Security Attacks: Passive vs. Active Techniques

security attacks n.w
1 / 20
Embed
Share

Explore the world of security attacks in network security, categorized as passive and active attacks. Learn about the objectives, figures, and classifications according to OSI Architecture X.800. Dive into the details of passive attacks, including release of message contents and traffic analysis, to protect against potential threats and breaches.

  • Security Attacks
  • Network Security
  • Passive Attacks
  • Active Attacks
  • Information Security
rayaanacharya
her_pa Follow

Uploaded on | 1 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

You are allowed to download the files provided on this website for personal or commercial use, subject to the condition that they are used lawfully. All files are the property of their respective owners.

Download Presentation

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.

E N D

Presentation Transcript

  1. Security Attacks Network Security 1

  2. Security Attacks Objectives of the Topic After completing this topic, a student will be able to describe the security attacks. 2

  3. Security Attacks Figures and material in this topic have been adapted from Network Security Essentials: Applications and Standards , 2014, by William Stallings. 3

  4. Security Attacks According to the OSI Architecture X.800, security attacks can be classified in two categories: passive attacks, and active attacks 4

  5. Security Attacks A passive attack attempts to learn or make use of information from the system but does not affect system resources. An active attack attempts to alter system resources or affect their operation. 5

  6. Security Attacks Passive Attacks: Passive attacks are in the nature of eavesdropping on, or monitoring of, transmissions. The goal of the opponent is to obtain information that is being transmitted. 6

  7. Security Attacks Passive Attack 7

  8. Security Attacks There are two types of passive attacks release of message contents, and traffic analysis. 8

  9. Security Attacks Release of message contents: A telephone conversation, an e- mail message, and a transferred file may contain confidential info. Prevent an opponent from learning contents of these transmissions. 9

  10. Security Attacks Traffic Analysis: Even if contents of messages are encrypted, an opponent might still be able to observe the pattern of these messages. 10

  11. Security Attacks He could determine the location and identity of communicating hosts and could observe the frequency and length of messages being exchanged. He can guess the nature of the communication. 11

  12. Security Attacks Passive attacks do not alter the data. Neither the sender nor receiver is aware that a third party has observed the traffic pattern. Emphasis is on prevention rather than detection. Use Encryption. 12

  13. Security Attacks Active Attacks: Active attacks involve some modification of the data stream or the creation of a false stream. 13

  14. Security Attacks Active Attack 14

  15. Security Attacks Active attacks can be subdivided into four categories: masquerade, replay, modification of messages, and denial of service. 15

  16. Security Attacks Masquerade: It takes place when one entity pretends to be a different entity. It usually includes one of the other forms of active attack. 16

  17. Security Attacks Replay: It involves the passive capture of a data unit and its subsequent retransmission to produce an unauthorized effect. 17

  18. Security Attacks Modification of messages: It simply means that some portion of a legitimate message is altered, or that messages are delayed or reordered, to produce an unauthorized effect. 18

  19. Security Attacks Denial of Service: It prevents or inhibits the normal use or management of communications facilities. E.g. an entity may suppress all messages directed to a particular destination. 19

  20. Security Attacks Active Attacks are difficult to prevent because of the wide variety of potential physical, software, and network vulnerabilities. Goal is to detect attacks and to recover from any disruption or delays caused by them. End 20

Related


Types Cyber Attacks: Cyber Security Training Workshop

Types Cyber Attacks: Cyber Security Training Workshop

anara
Adversarial Machine Learning

Adversarial Machine Learning

caterina
Malicious Attacks, Threats, and Vulnerabilities in IT Security

Malicious Attacks, Threats, and Vulnerabilities in IT Security

ciel
Principles of Cyber Security

Principles of Cyber Security

gillian
Managing Covid-19 Cyber and Data Protection Risks

Managing Covid-19 Cyber and Data Protection Risks

kaisen
Mitigation of DMA-based Rowhammer Attacks on ARM

Mitigation of DMA-based Rowhammer Attacks on ARM

baylee
Cybersecurity Challenges: Attacks on Web Applications and Cost of Security Breaches

Cybersecurity Challenges: Attacks on Web Applications and Cost of Security Breaches

hari
Denial-of-Service Attacks and Defense Strategies

Denial-of-Service Attacks and Defense Strategies

delphi
Network Denial of Service (DoS) Attacks

Network Denial of Service (DoS) Attacks

zahra
Preventing Active Timing Attacks in Low-Latency Anonymous Communication

Preventing Active Timing Attacks in Low-Latency Anonymous Communication

kmike
Control Hijacking Attacks in Software Systems

Control Hijacking Attacks in Software Systems

kit_631
Strategies to Protect School Systems from Cyber Attacks

Strategies to Protect School Systems from Cyber Attacks

alins
Data Security and Privacy: An Overview of k-Anonymity, l-Diversity, t-Closeness, and Reconstruction Attacks

Data Security and Privacy: An Overview of k-Anonymity, l-Diversity, t-Closeness, and Reconstruction Attacks

strozier_k
Security Issues in Parallel and Distributed Computing - Side Channel Attacks and Defenses

Security Issues in Parallel and Distributed Computing - Side Channel Attacks and Defenses

corella_j
Automated Signature Extraction for High Volume Attacks in Cybersecurity

Automated Signature Extraction for High Volume Attacks in Cybersecurity

klos_k
Targeted Deanonymization via the Cache Side Channel: Attacks and Defenses

Targeted Deanonymization via the Cache Side Channel: Attacks and Defenses

jmora
Network Security Vulnerabilities and Attacks

Network Security Vulnerabilities and Attacks

leyo_5
Network Interference in CS590B/690B Lecture

Network Interference in CS590B/690B Lecture

runk_ara
HTTP Security Headers for Web Apps

HTTP Security Headers for Web Apps

pembroke_l
Machine Learning for Cybersecurity Challenges: Addressing Adversarial Attacks and Interpretable Models

Machine Learning for Cybersecurity Challenges: Addressing Adversarial Attacks and Interpretable Models

mall221
Universally Composable Security: A Tutorial by Ran Canetti

Universally Composable Security: A Tutorial by Ran Canetti

kama_574
DDoS Attacks: Simulation, Analysis & Defense

DDoS Attacks: Simulation, Analysis & Defense

okey

More Related Content