Debre Berhan University

College of Computing

Department of Computer Science

Computer Networking and Security Module

Part I: Data Communication and Computer Networking

Part II: Network and System Administration
Part III: Computer Security

March 2023
Debre Berhan,
Ethiopia

Chapter 1: Information/Computer Security Issues
1. Introduction
 Security is “the quality or state of being secure—to be free
from danger.”
o in other words, protection against adversaries —from
those who would do harm, intentionally or otherwise—is
the objective.
o National security, for example, is a multilayered system
that protects the sovereignty of a state, its assets, its
resources, and its people. Achieving the appropriate level
of security for an organization also requires a multifaceted
system.
2. Information Assurance?
 The practice of assuring information and managing risks
related to the use, processing, storage, and transmission of
information or data, the systems and processes used for
those purposes.
 Includes protection of the integrity, availability,
authenticity, non-repudiation and confidentiality of user
data.
o Using physical, technical and administrative controls to
accomplish these tasks.
o not only digital but also analog or physical form
 Includes restoration of information systems by
incorporating protection, detection, and reaction
capabilities.
 It is best thought of as a superset of information security,
strongly related to the field of information security, and
also with business continuity.
3. Why Information Assurance is needed?
 To protect information exchanges between interconnected
computer systems.
o Stand-alone COMPUSEC could not protect information
during storage, processing or transfer between systems.
o to detect attacks and enable a response to those attacks
 To add business benefit through the use of IRM
(Information Risk Management).
o improves business continuity
 Generally, to minimize risk and ensure business continuity
by implementing controls to limit the impact of a security
breach.
4. Information Assurance pillars
 Confidentiality:
o Preserving authorized restrictions on access and
disclosure.
o Includes personal privacy and proprietary information
protection.
 Integrity:
o protecting against improper information modification or
damage
o The data stored on the computer is the same as what is
intended.
 Availability:
o Ensuring timely and reliable access to and use of
information.
o Assures systems work promptly & service isn’t denied to
authorize users.
 Authentication:
o Is proving a claim – usually that you are who you say you
are.
 non-repudiation:
o Prevention of either the sender or receiver denying a
transmitted message.
o Prove the occurrence of a claimed event or action and its
originating entities.
5. Information Assurance strategy
 Cyber security awareness and education
 Strong cryptography
 Good security-enabled commercial information technology
 An enabling global Security Management Infrastructure;
and
 A civil defense infrastructure equipped with an attack
sensing and warning capability and coordinated response
mechanism
6. Difference: InfoSec, computer security & IA
 IA: measures that protect and defend information and ISs
by ensuring their availability, integrity, authentication,
confidentiality, and non-repudiation.
 Information protection or InfoSec: protection of
information and ISs from unauthorized access, use,
disclosure, disruption, modification, perusal, inspection,
recording or destruction.
 Computer Security: (W. Stallings)
o Protection to an automated information system in order to
attain the applicable objectives of preserving the
confidentiality, integrity, and availability (CIA) of
information system resources (includes hardware,
software, firmware, information/data, and
telecommunications).
 Two major aspects of InfoSec are:
o IT security (Sometimes computer security): is InfoSec
applied to technology (most often computer system).
o IA: The act of ensuring that data is not lost when
critical issues like natural disasters, system malfunction,
physical theft, etc. arise.
 InfoSec, computer security & IA are frequently used
interchangeably;
o These fields are interrelated and share the common goals
of protecting the CIA of information; however, there are
some subtle differences.
o differences lie primarily in the approach to the subject, the
methodologies used, and the areas of concentration.
  InfoSec: concerned with the CIA of data regardless of the
form the data may take: electronic, print, or other forms.
 Computer security: can focus on ensuring the availability
and correct operation of a computer system without
concern for the information stored or processed by the
computer.
 IA: focuses on the reasons for assurance that information
is protected, and is thus reasoning about information
security.
7. Enterprise security & Cyber defense
 Enterprise security: is about building systems to remain
dependable in the face of malice, error, or mischance.
 Cyber defense: computer network defense mechanism
which includes response to actions and critical
infrastructure protection and IA for possible networks.
 Business-driven approach to enterprise security
architecture means that security is about enabling the
objective of an organization by controlling operational
risk.
8. Threats, vulnerabilities, risk, controls (W. Stallings)
 Adversary (threat agent): An entity that attacks, or is a
threat to, a system. e.g. all hackers in the world
 Threat: any circumstances or events that can potentially
harm an information system by destroying it, disclosing
the information stored on the system, adversely modifying
data, or making the system unavailable.
 Vulnerability: weaknesses or fault in an information
system or its components that could be exploited.
 Attack: actual violation of security that derives from an
intelligent threat.
 Risk: An expectation of loss expressed as the probability
that a particular threat will exploit a particular
vulnerability with a particular harmful result.
o Risk = Threats x Vulnerabilities
 Control, safeguard, or countermeasure: An action,
device, procedure, or technique that reduces a threat, a
vulnerability, or an attack by eliminating or preventing it,
by minimizing the harm it can cause, or by discovering
and reporting it so that corrective action can be taken.
 Security Policy: A set of rules and practices that specify or
regulate how a system or organization protects sensitive
and critical system resources.
 System Resource (Asset): Data contained in an
information system; or a service provided by a system; or
a system performance; or an item of system equipment
(i.e., a system component—hardware, software, or
documentation); or a facility that houses system operations
and equipment.
Chapter 2: Information security models and
mechanisms
1. Model for Computer Security
 Example: If a company has antivirus software but does not
use an anti-virus and keep the virus signatures up-to-date,
this is vulnerability. The company is vulnerable to virus
attacks. Similarly, if you fail to routinely update your
operating systems or application software, these will
remain vulnerable to software problems ("bugs") that have
been identified and patched
o Vulnerability: no antivirus/ un updated Signatures
o Threat: Virus
o Attack: System Crash and/or destroy data and/or
data modification
o The likelihood of a virus showing up in the
environment and causing damage is the risk.
o The countermeasures in this situation are to update
the signatures and install the antivirus software on all
computers
2. Goals of computer security
3 key objectives of computer security: CIA triad (W. Stallings)
 Confidentiality: Data confidentiality and Privacy
o is the prevention of unauthorized disclosure of
information.
o In other words, confidentiality means keeping information
private or safe.
o it may be important for military, business or personal
reasons.
o it may also be known as privacy or secrecy.
 Integrity: covers Data integrity and System integrity
o the prevention of unauthorized writing or modification of
information.
o Integrity in a computer system means that there is an
external consistency in the system – everything is as it is
expected to be.
o Data integrity: the data stored on the computer is the same
as what is intended.
 Availability:
o Assures that systems work promptly and service is not
denied to authorized users.
o Information should be accessible and usable upon
appropriate demand by an authorized user.
 o Denial of service (DOS) attacks are a common form of
attack against computer systems whereby authorized users
are denied access to the computer system.
Additional objectives:
 Non-repudiation: is the prevention of either the sender or
the receiver denying a transmitted message.
o It is the ability to prove the occurrence of a claimed event
or action and its originating entities
o It assures that a sender of data is provided with proof of
delivery and the recipient is provided with proof of the
sender's identity, so neither can later deny having
processed the data.
o often implemented by using digital signatures
 Authentication
o is proving a claim – usually that you are who you say you
are.
o for example it may be obtained by the provision of a
password or by a scan of your retina.
 Access controls
o provide the limitation and control of access to authorized
users through identification and authentication.
o A system needs to be able to identify and authenticate
users for access to data, applications and hardware.
o In a large system there may be a complex structure
determining which users and applications have access to
which objects.
 Accountability
o Ensuring an entity’s action is traceable uniquely to that
entity.
o Ascertains the responsibility of an entity (like a person)
for its actions and decisions.
o All relevant activities events and operations on a system,
e.g., failed and successful authentication attempts, are
recorded in a log.
3. Security Attack
 The agent carrying out the attack is referred to as an
attacker, or threat agent.
 We can distinguish two types of attacks: (W. Stallings)
o Active attack: an attempt to alter/affect system
resources or their operation.
o Passive attack: an attempt to learn/make use of
information from the system that does not affect
system resources.
 We can also classify attacks based on the origin of the
attack:
o Inside attack: Initiated by an entity inside the security
perimeter (an “insider”).
o Outside attack: Initiated from outside the perimeter.
 Types of Attacks on Data CIA (W. Stallings)
o Disclosure/Interception: unauthorized party snooping,
or getting access to a resource, Attack on data
confidentiality:
o Modification / Deception: unauthorized party
modifying a resource, acceptance of false data, E.g.,
providing wrong data (attack on data integrity)
o Disruption/Interruption: destroyed/unavailable
services/resources, DoS (attack on data availability)
o Fabrication: unauthorized party inserts a fake
asset/resource, loss of confidentiality, authenticity and
integrity of the message
 Types of Attackers
o Amateurs: Opportunistic attackers (use a password
they found), Script kiddies
o Hackers - nonmalicious
o Crackers – malicious
o Career criminals
o State-supported spies and information warriors
4. Countermeasure Methods to Risk
 Any means taken to deal with a security attack. It can be
devised to prevent a particular type of attack. When
prevention is not possible, or fails in some instance, the
goal is to detect the attack and then recover from the
effects of the attack.
 Five basic approaches to defense of computing systems
o Prevent attack: from violating security policy, Block
attack / Close vulnerability
o Deter attack: intended to discourage potential
attackers, Make attack harder,
o Deflect attack: Make another target more attractive
than this target
o Detect attack: accept that an attack will occur; the
goal is to determine that an attack is under way, or has
occurred, and report it.
o Recover from attack: Stop attack, assess and repair
damage or restore the operations of the business
5. Controls: Security policies & mechanisms
 for Today Computers
o Encryption: primary control that protects CIA, by
which Cleartext scambled into ciphertext.
o Software controls: password checker, virus scanner,
IDS (intrusion detection system)
o Hardware controls: provide higher degree of security;
Locks, Smart cards, dongles, hadware keys...
o Policies and procedures: Alignment with users’ legal
and ethical standards; eg. password policy
o Physical controls: natural and man-made disaster
protection; walls, locks, guards, security, cameras,
backup copies and archives
6. Principles of Computer Security
 Principle of Easiest Penetration
 Principle of Adequate Protection
 Principle of Effectiveness: Controls must be efficient, easy
to use, and appropriate.
 Principle of Weakest Link: Security can be no stronger
than its weakest link.
 Principles of Least Privilege: “Do not give any more
privileges than absolutely necessary to do/perform the
required job”.
 Defense in Depth: having more than one layer or type of
defense
 Minimization: “do not run any software, or applications that
are not strictly required to do the entrusted job.”
 Compartmentalization: limits the damage in other
compartments when one compartment is compromised.
 Keep Things Simple: Complexity is the worst enemy of
security.
 Fail Securely: if a security measure or control has failed for
whatever reason, the system is not rendered to an insecure
state.
 Balancing Security and Access
Chapter 3: Computer Threats/Attacks
1. Types of Threats/Attacks … (Chuck Eastom)
 Physical Attack: Stealing, breaking or damaging of
computing devices
 Malware Attack: A generic term for software that has
malicious purpose.
o Viruses
o Worms
o Trojan horses
o Spy-wares
o Zombie
o Botnets
o Bacterium
o Logic bomb
o Backdoor(Trapdoor)
o Adware
o Flooders (DoS client)
o Key loggers
o Rootkit
o Spam/scam, identity theft, e-payment frauds, etc.
 Hacking /Intrusion/ Attack: any attempt to intrude or gain
unauthorized access to your system either via some
operating system flaw or other means. The purpose may or
may not be for malicious purposes.
 Cracking: is hacking conducted for malicious purposes.
 Denial of Service (DoS) Attack: Blocking access from
legitimate users
 Distributed DoS Attack: is accomplished by tricking
routers into attacking a target or using Zombie hosts to
simultaneously attack a given target with large number of
packets.
 Spoofing: Examples; MAC cloning, IP spoofing, and email
spoofing
 Password attacks: guessing password; social engineering
attack, Dictionary attack
 Cryptographic Attack:
A. Frequency Analysis attack: Guess values based on
frequency of occurrence
B. Brute-force attack: The attacker tries every possible
key on a piece of ciphertext until an intelligible
translation into plaintext is obtained. On average, half of
all possible keys must be tried to achieve success.
C. Cryptanalysis: the process of breaking an encrypted
code.
 Ciphertext only Attack, Known plaintext Attack,
Chosen plaintext Attack, Chosen ciphertext Attack,
and Chosen text Attack
2. Class of Attacks
 Reconnaissance: The hackers first identifies a target to
launch an attack, extract maximum information regarding
this target, understand its vulnerabilities, and then only
explore the best ways to exploit it.
o Examples: Credential Theft using Keyloggers and
Spyware; Identity Theft using spam e-mail, phishing
attack and social engineering attack
 Access: Ones the attacker Reconnaissance the target, S/he
starts a successful exploitation and continued access to the
system. Then, the attacker is in control of the target.
 Denial of Service: Ones the attacker having a successful
access to the system. S/he starts to deny users from
accessing or using the service or system.
Chapter 4: Application of Security Mechanisms
1. Cryptography and hash functions
 Cryptography is the science and art of secret, or hidden
writing
 Cryptanalysis is the science and art of breaking codes.
 Modern cryptography concerns with:
o Confidentiality - Information cannot be understood by
anyone.
o Integrity - Information cannot be altered.
o Non-repudiation - Sender cannot deny his/her
intentions in the transmission of the information at a
later stage.
o Authentication - Sender and receiver can confirm
each.
 Generally, the goal of the cryptography is to protect
private communication in the public world.
 Basic cryptographic terms
o Plaintext - the original form of a message
o Ciphertext - the coded/encrypted form of a message
o Cipher – an encryption method or process
encompassing the algorithm and key, or procedures
used to transform plaintext to ciphertext
o Key - info used in cipher known only by the
sender/receiver. A Key is value that the cipher, as an
algorithm, operates on.
 If same key is used for encryption & decryption
the algorithm is called symmetric
 If different keys are used for encryption &
decryption the algorithm is called asymmetric
 o Encipher (encrypt) – the process of converting ciphertext character. Alice and Bob can agree on a table
plaintext to ciphertext showing the mapping for each character.
o Decipher (decrypt) - recovering plaintext from
ciphertext
o Cryptography – the study of encryption (2) Polyalphabetic Ciphers
principles/methods o The relationship between a character in the plaintext to a
o Cryptanalysis (codebreaking) - the study of character in the ciphertext is one-to-many.
principles/ methods of breaking ciphertext without o Autokey Cipher:
knowing key
o Cryptology - the field of study which deals with both
cryptography and cryptanalysis
 Cryptography classification:
o Playfair Cipher
A. Classical/Conventional Cryptography: Substitution
o Vigenere Cipher
Cipher and Transposition Cipher
o Exercise:
B. Modern Cryptography: Symmetric key cryptography
and Public key cryptography  Encrypt the message “She is listening” using the 6-
character keyword “PASCAL”.
Classical Cryptography  The initial key stream is (15, 0, 18, 2, 0, 11). The key
Substitution ciphers stream is the repetition of this initial key stream (as
 Replaces one symbol with another. many times as needed)
 Categories monoalphabetic or polyalphabetic ciphers. o Hill Cipher:
(1) Monoalphabetic Ciphers  Key in the Hill cipher: The key matrix in the Hill cipher
o The relationship between a symbols in the plaintext to a needs to have a multiplicative inverse.
symbol in the ciphertext is always one-to-one.
o sometimes called additive cipher or shift cipher or Caesar
cipher (key of 3)
o When the cipher is additive, the plaintext, ciphertext,
and key are integers in Z26.
o Exercise:
 Use additive cipher with key = 15 to encrypt the
message “hello”.
 Use the additive cipher with key = 15 to decrypt
the message “WTAAD”.
o Multiplicative Ciphers: the plaintext and ciphertext are
integers in Z26; the key is an integer in Z26*. This set has
only 12 members: 1, 3, 5, 7, 9, 11, 15, 17, 19, 21, 23, 25.
o Exercise: Transposition Ciphers
 use a multiplicative cipher to encrypt the message  Does not substitute one symbol for another, instead it
“hello” with a key of K=7. The ciphertext is changes the location of the symbols (reorders symbols).
“XCZZU”.  A transposition cipher relies on an algorithm which
 Decryption key is multiplicative inverse of K=7; K-1 rearranges the order of the letters in a plaintext
mod 26=7-1 mod 26. message
o Affine Ciphers: uses a pair of keys in which the first key (1) Keyless Transposition Ciphers
is from Z26* and the second is from Z26. The size of the o Permute the characters by writing plaintext in one way and
key domain is 26 × 12 = 312. reading it in another way.
 The additive cipher is a special case of an affine o rail-fence transposition: a plaintext message is
cipher in which k1 = 1. The multiplicative cipher is transposed into several rows
a special case of affine cipher in which k2 = 0.
 Ciphertext is produced by reading the resulting
o Because additive, multiplicative, and affine ciphers have columns in sequence
small key domains, they are very vulnerable to brute-
 Example with 2 rails (rows):
force attack;
 Plaintext: THEBIGBANGTHEORY
 Solution: Monoalphabetic Substitution Cipher
 Plaintext arranged into 2 rows:
o Monoalphabetic Substitution Cipher: creates a mapping  THEBIGBA
between each plaintext character and the corresponding  NGTHEORY
  Ciphertext: tnhgetbhiegobray
o columnar transposition: a plaintext message is
transposed into several columns
 Ciphertext is produced by reading the resulting
rows in sequence
 Example with 2 columns:
 Plaintext: SECRET
 Plaintext arranged into 2 columns:
S R
E E
C T
 Ciphertext: sreect
 The key in a columnar transposition is the number of
columns!
 In the example above, the key is 2
(2) Keyed Transposition Ciphers
o Is to divide the plaintext into groups of predetermined
size, called blocks, and then use a key to permute the
characters in each block separately.
o The permutation of each character in the plaintext into the
ciphertext based on the positions.
o Permutation key: key used for encryption and decryption.
(3) Combining Two Approaches
Modern Cryptography:
 Based on Kerckhoff’s principle, one should always assume
that the adversary, Eve, knows the encryption/decryption
algorithm.
 The resistance of the cipher to attack must be based only
on the secrecy of the key and the strength of the
algorithm.
 If the strength of the algorithm is secured enough, better
way to break the cryptosystem will be trying every
possible key in a brute-force attack.
 complexity of a brute-force attack:
o If the key is 56 bits long, there are 256 possible keys.
o Assuming a supercomputer can try a million keys a
second, it will take 2285 years to find the correct key.
o 256 /(1000,000*(365days*24hr*3600s))
e.g. DES
 There are three main types of modern cryptographic
functions that are the building blocks of security:
1) symmetric encryption
2) Asymmetric encryption
3) Hash Functions
Symmetric key cryptography
 Uses conventional / secret-key / single-key.
 The secret key shared by both sender and receiver.
 All classical encryption algorithms are private-key.
o Use the same key (shared key) for encryption and
decryption process.
 If this key is disclosed communications are compromised.
 Symmetric Cipher Model
o Alice can send a message to Bob over an insecure
channel
 with the assumption that an adversary, Eve, cannot
understand the contents of the message.
o The original message from Alice to Bob is referred to
as plaintext;
o the message that is sent through the channel is referred
to as the cipher text.
o Alice uses an encryption algorithm and a shared secret
key.
o Bob uses a decryption algorithm and the same secret
key.
Figure 4.1 symmetric - key cryptography
 2 requirements for secure use of symmetric encryption:
o Strong encryption algorithm: i.e., Y = EK(X)
o Secret key known only to sender / receiver: i.e. X =
DK(Y)
 Assume encryption algorithm is known
o Implies a secure channel to distribute key:
 Problem: - Key distribution problem
 Key Distribution
o Symmetric schemes require both parties to share a
common secret key.
o Issue is how to securely distribute this key.
 o Often secure system failure due to a break in the key
distribution scheme.
 Given parties A and B have various key distribution
alternatives:
o A can select key and physically deliver to B.
o Third party can select & deliver key to A & B.
o If A & B have communicated previously can use
previous key to encrypt a new key.
o If A & B have secure communications with a third-
party C, C can relay key between A & B.
 Key Hierarchy
o session key
 temporary key
 used for encryption of data between users
 for one logical session then discarded
o master key
 used to encrypt session keys
 shared by user & key distribution center
 Advantage: Simpler and faster
 Disadvantages: Less secured, key exchange problem,
large number of keys are needed
 Examples of symmetric key algorithms are as follows:
(1) Data Encryption Standard (DES) (56bits key)
o Feistel cipher: half of the data block is used to modify
the other half of the data block and then the halves are
swapped.
o passes through an initial permutation (IP) that
rearranges the bits to produce the permuted input.
o followed by sixteen rounds of the same function:
involves both permutation and substitution functions.
o The left and right halves of the output are swapped to
produce the preoutput.
o The preoutput passed through the inverse of the initial
permutation function (IP -1)
(2) Triple DES (3DES) (168 bits key)
(3) Advanced Encryption Standard (AES)
o is not a Feistel structure
 processes the entire data block as single matrix
during each round using substitutions and
permutation (substitutions permutation Network )
o plain text is a fixed block size of 128 bits and a key
size of 128, 192, or 256 bits
o Four different stages are used, one of permutation
and three of substitution:
 Substitute bytes: Uses an S-box to perform a byte-
by-byte substitution of the block
 ShiftRows: A simple permutation
 MixColumns: A substitution that makes use of
arithmetic over GF(28)
 AddRoundKey: A simple bitwise XOR of the
current block with a portion of the expanded key
 Categories of symmetric ciphers:
o Stream Ciphers: Encrypt data one bit or one byte at a
time
o Block Ciphers: a group of plaintext characters of a fixed
size (a block) is encrypted at once and sent to the receiver;
Playfair, Hill ciphers, modern symmetric ciphers
o Combination Cipher
Asymmetric key cryptography
 also known as public-key encryption.
 In public key cryptography,
o unlike symmetric-key, there are two keys: a private
key and a public key.
 The public key is announced to the public; whereas
the private key is kept by the receiver.
o anyone can send messages using the public key of the
receiver for encryption, but only the receiver uses his
private key for decryption
 Secret transmission of key for decryption is not
required
 Every entity can generate a key pair and release its
public key
 Encryption and decryption keys are different but
form a unique pair
o Note that: Private key can also be public by keeping
public key secret
 PKE systems eliminate the problems(key exchange)
encountered with symmetric key systems
o Key distribution is easy with PKE!
 used for confidentiality, authentication & Digital Signature.
 the padlock that is locked with a public key can be
unlocked only with the corresponding private key.
 Eve should not be able to advertise her public key to the
community pretending that it is Bob’s public key.
 used for internet secure links. Each site has its own public
& private keys.
 Asymmetric-key cryptosystem Model
o Both users (Bob & Alice) generates a pair of keys
o Each user places one of 2 keys in public register.
 This is the public key: each user maintains a collection of
public keys obtained from others.
o The companion key is kept private to each.
o If Alice wishes to send a confidential message to Bob,
She encrypts the message using Bob’s public key.
o When Bob receives the message, he decrypts it using
his private key.
  No other recipient can decrypt because only Bob knows his
private key.
Figure 4.2 Asymmetric-key cryptography
 uses this ideas to make a trap-door one-way function:
o dominant PKE algorithms are based on the difficulty
of factoring large numbers, or Discrete Logarithm
Problem.
o Multiplying two large primes is a one-way Function,
factoring is conjectured to be a hard problem
 These algorithms are also susceptible to a brute-force
attack, but of a different type.
 Breaking these algorithms
o does not involve trying every possible key;
o involves trying to factor the large number (or taking
discrete logarithms in a very large finite field)
 If the number is too small, you have no security.
 If number is large enough, secured against all
computing power.
 Advantages: more secured, Authentication
 Disadvantages: relatively complex
 Public Key Infrastructure (PKI)
o used for the management of public key and
distribution of digital certificates
o Authenticates users and devices in the digital world.
o Its most familiar use is
 in SSL certificates and TLS (newer version): in
practice, most websites now use TLS.
o With HTTPS, certificates serve to identify the web
site; ensure no-one can eavesdrop your connection.
o consists of
 Certification Authorities (CAs), Registration
Authorities (RAs), Certificate holders, Clients,
Repositories, Cryptographic Algorithms and
Protocols.
 Examples of Asymmetric key algorithms are as follows:
(1) El Gamal
o Developed by Taher ElGamal
o Variable key size (512 or 1024 bits)
o Less common than others
(2) Diffie-Hellman Key Agreement (DH):
o first practical method for secret share over unsecured
channel.
o The point is to agree on a key that two parties can use
for a symmetric encryption, in such a way that an
eavesdropper cannot obtain the k.
o One of the main uses of DH is in the Internet Key
Exchange (IKE) protocol,
 a central part of the IP Security (IPSEC) architecture
o Example: Suppose Alice and Bob want to agree on a
shared symmetric key.
a) Alice and Bob, and everyone else, already know the
values of p and g.
b) Alice generates a random private value a and Bob
generates a random private value b.
 Both a and b are drawn from the set of integers 1, ..., p-1.
c) Alice and Bob derive their corresponding public values, - the
values they will send to each other unencrypted-as follows.
 Alice’s public value is ga mod p and
 Bob’s public value is gb mod p then, they exchange their
public values.
 Finally,
 Alice computes gab mod p = (gb mod p) a mod p and
 Bob computes gba mod p = (ga mod p) b mod p.
Fig 4.3 Diffie-Hellman Key Agreement (DH)
(3) Rivest, Shamir, Adleman (RSA)
o Developed by Ron Rivest, Adi Shamir, Len Adelman
o Variable Key Size (512, 1024, or 2048 bits)
o Most popular public key algorithm
o Based on principle:
 No mathematical method to efficiently find the prime
factors of large numbers
o Breaking RSA is equivalent to finding prime factors:
this is now to be computationally infeasible.
o private and public keys are constructed from very large
prime numbers.
o only who has produced the keys from prime number
can easily decrypt messages
o Key Generation, Encryption & Decryption Procedure
 Choose two large prime numbers p & q
 Compute n=pq and z=(p-1)(q-1)
 Choose number e, less than n, which has no
common factor (other than 1) with z
 Find number d, such that ed – 1 is exactly
divisible by z
 Keys are generated using n, d, e
 Public key is (n,e)
 Private key is (n, d)
 Encryption: c = me mod n
  m is plain text
 c is cipher text
 Decryption: m = cd mod n
 Public key is shared and the private key is hidden
(4) Digital Signature Algorithm (DSA):
o PKI relies on DS, which uses public key cryptography.
o The basic idea is that private key is only known by
that entity & used for signing.
 Public key derived from it: used for verifying
signatures but cannot be used to sign.
 It is available to anyone, and is typically included in
the certificate document.
o Digital Signature procedure
 Sender encrypts message with its private key
 Receiver can decrypt using sender’s public key
 This authenticates sender, who has the matching key
 Does not give privacy of data i.e. Decrypt key is
public key.
Fig 4.4 digital Signature algorithm (DSA)
Hash functions
o A hash function H takes a variable-size message m as
input and produces a fixed-size output, referred to as a
hash code or message digest or hash value H (m)
o no key is used in this algorithm.
o A fixed-length hash value is computed as per the
plain text
 that makes it impossible for the contents of the plain
text to be recovered.
o also used by many operating systems to encrypt
passwords..
o Hashing
 the transformation of variable-length messages into
fixed-length message digest that represents the
original string.
o Hash value (or simply hash), also called a message
digest, is a number generated from a string of text.
 is much smaller than the text itself.
o creates a unique, fixed- length signature for a specific
message or data set.
 even minor changes to that message result in a
dramatically different hash. Therefore, it is very
resistant to tampering.
Figure 4.5 Examples of hash algorithms: MD5 , SHA-1
2. Application Security
 Vulnerability:
o any mistakes or weakness in the system security that
may result the possibility for intruders to get
unauthorized access
 Vulnerability Assessment :
o a software testing technique to evaluate the sudden
increase of risks involved in the system in order to
reduce the probability of the event.
o depends on two mechanisms:
 Vulnerability Assessment: the process of scanning
(locating & reporting) vulnerabilities to provide a
way to detect and resolve security problems by
ranking the vulnerabilities.
 Penetration Testing: an authorized simulated
attack on a computer system, performed to evaluate
the security of the system.
 Types of vulnerability scanner:
o Host Based :
 Identifies the issues in the host or the system.
 carried out by using host-based scanners .
o Network Based :
 will detect the open port, and identify the unknown
services running on these ports.
 carried out by using Network-based Scanners.
o Database Based :
 identify the security exposure in the database
systems to prevent from SQL Injections.
 Vulnerability Testing Methods:
o Active Testing: While doing the test, the tester will
actively involve in the process of finding out the new
test cases and analyzes the results.
o Passive Testing: monitoring the result of running SW
under test without introducing new test cases or data.
o Network Testing: the process of measuring the state
of network operation over a period of time to find out
the problems created by new services.
o Distributed Testing: applied for testing distributed
applications.
o Penetration Test (pen test):
 To identify both weaknesses (vulnerabilities) &
strengths, to enable a full risk assessment.
 Determine whether a system is vulnerable, defenses
were sufficient and which defenses (if any) the test
defeated.
 Secure Shell (SSH):
 o A cryptographic protocol for operating NW services
securely over an unsecured NW.
o Best-known application: for remote login to computer
systems by users.
o Common applications: remote command-line login
and execution.
 Secure Email:
o Adds confidentiality and integrity protection to
ordinary e-mail.
o E.g. PGP.
 Secure Web servers:
o The main vulnerability of web applications is Cross-Site
Scripting (XSS).
o Securing the website or web application itself and the
network around it.
o Common web servers: Apache, and IIS.
 TLS-based client digital certificates
 Apache or Oracle penetration testing
 VPN Apps
 Application firewall / proxy server
3. Firewall
 a program or network devices (e.g. router) which filters
access to a protected network from the internet connection.
 protects a local or network of systems from network-based
security threats,
 monitors & controls incoming & outgoing network traffic
based on predetermined security rules.
 Firewall Objectives
o Keep intruders, malicious code and unwanted traffic
out
o Keep private and sensitive information in
o security wall b/n private (protected) NW & outside
word.
 Categorizes of firewalls
a) Network firewalls: Filter traffic b/n two or more
networks and run-on NW hardware.
 Implemented at a specific point in the network path
and protects all computers on the internal side of the
firewall from all computers on the external side of
the fire wall.
b) Host-based firewalls: Run on host computers and
control network traffic in/out of those machines.
a) Packet Filtering Router: Examines TCP/IP header
information of network data packets going in both
directions. Applies set of rules to each incoming IP
packets & then forwards or discards the packets.
b) Application-Level Gateway (application firewall /
proxy server): runs special software that acts as a
proxy for a service request. Proxy server receives
requests for Web pages, accesses the Web server on
behalf of the external client, and returns the
requested pages to the users.
c) Circuit Level Gateway: Standalone Software that sets
up two TCP connections (inside & outside). It
determines which connections will be allowed.
 Firewalls implementation
a) Hardware firewalls: a stand-alone product or
integrated into the router. It will have a minimum of
four network ports to connect other computers.
b) Software firewalls: installed on your computer and
will protect your computer from outside and then
determine whether the request is valid or not.
c) Combination of both
4. Physical security
 Without physical security to protect hardware (i.e., doors
that lock) nothing else about a computer system can be
called secure
5. Operations security
 As the software charged with controlling access to the
hardware, the file system, and the network, weaknesses in
an operating system are the most valued amongst
crackers.
 Most OS authentication is handled through user names
and passwords. Biometric (e.g. voice, face, retina, iris,
fingerprint) and physical token-based (swipe cards, pin-
generating cards) authentication are sometimes used to
augment simple passwords, but the costs and accuracy of
the technology limit their adoption.
6. Access control
 Since many systems (such as router access control lists)
define which packets may and which packets may not pass
based on the sender's IP address
 An access enforcement mechanism authorizes requests
from multiple subjects (e.g. users, processes, etc.) to
perform operations (e.g., read, write, etc.) on objects (e.g.,
files, sockets, etc.).
 Network access control (NAC): is an umbrella term for
managing access to a net-work. NAC authenticates users
logging into the network and determines what data they can
access and actions they can perform. NAC also examines
the health of the user’s computer or mobile device (the
endpoints).
 An operating system provides an access enforcement
mechanism.
 Two fundamental concepts of access control:
o a protection system that defines the access control
specification and
o a reference monitor that is the system’s access
enforcement mechanism that enforces this specification.
7. Plan, Design and manage security, security policies,
business continuity plans, disaster recovery plans, and
social and legal issues of information security
8. Design secure systems for real world information
system services