The state of in Mar4jn Grooten, Virus Bulle4n TROOPERS15, 19 March 2015

Size: px
Start display at page:

Download "The state of in Mar4jn Grooten, Virus Bulle4n TROOPERS15, 19 March 2015"

Transcription

1 The state of in 2015 Mar4jn Grooten, Virus Bulle4n TROOPERS15, 19 March 2015

2 Me, myself and I

3 Anna sends an to Bob Hi, it s here bob@hismail.com. anna@hermail.com for bob@hismail.com. Here an for from It s bob@hismail.com From anna@hermail.com

4 Anna sends an to Bob Anna can send s very easy and very fast. She can do so without needing Bob s permission. Spam is a feature of , not a bug.

5 It s the 1990s and here s Spike Hi, bob@hismail.com. Do BUY you MY want PRODUCTS!!!! to buy receive a cheap nice fake a Viagra? great Rolex? loan offer?

6 Early spam filters: content based if $ contains VIAGRA then send to trash else send to Bob fi

7 Spike thinks he s cleverer than that Hi, bob@hismail.com. Do you want to buy cheap V1@gr@?

8 Spike started using hacked computers and pretending to be Anna

9 Hold on. Isn t totally broken!? A^er all, anyone can rent a botnet to bombard Bob with s claiming to come from Anna. does not have a built in mechanism for Bob to verify the source. 10 years ago, some pessimists thought that was going to die soon. Except we are cleverer than that.

10 Mi4ga4ng the spam problem Content- based filters IP- and domain based blacklists Outbound filters Botnet takedowns An4- spam legisla4on SPF DKIM DMARC

11 Filters and blacklists IP address, domain, content

12 SPF From: Dear DNS, can send mail for hermail.com?

13 DKIM hermail.com

14 DMARC Hey, If it claims hermail.com, to come here from are hermail.com some suspicious and it s not s DKIM- signed that claimed or fails to SPF, Come please from treat you. with suspicion.

15 The State of spam in 2015 Spam remains a problem in 2015, but it is fairly well mi4gated. Bruce Schneier called it a rare success story in cybercrime.

16 Oh noes! IPv6 is coming

17 Good news and bad news (SMTP) takes place in the applica4on layer, IPv6 in the network layer. Spam filtering makes heavy use of the IP(v4) address.

18 More good news and more bad news We don t need all that many mail servers. They can just stay on IPv4. The IPv6 momentum can t be stopped. Not even for mail servers.

19 Solu4ons? Make our blacklists adapt to IPv6: c.b.a.0.8.b.d zen.spamhaus.org And hope people will follow The Rules. Ditch IP addresses; use domain names instead (DKIM, SPF).

20 Anna and Bob, post- Snowden

21 PGP

22 What PGP means Anna encrypts her using what she has been made to believe is Bob s private key. Bob is able to verify that the was sent by someone in possession of what he has been made to believe is Anna s private key.

23 What we want PGP to mean Anna encrypts the so that only Bob can read it. Bob can verify the came from Anna. This transla6on doesn t scale well.

24 And PGP leaks a lot of metadata Of course, metadata is only metadata. But then, it is s4ll metadata.

25 It s good to keep in mind Targeted surveillance by intelligence agencies isn t part of most people s threat model (nor should it). 2,000,000,000 users can t be wrong. Or at least they won t change habits easily. Cryptography is hard. Don t try it at home.

26 Dark Internet Mail Environment Hi, it s here bob@hismail.com. anna@hermail.com for someone Here is an hismail.com. for from It s From someone someone hismail.com at hermail.com

27 Why I love DIME Wriien by people who understand both encryp4on and . Integrates seamlessly into ; two system can exist next to each other. Allows users to place trust in servers (e.g. webmail). Users don t need to understand crypto.

28 But what about spam? The 108- page DIME specifica4on doesn t men4on spam even once. Spam filters inspect . Do does the NSA. We can t have it both ways. Spammers can use encryp4on as well as everyone else.

29 Why I am op4mis4c We have collec4vely shown we re very good at figh4ng spam. DIME includes various level of security and of trust. Spam filters can be integrated into these. We can t stop spam 100% anyway.

30

Spam. Time: five years from now Place: England

Spam. Time: five years from now Place: England Spam Time: five years from now Place: England Oh no! said Joe Turner. When I go on the computer, all I get is spam email that nobody wants. It s all from people who are trying to sell you things. Email

More information

Bitcoin, Security for Cloud & Big Data

Bitcoin, Security for Cloud & Big Data Bitcoin, Security for Cloud & Big Data CS 161: Computer Security Prof. David Wagner April 18, 2013 Bitcoin Public, distributed, peer-to-peer, hash-chained audit log of all transactions ( block chain ).

More information

CS 161 Computer Security

CS 161 Computer Security Paxson Spring 2017 CS 161 Computer Security Discussion 6 Week of March 6, 2017 Question 1 Password Hashing (10 min) When storing a password p for user u, a website randomly generates a string s (called

More information

HOW TO CONVERT VISITORS TO CLIENTS

HOW TO CONVERT VISITORS TO CLIENTS HOW TO CONVERT VISITORS TO CLIENTS HTTP://WWW.WEDPLANNERPRO.COM INTRODUCTION You have done the hard work in getting some traffic to your website and brides are visiting your website, browsing a page or

More information

IETF IPR Some info and considera4ons. Dave Ward March 2009 (some material taken from sob and sbrim)

IETF IPR Some info and considera4ons. Dave Ward March 2009 (some material taken from sob and sbrim) IETF IPR Some info and considera4ons Dave Ward March 2009 (some material taken from sob and sbrim) Agenda 1. What an Individual contributor understand 2. What a WG needs to understand 3. What is NOT in

More information

Outline More Security Protocols CS 239 Computer Security February 6, 2006

Outline More Security Protocols CS 239 Computer Security February 6, 2006 Outline More Security Protocols CS 239 Computer Security February 6, 2006 Combining key distribution and authentication Verifying security protocols Page 1 Page 2 Combined Key Distribution and Authentication

More information

How to Build a Culture of Security

How to Build a Culture of Security How to Build a Culture of Security March 2016 Table of Contents You are the target... 3 Social Engineering & Phishing and Spear-Phishing... 4 Browsing the Internet & Social Networking... 5 Bringing Your

More information

1 Jane s dress is... yours. A the same than B the same to C similar than D similar to

1 Jane s dress is... yours. A the same than B the same to C similar than D similar to Test 5A 1 Jane s dress is... yours. A the same than B the same to C similar than D similar to 2 We ve proved that he was guilty but he... doesn t admit it. A yet B already C still D no longer 3 If I...

More information

The case for devolved authentication: over-centralised security doesn't work

The case for devolved authentication: over-centralised security doesn't work The case for devolved authentication: over-centralised security doesn't work JISC Core Middleware meeting at NeSC: Developments within Security and Access Management Mark Norman This talk The DCOCE and

More information

Recipes. Marketing For Bloggers. List Building, Traffic, Money & More. A Free Guide by The Social Ms Page! 1 of! 24

Recipes.  Marketing For Bloggers. List Building, Traffic, Money & More. A Free Guide by The Social Ms Page! 1 of! 24 16 Recipes Email Marketing For Bloggers List Building, Traffic, Money & More A Free Guide by The Social Ms Page 1 of 24 Brought to you by: Jonathan Gebauer, Susanna Gebauer INTRODUCTION Email Marketing

More information

BEST PRACTICES FOR PERSONAL Security

BEST PRACTICES FOR PERSONAL  Security BEST PRACTICES FOR PERSONAL Email Security Sometimes it feels that the world of email and internet communication is fraught with dangers: malware, viruses, cyber attacks and so on. There are some simple

More information

Choic s Administrative Login Guide

Choic s Administrative Login Guide ChoiceMail s Administrative Login Guide ChoiceMail Enterprise provides you with an Administrative Login from which you can control Global settings and administer User Accounts all through a web interface.

More information

CSE 127: Computer Security Cryptography. Kirill Levchenko

CSE 127: Computer Security Cryptography. Kirill Levchenko CSE 127: Computer Security Cryptography Kirill Levchenko October 24, 2017 Motivation Two parties want to communicate securely Secrecy: No one else can read messages Integrity: messages cannot be modified

More information

Close Your File Template

Close Your File Template In every sale there is always a scenario where I can t get someone to respond. No matter what I do. I can t get an answer from them. When people stop responding I use the Permission To. This is one of

More information

Outline. More Security Protocols CS 239 Security for System Software April 22, Needham-Schroeder Key Exchange

Outline. More Security Protocols CS 239 Security for System Software April 22, Needham-Schroeder Key Exchange Outline More Security Protocols CS 239 Security for System Software April 22, 2002 Combining key distribution and authentication Verifying security protocols Page 1 Page 2 Combined Key Distribution and

More information

Sucuri Webinar Q&A HOW TO IDENTIFY AND FIX A HACKED WORDPRESS WEBSITE. Ben Martin - Remediation Team Lead

Sucuri Webinar Q&A HOW TO IDENTIFY AND FIX A HACKED WORDPRESS WEBSITE. Ben Martin - Remediation Team Lead Sucuri Webinar Q&A HOW TO IDENTIFY AND FIX A HACKED WORDPRESS WEBSITE. Ben Martin - Remediation Team Lead 1 Question #1: What is the benefit to spammers for using someone elses UA code and is there a way

More information

Anti-Spoofing. Inbound SPF Settings

Anti-Spoofing. Inbound SPF Settings Anti-Spoofing SonicWall Hosted Email Security solution allows you to enable and configure settings to prevent illegitimate messages from entering your organization. Spoofing consists of an attacker forging

More information

Outline More Security Protocols CS 239 Computer Security February 4, 2004

Outline More Security Protocols CS 239 Computer Security February 4, 2004 Outline More Security Protocols CS 239 Computer Security February 4, 2004 Combining key distribution and authentication Verifying security protocols Page 1 Page 2 Combined Key Distribution and Authentication

More information

Your message in Outlook will look something like the illustration below. Begin by right-clicking on the name of the attachment.

Your  message in Outlook will look something like the illustration below. Begin by right-clicking on the name of the attachment. Page 1 of 11 Dear Teacher, Tutor or Program Coordinator, The deadline for entries to this year s edition of To Open Your Mind is just a month away February 16! Please try to get your entries in as soon

More information

Bring in several pieces of junk mail that have been opened and spread the mail around the classroom.

Bring in several pieces of junk mail that have been opened and spread the mail around the classroom. LESSON PLAN You ve Won a Prize! GRADES 3-5 UNIT 2 Essential Question What is spam, and what can you do about it? Lesson Overview Students learn what spam is, the forms it takes, and then identify strategies

More information

Outline Key Management CS 239 Computer Security February 9, 2004

Outline Key Management CS 239 Computer Security February 9, 2004 Outline Key Management CS 239 Computer Security February 9, 2004 Properties of keys Key management Key servers Certificates Page 1 Page 2 Introduction Properties of Keys It doesn t matter how strong your

More information

Security Using Digital Signatures & Encryption

Security Using Digital Signatures & Encryption Email Security Using Digital Signatures & Encryption CONTENTS. Introduction The Need for Email Security Digital Signatures & Encryption 101 Digital Signatures & Encryption in Action Selecting the Right

More information

Newcomer Finances Toolkit. Fraud. Worksheets

Newcomer Finances Toolkit. Fraud. Worksheets Newcomer Finances Toolkit Fraud Worksheets Ottawa Community Loan Fund Fonds d emprunt Communautaire d Ottawa 22 O Meara St., Causeway Work Centre, Ottawa, ON K1Y 4N6 Tel: 613-594-3535 Fax: 613-594-8118

More information

Security Protection

Security Protection Email Security Protection Loay Alayadhi Abstract: Email is the most important business communication tool. Security has been an issue in mail from ancient times. Therefore, email security protection has

More information

Automatic Delivery Setup Guide

Automatic  Delivery Setup Guide for GuideSpark Communicate Cloud Table of Contents Summary: Working with Automatic Email Delivery... 1 What your IT department needs to know... 2 Prerequisite: Select a Targeted Audience... 3 Enable Automatic

More information

The name of our class will be Yo. Type that in where it says Class Name. Don t hit the OK button yet.

The name of our class will be Yo. Type that in where it says Class Name. Don t hit the OK button yet. Mr G s Java Jive #2: Yo! Our First Program With this handout you ll write your first program, which we ll call Yo. Programs, Classes, and Objects, Oh My! People regularly refer to Java as a language that

More information

(c) IKSC 2010 Copying allowed for incidental, classroom purposes. Workshop 2: Playing and Staying Safe Online Student Handouts

(c) IKSC 2010 Copying allowed for incidental, classroom purposes. Workshop 2: Playing and Staying Safe Online Student Handouts Workshop 2: Playing and Staying Safe Online Student Handouts Table of Contents Lesson 1: I Know/I Want to Know 1 Lesson 1: Video Summary: Staying Safe Online, Part 1 2 Lesson 1: Guidelines for Creating

More information

Computer Networks 1 (Mạng Máy Tính 1) Lectured by: Dr. Phạm Trần Vũ

Computer Networks 1 (Mạng Máy Tính 1) Lectured by: Dr. Phạm Trần Vũ Computer Networks 1 (Mạng Máy Tính 1) Lectured by: Dr. Phạm Trần Vũ Chapter 8 Network Security Computer Networking: A Top Down Approach, 5 th edition. Jim Kurose, Keith Ross Addison-Wesley, April 2009.

More information

beyond the install 10 Things you should do after you install WordPress by Terri Orlowski beyond the office

beyond the install 10 Things you should do after you install WordPress by Terri Orlowski beyond the office beyond the install 10 Things you should do after you install WordPress by Terri Orlowski beyond the install 1. Install a backup plugin It may seem silly but the very first thing that I recommend after

More information

The 21 WORD . That Can Get You More Clients. Ian Brodie

The 21 WORD  . That Can Get You More Clients. Ian Brodie The 21 WORD EMAIL That Can Get You More Clients Ian Brodie The 21 Word Email That Can Get You More Clients Hey there! Welcome to this short report on the 21 Word Email That Can Get You More Clients If

More information

Cryptography III Want to make a billion dollars? Just factor this one number!

Cryptography III Want to make a billion dollars? Just factor this one number! Cryptography III Want to make a billion dollars? Just factor this one number! 3082010a0282010100a3d56cf0bf8418d66f400be31c3f22036ca9f5cf01ef614de2eb9a1cd74a0c344b5a20d5f80df9a23c89 10c354821aa693432a61bd265ca70f309d56535a679d68d7ab89f9d32c47c1182e8a14203c050afd5f1831e5550e8700e008f2

More information

Computer Security Spring 2010 Paxson/Wagner Notes 3/8. Key Management. 1 Cryptographic Hash Functions. 2 Man-in-the-middle Attacks

Computer Security Spring 2010 Paxson/Wagner Notes 3/8. Key Management. 1 Cryptographic Hash Functions. 2 Man-in-the-middle Attacks CS 161 Computer Security Spring 2010 Paxson/Wagner Notes 3/8 Key Management In this lecture, we ll talk about how to manage keys. For instance, how does Alice find out Bob s public key? Does it matter?

More information

Automatic Delivery Setup Guide

Automatic  Delivery Setup Guide for GuideSpark Communicate Cloud Table of Contents Summary: Working with Automatic Email Delivery... 1 What your IT department needs to know... 2 Prerequisite: Select a Targeted Audience... 3 Enable Automatic

More information

1.7 Limit of a Function

1.7 Limit of a Function 1.7 Limit of a Function We will discuss the following in this section: 1. Limit Notation 2. Finding a it numerically 3. Right and Left Hand Limits 4. Infinite Limits Consider the following graph Notation:

More information

News English.com Ready-to-use ESL / EFL Lessons

News English.com Ready-to-use ESL / EFL Lessons www.breaking News English.com Ready-to-use ESL / EFL Lessons 1,000 IDEAS & ACTIVITIES FOR LANGUAGE TEACHERS The Breaking News English.com Resource Book http://www.breakingnewsenglish.com/book.html Top

More information

CS 425 / ECE 428 Distributed Systems Fall 2017

CS 425 / ECE 428 Distributed Systems Fall 2017 CS 425 / ECE 428 Distributed Systems Fall 2017 Indranil Gupta (Indy) Dec 5, 2017 Lecture 27: Security All slides IG Security Threats Leakage Unauthorized access to service or data E.g., Someone knows your

More information

FRAUD DEFENSE: How To Fight The Next Generation of Targeted BEC Attacks

FRAUD DEFENSE: How To Fight The Next Generation of Targeted BEC Attacks EMAIL FRAUD DEFENSE: How To Fight The Next Generation of Targeted BEC Attacks Brian Westnedge bwestnedge@proofpoint.com November 8, 2017 1 2017 Proofpoint, Inc. THE BUSINESS PROBLEM BUSINESS EMAIL COMPROMISE

More information

Contents. Management. Client. Choosing One 1/20/17

Contents.  Management.  Client. Choosing One 1/20/17 Contents Email Management CSCU9B2 Email clients choosing and using Email message header and content Emailing to lists of people In and out message management Mime attachments and HTML email SMTP, HTTP,

More information

Cryptography and Network Security

Cryptography and Network Security Cryptography and Network Security Spring 2012 http://users.abo.fi/ipetre/crypto/ Lecture 8: Protocols for public-key management Ion Petre Department of IT, Åbo Akademi University 1 Key management two problems

More information

Meet our Example Buyer Persona Adele Revella, CEO

Meet our Example Buyer Persona Adele Revella, CEO Meet our Example Buyer Persona Adele Revella, CEO 685 SPRING STREET, NO. 200 FRIDAY HARBOR, WA 98250 W WW.BUYERPERSONA.COM You need to hear your buyer s story Take me back to the day when you first started

More information

Phishing. A simplified walkthrough on how phishing campaigns are often orchestrated, and possible defences. Copyright March 2018

Phishing. A simplified walkthrough on how phishing campaigns are often orchestrated, and possible defences. Copyright March 2018 Phishing A simplified walkthrough on how phishing campaigns are often orchestrated, and possible defences. Copyright March 2018 Netscylla Cyber Security Ltd GB 10571639 Address: Telecom House, 125-135

More information

PHISHING ATTACKS: 9 BAD HABITS MALICIOUS S LOVE. Proactive IT Solutions.

PHISHING ATTACKS: 9 BAD HABITS MALICIOUS  S LOVE. Proactive IT Solutions. PHISHING ATTACKS: 9 BAD HABITS MALICIOUS EMAILS LOVE Proactive IT Solutions www.netrixit.com P2 PHISHING ATTACKS: 9 BAD HABITS MALICIOUS EMAILS LOVE A business professional without an overactive, overflowing,

More information

You Weren t Hacked, You Were Spoofed

You Weren t Hacked, You Were Spoofed You Weren t Hacked, You Were Spoofed How to Deal with a Facebook Spoofer 2016 Cyndi Ingle, cyndihow@gmail.com Hacked: someone has used a computer to gain unauthorized access to your computer. Spoofed:

More information

MARCH Covering the global threat landscape. VBSPAM COMPARATIVE REVIEW MARCH 2018 Martijn Grooten & Ionuţ Răileanu RESULTS

MARCH Covering the global threat landscape. VBSPAM COMPARATIVE REVIEW MARCH 2018 Martijn Grooten & Ionuţ Răileanu RESULTS Covering the global threat landscape VBSPAM COMPARATIVE REVIEW Martijn Grooten & Ionuţ Răileanu Don t open email attachments or click on links in emails from strangers this is a common piece of security

More information

Encryption 2. Tom Chothia Computer Security: Lecture 3

Encryption 2. Tom Chothia Computer Security: Lecture 3 Encryption 2 Tom Chothia Computer Security: Lecture 3 This Lecture Counter Mode (CTR) enryption Diffie Helleman key exchange Public Key Encryption RSA Signing Combining public and symmetric key encryption

More information

Top 10 Considerations for Securing Private Clouds

Top 10 Considerations for Securing Private Clouds Top 10 Considerations for Securing Private Clouds 1 Who s that knocking at my door? If you know who s accessing your cloud, you can head off many problems before they turn into disasters. You should ensure

More information

IAE Professional s (02)

IAE Professional  s (02) IAE Professional Emails (02) TASK ONE: There are three different styles of writing when it comes to communication via email: Formal This is the style of an old-fashioned letter. Ideas are presented politely

More information

Chapter01.fm Page 1 Monday, August 23, :52 PM. Part I of Change. The Mechanics. of Change

Chapter01.fm Page 1 Monday, August 23, :52 PM. Part I of Change. The Mechanics. of Change Chapter01.fm Page 1 Monday, August 23, 2004 1:52 PM Part I The Mechanics of Change The Mechanics of Change Chapter01.fm Page 2 Monday, August 23, 2004 1:52 PM Chapter01.fm Page 3 Monday, August 23, 2004

More information

Digital Marketing Manager, Marketing Manager, Agency Owner. Bachelors in Marketing, Advertising, Communications, or equivalent experience

Digital Marketing Manager, Marketing Manager, Agency Owner. Bachelors in Marketing, Advertising, Communications, or equivalent experience Persona name Amanda Industry, geographic or other segments B2B Roles Digital Marketing Manager, Marketing Manager, Agency Owner Reports to VP Marketing or Agency Owner Education Bachelors in Marketing,

More information

Crypto Basics: History, Applied Cryptography in IT Security Today and in the Next Year

Crypto Basics: History, Applied Cryptography in IT Security Today and in the Next Year SESSION ID: Crypto Basics: History, Applied Cryptography in IT Security Today and in the Next Year Dan Bailey Chief Security Architect Carbonite @dansinferno What is Applied Cryptography? Transforming

More information

Hi Bob, I got this from my colleagues near the end of last week and unfortunately lost track of it in my inbox to send you.

Hi Bob, I got this from my colleagues near the end of last week and unfortunately lost track of it in my inbox to send you. Robert Cook-Deegan To: "Rodriguez, Laura (NIH/NHGRI) [E]" Cc: Rachel Ankeny , Kathryn Maxson Reply-To: bob.cd@duke.edu

More information

Factors that affects deliverability

Factors that affects  deliverability Email deliverability is all about getting your emails to the recipient inbox. Certain factors promote this by acting as a catalyst while some hinder the particular aspects of mail delivery. These critical

More information

Organising . page 1 of 8. bbc.co.uk/webwise/accredited-courses/level-one/using- /lessons/your- s/organising-

Organising  . page 1 of 8. bbc.co.uk/webwise/accredited-courses/level-one/using- /lessons/your- s/organising- Organising email Reading emails When someone sends you an email it gets delivered to your inbox, which is where all your emails are stored. Naturally the first thing you ll want to do is read it. In your

More information

VIDEO 1: WHY SHOULD YOU USE TEMPLATES TO SEND YOUR S?

VIDEO 1: WHY SHOULD YOU USE TEMPLATES TO SEND YOUR  S? VIDEO 1: WHY SHOULD YOU USE TEMPLATES TO SEND YOUR EMAILS? Hey, it s Kyle from HubSpot Academy. Let s talk about about email templates. Why should you use templates to send your emails? You probably don

More information

The State of Hacked Accounts

The State of Hacked Accounts October 2011 Overview The use of compromised (e.g. stolen credentials or hacked) accounts to send spam and scams has increased throughout 2011 to become a growing percentage of the unwanted email that

More information

2 User Guide. Contents

2  User Guide. Contents E-mail User Guide 2 E-mail User Guide Contents Logging in to your web mail... 3 Changing your password... 5 Editing your signature... 6 Adding an e-mail account to Outlook 2010/2013/2016... 7 Adding an

More information

Control Do Not Spy in Win 10 Courtesy of Jim Palfini

Control Do Not Spy in Win 10 Courtesy of Jim Palfini Control Do Not Spy in Win 10 Courtesy of Jim Palfini 08.24.2015 http://www.foxnews.com/tech/2015/08/05/stop-windows-10-spying-dead-in-its-tracks-with-one-free-app/?intcmp=trending¹ The verdict is in: people

More information

Ages Donʼt Fall for Fake: Activity 1 Don t bite that phishing hook! Goals for children. Letʼs talk

Ages Donʼt Fall for Fake: Activity 1 Don t bite that phishing hook! Goals for children. Letʼs talk Ages 11-14 Donʼt Fall for : Activity 1 Don t bite that phishing hook! Children play a game where they study various emails and texts and try to decide which messages are legit and which are phishing scams.

More information

Strategies That Work

Strategies That Work Email Strategies That Work Your focus questions for today: 1. What kinds of cookie content can I create? What type of content will reward my reader for consuming it? 2. When and how will I make an offer

More information

Getting into Gmail and other inboxes: A marketer's guide to the toughest spam filters

Getting into Gmail and other  inboxes: A marketer's guide to the toughest spam filters FulcrumTech Email Marketing Results You Can Measure Getting into Gmail and other email inboxes: A marketer's guide to the toughest spam filters What Really Determines Inbox Engagement? Do Internet service

More information

An Executive s FAQ About Authentication

An Executive s FAQ About  Authentication An Executive s FAQ About Email Authentication Understanding how email authentication helps your organization protect itself from phishing with an approach that s radically different from other security

More information

A Guide to Condor. Joe Antognini. October 25, Condor is on Our Network What is an Our Network?

A Guide to Condor. Joe Antognini. October 25, Condor is on Our Network What is an Our Network? A Guide to Condor Joe Antognini October 25, 2013 1 Condor is on Our Network What is an Our Network? The computers in the OSU astronomy department are all networked together. In fact, they re networked

More information

Chapter 8 Security. Computer Networking: A Top Down Approach. 6 th edition Jim Kurose, Keith Ross Addison-Wesley March 2012

Chapter 8 Security. Computer Networking: A Top Down Approach. 6 th edition Jim Kurose, Keith Ross Addison-Wesley March 2012 Chapter 8 Security A note on the use of these ppt slides: We re making these slides freely available to all (faculty, students, readers). They re in PowerPoint form so you see the animations; and can add,

More information

Handling unwanted . What are the main sources of junk ?

Handling unwanted  . What are the main sources of junk  ? Handling unwanted email Philip Hazel Almost entirely based on a presentation by Brian Candler What are the main sources of junk email? Spam Unsolicited, bulk email Often fraudulent penis enlargement, lottery

More information

0/41. Alice Who? Authentication Protocols. Andreas Zeller/Stephan Neuhaus. Lehrstuhl Softwaretechnik Universität des Saarlandes, Saarbrücken

0/41. Alice Who? Authentication Protocols. Andreas Zeller/Stephan Neuhaus. Lehrstuhl Softwaretechnik Universität des Saarlandes, Saarbrücken 0/41 Alice Who? Authentication Protocols Andreas Zeller/Stephan Neuhaus Lehrstuhl Softwaretechnik Universität des Saarlandes, Saarbrücken The Menu 1/41 Simple Authentication Protocols The Menu 1/41 Simple

More information

Crypto-systems all around us ATM machines Remote logins using SSH Web browsers (https invokes Secure Socket Layer (SSL))

Crypto-systems all around us ATM machines Remote logins using SSH Web browsers (https invokes Secure Socket Layer (SSL)) Introduction (Mihir Bellare Text/Notes: http://cseweb.ucsd.edu/users/mihir/cse207/) Cryptography provides: Data Privacy Data Integrity and Authenticity Crypto-systems all around us ATM machines Remote

More information

Privacy. CS Computer Security Profs. Vern Paxson & David Wagner

Privacy. CS Computer Security Profs. Vern Paxson & David Wagner Privacy CS 161 - Computer Security Profs. Vern Paxson & David Wagner TAs: John Bethencourt, Erika Chin, Matthew Finifter, Cynthia Sturton, Joel Weinberger http://inst.eecs.berkeley.edu/~cs161/ March 31,

More information

WHAT IS AN INTERNET BACKBONE? And what makes a good one?

WHAT IS AN INTERNET BACKBONE? And what makes a good one? WHAT IS AN INTERNET BACKBONE? And what makes a good one? WHAT IS AN INTERNET BACKBONE? In plain English If you already know, skip to... WHAT MAKES A GOOD ONE? The Internet used to be novelty now it s necessity.

More information

2 Protocol Analysis, Composability and Computation

2 Protocol Analysis, Composability and Computation 2 Protocol Analysis, Composability and Computation Ross Anderson, Michael Bond Security protocols early days The study of security protocols has been associated with Roger Needham since 1978, when he published

More information

Clickbank Domination Presents. A case study by Devin Zander. A look into how absolutely easy internet marketing is. Money Mindset Page 1

Clickbank Domination Presents. A case study by Devin Zander. A look into how absolutely easy internet marketing is. Money Mindset Page 1 Presents A case study by Devin Zander A look into how absolutely easy internet marketing is. Money Mindset Page 1 Hey guys! Quick into I m Devin Zander and today I ve got something everybody loves! Me

More information

CS 43: Computer Networks Security. Kevin Webb Swarthmore College December 7, 2017

CS 43: Computer Networks Security. Kevin Webb Swarthmore College December 7, 2017 CS 43: Computer Networks Security Kevin Webb Swarthmore College December 7, 2017 Topics Spying on network traffic Classic problem: buffer overflow attack Monetizing botnets Once upon a time The Internet

More information

Diffie-Hellman. Part 1 Cryptography 136

Diffie-Hellman. Part 1 Cryptography 136 Diffie-Hellman Part 1 Cryptography 136 Diffie-Hellman Invented by Williamson (GCHQ) and, independently, by D and H (Stanford) A key exchange algorithm o Used to establish a shared symmetric key Not for

More information

Remco Hobo. Virus and Worm scanning January 18, 2005

Remco Hobo. Virus and Worm scanning January 18, 2005 Remco Hobo Virus and Worm scanning January 18, 2005 In this report I will discuss different virus scan programs for Linux and BSD. Virus scanners are widely deployed under Windows, but under Linux and

More information

5 R1 The one green in the same place so either of these could be green.

5 R1 The one green in the same place so either of these could be green. Page: 1 of 20 1 R1 Now. Maybe what we should do is write out the cases that work. We wrote out one of them really very clearly here. [R1 takes out some papers.] Right? You did the one here um where you

More information

Anonymous Communication and Internet Freedom

Anonymous Communication and Internet Freedom Anonymous Communication and Internet Freedom CS 161: Computer Security Prof. David Wagner April 29, 2016 Announcements Final exam in RSF Fieldhouse, 5/10, arrive by 7PM HW4 due Monday, 5/2, 11:59pm Review

More information

Web Host. Choosing a. for Your WordPress Site. What is web hosting, and why do you need it?

Web Host. Choosing a. for Your WordPress Site. What is web hosting, and why do you need it? You ve registered a domain name, and you know you want to use WordPress to create your online presence. The next question is, where are you going to build your website? This report will help you choose

More information

3D printing Is it Good Enough for Scale Model Boat Builders?

3D printing Is it Good Enough for Scale Model Boat Builders? Lew Zerfas Web Site: LewsModelBoats.org Email: info@lewsmodelboat.org Phone: 727-698-4400 a builder of scale model operating boats, including kits, highly modified kits, and scratch built models. A retired

More information

CS Computer Networks 1: Authentication

CS Computer Networks 1: Authentication CS 3251- Computer Networks 1: Authentication Professor Patrick Traynor 4/14/11 Lecture 25 Announcements Homework 3 is due next class. Submit via T-Square or in person. Project 3 has been graded. Scores

More information

Architecture. Steven M. Bellovin October 31,

Architecture. Steven M. Bellovin October 31, Architecture Steven M. Bellovin October 31, 2016 1 Web Servers and Security The Web is the most visible part of the net Two web servers Apache (open source) and Microsoft s IIS dominate the market Apache

More information

Security Awareness. Presented by OSU Institute of Technology

Security Awareness. Presented by OSU Institute of Technology Security Awareness Presented by OSU Institute of Technology Information Technologies Division Security Awareness Topics Social Engineering Phishing Social Networks Displaying Sensitive Information Wireless

More information

Table of content. Authentication Domain Subscribers Content Sending practices Conclusion...

Table of content.  Authentication Domain Subscribers Content Sending practices Conclusion... A User Guide Before sending your carefully-crafted email campaigns, it s important to first understand a few basic ideas and rules of email marketing to ensure your campaigns are successful. To achieve

More information

Security and Privacy

Security and Privacy E-mail Security and Privacy Department of Computer Science Montclair State University Course : CMPT 320 Internet/Intranet Security Semester : Fall 2008 Student Instructor : Alex Chen : Dr. Stefan Robila

More information

AND WHAT MAKES A GOOD ONE?

AND WHAT MAKES A GOOD ONE? AND WHAT MAKES A GOOD ONE? In plain English If you already know, skip to... The Internet used to be novelty now it s necessity. But what keeps the world connected? IT ALL STARTS WITH YOU. You want it all.

More information

Keeping Sane - Managing your

Keeping Sane - Managing your WITH KEVIN Keeping Sane - Managing your Email TODAY S COFFEE TALK Email is a wonderful tool for sending and receiving a lot of information quickly and securely. However, it s important that your personal

More information

Cryptography Worksheet

Cryptography Worksheet Cryptography Worksheet People have always been interested in writing secret messages. In ancient times, people had to write secret messages to keep messengers and interceptors from reading their private

More information

Autoresponders using Mailchimp. Author List Management

Autoresponders using Mailchimp. Author List Management Autoresponders using Mailchimp Author List Management Resources and Links (From Mailchimp slides) Subscribe to these self published authors to see what they do for email traffic and autoresponders: http://adamcroft.net/

More information

Duplication and/or selling of the i-safe copyrighted materials, or any other form of unauthorized use of this material, is against the law.

Duplication and/or selling of the i-safe copyrighted materials, or any other form of unauthorized use of this material, is against the law. Thank you for your interest in e-safety, and for teaching safe and responsible Internet use to your students. Educators are invited to access and download i-safe curriculum AT NO CHARGE under the following

More information

INCOGNITO TOOLKIT: TOOLS, APPS, AND CREATIVE METHODS FOR REMAINING ANONYMOUS, PRIVATE, AND SECURE WHILE COMMUNICATING, PUBLISHING, BUYING,

INCOGNITO TOOLKIT: TOOLS, APPS, AND CREATIVE METHODS FOR REMAINING ANONYMOUS, PRIVATE, AND SECURE WHILE COMMUNICATING, PUBLISHING, BUYING, INCOGNITO TOOLKIT: TOOLS, APPS, AND CREATIVE METHODS FOR REMAINING ANONYMOUS, PRIVATE, AND SECURE WHILE COMMUNICATING, PUBLISHING, BUYING, DOWNLOAD EBOOK : INCOGNITO TOOLKIT: TOOLS, APPS, AND CREATIVE

More information

SEEM4540 Open Systems for E-Commerce Lecture 03 Internet Security

SEEM4540 Open Systems for E-Commerce Lecture 03 Internet Security SEEM4540 Open Systems for E-Commerce Lecture 03 Internet Security Consider 2. Based on DNS, identified the IP address of www.cuhk.edu.hk is 137.189.11.73. 1. Go to http://www.cuhk.edu.hk 3. Forward the

More information

A little more research on TEAC and their tapes revealed that, back in the early to mid 1980s, TEAC made a number of these tapes with real metal

A little more research on TEAC and their tapes revealed that, back in the early to mid 1980s, TEAC made a number of these tapes with real metal A while ago, Siamac sent me a couple of CDs containing catalogs and photos of Pioneer components which he has collected. Amongst them was a photo of a CT-F1250, with an interesting cassette in the drive.

More information

The First 12. An Hour-by-Hour Breakdown of a Threat Actor Inside Your Environment. Dr. Chase Cunningham ECSA,

The First 12. An Hour-by-Hour Breakdown of a Threat Actor Inside Your Environment. Dr. Chase Cunningham ECSA, The First 12 An Hour-by-Hour Breakdown of a Threat Actor Inside Your Environment Dr. Chase Cunningham ECSA, LPT HEAD OF THREAT RESEARCH & DEVELOPMENT, ARMOR @CynjaChaseC Hour 1 0100 HOURS Target Observation

More information

to Stay Out of the Spam Folder

to Stay Out of the Spam Folder Tips and Tricks to Stay Out of the Spam Folder At SendGrid we are very serious about email deliverability. We live and breathe it each day. Similar to how Google keeps adjusting its search algorithm to

More information

18-642: Security Pitfalls

18-642: Security Pitfalls 18-642: Security Pitfalls 4/18/2018 "On two occasions I have been asked [by members of Parliament]: 'Pray, Mr. Babbage, if you put into the machine wrong figures, will the right answers come out?' I am

More information

VSP18 Venafi Security Professional

VSP18 Venafi Security Professional VSP18 Venafi Security Professional 13 April 2018 2018 Venafi. All Rights Reserved. 1 VSP18 Prerequisites Course intended for: IT Professionals who interact with Digital Certificates Also appropriate for:

More information

Jump to: Using AAUP Photos AAUP Logos Embedding the AAUP Twitter Feed Embedding the AAUP News Feed CREATING A WEBSITE

Jump to: Using AAUP Photos AAUP Logos Embedding the AAUP Twitter Feed Embedding the AAUP News Feed CREATING A WEBSITE Jump to: Using AAUP Photos AAUP Logos Embedding the AAUP Twitter Feed Embedding the AAUP News Feed CREATING A WEBSITE You can make a simple, free chapter website using Google Sites. To start, go to https://sites.google.com/

More information

How to make Secure Easier to use

How to make Secure  Easier to use How to make Secure Email Easier to use Simson L. Garfinkel (MIT) Jeffrey I. Schiller (MIT) Erik Nordlander (MIT) David Margrave (Amazon) Robert C. Miller (MIT) http://www.simson.net/smime-survey.html/

More information

Most Common Security Threats (cont.)

Most Common Security Threats (cont.) Most Common Security Threats (cont.) Denial of service (DoS) attack Distributed denial of service (DDoS) attack Insider attacks. Any examples? Poorly designed software What is a zero-day vulnerability?

More information

English as a Second Language Podcast ESL Podcast 314 Buying a Digital Audio (MP3) Player

English as a Second Language Podcast   ESL Podcast 314 Buying a Digital Audio (MP3) Player GLOSSARY MP3 player a device that plays digital music in MP3 files * This is a very popular MP3 player, but there are many other players that are less expensive. selection the variety of things to choose

More information

Introduction to Data Mining

Introduction to Data Mining Introduction to Data Mining Lecture #11: Link Analysis 3 Seoul National University 1 In This Lecture WebSpam: definition and method of attacks TrustRank: how to combat WebSpam HITS algorithm: another algorithm

More information

SCALE 15x (c) 2017 Ty Shipman

SCALE 15x (c) 2017 Ty Shipman Please view my linked-in page (under See more) to get a copy of this presenta

More information