Professional Documents
Culture Documents
134 1-TongQuan AnNinhMang
134 1-TongQuan AnNinhMang
134 1-TongQuan AnNinhMang
Network Security
Computer Sciences Div.
Thi gian
Sng:
T2: Tng quan; KT m ha T3, T4: chng thc phn quyn; tm hiu cc hnh thc k thut tn cng h thng; m c hi T5, T6: Cc bin php k thut m bo an ton h thng; Trin khai chnh sch bo mt T6 (chiu): kim tra kt thc kha hc
2008, Vietnam-Korea Friendship IT College
Ni dung
S cn thit phi c an ninh mng Cc yu t m bo an ton thng tin Mi e da an ninh mng (Threat) L hng h thng (Vulnerable) Nguy c h thng (Risk) nh gi nguy c h thng
Cc yu t cn bo v
D
NT Computer Printer
Tc hi n doanh nghip
Tn
km chi ph Tn km thi gian nh hng n ti nguyn h thng nh hng danh d, uy tn doanh nghip Mt c hi kinh doanh
Cn nhc
Kh
Tnh b mt: Thng tin phi m bo tnh b mt v c s dng ng i tng. Tnh ton vn: Thng tin phi m bo y , nguyn vn v cu trc, khng mu thun Tnh sn sng: Thng tin phi lun sn sng tip cn, phc v theo ng mc ch v ng cch. Tnh chnh xc: Thng tin phi chnh xc, tin cy Tnh khng khc t (chng chi b): Thng tin c th kim chng c ngun gc hoc ngi a tin
Cc mi e da (threat)
Cc mi e da (threat) n an ton h thng l cc hnh ng hoc cc s kin/hnh vi c kh nng xm hi n an ton ca mt h thng thng tin
Mc
10
Cc mi e da (threat)-2
Kh nng bo mt thng tin: s b e da nu thng tin khng c bo mt Tnh ton vn ca thng tin: e da thay i cu trc thng tin Tnh chnh xc ca thng tin: e da thay i ni dung thng tin Kh nng cung cp dch v ca h thng: lm cho h thng khng th cung cp c dch v (tnh sn sng) Kh nng thng k ti nguyn h thng
11
Cc mi e da (threat)-3
nng e da tn cng ca i tng: kh nng truy cp khai thc cc l hng h thng to ra mi e da trc tip S hiu bit ca i tng v mc tiu e da tn cng: user ID, file mt khu, v tr file, a ch mng, ng c tn cng ca i tng: chinh phc, li ch c nhn, c tnh
12
Cc mi e da (threat)-4
Hnh vi e da tn cng
Li
dng quyn truy nhp thng tin h thng C tnh hoc v tnh thay i thng tin h thng Truy cp thng tin bt hp php C tnh hoc v tnh ph hy thng tin hoc h thng Nghe ln thng tin n cp phn mm hoc phn cng ..
13
Cc mi e da (threat)-5
Phn loi cc mi e da
C
14
L hng h thng
l
ni m i tng tn cng c th khai thc thc hin cc hnh vi tn cng h thng. L hng h thng c th tn ti trong h thng mng hoc trong th tc qun tr mng.
L hng lp trnh (back-door) L hng H iu hnh L hng ng dng L hng vt l L hng trong th tc qun l (mt khu, chia s,)
15
16
Cc cp nguy c
Nguy
17
nh gi nguy c h thng
Xc nh l hng h thng
`
Xc nh cc mi e da n h thng
Nguy c h thng
18
19
Xc nh cc mi e da
y
Thi im tn cng khng bit trc Qui m tn cng khng bit trc
20
- Bc tng la - Firewall - Phn mm dit virus - iu khin truy nhp -H thng chng thc (mt khu, sinh trc hc, th nhn dng,)
- M ha d liu - H thng d xm nhp IDS -Cc k thut khc: AD, VPN, NAT
21
Xc nh mc nguy c
Sau
khi xc nh c cc l hng h thng, cc mi e da v cc bin php an ninh hin c, ta c th xc nh c mc nguy c h thng nh sau:
Ti mt im truy cp cho trc vi cc bin php an ninh hin c, xc nh cc tc ng ca cc mi e da n h thng: kh nng bo mt, tnh bo ton d liu, kh nng p ng dch v, kh nng phc hi d liu thng qua im truy cp .
22
Xc nh mc nguy c (tt)
Cn
c vo 5 tiu ch nh gi (Chi ph, Thi gian, Danh d, Ti nguyn h thng, C hi kinh doanh) ta c th phn nguy c an ton mng mt trong cc mc: cao, trung bnh, thp. Nu h thng kt ni vt l khng an ton th h thng cng mc nguy c cao
23
Tho lun nh gi
24
Trantheson@mic.gov.vn
H v tn C quan cng tc 1- Hiu bit v an ninh mng/ mng my tnh 2- Cu hnh mng hin ti ca c quan/doanh nghip 3- nh gi bo mt / an ton mng ca c quan/doanh nghip (s b)
Xem
xt cc l hng mng thng qua cc kt ni n c quan/doanh nghip Cc bin php AN mng hin c
2008, Vietnam-Korea Friendship IT College
25