CIA - PowerPoint PPT Presentation

1 / 43

About This Presentation

Title:

CIA

Description:

... – PowerPoint PPT presentation

Number of Views:69

Avg rating:3.0/5.0

Slides: 44

Provided by: wnsIceCy

Category:

more less

Transcript and Presenter's Notes

Title: CIA

1
??????

? ? ? ??
????? ????

2
????

????
??????
???????
??????
??????
???????
???
??????

3
????

????????
CIA
Confidentiality (???)
Integrity (???)
Availability (???)
??
??????(???, ????)
????????
????????
????
????
??????????
?????????

4
??????

??????
??
?????????????(???????????)
????, ????
??????
????
??????--??????
??????--??????
????
????, ???
??
?????
????
??, ?
??

5
????

??????????
????????
?????
??????, ??????(telnet, ftp, web)???
????
???????
????
Backdoor, trojan horse, sniffer
????
Rootkit
??????
??????

6
??????????

????
??????????
????(yahoo, google, dogpile, altivista, edgar)
????, ?Webferret
????? 15 ?????
??????
???????(????, ????,)

7
????????

???? IP addresses
?????
??, e-mail, ??????, ?????????(DNS)??,
???????????
??????????
?????????
??????

8
????????

????
Brutus, http//www.hoobie.net/brutus/brutus-downlo
ad.html
???

9
????

????
?????????(IIS)????

10
IIS ????

Catalog_type.asp
????????? NT ?? ODBC
Windows NT ????? JET data base engine ???
??SQL query shell(instruction)
http//ipaddress/AdvWorks/equipment/catalog_type.
asp?ProductTypeshell(cmd/cechoHacked By
Somebody gtc\..default.html)
Code.asp
????????
/ADvWorks, /ASPSamp
http//ipaddress/AdvWorks/code.asp?source/AdvWork
s/../../../winnt/win.ini
??????????
????ASP

11
(No Transcript)
12
????????

???1200??????--??????
.????????,???????????????,???????????!??????
??????????????,????????,??????,????!
??,???????????????????????,??????????,????????
????!??,??????????????,????????,????????,?????????
????!??,?????????????????,??????
????? Ken Thompson ???????Unix login
?????????,????????,?????????

13
?????

????????????????,??????
??????????
??????
??????????????????(bind)?
?????
win.ini
system.ini
??registry(?????)
??start up menu?
winstart.bat

14
???????????

????????????????????
????????????????(patch)?
?????????????????
?????,???????(?Back Orifice 2000?NetBus??)?
????????,?????????????

15
????????

?????

16
???????????

?????????????

17
???????????

?????????????

18
???????????

?????????????

19
?????????
???
20
2000???????????????

21
????????????

?????(physical security)
??????(Denial-of-Service attack/DDoS attack)
??????????????
??(eavesdropping)
?????
?? ????passphrase
???? WPA_attack
???? (e.g., man-in-the middle attack)
????? (malicious code)
?? ???????????????
??(authentication)
??????
??????
??(privacy issue)

22
????????

???????
?????(Active Attacks)
?????(Passive Attacks)

23
?????????

????? (Data Confidentiality)
????
WEP(Wired Equivalent Privacy)??????
????????
???????
WPA (Wi-Fi Protected Access)?????? passphrase??
?????(Access Point)
??????????(Differential Cryptanalysis)
WiMAX man-in-the-middle attack

24
?????????

??????(Network Availability)
?????? (DoS attack)
????
????(Association)????
WPA????(Michael Message)
????? (Data Integrity)
????? (Man-in-the-middle Attack)
3G, WiMAX, WLAN
Fake Hotspot (AP)
Replay??

25
???????

??????
????????
??????????
??????
???????
????????????
????
??????
Registry
????
???????

26
??????

????????
????????
????????(????, ??, ????, ??), ?mhyang_at_pc176
???????????
????????
???
??????(Intrusion Detection System)
????(?????????, Live update)
????

27
??????

?????????????????
(http//www.icst.org.tw)
?????????????????
??????????????
?????????????
???????????
??????????????????
?????????

28
?????? (2)

??????????
(www.sss.org.tw)
???????????????????
????????
???????????
?????????????

29
????????

CERT/CC(http//www.cert.org/)
1988 ?? Morris Worm ????
Incident Response Team, 24??????????
Air CERT
CSRC
CSD(Computer Security Division), NIST
Cryptographic standards and Applications
Security Testing
Security Research/Emerging Technologies
Security Management and Guidance
Outteach, Awareness and Education
SecurityFocus(http//www.securityfocus.com/)
??????????
Bugtraq ?????

30
??????

?????????
??????(????,????,??,????)
???????(???????,?????????????????)
????????
????????
???????????
?????????
?????????????

31
??????

????
http//www.linuxsecurity.com/
????
http//www.symantec.com/
http//www.trend.com.tw/
http//www.mcafee.com/
????
http//www.caida.org/
http//www.incidents.org/
http//www.dshield.org/
??????????
http//defaced.alldas.org

32
???????

????????
R-scanner
nessus
????
?????
??????

33
?????

???????
?????????
R-scanner, nessus
??????
NASL (Nessus Attack Scripting Language)

34
???

??????????, ????????????????????
??
????????
????????
??
???????
???

35
????????

?????????????
?????????????

36
??????

?????????
Snort
????????
?????????
Agent based IDS
??????????

37
????????

??????????
???????????
???????????
??????????
?????????????
?????????????
??????????
?????????
?????????????
?????????????
?????????????
???????????????
?????????????????????

38
???????????(cont.)

????????????
(forum.icst.org.tw/phpBB2/index.php)
????????????
??????????
?????????????
??????????
??????????

39
???????????(cont.)

??????????
(www.ccisa.org.tw)
?????????
??????????????
????????????????
?????????????
?????????????

40
???????????(cont.)

??????????
(www.sss.org.tw)
???????????????????
????????
???????????
?????????????

41
???????????(cont.)

????????????
(www.cert.org.tw)
???????????????
????????????
????????????
???????????

42
???????????(cont.)

????????????
(gsn-cert.nat.gov.tw)
????????????
??????????
??????????,???????????
????????????

43
Homework

Write a team project report for the following
topics
Crack passphrase of WPA
Insert/Replace messages in WEP transferred
messages
Hijack WPA Sessions
DoS Attacks (Deauthorization, Deauthentication,
Jamming Attacks, Michael Message)
The report should include the following parts
Background information about the attack (Why the
attacking scenario can be launched on the target
system successfully?)
Tools on internet
Prove your concept by using the downloaded tool
Write a testing report
Possible Countermeasures
Due 5/28