PPT-Security Technology: Intrusion Detection, Access Control and Other Security Tools

Chapter 7 Intrusion Intrusion is a type of attack on information assets in which the instigator attempts to gain entry into a system or disrupt the normal operation of system with almost always the intent to do malicious harm. 11. Intrusion Detection (. cont. ). modified from slides of . Lawrie. Brown. Security Intrusion. : A security event, or a combination of multiple security events, that constitutes a security incident in which an intruder gains, or attempts to gain, access to a system (or system resource) without having authorization to do so.. INTRO TO INTRUSION ALARM. INTRUSION ALARM TECHNOLOGY. An intrusion detection system consists of several different system components wired together to provide protection of persons and property.. INTRUSION ALARM TECHNOLOGY. Intrusion Detection. modified from slides of . Lawrie. Brown. Intruders. classes:. two most publicized threats to security are malware and intruders. generally referred to as a . hacker. or . cracker. Fifth Edition. by William Stallings. Chapter 11. Intruders. They agreed that Graham should set the test for Charles Mabledene. It was neither more nor less than that Dragon should get Stern’s code. If he had the ‘in’ at Utting which he claimed to have this should be possible, only loyalty to Moscow Centre would prevent it. If he got the key to the code he would prove his loyalty to London Central beyond a doubt.. Intruders. WenZhan. Song. Cryptography and Network Security. 1. Intruders. Three classes of intruders:. Examples of Intrusion. Performing a remote root compromise of an e-mail server. Defacing a Web server. Intruders. Classes (from [ANDE80]:. two most publicized threats to security are malware and intruders. generally referred to as a . hacker. or . cracker. Examples of Intrusion. remote root compromise. &. Intrusion . Detection Systems. 1. Intruders. Three classes of intruders:. Examples of Intrusion. Performing a remote root compromise of an e-mail server. Defacing a Web server. Guessing and cracking passwords. /dr. x. Logistics. Programming homework: extra 4 days. Midterm date: Wednesday, March 1. Duration: 60 mins. Presentations: next . Rich Nelson. Reports: can you see my comments, feedback on Oaks?. L1: many reports did not even have a sentence with intro/conclusions. C. Edward Chow . Department of Computer Science. Outline of the Talk. Overview of . DDoS. Intrusion Tolerance with Multipath Routing . Secure DNS with Indirect Queries/Indirect Addresses. Multipath Indirect Routing. Snort. Freeware.. Designed as a network sniffer.. Useful for traffic analysis.. Useful for intrusion detection. .. Snort. Snort is a good sniffer.. Snort uses a detection engine, based on rules.. Packets that do not match any rule are discarded.. /dr. x. Logistics. Command Line Lab on Thursday: please bring your laptops. Keep up with the reading . – Midterm on March 2. nd. . . Computer Networks Basics: OSI stack, subnets, Basic protocols: ARP, ICMP, NAT, DHCP, DNS, TCP/IP. Christopher Markley, PhD. US Nuclear Regulatory Commission. National Academy of Sciences: Recommendations for Human Intrusion Standards. Not possible to make scientifically supportable predictions of the probability of human intrusion.. Snort. Dan Fleck, PhD. dfleck@gmu.edu. Intrusion . Detection. An . intrusion detection system . (IDS) . analyzes . traffic patterns and . reacts . to anomalous . patterns. . by sending out alerts.. Note that an IDS is inherently reactive; the attack . CS 469: Security Engineering. These slides are modified with permission from Bill Young (. Univ. of Texas). Coming up: Intrusion Detection. 1. Intrusion . Detection. An . intrusion detection system .