prev
next
out of 2

Lec01 Refurbished

  • Upload
    alinush

  • View
    216

  • Download
    0

Embed Size (px)

Citation preview

  • 8/4/2019 Lec01 Refurbished

    1/2

    CSE409, Fall 2011, Rob Johnson, http://www.cs.stonybrook.edu/~rob/teaching/cse409-fa11/

    Alin Tomescu

    AboutsecurityDefinition

    What is security? Security is computing in front of an adversary! This distinguishes it from reliability, like a disk failing

    GoalsThere are three widely accepted security goals:

    - Confidentiality (security mechanisms that keep unauthorized people out of the system)- Integrity (a broad goal, the state of your data and your system is how you want it to be, you dont want to allow

    people to mess with it)

    o For example, SCADA (supervisory control and data acquisition) refers to industrial control systems:computer systems that monitor and control industrial, infrastructure, or facility-based processes.

    o SCADA controls these huge power plants, chemical plants, mining operations, breaking into them couldbe catastrophic

    - AvailabilityCommon mistake in security: Forget about certain security goals: Hey lets offer email to everyone without realizing

    spam will arise.

    The attackerWho is your adversary? You need a threat model a definition of what the attacker has as his starting capabilities:

    - Most important capability is their initial authorization level (local vs. remote)o If youre running a web service you could have 3 different types of attackers

    Attacker who has no account on the server Common goal of an attacker is privilege escalation: get more access

    o That would violate integrity which will most likely compromise confidentialityand availability

    Attacker who has an unprivileged account on the server Attacker who has a privileged account on the server

    - Other capabilities includeo How much money they haveo How much time they haveo How much computing power they haveo How much network bandwidth they haveo How much knowledge of your system they have (probably more than you expect)

    Do they know your source code?

    Basic principles of how to design good secure systemsThese are some of the principles used in designing secure systems:

    1. Trust is bad

  • 8/4/2019 Lec01 Refurbished

    2/2

    CSE409, Fall 2011, Rob Johnson, http://www.cs.stonybrook.edu/~rob/teaching/cse409-fa11/

    Alin Tomescu

    a. If you trust , then your security depends on .b. Trust is transitive. If you trust , and trusts , then if fails, by transitivity you fail.c. Mitigating trust

    i. Authenticate sourcesii. Build it yourself (not always viable, maybe for govt.)

    iii. Verifyiv. Redundancy (if you dont trust supplier A and B, buy two devices from both of them, run them in

    parallel and make sure they always give you the same output)

    1. For instance, some network protocols use two hashing algorithms at the same time sothat if one of them is broken the security of the protocol can still rely on the other one.


EE 478 Lec01 Intro

EE 478 Lec01 Intro

Documents
Lec01 Synch Ver01

Lec01 Synch Ver01

Documents
Lec01 Nscp2010 Ison

Lec01 Nscp2010 Ison

Documents
Matrix Lec01 Intro

Matrix Lec01 Intro

Documents
acn-08f-lec01-intro networking

acn-08f-lec01-intro networking

Documents
Sta301 lec01

Sta301 lec01

Technology
ENG1040 Lec01

ENG1040 Lec01

Education
Lec01 Overview Bhaskar

Lec01 Overview Bhaskar

Documents
ECE 4490 Multimedia Communication Lec01

ECE 4490 Multimedia Communication Lec01

Education
Lec01 digital design

Lec01 digital design

Documents
Lec01 Fatigue Intro

Lec01 Fatigue Intro

Documents
Manual NominaPlus 2008 Lec01

Manual NominaPlus 2008 Lec01

Documents
Lec01-Fetal Lung Devlp

Lec01-Fetal Lung Devlp

Documents
KI5245 2015 Elektrokimia Lec01 Intro

KI5245 2015 Elektrokimia Lec01 Intro

Documents
Lec01 ESL Flow

Lec01 ESL Flow

Documents
Manual IllustratorCS5 Lec01

Manual IllustratorCS5 Lec01

Documents
Biostat lec01 basicconcepts

Biostat lec01 basicconcepts

Documents
Lec01 Stable

Lec01 Stable

Documents
Lec01 Overview Chebrolu

Lec01 Overview Chebrolu

Documents
lec01-intro (1).ppt

lec01-intro (1).ppt

Documents
lec01 Manual photoshop

lec01 Manual photoshop

Documents
Computer Vision - Lec01 Intro

Computer Vision - Lec01 Intro

Documents
Lec01 ELECS 2

Lec01 ELECS 2

Documents
Lec01 Matters At Atomic Level

Lec01 Matters At Atomic Level

Business
Lec01 Network Architecture Models

Lec01 Network Architecture Models

Documents
Manual Access2003 Lec01

Manual Access2003 Lec01

Documents
Itecn453 lec01

Itecn453 lec01

Documents
UCSD- CSE12 - lec01

UCSD- CSE12 - lec01

Documents
REFURBISHED MACHINES - RGB International · REFURBISHED MACHINES ... Spielo, AGT, Stargames, Orion, Elaut, Alfastreet, Digideal, and other gaming products. REFURBISHED REFURBISHED

REFURBISHED MACHINES - RGB International · REFURBISHED MACHINES ... Spielo, AGT, Stargames, Orion, Elaut, Alfastreet, Digideal, and other gaming products. REFURBISHED REFURBISHED

Documents
Solid Lec01

Solid Lec01

Documents