security concepts
play

Security Concepts Deian Stefan Slides adopted from Kirill Levchenko - PowerPoint PPT Presentation

Feb 10, 2023 •43 likes •373 views

CSE 127: Computer Security Security Concepts Deian Stefan Slides adopted from Kirill Levchenko and Stefan Savage Computer Security Analysis and protection of computer systems in an adversarial setting What is an adversary? An adversary

  1. CSE 127: Computer Security Security Concepts Deian Stefan Slides adopted from Kirill Levchenko and Stefan Savage

  2. Computer Security Analysis and protection of computer 
 systems in an adversarial setting

  3. What is an adversary? • An adversary is someone who seeks an outcome detrimental to your interests • We assume rational adversaries ➤ I.e., they act to maximize their payoff

  4. Adversarial Setting Example: Games ➤ Structured adversarial setting ➤ Opposing objectives well-defined

  5. Adversary or Attacker? • An adversary becomes an attacker when they act in a way that is detrimental to your interests • Distinction is not hugely important ➤ Adversary often used in cryptography ➤ Attacker often used in computer security ➤ Both ultimately mean “bad person”

  6. How do we define attackers? • Motives: ➤ Curiosity ➤ Fame ➤ Money ➤ National interest • Resources: ➤ Time, money, and training

  7. Classes of Attackers National Interest Spy Personal Gain Thief Trespasser Personal Fame Curiosity Vandal Author Script-Kiddy Hobbyist Expert Specialist Hacker From David Aucsmith, Microsoft.

  8. Computer Security Analysis and protection of computer 
 systems in an adversarial setting

  9. What do we mean by protection? • Protection of systems against an adversary ➤ Secrecy: Can’t view protected information ➤ Integrity: Can’t modify protected info or process ➤ Availability: Can’t deny access to system for others

  10. Computer Security Analysis and protection of computer 
 systems in an adversarial setting

Recommend

Outline Security Principles and Policies Security terms and concepts CS 239 Security

Outline Security Principles and Policies Security terms and concepts CS 239 Security

Outline Security Principles and Policies Security terms and concepts CS 239 Security policies Computer Security Basic concepts Peter Reiher Security policies for real systems January 13, 2005 Lecture 2 Lecture 2 Page 1

347 views • 9 slides
23-04-18 Advanced Network Security 3. Agreement and consensus I: concepts and protocols for

23-04-18 Advanced Network Security 3. Agreement and consensus I: concepts and protocols for

23-04-18 Advanced Network Security 3. Agreement and consensus I: concepts and protocols for crash failures Jaap-Henk Hoepman Digital Security (DS) Radboud University Nijmegen, the Netherlands @xotoxot // * jhh@cs.ru.nl // 8 www.cs.ru.nl/~jhh

115 views • 8 slides
SECURITY TESTING Towards a safer web world AGENDA 1. 3 WS OF SECURITY TESTING 2. SECURITY

SECURITY TESTING Towards a safer web world AGENDA 1. 3 WS OF SECURITY TESTING 2. SECURITY

SECURITY TESTING Towards a safer web world AGENDA 1. 3 WS OF SECURITY TESTING 2. SECURITY TESTING CONCEPTS 3. SECURITY TESTING TYPES 4. TOP 10 SECURITY RISKS Few Security Breaches Date: 2013-14 September 2016, while in negotiations to

404 views • 18 slides
Cracking Drupal Security concepts and pitfalls Klaus Purer Peter Wolanin Security strategies

Cracking Drupal Security concepts and pitfalls Klaus Purer Peter Wolanin Security strategies

Cracking Drupal Security concepts and pitfalls Klaus Purer Peter Wolanin Security strategies Trust - who can do what Principle of least privilege - each site user should have only the permissions necessary to do their job Defense

623 views • 36 slides
Lecture 02 (28.10.2013) Concepts of Safety and Security Christoph Lth Christian Liguda SQS,

Lecture 02 (28.10.2013) Concepts of Safety and Security Christoph Lth Christian Liguda SQS,

Systeme hoher Qualitt und Sicherheit Universitt Bremen, WS 2013/14 Lecture 02 (28.10.2013) Concepts of Safety and Security Christoph Lth Christian Liguda SQS, WS 13/14 SQS, WS 13/14 Where are we? Lecture 01: Concepts of Quality

1.15k views • 50 slides
Introduction to Security Comm. Security Strategy Summary ITS335: IT Security Sirindhorn

Introduction to Security Comm. Security Strategy Summary ITS335: IT Security Sirindhorn

ITS335 Intro. to Security Concepts Threats, Attacks, Assets Introduction to Security Comm. Security Strategy Summary ITS335: IT Security Sirindhorn International Institute of Technology Thammasat University Prepared by Steven Gordon on 2

965 views • 34 slides
Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and

Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and

Cryptography Cryptography Concepts and Terminology Security Concepts Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and Terminology Cryptography School of Engineering and Technology CQUniversity

322 views • 11 slides
Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and

Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and

Cryptography Cryptography Concepts and Terminology Security Concepts Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and Terminology Cryptography School of Engineering and Technology CQUniversity

453 views • 11 slides
Network Security & Privacy Liability: An Overview of Loss Mitigation Concepts and Data Breach

Network Security & Privacy Liability: An Overview of Loss Mitigation Concepts and Data Breach

Network Security & Privacy Liability: An Overview of Loss Mitigation Concepts and Data Breach Response Services March 20 th , 2012 Brian Cole, Managing Director Professional Liability Specialty Practice Overview of Topics Cyber Security

611 views • 21 slides
Security Concepts (cont) Deian Stefan Slides adopted from Kirill Levchenko and Stefan Savage

Security Concepts (cont) Deian Stefan Slides adopted from Kirill Levchenko and Stefan Savage

CSE 127: Computer Security Security Concepts (cont) Deian Stefan Slides adopted from Kirill Levchenko and Stefan Savage Incentives and Deterrents Attackers equation: (expected gain) > (cost of attack) Defenders equation:

301 views • 28 slides
Cracking Drupal Subtitle Security concepts and pitfalls Peter Wolanin Add speaker name here

Cracking Drupal Subtitle Security concepts and pitfalls Peter Wolanin Add speaker name here

Drupaldelphia May 10, 2019 Title slide Cracking Drupal Subtitle Security concepts and pitfalls Peter Wolanin Add speaker name here http://vuln.rocks/crackdru Special thanks to Klaus Purer for creating the original talk and slides Agenda

967 views • 51 slides
SCION: PKI Overview Adrian Perrig Network Security Group, ETH Zrich PKI Concepts: Brief

SCION: PKI Overview Adrian Perrig Network Security Group, ETH Zrich PKI Concepts: Brief

SCION: PKI Overview Adrian Perrig Network Security Group, ETH Zrich PKI Concepts: Brief Introduction PKI: Public-Key Infrastructure Purpose of PKI: enable authentication of an entity Various types of entities Autonomous System

492 views • 32 slides
{ Concepts and Strategic Connections Mad Scientist 2016, Washington DC Elizabeth L. Chalecki,

{ Concepts and Strategic Connections Mad Scientist 2016, Washington DC Elizabeth L. Chalecki,

Environmental Security: 2050 { Concepts and Strategic Connections Mad Scientist 2016, Washington DC Elizabeth L. Chalecki, PhD University of Nebraska Omaha Stimson Center National security resulted from military victory on the

351 views • 24 slides
Roadmap for Section 7.2. Windows Security Features Components of the Security System Windows

Roadmap for Section 7.2. Windows Security Features Components of the Security System Windows

Unit OS7: Security 7.2. Windows Security Components and Concepts Windows Operating System Internals - by David A. Solomon and Mark E. Russinovich with Andreas Polze Roadmap for Section 7.2. Windows Security Features Components of the Security

453 views • 14 slides
Security and Data Privacy Instructor: Pratiksha Thaker cs245.stanford.edu Outline Security

Security and Data Privacy Instructor: Pratiksha Thaker cs245.stanford.edu Outline Security

Security and Data Privacy Instructor: Pratiksha Thaker cs245.stanford.edu Outline Security requirements Key concepts and tools Differential privacy Other security tools CS 245 2 Outline Security requirements Key concepts and tools

1.53k views • 86 slides
Security and Data Privacy Instructor: Matei Zaharia cs245.stanford.edu Outline Security

Security and Data Privacy Instructor: Matei Zaharia cs245.stanford.edu Outline Security

Security and Data Privacy Instructor: Matei Zaharia cs245.stanford.edu Outline Security requirements Key concepts and tools Differential privacy Other security tools CS 245 2 Outline Security requirements Key concepts and tools

873 views • 62 slides
Security Principles, Policies, and Tools CS 236 On-Line MS Program Networks and Systems

Security Principles, Policies, and Tools CS 236 On-Line MS Program Networks and Systems

Security Principles, Policies, and Tools CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 2 Page 1 CS 236 Online Outline Security design principles Security policies Basic concepts Security

419 views • 12 slides
Module 20: Security The Security Problem Authentication Program Threats System

Module 20: Security The Security Problem Authentication Program Threats System

Module 20: Security The Security Problem Authentication Program Threats System Threats Threat Monitoring Encryption Silberschatz and Galvin 1999 Operating System Concepts 20.1 The Security Problem Security must

155 views • 11 slides
CONCEPTS AND CONCEPTS AND CONCEPTS AND CONCEPTS AND PR PR PRINC PRINC NCIPLES OF NCIPLES

CONCEPTS AND CONCEPTS AND CONCEPTS AND CONCEPTS AND PR PR PRINC PRINC NCIPLES OF NCIPLES

CONCEPTS AND CONCEPTS AND CONCEPTS AND CONCEPTS AND PR PR PRINC PRINC NCIPLES OF NCIPLES OF PLES OF PLES OF IWRM IWRM IWRM IWRM Statistical, Economic and Social Research and Training Centre for Islamic Countries Higher Council for

556 views • 17 slides
Concepts for Cooperation in the Black Sea Region Dr. Jennifer D.P. Moroney Prepared for GCMC

Concepts for Cooperation in the Black Sea Region Dr. Jennifer D.P. Moroney Prepared for GCMC

Concepts for Cooperation in the Black Sea Region Dr. Jennifer D.P. Moroney Prepared for GCMC Conference on Black Sea Security June 2005 RAND Corporation 1 Agenda Security Challenges Black Sea Regional Organizations Issues That Can

737 views • 17 slides
Security Operation Center Concepts and Implementation renaud.bidou@intexxia.com > SOC Modules

Security Operation Center Concepts and Implementation renaud.bidou@intexxia.com > SOC Modules

Security Operation Center Concepts and Implementation renaud.bidou@intexxia.com > SOC Modules > Global Architecture > Collection & Storage > Correlation > SOC Modules R Box R Box reaction and reporting + A Box K Box A Box

673 views • 13 slides
Concepts and principles of IT Aim Identify the IT concepts and principles for Assignment

Concepts and principles of IT Aim Identify the IT concepts and principles for Assignment

INF3280 31 January 2014 Concepts and principles of IT Aim Identify the IT concepts and principles for Assignment 2 Literature: Chapter 4. IT concepts 1 Which concepts and principles? Suitable for users to understand

321 views • 8 slides
September 28, 2016 1 Cracking Drupal Security concepts and pitfalls Peter Wolanin Moshe

September 28, 2016 1 Cracking Drupal Security concepts and pitfalls Peter Wolanin Moshe

September 28, 2016 1 Cracking Drupal Security concepts and pitfalls Peter Wolanin Moshe Weitzman Track: PHP https://events.drupal.org/dublin2016/sessions/cracking-drupal Special thanks to Klaus Purer for creating the original talk and slides

683 views • 39 slides
Predictive Security Analysis Concepts, Implementation, first Results in Industrial Scenario Roland

Predictive Security Analysis Concepts, Implementation, first Results in Industrial Scenario Roland

Predictive Security Analysis Concepts, Implementation, first Results in Industrial Scenario Roland Rieke 1 Romain Giot 2 Chrystel Gaber 2 1 Fraunhofer SIT, Darmstadt, Germany Email: roland.rieke@sit.fraunhofer.de 2 France Tlcom-Orange Labs,

276 views • 25 slides

More recommend