10-Security-Concepts-Lightning-Talk 2of2

Uploaded by

Raul Coleto

0% found this document useful (0 votes)

2 views8 pages

Original Title

10-security-concepts-lightning-talk 2of2.pptx

Copyright

Available Formats

PPTX, PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Available Formats

Download as PPTX, PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

2 views8 pages

10-Security-Concepts-Lightning-Talk 2of2

Uploaded by

Raul Coleto

Copyright:

Available Formats

Download as PPTX, PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 8

Search inside document

• Refers to the ability of an attacker to move across

the network sideways, from server to server or

from application to application, thus expanding the
attack or moving closer to valuable assets.

5.
Lateral
movement
(east-west)
• Restricting the privileges that users have in access
to systems and data, and limiting the ability of one
privileged user to cause damage either by mistake
or maliciously.

6.
Segregation of
duties
• Unauthorized extraction of data from your systems,
might result in sensitive data being accessed by
unauthorized parties.

7. Data
exfiltration
• Is an attack vector whose purpose it is to deny your
users from getting service from your systems

8. Denial
of service
(DoS)
• Sophisticated attacks that often take many months
to unravel.

9.
Advanced
persistent
threat (APT)
• Encoding is for maintaining data usability and can be reversed
by employing the same algorithm that encoded the content:
ASCII, Unicode, URL Encoding, Base64

10.
• Encryption is for maintaining data confidentiality and
requires the use of a key (kept secret) in order to return to
plaintext: AES, Blowfish, RSA

• Hashing is for validating the integrity of content by detecting

Hashing vs all modification thereof via obvious changes to the hash output:
Encoding vs SHA, MD5, MD4 etc.

Encryption vs • Obfuscation is used to prevent people from understanding

Obfuscation the meaning of something, and is often used with computer
code to help prevent successful reverse engineering and/or theft
of a product’s functionality: JavaScript Obfuscator, ProGuard
Last but
not least!
Thanks
I used next resources as idea and reference (links available in blyx.com):
http://www.infoworld.com/article/3144362/devops/10-key-security-terms-devops-ninjas-need-to-know.html
https://danielmiessler.com/study/encoding-encryption-hashing-obfuscation/#encoding
https://blog.instant2fa.com/how-to-build-a-wall-that-stops-white-walkers-fantastic-threat-models-ef2dfa7864
a4#.
j1zj36pk8

Unit 1
Document59 pages
Unit 1
Chaudhari Pranali Bharat
No ratings yet
VAPT General Questions
Document9 pages
VAPT General Questions
pepal38750
No ratings yet
Domain 4
Document8 pages
Domain 4
Hossam Eissa
No ratings yet
CCNA Sec Slides
Document92 pages
CCNA Sec Slides
yassine rezgui
No ratings yet
Describe The Concepts of Security, Compliance, and Identity: 3/2. Define Defense in Depth
Document68 pages
Describe The Concepts of Security, Compliance, and Identity: 3/2. Define Defense in Depth
Joseph Chen
No ratings yet
Computer Security Ch2
Document11 pages
Computer Security Ch2
Gomlalaw tube
No ratings yet
IOT Papers
Document25 pages
IOT Papers
18-QADEER AHMAD
No ratings yet
Long Password DOS Attack 1702916027
Document9 pages
Long Password DOS Attack 1702916027
rotaractorsuhas
No ratings yet
Web Application Pentest 101
Document121 pages
Web Application Pentest 101
Azlan Yatim
No ratings yet
Cyber Security Essay
Document5 pages
Cyber Security Essay
Billy Baginz
No ratings yet
PU Is Security - 12. Enterprise Cybersecurity Architecture
Document42 pages
PU Is Security - 12. Enterprise Cybersecurity Architecture
alifaldinda
No ratings yet
Information and Computer Security 7
Document14 pages
Information and Computer Security 7
Jehad Mogy
No ratings yet
Describe The Concepts of Security, Compliance, and Identity: 3. Define Defense in Depth
Document68 pages
Describe The Concepts of Security, Compliance, and Identity: 3. Define Defense in Depth
Mirza Mandjuka
No ratings yet
Long Password DOS Attack
Document6 pages
Long Password DOS Attack
setyahangga3
No ratings yet
2) Host Level Threats and Vulnerabilities
Document19 pages
2) Host Level Threats and Vulnerabilities
Bhanu Naik
No ratings yet
Data Security Powerpoint
Document25 pages
Data Security Powerpoint
leanna hoyte
No ratings yet
Unit-6 - Web Application Security
Document32 pages
Unit-6 - Web Application Security
yototi8935
No ratings yet
CCNA Sec 01
Document11 pages
CCNA Sec 01
Aissa Chaabi
No ratings yet
Ethical Hacking Updted
Document15 pages
Ethical Hacking Updted
vamshimatangi
No ratings yet
Mis - Privacy Issues
Document24 pages
Mis - Privacy Issues
Jeffin Jose
0% (1)
IT4409: Web Technologies and E-Services
Document40 pages
IT4409: Web Technologies and E-Services
Binh Pham
No ratings yet
Exam Revision
Document21 pages
Exam Revision
Varun Mohunah
No ratings yet
Seminar Web Application Security
Document30 pages
Seminar Web Application Security
Gauravi
No ratings yet
A8 - Insecure Deserialization: © 2020 Nexusguard Limited - Confidential & Proprietary
Document7 pages
A8 - Insecure Deserialization: © 2020 Nexusguard Limited - Confidential & Proprietary
Cesar Jr Salacata
No ratings yet
Introduction To Ethical Hacking
Document31 pages
Introduction To Ethical Hacking
Anjali Maurya
100% (1)
2 Principles and Concepts Data Security Upload
Document39 pages
2 Principles and Concepts Data Security Upload
Divyesh yadav
No ratings yet
Module 16 - Network Security Fundamentals
Document26 pages
Module 16 - Network Security Fundamentals
Anson Soo
No ratings yet
Chapter 1 - Introduction To Network Security
Document26 pages
Chapter 1 - Introduction To Network Security
Muhammad Nashriq
No ratings yet
Chapter 1-1
Document34 pages
Chapter 1-1
19JJ-1207 Tharun
No ratings yet
Ethical Hacking: By, Jayesh Patel
Document24 pages
Ethical Hacking: By, Jayesh Patel
Jayesh Patel
No ratings yet
Vulnerabilities and Thier Controls-V1
Document4 pages
Vulnerabilities and Thier Controls-V1
B Basit
No ratings yet
Globally Recognized by Developers As The First Step Towards More Secure Coding
Document3 pages
Globally Recognized by Developers As The First Step Towards More Secure Coding
Ricy
No ratings yet
Recommendations: Ransomware Defense and Prevention
Document3 pages
Recommendations: Ransomware Defense and Prevention
Jorge Ch
No ratings yet
Chapter 3 - Risks, Threats and Vulnerabilities
Document34 pages
Chapter 3 - Risks, Threats and Vulnerabilities
Nahøm Abera Ak
No ratings yet
Interview Preparation Part-4
Document17 pages
Interview Preparation Part-4
Abdul Mateen Ukkund
No ratings yet
Secure Coding - PHP v.1.1
Document137 pages
Secure Coding - PHP v.1.1
Bond James
No ratings yet
Acsc 477 Assignment
Document7 pages
Acsc 477 Assignment
elias
No ratings yet
CSE2 Research
Document25 pages
CSE2 Research
DTCHAMENI WOKFA GREGORY ROMUALD
No ratings yet
NSEC-3100.pdf-lecture 1
Document33 pages
NSEC-3100.pdf-lecture 1
Noel Roy Denja
No ratings yet
My Submission
Document2 pages
My Submission
Abdelkebir Labyad
83% (6)
Securityindistributedsystems PDF
Document64 pages
Securityindistributedsystems PDF
Saumya Katiyar
No ratings yet
Lecture 3 - 1 Data States
Document50 pages
Lecture 3 - 1 Data States
zargham.raza
No ratings yet
Cloud Computing Chapter 09
Document27 pages
Cloud Computing Chapter 09
ghar_dash
No ratings yet
Threats & Attacks
Document30 pages
Threats & Attacks
sumipriyaa
No ratings yet
Institute of Road and Transport Technology: Erode
Document13 pages
Institute of Road and Transport Technology: Erode
Rishikaa Ram
No ratings yet
CAT 1 - Introduction
Document89 pages
CAT 1 - Introduction
Nikhil Gaddam
No ratings yet
ITN Module 16 STD
Document35 pages
ITN Module 16 STD
nurul husaifah
No ratings yet
Application Security Introduction - Overview PT 2
Document40 pages
Application Security Introduction - Overview PT 2
Matheus Fraga
No ratings yet
Workshop SCA and WebInspect-April-04062016
Document193 pages
Workshop SCA and WebInspect-April-04062016
Rogério Almeida
No ratings yet
Chapter 7 CEH v8 Gaining Access To A System
Document16 pages
Chapter 7 CEH v8 Gaining Access To A System
Leroy Serepe
No ratings yet
Security: Abenoja, Michael Joseph B Campos, Jennylyn T Dugenia, Marrieda C
Document19 pages
Security: Abenoja, Michael Joseph B Campos, Jennylyn T Dugenia, Marrieda C
Jenny Andres
No ratings yet
SRWE Module 10
Document26 pages
SRWE Module 10
حمدان ناصر الغيثي
No ratings yet
SQL Injection
Document15 pages
SQL Injection
gopika gs
No ratings yet
Introduction To Network Security
Document17 pages
Introduction To Network Security
Alaiza Moraleda Lopez Roman
No ratings yet
Session 03
Document9 pages
Session 03
bouzid.salim47
No ratings yet
Security Issues in Cloud Computing
Document31 pages
Security Issues in Cloud Computing
missshraddhasatpathy
No ratings yet
C) 256 Bits AES
Document4 pages
C) 256 Bits AES
syafiq rossley
No ratings yet
Vulnerabilities in Modern Web Applications
Document34 pages
Vulnerabilities in Modern Web Applications
NiyasNazar
100% (1)
Cryptographic Use and Weaknesses (Summary)
Document3 pages
Cryptographic Use and Weaknesses (Summary)
JM Del Rosario
No ratings yet
Your System's Sweetspots: CEO's Advice on Basic Cyber Security: CEO's Advice on Computer Science
From Everand
Your System's Sweetspots: CEO's Advice on Basic Cyber Security: CEO's Advice on Computer Science
Warren H. Lau
No ratings yet
Pattern Based Indonesian Question Answering System
Document6 pages
Pattern Based Indonesian Question Answering System
Eri Zuliarso
No ratings yet
PT Activity Configuring A Zone-Based Policy Firewall (ZPF)
Document3 pages
PT Activity Configuring A Zone-Based Policy Firewall (ZPF)
nanoanxo
No ratings yet
Localization
Document38 pages
Localization
Wilson Hannah
No ratings yet
Developmental Milestones
Document4 pages
Developmental Milestones
Silena Oliverio
No ratings yet
Article-3-Collaborative Strategic Reading-On The Road To Successful English Language Readers
Document4 pages
Article-3-Collaborative Strategic Reading-On The Road To Successful English Language Readers
Jumhela Joy Dinglas
No ratings yet
(Review of International Studies 2004-Apr Vol. 30 Iss. 2) Review by - Jef
Document17 pages
(Review of International Studies 2004-Apr Vol. 30 Iss. 2) Review by - Jef
Bianca Sferle
No ratings yet
Levman-Pali The Language The Medium and Message
Document1 page
Levman-Pali The Language The Medium and Message
Ananda
No ratings yet
I5 2 Test 2
Document4 pages
I5 2 Test 2
ani
No ratings yet
The Relationship Between Language and Style
Document13 pages
The Relationship Between Language and Style
bsm9955zwx
No ratings yet
BeginningSQL Joes2Pros WebSample
Document83 pages
BeginningSQL Joes2Pros WebSample
harit79
No ratings yet
ANGLEFLEXSEAT
Document3 pages
ANGLEFLEXSEAT
wid
No ratings yet
Igt (2018) PDF
Document2 pages
Igt (2018) PDF
Biswajeet Mohapatra
No ratings yet
Super Universal Modules TXM1.8X PDF
Document10 pages
Super Universal Modules TXM1.8X PDF
harishupreti
No ratings yet
Mod. 1 Reflective Writing and The Revision Process Assignment
Document3 pages
Mod. 1 Reflective Writing and The Revision Process Assignment
Justine Mwambi Michoma
No ratings yet
Similarities and Differences Between Structuralism Poststructuralism and Deconstruction
Document27 pages
Similarities and Differences Between Structuralism Poststructuralism and Deconstruction
Aisha Rahat
100% (1)
Intercultural Exercise
Document3 pages
Intercultural Exercise
Walid Wac
No ratings yet
RPH PDPR 27 - 29 September 2021
Document2 pages
RPH PDPR 27 - 29 September 2021
LAILI ATIQAH BINTI JIHAT Moe
No ratings yet
G. B Shaw
Document24 pages
G. B Shaw
Qamar Abbas Shah
No ratings yet
I7 Catalogue
Document14 pages
I7 Catalogue
Anonim Anonim
No ratings yet
I Love Nepal: A Filipina's Journey To The Roof of The World
Document10 pages
I Love Nepal: A Filipina's Journey To The Roof of The World
Victoria V. Ferro
No ratings yet
FreeNAS 11.3 U1 User Guide Screen
Document376 pages
FreeNAS 11.3 U1 User Guide Screen
Ola Ehen
100% (1)
C Urriculum Vitae: Sarvesh Narain Srivastava
Document4 pages
C Urriculum Vitae: Sarvesh Narain Srivastava
narainsarvesh
No ratings yet
Materi View
Document7 pages
Materi View
Kurnia Sandi
No ratings yet
FSI Spanish Basic Course Volume 2 Student Text
Document717 pages
FSI Spanish Basic Course Volume 2 Student Text
nicolejb
No ratings yet
Agile Complete
Document54 pages
Agile Complete
raspberrypi pi
No ratings yet
Chandrakala - Newar Presentation Jan 29 2016
Document29 pages
Chandrakala - Newar Presentation Jan 29 2016
Kabitagosthi
No ratings yet
Lesson: Natural Wonders of The World
Document33 pages
Lesson: Natural Wonders of The World
Dục Giáo
No ratings yet
Introduction À La Pragmatique
Document51 pages
Introduction À La Pragmatique
satchejoas
No ratings yet
Akarshan Gupta: Work Experience Skills
Document1 page
Akarshan Gupta: Work Experience Skills
Akarshan Gupta
No ratings yet
Assignment - 2
Document72 pages
Assignment - 2
Amjad Khan
No ratings yet