信息安全基础1密码编码学与网络安全.pptVIP

Chapter 1 Introduction 2012 Foundation of Information Security The art of war teaches us to rely not on the likelihood of the enemys not coming, but on our own readiness to receive him; not on the chance of his not attacking, but rather on the fact that we have made our position unassailable. —The Art of War, Sun Tzu  故用兵之法，无恃其不来，恃吾有以待之；无恃其不 攻，恃吾有所不可攻也。 —《孙子兵法》 1 2 3 4 Overview What is security Security attacks, services mechanisms Network Security models Course Outline Information Security – a state of well-being of information and infrastructures基础设施 in which the possibility of successful yet undetected theft, tampering篡改, and disruption破坏 of information and services is kept low or tolerable可容忍的 Internet Security - measures to deter, prevent, detect, and correct security violations侵害 during data transmission over a collection of interconnected networks 1 What is Security The transmission of sensitive messages as plaintext 明文 Tamper message 信息篡改 Message forgery 信息伪造 Delay 延迟 Denial 否认 Some Violations Examples Security Trends by CERT Characteristic of Information Come from substance, but independent of the source and carried by media - easy for being shared - can be copied and transmitted arbitrarily任意的 - should have signatures, dates; need protection from disclosure, tampering, or destruction; be notarized确认 or witnessed见证; be recorded or licensed许可 OSI Security Architecture (Open System Interconnection,开放系统互连) ITU-T X.800 Security Architecture for OSI Defines a systematic way of defining and providing security requirements For us it provides a useful, abstract overview of concepts we will study X.800 defines security attacks, security mechanisms and security services 2 Security Attacks, Mechanisms Services Security attack –any violation to information security Security mechanism-detect, prevent, recover from a security attack Security service (attribute)-make use of security mechanisms to enhance security,