Information Security - PowerPoint PPT Presentation

1 / 16
About This Presentation
Title:

Information Security

Description:

Information Security Information Security Requirements Confidentiality: Protection from disclosure to unauthorised persons Access control: Unauthorised users are ... – PowerPoint PPT presentation

Number of Views:54
Avg rating:3.0/5.0
Slides: 17
Provided by: beza9
Category:

less

Transcript and Presenter's Notes

Title: Information Security


1
Information Security
2
Information Security Requirements
  • Confidentiality Protection from disclosure to
    unauthorised persons
  • Access control Unauthorised users are kept out
  • Authentication Assurance of identity of person
    or originator of data
  • Non-repudiation Protects against the originator
    ofcommunications later denying it
  • Availability Legitimate users have access when
    they need it
  • Integrity Maintaining data consistency. Protects
    from unauthorised data alteration

3
Security Threats
  • Information disclosure/information leakage
  • Integrity violation
  • Masquerading
  • Denial of service
  • Illegitimate use
  • Generic threat Backdoors, trojan horses, insider
    attacks
  • Most Internet security problems are access
    control or authentication types
  • Denial of service is also popular, but mostly an
    annoyance

4
Services, Mechanisms, Algorithms

A typical security protocol provides one or more
services Services are built from
mechanisms Mechanisms are implemented using
algorithms
5
Conventional Encryption
  • Uses a shared key
  • Problem of communicating a large message in
    secret is
  • reduced to communicating a small key in secret

6
Public-key Encryption
  • Uses matched public/private key pairs
  • Anyone can encrypt with the public key, only one
    person
  • can decrypt with the private key

7
Key Agreement
  • Allows two parties to agree on a shared key
  • Provides part of the required secure channel for
    exchanging a conventional encryption key

8
Hash Functions
  • Creates a unique fingerprint for a message
  • Anyone can alter the data and calculate a new
    hash value
  • Hash has to be protected in some way

9
MACsMessage Authentication Code, adds a
password/key to a hashOnly the password
holder(s) can generate the MAC
10
Digital SignaturesCombines a hash with a digital
signature algorithm
11
Signature checking
12
Message/Data EncryptionCombines conventional and
public-key encryption.
13
Public-key encryption provides a secure channel
to exchange conventional encryption keys
14
Data FormatsOne obviously-correct format for
secured content allows straightforward one-pass
processing for encapsulation and decapsulation
15
Security Protocol Layers
The further down you go, the more transparent it
is The further up you go, the easier it is to
deploy
Ref http//www.cs.auckland.ac.nz/pgut001 http/
/www.cs.auckland.ac.nz/pgut001/tutorial/index.htm
l
16
(No Transcript)
Write a Comment
User Comments (0)
About PowerShow.com
Home About Us Terms and Conditions Privacy Policy Presentation Removal Request Contact Us
Copyright 2024 CrystalGraphics, Inc. — All rights Reserved. PowerShow.com is a trademark of CrystalGraphics, Inc.
The PowerPoint PPT presentation: "Information Security" is the property of its rightful owner.
Do you have PowerPoint slides to share? If so, share your PPT presentation slides online with PowerShow.com. It's FREE!