Professional Documents
Culture Documents
MC LC
MC LC.....................................................................................................i
DANH MC CC HNH V.....................................................................iv
DANH MC CC BNG..........................................................................iv
M U......................................................................................................v
M U......................................................................................................v
CHNG I. TNG QUAN V AN TON THNG TIN.........................1
1.1. M u v an ton thng tin..............................................................1
1.2. Nguy c v him ha i vi h thng thng tin..............................2
1.3. Phn loi tn cng ph hoi an ton thng tin...................................4
1.3.1. Tn cng vo my ch hoc my trm c lp...........................4
1.3.2. Tn cng bng cch ph mt khu..............................................5
1.3.3. Virus, su mng v trojan horse..................................................6
1.3.4. Tn cng b m (buffer attack).................................................6
1.3.5. Tn cng t chi dch v.............................................................7
1.3.6. Tn cng nh tuyn ngun (source routing attack)....................8
1.3.7. Tn cng gi mo........................................................................9
1.3.8. Tn cng s dng e-mail.............................................................9
1.3.9. Tn cng qut cng...................................................................10
1.3.10. Tn cng khng dy................................................................12
1.4. Vai tr ca h iu hnh trong vic m bo an ton thng tin.......12
1.4. Tnh cn thit ca an ton thng tin.................................................15
1.4.1. Bo v thng tin v ti nguyn..................................................15
1.4.2. Bo m tnh ring t................................................................16
1.4.3. Kch thch lung cng vic........................................................17
1.4.4. Pht hin cc l hng an ton v g ri phn mm...................17
1.4.5. Tn tht v li hay s bt cn ca con ngi.............................18
1.5. Chi ph m bo an ton.............................................................19
CHNG II: CC PHN MM PH HOI..........................................22
2.1. Phn loi cc phn mm ph hoi....................................................22
2.1.1. Virus..........................................................................................22
2.1.2. Su mng...................................................................................25
2.1.3. Con nga t roa (Trojan horse).................................................26
2.1.4. Phn mm gin ip (Spyware)................................................28
2.2. Cc phng php tn cng thng c s dng bi phn mm ph
hoi.........................................................................................................29
2.2.1. Cc phng php thc hin (Excutable methods)....................29
2.2.2. Cc phng php tn cng Boot v Partition sector.................30
2.2.3. Cc phng php tn cng dng Macro...................................31
ii
DANH MC CC HNH V
Hnh 2-1:Ni dung ca tp win.ini trong h iu hnh WinXP.................28
Hnh 2-2: t tnh nng an ton macro trong Microsoft Office 2003........32
Hnh 5-1: Cc loi Antena trong WLAN..................................................131
Hnh 5-2: Antena hng trong mng WLAN...........................................131
Hnh 5.3: Khun dng gi d liu WEP..................................................143
Hnh 5.4: Qu trnh ng gi d liu WEP..............................................143
Hnh 5-5: Ci gi d liu WEP................................................................144
DANH MC CC BNG
Bng 2-1: Nhng xut pht im ca cc phn mm ph hoi..................27
Bng 2-2: Mt s phn mm qut virus.....................................................42
vi
M U
Gio trnh an ton thng tin c xy dng nhm cung cp cho ngi
c nhng kin thc c bn v an ton thng tin, khai thc s dng cc
dch v an ton trong h thng thng tin, s dng cc ng dng ci t trn
cc h iu hnh nhm m bo tnh an ton ca h thng.
Ni dung ca gio trnh bao gm:
Chng 1: Khi nim v an ton h iu hnh
Chng ny s trnh by cc vn : H iu hnh v an ton h iu
hnh, tnh cn thit ca an ton h iu hnh, cc tn cng i vi h iu
hnh, chi ph thit lp an ton cho cc h iu hnh v cc mc ca an
ton h iu hnh.
Chng 2: Cc phn mm ph hoi
Ni dung ca chng ny bao gm: Phn loi cc phn mm ph hoi, cc
kiu tn cng ca cc phn mm ph hoi v phng php bo v h iu
hnh khi cc tn cng ca cc phn mm ph hoi.
Chng 3: An ton bng cch dng mt m
Chng ny trnh by cc vn : cc phng php m ho, cc phng
php xc thc.
Chng 4: An ton IP v web
Chng ny chng ta s xt n c ch an ton IPSec v mt s giao thc
bo mt lp vn chuyn ng dng trn Web.
Chng 5: An ton mng khng dy
Chng ny trnh by cc vn tng quan v an ton mng khng dy,
cc cng ngh sng radio, mng sng bluetooth, chun IEEE 802.11 cng
nh vic phn tch cc tn cng i vi mng khng dy. Mt s bin php
vii
viii
Nguyn tc ng n.
Nguyn tc ph hp vi mc ch.
1
Nguyn tc cn xng.
Nguyn tc an ton.
12
trong giao thc TCP v UDP. V d, dch v DNS chy trn cng 53, FTP
chy trn cng 20.
Port No Purpose
Port
No
Purpose
Multiplexing
53
RJE applications
79
Find
active
application
Transmission discard
80
15
Status of network
93
Device controls
20
FTP data
102
Service
(SAP)
21
FTP commands
103
Standadized
service
23
Telnet applications
104
Standadized
exchange
25
SNMTP
applications
37
Time transactions
access
user
point
e-mail 119
139
NetBIOS applications
Hnh 1-2: Dng tin trnh crond bng lnh kill trong Redhat
linux
H iu hnh NetWare s dng cc module NLM (NetWare Loadable
Module) m rng cc kh nng v dch v ca h iu hnh. m
bo qu trnh qun l an ton tt, cn phi bit c cc module NLM no
c kch hot v cch dng cc module NLM khng cn thit. Qu trnh
dng mt module NLM (v d module REMOTE.NLM c s dng
truy nhp console t xa vo my ch) khng ch l mt cch bo m an
14
16
v API thc hin cc chc nng ny. Ngoi ra, n cn l giao din vi
cc trnh qun l ti nguyn.
- Trnh qun l ti nguyn (Resource Manager): L cc chng trnh qun
l vic s dng b nh v vi x l trung tm.
- Trnh iu khin thit b (Device Driver): L cc chng trnh nhn cc
yu cu t API thng qua nhn h iu hnh ri bin dch chng thnh cc
lnh thao tc vi cc thit b phn cng tng ng nh: bn phm, mn
hnh, a v my in. Ngoi ra, h iu hnh cn c thm cc trnh iu
khin chuyn dng phc v cc chc nng v cc thit b khc nh m
thanh.
Trong cc thnh phn ny, mt dng an ton c bn nht l cu hnh
an ton mt khu BIOS. Tu chn an ton mt khu ny c th khc nhau
tu theo cc nh sn xut phn mm BIOS khc nhau. Di y l mt s
tu chn mt khu thng dng trong BIOS:
- t mt khu qun l vic truy nhp a cng.
- t mt khu truy nhp chng trnh ci t BIOS hoc xem cu hnh
ca BIOS (trong mt s trng hp ngi dng c th truy nhp vo BIOS
xem cc thng tin cu hnh nhng khng th thay i cc cu hnh ).
- t mt khu thay i cu hnh BIOS.
- t mt khu khi ng my.
- Ch cho php my tnh khi ng t a mm v ch sau khi ngi
dng nhp mt khu cho a .
1.4. Tnh cn thit ca an ton thng tin
An ton l rt cn thit v cc h thng my tnh v mng lu gi rt
nhiu thng tin v ti nguyn khc nhau. V d, khi ngi dng s dng
th tn dng mua hng qua internet th phi cn n nh cung cp dch
v internet cung cp mt knh an ton thc hin giao dch v bo m
tt c nhng thng tin cung cp khng b l; phng nhn s ca mt cng
18
21
23
26
M t
Autoexec.bat
Bootloader program
iu hnh.
Inittab_file
Kernel
win.ini
- Excutable methods.
- Boot and partition sector methods.
- Macro methods.
- E-mail methods.
- Software exploitation.
2.2.1. Cc phng php thc hin (Excutable methods)
Virus, su mng hay trojan horse c th thc thi l mt tp cha cc
dng m my c th chy c. Trong cc on m ny, mt s c
bin dch, cn mt s cha c bin dch do chng s dng trnh bin
dch trn my tnh nn nhn. V d, cc tp batch (tp l) v cc tp script
(kch bn) l cc tp cha cc on m hoc cc ch th c chy bi
trnh bin dch ca my tnh. Trnh bin dch s bin dch mt tp cha cc
ch th v thc thi chng, mi dng l mt ch th v qu trnh thc thi s
ln lt tng dng mt. Di y l danh sch cc tp thc thi v phn m
rng tng ng:
- .exe (c s dng trong cc h thng Windows v NetWare).
- .com (c s dng trong cc h thng Windows v NetWare).
- .bat (c s dng trong cc h thng Windows v NetWare).
- .bin (c s dng trong cc h thng Windows, NetWare v Mac OS).
- .btm (c s dng trong cc h thng Windows).
- .cgi (c s dng trong cc h thng Windows, UNIX/Linux, NetWare
v Mac OS).
- .pl (c s dng trong cc h thng UNIX/Linux v Mac OS).
- .cmd (c s dng trong cc h thng Windows v NetWare).
- .msi (c s dng trong cc h thng Windows).
- .msp (c s dng trong cc h thng Windows).
36
Hnh 2-2: t tnh nng an ton macro trong Microsoft Office 2003.
2.2.5. Khai thc li phn mm (Software exploitation)
Virus, su mng v Trojan horse u l nhng i din ca phn mm
ph hoi c th tm ra nhng im yu hay nhng l hng ca cc h iu
hnh v mng. Chng thc hin vic ny bng nhng chng trnh khai
thc li phn mm (software exploitation). Mc ch ca nhng chng
trnh ny l tm ra tt c cc im yu ca cc phn mm v h iu hnh.
Khai thc li phn mm thng nhm vo cc phn mm mi hoc cc
phin bn phn mm mi. Mt phin bn mi ca h iu hnh thng
c cc nh pht trin v kim nh vin kim tra v chy th hng
40
thng, nhng khi trin khai s dng trn thc t ngi ta vn pht hin
nhng yu im m qu trnh kim tra th nghim khng pht hin c.
Khi c mt phin bn mi ca h iu hnh, nhng k tn cng bt u
tm kim li trong cc dch v, ng dng, h thng v cc chc nng
thng c cc im yu nh:
- Cc dch v DNS.
- Cc dch v mi c pht trin hoc mi nng cp.
- Cc dch v v cc ng dng mng.
- Cc dch v v cc ng dng e-mail v truyn thng ip.
- Cc dch v v cc ng dng internet.
- Cc dch v truy nhp t xa.
- Cc h thng c s d liu.
- Kim sot li trn b m.
V d virus Linux.Millen.Worm (trnh by trong phn 2.1.2) s dng
li trn b m v dch v FTP (c 2 u thuc dng c nhiu l hng ph
bin). Virus Code Red v Code Red II cng s dng li trn b m tn
cng vo cc im yu trong cc my ch Web IIS ca Microsoft. Cc nh
sn xut lun tm kim thng tin v cc vn an ton trong cc phn
mm ca h. Nu pht hin c vn , ngay lp tc h to ra cc bn v li
(patch) v cc bn cp nht (update) cung cp cho ngi dng.
2.2.6. Cc phng php tn cng gia vo h tng mng
Tn cng vo li ca Web Server: Hu ht cc h thng thng tin u
a Web Server ln Internet nhm qung b, phc v khch hng hoc
nhn vin xa do khng th b qua hay nh gi thp nguy c ny.
y cng l nguy c ng hng th 2. Cc tin tc li dng nhng im
yu ca Web Server tn cng vo cc Web Site. Mt s im yu in
hnh c th lit k sau y:
41
hin Windows Update. Cch th nht l click vo menu Start, chn All
Programs ri click vo Windows Update. Cch th 2 l click menu Start,
m ca s Help and Support Center v chn tu chn Windows Update
trong ca s .
Windows XP Professional v Windows Server 2003 cung cp giao
din Automatic Updates Setup Wizard, giao din ny c thit k nhc
nh ngi dng ti cc bn cp nht mi v hoc thm ch cn t ng ti
v my ca ngi dng. Cc tu chn trong giao din ny bao gm:
- Bt chc nng cp nht t ng.
- a ra mt thng bo nhc nh ngi dng khi c bn cp nht mi, sau
khi chng c ti v, giao din ny s cung cp tu chn ci t chng
ngay lp tc hoc ch mt khong thi gian sau .
- T ng tm cc bn cp nht mi, v nhc nh ngi dng ti chng v
ngy lp tc hoc mt lc khc.
- T ng ti cc bn cp nht mi v ci t chng theo mt thi gian
biu nh, v d nh vo 10 gi ti th 7 hng tun.
Cc bn Service Pack c thit k v cc l hng v an ton
cng nh cc vn nh hng n s n nh, hiu nng hay hot ng
ca cc chc nng no trong h iu hnh. Cc bn Service Pack c
cng b khng thng xuyn nh cc bn v li t Windows Update,
nhng n bao gm cc gi sa li chnh, cc tnh nng mi ca h iu
hnh v cc phin bn Service Pack trc . Sau khi ci t xong h iu
hnh Windows hay cc phn mm ca Microsoft nh Microsoft Office, ta
nn ti v ci t bn Service Pack mi nht xa xc li v v cc l
hng an ton. Ta c th ti cc phin bn Service Pack mi nht cho cc h
iu hnh v phn mm Microsoft khc nhau t a ch
www.microsoft.com/downloads.
46
- Check for updates: Cho php ta kim tra cc bn cp nht trn web site
ca Red Hat (tu chn ny s b n khi ta cha cu hnh cho cng c cnh
bo).
- Launch up2date: c s dng ti v ci t cc bn cp nht cn
thiu.
- Configuration: c s dng cu hnh qu trnh ti v ci t cc bn
cp nht.
- RHN Web site: M trang trnh duyt mc nh kt ni vi web site ca
hng Red Hat.
- About: Cung cp cc thng tin v phin bn ca cng c cnh bo ang
s dng.
- Exit: Thot khi menu cc tu chn.
Cc bc c bn cu hnh cng c cnh bo ca Red Hat nh sau:
1. Kch phi chut vo biu tng du chm than trn thanh tc v gn
biu tng ng h, kch vo tu chn Configuration.
2. Kch chn Forward trong ca s Red Hat Alert Notification Tool.
3. Ca s tip theo cung cp cc thng tin v iu khon (Terms of Service
Information) v cung cp tu chn loi b biu tng du chm than
khi thanh tc v ca Linux. Ta nn biu tng ny trn thanh tc v
cp nht d dng hn. Kch chn Forward tip tc.
4. Nu ta s dng mt HTTP proxy, hy cu hnh n trong ca s tip theo
bng cch chn chc nng HTTP Proxy v cung cp cc thng tin xc
thc. Kch Forward tip tc.
5. Kch Apply kt thc.
Sau khi cng c cnh bo c cu hnh, kch vo biu tng du
chm than xem cc bn cp nht mi. Nu ta khng bit r c cng
c ny qut c ht cc bn cp nht hay khng, hoc nu ta mun
48
49
M t
AntiVir Software
Central
AntiVirus
Command
n l; l phn mm thng mi
cho cc h thng Unix/Linux v
Windows
F-Secure Anti-Virus
HandyBits VirusScan
McAfee VirusScan
Sophos Anti-Virus
Vcatch Basic
54
55
59
mi cng c u cung cp nhng tnh nng thun tin cho vic truy nhp
mng. Do s lu chuyn ca cc gi tin u c chp nhn, xem xt, dch
v chuyn li nn tng la loi ny b hn ch v tc . Qu trnh
chuyn tip IP din ra khi mt server nhn c tn hiu t bn ngoi yu
cu chuyn tip thng tin theo nh dng IP vo mng ni b. Vic cho
php chuyn tip IP l li khng trnh khi, khi , cracker (k b kho)
c th thm nhp vo trm lm vic trn mng ca bn.
Hn ch khc ca m hnh tng la ny l mi ng dng bo mt
(proxy application) phi c to ra cho tng dch v mng. Nh vy mt
ng dng dng cho Telnet, ng dng khc dng cho HTTP, v.v..
Do khng thng qua qu trnh chuyn dch IP nn gi tin IP t a ch
khng xc nh s khng th ti my tnh trong mng ca bn, do h
thng ca khu ng dng c bo mt cao hn.
Mc tiu ca tng la
Mt trong nhng mc tiu chnh ca tng la l che chn cho mng
ca bn khi "tm nhn" ca nhng ngi dng bn ngoi khng c
php kt ni, hay ch t cng khng cho php h "nhm" ti mng. Qu
trnh ny thc thi cc ch tiu lc b do ngi qun tr n nh.
Trn l thuyt, tng la l phng php bo mt an ton nht khi
mng ca bn c kt ni Internet. Tuy nhin, vn tn ti cc vn xung
quanh mi trng bo mt ny. Nu tng la c cu hnh qu cht ch,
tin trnh lm vic ca mng s b nh hng, c bit trong mi trng
ngi dng ph thuc hon ton vo ng dng phn tn. Do tng la
thc thi tng chnh sch bo mt cht ch nn n c th b sa ly. Tm li,
c ch bo mt cng cht ch bao nhiu, th tnh nng cng b hn ch by
nhiu.
Mt vn khc ca tng la tng t nh vic xp trng vo r.
Do l ro chn chng kt ni bt hp php nn mt khe h cng c th d
dng ph hu mng ca bn. Tng la duy tr mi trng bo mt, trong
61
62
- Tng la lc gi tin
a ch IP ngun.
a ch IP ch.
Loi giao thc s dng trn tng giao vn (TCP, UDP, ICMP).
Cng ngun tng giao vn.
Cng ch tng giao vn.
68
- Tng la mc ng dng
Tng la mc ng dng l cng ngh tng la th h th 3, n
kim tra tnh ng n d liu thuc tng ng dng trong cc gi tin trc
khi cho php kt ni. Tng la ny xem xt d liu trong tt c cc gi
tin thuc tng ng dng v lu tr ton b trng thi v cc thng tin v
th t. Ngoi ra, n cn kim tra tnh hp l ca cc thng s bo mt
khc ch c tng ng dng nh l mt khu ngi dng v cc yu cu
dch v.
Hu ht cc tng la mc ng dng bao gm c phn mm ng
dng c chuyn bit ho (specialized application software) v cc dch
v u nhim (proxy services). Dch v u nhim l cc chng trnh
chuyn dng (special-purpose program) dng qun l lu lng thng
tin i qua tng la i vi tng dch v c th nh HTTP hay FTP. Cc
dch v u nhim cn phi c xc nh c th i vi mi loi giao thc,
ng thi chng h tr cho vic kim sot truy cp tng cng, kim tra
k lng, chi tit tnh hp l ca d liu v lu tr thng tin kim tra
lung d liu m chng truyn i.
Mi u nhim ng dng yu cu phi c 2 thnh phn hot ng
trong mt th thng nht: mt server u nhim (proxy server) v mt client
70
- Tng la lc gi tin ng
Tng la lc gi tin ng l cng ngh tng la th h th t. N
rt hu ch i vi giao thc UDP. Giao thc ny thng c s dng i
vi cc yu cu thng tin c gii hn v cc truy vn trn tng ng dng.
Tng la ny hot ng bng cch gn tt c cc gi tin UDP i qua
vnh ai bo mt (security perimeter) vi mt kt ni o. Nu mt gi tin
phn hi c gi tr li ni yu cu, th mt kt ni o s c thit lp
v gi tin c server tng la chp nhn. Thng tin gn vi kt ni o s
c ghi nh trong mt khong thi gian ngn, v nu nh khng nhn
c gi tin phn hi no trong khong thi gian ny th kt ni o s tr
nn khng hp l.
Tng la lc gi tin ng cng c nhng u v nhc im ging
vi tng la th h th nht, ngoi tr vic n khng cho php cc gi tin
UDP ngoi mun (unsolicited UDP packets) i vo mng. Ch cn c
mt gi tin yu cu UDP c sinh ra bn trong mng v c gi n
mt host khng tin cy no bn ngoi server tng la s cho php tt
c cc gi tin c v nh l cc gi tin phn hi c truyn n ni gi
yu cu. Gi tin phn hi c php i qua phi cha mt a ch ch ph
hp vi a ch ngun yu cu, mt cng ch trn tng giao vn ph hp
vi cng ngu yu cu v phi cng mt loi giao thc tng giao vn
Chc nng ny rt hu ch i vi nhng giao thc trn tng ng
dng chng hn nh Domain Name System (DNS) chng c th hot
ng m khng b vnh ai an ton ca bn cn tr. Mt server DNS phi
74
75
76
CU HI V BI TP THC HNH
Cu 1: Hy trnh by nh ngha v phn loi cc phn mm ph hoi?
Cu 2: Hy trnh by cc phng php tn cng thng c s dng bi
cc phn mm ph hoi?
Cu 3: Hy nu cc gii php phng chng cc phn mm ph hoi?
Cu 4: Thc hnh qut v dit cc phn mm ph hoi s dng b phn
mm Synmantec Antivirus.
Cu 5: Thc hnh to cc a khi ng v a khi phc khn cp cho cc
h iu hnh Windows 2003 server v linux.
77
78
79
80
3.1.1.2. Cc yu cu.
Mt m i xng c cc c trng l cch x l thng tin ca thut
ton m, gii m, tc ng ca kha vo bn m, di ca kha. Mi lin
h gia bn r, kha v bn m cng phc tp cng tt, nu tc tnh
ton l chp nhn c. C th hai yu cu s dng an ton m kho
i xng l
1. Thut ton m ho mnh. C c s ton hc vng chc m bo
rng mc d cng khai thut ton, mi ngi u bit, nhng vic thm m
l rt kh khn v phc tp nu khng bit kha.
2. Kho mt ch c ngi gi v ngi nhn bit. C knh an ton
phn phi kho gia cc ngi s dng chia s kha. Mi lin h gia
kha v bn m l khng nhn bit c.
3.1.1.3. Mt m
H mt m c c trng bi cc yu t sau
- Kiu ca thao tc m ho c s dng trn bn r:
1. Php th - thay th cc k t trn bn r bng cc k t khc
2. Hon v - thay i v tr cc k t trong bn r, tc l
hin hon v
thc
cc k t ca bn r.
3. Tch ca chng, tc l kt hp c hai kiu thay th v hon v cc
k t
ca bn r.
- S kho c s dng khi m ha: mt kho duy nht - kho ring hoc
hai kho - kho cng khai. Ngoi ra cn xem xt s kha c dng c
nhiu khng.
- Mt c trng ca m na l cch m bn r c x l, theo:
81
V d:
Meet me after the toga party
PHHW PH DIWHU WKH WRJD SDUWB
abcdefghijklmnopqrstuvwxyz
D E F G H I J K LM N O PQ R S TU VW X YZAB C
V ton hc, nu ta gn s th t cho mi ch trong bng ch ci.
Cc ch dng trn c s th t tng ng l s dng di:
abcdefghijk l m
0 1 2 3 4 5 6 7 8 9 10 11 12
n o p q r s t u v w x y z
13 14 15 16 17 18 19 20 21 22 23 24 25
th m Ceasar c nh ngha qua php tnh tin cc ch nh sau:
c = E(p) = (p + k) mod (26)
p = D(c) = (c k) mod (26)
y, p l s th t ca ch trong bn r v c l s th t ca ch
tng ng ca bn m; k l kho ca m Ceasar. C 26 gi tr khc nhau
ca k, nn c 26 kho khc nhau. Thc t di kho y ch l 1, v
mi ch u tnh tin i mt khong nh nhau.
85
3.2.2. Cc m bng ch n
By gi ta khc phc nhc im ca m Ceasar bng cch m ho
cc ch khng ch l dch chuyn bng ch, m c th to ra cc bc
nhy khc nhau cho cc ch. Trong mt m mi ch ca bn r c nh
x n mt ch khc nhau ca bn m. Do mi cch m nh vy s
tng ng vi mt hon v ca bng ch v hon v chnh l kho ca
m cho. Nh vy di kho y l 26 v s kho c th c l 26!.
S kho nh vy l rt ln.
V d. Ta c bn m tng ng vi bn r trong m bng ch n
nh sau:
Plain: a b c d efg h I j k l mno p q r s t u vwx y z
Cipher: DKVQFIBJWPESCXHTMYAUOLRGZN
Plaintext: ifwewishtoreplaceletters
Ciphertext: WIRFRWAJUHYFTSDVFSFUUFYA
- Tnh an ton ca m trn bng ch n. Tng cng c 26! xp x khong
4 x 1026 kho. Vi kh nhiu kho nh vy nhiu ngi ngh l m trn
bng ch n s an ton. Nhng khng phi nh vy. Vn y l do
cc c trng v ngn ng. Tuy c s lng kho ln, nhng do cc c
trng v tn sut xut hin ca cc ch trong bn r v cc ch tng ng
trong bn m l nh nhau, nn k thm m c th on c nh x ca
mt s ch v t m tm ra ch m cho cc ch khc. Ta s xt kha
cnh ny c th trong mc sau.
- Tnh d tha ca ngn ng v thm m. Ngn ng ca loi ngi l d
tha. C mt s ch hoc cc cp ch hoc b ba ch c dng thng
xuyn hn cc b ch cng di khc. Chng hn nh cc b ch sau
y trong ting Anh "th lrd s m shphrd shll nt wnt". Tm li trong nhiu
ngn ng cc ch khng c s dng thng xuyn nh nhau. Trong
ting Anh ch E c s dng nhiu nht; sau n cc ch T, R, N, I,
O, A, S. Mt s ch rt t dng nh: Z, J, K, Q, X. Bng phng php
thng k, ta c th xy dng cc bng cc tn sut cc ch n, cp ch,
b ba ch.
86
- Tnh tn sut cc ch
- on P v Z l e v t.
- Khi ZW l th v ZWP l the.
- Suy lun tip tc ta c bn r:
it was disclosed yesterday that several informal but direct contacts have
been made with political representatives in moscow
3.2.3. M Playfair
Nh chng ta thy khng phi s kho ln trong m bng ch n
m bo an ton m. Mt trong cc hng khc phc l m b cc ch, tc
l mi ch s c m bng mt s ch khc nhau ty thuc vo cc ch
m n ng cnh. Playfair l mt trong cc m nh vy, c sng to bi
Charles Wheastone vo nm 1854 v mang tn ngi bn l Baron
Playfair. y mi ch c th c m bng mt trong 7 ch khc nhau
ty vo ch cp i cng n trong bn r.
Ma trn kho Playfair. Cho trc mt t lm kho, vi iu kin
trong t kho khng c ch ci no b lp. Ta lp ma trn Playfair l ma
trn c 5 x 5 da trn t kho cho v gm cc ch trn bng ch ci,
c sp xp theo th t nh sau:
- Trc ht vit cc ch ca t kho vo cc hng ca ma trn bt t hng
th nht.
- Nu ma trn cn trng, vit cc ch khc trn bng ch ci cha c s
dng vo cc cn li. C th vit theo mt trnh t qui c trc, chng
hn t u bng ch ci cho n cui.
- V c 26 ch ci ting Anh, nn thiu mt . Thng thung ta dn hai
ch no vo mt chung, chng hn I v J.
- Gi s s dng t kho MONARCHY. Lp ma trn kho Playfair tng
ng nh sau:
MONAR
88
CHYBD
EFGIK
LPQST
UVWXZ
89
plaintext: wearediscoveredsaveyourself
ciphertext:ZICVTWQNGRZGVTWAVZHCQYGL
m ch w u tin ta tm ch u ca kha l d, nh vy w s
c m trn bng ch tnh tin 3 (tc l a tnh tin vo d). Do ch u
w c m bi ch Z. Ch th hai trong t kha l e, c ngha l ch th
hai trong bn r s c tnh tin 4 (t a tnh tin n e). Nh vy th hai
trong bn r e s c m bi ch I. Tng t nh vy cho n ht bn r.
Trn thc t h tr m Vigenere, ngi ta to ra trang Saint
Cyr tr gip cho vic m v gii m th cng. l mt bng c 26 x
26 c tn tng ng l cc ch ci trong bng ch ting Anh. Hng th i l
tnh tin i ch ca bng ch ci. Khi ch ct u tin chnh l kho
ca bng ch cng hng. Do ch m ca mt ch trong bn r nm
trn cng ct vi ch v nm trn hng tng ng vi ch kho.
ABCDEFGHIJKLMNOPQRSTUVWXYZ
A ABCDEFGHIJKLMNOPQRSTUVWXYZ
B BCDEFGHIJKLMNOPQRSTUVWXYZA
C CDEFGHIJKLMNOPQRSTUVWXYZAB
D DEFGHIJKLMNOPQRSTUVWXYZABC
E EFGHIJKLMNOPQRSTUVWXYZABCD
F FGHIJKLMNOPQRSTUVWXYZABCDE
G GHIJKLMNOPQRSTUVWXYZABCDEF
H HIJKLMNOPQRSTUVWXYZABCDEFG
I IJKLMNOPQRSTUVWXYZABCDEFGH
J JKLMNOPQRSTUVWXYZABCDEFGHI
K KLMNOPQRSTUVWXYZABCDEFGHIJ
L LMNOPQRSTUVWXYZABCDEFGHIJK
M MNOPQRSTUVWXYZABCDEFGHIJKL
N NOPQRSTUVWXYZABCDEFGHIJKLM
O OPQRSTUVWXYZABCDEFGHIJKLMN
P PQRSTUVWXYZABCDEFGHIJKLMNO
Q QRSTUVWXYZABCDEFGHIJKLMNOP
R RSTUVWXYZABCDEFGHIJKLMNOPQ
S STUVWXYZABCDEFGHIJKLMNOPQR
T TUVWXYZABCDEFGHIJKLMNOPQRS
U UVWXYZABCDEFGHIJKLMNOPQRST
V VWXYZABCDEFGHIJKLMNOPQRSTU
W WXYZABCDEFGHIJKLMNOPQRSTUV
X XYZABCDEFGHIJKLMNOPQRSTUVW
Y YZABCDEFGHIJKLMNOPQRSTUVWX
Z ZABCDEFGHIJKLMNOPQRSTUVWXY
Bng Saint Cyr
91
Ta c theo th t cc ct t 1 n 7 nhn c bn m:
Ciphertext:
TTNAAPTMTSUOAODWCOIXKNLYPETZ
3.3. M khi hin i
By gi chng ta xt cc m khi hin i. y l kiu m c s
dng rng ri nht ca cc thut ton m ho. ng thi n cng c s
dng kt hp vi cc th tc khc nhm cung cp cc dch v an ton v
xc thc.
Trc ht chng ta tp trung vo chun m d liu DES (Data
Encryption Standards) minh ho cho cc nguyn l m khi. Trc ht
chng ta xt hai kiu x l thng tin khc nhau trn bn r. Mt kiu chia
d liu thnh tng khi x l, kiu kia x l trc tip tng n v thng
tin.
3.3.1. Phn bit m khi vi m dng.
- M khi (block) x l bn tin theo tng khi, ln lt mi khi c m
hoc gii m. C th xem ging nh php th vi cc k t ln mi khi
gm 64 bt hoc nhiu hn.
- M dng x l bn tin theo tng bt hoc bite, ln lt mi bt hoc bite
c m ho hoc gii m. Chng hn nh m kho t ng Vigenere.
- Rt nhiu m hin nay l m khi. Chng c kh nng ng dng rng ri
hn. Rt nhiu ng dng m i xng trn mng s dng m khi. Cc
nguyn l m khi
- Hu ht cc m khi i xng da trn cu trc m Fiestel, do nh bac
hc Fiestel xut nm 1973. y l iu cn thit, v cn phi c kh
nng gii m cc bn m mt cch c hiu qu.
93
94
95
o
Trong cng thc sau vi hai u vo khc nhau, v tri l s khc
bit m cng vng th i c biu din qua s khc bit m vng
trc i-1 v s khc bit ca hm f trong ngoc vung.
Khi c th tm c
103
Cc nguyn l m khi
Cc nguyn l c bn ca m khi ging nh Fiestel xut trong nhng
nm 70:
104
th
Trong mi vng c hm cung cp ri lon l phi tuyn, tc ng
ng lot
O
m.
3.4.4. Cc kiu thao tc ca DES
M khi m cc block c kch thc c nh. Chng hn DES m cc
block 64 bt vi kho 56 bt Cn phi c cch p dng vo thc t v cc
thng tin cn m c kch thc ty . Trwosc kia c 4 kiu thao tc c
nh ngha cho DES theo chun ANSI: ANSI X3.106-1983 Modes of Use.
By gi m rng them c 5 cch cho DES v chun m nng cao (AES
Advanced Encryption Standards). Trong c kiu p dng cho khi v
c kiu p dng cho m dng.
1. Sch mt m in t (Electronic Codebook Book - ECB)
O
vy
O
105
u v nhc ca ECB
106
O u v nhc ca CBC
Mi khi m ph thuc vo tt c cc khi bn r
S thay i ca bn tin u s ko theo s thay i ca mi khi
m
Cn gi tr vc t ban u IV c bit trc bi ngi gi v ngi
nhn
- Tuy nhin nu IV c gi cng khai, k tn cng c th thay i
bt u tin v thay i c IV b tr
- Vy IV cn phi c gi tr c nh trc hoc m ho trong ch ECB
v gi trc phn cn li ca mu tin
cui bn tin, kim sot cc block ngn cn li
- C th b sung cc gi tr khng phi d liu nh NULL
- Hoc dng b m cui vi s byte m kch thc ca n.
V d
[ b1 b2 b3 0 0 0 0 5] <- 3 data bytes,
vy c 5 bytes dnh cho m v m.
3. M phn hi ngc (Cipher FeedBack - CFB)
O
B sung vo u ra ca m khi
vy.
Ni chung cho php s bt phn hi l 1, 8, 64, hoc tu : k hiu
tng ng l CFB1, CFB8, CFB64,
O
u ra do l phn hi, do c tn nh vy
C th c tnh trc
Ci = Pi XOR Oi
Oi = DESK1(Oi-1)
O-1 = IV
u im v nhc im ca OFB
c dng khi li phn hi ngc li hoc ni cn m trc khi
mu tin sn sng
O
Rt ging CFB
109
O
O
5. B m CTR (Counter)
O
Ci = Pi XOR Oi
Oi = DESK1(i)
O
u v nhc im ca CTR
Hiu qu
- Do c th m song song
- Chun b trc nu cn
- Tt cho cc kt ni vi tc rt cao
Truy cp ngu nhin n cc khi d liu m
Tnh an ton c th chng minh c
Nhng phi tin tng
kho/m, nu khng c th b.
110
khng
bao
gi
dng
li
Kch thc khi d liu 128 bit v di kho l ty bin: 128, 192
hoc 256 bit.
Chun m mi phi mnh v nhanh hn Triple DES. M mi c c
s ls thuyt
111
mnh thi gian sng ca chun khong 20-30 nm (cng thm thi gian
lu tr).
Khi a ra thnh chun yu cu cung cp chi tit thit k v c t
y . m bo rng chun m mi ci t hiu qu trn c C v Java.
Gi tr v mt tnh ton
An ton tng th
Chng c tn cng v mt ci t
Lp hi khc vi Fiestel
o
Thit k :
o
Mi php ton c thc hin vi XOR v bng tra, nn rt
nhanh v hiu qu.
S Rijndael
113
Php th Byte
o
bit
o
Mi byte trng thi c thay bi byte trn hng xc nh bi 4 bit
tri v ct xc nh bi 4 bit phi.
Chng hn {95} c thay bi hng 9, ct 5, m gi tr s l {2A}.
o
S box c xy dng s dng hon v cc gi tr trong GF(28)
c xc nh trong chng trc.
o
Dch hng
Hng 1 khng i
o
V trng thi c x l bi ct, bc ny thc cht l hon v byte
gia cc ct.
Trn cc ct
Mi ct c x l ring bit.
Trn ct
o
tm ra byte mi trong mi ct
Mi ct l mt a thc bc 3 gm 4 s hng
o
Nghch o cho gii m hon ton xc nh, v khi XOR vi nghch
o ca bn thn n, XOR trng vi o bit ca kho quay vng.
o
Mt vng AES
o
Dng kho 128 bit (16 byte) v m rng thnh mng gm 44/52/60
t 32 bit.
o
o
Sau to quay vng cc t m ph thuc vo gi tr cc v tr
trc v 4 v tr sau
116
Gii m AES
o
Gii m ngc li khng duy nht v cc bc thc hin theo th t
ngc li.
o
Nhng c th xc nh m ngc tng ng vi cc bc lm
i vi m
Cc kha cnh ci t:
u vo.
-
Xc nh li cc bc s dng t 32 bit
Cn 16 Kb lu cc bng
Cc tn cng v mt l thuyt c th b gy n
AES l m mi thay th
o
M khng phi l lp hai ln Double DES: khi lp hai ln khng
hon ton l trng vi 1 ln DES no nhng cng c th.
o
Vn l c th rt gn v mt bc khng.
V X = EK1[P] = DK2[C]
o
trnh tn cng mc trung gian, cn s dng 3 m, vy ni
chung c th dng 3 kho khc nhau.
o
Nhng n gin hn c th s dng 2 kho theo trnh t:ED-E,
tc l m, gii m, ri li m.
C = EK1[DK2[EK1[P]]]
o
Mc d cha c tn cng thc t, nhng Triple DES vi 2 kho c
mt s ch nh trnh ri vo mt s trng hp c bit.
123
3.6.2. Blowfish
M c cc c trng sau:
Dng t b nh.
Lc kho gm
cng P sau S.
M Blowfish
trong
F[a,b,c,d] = ((S1,a + S2,b) XOR S3,c) + S4,a
Bn lun:
o
S dng kho xo trn u thc s.
o
S to trng thi trong ca m.
M RC4
o
M tip tc trn cc gi tr ca mng.
o
Tng ca cc cp trn chn gi tr kho dng t hon v
o
XOR S[t] vi byte tip theo ca bn tin m/gii m
i=j=0
for each message byte Mi
i = (i + 1) (mod 256)
j = (j + S[i]) (mod 256)
swap(S[i], S[j])
t = (S[i] + S[j]) (mod 256)
Ci = Mi XOR S[t]
Tng quan RC4
An ton RC4
o
Kt qu rt phi tuyn
o
C lin quan n WEP, nhng ty thuc qun l kho hn l bn thn
RC4
3.6.5. RC5
RC5 cng l m ng k bn quyn ca RSADSI, c thit k bi
Ronald Rivest v
c s dng trong nhiu sn phm ca RSADSI. RC5 c nhiu c kho
v d liu khc nhau v c bit khng c vng lp. Thit k rt n gin
v r rng. RC5 c ci t d dng trn nhiu CPU v cn c nh
gi l an ton.
Cc m RC5
r l s vng (0..255)
S dng 12 vng
127
M RC5
Tch u vo thnh 2 na A v B
L0 = A + S[0];
R0 = B + S[1];
for i = 1 to r do
Li = ((Li-1 XOR Ri-1) <<< Ri-1) + S[2 x i];
Ri = ((Ri-1 XOR Li) <<< Li) + S[2 x i + 1];
Cc ch m RC5
RFC2040 xc nh 4 ch ca RC5
RC5-CBC
2. Cc c trng m dng.
o
thng k ca mu tin
Ci = Mi XOR StreamKeyi
o
Rt n gin
129
CU HI V BI TP THC HNH
Cu 1: Tm hiu cu trc ca cc tp /etc/passwd v /etc/shadow trong h
iu hnh linux? vai tr ca 2 tp ny trong h iu hnh linux l g?
Cu 2: Thc hnh m ho mt tp d liu bng vic s dng h thng tp
m ho trn h i hnh windows 2003 server?
Cu 3: Nu s lc cc phng php xc thc?
Cu 4: Thc hnh cu hnh chnh sch an ton s dng IPSec trong h iu
hnh windows 2000 server v windows 2003 server cung cp cc giao
dch an ton.
Cu 5:Thc hnh s dng chc nng m ho tp ca openssl trong h iu
hnh linux m ho cc tp d liu.
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
* Tn cng DoS:
DoS l mt dng tn cng vo tnh sn sng phc v ca mng nhm
thc hin nhiu mc ch ca k tn cng. Cc mc ch c th l tn cng
nhm gin on lin lc; h tr cho tn cng ngi n ng gia (manin-the-midle). Ngoi ra k tn cng cn mun ci t cc thit b khng
dy chim knh truyn thng dnh cho nhng ngi dng hp php.
Bng cch ngt t cc thnh phn no ca mng, k tn cng c th
loi b s can thip ca cc thit b hp php v hng ngi dng n
ng dn gi m k tn cng dng ln. Tn cng DoS c m t trong
cy tn cng 2 nh sau:
Attack Tree 2
GOAL: T chi dch v.
AND
Khm ph mng ch (dng cy tn cng 1).
T chi dch v.
OR
T chi dch v n ton mng.
OR
178
Ly kho.
OR
Khi phc kho.
Khi phc mm kho.
Thit lp Acess Point gi v kim sot cc tham
s mng nh cc kho m.
AND
Lm tn thng client.
Xm nhp vo client thng qua mng ad-hoc network nh
vo nhng li cu hnh sai hoc cc l hng cha v.
Ci t phn mm gin ip ln client.
Phn mm gin ip s chuyn d liu n k tn cng
bng mt s phng php no .
183
- 48 Mbps
- 54 Mbps
Chun 802.11a hot ng ti tng vt l trong m hnh tham chiu
cc h thng m, n s dng phng thc OFDM ( orthogonal frequencydivision multiplexing) pht cc tn hiu d liu bng sng v tuyn.
OFDM hot ng bng cch chia di tn 5 Ghz thnh tp hp ca 52 tn
hiu sng mang con hoc 52 knh v truyn tn hiu d liu ng thi qua
52 tn hiu (hoc knh) , ngi ta cn gi y l phng thc truyn
song song. Trong s 52 tn hiu sng mang c chia, 4 dng cho iu
khin truyn, 48 cn li dng cho truyn d liu ca trm.
Chun 802.11b s dng di tn 2.4 Ghz, cc tc truyn gm c:
- 1 Mbps
- 2 Mbps
- 10 Mbps
- 11 Mbps
Chun 801.11b s dng phng thc DSSS ( Direct sequence spread
specrum modulation) pht cc tn hiu mng d liu thng qua sng v
tuyn. Vi DSSS, d liu c th c truyn qua cc knh c di thng l
22 Mhz, s lng cc knh tu thuc vo tng quc gia v c th ln ti
14 knh.
Chun 802.11g l s m rng ca ca chun 802.11b, n cho php
tc truyn c th ln ti 54 Mbps, v cc thit b khng dy s dng
chun 802.11g c th giao tip c vi cc thit b s dng chun
802.11b v 802.11g khc. Chun 802.11g s dng phng thc OFDM v
c th t c cc tc truyn:
- 6 Mbps
- 9 Mbps
189
- 12 Mbps
- 18 Mbps
- 24 Mbps
- 36 Mbps
- 48 Mbps
- 54 Mbps
5.2.4. S dng xc thc hu b kt ni
Mt chc nng ca qu trnh xc thc l hu b kt ni khi phin lin
lc hon thnh. Qu trnh xc thc trong hu b cc kt ni l quan
trng bi v n s ngn chn hai trm truyn thng b hu b kt ni mt
cch v tnh (khng c ) bi mt trm khng xc thc. Hai trm s hu
kt ni khi mt trong cc trm gi mt thng bo deauthentication v
kt qu l qu trnh truyn thng s c kt thc ngay lp tc.
5.3. Mng Boluetooth
Bluetooth l mt cng ngh khng dy c m t bi SIG
(Bluetooth Special Interest Group). Bluetooth l cng ngh c s hp dn
li cun nhiu nh cung cp nh 3Com, Agre, IBM, Intel, Lucent,
Microsoft, motorola,...Bluetooth s dng cc tn s nhy trong di tn
2,4 Ghz ( 2,4 - 2,4835 Ghz) c thit k bi FCC cho vic truyn thng
ISM khng bn quyn. K thut nhy tn s (frequency hopping) l mt
k thut s dng ph tn rng, n xoay quanh vic gi tn hiu qua mt
tn s ngu nhin; ngha l ln u s gi trn mt tn s, ln hai gi trn
tn s khc, ln th ba v vn vn. tn s ny khng tht s l ngu nhin
m c tnh ton mt cch c gii thut bi mt b sinh s ngu nhin.
Bn nhn s dng cng mt gii thut nh bn gi v do c th nhy
qua cc tn s khc nhau ng b vi bn gi nhn chnh xc khung
thng tin. Thun li ca nhy tn s l gim thiu c s xuyn nhiu khi
c nhiu thit b c s dng.
190
199
200
201
204
CU HI V BI TP THC HNH
Cu 1: Nu vai tr ca cc thnh phn c bn ca mng khng dy?
Cu 2: Trnh by cc tn cng i vi mng khng dy?
Cu 3:Thc hnh cu hnh cc tham s an ton cho kt ni khng dy trn
h iu hnh windows 2003 server?
Cu 4: Thc hnh cu hnh cc tham s an ton cho kt ni khng dy trn
h iu hnh linux?
205
206