Scribd Logo
Загрузить

Добро пожаловать в Scribd!

  • JNTUK - University College of Engineering Vizianagaram

    Загружено:

    priyanka
    12 просмотров27 страниц
    This document defines basic security terminology including security threats, attacks, services, and mechanisms. It discusses passive and active attacks, the security services of confidentiality, authentication, integrity, non-repudiation, access control, and availability. It also outlines common security mechanisms like encryption, software and hardware controls, policies, and physical controls. Finally, it briefly mentions standards organizations and the RFC publication process.

    Исходное описание:

    Оригинальное название

    2-Introduction.pdf

    Авторское право

    © © All Rights Reserved

    Доступные форматы

    PDF, TXT или читайте онлайн в Scribd

    Этот документ был вам полезен?

    Это неприемлемый материал?

    Пожаловаться на этот документ
    This document defines basic security terminology including security threats, attacks, services, and mechanisms. It discusses passive and active attacks, the security services of confidentiality, authentication, integrity, non-repudiation, access control, and availability. It also outlines common security mechanisms like encryption, software and hardware controls, policies, and physical controls. Finally, it briefly mentions standards organizations and the RFC publication process.

    Авторское право:

    © All Rights Reserved
    Скачайте в формате PDF, TXT или читайте онлайн в Scribd
    Отметить как неприемлемый контент
    12 просмотров27 страниц

    JNTUK - University College of Engineering Vizianagaram

    Загружено:

    priyanka
    This document defines basic security terminology including security threats, attacks, services, and mechanisms. It discusses passive and active attacks, the security services of confidentiality, authentication, integrity, non-repudiation, access control, and availability. It also outlines common security mechanisms like encryption, software and hardware controls, policies, and physical controls. Finally, it briefly mentions standards organizations and the RFC publication process.

    Авторское право:

    © All Rights Reserved
    Скачайте в формате PDF, TXT или читайте онлайн в Scribd
    Отметить как неприемлемый контент
    из 27

    by

    Siva Rama Krishna T.

    Department of Computer Science and Engineering


    JNTUK University College of Engineering Vizianagaram
    www.jntukucev.ac.in
    Basic Terminology
    Security Threats
    Security Attacks
    Security Services
    Security Mechanisms
    Vulnerabilities
    Basic Terminology
    Security Threats
    Security Attacks
    Security Services
    Security Mechanisms
    Vulnerabilities
    Security Threats
    Passive Attack - Eavesdropping
    Passive Attack: Traffic Analysis
    Active Attack: Interruption/DoS

    Block delivery of message


    Active Attack: Replay
    Active Attack: Masquerade
    Security Services
    Confidentiality (privacy)
    Authentication (who created or sent the
    data)
    Integrity (has not been altered)
    Non-repudiation (the order is final)
    Access control (prevent misuse of
    resources)
    Availability (permanence, non-erasure)
    Security Mechanisms
    Encryption
    Software Controls (access limitations in
    a data base, in operating system
    protect each user from other users)
    Hardware Controls (smartcard)
    Policies (frequent changes of
    passwords)
    Physical Controls
    Standards Organizations
    National Institute of Standards &
    Technology (NIST)
    Internet Society (ISOC)
    International Telecommunication
    Union Telecommunication
    Standardization Sector (ITU-T)
    International Organization for
    Standardization (ISO)
    RSA Labs (de facto)
    RFC Publication Process
    Security Update...

    Вам также может понравиться