Introduction
to
Computer & Internet Security
JP Shieh
Jun, 2009
X.800 Security Architecture for OSI
Focus on: (*)
• Security Attack
• Security Service
• Security Mechanisms
Security Attack
Passive
Attacks
Active
Attacks
Message Disclosure
Masquerade
Network Flow Analysis
Replay
Modification of Messge Content
Denial of Service (DoS)
•Our goal is to prevent, • Our goal is to detect and recover
but not detect it.
from it.
Security Service
機密
(Confidentiality)
有效性
(Availability )
稽核
(Audit)
不可否認
(Non-repudiation)
資訊安全
基本需求
存取控制
(Access Control)
認證
(Authentication)
完整性
(Integrity)
Security Mechanism
Specific
Security Mechanism
Pervasive
Security Mechanism
Encipherment
Trusted Functionality
Digital Signature
Data Integrity
Access Control
Authentication Exchange
Routing Control
Traffic Padding
Notarzation
Security Label
Event Detection
Security Audit Trail
Security Recovery
Relationship of
Security Services and Mechanism
Cryptography
A DVD/BD Application
Entry Level Survey
Computer Security
http://en.wikipedia.org/wiki/Computer_security
Internet
http://en.wikipedia.org/wiki/Internet_security
Useful Link For Adv. Study
Related Journal:
http://www.ccsl.carleton.ca/conferences/journals.php
Conferences on Networking and Security :
http://www.ccsl.carleton.ca/conferences/index.php?cutoff=no
Reference Books: Cryptography and {Network | Web | Computer} Security
http://www.scs.carleton.ca/~paulv/5900wBooks.html
國家資通安全會報技術服務中心
http://www.icst.org.tw/
Background
密碼與資訊安全 Cryptography and Security
橢圓曲線密碼學 Elliptic Curve Cryptography
編碼理論 Coding Theory
演算法 Algorithm Design
計算理論 Theory of Computation