Privacy in the Internet Engineering Task Force. Alissa Cooper
|
|
|
- Brook Green
- 6 years ago
- Views:
Transcription
1 Privacy in the Internet Engineering Task Force Alissa Cooper
2 What the IETF does HTTP / DNS TCP / UDP IP 2"
3 What the IETF does HTTP / DNS TCP / UDP IP 3"
4 What the IETF does HTTP / DNS TCP / UDP IP 4"
5 Historic areas of focus Con!dentiality Data integrity Authentication 5"
6 Historic areas of focus Con!dentiality Data integrity Authentication Communications privacy threats mitigated: surveillance, interception, spoo!ng, etc. Information privacy threats not so much: identi!cation, correlation, disclosure, secondary use, etc. 6"
7 Early years Case, Fedor, Schoffstall, & Davin [Page 34]! RFC 1157 SNMP May 1990!! Security Considerations! Security issues are not discussed in this memo.!
8 Some security history! 1993: Every spec must include security considerations (RFC 1543). But no guidance about what to include.! 2003: Detailed guidance and threat model published (RFC 3552).! Supportive IETF culture evolved.! Security Directorate (SecDir) reviews every spec before publication.! Security advisors can be assigned to working groups.! Security Area Advisory Group (SAAG) meetings and security tutorials at IETF meetings. Security Area Directors, 1980s-2008
9 Policy history! 1996: Statement on Cryptographic Technology (RFC 1984)! encourage policies that allow ready access to uniform strong cryptographic technology for all Internet users in all countries! 2000: IETF Policy on Wiretapping (RFC 2804)! The IETF has decided not to consider requirements for wiretapping as part of the process for creating and maintaining IETF standards.
10 Some information privacy history! Until recently: Ad hoc treatment! IPv6 Privacy Addresses (RFC 3041/4941)! SIP privacy extensions (RFC 3323/3325)! 2010: IAB Privacy Program formed! Workshop, plenary talks, liaising with other standards groups! 2013: Privacy Considerations for Internet Protocols (RFC 6973)
11 Privacy Considerations for Internet Protocols! Terminology! Threat Model! Combined Security-Privacy Threats: surveillance, stored data compromise, intrusion, misattribution! Privacy-Speci!c Threats: correlation, identi!cation, secondary use, disclosure, exclusion! Threat Mitigations! Data minimization: anonymity, pseudonymity, identity con!dentiality! User participation! Security! Guidelines! Identi!ers, persistence,!ngerprinting, correlation, retention, user controls, defaults, etc.
12 Some information privacy history! Until recently: Ad hoc treatment! IPv6 Privacy Addresses (RFC 3041/4941)! SIP privacy extensions (RFC 3323/3325)! 2010: IAB Privacy Program formed! Workshop, plenary talks, liaising with other standards groups! 2013: Privacy Considerations for Internet Protocols (RFC 6973)! Supportive culture harder to cultivate for information privacy, but we ve been trying.! Issues and expertise more di"use! Guidance inherently less concrete! Really hard problems: tra#c analysis,!ngerprinting,! Something else happened in summer 2013
13
14
15
16
17
18 Speaking of supportive culture! RFC 7258: Pervasive monitoring is an attack! RFC 7435 on Opportunistic Security: use encryption whenever possible even if not perfect.! IAB Statement on Con!dentiality: encrypt everything!! New work! Best choice cryptographic ciphers and modes! Encryption for DNS requests! Encryption for TCP! Increased use of Crypto Forum Research Group (CFRG)! Need crypto algorithms everyone can trust.! Refactored IAB Privacy and Security Program! Pervasive monitoring threat model
19 References! A Privacy Mechanism for the Session Initiation Protocol (SIP) (RFC 3323). Guidelines for Writing RFC Text on Security Considerations (RFC 3552). IAB and IESG Statement on Cryptographic Technology and the Internet (RFC 1984). IETF Policy on Wiretapping (RFC 2804). Instructions to RFC Authors (RFC 1543). Opportunistic Security: Some Protection Most of the Time (RFC 7435). Pervasive Monitoring Is an Attack (RFC 7258). Privacy Considerations for Internet Protocols (RFC 6973). Privacy Extensions for Stateless Address Autocon!guration in IPv6 (RFC 3041). Privacy Extensions for Stateless Address Autocon!guration in IPv6 (RFC 4941). Private Extensions to the Session Initiation Protocol (SIP) for Asserted Identity within Trusted Networks (RFC 3325). Simple Network Management Protocol (RFC 1157).
20 Thank you
What s Happening at the IETF & IRTF? Human Rights Protocol Considerations and how to get involved
18 September 2017 What s Happening at the IETF & IRTF? Human Rights Protocol Considerations and how to get involved Salam Yamout Middle East Bureau Director meynell@isoc.org Presentation title Client name
Encryption Everywhere
Encryption Everywhere Adapting to a New Reality that favors Security and Privacy Kathleen Moriarty EMC Office of CTO IETF Security Area Director (Speaking for myself, not the IETF) 1 Agenda Protocol and
Pervasive Monitoring. June /16
Pervasive Monitoring stephen.farrell@cs.tcd.ie June 2014 stephen.farrell@cs.tcd.ie 1/16 It's an attack The actions of NSA and their partners (nation-state or corporate, coerced or not) are a multi-faceted
Internet Governance and Internet Standardization in the Post-Snowden Era. Alissa Cooper IETF Chair / Cisco Fellow November 2017
Internet Governance and Internet Standardization in the Post-Snowden Era Alissa Cooper IETF Chair / Cisco Fellow November 2017 A bit about me Stanford CS Class of 03, MS 05 Summer/grad research with John
Internet Architecture Board (IAB) Request for Comments: B. Aboba Skype J. Peterson NeuStar, Inc. J. Morris
Internet Architecture Board (IAB) Request for Comments: 6973 Category: Informational ISSN: 2070-1721 A. Cooper CDT H. Tschofenig Nokia Siemens Networks B. Aboba Skype J. Peterson NeuStar, Inc. J. Morris
Internet Engineering Task Force (IETF) Category: Best Current Practice ISSN: May 2014
Internet Engineering Task Force (IETF) S. Farrell Request for Comments: 7258 Trinity College Dublin BCP: 188 H. Tschofenig Category: Best Current Practice ARM Ltd. ISSN: 2070-1721 May 2014 Abstract Pervasive
The Coming Design Wars
The Coming Design Wars Deirdre K. Mulligan Kenneth A. Bamberger 4th Annual BCLT Privacy Law Forum Palo Alto, CA March 13, 2015 Governance of the Internet in Flux Shifts across three planes Objectives Actors
Post quantum Crypto Standardisation in IETF/IRTF. Kenny Paterson Information Security
Post quantum Crypto Standardisation in IETF/IRTF Kenny Paterson Information Security Group @kennyog; www.isg.rhul.ac.uk/~kp Overview IETF/IRTF and the role of CFRG CFRG work on post quantum crypto CFRG
Proposal for an IEEE 802 EC Privacy Recommendation Study Group. 18 th of July 2014
1 Proposal for an IEEE 802 EC Privacy Recommendation Study Group 18 th of July 2014 2 July 14 th Internet Privacy Tutorial Title: Pervasive Surveillance of the Internet Designing Privacy into Internet
Hands-On TCP/IP Networking
Hands-On Course Description In this Hands-On TCP/IP course, the student will work on a live TCP/IP network, reinforcing the discussed subject material. TCP/IP is the communications protocol suite on which
Reflections on Security Options for the Real-time Transport Protocol Framework. Colin Perkins
Reflections on Security Options for the Real-time Transport Protocol Framework Colin Perkins Real-time Transport Protocol Framework RTP: A Transport Protocol for Real-Time Applications RFCs 3550 and 3551
Patient Information Security
Patient Information Security An overview of practice and procedure UK CAB Meeting 13th April 2012 Nathan Lea Senior Research Associate CHIME, UCL Overview - Questions that have been asked What happens
Lecture 12 Page 1. Lecture 12 Page 3
IPsec Network Security: IPsec CS 239 Computer Software February 26, 2003 Until recently, the IP protocol had no standards for how to apply security Encryption and authentication layered on top Or provided
Operators and the Internet Engineering Task Force (IETF)
Operators and the Internet Engineering Task Force (IETF) Jari Arkko, Ignas Bagdonas, Warren Kumari, Jeff Tantsura, and Brian Trammell RIPE 76 Marseille, 15 May 2018 V0.04 IETF Mission The mission of the
Lecture 13 Page 1. Lecture 13 Page 3
IPsec Network Security: IPsec CS 239 Computer Software March 2, 2005 Until recently, the IP protocol had no standards for how to apply security Encryption and authentication layered on top Or provided
WAP Security. Helsinki University of Technology S Security of Communication Protocols
WAP Security Helsinki University of Technology S-38.153 Security of Communication Protocols Mikko.Kerava@iki.fi 15.4.2003 Contents 1. Introduction to WAP 2. Wireless Transport Layer Security 3. Other WAP
IPv6 Security Vendor Point of View. Eric Vyncke, Distinguished Engineer Cisco, CTO/Consulting Engineering
IPv6 Security Vendor Point of View Eric Vyncke, evyncke@cisco.com Distinguished Engineer Cisco, CTO/Consulting Engineering 1 ARP Spoofing is now NDP Spoofing: Threats ARP is replaced by Neighbor Discovery
The Danger of the New Internet Choke Points. Authored by: Andrei Robachevsky, Christine Runnegar, Karen O Donoghue and Mat Ford
The Danger of the New Internet Choke Points Authored by: Andrei Robachevsky, Christine Runnegar, Karen O Donoghue and Mat Ford FEBRUARY 2014 Introduction The ongoing disclosures of pervasive surveillance
Computer Security. 10r. Recitation assignment & concept review. Paul Krzyzanowski. Rutgers University. Spring 2018
Computer Security 10r. Recitation assignment & concept review Paul Krzyzanowski Rutgers University Spring 2018 April 3, 2018 CS 419 2018 Paul Krzyzanowski 1 1. What is a necessary condition for perfect
WLAN Security Overview
WLAN Security Overview This Chapter Explore the basic terminology of WLAN security. Discuss the organizations that create the standards, certifications, and recommendations that help guide and direct wireless
TCP/IP Networking. Training Details. About Training. About Training. What You'll Learn. Training Time : 9 Hours. Capacity : 12
TCP/IP Networking Training Details Training Time : 9 Hours Capacity : 12 Prerequisites : There are no prerequisites for this course. About Training About Training TCP/IP is the globally accepted group
Call for submissions by the UN Special Rapporteur on Freedom of Expression
1 November 2016 Call for submissions by the UN Special Rapporteur on Freedom of Expression Study on freedom of expression and the telecommunications and internet access sector Internet Society submission
Configuring OpenVPN on pfsense
Configuring OpenVPN on pfsense Configuring OpenVPN on pfsense Posted by Glenn on Dec 29, 2013 in Networking 0 comments In this article I will go through the configuration of OpenVPN on the pfsense platform.
Network Working Group Request for Comments: 1984 Category: Informational August 1996
Network Working Group IAB Request for Comments: 1984 IESG Category: Informational August 1996 IAB and IESG Statement on Cryptographic Technology and the Internet Status of This Memo This memo provides
Network Security: Anonymity. Tuomas Aura T Network security Aalto University, Nov-Dec 2010
Network Security: Anonymity Tuomas Aura T-110.5240 Network security Aalto University, Nov-Dec 2010 Outline 1. Anonymity and privacy 2. High-latency anonymous routing 3. Low-latency anonymous routing Tor
Introduction to the DANE Protocol And Updates From IETF 88
Introduction to the DANE Protocol And Updates From IETF 88 Dan York, Senior Content Strategist Internet Society ICANN 48, Buenos Aires, Argentina November 20, 2013 A Quick Overview of DANE www.internetsociety.org
Storage Security Standards: What Are They and What Do they Mean to Storage Consumers? Andrew Nielsen CISSP, CISA, ISSAP, ISSMP SNIA Security TWG
Storage Security Standards: What Are They and What Do they Mean to Storage Consumers? Andrew Nielsen CISSP, CISA, ISSAP, ISSMP SNIA Security TWG Table of Contents Introduction... 1 Storage Management and
P2PSIP Draft Charter. Dean Willis March 2006
P2PSIP Draft Charter Dean Willis March 2006 Purpose The purpose of the Peer-to-Peer (P2P) Session Initiation Protocol working group (P2PSIP WG) is to develop guidelines and mechanisms for the use of the
Network Defenses 21 JANUARY KAMI VANIEA 1
Network Defenses KAMI VANIEA 21 JANUARY KAMI VANIEA 1 Similar statements are found in most content hosting website privacy policies. What is it about how the internet works that makes this statement necessary
Application Firewalls
Application Moving Up the Stack Advantages Disadvantages Example: Protecting Email Email Threats Inbound Email Different Sublayers Combining Firewall Types Firewalling Email Enforcement Application Distributed
The DNS. Application Proxies. Circuit Gateways. Personal and Distributed Firewalls The Problems with Firewalls
Network Security - ISA 656 Application Angelos Stavrou August 20, 2008 Application Distributed Why move up the stack? Apart from the limitations of packet filters discussed last time, firewalls are inherently
Internet-Draft December 11, 2013 Intended status: Standards Track Expires: June 14, 2014
Network Working Group M. Nottingham Internet-Draft December 11, 2013 Intended status: Standards Track Expires: June 14, 2014 Abstract Opportunistic Encryption for HTTP URIs draft-nottingham-http2-encryption-02
3GPP security. Valtteri Niemi 3GPP SA3 (Security) chairman Nokia
3GPP security Valtteri Niemi 3GPP SA3 (Security) chairman Nokia 1 Some history and background 2 Some history 1/2 SA3 took over the responsibility of specifications created by ETSI SMG10, e.g. TS 43.020
NIST SP : Guidelines for the Secure Deployment of IPv6
NIST SP 800-119: Guidelines for the Secure Deployment of IPv6 Sheila Frankel Computer Security Division NIST sheila.frankel@nist.gov US Government IPv6 Directives: Office of Management and Budget (OMB)
Chapter 4: Securing TCP connections
Managing and Securing Computer Networks Guy Leduc Chapter 5: Securing TCP connections Computer Networking: A Top Down Approach, 6 th edition. Jim Kurose, Keith Ross Addison-Wesley, March 2012. (section
ENEE 459-C Computer Security. Security protocols
ENEE 459-C Computer Security Security protocols Key Agreement: Diffie-Hellman Protocol Key agreement protocol, both A and B contribute to the key Setup: p prime and g generator of Z p *, p and g public.
SIP and VoIP What is SIP? What s a Control Channel? History of Signaling Channels
Network Security - ISA 656 Voice Over IP (VoIP) Security Simple SIP ing Alice s Bob Session Initiation Protocol Control channel for Voice over IP (Other control channel protocols exist, notably H.323 and
Security+ SY0-501 Study Guide Table of Contents
Security+ SY0-501 Study Guide Table of Contents Course Introduction Table of Contents About This Course About CompTIA Certifications Module 1 / Threats, Attacks, and Vulnerabilities Module 1 / Unit 1 Indicators
Bringing New W ork to the IETF. Thomas Narten IETF 67 November 5, 2006
Bringing New W ork to the IETF Thomas Narten narten@us.ibm.com IETF 67 November 5, 2006 Goals of this Presentation How to bring work to the IETF W hat kind of work to bring to the IETF W hat is the formal
Rethinking Authentication. Steven M. Bellovin
Rethinking Authentication Steven M. https://www.cs.columbia.edu/~smb Why? I don t think we understand the real security issues with authentication Our defenses are ad hoc I regard this as a step towards
ENEE 459-C Computer Security. Security protocols (continued)
ENEE 459-C Computer Security Security protocols (continued) Key Agreement: Diffie-Hellman Protocol Key agreement protocol, both A and B contribute to the key Setup: p prime and g generator of Z p *, p
INTERNATIONAL TELECOMMUNICATION UNION
INTERNATIONAL TELECOMMUNICATION UNION TELECOMMUNICATION STANDARDIZATION SECTOR STUDY PERIOD 2005-2008 English only Original: English Question(s): 5/17 Geneva, 15-19 September 2008 Ref. : TD 4133Rev1 Source:
IPM Secure Hardening Guidelines
IPM Secure Hardening Guidelines Introduction Due to rapidly increasing Cyber Threats and cyber warfare on Industrial Control System Devices and applications, Eaton recommends following best practices for
Security Engineering. Lecture 16 Network Security Fabio Massacci (with the courtesy of W. Stallings)
Security Lecture 16 Network Security Fabio Massacci (with the courtesy of W. Stallings) Lecture Outline Network Attacks Attive Attacks Passive Attacks TCP Attacks Contermeasures IPSec SSL/TLS Firewalls
Security Digital Certificate Manager
System i Security Digital Certificate Manager Version 6 Release 1 System i Security Digital Certificate Manager Version 6 Release 1 Note Before using this information and the product it supports, be sure
Department of Computer Science. Burapha University 6 SIP (I)
Burapha University ก Department of Computer Science 6 SIP (I) Functionalities of SIP Network elements that might be used in the SIP network Structure of Request and Response SIP messages Other important
Good Fences Make Good Neighbors: Rethinking Your Cloud Selection Strategy
Good Fences Make Good Neighbors: Rethinking Your Cloud Selection Strategy SESSION ID: CSV-W01 Bryan D. Payne Director of Security Research Nebula @bdpsecurity Cloud Security Today Cloud has lots of momentum
Wireless Network Security Spring 2014
Wireless Network Security 14-814 Spring 2014 Patrick Tague Class #16 Network Privacy & Anonymity 2014 Patrick Tague 1 Network Privacy Issues Network layer interactions in wireless networks often expose
IT Privacy Certification Outline of the Body of Knowledge (BOK) for the Certified Information Privacy Technologist (CIPT)
Page 1 of 6 IT Privacy Certification Outline of the Body of Knowledge (BOK) for the Certified Information Privacy Technologist (CIPT) I. Understanding the need for privacy in the IT environment A. Evolving
Table of Contents. Blog and Personal Web Site Policy
Table of Contents Blog and Personal Web Sites Policy... 2 Policy... 2 Rights to content... 3 Option for More Restrictive License Terms... 3 Attribution... 4 Guidelines... 4 Personal Website and Blog Guidelines
Cryptographic Protocols 1
Cryptographic Protocols 1 Luke Anderson luke@lukeanderson.com.au 5 th May 2017 University Of Sydney Overview 1. Crypto-Bulletin 2. Problem with Diffie-Hellman 2.1 Session Hijacking 2.2 Encrypted Key Exchange
The World Wide Web is widely used by businesses, government agencies, and many individuals. But the Internet and the Web are extremely vulnerable to
1 The World Wide Web is widely used by businesses, government agencies, and many individuals. But the Internet and the Web are extremely vulnerable to compromises of various sorts, with a range of threats
Chapter 8 roadmap. Network Security
Chapter 8 roadmap 8.1 What is network security? 8.2 Principles of cryptography 8.3 Message integrity 8.4 Securing e-mail 8.5 Securing TCP connections: SSL 8.6 Network layer security: IPsec 8.7 Securing
Network Security - ISA 656 IPsec IPsec Key Management (IKE)
Network Security - ISA 656 IPsec IPsec (IKE) Angelos Stavrou September 28, 2008 What is IPsec, and Why? What is IPsec, and Why? History IPsec Structure Packet Layout Header (AH) AH Layout Encapsulating
CDT POSITION PAPER ON THE TREATMENT OF PSEUDONYMOUS DATA UNDER THE PROPOSED DATA PROTECTION REGULATION
CDT POSITION PAPER ON THE TREATMENT OF PSEUDONYMOUS DATA UNDER THE PROPOSED DATA PROTECTION REGULATION May 23, 2013 In recent months, the debate around the proposed European Data Protection Regulation
e180 Privacy Policy July 2018
e180 Privacy Policy July 2018 We are e180, the creators of Braindate. We care deeply about protecting your personal information, so we ve outlined everything you need to know about it here. Last modified:
Africa IETF initiative: The Role for NRENs
Africa IETF initiative: The Role for NRENs UbuntuNETConnect 2016 Entebbe, Uganda Kevin Chege ISOC chege@isoc.org Internet Society 1992 2016 Presentation title Client name 1 What is the Internet Society?
CS Paul Krzyzanowski
Computer Security 17. Tor & Anonymous Connectivity Anonymous Connectivity Paul Krzyzanowski Rutgers University Spring 2018 1 2 Anonymity on the Internet Often considered bad Only criminals need to hide
Hosts have the top level of webinar control and can grant and revoke various privileges for participants.
Introduction ClickMeeting is an easy-to-use SaaS webinar platform used worldwide. It was built using highend technology, with data security as the highest priority. The platform meets stringent security
Introduction to Security
to Security CSS322: Security and Cryptography Sirindhorn International Institute of Technology Thammasat University Prepared by Steven Gordon on 31 October 2012 CSS322Y12S2L01, Steve/Courses/2012/s2/css322/lectures/introduction.tex,
0x1A Great Papers in Computer Security
CS 380S 0x1A Great Papers in Computer Security Vitaly Shmatikov http://www.cs.utexas.edu/~shmat/courses/cs380s/ Privacy on Public Networks Internet is designed as a public network Wi-Fi access points,
Layered Architecture
1 Layered Architecture Required reading: Kurose 1.7 CSE 4213, Fall 2006 Instructor: N. Vlajic Protocols and Standards 2 Entity any device capable of sending and receiving information over the Internet
Network Security: Anonymity. Tuomas Aura T Network security Aalto University, Nov-Dec 2012
Network Security: Anonymity Tuomas Aura T-110.5241 Network security Aalto University, Nov-Dec 2012 Outline 1. Anonymity and privacy 2. High-latency anonymous routing 3. Low-latency anonymous routing Tor
Securing IoT applications with Mbed TLS Hannes Tschofenig Arm Limited
Securing IoT applications with Mbed TLS Hannes Tschofenig Agenda Theory Threats Security services Hands-on with Arm Keil MDK Pre-shared secret-based authentication (covered in webinar #1) TLS Protocol
Chapter 1 Introduction
Sungkyunkwan University Chapter 1 Introduction Prepared by C. Rajesh and H. Choo 2017-Fall Computer Networks Copyright 2000-2014 2000-2017 Networking Laboratory 1/52 Chapter 1 Outline 1.1 Overview of the
INFORMATION SUPPLEMENT. Use of SSL/Early TLS for POS POI Terminal Connections. Date: June 2018 Author: PCI Security Standards Council
Use of SSL/Early TLS for POS POI Terminal Connections Date: Author: PCI Security Standards Council Table of Contents Introduction...1 Executive Summary...1 What is the risk?...1 What is meant by Early
An Operational Perspective on BGP Security. Geoff Huston February 2005
An Operational Perspective on BGP Security Geoff Huston February 2005 Disclaimer This is not a description of the approach taken by any particular service provider in securing their network. It is intended
Computer Security. 15. Tor & Anonymous Connectivity. Paul Krzyzanowski. Rutgers University. Spring 2017
Computer Security 15. Tor & Anonymous Connectivity Paul Krzyzanowski Rutgers University Spring 2017 April 24, 2017 CS 419 2017 Paul Krzyzanowski 1 Private Browsing Browsers offer a "private" browsing modes
Private Browsing. Computer Security. Is private browsing private? Goal. Tor & The Tor Browser. History. Browsers offer a "private" browsing modes
Private Browsing Computer Security 16. Tor & Anonymous Connectivity Paul Krzyzanowski Rutgers University Spring 2017 Browsers offer a "private" browsing modes Apple Private Browsing, Mozilla Private Browsing,
What s new in TLS 1.3 (and OpenSSL as a result) Rich Salz
What s new in TLS 1.3 (and OpenSSL as a result) Rich Salz Timeline TLS 1.0 RFC 2246 January 1999 TLS 1.1 RFC 4346 April 2006 TLS 1.2 RFC 5246 August 2008 a whole bunch of RFC s for new crypto, secure renegotiation,
Transport Service (TAPS) Working Group
Transport Service (TAPS) Working Group Aaron Falk aaron.falk@gmail.com 7/22/15 TAPS - IETF-93 - Prague 1 Note well Any submission to the IETF intended by the Contributor for publication as all or part
Secure management using HP Network Node Manager SPI for SNMPv3
IT Operations Network Management Secure management using HP Network Node Manager SPI for SNMPv3 2007 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without
Privacy Enabled Identity Management for C2 Systems
Privacy Enabled Identity Management for C2 Systems Gerald Beuchelt gbeuchelt@mitre.org gerald.beuchelt.ctr@hanscom.af.mil Identity Management Identity Management require technology and process Digital
DNS Privacy - Implementation and Deployment Status
DNS Privacy - Implementation and Deployment Status Sara Dickinson Sinodun Allison Mankin Salesforce IEPG@IETF96 Berlin, July 2016 DNS Privacy - Background RFC 7558 - Pervasive Monitoring is an Attack DPRIVE
Security Aspects of Trust Services Providers
Security Aspects of Trust Services Providers Please replace background with image European Union Agency for Network and Information Security 24 th September 2013 www.enisa.europa.eu Today s agenda 09:30-10:00
M. Rose Dover Beach Consulting, Inc. February 1993
Network Working Group Request for Comments: 1414 M. St. Johns US Department of Defense M. Rose Dover Beach Consulting, Inc. February 1993 Identification MIB Status of this Memo This RFC specifies an IAB
TECHNICAL RESEARCH REPORT
TECHNICAL RESEARCH REPORT A Scalable Extension of Group Key Management Protocol by R. Poovendran, S. Ahmed, S. Corson, J. Baras CSHCN T.R. 98-5 (ISR T.R. 98-14) The Center for Satellite and Hybrid Communication
Multi-Layered Security Framework for Metro-Scale Wi-Fi Networks
Multi-Layered Security Framework for Metro-Scale Wi-Fi Networks A Security Whitepaper January, 2004 Photo courtesy of NASA Image exchange. Image use in no way implies endorsement by NASA of any of the
Internet Engineering Task Force (IETF) Category: Standards Track March 2011 ISSN:
Internet Engineering Task Force (IETF) D. McGrew Request for Comments: 6188 Cisco Systems, Inc. Category: Standards Track March 2011 ISSN: 2070-1721 Abstract The Use of AES-192 and AES-256 in Secure RTP
IETF Working Groups. https://datatracker.ietf.org/wg/ 127 Working Groups in:
IETF Working Groups https://datatracker.ietf.org/wg/ 127 Working Groups in: Applications Transport Internet Operations and Management Real-time Applications and Infrastructure Routing Security tcpinc,
2 Application Support via Proxies Onion Routing can be used with applications that are proxy-aware, as well as several non-proxy-aware applications, w
Onion Routing for Anonymous and Private Internet Connections David Goldschlag Michael Reed y Paul Syverson y January 28, 1999 1 Introduction Preserving privacy means not only hiding the content of messages,
CSC 4900 Computer Networks: Security Protocols (2)
CSC 4900 Computer Networks: Security Protocols (2) Professor Henry Carter Fall 2017 Chapter 8 roadmap 8.1 What is network security? 8.2 Principles of cryptography 8.3 Message Integrity 8.4 End point Authentication
DNS Security DNSSEC. *http://compsec101.antibo zo.net/papers/dnssec/dnss ec.html. IT352 Network Security Najwa AlGhamdi
DNS Security DNSSEC *http://compsec101.antibo zo.net/papers/dnssec/dnss ec.html 1 IT352 Network Security Najwa AlGhamdi Introduction DNSSEC is a security extensions to the DNS protocol in response to the
The Independent Stream an Introduction
The Independent Stream an Introduction Nevil Brownlee Independent Submissions Editor IETF 98, 26 March 2017 All about the Independent Stream (InSt) History The InSt and its Editor (ISE) Relevant RFCs:
Computer Networks II, advanced networking
Computer Networks II, advanced networking AAA II What is AAA Harri Toivanen 11.11.2004 AAA What today? Authentication methods Weak Authentication Radius Diameter Authentication methods Authentication methods
Distributed Systems. 25. Authentication Paul Krzyzanowski. Rutgers University. Fall 2018
Distributed Systems 25. Authentication Paul Krzyzanowski Rutgers University Fall 2018 2018 Paul Krzyzanowski 1 Authentication For a user (or process): Establish & verify identity Then decide whether to
Overview of Web Application Security and Setup
Overview of Web Application Security and Setup Section Overview Where to get assistance Assignment #1 Infrastructure Setup Web Security Overview Web Application Evaluation & Testing Application Security
Setup PureVPN Windows Software
Setup PureVPN Windows Software Here s everything you need to know about PureVPN s Windows software. You can follow this page to learn everything about PureVPN Windows software. Things to consider: Before
CITEL s s Focus on Cybersecurity and Critical Infrastructure Protection CITEL
CITEL s s Focus on Cybersecurity and Critical Infrastructure Protection Wayne Zeuch CITEL (Alcatel-Lucent) ITU Regional Workshop on Frameworks for Cybersecurity and CIIP Buenos Aires, Argentina October
Enumerating Privacy Leaks in DNS Data Collected above the Recursive
Enumerating Privacy Leaks in DNS Data Collected above the Recursive Basileal Imana 1, Aleksandra Korolova 1 and John Heidemann 2 1 University of Southern California 2 USC/Information Science Institute
Network Security: Anonymity. Tuomas Aura T Network security Aalto University, autumn 2015
Network Security: Anonymity Tuomas Aura T-110.5241 Network security Aalto University, autumn 2015 Outline 1. Anonymity and privacy 2. High-latency anonymous routing 3. Low-latency anonymous routing Tor
Network Working Group. Updates: 3463, 4468, 4954 June 2008 Category: Best Current Practice. A Registry for SMTP Enhanced Mail System Status Codes
Network Working Group T. Hansen Request for Comments: 5248 AT&T Laboratories BCP: 138 J. Klensin Updates: 3463, 4468, 4954 June 2008 Category: Best Current Practice A Registry for SMTP Enhanced Mail System
IT Privacy Certification Outline of the Body of Knowledge (BOK) for the Certified Information Privacy Technologist (CIPT)
Page 1 of 6 IT Privacy Certification Outline of the Body of Knowledge (BOK) for the Certified Information Privacy Technologist (CIPT) I. Understanding the need for privacy in the IT environment A. Evolving
CS November 2018
Authentication Distributed Systems 25. Authentication For a user (or process): Establish & verify identity Then decide whether to allow access to resources (= authorization) Paul Krzyzanowski Rutgers University
Internet Engineering Task Force (IETF) Request for Comments: ISSN: July 2011
Internet Engineering Task Force (IETF) Request for Comments: 6315 Category: Informational ISSN: 2070-1721 E. Guy CleverSpoke K. Darilion nic.at July 2011 IANA Registration for Enumservice iax Abstract
The Tor Network. Cryptography 2, Part 2, Lecture 6. Ruben Niederhagen. June 16th, / department of mathematics and computer science
The Tor Network Cryptography 2, Part 2, Lecture 6 Ruben Niederhagen June 16th, 2014 Tor Network Introduction 2/33 Classic goals of cryptography: confidentiality, data integrity, authentication, and non-repudiation.
Session initiation protocol & TLS
POSH bof Session initiation protocol & TLS Olle E. Johansson, IETF 87 Berlin, July 2013 oej@edvina.net * @oej v 1.42 Executive summary: SIP security filosophy: Let s put a nice and soft fluffy TLS wrapper
Internet Engineering Task Force (IETF) Request for Comments: 8065 Category: Informational February 2017 ISSN:
Internet Engineering Task Force (IETF) D. Thaler Request for Comments: 8065 Microsoft Category: Informational February 2017 ISSN: 2070-1721 Abstract Privacy Considerations for IPv6 Adaptation-Layer Mechanisms
CPSC 467b: Cryptography and Computer Security
CPSC 467b: Cryptography and Computer Security Michael J. Fischer Lecture 24 April 16, 2012 CPSC 467b, Lecture 24 1/33 Kerberos Secure Shell (SSH) Transport Layer Security (TLS) Digital Rights Management
NIST Cryptographic Toolkit
Cryptographic Toolkit Elaine Barker ebarker@nist.gov National InformationSystem Security Conference October 16, 2000 Toolkit Purpose The Cryptographic Toolkit will provide Federal agencies, and others