• Bell‐Lapadula security model
• other models
• reference monitors & trojan horse defence
• multilevel secure RBAC and databases
• trusted platform module
• common criteria
• assurance and evaluation
30 Ekim 2011 Pazar
Bölüm - 9 : Firewalls and Intrusion Prevention Systems
• introduced need for & purpose of firewalls
• types of firewalls
– packet filter, stateful inspection, application and
circuit gateways
• firewall hosting, locations, topologies
• intrusion prevention systems
• types of firewalls
– packet filter, stateful inspection, application and
circuit gateways
• firewall hosting, locations, topologies
• intrusion prevention systems
Bölüm - 8 : Denial of Service
• introduced denial of service (DoS) attacks
• classic flooding and SYN spoofing attacks
• ICMP, UDP, TCP SYN floods
• distributed denial of service (DDoS) attacks
• reflection and amplification attacks
• defenses against DoS attacks
• responding to DoS attacks
• classic flooding and SYN spoofing attacks
• ICMP, UDP, TCP SYN floods
• distributed denial of service (DDoS) attacks
• reflection and amplification attacks
• defenses against DoS attacks
• responding to DoS attacks
Bölüm - 7 : Malicious Software
• introduced types of malicous software
– incl backdoor, logic bomb, trojan horse, mobile
• virus types and countermeasures
• worm types and countermeasures
• bots
• rootkits
– incl backdoor, logic bomb, trojan horse, mobile
• virus types and countermeasures
• worm types and countermeasures
• bots
• rootkits
Bölüm - 6 : Intrusion Detection
• introduced intruders & intrusion detection
– hackers, criminals, insiders
• intrusion detection approaches
– host‐based (single and distributed)
– network
– distributed adaptive
– exchange format
• honeypots
• SNORT example
– hackers, criminals, insiders
• intrusion detection approaches
– host‐based (single and distributed)
– network
– distributed adaptive
– exchange format
• honeypots
• SNORT example
Bölüm - 5 : Database Security
• introduced databases and DBMS
• relational databases
• database access control issues
– SQL, role‐based
• inference
• statistical database security issues
• database encryption
• relational databases
• database access control issues
– SQL, role‐based
• inference
• statistical database security issues
• database encryption
Bölüm - 4 : Access Control
• introduced access control principles
– subjects, objects, access rights
• discretionary access controls
– access matrix, access control lists (ACLs),
capability tickets
– UNIX traditional and ACL mechanisms
• role‐based access control
• case study
– subjects, objects, access rights
• discretionary access controls
– access matrix, access control lists (ACLs),
capability tickets
– UNIX traditional and ACL mechanisms
• role‐based access control
• case study
Bölüm - 3 : User Authentication
introduced user authentication
– using passwords
– using tokens
– using biometrics
• remote user authentication issues
• example application and case study
– using passwords
– using tokens
– using biometrics
• remote user authentication issues
• example application and case study
Bölüm - 2 : Cryptographic Tools
• introduced cryptographic algorithms
• symmetric encryption algorithms for
confidentiality
• message authentication & hash functions
• public‐key encryption
• digital signatures and key management
• random numbers
• symmetric encryption algorithms for
confidentiality
• message authentication & hash functions
• public‐key encryption
• digital signatures and key management
• random numbers
25 Ekim 2011 Salı
Blog Hakkında Bilgi ve İletişim
Bu blog bir www.Viyana.us Blogudur. Sizin için hazırlanmış ve yayınlanmıştır.
www.Viyana.us adresinde daha çok ders hakkında blog görmek istiyorsanız,
Türkçe yardımdan memnun kaldıysanız,
bizi desteklemek istiyorsanız,
yapmanız gereken tek şey çevrenizdekilerle web sayfamızı paylaşmak !
www.Viyana.us ne kadar çok kişi tarafından bilinirse alanımız ve çalışmalarımız o kadar büyüyecektir. Biz bir şey başlattık, olmayan yeni bir şey yapmak istedik. Destek verin bunu büyük kitlelere ulaştıralım..
Alper Demirdag
email: alper@demirdag.in
gsm: 0699 1 333 9999
web: www.demirdag.in
www.Viyana.us adresinde daha çok ders hakkında blog görmek istiyorsanız,
Türkçe yardımdan memnun kaldıysanız,
bizi desteklemek istiyorsanız,
yapmanız gereken tek şey çevrenizdekilerle web sayfamızı paylaşmak !
www.Viyana.us ne kadar çok kişi tarafından bilinirse alanımız ve çalışmalarımız o kadar büyüyecektir. Biz bir şey başlattık, olmayan yeni bir şey yapmak istedik. Destek verin bunu büyük kitlelere ulaştıralım..
Alper Demirdag
email: alper@demirdag.in
gsm: 0699 1 333 9999
web: www.demirdag.in
Ders hakkında bilgi
Dersin Türkiye'deki Üniversitelerde karşılığı " Bilgisayar Sistemleri ve Ağ Güvenliği " dir. Araştırma yapmak isteyenler bu şekilde arama yaparsa direk sonuçlara ulaşır.
4 ödev + 2 sınavdan oluşan dersi geçmeniz için her zamanki gibi %50 pozitif olmanız lazım hem ödevlerden hem sınavlardan.
1. sınav (midterm exam) 10. konuya kadar bilgi , 2. sınav (final exam) tüm konuları kapsamaktadır.
Başarısız olunan ( %50 nin altı ) her hangi biri tekrar edilebiliyor bu hakkınızda mevcut.
4 ödev + 2 sınavdan oluşan dersi geçmeniz için her zamanki gibi %50 pozitif olmanız lazım hem ödevlerden hem sınavlardan.
1. sınav (midterm exam) 10. konuya kadar bilgi , 2. sınav (final exam) tüm konuları kapsamaktadır.
Başarısız olunan ( %50 nin altı ) her hangi biri tekrar edilebiliyor bu hakkınızda mevcut.
Bölüm - 1 : Overview
Konular:
• security concepts
• terminology
• functional requirements
• security architecture
• security trends
• security strategy
• security concepts
• terminology
• functional requirements
• security architecture
• security trends
• security strategy
Ödev - 4
Password Cracking
This assignment puts you in the place of an attacker who is trying to break into a system by compromising one of the valid passwords. Each of the systems in every stage has at least one security leak. Start by looking into the HTML source, it gets more difficult with every level. Be creative! Some knowledge of dynamic webtechnology might be helpful.After each level you are asked to describe how you were able to break in.
There are 6 Levels, you get 1 point for each level 1-3 und 2 points for level 4-6. 5 points are for the propper documentation.
Important: This assignment requires that your browser accepts cookies during the session and has JavaScript enabled.
Ödev - 3
Breaking WEP
WEP, the Wired Equivalent Privacy protocol, is rather insecure and can be broken within minutes. Your task for this assignment is to locate and break a given WEP network in a group of up to 2 people. Find yourself a group members and work as a team. You can also do the assignment alone, if you prefer.WEP can be broken very fast, which has been shown in this paper. This attack has been implemented in aircrack-ng, which is freely available. Your task is to break the network "bungee" located at yard 2 of the TU main building (GPS: N 48 11.890 E 16 22.185). It is reachable in the ZID room "KP" (http://www.zid.tuwien.ac.at/index.php?id=835), the Nelsons and of course in the yard. We recommend that you test your equipment and try everything before hacking "bungee" as using aircrack-ng can be very error prone if you use it the first time. If you do not want to install Linux you might use the live CD "Backtrack" which is shipped with aircrack-ng. The aircrack website has numerous tutorials and a wealth of information on WEP cracking, be sure to check it before you start (Hint: there are no clients connected).
Needed equipment: a wireless card which is supported by Aircrack-ng. A list of supported devices can be found here. Some of the devices listed there are rather cheap, less then 20 Euro (e.g. some Linksys WUSB54GC). If your device is not supported, you can borrow an USB sticks from us for a day which has been tested with Linux. Contact Martin Mulazzani in that case.
Once you broke the WEP key, connect to the network and open a browser. Any URL you enter (e.g. google.com) should take you to a website with a secret, which is needed for completing this assignment.
Please answer the following questions:
- What is the networks WEP key ?
- How did you break the key ? Document your steps in detail.
- What is the secret ?
- Please list all group members
Ödev - 2
This is assignment 2 of 188.916 Introduction to Security (max. 14 points).
Due on 16.12.2011 23:55:00. Time left: 52 days, 14 hours, 2 minutes and 34 seconds.
Be aware that SQL injection can be a cumbersome task and it may take a while until you find the right query. Therefore it is advisable to start the assignment early and come back to it after a while when you seem to be stuck. You might want to read a bit into the syntax of SQL and search for information on SQL injection. In this assignment you will exercise what is called a "Blind SQL injection" which means you will not get any error messages from the server if the query you passed is wrong or doesn't yield any results. Note that in this exercise no output can mean you are on a good way.
Please answer the following questions:
Due on 16.12.2011 23:55:00. Time left: 52 days, 14 hours, 2 minutes and 34 seconds.
In the VIP - SQL Injection
A friend of yours has asked you to perform a security audit on the members administration of her golf club. She asks you to test if there are any security issues concerning the MySQL database implementation. She gives you a short introduction to the system, but leaves you to find out other information you need for your test:- First step: Try to login without having any user data.
- Second step: Find out which of the members has the highest balance on his/her account. You will not be able to see the balance on the website, you must find it out by passing an appropriate SQL query to the server.
- Third step: There is a members database which consists of two tables "regular" and "vip". Find out the "memberno" of the member who had the highest balance in step two. Every member's "name" has a suffix "(reg)" or "(VIP)" - this way you will recognize which table you are operating on. Again, you will not be able to see the "memberno" on the website but you must try to find it by using an appropriate SQL query.
Be aware that SQL injection can be a cumbersome task and it may take a while until you find the right query. Therefore it is advisable to start the assignment early and come back to it after a while when you seem to be stuck. You might want to read a bit into the syntax of SQL and search for information on SQL injection. In this assignment you will exercise what is called a "Blind SQL injection" which means you will not get any error messages from the server if the query you passed is wrong or doesn't yield any results. Note that in this exercise no output can mean you are on a good way.
Please answer the following questions:
- Write down the exact input that enabled you to login to the website. Explain why that worked!
- Write down the exact input that gave you the member with the highest balance. Write down the name and the balance!
- Write down the name and memberno of the member with the highest balance from step two. Is it a regular or VIP member? Also write down the exact query that led to the result!
Ödev - 1
This is assignment 1 of 188.916 Introduction to Security (max. 10 points).
Due on 02.12.2011 23:55:00. Time left: 38 days, 14 hours, 4 minutes and 5 seconds.
The whole of Europe is under Roman rule, all except one tiny village...
You are Linguistix, a sharp witted and gifted scholar in a small village inhabited by a group of gauls, which to this time was still undefeated by the Roman troops. One day, when you are taking a little walk through the nearby woods you find a Roman soldier who has obviously lost the direction on his way to the Roman camp. When he takes notice of you he first turns to run away but on a second thought he looks at you and apparently identifies you as being no immediate threat to him (There have been rumours of incredibly powerful gauls in the roman camps lately). The moment he overbears his fear and is taking breath to ask you the way to the camp all of the sudden a giant menhir (an obelisk) falls from the sky and buries all of him but his head. As his helmet falls off, a letter appears which is sealed with Caesars seal. You get very excited, take the letter and run home. On your way you meet Obelix who asks you for his menhir which he had lost when he stumbled across his dog Idefix - you quickly point at the soldier behind you and hurry to come home. "What could it be, that Caesar himself is writing a letter to the Roman camp nearby our village?" you keep asking yourself. In your cottage you lock yourself in your study - room and open the letter, but what you see is nothing to be excited about:
rlamlj, ylnift eaglvae oqc elvm if oylo bglra, karlpma ya yle lfoiribloae oylo, if oya flopjlg rcpjma cs anafom, mpry qcpge ka oya rcfepro cs najriftaocjiw, galnam oya ljdv pfeaj bjaoafma cs jlimift jarjpiom lfe rlnlgjv: ya bglram kjpopm, l vcpft dlf, if rcddlfe cs oyama scjram; ya tinam yid ifmojproicfm oylo oya rlnlgjv mycpge jlfta lm awoafminagv lm bcmmikga if lgg eijaroicfm; oylo ya qcpge awajo yidmags fco oc ka lkmafo sjcd oya rldb gcftaj oylf oyjaa elvm. ylnift ljjlftae oyama dlooajm, ya dljryam oc niaffl kv lm gcft zcpjfavm lm ya rlf, qyaf yim cqf mcgeiajm eie fco awbaro yid. sifeift oyaja l sjamy kcev cs rlnlgjv, qyiry ya yle mafo cf oc oylo bglra manajlg elvm kascja, dljryift iframmlfogv fityo lfe elv, ya lenlfrae jlbiegv oyjcpty oya oajjiocjv cs oya laepi ifoc oylo cs oya giftcfam, if qyiry oqc gaticfm qaja qifoajift, oylo, is lfv bglf lssaroift yim cqf mlsaov mycpge ylna kaaf cjtlfiuae kv oya laepi, ya dityo easalo io kv oya jlbieiov cs yim dcnadafom. qyaf ya ljjinae oyaja, ya mafem ifscjdloicf oc oya jamo cs oya gaticfm, lfe tloyajm lgg yim ljdv ifoc cfa bglra kascja ifoaggitafra cs yim ljjinlg rcpge ka lffcpfrae oc oya ljnajfi. najriftaocjiw, cf yaljift oyim rijrpdmolfra, galem klrx yim ljdv ifoc oya rcpfojv cs oya kiopjitam; lfe lsoaj dljryift sjcd io oc tajtcnil, l ocqf cs oya kcii, qycd rlamlj yle maoogae oyaja lsoaj easaloift oyad if oya yagnaoilf qlj, lfe yle jafeajae ojikpoljv oc oya laepi, ya eaoajdifae oc loolrx io.
Answer the following Questions and you will be able to read Caesar's letter to the Romans!
Hints:
Due on 02.12.2011 23:55:00. Time left: 38 days, 14 hours, 4 minutes and 5 seconds.
The whole of Europe is under Roman rule, all except one tiny village...
You are Linguistix, a sharp witted and gifted scholar in a small village inhabited by a group of gauls, which to this time was still undefeated by the Roman troops. One day, when you are taking a little walk through the nearby woods you find a Roman soldier who has obviously lost the direction on his way to the Roman camp. When he takes notice of you he first turns to run away but on a second thought he looks at you and apparently identifies you as being no immediate threat to him (There have been rumours of incredibly powerful gauls in the roman camps lately). The moment he overbears his fear and is taking breath to ask you the way to the camp all of the sudden a giant menhir (an obelisk) falls from the sky and buries all of him but his head. As his helmet falls off, a letter appears which is sealed with Caesars seal. You get very excited, take the letter and run home. On your way you meet Obelix who asks you for his menhir which he had lost when he stumbled across his dog Idefix - you quickly point at the soldier behind you and hurry to come home. "What could it be, that Caesar himself is writing a letter to the Roman camp nearby our village?" you keep asking yourself. In your cottage you lock yourself in your study - room and open the letter, but what you see is nothing to be excited about:
rlamlj, ylnift eaglvae oqc elvm if oylo bglra, karlpma ya yle lfoiribloae oylo, if oya flopjlg rcpjma cs anafom, mpry qcpge ka oya rcfepro cs najriftaocjiw, galnam oya ljdv pfeaj bjaoafma cs jlimift jarjpiom lfe rlnlgjv: ya bglram kjpopm, l vcpft dlf, if rcddlfe cs oyama scjram; ya tinam yid ifmojproicfm oylo oya rlnlgjv mycpge jlfta lm awoafminagv lm bcmmikga if lgg eijaroicfm; oylo ya qcpge awajo yidmags fco oc ka lkmafo sjcd oya rldb gcftaj oylf oyjaa elvm. ylnift ljjlftae oyama dlooajm, ya dljryam oc niaffl kv lm gcft zcpjfavm lm ya rlf, qyaf yim cqf mcgeiajm eie fco awbaro yid. sifeift oyaja l sjamy kcev cs rlnlgjv, qyiry ya yle mafo cf oc oylo bglra manajlg elvm kascja, dljryift iframmlfogv fityo lfe elv, ya lenlfrae jlbiegv oyjcpty oya oajjiocjv cs oya laepi ifoc oylo cs oya giftcfam, if qyiry oqc gaticfm qaja qifoajift, oylo, is lfv bglf lssaroift yim cqf mlsaov mycpge ylna kaaf cjtlfiuae kv oya laepi, ya dityo easalo io kv oya jlbieiov cs yim dcnadafom. qyaf ya ljjinae oyaja, ya mafem ifscjdloicf oc oya jamo cs oya gaticfm, lfe tloyajm lgg yim ljdv ifoc cfa bglra kascja ifoaggitafra cs yim ljjinlg rcpge ka lffcpfrae oc oya ljnajfi. najriftaocjiw, cf yaljift oyim rijrpdmolfra, galem klrx yim ljdv ifoc oya rcpfojv cs oya kiopjitam; lfe lsoaj dljryift sjcd io oc tajtcnil, l ocqf cs oya kcii, qycd rlamlj yle maoogae oyaja lsoaj easaloift oyad if oya yagnaoilf qlj, lfe yle jafeajae ojikpoljv oc oya laepi, ya eaoajdifae oc loolrx io.
Answer the following Questions and you will be able to read Caesar's letter to the Romans!
- What kind of cipher was used by Caesar to make this message unreadable for those recipients who are not entitled to do so? Name the cipher and describe the principle!
- Describe in detail how you obtained the key (include every step of your analysis and tell which letters where obtained by which step).
- Write down the actual key that was used for this example.
- Provide a copy of the decrypted text.
- If you wrote an application for decrypting, add the code to your description. (We don't care which programming language you use)
Hints:
- You may know Caesar's Cipher, if you don't - look it up somewhere. It will give you a direction, but it's not as easy as Caesar's Cipher.
- The plaintext is in English.
- You might want to write some lines of code to examine the cipher.
- Don't be intimidated by the length of the text! You know, the longer the text, the easier it is to decrypt. Again, you may find it easier if you write yourself a little program.
Yararlı Linkler
http://williamstallings.com/ComputerSecurity/CompSec1e-Student/index.html
http://www.cihataltuntas.com/
http://www.ozcanacar.com/
http://volkanatasever.com/
http://forum.ceviz.net/
http://www.developermania.net
http://www.yazilimakademi.com/
http://hakin9.org/category/tutorials/
http://www.cyber-security.org.tr/
http://projects.webappsec.org/w/browse/#view=ViewAllObjects
http://unixwiz.net/techtips/sql-injection.html
www.chip.com.tr
www.bilgiguvenligi.gov.tr - Tübitak
www.shiftdelete.net
www.donanimhaber.com
www.hardwaremania.com
www.ozgurlukicin.com - Pardus Tübitak
www.cyber-warrior.org
teknoloji.milliyet.com.tr
www.cehturkiye.com
www.hak5.org - Hak5 - since 2005
www.bga.com.tr - Bilgi Güvenligi Akademisi
www.olympos.net - Olympos - Bilgi Güvenligi Rehberi
http://www.cihataltuntas.com/
http://www.ozcanacar.com/
http://volkanatasever.com/
http://forum.ceviz.net/
http://www.developermania.net
http://www.yazilimakademi.com/
http://hakin9.org/category/tutorials/
http://www.cyber-security.org.tr/
http://projects.webappsec.org/w/browse/#view=ViewAllObjects
http://unixwiz.net/techtips/sql-injection.html
www.chip.com.tr
www.bilgiguvenligi.gov.tr - Tübitak
www.shiftdelete.net
www.donanimhaber.com
www.hardwaremania.com
www.ozgurlukicin.com - Pardus Tübitak
www.cyber-warrior.org
teknoloji.milliyet.com.tr
www.cehturkiye.com
www.hak5.org - Hak5 - since 2005
www.bga.com.tr - Bilgi Güvenligi Akademisi
www.olympos.net - Olympos - Bilgi Güvenligi Rehberi
20 Ekim 2011 Perşembe
Dersin hocası
Privatdoz. Dipl.-Ing. Mag.rer.soc.oec. Dr.techn. Edgar Weippl
Bild von Edgar Weippl
Anstellung
E188 - Institut für Softwaretechnik und Interaktive Systeme
Funktion
Projektassistent
Adresse
Favoritenstr. 9-11
1040 Wien
Raumnummer
HB 02 06
Telefon
+43 (1) 58801 - 188 88
+43 (1) 58801 - 188 88
Fax
+43 1 58801 188-99
E-Mail
edgar.weippl@tuwien.ac.at
weippl@ifs.tuwien.ac.at
Webseite
http://www.ifs.tuwien.ac.at/~weippl/
Weitere Informationen
Office hours: Thu 4pm // Sprechstunde Do. 16 Uhr.
Venue: Please come to SBA Research, Favoritenstr. 16, 2nd floor.
Bild von Edgar Weippl
Anstellung
E188 - Institut für Softwaretechnik und Interaktive Systeme
Funktion
Projektassistent
Adresse
Favoritenstr. 9-11
1040 Wien
Raumnummer
HB 02 06
Telefon
+43 (1) 58801 - 188 88
+43 (1) 58801 - 188 88
Fax
+43 1 58801 188-99
edgar.weippl@tuwien.ac.at
weippl@ifs.tuwien.ac.at
Webseite
http://www.ifs.tuwien.ac.at/~weippl/
Weitere Informationen
Office hours: Thu 4pm // Sprechstunde Do. 16 Uhr.
Venue: Please come to SBA Research, Favoritenstr. 16, 2nd floor.
Kaydol:
Kayıtlar (Atom)