+ All Categories
Home > Technology > Security

Security

Date post: 12-Nov-2014
Category:

Technology
Upload: jernej-virag
View: 623 times
Download: 0 times
Download Report this document
Share this document with a friend
Description:
 
Popular Tags:
ssl cypher spec
ssl record protocol
ssl handshake protocol
set payment sequence
set participants
minimal set of data
certificate types
new cypher settings
18
Web security Jernej Virag
Transcript
Page 1: Security

Web securityJernej Virag

Page 2: Security

SSLv3 and TLSSecure Socket Layer

Page 3: Security

SSLv3• Provides reliable end-to-end security service

• Two layers of protocols

Page 4: Security

SSL record protocol

Fragment

Compress

Add MAC Encrypt

Append SSL

header

Page 5: Security

SSL cypher spec and altert

• Ciper spec protocolo a single byte that makes new cypher settings valid from the moment

onward

• Alert protocolo notifies of possible SSL problems and errorso fatal errors cause immediate connection termination

Page 6: Security

SSL handshake protocol

Page 7: Security

TLS• Updated version of SSLv3

• Differences

o versiono MACo pseudorandom functiono alert codes in alert protocolo certificates, certificate types, certificate verificationo padding

Page 8: Security

SETSecure Electronic Transactions

Page 9: Security

SET• Provides secure channel of communication for all

payment transaction parties

• Provides trust with X.509v3 certificates

• Ensures privacy by providing minimal set of data for all parties

Page 10: Security

SET participants

Page 11: Security

SET payment sequence

Pre-transaction

Customer opens accountCustomer receives certificateMerchants have certificate

Customer order

Customer places orderMerchant is verifiedOrder and payment are sent

Merchant processing

Merchant requests payment authorizationMerchant confirms orderMerchant provides serviceMerchant requests payment

Page 12: Security

Dual signature

Page 13: Security

SNMPNetwork management security

Page 14: Security

SNMP• Collection of tools for network monitoring and

control

• Key elementso management stationo management agento management information baseo network management protocol

Page 15: Security

SNMP

Page 16: Security

USM• Protection and privacy in SNMP

o prevents modificationo prevents masqueradeo prevents message stream modificationo prevents disclosure

• Does not prevent DDoS and traffic analysis

Page 17: Security

VACM

Page 18: Security

?


Recommended
Security Admin security

Security Admin security

Documents

Information Security- Perspective for Management Information Security … · 2011-03-18 · 3 Information Security Management Information Security Management “Information security

Information Security- Perspective for Management Information Security … · 2011-03-18 · 3 Information Security Management Information Security Management “Information security

Documents

ANNUAL CONTRACT DETAILS - Banham Security · The following contract details are applicable to: Banham Security, Security 201, Bridger Security, Close Link Security, Tara Security

ANNUAL CONTRACT DETAILS - Banham Security · The following contract details are applicable to: Banham Security, Security 201, Bridger Security, Close Link Security, Tara Security

Documents

Security - 1 Security Peter O’Grady. Security - 2 Network Security Problem n Data Flow - transmission security n Network Security - server security n.

Security - 1 Security Peter O’Grady. Security - 2 Network Security Problem n Data Flow - transmission security n Network Security - server security n.

Documents

Chapter 13-802.11 Network Security Architecture 802.11 Security Basics Legacy 802.11 security Robust Security Segmentation Infrastructure Security VPN.

Chapter 13-802.11 Network Security Architecture 802.11 Security Basics Legacy 802.11 security Robust Security Segmentation Infrastructure Security VPN.

Documents

Agrochemicals and Security: Homeland Security and FertilizersFert-01 Homeland Security and Fertilizers Agrochemicals and Security Homeland Security and.

Agrochemicals and Security: Homeland Security and FertilizersFert-01 Homeland Security and Fertilizers Agrochemicals and Security Homeland Security and.

Documents

Information Security Information Security Management · PDF fileInformation Security Information Security Management Framework Standard Agencies must develop an Information Security

Information Security Information Security Management · PDF fileInformation Security Information Security Management Framework Standard Agencies must develop an Information Security

Documents

I-4 security. Security taxonomy Physical security Resource exhaustion Key-based security cryptography.

I-4 security. Security taxonomy Physical security Resource exhaustion Key-based security cryptography.

Documents

HyHy---Security Security Security Gate Operators Gate ... · HyHy---Security Security Security Gate Operators Gate Operators ... and performance of this expertly engineered machine.

HyHy---Security Security Security Gate Operators Gate ... · HyHy---Security Security Security Gate Operators Gate Operators ... and performance of this expertly engineered machine.

Documents

Network Security Network Security Protocol 1 Network Security Chapter 2. Network Security Protocols.

Network Security Network Security Protocol 1 Network Security Chapter 2. Network Security Protocols.

Documents

Food Security EconomicsFood Security Food Security in India.

Food Security EconomicsFood Security Food Security in India.

Documents

HKC Security Installer - HKC Security - HKC Security

HKC Security Installer - HKC Security - HKC Security

Documents

Mobile Security Apps - AV-TEST · PDF fileTesting mobile security Apps ... ESET MobileSecurity Norton Mobile Security QuickHeal Mobile Security Super Security Trend Micro Mobile Security

Mobile Security Apps - AV-TEST · PDF fileTesting mobile security Apps ... ESET MobileSecurity Norton Mobile Security QuickHeal Mobile Security Super Security Trend Micro Mobile Security

Documents

Security Presented by : Qing Ma. Introduction Security overview security threats password security, encryption and network security as specific.

Security Presented by : Qing Ma. Introduction Security overview security threats password security, encryption and network security as specific.

Documents

Security Shutters, Retractable Security Gates, …syston.com/...9267_Security_Shutters_Retractable_Security_Gates.pdf · Security Shutters, Retractable Security Gates, SeceuroBar

Security Shutters, Retractable Security Gates, …syston.com/...9267_Security_Shutters_Retractable_Security_Gates.pdf · Security Shutters, Retractable Security Gates, SeceuroBar

Documents

COEN 351 Internet Security. Network Layer Security Application Layer Security System Security.

COEN 351 Internet Security. Network Layer Security Application Layer Security System Security.

Documents

Security II – Grid Computing Security and Globus Security

Security II – Grid Computing Security and Globus Security

Documents

Network Security - Norbert Pohlmann · Security Infrastructure Mobile/Desktop Security Network Security E-Commerce Enabler Internet Security Network Security Secure Communication

Network Security - Norbert Pohlmann · Security Infrastructure Mobile/Desktop Security Network Security E-Commerce Enabler Internet Security Network Security Secure Communication

Documents