This presentation is the property of its rightful owner.
Sponsored Links
1 / 231

. . : . ., 1992. . . : . ., 1992. PowerPoint PPT Presentation


  • 152 Views
  • Uploaded on
  • Presentation posted in: General

????????????? ?????????. ???? 15408-02 ???????? ?????? ???????????? ?????????????? ??????????.?., 2002.??????????? ????????. ???????????? ?????????????? ??????????. ???????? ?????? ???????????? ?????????????? ??????????.?.: ?????????????? ??????, 2002.???? ? ???/??? 17799-2005. ??????????

Download Presentation

. . : . ., 1992. . . : . ., 1992.

An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -

Presentation Transcript


1992 1992

.., .., 2003-2008


1992 1992

  • . . : . ., 1992.

  • . . : . ., 1992.


1992 1992

  • 15408-02 .., 2002.

  • . . ..: , 2002.

  • / 17799-2005. .


1992 1992

  • ( );

  • , ;

  • , , , , ;

  • , ;

  • , ;


1992 1992

  • , , ;

  • , , , ;

  • , ;

  • ;


1992 1992

  • , , , , (), ..;

  • . . , .


1992 1992

:

  • ( )


1992 1992

  • ()


1992 1992

:


1992 1992

  • ()

  • BIOS


1992 1992

  • BIOS

    • (, CD-ROM, USB-)


1992 1992

  • Security (Password) :

  • MBR

  • Bios Setup (Supervisor)


1992 1992

Advanced CMOS Features


1992 1992

  • - ()

    • -

  • -

  • -


1992 1992

  • ( .. )


1992 1992

  • Min 8-10

  • QWERTY

  • IVAN, PAROL, gfhjkm

  • Aa1; + Alt+.

  • Rz23Sa5v

  • ,


1992 1992


1992 1992


1992 1992

()

100


1992 1992


1992 1992


1992 1992

  • (-)

  • Touch-memory (Dallas iButton)

  • (e-tokenUSB-, PCMCIA - )

  • -


1992 1992

  • , Windows 2000, XP

  • MCBC 3.0

  • Windows XP


1992 1992

3.0

  • , 2

  • , ,


1992 1992

(, )

(, , , )


1992 1992

-

() :


1992 1992

(--)

( () )

1.

2.

3. --

4. ,


1992 1992


1992 1992


1992 1992


1992 1992


1992 1992


1992 1992

1- ()

1- ()

2-

2-

3-

3-

:

- "", "", ""

- ""

- ( )


1992 1992


1992 1992


1992 1992

()

1

1

1

1

1

2

2

3

3

-


Intel

Windows NT/2000

OC Novell NetWare

Linux

Trusted Xenix

TrustedOracle

Intel

  • Secret Net Windows NT/2000

  • Dallas Lock Windows NT/2000

  • - Windows NT/2000 OC Novell NetWare


1992 1992

  • - ()


1992 1992

-


1992 1992

-

  • ,

  • ,

  • ,

  • , .


1992 1992

:

  • ( )


1992 1992


1992 1992

()

  • :


1992 1992

  • BIOS


1992 1992

  • Security (Password) :

  • MBR

  • Bios Setup (Supervisor)


1992 1992

Advanced CMOS Features


1992 1992


1992 1992


Wavetrend link it

Wavetrend (Link-IT)


1992 1992

  • Wavetrend (Link-IT)


1992 1992

- -( )


1992 1992

  • Wavetrend (Link-IT)

  • - - ( )


Secret net 2000

Secret Net 2000( )


1992 1992

  • Wavetrend (Link-IT)

  • - - ( )

  • Secret Net 2000 ( )


1992 1992

- -PCI


1992 1992

  • Wavetrend (Link-IT)

  • - - ( )

  • Secret Net 2000 ( )

  • - -PCI( )


Nt 2 0

NT 2.0 ( )


1992 1992

  • Wavetrend (Link-IT)

  • - - ( )

  • Secret Net 2000 ( )

  • - -PCI( )

  • NT 2.0 ( )


1992 1992

  • , ,


1992 1992


1992 1992

  • ()

  • ( .. )


1992 1992

!

.


1992 1992

  • Min 8-10

  • QWERTY

  • IVAN, PAROL, gfhjkm

  • Aa1; + Alt+.

  • Rz23Sa5v

  • ,


1992 1992

  • ( )


1992 1992


1992 1992

  • ( , , )

  • : (SmartPen) ,


1992 1992


1992 1992


1992 1992

()

100


1992 1992


1992 1992


1992 1992

- -

-


1992 1992

?


1992 1992

  • (-)

  • Touch-memory (Dallas iButton)

  • (e-tokenUSB-, PCCard , PCMCIA - )

  • -


1992 1992


1992 1992

  • :


1992 1992

BIOS

MBR

BR


1992 1992

-

BIOS

MBR

BR


1992 1992

MBR

- NT

NT

BIOS

MBR

BR


1992 1992

  • , ,


1992 1992


1992 1992


1992 1992


1992 1992


1992 1992

  • , ,


1992 1992


1992 1992

:

.


1992 1992


1992 1992


1992 1992

  • , ,


1992 1992


1992 1992


1992 1992

  • , ,


1992 1992


1992 1992

  • , ,


1992 1992


1992 1992


1992 1992

  • .


1992 1992

  • :


1992 1992

  • Secret Disk Standart(Aladdin Software Security R.D.)

  • StrongDisk Pro Windows 95/98/NT/2000( "-")

  • PGP, BestCrypt,


Secret disk standart aladdin software security r d

Secret Disk Standart(Aladdin Software Security R.D.)


Strongdisk pro windows 95 98 nt 2000

StrongDisk Pro Windows 95/98/NT/2000( "-")


1992 1992


1992 1992

+

-

+

-


1992 1992

  • () -


1992 1992

  • ( ) .


1992 1992

,

  • -


1992 1992


1992 1992

-


1992 1992

  • :

    • (swap file - win386.swp)

    • (free space)

    • (file slacks)


1992 1992

  • (wipe) -


1992 1992


Dallas lock

Dallas Lock

/, /


1992 1992

  • ViPNet,

  • , +


1992 1992

ViPNet,


1992 1992

-


1992 1992

/ , /

  • ( BIOS)

  • ,

  • ( - )

300 1540 $


1992 1992

Virtual Private Network (VPN) , , ,


1992 1992

VPN


1992 1992

, VPN

  • (, , )


1992 1992

VPN


1992 1992

VPN

IP-

IP-

, IP- (IP- )

IP-

IP-


1992 1992


1992 1992


1992 1992

  • (IP, IPX, NetBEUI)

    • PPTP (Point-to-Point Tunneling Protocol)-MS

    • L2F (Layer-2 Forwarding) Cisco Systems

    • L2TP (Layer-2 Tunneling Protocol)


1992 1992

PPTP

  • PPTP L2TP Point-to-Point Protocol (PPP)

  • PPP - , -

  • PPP, PPTP L2TP


1992 1992

PPTP

PPTP PPP- Generic Routing Encapsulation (GRE )

GRE , IPX, AppleTalk, DECnet, IP-


1992 1992


Tcp 110

TCP-, 110

Source IP

195.12.90.175

Dest IP

194.226.237.16

Dest Port

110

Source Port

1134


1992 1992

POP3


Dns 53

DNS-, 53


Http 80

HTTP-, 80


1992 1992


1992 1992

PPTP

  • Extensible Authentication Protocol (EAP),

  • Microsoft Challenge Handshake Authentication Protocol (MSCHAP) 1 2,

  • Challenge Handshake Authentication Protocol (CHAP),

  • Shiva Password Authentication Protocol (SPAP)

  • Password Authentication Protocol (PAP)

  • - MSCHAP 2 -


Microsoft pptp

Microsoft PPTP

  • :

  • :

  • /: MS-CHAP (/)


Mschap

MSCHAP

  • .

  • .

  • - Lan Manager, 21- . , 24- . . - Windows NT.

  • - , - . , .


1992 1992

PPTP

  • DES RSA Data Security, " Microsoft" (Microsoft Point-to-Point Encryption - MPPE).

  • ,

  • RC4 40- 128-


1992 1992

RC4

  • 40-

    • 64- - Lan Manager ( ) SHA.

    • 24 0xD1269E

  • 128-

    • Windows NT 64- , MS-CHAP. , , .

    • 128- SHA.


1992 1992


1992 1992


1992 1992

  • SKIP (Simple Key management for Internet Protocol IP-)

  • Sun Microsystems, 1994


1992 1992

-


1992 1992

-

  • , , .

  • :

  • Ko = gKc mod n,

  • g n - .


1992 1992

SKIP

  • I, J, Kij.

  • Kij = (Koj)Kci mod n = (gKcj)Kci mod n = gKci*Kcj mod n

  • Kij I J .

  • :

  • Kij = (Koj)Kci mod n = (Koi)Kcj mod n = Kji


1992 1992

SKIP


1992 1992

  • , , ;

  • , .


1992 1992

  • (n), Kijn

  • Kp - (MD5) Kij n.

  • n , 00 00 01.01.95

  • n 1 ,


Skip counter

SKIP counter


1992 1992

  • , AH ESP, .

IP - IP

  • SKIP - SKIP

  • AH -

  • ESP - ,

  • Inner protocol - .


1992 1992

  • Kc Kij

  • ( ) Kp

  • .


Man in the middle

man-in-the-middle

  • , i j.

  • - i "" Koj, j -, Koi.

  • , , , .


1992 1992

  • ( ).

  • (Certificate Authority ) , , .

  • ()

  • ()


1992 1992

  • , , . , , , , ..

  • , (ITU Rec. X.509)


X 509

X.509

  • X.509 ITU-T - ()

    • ;

    • ;

    • ;

    • () ;

    • , (basicConstraints, nameConstraints);

    • ( ).


X 5091

X.509


X 5092

X.509


X 5093

X.509


Pki public key infrastructure

PKI (public key infrastructure) ()

  • PKI ,

:

  • ,


1992 1992

  • ,


1992 1992

, , ,

,


1992 1992

, SKIP

  • ,

    • .

    • .


1992 1992

, SKIP

  • (replay)

    • SKIP- , , .

  • /

    • , .


1992 1992

, SKIP

    • .

  • Man-in-the-middle

    • .

    • .


1992 1992

, SKIP

    • :

      • ( 256 );

      • 5-10 IP ;

      • .


1992 1992

, SKIP

  • DoS , IP. .


1992 1992

  • " "

  • , , . (, Web-) VPN-

  • ,


1992 1992

  • IPSec

  • ( IKE - Internet Key Exchange)

  • ( AH - Authentication Header)

  • (ESP - Encapsulating Security Payload)


Ipsec

IPSec


1992 1992

(AH)

  • ,

  • MD5:

    • AH -

    • .


1992 1992

ESP

  • ESP


1992 1992

IKE

  • IKE


1992 1992

IKE

  • - -


1992 1992

  • ,

    • 60%


1992 1992


1992 1992

VPN

  • Intranet VPN

  • Remote Access VPN

  • Client/Server VPN

  • Extranet VPN


1992 1992

VPN

  • Intranet VPN

    • ,

  • Remote Access VPN

  • Client/Server VPN

  • Extranet VPN


1992 1992

VPN

  • Intranet VPN

  • Remote Access VPN

    • , IP-

  • Client/Server VPN

  • Extranet VPN


1992 1992

VPN

  • Intranet VPN

  • Remote Access VPN

  • Client/Server VPN

    • ( ) ,

  • Extranet VPN


1992 1992

VPN

  • Intranet VPN

  • Remote Access VPN

  • Client/Server VPN

  • Extranet VPN

    • , " ", ,


1992 1992

  • VPN ();

  • VPN ;

  • VPN ();

  • VPN


1992 1992

VPN

  • Windows NT/2000/XP ( TP IPSec)

  • -


1992 1992

VPN

  • Cisco Systems

  • -

  • DES


1992 1992

VPN

  • CheckPoint Software Technologies CheckPoint Firewall-1 /VPN-1

    • IPSec, DES, CAST, IDEA, FWZ

  • -IP ,

  • DataGuard -,

  • VPN

    • SKIP


1992 1992

VPN

  • VPN

  • -


1992 1992

VPN

  • " IP-" ()

    • - (), SKIP


1992 1992

VPN

  • "" 2.5

    • SKIP1


1992 1992

VPN

  • ViPNet

IP-LIR ViPNet - IP - , , .

IP

Telephony

Application Layer

FTP

SMTP

Secure Sockets Layer

S S L

Transport Layer

TCP

UDP

IP (Internet Protocol)

Network Layer

ViPNet Isolation Layer

(IP-LIR driver)

Physical & Data Link Layers


1992 1992


1992 1992


1992 1992

  • SSL (Secure Socket Layer)

    • Netscape Communications, 3.0

  • TLS (Transport Layer Secur)

    • 1999., 1.0

  • , HTTP ( HTTPS)


1992 1992

SSL

  • ( )

    • -


1992 1992

SSL-

  • TCP-, 443


1992 1992

SSL-

  • TCP-, 443

  • Client-Hello

    • SSL

    • Challenge_Data


1992 1992

SSL-

  • TCP-, 443

  • Client-Hello

  • Server-Hello

    • SSL

    • Connection_id

    • ()

    • ( )


1992 1992

SSL-

  • TCP-, 443

  • Client-Hello

  • Server-Hello

  • Client_Master_Key

    • ,


1992 1992

SSL-

  • TCP-, 443

  • Client-Hello

  • Server-Hello

  • Client_Master_Key

  • Server-Verify

    • Challenge_Data,


1992 1992

SSL-

  • TCP-, 443

  • Client-Hello

  • Server-Hello

  • Client_Master_Key

  • Server-Verify

  • Client-Finished

    • Connection_id,


1992 1992

SSL-

  • TCP-, 443

  • Client-Hello

  • Server-Hello

  • Client_Master_Key

  • Server-Verify

  • Client-Finished

  • ,


1992 1992


1992 1992


1992 1992

  • S-HTTP Secure HTTP


1992 1992

HTTP

  • S-HTTP :

    • ( )

      • : Secure * Secure-HTTP/1.1

      • : Secure-HTTP/1.1 200

    • RFC-822


  • Login