This document provides an overview of network security concepts related to the OSI model, TCP/IP, IP networking, and multi-layer protocols. It describes the seven layers of the OSI model and compares it to the TCP/IP model. It discusses IP addressing schemes, routing protocols, TCP/IP ports, DHCP, ICMP, and networking services like DNS, LDAP, FTP, SMTP, and HTTP. It also covers implications of industrial control systems that use multi-layer protocols like SCADA and Modbus.
CCNA certification is a cornerstone of many IT careers. This book is a comprehensive study guide for the CCNA Intro, CCNA ICND, and CCNA Certification exams. Its target audience is a high school student, a first-year community college or any adult wanting to understand networking better.
CCNA certification is a cornerstone of many IT careers. This book is a comprehensive study guide for the CCNA Intro, CCNA ICND, and CCNA Certification exams. Its target audience is a high school student, a first-year community college or any adult wanting to understand networking better.
This ppt show the very fundamental aspects of VPN(Virtual Private Networks) and show why it is used and its associated benefits. Also show characteristics, Tunneling, Encapsulation, etc.
This ppt show the very fundamental aspects of VPN(Virtual Private Networks) and show why it is used and its associated benefits. Also show characteristics, Tunneling, Encapsulation, etc.
Cryptography is both an art and a science – the use of deception and mathematics, to hide, transmit, and receive data. This short course covers Cryptography as it relates to the CISSP certification. The full video course is located here: http://resources.infosecinstitute.com/cryptography-CISSP-use-of-cryptography
The SlideShare 101 is a quick start guide if you want to walk through the main features that the platform offers. This will keep getting updated as new features are launched.
The SlideShare 101 replaces the earlier "SlideShare Quick Tour".
Slides for a college course at City College San Francisco. Based on "Hands-On Ethical Hacking and Network Defense, Third Edition" by Michael T. Simpson, Kent Backman, and James Corley -- ISBN: 9781285454610.
Instructor: Sam Bowne
Class website: https://samsclass.info/123/123_S17.shtml
IP specifies the format of packets, also called #datagrams, and the addressing scheme. Most networks combine IP with a higher-level protocol called Transmission Control Protocol (TCP), which establishes a virtual connection between a destination and a source.
If you want to purchase the content e-mail me on dulith1989@gmail.com
The layers in the TCP/IP protocol suite do not exactly match those in the OSI model.
The original TCP/IP protocol suite was defined as having four layers: host-to-network, internet, transport, and application.
when TCP/IP is compared to OSI, we can say that the TCP/IP protocol suite is made of five layers: physical, data link, network, transport, and application.
If the number of spine switches were to be merely doubled, the effect of a single switch failure is halved. With 8 spine switches, the effect of a single switch failure only causes a 12% reduction in available bandwidth. So, in modern data centers, people build networks with anywhere from 4 to 32 spine switches. With a leaf-spine network, every server on the network is exactly the same distance away from all other servers – three port hops, to be precise. The benefit of this architecture is that you can just add more spines and leaves as you expand the cluster and you don't have to do any recabling. Intuition Systems will also get more predictable latency between the nodes.
As a trend, disaggregation seems to be most useful for very large companies like Facebook and Google, or cloud providers. The technology does not necessarily have significant implications for small or medium sized businesses. Historically, however, technology has a way of trickling down from the pioneering phases of existing only within large companies with tremendous resources, to becoming more standardized across the board.
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf91mobiles
91mobiles recently conducted a Smart TV Buyer Insights Survey in which we asked over 3,000 respondents about the TV they own, aspects they look at on a new TV, and their TV buying preferences.
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
Key Trends Shaping the Future of Infrastructure.pdfCheryl Hung
Keynote at DIGIT West Expo, Glasgow on 29 May 2024.
Cheryl Hung, ochery.com
Sr Director, Infrastructure Ecosystem, Arm.
The key trends across hardware, cloud and open-source; exploring how these areas are likely to mature and develop over the short and long-term, and then considering how organisations can position themselves to adapt and thrive.
Connector Corner: Automate dynamic content and events by pushing a buttonDianaGray10
Here is something new! In our next Connector Corner webinar, we will demonstrate how you can use a single workflow to:
Create a campaign using Mailchimp with merge tags/fields
Send an interactive Slack channel message (using buttons)
Have the message received by managers and peers along with a test email for review
But there’s more:
In a second workflow supporting the same use case, you’ll see:
Your campaign sent to target colleagues for approval
If the “Approve” button is clicked, a Jira/Zendesk ticket is created for the marketing design team
But—if the “Reject” button is pushed, colleagues will be alerted via Slack message
Join us to learn more about this new, human-in-the-loop capability, brought to you by Integration Service connectors.
And...
Speakers:
Akshay Agnihotri, Product Manager
Charlie Greenberg, Host
Securing your Kubernetes cluster_ a step-by-step guide to success !KatiaHIMEUR1
Today, after several years of existence, an extremely active community and an ultra-dynamic ecosystem, Kubernetes has established itself as the de facto standard in container orchestration. Thanks to a wide range of managed services, it has never been so easy to set up a ready-to-use Kubernetes cluster.
However, this ease of use means that the subject of security in Kubernetes is often left for later, or even neglected. This exposes companies to significant risks.
In this talk, I'll show you step-by-step how to secure your Kubernetes cluster for greater peace of mind and reliability.
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...UiPathCommunity
💥 Speed, accuracy, and scaling – discover the superpowers of GenAI in action with UiPath Document Understanding and Communications Mining™:
See how to accelerate model training and optimize model performance with active learning
Learn about the latest enhancements to out-of-the-box document processing – with little to no training required
Get an exclusive demo of the new family of UiPath LLMs – GenAI models specialized for processing different types of documents and messages
This is a hands-on session specifically designed for automation developers and AI enthusiasts seeking to enhance their knowledge in leveraging the latest intelligent document processing capabilities offered by UiPath.
Speakers:
👨🏫 Andras Palfi, Senior Product Manager, UiPath
👩🏫 Lenka Dulovicova, Product Program Manager, UiPath
JMeter webinar - integration with InfluxDB and GrafanaRTTS
Watch this recorded webinar about real-time monitoring of application performance. See how to integrate Apache JMeter, the open-source leader in performance testing, with InfluxDB, the open-source time-series database, and Grafana, the open-source analytics and visualization application.
In this webinar, we will review the benefits of leveraging InfluxDB and Grafana when executing load tests and demonstrate how these tools are used to visualize performance metrics.
Length: 30 minutes
Session Overview
-------------------------------------------
During this webinar, we will cover the following topics while demonstrating the integrations of JMeter, InfluxDB and Grafana:
- What out-of-the-box solutions are available for real-time monitoring JMeter tests?
- What are the benefits of integrating InfluxDB and Grafana into the load testing stack?
- Which features are provided by Grafana?
- Demonstration of InfluxDB and Grafana using a practice web application
To view the webinar recording, go to:
https://www.rttsweb.com/jmeter-integration-webinar
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Albert Hoitingh
In this session I delve into the encryption technology used in Microsoft 365 and Microsoft Purview. Including the concepts of Customer Key and Double Key Encryption.
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024Tobias Schneck
As AI technology is pushing into IT I was wondering myself, as an “infrastructure container kubernetes guy”, how get this fancy AI technology get managed from an infrastructure operational view? Is it possible to apply our lovely cloud native principals as well? What benefit’s both technologies could bring to each other?
Let me take this questions and provide you a short journey through existing deployment models and use cases for AI software. On practical examples, we discuss what cloud/on-premise strategy we may need for applying it to our own infrastructure to get it to work from an enterprise perspective. I want to give an overview about infrastructure requirements and technologies, what could be beneficial or limiting your AI use cases in an enterprise environment. An interactive Demo will give you some insides, what approaches I got already working for real.
Epistemic Interaction - tuning interfaces to provide information for AI supportAlan Dix
Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024
https://alandix.com/academic/papers/synergy2024-epistemic/
As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.
Essentials of Automations: Optimizing FME Workflows with ParametersSafe Software
Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place.
Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects.
Here’s what you’ll gain:
- Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows.
- Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy.
- Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency.
- Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity.
We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic.
Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.
4. OSI and TCP/IP
Open System Interconnect Model
● Defined in 1984. Last revision in 1994.
● International Standard (ISO/IEC 7498-1)
● Theoretical way to describe network
structure
● Divided into 7 layers
○ Certain layers require further subdivisions
5. OSI and TCP/IP
The OSI Layers
1. Physical
a. CAT5 and fiber optic cables
b. Electrical signals
c. Topologies (Star, Bus, Ring)
2. Data-link
a. Logical Link Contol (Error and flow control)
b. Media Access Control (Hardware addressing)
c. Switches
3. Network
a. Internet Protocol (Addressing, Fragmentation)
b. Routers
6. OSI and TCP/IP
4. Transport
a. TCP & UDP
b. Error Detection and Correction
c. Three-Way Handshake
5. Session
a. Logical Persistent Connection
b. Duplex vs. Simplex
6. Presentation
a. Ensures common formats
b. Complex Architecture
7. Application
a. HTTP, FTP, SMTP, DHCP, etc...
b. Web browser
7. OSI and TCP/IP
Routing Protocols (under Network Layer)
● RIP v1 & 2 (RFCs 1058, 1723)
○ Uses distance vector to select path w/ fewest
hops; not always fastest; no more than 15 hops
○ v2 supports subnet mask and password
authentication
● OSPF v1 & 2 (RFCs 1131, 1583, 2328)
○ Link-state based
○ smaller, more frequent updates to routing tables
○ supports classless IP ranges
8. OSI and TCP/IP
● BGP (RFCs 4271, 1771, 1654, 1105, 1163,
1267)
○ for interdomain routing in TCP/IP networks
○ allows the internet to be decentralized
● ICMP (RFC 792)
○ Used heavily in troubleshooting
○ Announces network errors, congestion, and
timeouts
○ Common utilities using this protocol: Ping,
Traceroute
9. OSI & TCP/IP
TCP Control Bits
● URG - Urgent Pointer field significant
● ACK - Acknowledgement field significant
● PSH - Push Function
● RST - Reset the connection
● SYN - Synchronize sequence numbers
● FIN - No more data from sender
14. IP Networking
Network Addressing
● In 8.24.28.159
○ 8 is network (assigned by orgs like ICANN)
○ .24.28.159 is unique to host
● .0 and .255 are not used by hosts
● Class A: 1.0.0.0 - 127.255.255.254
● Class B: 128.0.0.0 - 191.255.255.254
● Class C: 192.0.0.0 - 223.255.255.254
● Class D: 224. - 239. (for multicast)
● Class E: 240. - 255. (Special purpose)
15. IP Networking
Network Addressing
● Special networks: 10.0.0.0, 127.0.0.0,
172.16.0.0-172.31.0.0, 192.168.0.0
● Subnets
○ Octets represent bits
○ All bits with a value of 1 are network bits
○ Example: A host in the 172.25.156.0 network with a
subnet mask of 255.255.255.224 means that its
address will be between 172.27.165.1 and
172.27.165.30. Next subnet will start at
172.27.165.32.
16. IP Networking
CIDR/IPv6
● IP addresses in high demand since '90s
● CIDR introduced to help remedy
○ Classless interdomain (remember BGP?)
● IPv6 currently being introduced
○ Much longer addresses using hexadecimal
○ IPSec implemented
○ Increased throughput
○ Better QoS (meaning better VoIP)
17. IP Networking
● Connection requires two parts
○ IP Address
○ Ports
● Ports associated with TCP/UDP
● IANA manages standard port numbers
○ 0-1023: well-known; 1024-49151: registered;
49152-65535: private
19. IP Networking
DHCP
● Allows hosts to get their own IP addresses
● Process is similar to three-way handshake
○ Workstation sends out DHCPDISCOVER
○ Server responds with DHCPOFFER
○ Workstation sends DHCPREQUEST to begin lease
○ Server responds with DHCPACK
● Authentication supported (RFC 3118)
20. IP Networking
While ICMP is useful, attackers also love it.
● Ping of Death
○ ICMP echo larger than 65,536 bytes would cause
systems to crash; OSs now made to handle it
● Redirect attacks
○ Man-in-the-Middle by redirecting a host through
an attackers computer
● Ping Scanning & Traceroute Exploitation
○ Scanning for open ports/mapping network; NMAP
● IGMP
○ used to manage multicasting groups
21. IP Networking
● VRRP
○ Performs failover for routers
○ Acts as a virtual router transparently
● RPCs
○ Allows a host to execute code not stored on it
○ CORBA and DCOM are examples
23. IP Networking
Directory Services (Again...)
● LDAP
○ supports lots of back ends
○ weak authentication; transfers in CT
● NetBIOS
● NIS, NIS+
○ Commonly used to manage user credentials
○ NIS does not authenticate between request, NIS+
does
Port 389; RFC 1777
Ports 135, 137, 138, 139; RFCs 1001, 1002
24. IP Networking
File sharing
● CIFS/SMB/Samba
○ Prevalent on Windows, but also used on Unix-
based systems
○ Capable of user- and tree-level security
○ Credentials sent in CT for backwards compatability
● NFS
○ Prevalent on Unix-type systems, but also found on
Windows.
○ v2 & v3 are stateless protocols for performance
○ Secure NFS uses DES for authentication and
encryption; time stamps for tokens
○ v4 uses Kerberos and is stateful
Port 445
RFCs 1094, 1813, 3010, 3530
25. IP Networking
● SMTP
○ Routes email
○ No authentication; identification using email
address
○ ESMTP improves security; provides authentication
● FTP
○ Requires two channels: control and data
○ Original: username/password auth passed in CT
○ TLS: sends AUTH TLS command to encrypt session
○ SFTP: encrypts both control and data
○ FTP over SSH: tunneling; only encrypts control
○ Active and Passive: server could be blocked by
firewall
Port 25
Ports 20, 21; RFCs 959, 4217
26. IP Networking
● Anonymous FTP
○ Replaced with similar HTTP services
○ Considered unsafe due to the need to input an
email address for access
● TFTP
○ Simplified FTP similar in purpose to Anonymous
○ Used on LANs for system administration tasks
Ports 69; RFC 1350
27. IP Networking
● HTTP
○ Initially "Web enabled" apps caused security
issues
○ No encryption support; simple authentication
● Proxying
○ Anonymizing
■ Allows obfuscation of connection information
○ Open
■ Allows unrestricted access to GET commands
■ Can be used to launch attacks
○ Content Filtering
■ Blocks traffic to restricted sites
■ Protects against accidental downloading of
viruses
Port 80; RFCs 1945, 2109, 2616
29. Multi-Layer Protocols
Typically found used with industrial systems
● SCADA (also called ICS)
○ Control Server - hosts software
○ RTU - equipped with radios
○ HMI - where people control the machines
○ PLC - controls machinery components
○ IED - sensors that collect data
○ IO Server - collects info from RTUs, PLCs, IEDs
○ Data Historian - like SEIM
● Modbus
○ Information sent in clear text
○ No authentication to send commands