy in Untrusted Web Applications Daniel B. Giffin, Amit Levy, Deian

Hails: Protecting Data Privacy in Untrusted Web Applications Daniel B. Giffin, Amit Levy, Deian Stefan, David Terei, John Mitchell, David Mazires, and Alejandro Russo Web platforms are great ! They allow third-party developers to build apps

714 views • 54 slides
Think Tank for cross-fertilisation of best practices, methods, new ideas and learning. From

Think Tank for cross-fertilisation of best practices, methods, new ideas and learning. From

Think Tank for cross-fertilisation of best practices, methods, new ideas and learning. From learning communities to think tanks. Pivi Kujala Director Finnish National Rural Network Unit Peter Backa Senior expert European Rural Alliance

329 views • 13 slides
On the Road: Websites and Apps for Travel Loading the Right Apps Lets you get the most out

On the Road: Websites and Apps for Travel Loading the Right Apps Lets you get the most out

On the Road: Websites and Apps for Travel Loading the Right Apps Lets you get the most out of your vacation Helps you avoid missing important sites Eliminates confusion while travelling Keeps you connected to home Tips for

971 views • 39 slides
Mobile Apps INFM 603 Week 10 Agenda Questions Mobile Apps HCI Project

Mobile Apps INFM 603 Week 10 Agenda Questions Mobile Apps HCI Project

Mobile Apps INFM 603 Week 10 Agenda Questions Mobile Apps HCI Project discussions Native Apps Live on device Access to all device features GPS, accelerometer, compass, list of contacts Written for specific

654 views • 38 slides

More recommend