Secure communication in Networking

SECURE COMMUNICATION

Anita Maharjan

Basanta kadel

Bhoj Raj Kafle

Bijay Raj Paudel

INTRODUCTION

as we know in a network system, it is not possible that single user enjoy the whole system all alone.

because networking is used by most sector like banking,entertainment, commercial,educational,etc.

what we think of networking and what we want is

NETWORK SYSTEM

BUT ACTUALLY!!

Bankers

entertainer

educator

we Hackers!!

What is network security?

network security refers to any activities designed to protect your network.

Specifically, these activities protect the usability, reliability, integrity, and safety of your network and data.

Effective network security targets a variety of threats and stops them from entering or spreading on your network.

So, secure communication refers to a communication in secure network whereby only the recipient of the message understands the message, even if there are intruders who may intercept, read and perform computations on whatever is being transmitted.

Properties of Secure Communication in Networking

Confidentiality

Only the sender and the receiver should be able to understand the contents of the transmitted message. B

Because of intruders(eavesdropper), i.e. hackers, the message maybe encrypted (its data disguised) so that the interceptor cannot understand the message.

Attack at 9pm.  

12383084093.

$h34#88

1238308409

3. $h34#

88

Attack at

9pm.Move

Move

Authentication

Process of providing identity Can be classified into three main categories:

what do you know,

what do you have and

what you are

Username and Password

User to access the information is provided with unique user ID and password

Can be for users and for computers that share data Based on what you know

Tokens

Tokens are the security device that authenticates the user by having the appropriate permissions embedded into the token itself

Token can be cards, RF ID tags etc. Based on what you have

Biometrics

Uses the person’s unique character to authenticate them Based on what you are. Human characteristics that can be used for identification

includes: Fingerprint

Hand

Retina

Face

Voice, etc

Message integrity and nonrepudiation

 Even if the sender and receiver are able to authenticate each other, they also want to ensure that the content of their communication is not altered, either maliciously or by accident during transmission.

Therefore message integrity can be ensured by extensions to the checksumming techniques that we encounter in reliable transport and data link protocols.

The most common approach is to use

a one-way hash function that combines all the bytes in the message with a secret key and produces a message digest that is impossible to reverse.

 So the thing that will give the sender and the receiver the assurance,

 of untampered data is also a small fixed length data called MAC(Message authentication code).

How to generate a MAC(Message Authentication Code)?

Hash function is one of the method, that can be used to generate a message authentication code.

This is done with the help of a generating a hash value of secret key & and a message to be authenticated.

The message to be authenticated, can be of any length. But the output of the hash function done on the message, will be of fixed length.

this generated MAC, will also confirm the authenticity, because only the person that has the secret key can open that MAC value for verifying the data(as mentioned before the MAC is generated with the secret key value).

As mentioned, the sender and the receiver will negotiate a secret key, before beginning the communication. This is similar to symmetric encryption, where same keys are used to decrypt at both the ends.

mov

e

to

right

move

to right

30873.98890

critical case like in banking..

transfer $100 toaccount no.1239

9

transfer $1000

to account

no.12399

Availability and access control

 The compelling need for network security has been made unbearable over the past several years by numerous denial-of-access attacks that have rendered a network host or other pieces of network infrastructure unusable by legitimate users.

 The notion of access control ensures that entities seeking to gain access to resources are allowed to do so only if they have the appropriate access rights and perform their accesses in a well-defined manner

student

identity

cardonly acess

to external information like school

programs,information about courses,etc

acess to all information, internal as

well a external

principal

identity

card

Network Security

How are the Principles Implemented?

Layering

Passwords

Antivirus Softwares

Network PoliciesDoor LocksInformation

Limiting

Limiting access to information reduces threat Only those who must use data should have access to

it. The amount of access granted to someone must

should be limited to what the person needs to know or do.

Limiting Example

Obscurity

Obscuring what goes on inside a system or organization and avoiding clear patterns of behavior makes access from outside difficult.

Simplicity

Complex security system can be difficult to understand, troubleshoot and feel secure about

The aim is to make the system simple from inside and complex from the outside

Authentication

Process of providing identity Can be classified into three main categories:

what do you know (Username and Password),

what do you have(tokens, card)

what you are(biometrics)

In Summary

Properties of Secure Communication:ConfidentialityAuthenticationMessage IntegrityAccess Control

THANK YOU