ΗΛΕΚΤΡΟΝΙΚΟ ΕΜΠΟΡΙΟ ΖΗΤΗΜΑΤΑ ΑΣΦΑΛΕΙΑΣ (Μέρος β')

( B) . . [email protected] [email protected] www.netmode.ntua.gr 12/05/2009 & (2)

telnet SSH (Secure Shell) IMAP e-mail ( ) (certificates)) ( ) : hub WiFi : ( WPA, WEP) Web & (authorization & authentication). Internet us)er_name, pas)s)word Acces)s) Lis)ts) MAC 802.11.X authorized LDAP - (certificate) /

( , Private Key Cryptography) (block cipher) bit (s)tream cipher) : DES, triple DES, RC2, RC4, RC5, IDEA, AES : Encryption, authentication, non-repudiation ( , Public Key Cryptography) . : RSA, Diffie-Hellman (has)h functions))

: SHA & SHA-1, MD2, MD4, MD5 : : : ' (Certification Authorities), CA) (Public Key Infras)tructures), PKI) : Encryption, authentication, non-repudiation (1) (.. SSL :

:

.

: Hash Function (message digest)message digest), . . (message digest) ) (message digest) ) . Hash Function . . . (2)

(non-repudiation) ( , digital s)ignature)

- 2 2 (s)es)s)ion) : hand-s)haking ( ) (Authentication) Public Key Cryptography () ( ps)eudo random) Public Key Cryptography (1 )

Internet Secure Shell, SSH: & , . PuTTY ( Telnet, client SSH Server), SFTP Secure Socket Layer, SSL: Web s)erver clients) Public Key s)erver & , .. https) (http over SSL over TCP), imaps) (IMAP over SSL over TCP), OpenVPN ( OpenVPN s)erver client S/W) (1) . (Trusted Third Party, TTP) (Certification Authority, CA) (Public Key Infrastructure,

PKI) . X.509. : (CA Name) (CA Digital Signature) (2) (CA) (1) malware

, (trojans) " ") , (worms)) .. IP email e-mail

worms) (2) malware (virus)es)), (trojans)) (worms)) (vulnerabilities) (1) (2) (1) Firewalls Firewall: "

" Marcus) J. Ranum, firewall (Screening router / Bas)tion Hos)t). (Network Addres)s) Trans)lation). Firewall ACLs) Firewall , (2) Firewalls

Deny Allow IP, TCP, UDP, ICMP, .. - IP ( Cis)co): access-list 100 permit tcp any host 171.16.23.1 eq 80 Firewall

.. (3) Firewalls ("Deny unles)s) allowed") , . ("Allow unles)s) denied") : TCP Three Way Hands)hake

(Es)tablis)hed) ( s)poofing) Firewalls - (1) Firewall Firewalls - (2)

Firewall : Firewall

Web " " Demilitarized Zone - DMZ Firewalls - (3) Web

Server Mail Server (2) X Firewall

Firewall / NAT Revers)e Web Proxy (1) IP, 10.1.x.x Mail Relay (1) Intrusion Detection Systems IDS

, , , . IDS (Hos)t bas)ed IDS) (Network Bas)ed IDS) "" ("s)ignatures)") Mis)us)e Detection Anomaly Detection (2) IDS Snort IDS

. ' (Open Source Project) (plugins)) ( cmd.exe WEB-IIS): alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"WEB-IIS cmd.exe access"; flow:to_server,established; uricontent:"cmd.exe"; classtype:web-application-attack;) (3) IDS

(4) IDS : (fals)e pos)itives)) . . (.. NIDS )

: . IDS : DDoS : :

Packet capture SNMP Netflow : , , , ( , ) : TCP SYN bps, pps . SFR

( packet capture) flows SYN flag ( Netflow) TCP. E- payment systems E-Payment ...

Cybercash Cybercoin ECash First Virtual Millicent Mondex NetBill Netcash Netcheque SET Traditional Payment Methods (message digest)Credit cards,

Cash on Delivery, etc.) ? Millicent (millicent.com) Mondex (mondex.com) SET Traditional Payment Methods (Credit cards, Cash on Delivery, etc.)

Online Payment Systems Digital cash : Online stored value systems : , , checking accounts Digital accumulating balance payment systems : Digital credit accounts : online credit card system

Digital checking : digital checks checking systems Internet Pre-Paid Hardware-based Quick, GeldKarte Software-based Paysafecard MicroMoney (eCash) (CyberCoins) Systems

Pay-Now Pay-Later Cash on Delivery Credit Card Debit instruments Unencrypted Mobile Payments SET Paybox SSL Mobipay Streetcash Credit Transfer (Payitmobile) Billing-/Collection ... eMail-Payments

PayPal Net900 Firstgate Paysafekey Internet Software-based prepaid payment services Paysafecard ( pre-paid on-line ) Mobile Payments Paybox ( ) Mobipay ( ) eMail Payments Paypal (http://www.paypal.com/) -

account Internet PayPal (e-mail payment system) ( ebay.com) 1999 50 . websites e-bay SET vis)a, mas)ter card, Nets)cape Micros)oft Internet

How SET works... 1. . credit card public key 2. 3. 4. . 5. 6. 7. 8. How SET works M e rc h a n t 1

8 7 6 2 5 A c q u ir in g bank 3 4 C lie n t

C a r d Is s u e r Gateway Internet Payments Secure Transaction Processing Authentication, Capture & Settlement/Reconciliation Reporting & Tracking of Internet Transactions PoS

Electronic Catalogues Authorization system Encryption system WWW Wallet Hub

Browser Electronic forms Ordering system Payment system , & Open/light EDI -

Open/light EDI - & -

URLs OASIS PKI Law - Public Key Infrastructure RSA Laboratories Public Key Cryptography Standards (PKCS) The PKI page Welcome to Adacom Web Presence : Applied Cryptography (Protocols, Algorithms and Source Code in C), Bruce Schneier, Second Edition. PayPal ( ) Internet (Paypal) email

account PayPal PayPal Registry (IBM) SET:

Net Commerce (IBM) : B2B Page caching API , , Net.Commerce server IBM (Open Buying on the Internet): Internet : Internet Commerce Server (Oracle)

Store Manager HTML Internet : SSL SET B2B products & Solutions CommerceOne The global leader in bus)ines)s)-to-bus)ines)s) electronic commerce solutions. WebMethods webMethods B2B products are the first and only e-commerce products for real-time inter-enterprise application integration based on XML (eXtensible Markup Language). webMethods B2B products couple the power of XML with a secure and reliable server architecture to enable diverse systems to be securely and rapidly integrated over the Internet. VerticalNet Provider of vertical trade communities, e-commerce, business to business communities, product centers, online auctions, buyers guides,

online marketplaces, product showcase, storefronts, career centers MartSoft Products MartSoft TM IntuiCat - (out-of-box E-Commerce solution) An Internet ready solution for E-Commerce, including the powerful IntuiCat catalog engine, a XML-capable database, and a Web server. Netscape CommerceXpert line is a full suite of packaged applications for buying, selling, merchandising, and delivering content over the Internet. B2B products & Solutions

Ariba A complete business-to-business eCommerce solution for operating resources requires the combination of two components, a solution for automating the internal processes of organizations coupled with a method for connecting buyers with their myriad suppliers. Sterling Commerce offer Web Commerce solutions range from secure business-to-business information exchange via the Web, to specialized banking and supply chain applications, to interactive Web storefronts that link seamlessly to back-end order fulfillment, inventory, and payment systems. Iciniti Corporation provides advanced Internet based solutions will take care of your business through business-to-business, business-toconsumer and Customer Interactive Services applications that support multiple databases and integrate real-time with your ERP system. Cebra Intelligent commerce, Business to Business solutions. Magic Software Enterprises Inc, developper of eMerchant(TM) which is a powerful new business-to-business e-commerce solution designed for high volume transaction processing, named "Best of Show" at the Internet Commerce Expo ("ICe") held in Boston March, 22-25 1999.

B2B products & Solutions Lexitech eCommerce specializes in creating business to business applications, supply chain management, large-scale catalog and directory publishing--within the technology, insurance, automotive, healthcare, retail and government industry segment. Industri-Matematik They have developed the industry's first pull-based, customer-focused logistics system optimized for global fulfillment. On-Link Technologies, Inc., the leading provider of Web-native e-commerce applications, is paving the way for a new generation of solutions that give businesses the full functionality needed to realize the sales potential of the Web across all sales and distribution channels. Designed to work from the buyers

perspective, Rainmaker Sales dynamically translates needs into specific solutions. EQOS Systems Ltd EQOS Systems is the market leader in Internet based Business to Business E-Collaboration software. Today, leading companies such as Sainsbury's, Nestl, Somerfield and Procter & Gamble use EQOS's software solutions to achieve a step-change in the way they share vital trading and supply chain information over the Internet, enabling them to dramatically improve inter-company productivity and performance. Request your FREE B2B E-Collaboration Resource Pack here.

Recently Viewed Presentations

 • Introduction to Shakespeare - English II Advanced

  Introduction to Shakespeare - English II Advanced

  Shakespeare, the Writer. Collection of writing: 37 plays, 154 sonnets, and 2 long poems . Works not published during his lifetime: Published four years after his death in the "First Folio" book . Shakespeare is considered a "man for all...
 • The Atmosphere - Massachusetts Institute of Technology

  The Atmosphere - Massachusetts Institute of Technology

  Calculated rad-con equilibrium T vs. observed T Zonally averaged net radiation Roles of atmosphere and ocean Basic dynamical relationships Basic dynamical relationships Basic dynamical relationships Geostrophic balance Geostrophic balance Rotating vs. nonrotating fluids Rotating vs. nonrotating fluids Rotating vs. nonrotating...
 • Dare to Lead Conference Canberra 14 August 2009

  Dare to Lead Conference Canberra 14 August 2009

  Dare to Lead Conference Canberra 14 August 2009 "At the end of the day the quality of programs in schools is reflected in the quality of the relationships between people who have to work together"
 • Vocabulary Week 16

  Vocabulary Week 16

  Please take care with your education and prepare for the future so that your prospects of getting a good job aren't bleak. Please guess the definition… lacking in charm or comfort, empty or dreary. bleak is an adjective. synonyms: desolate,...
 • Rounding Decimal Numbers - MY SITE - Home

  Rounding Decimal Numbers - MY SITE - Home

  Times New Roman MS Pゴシック Arial Calibri Default Design Rounding Decimal Numbers Slide 2 Slide 3 You have one hour to take a 50 question test. The rounding poem Rounding Whole Numbers Slide 7 Try These What about decimal numbers...
 • TORTORA FUNKE CASE Microbiology AN INTRODUCTION EIGHTH EDITION

  TORTORA FUNKE CASE Microbiology AN INTRODUCTION EIGHTH EDITION

  Chapter 23, part B Microbial Diseases of the Cardiovascular and Lymphatic Systems * * * * * * * * 1346 Plague-ridden bodies used by Tartar army against Kaffa 1925 Plaque-carrying flea bombs used in the Sino-Japanese War 1950s U.S....
 • Extract from The Prelude by William Wordsworth

  Extract from The Prelude by William Wordsworth

  'The Prelude' is an epic poem written by Wordsworth over the space of 50 years. It is about key moments in his life that changed him and he added to it and changed it as time passed. It was finally...
 • ECEN 4616/5616 Optoelectronic Design

  ECEN 4616/5616 Optoelectronic Design

  The standard phase contrast microscope works as follows: A mask selects a hollow cone of illumination from the filled cone from the light source. Most of the light just passes through the specimen (it is mostly transparent), but some is...