Security
Upcoming SlideShare
Loading in...5
×
 

Security

on

  • 555 views

 

Statistics

Views

Total Views
555
Views on SlideShare
511
Embed Views
44

Actions

Likes
0
Downloads
3
Comments
0

1 Embed 44

http://www.virag.si 44

Accessibility

Categories

Upload Details

Uploaded via as Microsoft PowerPoint

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment
  • negotiates certificate, encryption and MAC algorithmfirst thing when establishing SSL link
  • user security model
  • view-based access control model

Security Security Presentation Transcript

  • Web security
    Jernej Virag
  • SSLv3 and TLS
    Secure Socket Layer
  • SSLv3
    Provides reliable end-to-end security service
    Two layers of protocols
  • SSL record protocol
  • SSL cypher spec and altert
    Ciper spec protocol
    a single byte that makes new cypher settings valid from the moment onward
    Alert protocol
    notifies of possible SSL problems and errors
    fatal errors cause immediate connection termination
  • SSL handshake protocol
  • TLS
    Updated version of SSLv3
    Differences
    version
    MAC
    pseudorandom function
    alert codes in alert protocol
    certificates, certificate types, certificate verification
    padding
  • SET
    Secure Electronic Transactions
  • SET
    Provides secure channel of communication for all payment transaction parties
    Provides trust with X.509v3 certificates
    Ensures privacy by providing minimal set of data for all parties
  • SET participants
  • SET payment sequence
  • Dual signature
  • SNMP
    Network management security
  • SNMP
    Collection of tools for network monitoring and control
    Key elements
    management station
    management agent
    management information base
    network management protocol
  • SNMP
  • USM
    Protection and privacy in SNMP
    prevents modification
    prevents masquerade
    prevents message stream modification
    prevents disclosure
    Does not prevent DDoS and traffic analysis
  • VACM
  • ?