Risk management the big picture part 2

... 1 72. 20 .21 6 .29 .139: 1 72. 20 .21 6 .29 .139: 1 72. 20 .21 6 .29 .139: S S S S S S S S 5968437 72: 5968437 72( 0) 5968437 72: 5968437 72( 0) 5968437 72: 5968437 72( 0) 5968437 72: 5968437 72( 0) 29 4167370 :29 4167370(0) 29 4167370 :29 4167370(0) ... > 1 72. 20.139.137.139: 1 72. 20.139.137.139: 1 72. 20.139.137.139: 1 72. 20.139.137.139: 12: 57:56 12: 57:59 12: 58:05 12: 58:41 proberE .20 38 proberE .20 38 proberE .20 38 proberE .20 39 > > > > 1 72. 20 .21 6 .29 .139: ... 29 4167370 :29 4167370(0) 29 4167370 :29 4167370(0) 29 421 2415 :29 421 2415(0) Information Risk Management - SANS 20 01 win win win win win win win win 81 92 81 92 81 92 81 92 81 92 81 92 81 92 81 92 (DF) (DF)...

63
299
0

Tài liệu Risk Management The Big Picture – Part IV docx

... firewalls themselves, which are an amazingly effective perimeter, contribute to the problem The people protected by the firewall think everything is OK since the firewall stops the attacks and then they ... displayed at the top Then summary information about the packet is given The trace begins with the content of the detect RPC (Remote Procedure Call) attacks like this are part of the Top Ten list ... 2001 v1.4a – edited/formatted by J Kolde – 26 May 2001 v1.4b – edited/formatted by D Tuttle – 24 July 2001 v1.5 – updates and added exercises by E Cole – 10 Aug 2001 v1.6 – updated E Cole – Nov 2001...

35
420
0

Tài liệu Risk Management The Big Picture – Part V doc

... May 2001 v1 .4 – edited/formatted by J Kolde – May 2001 v1 .4a – edited/revised by D Tuttle – 24 July 2001 v1 .5 – updated E Cole – Nov 2001 V 1.6 – edited and audio recorded by C Wendt – 16 Jan ... Information Risk Management - SANS ©2001 v1 .0 – S Northcutt – Jul 2000 v1 .1 – edited by J Kolde – Aug 2000 v1 .2 – edited by J Kolde, format grayscale for b/w printing – 23 Nov 2000 v1 .3 - edited ... the organization to discover the method and motives of the attacker Since the attacker believes that they are attacking a production system, they will open up their bag of tricks and reveal their...

17
366
0

Tài liệu Risk Management The Big Picture – Part VI ppt

... bring these tools into a framework for risk management 6-2 The Three Risk Choices • Accept the risk as is • Mitigate or reduce the risk • Transfer the risk (insurance model) Risk Management: The Big ... Limits – Needs a list of applicable patches – Where to get them – Tool to determine patch status Risk Management: The Big Picture SANS ©2001 Information Risk Management - - SANS ©2001 22 The NSWC ... and how they play together: – Host- and Network-Based Intrusion Detection – Vulnerability Scanners and Honeypots – Firewalls Risk Management: The Big Picture SANS ©2001 Information Risk Management...

61
424
0

Information Security: The Big Picture – Part I

... 18 Handling Risk • Eliminate risk • Minimize risk • Accept risk • Transfer risk Information Security: The Big Picture - SANS GIAC © 2000 19 There are several ways of dealing with risk First, you ... good intentions Extremely effective in many situations Common ploys – – – – The The The The Dumb User VIP Lost Puppy Prize • Protection: know who you are dealing with Information Security: The Big ... else? Information Security: The Big Picture - SANS GIAC © 2000 Information security practitioners often wrestle with the problem of determining how much security is considered “enough” for a particular...

27
598
1

Information Security: The Big Picture – Part II

... Hdr Data Information Security: The Big Picture - SANS GIAC © 2000 29 The data packet has two basic parts, the header and the payload The header is the part of the packet that contains information ... they would contact the operator at the central office and tell them the name of the person they wanted to talk to The operator would then connect the caller’s plug to the plug of the person being ... of the cans, the sound can be heard through the other can The can you talk into is the transmitter, the can you listen from is the receiver, and the string is the medium How does it work? The...

33
535
1

Information Security: The Big Picture – Part III

... give this information to the people on the first floor The people in the first floor actually go to the store, buy all the ingredients, and bring them back to the apartment building Once the ingredients ... own information to it, then sends it to the next layer down the stack Once the packet reaches the bottom of the stack, it travels along the network wire to the remote host, then travels up the ... purchased, the process goes in reverse The first floor gives the raw ingredients to the second floor The second floor checks that all the ingredients are there and then hands them off to the third...

26
554
0

Information Security: The Big Picture – Part IV

... multiple parts • Fragmented parts are reassembled at destination • Attacks – Tiny fragment – Overlapping fragments – Teardrop Information Security: The Big Picture - SANS GIAC © 2000 11 In the IP ... to all the other hosts on that network, which then act as the agents for the attack Being good little agents, they want to reply to the request However the only information they have is the spoofed ... normal IP transmission – – – – – Access control Connectionless integrity Data origin authentication Protection against replays Confidentiality Information Security: The Big Picture - SANS GIAC ©...

31
669
0

Information Security: The Big Picture – Part V

... allows the browser to send some information to the server, usually information from a form the user fills out POST transactions send the information from the browser to the server The server will then ... a server somewhere on the network, they did the work on the server, you got the results, and you were done Then with the advent of the web, we started seeing the use of CGI programs to the work ... service over the Internet Another problem is the risk of vandalism If someone wants to vandalize my corner store they have to show up in person with their spray cans or their explosives and their...

25
395
0

Information Security: The Big Picture – Part VI

... Certificates have many uses – Encryption – Authentication – Verification Information Security: The Big Picture - SANS GIAC © 2000 Most of us have either a drivers license or a passport These are official ... As they are discovered, the anti-virus vendors develop methods for detecting and removing them They then put these new methods into updates to their software and distribute them to users of their ... department logs into the computer and is authenticated, their ID will be tagged as belonging to the research department If they try to access the accounting files, the computer will compare the...

37
550
0

Tài liệu Intrusion Detection The Big Picture – Part III docx

... Network-Based Intrusion Detection • Host Based Intrusion Detection – Unix – Windows NT, 95, 98 • Network-Based Intrusion Detection – Libpcap based tools, Snort, Shadow – ISS RealSecure – Cisco Netranger Intrusion ... Intrusion Detection - The Big Picture - SANS GIAC © 2000 22 22 Deception Can Drive the Picture S S CIRT Meta CIRT S S CIRT S Intrusion Detection - The Big Picture - SANS GIAC © 2000 23 The point of this ... RealSecure Intrusion Detection - The Big Picture - SANS GIAC © 2000 20 With a bit of practice one translates between 172.20/16 and 255.255.0.0 without even thinking! 20 Intrusion Detection - The Big Picture...

28
476
0

Tài liệu Information Security: The Big Picture – Part V pdf

... allows the browser to send some information to the server, usually information from a form the user fills out POST transactions send the information from the browser to the server The server will then ... a server somewhere on the network, they did the work on the server, you got the results, and you were done Then with the advent of the web, we started seeing the use of CGI programs to the work ... service over the Internet Another problem is the risk of vandalism If someone wants to vandalize my corner store they have to show up in person with their spray cans or their explosives and their...

25
636
0

Tài liệu Information Security: The Big Picture – Part IV doc

... multiple parts • Fragmented parts are reassembled at destination • Attacks – Tiny fragment – Overlapping fragments – Teardrop Information Security: The Big Picture - SANS GIAC © 2000 11 In the IP ... to all the other hosts on that network, which then act as the agents for the attack Being good little agents, they want to reply to the request However the only information they have is the spoofed ... normal IP transmission – – – – – Access control Connectionless integrity Data origin authentication Protection against replays Confidentiality Information Security: The Big Picture - SANS GIAC ©...

31
382
0

Tài liệu Information Security: The Big Picture – Part V pptx

... allows the browser to send some information to the server, usually information from a form the user fills out POST transactions send the information from the browser to the server The server will then ... a server somewhere on the network, they did the work on the server, you got the results, and you were done Then with the advent of the web, we started seeing the use of CGI programs to the work ... service over the Internet Another problem is the risk of vandalism If someone wants to vandalize my corner store they have to show up in person with their spray cans or their explosives and their...

25
443
0

Tài liệu Information Security: The Big Picture – Part VI doc

... uses – Encryption – Authentication – Verification Information Security: The Big Picture - SANS GIAC © 2000 Most of us have either a drivers license or a passport These are official government documents ... As they are discovered, the anti-virus vendors develop methods for detecting and removing them They then put these new methods into updates to their software and distribute them to users of their ... department logs into the computer and is authenticated, their ID will be tagged as belonging to the research department If they try to access the accounting files, the computer will compare the...

37
533
0