Documente Academic
Documente Profesional
Documente Cultură
tudy.tel
despre seminar
activiti de zi cu zi
trimite-mi pe mail...
tendine
Phishing
Phishing Explodes
Crimeware
crime
Adware
Spyware
DDoS Attacks
Bots Explode
Spam
Tracking Cookies
Spam Explodes
curiosity
Network Worms
Virus
Destructive Virus
Macro Virus
1986
16
2008
o list de preuri
Produs Instalare adware Pachet malware, versiunea basic Add-ons pentru pachete malware nchiriere de exploit - o or nchiriere de exploit - 2,5 ore nchiriere de exploit - 5 ore Pre 30 ceni in US, pn la 2 ceni in alte ri 1.000$ 2.000$ Preuri variabile pornind de la 20$ De la 0,99$ la 1$ De la 1,60$ la 2$ 4$
Troian nedetectabil
Atac DDOS Informaii despre conturi bancare Un milion de mesaje e-mail
80$
100$ pe zi Preuri variabile pornind de la 50$ De la 8$ n sus Informaiile se refera la anul 2007, sursa: TrendMicro
pe cmpul de lupt
terge fiiere mp3 care conin numele unor cntarei romni "populari"
Adrian Minune Adi de la Valcea Florin Salam Fraii de Aur Laura Vass Liviu Putiu Liviu Gu
DDoS / botnets
Smurf
Computer Computer Computer
ICMP Echo
Network A
Broadcast Address
ICMP Echo
Workstation
Workstation
Workstation
Network B
Target system
Broadcast Address
ICMP Echo
Network C
ICMP Echo
SynFlood Attack
SynFlood
Half Open Connection Half Open Conenction
Attacker
Legitimate Connection
Legitimate userr
DNS DoS
Query with spoofed IP DNS 1 Results from attackers query
Target
DDoS
Attackers Commands Attacker Client Software Command Attackers Coomand Command Command Client
SQL injection
XSS
XSS
XSS
spam
crimeware
botnet on demand
Storm
85.000
3 miliarde mesaje pe zi
furt de identitate
#1 dac un atacator te convinge s rulezi programul lui pe calculatorul tu, nu mai e calculatorul tu
#2 dac un atacator poate modifica sistemul de operare de pe calculatorul tu, nu mai e calculatorul tu
#6 un sistem e att de sigur pe ct de mult ncredere poi avea n persoana care l administreaz
abordarea securitii
arhitectura veche
internet
corporate network
persoanele din CORP i-a dat seama c pe Internet se gsesc treburi interesante, i au solicitat acces
internet
firewall
corporate network
iar cnd e vorba de culori, imagini i sunete, persoanele de la marketing devin interesate
internet
firewall
iar cnd s-a dorit i comunicarea cu cei din afar, a aprut DMZ
internet
firewall
soluiile noi au devenit din ce n ce mai complexe, deoarece se bazau pe soluiile deja existente
engineers begin knowing a little bit about a lot they learn less and less about more and more until they know nothing about everything
architects begin knowing a lot about a little they learn more and more about less and less until they know everything about nothing
contractors begin knowing everything about everything but end up knowing nothing about anything because of their association with architects and engineers
pe cine cunoatem?
PC
persoan
PC
persoan
managed
unmanaged
arhitectura nou
internet
corporate network
corporate network
1. confidenialitate
2. posesie
de reinut!
confidenialitate (criptare) i
lucrul cu informaia ce se colecteaz? cum circul? unde e stocat, i pentru ct timp? cine o aceseaz i de ce? ce se ntmpl n afara sistemului? cnd e distrus?
soluii
non-admin login, NAP, Group Policy, autentificare cu certificate (X.509), IPSec, IPv6 (Teredo), DNSv6, Firewall, soluii gen TrueCrypt/BitLocker, code security best practices, penetration testing, web security platforms, etc.
resurse online
feedback :)
http://infoeducatie.tudy.ro/
ntrebri
mulumesc.
tudy.tel