Internet security
29
Internet Security Prepared by : Mohammed Adnan Abu Ward 120081704
Transcript of Internet security
Internet Security
Prepared by :Mohammed Adnan Abu Ward 120081704
Main PointsIntroductionComputer Security AttributesStatisticsTypes of AttacksTechnology for Internet SecurityConclusionReferences
IntroductionThe public Internet is a worldwide collection ofconnected computer networks that are accessible byindividual variety of ways using a particular set ofcommunication protocols which is known as TCP/IP.
Today millions of end systems use the Internetregardless of national or geographic boundaries or time.
Computer Security AttributesUnderstanding the security attributes is
critical in order to conduct risk analysis and find the suitable control for each attribute.
There are four main computer security attributes :
Confidentiality : Unauthorized persons should not gain access to others data.
Integrity : involves accuracy of data.
Computer Security Attributes…
Privacy : the ability and/or right to protect your personal secrets.
Availability : computer assets should be available for and accessible to authorized persons when they need them and should not be interrupted
.
Numbers of Users of the InternetDATE
NUMBER OF USERS
% WORLDPOPULATION
June, 2010 1,966 millions 28.7 %
Sept, 2010 1,971 millions 28.8 %
Mar, 2011 2,095 millions 30.2 %
Jun, 2011 2,110 millions 30.4 %
Sept, 2011 2,180 millions 31.5 %
Dec, 2011 2,267 millions 32.7 %
Mar, 2012 2,336 millions 33.3 %
June, 2012 2,405 millions 34.3 %
Vulnerable applications targeted by malicious users
Distribution of Attack Techniques
Types of Attacks
1-VirusesViruses are self-replicating programs that
infect and propagate through files.Viruses often have additional properties,
beyond being an infector or macro virus, A virus may also be
multi-partite, stealth, encrypted or polymorphic.A virus using encryption will know how to
decrypt itself to run, As the bulk of the virus is encrypted, it is harder to detect and analyze.
2-System and Boot Record InfectorsSystem and Boot record infectors were the
most common type of virus until the mid 1990s.These types of viruses infect system areas of a
computer such as the Master Boot Record (MBR) on hard disks.
By installing itself into boot records, the virus can run itself every time the computer is booted up.
with the introduction of more modern operating systems, and virus checks being enabled in the Basic Input Output System (BIOS), The risk of these viruses disappear.
3-EavesdroppingEavesdropping involves interception or
gaining access to communications by unauthorized party. There are two types of Eavesdropping Passive : when an unauthorized person
listens secretly to the networked messages.Active : intruder not only listens to but also
injects something into the communication to distort or create bogus .
4-HackingHackers can be people who are career
criminal. They are competent and highly skilled at using computers.
Once they analyze and discover a leak point in the
target system, they will find ways to access and attack the system.
They can also break through Web servers to access or steal information.
5- WormsA worm is a self-replicating program that
propagates over a network in some way.
Unlike viruses, worms do not require an infected file to propagate.
Worms classified into two types : mass-mailing worms : Email worms.network-aware worms : SQL Slammer.
6- Trojans Name story
Today’s Trojans work in a very similar way. They will appear to be benign programs to the user, but will actually have some malicious purpose.
7-IP Spoofing AttacksThe basic protocol for sending data over the Internet
network and many other computer networks is the Internet Protocol
The header of each IP packet contains, among other things, the numerical source and destination address of the packet.
By forging the header so it contains a different address, an attacker can make it appear that the packet was sent by a different machine. The machine that receives spoofed packets will send a response back to the forged source address.
8-Denial of ServiceIs an attempt to make a machine or
network resource unavailable to its intended users.
It generally consists of the efforts of one or more people to temporarily or indefinitely interrupt or suspend services of a host connected to the Internet.
9-Email Bombing and SpammingEmail bombing is the intentional sending of
large volumes of messages to a target address.
The overloading of the target email address can render it unusable and can even cause the mail server to crash.
Email Spamming : is the practice of sending unwanted email messages, frequently with commercial content, in large quantities to an indiscriminate set of recipients.
10-Phishingphishing is the act of attempting to acquire
information such as usernames, passwords, and credit card details .
Phishing emails may contain links to websites that are infected with malware.
Phishing is typically carried out by e-mail spoofing or instant messaging, and it often directs users to enter details at a fake website whose look and feel are almost identical to the legitimate one.
Technology for Internet SecurityWith the rapid growth of interest in the
Internet, network security has become a major concern to companies throughout the world.
Internet security tools typically provide authentication, encryption, identify attacks, and block and filter packets
1-Cryptographic systemsCryptography originally denotes the art of keepinginformation secret by the use of codes and ciphers.
2- FirewallA firewall can either be software-based or
hardware-based and is used to help keep a network secure.
Its primary objective is to control the incoming and outgoing network traffic by analyzing the data packets and determining whether it should be allowed through or not, based on a predetermined rule set.
3- Intrusion Detection SystemsAn intrusion detection system (IDS) is a
device or software application that monitors network or system activities for malicious activities or policy violations and produces reports to a management station.
Everything from a simple port scan to a full attack against your Web server can be detected by the IDS system.
4- Anti-Malware Software and scanners
Viruses, worms and Trojan horses are all examples of malicious software, or Malware for short.
anti-Malware tools are used to detect them and cure an infected system.
The most common type of anti-Malware software is virus scanners. These tools often consist of two different but related parts• Scanner • Disinfector.
5-Internet Protocol Security (IPSec)Internet Protocol Security (IPsec) is a protocol
suite for securing Internet Protocol communications by authenticating and encrypting each IP packet of a communication session.
IPsec is an end-to-end security scheme operating in the Internet Layer of the Internet Protocol Suite. It can be used in protecting data flows between a pair of hosts (host-to-host), between a pair of security gateways (network-to-network), or between a security gateway and a host (network-to-host).
Secure Socket Layer (SSL)The Secure Socket Layer (SSL) is a suite of
protocols that actually uses many different standards of key exchange, authentication and encryption.The server typically provides regular web
service http on port 80, and SSL-encrypted web traffic https over port 443.
SSL is a standard way to achieve a good level of security between a web browser and a website.
ConclusionInternet threats will continue to be a
major issue in the global world as long as information is accessible and transferred across the Internet.
Security is critical and must be ensured so that Internet users can have confidence engaging in activities on the Internet.
Referenceshttp://en.wikipedia.org/wiki/Network_security
http://www.cert.org/encyc_article/tocencyc.html#WhyVul
http://www.referenceforbusiness.com/small/Inc-Mail/Internet-Security.html
http://royal.pingdom.com/2013/01/16/internet-2012-in-numbers/
The End
