CSE2500 System Security and Privacy. CSE2500 System Security and Privacy Nandita&Srini 2 Lecturers...

CSE2500 CSE2500 System Security and PrivacySystem Security and Privacy

CSE2500 System Security and PrivacyNandita&Srini

LecturersLecturers

Prof B SrinivasanPhone: 990 31333 Room No: C4.47 srini@infotech.monash.edu.au

Ms Nandita BhattacharjeePhone: 990 32185/990 53293Room No C4.05nandita@csse.monash.edu.au

Organisation and Evaluation Organisation and Evaluation

12 weeks of lectures 2 hours of tutorials per week – mainly

problem solving, starting from week 2 to week 12.

Weekly LecturesWeekly Lectures

Lectures Wednesdays 7p.m. to 9p.m. in Caulfield K

Block K3.21Alternative Lecture times?

Fridays 12 noon to 2p.m. in Caulfield – K block 3.09

Fridays 3p.m. to 5p.m. in Caulfield B block B2.13

TutorialsTutorials

Tutorials from week 2 to week 12:Wednesdays 10a.m. in Caulfield/B471Wednesdays 4p.m. in Caulfield/B471Wednesdays 4p.m. in Caulfield/B476Thursdays 10a.m. in Caulfield/A212Thursdays 2p.m. in Caulfield/B224Thursdays 6p.m. in Caulfield/F206 or Wednesday

5p.m in Caulfield/?? Pl use Allocate+ for allocating tutorials. If you have

any problems, please see us during the tutorial times next week.

AssessmentAssessment

Four assessment components Two 30 min tests during the tutorial sessions in

weeks 6 and 12, worth 15% each. Individual question solving during the tutorial session

from weeks 7 to 11, worth 10%• Each student will be assigned a time slot and a problem and

they have to make a presentation of the solution to the rest of the group.

Examination – 2 hours duration – worth 60%

You need to get at least 50% to pass this unit.

ReferencesReferences

Primary Reference book: Security in Computing – C P Pfleeger and S L

Pfleeger, Third Edition, 2003, Prentice HallSecondary Reference book:

Computer Security—Dieter Gollmann, 1999, John Wiley

Subject: CSE2500

Lecturers: Prof. Bala Srinivasan Mrs. Nandita Bhattacharjee

Prescribed Text: PfleegerSecurity in Computing 3e

Available from the University Bookshop

Where to look for the subject Where to look for the subject materials?materials?

http://www.csse.monash.edu.au/courseware/cse2500

http://beast.csse.monash.edu.au/cse2500 Please down load and print the lecture materials

before coming to the class as NO further photocopies of notes will be distributed in the class.

The lecture notes is complementary to the prescribed text.

SecuritySecurity

Why do you lock your house before you leave?

How do you choose the kind of lock for your house?

Any added devices (such as alarms, bull terrier, etc…)

What you do when you observe that things in the house are scattered around?

What are you protecting?What are you protecting?

Brick and wallsMoney and jewelleryMusic CDs and tapesEtc ….

Threats to Computer and Threats to Computer and Communications systemsCommunications systems

Domain of information and network security

Taxonomy of security attacksAims or services of securityModel of system/(inter)network securityMethods of defense

SecuritySecurity

Human nature physical, financial, mental,…, data and

information security

There are ProblemsThere are Problems

Theft - of equipment Theft – e.g. Copying of confidential material Modification - for gain – e.g. Adding false names

to payroll Modification - malicious – e.g. Virus infections Access - easy for ‘us’ and difficult for ‘them’ ….

Fact sheetFact sheet

bank robbery through computersindustrial espionage on corporate

information loss of individual privacy (email, mobile

phone/computer, fax, ...)information vandalismcomputer viruses(more can be found in “comp.risks”)

What we mean by Security?What we mean by Security?

Protection of assets - can take several forms: Prevention Detection Reaction

ReactionsReactions

active research in security & privacy(numerous conferences each year)

new lawseducationcollaborations between governments,

industries & academiaemployment of computer security

specialists

What that means for computer What that means for computer assets?assets?

What are the assets (for system security)?

Information SecurityInformation Security

Shift from the physical security to the protection of data (on systems) and to thwart hackers (by means of automated software tools) – called

System and information securitySystem and information security

Network SecurityNetwork Security

With the widespread use of distributed systems and the use of networks and communications require protection of data during transmission – called

network security

Internetwork securityInternetwork security

The term Network Security may be misleading, because virtually all businesses, govt., and academic organisations interconnect their data processing equipment with a collection of interconnected networks – probably we should call it as

(inter)network security

Aspects of System (and Aspects of System (and information) securityinformation) security

Security attack – any action that compromises the security of system and information.

Security mechanism – to detect, prevent, or recover from a security attack.

Security service – service that enhances and counters security attacks.

Other terminologyOther terminology

vulnerability a weakness in a computer system that might

be exploited to cause loss or harmattack

an action that exploits a vulnerabilitythreat

circumstances that have the potential to cause loss or harm

control - a protective measure

Security mechanismsSecurity mechanisms

No single mechanism that can provide the services mentioned in the previous slide. However one particular aspect that underlines most (if not all) of the security mechanism is the cryptographic techniques.

Encryption or encryption-like transformation of information are the most common means of providing security.

Why Security?Why Security?

Security is not simple as it might first appear. In developing a particular security measure one

has to consider potential counter measures. Because of the counter measures, the problem

itself becomes complex. Once you have designed the security measure,

it is necessary to decide where to use them. Security mechanisms usually involve more than

a particular algorithm or protocol.

Security and Cost AnalysisSecurity and Cost Analysis

Security level

Security Attacks - TaxonomySecurity Attacks - Taxonomy

Interruption – attack on availabilityInterception – attack on confidentialityModification – attack on integrityFabrication – attack on authenticity

Propertythat is

compromised

InterruptionInterruption

Also known as denial of services.Information resources (hardware,

software and data) are deliberately made unavailable, lost or unusable, usually through malicious destruction.

e.g: cutting a communication line, disabling a file management system, etc.

InterceptionInterception

Also known as un-authorised access.Difficult to trace as no traces of intrusion

might be left.e.g: illegal eavesdropping or wiretapping

or sniffing, illegal copying.

ModificationModification

Also known as tampering a resource.Resources can be data, programs,

hardware devices, etc.

FabricationFabrication

Also known as counterfeiting (of objects such as data, programs, devices, etc).

Allows to by pass the authenticity checks. e.g: insertion of spurious messages in a

network, adding a record to a file, counterfeit bank notes, fake cheques,…

impersonation/masqueradingto gain access to data, services etc.

Security Attacks - TaxonomySecurity Attacks - Taxonomy

InformationSource

InformationDestination

Normal

InformationSource

Interruption

InformationSource

Interception

InformationSource

Modification

InformationSource

Fabrication

Source and Destination - can be what is supposed to be andwhat you get

Attacks – Passive typesAttacks – Passive types

Passive (interception) – eavesdropping on, monitoring of, transmissions.

The goal is to obtain information that is being transmitted.

Types here are: release of message contents and traffic analysis.

Attacks – Active typesAttacks – Active types

Involve modification of the data stream or creation of a false stream and can be subdivided into – masquerade, replay, modification of messages and denial of service.

AttacksAttacks

Passive

Interception(confidentiality)

Release ofMessage contents

Trafficanalysis

Active

Modification(integrity)

Fabrication(integrity)

Interruption(availability)

Security threats (to maintain) areSecurity threats (to maintain) are

ConfidentialityIntegrityAvailability

to give us secure data (and information)Authenticity

ConfidentialityConfidentiality

Only accessible by authorised partiesNot revealedMore that just not readingConfidentiality is distinct from secrecy and

privacy ( ?)

IntegrityIntegrity

Associated with loss and corruptionData Integrity as

Computerised data same as external, source data

Data not exposed to alteration or destructionNo inappropriate modification

AvailabilityAvailability

The property of being accessible and useable (without delay) upon demand by an authorised entity

We want there to be no denial of service

Other issuesOther issues

AccountabilityReliabilitySafetyDependability

Security is defined asSecurity is defined as

Computer security deals with the prevention and detection of unauthorised actions by users of a computer system

Security deals with the ready availability of valuable assets by authorised agents, and the denial of that access to all others

The security dilemmaThe security dilemma

security deals with the ready availability of valuable assets by authorised agents, and the denial of that access to all others.

Security-unaware users have specific security requirements but (usually) no security expertise.

The security dilemmaThe security dilemma

The costs of additional resources to implement security mechanisms can be quantified.

Security mechanisms interfere with users, and can lead to loss of productivity.

Managing security also costs.Need to perform risk analysis (which will

be the next topic)

Principles of SecurityPrinciples of Security

Principle of easiest penetration an intruder will use any means of penetration

Principles of timeliness items only need to be protected until they

lose their valuePrinciples of effectiveness

controls must work, and they should be efficient, easy to use, and appropriate.

Layers of technology (and Onion Layers of technology (and Onion Model)Model)

In which layer should security mechanisms be placed ?

Should controls be placed in more that one layer ?

See slide 46 too.

Hardware

KernelOperating System

Services

Applications

LayersLayers

The presence of layers is a feature of technology

Separate layers often perform very different functions

Similar functions are combined in one layer The boundary between two layers is usually

easily defined Layers can often be independently implemented

Vulnerabilities Vulnerabilities

The three broad computing system resources arehardware

• interruption (denial of service), interception (theft) software

• interruption (deletion), interception, modificationdata

• interruption (loss), interception, modification and fabrication

One method of defenceOne method of defence

By controlsWhat should be the focus of the controls?

• For example: should protection mechanisms focus on data or operations on that data or on the users who use the data?

Since there are layers of technology, where controls should apply?

• Applications, services, operating systems, kernel, hardware.

ControlsControls

Can be applied at hardware, software, physical or polices.

Simple mechanisms or lots of features?Should defining and enforcing security

mechanism be a centralised function?How to prevent access to the layer below

the security mechanism?

Examples of ControlsExamples of Controls

Modern cryptologyEncryption, authentication code, digital

signature,etc.Software controls

Standard development tools (design, code, test, maintain,etc)

Operating systems controlsInternal program controls (e.g: access

controls to data in a database)Firewalls

Examples of Controls Examples of Controls

Hardware controlsSecurity devices, smart cards, …

Physical controlsLock, guards, backup of data and software, thick walls, ….

Security polices and proceduresUser educationLaw

Effectiveness of ControlsEffectiveness of Controls

Merely having controls does no good unless they are used properly. The factors that affect the effectiveness areAwareness of protectionLikelihood of usersOverlapping controlsPeriodic review

Model for network securityModel for network security

Information channel

MessageMessage

SecretInfo.

PrincipalPrincipal

Opponent – security threads and possible attacks

Trusted Third party

Gate Keeper

[Borrowed from Stallings]

Two questions to ponderTwo questions to ponder

Having backup copies of the data – is it a solution to security?

The internetwork security model (the previous slide) has the gate keeper at the receiver (or destination) end – why not at the sender (source)?

CSE2500 System Security and Privacy. CSE2500 System Security and Privacy Nandita&Srini 2 Lecturers...

Documents

Transcript of CSE2500 System Security and Privacy. CSE2500 System Security and Privacy Nandita&Srini 2 Lecturers...

Privacy Resources Resources Oct06 Column.pdf · COTSE-Privacy Resources - Privacy Watch Creating an Online Privacy Policy Cryptography and Security

The Privacy Symposium/HIPAA Summit Healthcare Privacy: The Perspective of a Privacy Advocate

Privacy Implications of Privacy Settings and Tagging in ...zannone/publication/... · Privacy Implications of Privacy Settings and Tagging in Facebook 1 Privacy Implications of Privacy

Privacy by Design: The Future of Privacy… · PRIVACY BY DESIGN (PbD) A proactive approach to privacy that supplements privacy principles in a manner that promotes innovation, privacy,

Privacy is dood! leve de privacy!

Privacy attitudes and privacy behaviour: A review of …fws.commacafe.org › resources › Kokolakis_privacy_paradox.pdfnetwork.This inconsistency of privacy attitudes and privacy

IAPP Privacy Certification Web Privacy & Security Ruth Nelson Director and Co-leader, Privacy Practice Certified Information Privacy Professional.

STRUKTUR EKONOMI DAN SEKTOR UNGGULAN SEKTORAL …repository.uinjkt.ac.id/dspace/bitstream/123456789/31333/1/...menunjukkan bahwa sektor utama di Riau berdasarkan keluaran permintaan

Towards privacy preserving social recommendation under ...jundongl/paper/Towards privacy preserving social recommendation under personalized privacy settings ... privacy-preserving

AW Solenoid Tool Part # 31333 Applications Solenoid Tool by Omega Machine.pdf · AW55-50SN, 09D, 09G, AF21/TF81, TF80 Solenoids AW Solenoid Tool Part # 31333 . Title: AW Solenoid

JUDGMENT STRASBOURG 10 September 2010...GRAND CHAMBER CASE OF MC FARLANE v. IRELAND (Application no. 31333/06) JUDGMENT STRASBOURG 10 September 2010 This judgment is final but may

Modern Britain, 1750 to the Present - Assetsassets.cambridge.org/97811070/31333/frontmatter/9781107031333_frontmatter.pdf · 978-1-107-03133-3 — Modern Britain, 1750 to the Present

PRIVACY CRITERIA. Roadmap Privacy in Data mining Mobile privacy (k-e) – anonymity (c-k) – safety Privacy skyline.

Series 3 PID Temperature Controller - Super Systems Inc€¦ · Series 3 PID Temperature Controller . OPERATIONS MANUAL . P/N 31333 . Super Systems Inc. 7205 Edington Drive . Cincinnati,

NIST Privacy Framework: A Tool for Improving …...3 – Privacy privacy

PRIVACY COMPLIANCE An Introduction to Privacy Privacy Training.

Library privacy and the privacy audit

REVISION CSE2500 SYSTEM SECURITY & PRIVACY. RevisionSrini & Nandita2 Introduction to security Security attack - action that compromises the security of.

UNIVERSITI SAINS MALAYSIA EEE 208 CIRCUIT THEORY II [TEORI ...eprints.usm.my/31333/1/EEE208_CIRCUIT_THEORY_II_(JAN_2015).pdf · Dapatkan ungkapan parameter-Z untuk rangkaian di Rajah

Future of Privacy Forum€¦ · PRIVACY 2020 10 Privacy Risk$?ncl 10 Privacy Enhåpcing Technologies o-Watc int e Nex Decad FUTURE PRIVACY FORUM DATA PRIVACY DAY 2020 Jules Polonetsky