笔记
输入“/”快速插入内容
笔记
笔记
飞书用户90692023年6月30日修改
https://www.yuque.com/xianyuxuan/coding/netsec?view=doc_embed
1 About Class
The course contains three major teaching components; they are lectures, labs OR research practice, and tests including assignments, quizzes, and exams;
1.1 定义
基于计算机网络
共享资源通过communication(data transmission)
classify分类
•
wired
•
Wireless
According to how many hops the data should transfer from the source to the destination:
Single-hop是指数据从源节点直接传输到目标节点,中间没有其他节点的干扰。Multi-hop是指数据需要通过多个中间节点进行传输,每个节点都将数据转发到下一个节点,直到数据到达目标节点。
•
Single-hop
•
Multi-hop
According to how many paths/routes can the data follow from the source to the destination:
•
Single-path
•
Multi-path
◦
Faster
◦
可能也意味着更容易被攻击
•
Unicast:一对一
◦
需要更安全的加密解密,隔离
•
Multicast:一对组
•
Broadcast:一对所有
Communication services
confidentiality integrity availability
CIA
Three Common properties to protect is: confidentiality, integrity, and availability
•
Confidentiality | 保密性 (not leaked to unauthorized parties)
•
Integrity | 完整性 (not modified)
•
Availability | 可用性 (keep online, available when needed)
Confidentiality: Confidentiality refers to protecting information from being accessed by unauthorized parties. In other words, only the people who are authorized to do so can gain access to sensitive data.
Integrity: is the maintenance of, and the assurance of the accuracy and consistency of, data over its entire life-cycle, and is a critical aspect to the design, implementation and usage of any system which stores, processes, or retrieves data.
Availability: For any information system to serve its purpose, the information must be available when it is needed. This means the computing systems used to store and process the information, the security controls used to protect it, and the communication channels used to access it must be functioning correctly. High-availability systems aim to remain available at all times, preventing service disruptions due to power outages, hardware failures, and system upgrades. Ensuring availability also involves preventing denial-of-service attacks, such as a flood of incoming messages to the target system, essentially forcing it to shut down.
2 DDos