Ch 31

Tags:

Preview:

Click to see full reader

DESCRIPTION

tmh slides

Citation preview

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

Chapter 31

Security Protocolsin

the Internet

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

31.1 IP Level Security31.1 IP Level Security

Security Association

Two Modes

Two Security Protocols

Encapsulating Security Payload (ESP)

Authentication Header (AH)

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

Figure 31.1 Transport mode

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

Figure 31.2 Tunnel mode

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

Figure 31.3 AH

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

The AH protocol provides source authentication and data integrity,

but not privacy.

NoteNote::

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

Figure 31.4 ESP

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

ESP provides source authentication, data integrity, and privacy.

NoteNote::

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

31.2 Transport Layer Security31.2 Transport Layer Security

Position of TLS

Two Protocols

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

Figure 31.5 Position of TLS

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

Figure 31.6 Handshake protocol

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

31.3 Application Layer Security31.3 Application Layer Security

Pretty Good Privacy

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

Figure 31.7 PGP at the sender site

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

Figure 31.8 PGP at the receiver site

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

31.4 Firewalls31.4 Firewalls

Packet-Filter Firewalls

Proxy Firewalls

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

Figure 31.9 Firewall

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

Figure 31.10 Packet-filter firewall

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

A packet-filter firewall filters at the network or transport layer.

NoteNote::

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

Figure 31.11 Proxy firewall

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

A proxy firewall filters at the application layer.

NoteNote::

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

31. 5 Virtual Private Networks31. 5 Virtual Private Networks

Private Networks

Achieving Privacy

VPN Technology

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

Table 31.1 Addresses for private networksTable 31.1 Addresses for private networks

PrefixPrefix RangeRange TotalTotal

10/810/8 10.0.0.0 to 10.255.255.25510.0.0.0 to 10.255.255.255 222424

172.16/12172.16/12 172.16.0.0 to 172.31.255.255172.16.0.0 to 172.31.255.255 222020

192.168/16192.168/16 192.168.0.0 to 192.168.255.255192.168.0.0 to 192.168.255.255 221616

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

Figure 31.12 Private network

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

Figure 31.13 Hybrid network

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

Figure 31.14 Virtual private network

McGraw-Hill ©The McGraw-Hill Companies, Inc., 2004

Figure 31.15 Addressing in a VPN

Recommended

Ch.31 notes
Documents
Ch 31 HW Solns - AP2
Documents
31-3 GENESIS Ch 25-36
Documents
Ch 31 years of crisis
News & Politics
U.S. History (CH. 31) Richard Nixon
Education
Ch 31 Seed Plant Structure Notes
Documents
31-1 Genesis Ch 1-11
Documents
Ch 31 Schizophrenia and Other Psychoses
Documents
To Kill A Mockingbird PART II Ch. 12-31 Reading Questions PART II Ch. 12-31 Reading Questions
Documents
Ch 31 Cold War and Decolonization
Documents
 · 2018-12-20 · IMPORTE TOTALES $151,252.55 107,522.21 CH-03 31/01/2012 20,000.00 CH-04 31/01/2012 24,000.00 CH-05 31/01/2012 20,000.00 CH-06 …
Documents
Week 9- Ch. 31- Skin
Documents
Vol 2 Ch 31 - Tensors
Documents
Open Economy- Ch 31
Documents
Ch 31 Nuclear Physics and Radioactivity
Technology
Vol 2 Ch 31 - Tensors-Feynman
Documents
CH 31 - 140.130.15.232
Documents
DM Ch 31 PPT Edited-1
Documents
Ch 31 Vocabulary
Documents
WWII Ch 31
Education