Scribd Logo
Upload

Welcome to Scribd!

  • Dr. Ashok Kumar Das (IIIT-H) System and Network Security Overview

    Uploaded by

    HarishKumar
    28 views21 pages
    This document contains information about Dr. Ashok Kumar Das and his work in system and network security. It discusses layered network architectures and the OSI reference model. It describes the functions of each layer, including the physical, data link, network, transport, session, presentation, and application layers. It also covers topics like protocol hierarchies, encrypting communication channels, and the classical "Alice and Bob" encryption problem.

    Original Description:

    Original Title

    1.2-ComputerNetworks_Priliminaries.pdf

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    This document contains information about Dr. Ashok Kumar Das and his work in system and network security. It discusses layered network architectures and the OSI reference model. It describes the functions of each layer, including the physical, data link, network, transport, session, presentation, and application layers. It also covers topics like protocol hierarchies, encrypting communication channels, and the classical "Alice and Bob" encryption problem.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    28 views21 pages

    Dr. Ashok Kumar Das (IIIT-H) System and Network Security Overview

    Uploaded by

    HarishKumar
    This document contains information about Dr. Ashok Kumar Das and his work in system and network security. It discusses layered network architectures and the OSI reference model. It describes the functions of each layer, including the physical, data link, network, transport, session, presentation, and application layers. It also covers topics like protocol hierarchies, encrypting communication channels, and the classical "Alice and Bob" encryption problem.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 21

    System and Network Security

    Dr. Ashok Kumar Das

    Center for Security, Theory and Algorithmic Research


    International Institute of Information Technology, Hyderabad
    E-mail: ashok.das@iiit.ac.in
    URL: http://www.iiit.ac.in/people/faculty/ashokkdas
    Personal Home Page: http://sites.google.com/site/iitkgpakdas/

    Dr. Ashok Kumar Das (IIIT-H) System and Network Security 1 / 21


    Protocol Hierarchies

    To reduce design complexity, most networks are organized as a


    stack of “layers” or “levels”, each one is built upon the one below it.
    The number of layers, the name of the layer, the contents of each
    layer, and the function of each layer differ from network to network.
    In a sense, each layer is a kind of virtual machine, offering certain
    services to the layer above it.

    Dr. Ashok Kumar Das (IIIT-H) System and Network Security 2 / 21


    Why layering is needed?

    To provide well-defined interfaces between adjacent layers.


    I A change in one layer does not affect the other layer.
    I Interface must remain the same. [Interface defines which primitive
    operations and services the lower layer makes available to the
    upper layer.]
    Allows a structured development of network software.

    Dr. Ashok Kumar Das (IIIT-H) System and Network Security 3 / 21


    Protocol Hierarchies

    A set of layers and protocols is called a “network architecture”.


    A list of protocols used by a certain system, one protocol per layer,
    is called a “protocol stack”.

    Dr. Ashok Kumar Das (IIIT-H) System and Network Security 4 / 21


    Layered Network Architecture
    Host−1 Host−2

    Layer−n Protocol
    Layer−n
    Layer−n

    Layer n/n−1 interface

    Layer−(n−1) Layer−(n−1)

    Layer−2 Layer−2

    Layer 2/1 interface

    Layer−1 Layer−1

    Physical Medium

    Dr. Ashok Kumar Das (IIIT-H) System and Network Security 5 / 21


    A simple client-server interaction on a
    connection-oriented network

    Client machine Server machine


    (1) Connect Request
    Client Process Server
    (2) ACK Process

    (3) Request for Data

    (4) Reply System


    System calls
    calls (5) Disconnect
    (6) Disconnect

    Kernel Protocol Drivers Kernel Protocol


    stack
    Drivers
    stack
    Operating system

    Dr. Ashok Kumar Das (IIIT-H) System and Network Security 6 / 21


    The OSI Reference Model

    In 1978, International Standards Organization (OSI) proposed a


    7-layer reference model for network services and protocols,
    known as the OSI model.
    The main objective of the OSI model as
    (1) Systematic approach to design.
    (2) Changes in one layer should not require changes in other
    layers.

    Dr. Ashok Kumar Das (IIIT-H) System and Network Security 7 / 21


    The OSI Reference Model

    L7 Application

    L6 Presentation

    Session host−to−host
    L5
    communication

    L4 Transport

    L3 Network

    point−to−point
    L2 Datalink
    communication

    L1 Physical

    Dr. Ashok Kumar Das (IIIT-H) System and Network Security 8 / 21


    Layer functions

    Physical Layer:
    Transmits raw bit stream over a physical medium.
    The design issues have to do making sure that when one side
    sends a 1 bit, it is received by the other side as a 1 bit, not a 0 bit.
    The design issues largely deal with mechanical, electrical, and
    timing interfaces, and the physical transmission medium, which
    lies below the physical layer.
    Network components: Repeater, Multiplexer, Hubs, Amplifier.

    Dr. Ashok Kumar Das (IIIT-H) System and Network Security 9 / 21


    Layer functions

    Datalink Layer:
    Reliable transfer of frames (data) over a point-to-point link.
    Responsible for flow control, error control (error
    detection/correction), congestion control.
    Network components: Bridge, Switch, NIC, Advanced Cable
    Tester.

    Dr. Ashok Kumar Das (IIIT-H) System and Network Security 10 / 21


    Layer functions

    Network Layer:
    Establishing, maintaining and terminating connections.
    Routes packets (messages) through point-to-point link.
    Network components: Router, Frame Relay Device, ATM Switch.

    Dr. Ashok Kumar Das (IIIT-H) System and Network Security 11 / 21


    Layer functions

    Transport Layer:
    End-to-end reliable data transfer, with error recovery and flow
    control.
    Network components: Gateway.

    Dr. Ashok Kumar Das (IIIT-H) System and Network Security 12 / 21


    Layer functions

    Session Layer:
    Allows users on different machines (hosts) to establish sessions
    between them.
    Session offer various services, including
    I Dialog Control: Keeping track of whose turn it is to transmit.
    I Token Management: Preventing two parties from attempting the
    same critical operation at the same time.
    I Synchronization: Checkpointing long transmissions to allow them to
    continue from where they were after a crash.
    Network components: Gateway.

    Dr. Ashok Kumar Das (IIIT-H) System and Network Security 13 / 21


    Layer functions

    Presentation Layer:
    Translates data from application to network format, and vice-versa.
    All different formats from all sources are made into a common
    uniform format that the rest of the OSI model can understand.
    Network components: Gateway.

    Dr. Ashok Kumar Das (IIIT-H) System and Network Security 14 / 21


    Layer functions

    Application Layer:
    Interface point for user applications.
    Network components: Gateway.

    Dr. Ashok Kumar Das (IIIT-H) System and Network Security 15 / 21


    Layer functions

    Data handled in a particular layer:

    DATA

    DATA−1 Header DATA−2 Header DATA−n Header

    PACKET−1 PACKET−2 PACKET−n

    Dr. Ashok Kumar Das (IIIT-H) System and Network Security 16 / 21


    Chapter: Encrypting Communications Chennels

    This is a classical Alice (user A) and Bob (user B) problem: “Alice


    wants to send Bob a secure message”.
    Question: What does she do ?
    Answer: She encrypts the message.

    Dr. Ashok Kumar Das (IIIT-H) System and Network Security 17 / 21


    Chapter: Encrypting Communications Chennels
    The classical Alice (user A) and Bob (user B) problem:

    ALICE BOB

    UNSECURED
    P CHANNEL P

    ADVERSARY (ATTACKER)

    Dr. Ashok Kumar Das (IIIT-H) System and Network Security 18 / 21


    Chapter: Encrypting Communications Chennels

    In theory, the encryption can take place at any layer in the OSI
    communication model.
    In practice, it takes place either at the lowest layers (one and two)
    or at higher layers.
    If it takes place at the lowest layers, it is called “link-by-link
    encryption” (LLE).
    In LLE, everything going through a particular data link is
    encrypted.

    Dr. Ashok Kumar Das (IIIT-H) System and Network Security 19 / 21


    Chapter: Encrypting Communications Chennels

    If the encryption takes place at the higher layers, it is called


    “end-to-end encryption” (EEE).
    In EEE, the data are encrypted selectively and stay encrypted
    until they are decrypted by the intended final recipient.
    Each approach has its own benifits and drawbacks.

    Dr. Ashok Kumar Das (IIIT-H) System and Network Security 20 / 21


    Thank You!!!

    Dr. Ashok Kumar Das (IIIT-H) System and Network Security 21 / 21

    You might also like