View
251
Download
1
Category
Tags:
Preview:
Citation preview
1
Security
Hiroshi Toyoizumitoyo@u-aizu.ac.jp
toyo@aoni.waseda.ac.jp
2
Social Engineering
• Your kindness may put you in danger.
• You as a team may put you in danger.
• Your reliable person may put you in danger.
• What can you do?
3
Malicious Mobile Codes: Viruses and Worms
4
Laroux: Excel Macro Virus
5
Current epidemics
6
Cracking
• Hijacking your machine.• Stepping stone.• Tamper with www pages.• Leak of important information.
7
Scanning IP addresses
8
Detect Windows shared folder
9
How to protect cracking
• Anti-virus• Pacth• Encryption• Firewalls• IDS:Intrusion Detection System
10
BlackICE: An IDS
11
Secure communication using cryptography
• Encrypt important information. • Certify the other party.
• Public Key Cryptography• PKI : Public Key Infrustructure
12
Common key system Cryptograhpy
13
Give it a try! Cipher communication
AliceBob
14
Any problems?
• It is easy to eavesdropping the key on thei internet.
15
Public Key Cryptograhpy
16
Give it a try! Public key cipher communication
AliceBob
17
Any problems ?
• Swiching the public key. • Man-in-the-middle-attack.
AliceBob
18
Digital signature
19
電子証明書は印鑑証明
20
Key with digital signature
AliceBob
21
Real cipher communication
22
Public key and digital signature
23
Certificate authority
24
e-Government
25
Topics
• Stop Blaming the Victims• The author of Sasser• Adware,Spyware• Spoofing, Backdoor• Personal Firewall• Anti-virus• Spam• Intrusion Detection System• Cookies, Java, Active-x• Biometric
26
Role Play
• Cast Ohta: Employee of Microsoft Yamada: Employee of Takada delivery compan
y Employees of Waseda Hospital
Yamaguchi: accounting section Yano: freshman in general affair
27
Scene 1: call from waseda delivery
1. Yano: Hello, this is Yano, general affair section in Waseda Hospital.
2. Yamada: Hi, this is Takada delivery calling. It seems that one of our customer wrongly faxed her address to your company. Could you fax it to us?
3. (after checking the fax machine.)4. Yano: No, we haven’t received your fax.5. Yamada: You may found it other place… Maybe in y
our accounting section? If you find it, please fax it to us at 03-1111-1111.
6. Yano: OK.
28
Scene 2:call from Microsoft
1. Ohta: Hello, this Ohta from Microsoft customer service. We found that your PC is sending too much viruses on the internet, and we received many complaints about it. Please download the anti-virus software that I will mention and install it on your PC.
2. Yano: Sure. Where can I find the software?
29
Scene 3:call from other section
1. Tahara: This is Tahara from accounting. Could you do me a favor?
2. Yamaguchi: Yes. What?3. Thara: Our computers are all infected by viruses, but I n
eed the address of a patient, Ryoko Hirosue. Could you call up the data on your screen and fax it to me at accounting section?
4. Yamaguchi: No problem.
30
Quiz
• Did you find any security problem in the role-play?
• Write them down.• Describe the counter measures.
Recommended