Download Boyle_ccs4_inppt_ma

Survey
yes no Was this document useful for you?
   Thank you for your participation!

* Your assessment is very important for improving the work of artificial intelligence, which forms the content of this project

page
1
page
2
page
3
page
4
page
5
page
6
page
7
page
8
page
9
page
10
page
11
page
12
page
13
page
14
page
15
page
16
page
17
page
18
page
19
page
20
page
21
page
22
page
23
page
24
page
25
page
26
page
27
page
28
page
29
page
30
page
31
page
32
page
33
page
34
page
35
page
36
Document related concepts
no text concepts found
Transcript 
Module A
Copyright © 2015 Pearson Education, Inc.



A-2
This is a module that some teachers will
cover while others will not
This module is a refresher on networking
concepts, which are important in information
security
If your teacher does not cover networking,
you might want to cover it yourself to refresh
your networking knowledge
Copyright © 2015 Pearson Education, Inc.
A-3
Copyright © 2015 Pearson Education, Inc.
A-4
Copyright © 2015 Pearson Education, Inc.
A-5
Copyright © 2015 Pearson Education, Inc.
A-6
Copyright © 2015 Pearson Education, Inc.
A-7
Copyright © 2015 Pearson Education, Inc.
The global Internet
has thousands of
networks connected
by routers
Browser
Network
Packet
Router
Packet
Route
Router
Packet
A-8
Webserver
Software
Router
Copyright © 2015 Pearson Education, Inc.
Packet travels in a different
frame in each network
A-9
Copyright © 2015 Pearson Education, Inc.
A-10
Copyright © 2015 Pearson Education, Inc.
Super Layer
Description
Application
Communication between application programs on
different hosts attached to different networks on an
internet.
Internetworking Transmission of packets across an internet. Packets
contain application layer messages.
Network
A-11
Transmission of frames across a network. Frames
contain packets.
Copyright © 2015 Pearson Education, Inc.
Super Layer
TCP/IP
OSI
Hybrid
TCP/IP-OSI
Application
Application
Application
Application
Presentation
Session
Internet
Single Network
A-12
Transport
Transport
Transport
Internet
Network
Internet
Subnet Access
Data Link
Data Link
Physical
Physical
Copyright © 2015 Pearson Education, Inc.
In a single network, a physical link connects adjacent devices.
A data link is the path that a frame takes across a single network.
One data link; three physical links.
A-13
Copyright © 2015 Pearson Education, Inc.
A-14
Copyright © 2015 Pearson Education, Inc.
IP Version 4 Packet
A-15
Copyright © 2015 Pearson Education, Inc.
A-16
Copyright © 2015 Pearson Education, Inc.
A-17
Copyright © 2015 Pearson Education, Inc.
PC
transport process
Open
(3)
1. SYN (Open)
Webserver
transport process
2. SYN, ACK (1) (Acknowledgement of 1)
3. ACK (2)
3-Way Open
A-18
Copyright © 2015 Pearson Education, Inc.
PC
transport process
Open
(3)
Carry
HTTP
Req &
Resp
(4)
A-19
1. SYN (Open)
Webserver
transport process
2. SYN, ACK (1) (Acknowledgement of 1)
3. ACK (2)
4. Data = HTTP Request
5. ACK (4)
6. Data = HTTP Response
7. ACK (6)
Copyright © 2015 Pearson Education, Inc.
PC
transport process
Carry
HTTP
Req &
Resp
(4)
Webserver
transport process
8. Data = HTTP Request (Error)
9. Data = HTTP Request (No ACK so Retransmit)
10. ACK (9)
11. Data = HTTP Response
12. ACK (11)
Error Handling
A-20
Copyright © 2015 Pearson Education, Inc.
PC
transport process
Close
(4)
Normal Four-Way Close
Webserver
transport process
13. FIN (Close)
14. ACK (13)
15. FIN
16. ACK (15)
Note: An ACK may be combined with the next message if the next message
is sent quickly enough
A-21
Copyright © 2015 Pearson Education, Inc.
PC
transport process
Close
(1)
Abrupt Close
Webserver
transport process
RST
Either side can send a Reset (RST)
segment at any time
Ends the Session Immediately
A-22
Copyright © 2015 Pearson Education, Inc.
A-23
Copyright © 2015 Pearson Education, Inc.
A-24
Copyright © 2015 Pearson Education, Inc.
A-25
Copyright © 2015 Pearson Education, Inc.
A-26
Copyright © 2015 Pearson Education, Inc.
A-27
Copyright © 2015 Pearson Education, Inc.
A-28
Copyright © 2015 Pearson Education, Inc.
A-29
Copyright © 2015 Pearson Education, Inc.
A-30
Copyright © 2015 Pearson Education, Inc.

Application Exploits
◦ By taking over applications, hackers gain the
permissions of the exploited program
◦ A multitude of application standards
◦ Consequently, there is a multitude of security
issues at the application level
A-31
Copyright © 2015 Pearson Education, Inc.

Many Applications Need Two Types of
Standards
◦ One for the transmission of messages, one for the
content of application documents
◦ For the World Wide Web, these are HTTP and HTML,
respectively
◦ For transmission, e-mail uses SMTP, POP, and IMAP
◦ For message content, e-mail uses RFC 2822 (alltext), HTML, and MIME
A-32
Copyright © 2015 Pearson Education, Inc.

FTP and Telnet
◦ Have no security
◦ Passwords are transmitted in the clear, making it
possible to be captured by sniffers
◦ Secure Shell (SSH) can replace both securely
A-33
Copyright © 2015 Pearson Education, Inc.

Many Other Application Standards Have
Security Issues
◦ Voice over IP (VoIP)
◦ Service-oriented architecture (SOA); web services
◦ Peer-to-peer applications
A-34
Copyright © 2015 Pearson Education, Inc.
All rights reserved. No part of this publication may be reproduced, stored in a
retrieval system, or transmitted, in any form or by any means, electronic,
mechanical, photocopying, recording, or otherwise, without the prior written
permission of the publisher. Printed in the United States of America.
Copyright © 2015 Pearson Education, Inc.
Related documents