... 18 Handling Risk • Eliminate risk • Minimize risk • Accept risk • Transfer risk Information Security: The Big Picture - SANS GIAC © 2000 19 There are several ways of dealing with risk First, you ... good intentions Extremely effective in many situations Common ploys – – – – The The The The Dumb User VIP Lost Puppy Prize • Protection: know who you are dealing with In...
Ngày tải lên: 18/10/2013, 18:15
... Hdr Data Information Security: The Big Picture - SANS GIAC © 2000 29 The data packet has two basic parts, the header and the payload The header is the part of the packet that contains information ... they would contact the operator at the central office and tell them the name of the person they wanted to talk to The operator would then connect the caller’...
Ngày tải lên: 22/10/2013, 16:15
Information Security: The Big Picture – Part III
... give this information to the people on the first floor The people in the first floor actually go to the store, buy all the ingredients, and bring them back to the apartment building Once the ingredients ... own information to it, then sends it to the next layer down the stack Once the packet reaches the bottom of the stack, it travels along the network wire to...
Ngày tải lên: 22/10/2013, 16:15
Information Security: The Big Picture – Part IV
... multiple parts • Fragmented parts are reassembled at destination • Attacks – Tiny fragment – Overlapping fragments – Teardrop Information Security: The Big Picture - SANS GIAC © 2000 11 In the IP ... to all the other hosts on that network, which then act as the agents for the attack Being good little agents, they want to reply to the request However the only...
Ngày tải lên: 26/10/2013, 23:15
Information Security: The Big Picture – Part V
... allows the browser to send some information to the server, usually information from a form the user fills out POST transactions send the information from the browser to the server The server will then ... a server somewhere on the network, they did the work on the server, you got the results, and you were done Then with the advent of the web, we started seeing...
Ngày tải lên: 26/10/2013, 23:15
Information Security: The Big Picture – Part VI
... Certificates have many uses – Encryption – Authentication – Verification Information Security: The Big Picture - SANS GIAC © 2000 Most of us have either a drivers license or a passport These are official ... As they are discovered, the anti-virus vendors develop methods for detecting and removing them They then put these new methods into updates to their software and d...
Ngày tải lên: 04/11/2013, 12:15
Tài liệu Intrusion Detection The Big Picture – Part III docx
... Network-Based Intrusion Detection • Host Based Intrusion Detection – Unix – Windows NT, 95, 98 • Network-Based Intrusion Detection – Libpcap based tools, Snort, Shadow – ISS RealSecure – Cisco Netranger Intrusion ... Intrusion Detection - The Big Picture - SANS GIAC © 2000 22 22 Deception Can Drive the Picture S S CIRT Meta CIRT S S CIRT S Intr...
Ngày tải lên: 09/12/2013, 17:15
Tài liệu Information Security: The Big Picture – Part V pdf
... allows the browser to send some information to the server, usually information from a form the user fills out POST transactions send the information from the browser to the server The server will then ... a server somewhere on the network, they did the work on the server, you got the results, and you were done Then with the advent of the web, we started seeing...
Ngày tải lên: 09/12/2013, 17:15
Tài liệu Information Security: The Big Picture – Part IV doc
... multiple parts • Fragmented parts are reassembled at destination • Attacks – Tiny fragment – Overlapping fragments – Teardrop Information Security: The Big Picture - SANS GIAC © 2000 11 In the IP ... to all the other hosts on that network, which then act as the agents for the attack Being good little agents, they want to reply to the request However the only...
Ngày tải lên: 10/12/2013, 14:16
Tài liệu Information Security: The Big Picture – Part V pptx
... allows the browser to send some information to the server, usually information from a form the user fills out POST transactions send the information from the browser to the server The server will then ... a server somewhere on the network, they did the work on the server, you got the results, and you were done Then with the advent of the web, we started seeing...
Ngày tải lên: 10/12/2013, 14:16
Tài liệu Information Security: The Big Picture – Part VI doc
... uses – Encryption – Authentication – Verification Information Security: The Big Picture - SANS GIAC © 2000 Most of us have either a drivers license or a passport These are official government documents ... As they are discovered, the anti-virus vendors develop methods for detecting and removing them They then put these new methods into updates to their software and dis...
Ngày tải lên: 10/12/2013, 14:16
Tài liệu Intrusion Detection The Big Picture – Part IV pdf
... Intrusion Detection - The Big Picture – SANS GIAC ©2000 11 The telnetd and the web demon are “real” They are compiled C code They simply simulate the services This could be important, since they ... transfers Indicate the hit as it happens – – – – Email Console message Call to your pager Log files Intrusion Detection - The Big Picture – SANS GIA...
Ngày tải lên: 10/12/2013, 14:16
Tài liệu Intrusion Detection The Big Picture – Part V docx
... out-of-band very valuable Intrusion Detection - The Big Picture – SANS GIAC ©2000, 2001 23 Once evidence is turned over to law enforcement, they have chain of custody procedures The high risk for evidence ... 39 Course Revision History Intrusion Detection - The Big Picture – SANS GIAC ©2000, 2001 40 v1 .0 – S Northcutt – Jul 2000 v1 .1 – edited by J...
Ngày tải lên: 10/12/2013, 14:16
Tài liệu Intrusion Detection The Big Picture – Part VI pdf
... for Intrusion Detection – How all these Capabilities Work Together • Future Directions – Intrusion Detection in the Network – Program-Based Intrusion Detection Intrusion Detection - The Big Picture ... with these core technologies and how they play together: – Host- and Network-Based Intrusion Detection – Vulnerability Scanners and Honeypots –...
Ngày tải lên: 10/12/2013, 14:16
Tài liệu Risk Management The Big Picture – Part IV docx
... firewalls themselves, which are an amazingly effective perimeter, contribute to the problem The people protected by the firewall think everything is OK since the firewall stops the attacks and then they ... displayed at the top Then summary information about the packet is given The trace begins with the content of the detect RPC (Remote Procedure Call) attacks like this ar...
Ngày tải lên: 10/12/2013, 14:16