Professional Documents
Culture Documents
Câu 7 12
Câu 7 12
a) im yu cng ngh:
-im yu trong TCP/IP:
+ Chn bt v phn tch gi tin:
Bit c a ch IP ngun v ch trong phin kt ni
Bit c giao thc, dch v
Bit c c ni dung
+ Li dng qu trnh bt tay 3 bc TCP
+ gi mo a ch ngun
- im yu trong my tnh v h iu hnh:
+Khng kha mn hnh khi khng s dng
+Khng t mt khu cho ti khon ngi dng
+Khng cp nht bn v cho h iu hnh v cc phn mm ng dng
- im yu trong thit b mng:
+ ti khon thit lp sn trong cc thit b mng: router, firewall
+ default password list
+ Cp nht phin bn mi cho HH
b) im yu trong chnh sch:
Chnh sch ATTT c lp ra m bo an ton cho h thng mng, song n
cng c nhng im yu, l hng:
-Khng c cc vn bn chnh sch ATTT
-Thiu k hoch gim st an ninh
-Thiu k hoch khi phc sau s c
-Khng c chnh sch cho phn mm, phn cng khi c s thay i b sung.
-Chnh sch vi con ngi.
c) Cu hnh yu:
-Danh sch kim sot truy cp khng cht ch
+quyn truy cp ti nguyn chia s
+Quyn truy cp vo my trm, my ch
+Quyn truy cp ti mng wifi
-s dng mt khu khng an ton
+Khng t mt khu
+t mt khu yu
-M cng dch v khng cn thit
-Cc dch v truy cp t xa khng m bo an ton mng
Cu 2: Trnh by cc him ha an ton thng tin.
a) Him ha c cu trc:
- Him ha do cc i tng c t chc v c trnh k thut cao thc
hin.
- Mc ch:
+V li: D qut thng tin, n cp thng tin, ti khon.
+Chnh tr: nghe trm in thoi ca th tng c, wikileak tung thng tin
ca chnh ph M.
+So ti nng
+Kinh doanh: l hng heartbleed trong OpenSSL
b) Him ha khng c cu trc:
- Lin quan n tn cng c tnh cht t pht:
+ C nhn t m th nghim
+ L hng phn mm tim n
+ S v ca ngi dng: Khng t mt khu, mt khu d on, my
tnh khng ci chng trnh anti-virus, khng bo mt d liu quan trng.
- Him ha do mi trng to ra:
+ Thin tai: ng t, chy, n, mt in
c) Him ha t bn trong:
- Him ha c to ra t nhng c nhn bn trong mng ni b: Nghe
trm thng tin, s dng USB ty tin, leo thang c quyn, ti nguyn
chia s khng c phn quyn thch hp, xm nhp my trm, my ch
t ngi dng bn trong
- Him ha t m c: Virus, Trojan, Backdoor
d) Him ha t bn ngoi:
- Ngun him ha xut pht t Internet vo mng bn trong: tn cng d
qut, tn cng ng dng, tn cng t chi dch v
- Him ha t m c:mail, website, software
- Him ha t mng x hi: facebook, phishing
Trn mng my tnh, thng tin bao gm nhiu loi khc nhau nh vn bn,
hnh nh, m thanh. Chng c lu gi trong cc thit b nh a, bng t...
hoc c truyn qua knh cng khai. Nhng thng tin c gi tr lun lun chu
nhng mi e da ca nhng ngi khng c quyn bit ni dung thng tin. H
c th l nhng ngi bt hp php hoc nhng ngi trong ni b ca c quan, t
chc c thng tin cn bo v.Hnh di minh ha lung thng tin c truyn t
ni gi (ngun thng tin) n ni nhn (ch thng tin). Trn ng truyn cng
khai thng tin b tn cng bi nhng ngi khng c u quyn nhn tin, ta gi l
k tn cng.
Cc tn cng i vi thng tin trn mng bao gm :
Ngn chn thng tin (Interruption): Ti nguyn thng tin b ph hu, khng sn
sng phc v hoc khng s dng c. y l hnh thc tn cng lm mt kh nng
sn sng phc v ca thng tin.Nhng v d v kiu tn cng ny l ph hu a cng,
ct t ng truyn tin, v hiu ho h thng qun l tp.
Chn bt thng tin (Interception):K tn cng c th truy nhp ti ti nguyn
thng tin. y l hnh thc tn cng vo tnh b mt ca thng tin.Trong mt s
tnh hung k tn cng c thay th bi mt chng trnh hoc mt my
tnh.Vic chn bt thng tin c th l nghe trm thu tin trn mng v sao chp
bt hp php cc tp hoc cc chng trnh.
Sa i thng tin (Modification): K tn cng truy nhp, chnh sa thng tin
trn mng. y l hnh thc tn cng ln tnh ton vn ca thng tin. N c th
thay i gi tr trong tp d liu, sa i mt chng trnh n vn hnh khc i
v sa i ni dung cc thng bo truyn trn mng.
Chn thng tin gi (Fabrication): K tn cng chn cc thng tin v d liu
gi vo h thng. y l hnh thc tn cng ln tnh xc thc ca thng tin. N c
th l vic chn cc thng bo gi mo vo mng hay thm cc bn ghi vo tp.
Cu 5: Bo mt theo chiu su l g.
- H thng phi c bo v theo chiu su, phn thnh nhiu tng v tch
thnh nhiu lp khc nhau. Mi tng v lp s c thc hin cc
chnh sch bo mt hay ngn chn khc nhau. Mt khc cng l phng
nga khi mt tng hay mt lp no b xm nhp th xm nhp tri
php ch b hp trong tng hoc lp thi v khng th nh hng
sang cc tng hay lp khc. Bi v khng c gii php an ton tuyt i
nn phi ng thi s dng nhiu bin php bo v cc lp tng ng.
+ Lp vt l ngoi cng bo v xm nhp trc tip ti h thng mng,
+ Lp firewall bo v cc hnh thc xm nhp tri php ti ti nguyn bn
trong.
+ Lp xc thc+ phn quyn: ngn chn tip cn ti nguyn tri php
+ Lp m ha: bo v d liu ch c s dng bi ngi dng hp l.
- Chnh sch bo mt:
+ Tp cc quy c nh ngha cc trng thi an ton ca h thng.
P: tp tt c cc trng thi ca h thng
Q: Tp hp cc trng thi an ton theo nh ngha ca security policy
R: Tp hp cc trng thi ca h thng sau khi p dng cc c ch bo
mt
c a vo s dng nm 1999
c a vo s dng nm 1999
3, IEEE 802.11g:
c a vo s dng nm 2003.
15m: 54Mbps
45m: 11Mbps
4, IEEE 802.11n:
c a vo s dng nm 2009.
Tc 300Mbps
S dng nm 2013
- Nghe tr m (Eavesdropping)
b) Active Attack: Ngi dng truy c p tri php ti mng WLAN v lm thay
i ti nguyn ho c ngn ch n cc dch v.
- Tn cng ch ng c s dng truy cp vo server v ly c
nhng d liu c gi tr hay s dng ng kt ni Internet ca doanh
nghip thc hin nhng mc ch ph hoi hay thm ch l thay i
cu hnh ca h tng mng.
+ V d: Mt hacker c th sa i thm MAC address ca hacker
vo danh sch cho php ca MAC filter trn AP hay v hiu ha tnh
nng MAC filter gip cho vic t nhp sau ny d dng hn.
+ Tn cng chn p (Jamming):
Jamming l mt k thut c s dng ch n gin lm
hng (shut down) mng khng dy.
Khi mt hacker ch ng tn cng jamming, hacker c th s
dng mt thit b WLAN c bit, thit b ny l b pht tn
hiu RF cng sut cao hay sweep generator.
loi b kiu tn cng ny th yu cu u tin l phi xc nh
c ngun tn hiu RF. Vic ny c th lm bng cch s dng mt
Spectrum Analyzer (my phn tch ph)
+ Tn cng bng cch thu ht (Man in the Middle)
Tn cng theo kiu Man-in-the-middle l trng hp
trong hacker s dng mt AP nh cp cc node di
ng bng cch gi tn hiu RF mnh hn AP hp php
n cc node .
Cc node di ng nhn thy c AP pht tn hiu RF tt
hn nn s kt ni n AP gi mo ny, truyn d liu c
th l nhng d liu nhy cm n AP gi mo v hacker
c ton quyn x l
Hacker mun tn cng theo kiu Man-in-the-middle ny
trc tin phi bit c gi tr SSID m cc client ang
s dng (gi tr ny rt d dng c c). Sau , hacker
phi bit c gi tr WEP key nu mng c s dng
WEP
- Bng cch kt ni vi mng khng dy thng qua AP, hacker c th
xm nhp su hn vo mng hoc c th thay i cu hnh ca mng.
Qun l kha: Vic chia s kha c thc hin th cng m khng c bin php
m bo an ton; cc kha phi c thay i nh k thng xuyn; Kha pho
c tit l cho nhng ngi dung khch.
- Tnh cht
- Tnh cht:
4.IPSEC:
.
Cu 13. Phn tch mt s l hng nghim trng trong giao thc SSL v
OpenSSL