forked from SSHeRun/CS-Xmind-Note
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
6 changed files
with
1,432 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,9 @@ | ||
- [第 1 章 概述](https://github.com/SSHeRun/CS-Xmind-Note/blob/master/%E8%AE%A1%E7%AE%97%E6%9C%BA%E7%BD%91%E7%BB%9C/%E7%AC%AC%201%20%E7%AB%A0%20%20%20%E6%A6%82%E8%BF%B0/%E7%AC%AC%201%20%E7%AB%A0%20%20%20%E6%A6%82%E8%BF%B0.md) | ||
- [第 2 章 物理层](https://github.com/SSHeRun/CS-Xmind-Note/blob/master/%E8%AE%A1%E7%AE%97%E6%9C%BA%E7%BD%91%E7%BB%9C/%E7%AC%AC%202%20%E7%AB%A0%20%20%E7%89%A9%E7%90%86%E5%B1%82/%E7%AC%AC%202%20%E7%AB%A0%20%20%E7%89%A9%E7%90%86%E5%B1%82.md) | ||
- [第 3 章 数据链路层](https://github.com/SSHeRun/CS-Xmind-Note/blob/master/%E8%AE%A1%E7%AE%97%E6%9C%BA%E7%BD%91%E7%BB%9C/%E7%AC%AC%203%20%E7%AB%A0%20%20%E6%95%B0%E6%8D%AE%E9%93%BE%E8%B7%AF%E5%B1%82/%E7%AC%AC%203%20%E7%AB%A0%20%20%E6%95%B0%E6%8D%AE%E9%93%BE%E8%B7%AF%E5%B1%82.md) | ||
- [第 4 章 网络层](https://github.com/SSHeRun/CS-Xmind-Note/blob/master/%E8%AE%A1%E7%AE%97%E6%9C%BA%E7%BD%91%E7%BB%9C/%E7%AC%AC%204%20%E7%AB%A0%20%20%E7%BD%91%E7%BB%9C%E5%B1%82/%E7%AC%AC%204%20%E7%AB%A0%20%20%E7%BD%91%E7%BB%9C%E5%B1%82.md) | ||
- [第 5 章 运输层](https://github.com/SSHeRun/CS-Xmind-Note/blob/master/%E8%AE%A1%E7%AE%97%E6%9C%BA%E7%BD%91%E7%BB%9C/%E7%AC%AC%205%20%E7%AB%A0%20%20%E8%BF%90%E8%BE%93%E5%B1%82/%E7%AC%AC%205%20%E7%AB%A0%20%20%E8%BF%90%E8%BE%93%E5%B1%82.md) | ||
- [第 6 章 应用层](https://github.com/SSHeRun/CS-Xmind-Note/blob/master/%E8%AE%A1%E7%AE%97%E6%9C%BA%E7%BD%91%E7%BB%9C/%E7%AC%AC%206%20%E7%AB%A0%20%20%E5%BA%94%E7%94%A8%E5%B1%82/%E7%AC%AC%206%20%E7%AB%A0%20%20%E5%BA%94%E7%94%A8%E5%B1%82.md) | ||
|
||
|
||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,72 @@ | ||
# 信息安全的目标 | ||
|
||
## 保密性 Confidentiality | ||
|
||
数据保密性:对于未授权的个体而言,信息不可用 | ||
隐私性:确保个人能控制或确定自身那些信息可以被收集、保存,这些信息可以被谁公开及向谁公开 | ||
|
||
## 完整性 Integrity | ||
|
||
信息的完整性、一致性,分为 | ||
数据完整性,未被未授权篡改或者损坏;系统完整性,系统未被非法操纵,按既定的目标运行 | ||
|
||
## 可用性 Availability | ||
|
||
服务连续性,对授权用户不能拒绝服务 | ||
|
||
## 真实性Authenticity | ||
|
||
能够验证用户是他声称的那个人 | ||
确保系统的输入来源于可信任的源 | ||
|
||
## 可追溯性Accountability | ||
|
||
实体的行为可以唯一追溯到该实体 | ||
|
||
# 安全攻击 | ||
|
||
## 被动攻击:窃听和检测 | ||
信息内容泄露攻击——隐藏信息:加密 | ||
流量分析 | ||
难察觉,关键:预防 | ||
|
||
## 主动攻击: | ||
伪装:假装别的实体。如:捕获认证信息,进行重播 | ||
重播:将获得的信息再次发送以产生非授权效果 | ||
消息修改:修改合法消息的一部分或者延迟消息,或改变消息的顺序以获得非授权效果 | ||
拒绝服务:阻止或禁止对通信设施的增产使用和管理。 | ||
|
||
# 安全服务 | ||
ITU-T X.800,安全服务目的在于利用一种或者多种安全机制进行反攻击。 | ||
|
||
## 1)认证 | ||
|
||
同等实体认证 | ||
数据源认证:电子邮件的应用 | ||
|
||
## 2)访问控制:阻止对资源的非授权使用 | ||
|
||
## 3)数据保密性:防止被动攻击 | ||
|
||
数据免于非授权泄露 | ||
流量保密性 | ||
|
||
## 4)数据完整性: | ||
保证收到的数据没有修改、插入、删除或重播 | ||
|
||
## 5)不可否认性 | ||
|
||
源不可否认 | ||
宿不可否认 | ||
|
||
## 6)可用性服务 | ||
|
||
# 安全机制 | ||
1. 加密 | ||
2. 数字签名 | ||
3. 访问控制 | ||
4. 数据完整性 | ||
5. 认证交换 | ||
6. 流量填充 | ||
7. 路由控制 | ||
8. 公证 |
Oops, something went wrong.