At the OSI Application Layer

SET – Secure Electronic Transaction

• Originated by Visa and Mastercard
• Being overtaken by SSL

SHTTP – Secure HTTP

• Early standard for encrypting HTTP documents
• Also being overtaken by SSL

Planning to take the CISSP Exam? Get a copy of my personal notes (300plus pages worth) that I used to pass the exam for only $25.00. Click the Add To Cart Button to Purchase Plus you will also get copies of notes from other CISSPs. Learn more about this package by visiting this blog entry: CISSP REVIEW NOTES I USED TO PASS THE EXAM. CLICK BELOW TO MAKE YOUR PURCHASE NOW. All Purchases are securely processed through Paypal. Once you click the button please check your shopping cart at the upper right hand side of the page to complete your order. IMPORTANT NOTICE: I MANUALLY REVIEW ALL ORDERS. SO ONCE YOU PURCHASE THE PRODUCT, THERE WILL BE SOME DELAY ON YOU RECEIVING AN E-MAIL FROM ME WITH THE LINK TO THE DOWNLOAD AREA OF THE PRODUCT. YOU WILL GET A RESPONSE FROM ME WITHIN 24-48 HOURS.

At the OSI Transport Layer

SSH-2

• SSH has RSA certificates
• Supports authentication, compression, confidentiality and integrity
• DES encryption
• Because Secure Shell (SSH-2) supports authentication, compressions, confidentiality and integrity, SSH is used frequently for Encrypted File Transfer

SSL – Secure Socket Layer

• Contains SSL record protocol and SSL Handshake Protocol
• Uses symmetric encryption and public key authentication
• MAC – Message Authentication Code for Integrity

SKIP – Simple Key Management for Internet Protocol  - Similar to SSL with no prior communication required

You may also want to consider these CISSP resources from Amazon.com

• The process in which information from one packet is wrapped around or attached to the data of another packet
• In the OSI model each layer encapsulates the layer immediately above it

OSI Layers

• Process down the stack and up the stack
• Each layer communicates with corresponding layer through the stack

Planning to take the CISSP Exam? Get a copy of my personal notes (300plus pages worth) that I used to pass the exam for only $25.00. Click the Add To Cart Button to Purchase Plus you will also get copies of notes from other CISSPs. Learn more about this package by visiting this blog entry: CISSP REVIEW NOTES I USED TO PASS THE EXAM. CLICK BELOW TO MAKE YOUR PURCHASE NOW. All Purchases are securely processed through Paypal. Once you click the button please check your shopping cart at the upper right hand side of the page to complete your order. IMPORTANT NOTICE: I MANUALLY REVIEW ALL ORDERS. SO ONCE YOU PURCHASE THE PRODUCT, THERE WILL BE SOME DELAY ON YOU RECEIVING AN E-MAIL FROM ME WITH THE LINK TO THE DOWNLOAD AREA OF THE PRODUCT. YOU WILL GET A RESPONSE FROM ME WITHIN 24-48 HOURS.

6 OSI Security Services

• A security service is a collection of security mechanisms, files and procedures that help protect the network
  • Authentication
  • Access Control
  • Data Confidentiality
  • Data Integrity
  • Non-repudiation
  • Logging & monitoring

8 OSI Security Mechanisms

• A security mechanism is a control that is implemented in order to provide the 6 basic security services
  • Encipherment
  • Digital Signature
  • Access Control
  • Data Integrity
  • Authentication
  • Traffic Padding
  • Routing Control
  • Notarization

TCP/IP Suite of Protocols

Layered architecture

• Shows how communication should take place
• Clarify the general functions of a communication process
• To break down complex networking processes into more manageable sub-layers
• Using industry standard interfaces enables interoperability
• To change the features of one layer without changing the code in every layer
• Easier troubleshooting

Planning to take the CISSP Exam? Get a copy of my personal notes (300plus pages worth) that I used to pass the exam for only $25.00. Click the Add To Cart Button to Purchase Plus you will also get copies of notes from other CISSPs. Learn more about this package by visiting this blog entry: CISSP REVIEW NOTES I USED TO PASS THE EXAM. CLICK BELOW TO MAKE YOUR PURCHASE NOW. All Purchases are securely processed through Paypal. Once you click the button please check your shopping cart at the upper right hand side of the page to complete your order. IMPORTANT NOTICE: I MANUALLY REVIEW ALL ORDERS. SO ONCE YOU PURCHASE THE PRODUCT, THERE WILL BE SOME DELAY ON YOU RECEIVING AN E-MAIL FROM ME WITH THE LINK TO THE DOWNLOAD AREA OF THE PRODUCT. YOU WILL GET A RESPONSE FROM ME WITHIN 24-48 HOURS.

Open Systems Interconnect (OSI) Model

Layer 7 – Application

• Responsible for all application-to-application communications
• User information maintained at this layer is user data
• Security: Confidentiality, Authentication, Data Integrity, Non-repudiation
• Technology: Gateways
• Protocols: FTP, SMB, Telnet, TFTP, SMTP, HTTP, NNTP, CDP, GOPHER, SNMP, NDS, AFP, SAP, NCP, SET

Layer 6 – Presentation

• Responsible for the formatting of the data so that it is suitable for presentation
• Responsible for character conversion (ASCII/EBCDIC)
• Encryption/Decryption, Compressions and Virtual Terminal Emulation
• User information maintained at this layer is called messages
• Security: Confidentiality, Authentication, Encryption
• Technology: Gateway
• Protocols: ASCII, EBCDIC, Postscript, JPEG, MPEG, GIF

Layer 5 – Session

• Responsible for the setup of the links, maintaining of the link and the link tear-down between applications
• Security: None
• Technology: Gateway
• Protocols: Remote Procedure Calls (RPC), SQL, RADIUS, DNS, ASP

Layer 4 – Transport

• Responsible for the guaranteed delivery of user information
• Also responsible for error detection, correction and flow control
• User information at this layer is called datagram
• Security: Confidentiality, Authentication, Integrity
• Technology: Gateway
• Protocols: TCP, UDP, SSL, SSH-2, SPX, NetBIOS, ATP

Layer 3 – Network

• Responsible for the routing of user data from one node to another through the network including the path selection
• Logical addresses are used at this layer
• User information maintained at this layer is called packets
• Security: Confidentiality, Authentication, Data Integrity
• Technology: Virtual Circuits (ATM), routers
• Protocols: IP, IPX, ICMP, OSPF, IGRP, EIGRP, RIP, BOOTP, DHCP, ISIS, ZIP, DDP, X.25

Layer 2 – Data Link

• Responsible for the physical addressing of the network via MAC addresses
• There are two sublevels: MAC & LLC
• Has error detection, frame ordering and flow control
• User information maintained at this layer is called frames
• Security: Confidentiality
• Technology: Bridges, switches
• Protocols: L2F, PPTP, L2TP, PPP, SLIP, ARP, RARP, SLARP, IARP, SNAP, BAP, CHAP, LCP, LZS, MLP, Frame Relay, Annex A, Annex D, HDLC, BPDU, LAPD, ISL, ,MAC, Ethernet, Token Ring, FDDI

Layer 1 – Physical

• Responsible for the physical transmission of the binary digits through the physical medium
• Includes things such as the physical cables, interfaces and data rate specifications
• User information maintained at this layer is called bits
• Security: Confidentiality
• Technology: ISDN, Hubs, Repeaters, Cables

• Slow transfer of data to back-up
  • Retrieval time to restore
  • Off-hour processing and monitoring
• Server disk space expands over time
• Loss of data between last back-up
• Physical security of tapes

Planning to take the CISSP Exam? Get a copy of my personal notes (300plus pages worth) that I used to pass the exam for only $25.00. Click the Add To Cart Button to Purchase Plus you will also get copies of notes from other CISSPs. Learn more about this package by visiting this blog entry: CISSP REVIEW NOTES I USED TO PASS THE EXAM. CLICK BELOW TO MAKE YOUR PURCHASE NOW. All Purchases are securely processed through Paypal. Once you click the button please check your shopping cart at the upper right hand side of the page to complete your order. IMPORTANT NOTICE: I MANUALLY REVIEW ALL ORDERS. SO ONCE YOU PURCHASE THE PRODUCT, THERE WILL BE SOME DELAY ON YOU RECEIVING AN E-MAIL FROM ME WITH THE LINK TO THE DOWNLOAD AREA OF THE PRODUCT. YOU WILL GET A RESPONSE FROM ME WITHIN 24-48 HOURS.

Single Points of Failure

• Cabling failures
  • Coaxial – many workstations or servers attached to the same segment of cable, which creates a single point of failure if it is broken
  • Exceeding cable length is a source failure
• Twisted Pair
  • CAT3 or CAT5 – difference the two has to do with the tightness of the copper wires that were wound
  • Tightness determines its resistance to interference
  • CAT3 is older and cable length is a common failure
• Fiber Optic
  • Immune to EMI
  • Longer usable length – up to 2kms
  • Expensive

Technology Failures

Ethernet

• Most popular
• Extremely resistant to failure, especially in a star-wired configuration

Token Ring

• Since token is passed by every station on the ring, NIC set at wrong speed or in error state can bring the network down

FDDI – Fiber Distributed Data Interface

• Dual rings fault tolerance (if first ring fails, the secondary ring takes over)
• Sometimes uses second ring for improved performance

Leased Lines

• T1 and ISDN – go with multiple vendors to reduce failures

Frame Relay

• Public switched WAN
• Highly fault tolerant
• Bad segments diverts packets
• Can use multiple vendors for high availability

Other Single Points of Failure

• Can be any device where all traffic goes through a single device – Router, firewall, hub or switch
• Power failure – surges, spikes (need for UPS)

CIRT (Computer Incident Response Team) is also commonly called CERT (Computer Emergency Response Team) – they are personnel responsible for coordinating the response to computer security incidents in an organization (Source: www.net.ttu.edu/security/policy_definitions.doc)

Responsibilities include:

• Manage the company’s response to events that pose a risk
• Coordinating information
• Mitigating risk, minimize interruptions
• Assembling technical response teams
• Management of logs
• Management of resolution

Planning to take the CISSP Exam? Get a copy of my personal notes (300plus pages worth) that I used to pass the exam for only $25.00. Click the Add To Cart Button to Purchase Plus you will also get copies of notes from other CISSPs. Learn more about this package by visiting this blog entry: CISSP REVIEW NOTES I USED TO PASS THE EXAM. CLICK BELOW TO MAKE YOUR PURCHASE NOW. All Purchases are securely processed through Paypal. Once you click the button please check your shopping cart at the upper right hand side of the page to complete your order. IMPORTANT NOTICE: I MANUALLY REVIEW ALL ORDERS. SO ONCE YOU PURCHASE THE PRODUCT, THERE WILL BE SOME DELAY ON YOU RECIEVING AN E-MAIL FROM ME WITH THE LINK TO THE DOWNLOAD AREA OF THE PRODUCT. YOU WILL GET A RESPONSE FROM ME WITHIN 24-48 HOURS.