Survey
* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project
Download presentation source
Document related concepts
Deep packet inspection wikipedia , lookup
Computer and network surveillance wikipedia , lookup
Next-Generation Secure Computing Base wikipedia , lookup
Wireless security wikipedia , lookup
Network tap wikipedia , lookup
Mobile security wikipedia , lookup
Distributed firewall wikipedia , lookup
Cracking of wireless networks wikipedia , lookup
Transcript
Microsoft enterprise concepts NT Layered Network Architecture 7. Application User Mode 6. Presentation Kernel Mode NetBIOS driver 5. Session 4. Transport 3. Network Redirectors Servers Transport Driver Interface WinSock driver Streams Transport Protocols 2. Data Link LLC MAC 1. Physical NDIS Interface Streams Network Adapter Card Drivers Network Interface Card Some basic concepts NDIS Interface: Network Driver Specification Interface, wraps NIC drivers and allow communication with multiple protocols, binds a NIC to a protocol. Streams: multiple channels allowing broader bandwidth for data transfer, envelop the protocols. Transport Driver Interface: allows software drivers (server, redirector, etc) to communicate with protocols. Redirectors: software in WS that redirect network drives, printers requests to network I/O requests. Servers: software that allows a device to accept requests from other devices. Standard NT protocols NetBEUI - NetBIOS Extended User Interface, “native” Windows protocol, not routable. TCP/IP - implemented through WinSock, routable, supports SNMP, DHCP, WINS. NWLink (IPX/SPX) - used to connect to Novell NetWare, just a protocol, not access. DLC - Data Link Control, used to connect to IBM mainframes and HP printers directly connected to a network (server). Network Resource Access UNC – – – – – - Universal Naming Convention machine name: \\mname <= 15 digits share name: \sname <= 12 digits example: \\AL200\HP6 sharing: net share public= c:\temp using: net use lpt2: \\Al200\public – also graphical Master Browsers - allow to see what resources are available – Win 95/NT use Network Neighborhood MUP driver - Multiple Universal Naming Convention Provider Workgroups Peer to Peer – a machine joins a group by declaring (Control Panel) – group names <= 15 digits – servers: DOS with add on, Windows for Workgroups, Windows 95, NT WS and Server. – Low security for shares, with one password for a resource, all can see share names, but in NT. NT client-server – local and global (more in Domain) – peer-to-peer and guest, should not be allowed – shares require username and password Domain Concept: a group of NT machines that share “a security server” - the primary domain controller (PDC VS BDCs) – Windows for Workgroups and Windows 95 can join by selecting as workgroup name the domain name – Users with Windows 95 clients can log on NT server net similarly to NT workstations. – user name <= 20 digits, password <= 14 digits – users have permissions (access) and rights (do something), groups – SAM - Security Account Manager, keep user information Trust relationships: allow an user to be part of more than one domain. – If A trusts C, users in C can access resources in A (one-way) – two-way trusts : users of both both can access the other
