Mandatory access controlsPROS AND CONS OF MAC Pros: Provide a high degree of protection – in a way of preventing any illegal flow of information. Suitable for military types of applications. Cons: Not easy to apply: require a strict classification of subjects and objects into security levels. Applicable for very few environments.
29 trang | Chia sẻ: vutrong32 | Ngày: 17/10/2018 | Lượt xem: 1175 | Lượt tải: 0
Cryptography & Key Exchange ProtocolsSummary - Cryptography-related concepts (symmetric/asymmetric techniques, digital signatures, PKI, ) - Key channel establishment for symmetric cryptosystems - Perfect encryption - Dolev-Yao threat model - Protocol “message authentication” - Protocol “challenge-response“ - Public-key cryptosystems
44 trang | Chia sẻ: vutrong32 | Ngày: 17/10/2018 | Lượt xem: 1283 | Lượt tải: 0
Trust-Based Privacy Preservation for Peer-to-peer Data SharingConclusion A trust based privacy preservation method for peer-to-peer data sharing is proposed It adopts the proxy scheme during the data acquirement Extensions Solid analysis and experiments on large scale networks are required A security analysis of the proposed mechanism is required
20 trang | Chia sẻ: vutrong32 | Ngày: 17/10/2018 | Lượt xem: 1056 | Lượt tải: 0
Sensors and Wireless Communication for Medical CareMeasures of Safety and Security Number of incidents per day in patient room, ward, or hospital. Non-emergency calls to nurses and doctors due to malfunctions, failures, or intrusions. False fire alarms, smoke detectors, pagers activation. Wrong information, data values, lost or delayed messages. Timeliness, Accuracy, Precision.
9 trang | Chia sẻ: vutrong32 | Ngày: 17/10/2018 | Lượt xem: 1099 | Lượt tải: 0
Digital rights managementDRM in the Enterprise Protect certain types of private information. Example The Health Insurance Portability and Accountability Act(HIPAA) requires that companies protect personal medical records. The Sarbanes-Oxley Act(SOA) requires that companies must preserve certain documents, such as information that might be relevant to “insider trading” ...
45 trang | Chia sẻ: vutrong32 | Ngày: 17/10/2018 | Lượt xem: 1250 | Lượt tải: 0
Secure DBMS designOracle Objects are databases, tables, views, etc. Operations: Select, Insert, Update, Delete, Alter, Index and Reference on tables. Select, Insert, Update and Delete on views. Execute privilege on procedures. Grant option is available.
41 trang | Chia sẻ: vutrong32 | Ngày: 17/10/2018 | Lượt xem: 1176 | Lượt tải: 0
Authentication And Threats and Attacks to information security, polices and lawsSocial engineering is the name given to a category of security attacks in which someone manipulates others into revealing information that can be used to steal data, access to systems, access to cellular phones, money,or even your own identity. Social engineering is the acquisition of sensitive information or inappropriate access privileges by an ...
67 trang | Chia sẻ: vutrong32 | Ngày: 17/10/2018 | Lượt xem: 1079 | Lượt tải: 0
Bài giảng Information Systems Security - Chapter 4: Cryptography & Key Exchange ProtocolsSummary Cryptography-related concepts (symmetric/asymmetric techniques, digital signatures, PKI, ) Key channel establishment for symmetric cryptosystems Perfect encryption Dolev-Yao threat model Protocol “message authentication” Protocol “challenge-response“ Public-key cryptosystems
57 trang | Chia sẻ: vutrong32 | Ngày: 17/10/2018 | Lượt xem: 1209 | Lượt tải: 0
Bài giảng Bảo mật hệ thống thông tin - Chương 3: Điều khiển truy cập bắt buộc (MAC)User Access A user can only access data within the range of his or her own label authorizations A user has: maximum and minimum levels a set of authorized compartments a set of authorized groups a specification of read-only access (or read/write) access for each compartment and group How to map user label and data label?
51 trang | Chia sẻ: vutrong32 | Ngày: 17/10/2018 | Lượt xem: 1311 | Lượt tải: 0
Bài giảng Information Systems Security - Chapter 2: Introduction to DACDAC & INFORMATION FLOW CONTROLS Inherent weakness of DAC: Unrestricted DAC allows information from an object which can be read by a subject to be written to any other object Bob is denied access to file A, so he asks cohort Alice to copy A to B that he can access Suppose our users are trusted not to do this deliberately. It is still po...
40 trang | Chia sẻ: vutrong32 | Ngày: 17/10/2018 | Lượt xem: 1147 | Lượt tải: 0
