Bi gi ng Qu n tr CSDL v PMUD

Bi gi ng mn:

An ton v b o m t thng tin doanh nghi p

B mn CNTT TMT Khoa Tin h c thng m i

9/22/2010

B mn CNTT - TMT

N i dung chng V NG D NG CNG NGH TRONG AN TON v B O M T

5.1. S d ng ch k i n t
5.1.1. Khi ni m v c ch ho t ng 5.1.2. Phn lo i v u nh c i m c a ch k i n t 5.1.5. ng d ng trong ch ng th c i n t

5.2. S d ng cc chng trnh ph n m m khc

5.2.1. Cc trnh di t virus 5.2.2. V i m en v tm l h ng 5.2.3. S d ng Network Security Platform

9/22/2010

B mn CNTT - TMT

Nguy n Th H i - B mn CNTT TMT

Bi gi ng Qu n tr CSDL v PMUD

I. Ch

k i n t

1. Ch k i n t l g?
Ch k i n t (hay ch k s - Digital Signature) c s d ng xc nh n tnh h p php c a m t vn b n hay h p ng trong cc giao d ch i n t . Khi ni m ny ra i nm 1976 b i hai nh khoa h c Diffie v Hellman. Ch k i n t l m t chu i cc bit nh phn c th c sao chp, hi u b i my tnh v c th truy n i trn m ng Internet.

9/22/2010

B mn CNTT - TMT

nh ngha ch

k i n t

Ch k i n t c t o l p d i d ng t , ch , s , k hi u, m thanh ho c cc hnh th c khc b ng phng ti n i n t , g n li n ho c k t h p m t cch logic v i thng i p d li u, c kh nng xc nh n ng i k thng i p d li u v xc nh n s ch p thu n c a ng i i v i n i dung thng i p d li u c k (i u 21, Kho n 1, Lu t giao d ch i n t ).

9/22/2010

B mn CNTT - TMT

Nguy n Th H i - B mn CNTT TMT

Bi gi ng Qu n tr CSDL v PMUD

V d v ch

k i n t

9/22/2010

B mn CNTT - TMT

2. Tnh ch t c a ch

k i n t

(1) C kh nng ki m tra c ng i k v th i gian k, (2) C kh nng xc th c cc n i dung t i th i i m k, (3) Cc thnh vin th ba c th ki m tra ch k gi i quy t cc tranh ch p (n u c).

9/22/2010

B mn CNTT - TMT

Nguy n Th H i - B mn CNTT TMT

Bi gi ng Qu n tr CSDL v PMUD

3. Yu c u i v i ch

k i n t

(1) Ph i l m t m u bit ph thu c ch t ch vo vn b n c k, (2) Vi c t o ra ch k ph i n gi n, thu n ti n, d dng, (3) D dng cho vi c ki m tra, (4) Vi c gi m o ch k l r t kh x y ra. (5) Ph i lu gi c m t b n sao c a ch k i n t .

9/22/2010

B mn CNTT - TMT

4. C ch ho t ng c a ch

k i n t

Ho t ng d a trn h m ha cng khai

M i ng i tham gia truy n thng c 1 c p kha (1 kha cng khai v m t kha b m t) Kha cng khai c cng b r ng ri Kha b m t ch c nhn ng i s h u bi t Thng tin c m ha b ng kha cng khai c th dng kha b m t gi i m v ng c l i

9/22/2010

B mn CNTT - TMT

Nguy n Th H i - B mn CNTT TMT

Bi gi ng Qu n tr CSDL v PMUD

V d v c ch ho t ng
(1) Tr c h t, A chuy n thng i p ban u thnh cc chu i bm b ng cch s d ng m t hm bm no .

Thng i p c n trao i

Hm bm

Chu i bm

9/22/2010

B mn CNTT - TMT

V d v c ch ho t ng
(2) => A dng kha b m t c a mnh m ha cc chu i bm ny => ch k i n t c a o n thng tin ny => g i sang cho B cng v i chu i thng tin ban u.

Chu i bm

M ha v i kha b m t

Ch k

G i cho B Thng i p ban u

9/22/2010

B mn CNTT - TMT

10

Nguy n Th H i - B mn CNTT TMT

Bi gi ng Qu n tr CSDL v PMUD

V d v c ch ho t ng
(3) => B nh n v ti n hnh gi i m ch k c a A b ng kha cng khai c a A thu v cc chu i bm ban u => thnh cng=> ng A g i
Thng tin c n trao i

Chu i bm Hm bm

Ch k

Gi i m

Chu i bm

9/22/2010

B mn CNTT - TMT

11

M ha kha cng khai v i ch dng hm bm

k i n t

9/22/2010

B mn CNTT - TMT

12

Nguy n Th H i - B mn CNTT TMT

Bi gi ng Qu n tr CSDL v PMUD

5. Phn lo i ch

k i n t

Ch k i n t tr c ti p Ch k i n t c a bn th ba - tr ng ti vin Quy trnh t o ch k bn th 3

9/22/2010

B mn CNTT - TMT

13

Nh ng v n n y sinh
M c tin c y hay khng ? i t ng nghe tr m c th v n c c thng i p X g i cho Y hay khng? M c th lin k t v i X ch i b thng i p c k? M lin k t v i ng i nh n lm gi ch k c a ng i g i ?

9/22/2010

B mn CNTT - TMT

14

Nguy n Th H i - B mn CNTT TMT

Bi gi ng Qu n tr CSDL v PMUD

H ng gi i quy t

9/22/2010

B mn CNTT - TMT

15

6. u i m c a ch

k i n t

(1) Ch k i n t m b o tnh khng th ch i ci. (2) C th s d ng ch k i n t thi t l p m t knh truy n tin c xc nh n gi a bn g i v bn nh n.

9/22/2010

B mn CNTT - TMT

16

Nguy n Th H i - B mn CNTT TMT

Bi gi ng Qu n tr CSDL v PMUD

7. Nh c i m c a ch

k i n t

(1) Thu t ton sinh ch k i n t tiu t n th i gian d n n vi c lm cho qu trnh giao d ch b ch m. (2) Dung l ng c a ch k i n t hon ton ph thu c vo dung l ng c a thng i p = > l ng thng tin th c truy n s b tng ln g p i so v i l ng thng tin ban u.

9/22/2010

B mn CNTT - TMT

17

II. CH NG TH C I N T
1. Khi ni m
Ho t ng ch ng th c danh tnh c a nh ng ng i tham gia vo vi c g i v nh n thng tin qua knh truy n,
Cung c p cho h cc cng c , cc d ch v c n thi t th c hi n vi c b o m t thng tin, ch ng th c ngu n g c v n i dung thng tin.

Ch ng th c i n t c c p b i m t c quan ch ng th c c uy tn trn th gi i.

9/22/2010

B mn CNTT - TMT

18

Nguy n Th H i - B mn CNTT TMT

Bi gi ng Qu n tr CSDL v PMUD

Ch ng th c s

9/22/2010

B mn CNTT - TMT

19

2. Cc thnh ph n c a ch ng th c i n t M t ch ng th c i n t bao g m:
Kha cng khai c a ng i s h u ch ng th c i n t ny, Cc thng tin ring c a ng i s h u ch ng th c, H n s d ng, Tn c quan c p ch ng th c i n t , S hi u c a ch ng th c, Ch k c a nh cung c p.
9/22/2010 B mn CNTT - TMT 20

Nguy n Th H i - B mn CNTT TMT

Bi gi ng Qu n tr CSDL v PMUD

3. M t s ch ng th c i n t ang s

d ng

(1) Ch ng th c cho my ch Web (Server Certificate) (2) Ch ng th c cho cc ph n m m (3) Ch ng th c c nhn (4) Ch ng th c c a cc nh cung c p ch ng th c i n t .

9/22/2010

B mn CNTT - TMT

21

4. S ch ng th c i n t s d ng kha cng khai

9/22/2010

B mn CNTT - TMT

22

Nguy n Th H i - B mn CNTT TMT

Bi gi ng Qu n tr CSDL v PMUD

M TS

GI I PHP KHC M B O AN TON H TH NG

(1) M ng vnh ai (Demilitarized Zone - DMZ (2) T ng l a c nhn (Personal Firewall) (3) M ng ring o (Virtual Private Network): (4) H th ng d tm thm nh p (Intrusion Detection Systems IDSs) (5) Honeynet

9/22/2010

B mn CNTT - TMT

23

M ng vnh ai

9/22/2010

B mn CNTT - TMT

24

Nguy n Th H i - B mn CNTT TMT

Bi gi ng Qu n tr CSDL v PMUD

9/22/2010

B mn CNTT - TMT

25

T
ng l a c nhn

9/22/2010

B mn CNTT - TMT

26

Nguy n Th H i - B mn CNTT TMT

Bi gi ng Qu n tr CSDL v PMUD

M ng ring o

9/22/2010

B mn CNTT - TMT

27

M ng ring o
M ng ring o (Virtual Private Network) l m t m ng dnh ring k t n i cc my tnh c a cc cng ty, t p on hay cc t ch c v i nhau thng qua m ng Internet cng c ng. Cng ngh VPN c 3 yu c u c b n:
Cung c p truy nh p t xa t i ti nguyn c a t ch c m i lc, m i ni. K t n i cc chi nhnh vn phng v i nhau. Ki m sot truy nh p c a khch hng, nh cung c p v cc th c th bn ngoi t i nh ng ti nguyn c a t ch c.
9/22/2010 B mn CNTT - TMT 28

Nguy n Th H i - B mn CNTT TMT

Bi gi ng Qu n tr CSDL v PMUD

M ng ring o

9/22/2010

B mn CNTT - TMT

29

H th ng d tm thm nh p

9/22/2010

B mn CNTT - TMT

30

Nguy n Th H i - B mn CNTT TMT

Bi gi ng Qu n tr CSDL v PMUD

H th ng d tm thm nh p

9/22/2010

B mn CNTT - TMT

31

HONEYPOT
Honeypot l g: - Honeypot l m t h th ng ti nguyn thng tin c xy d ng v i m c ch gi d ng nh l a nh ng k s d ng v xm nh p khng h p php, thu ht s ch c a chng, ngn khng cho chng ti p xc v i h th ng th t. - Honeypot c th gi d ng b t c lo i my ch ti nguyn no nh l Mail Server, Domain Name Server, Web Server
9/22/2010 B mn CNTT - TMT 32

Nguy n Th H i - B mn CNTT TMT

Bi gi ng Qu n tr CSDL v PMUD

HONEYNET
Honeynet l m t h th ng th t, hon ton gi ng m t m ng lm vi c bnh th ng. Honeynet cung c p cc h th ng, ng d ng, cc d ch v th t. Honeynet l h th ng honeypot c tnh tng tc cao - Cc lu ng d li u khi vo v ra t honeypots u ph i i qua honeywall.

9/22/2010

B mn CNTT - TMT

33

Ki n trc Honeynet

9/22/2010

B mn CNTT - TMT

34

Nguy n Th H i - B mn CNTT TMT

Bi gi ng Qu n tr CSDL v PMUD

Cc ch c nng c a Honeynet
i u khi n d li u Thu nh n d li u Phn tch d li u Thu th p d li u

9/22/2010

B mn CNTT - TMT

35

CC TRNH Di T VIRUS

AntiVir c th ni l ph n m m d n u v m c tinh c y v kh nng ch ng virus. Phin b n mi n ph AntiVir Personal Edition r t d s d ng, h tr tm v di t roorkit, ngn ch n spyware v cc ph n m m gy h i khc. i m h n ch l ng i dng th ng g p h p tho i qu ng co b n thu ph m i khi kh i ng chng trnh
9/22/2010 B mn CNTT - TMT 36

Nguy n Th H i - B mn CNTT TMT

Bi gi ng Qu n tr CSDL v PMUD

L b n mi n ph c a m t trong nh ng ph n m m b o m t hng u hi n nay, BitDefender Antivirus Free Edition s d ng chung engine v i phin b n thu ph nn ng i dng c th yn tm v kh nng nng di t virus, ph n m m gin i p
9/22/2010 B mn CNTT - TMT 37

Avast Free Antivirus l b n mi n ph nhng ng i dng ph i ti n hnh ng k nh n m b n quy n s d ng 1 nm (tr c khi th i h n dng th 30 ngy k t thc). Avast c giao di n p m t v i tnh nng ch ng l i ph n m m gy h i, phng trnh ly nhi m qua e-mail, chat, ngn ch n t n cng t cc website ch a m c...
9/22/2010 B mn CNTT - TMT 38

Nguy n Th H i - B mn CNTT TMT

Bi gi ng Qu n tr CSDL v PMUD

AVG Anti-Virus c th di t virus, ch n adware v spyware... G n nh , t c qut cng nh nh n di n nhanh, m c an ton cao l nh ng u i m c a AVG.
9/22/2010 B mn CNTT - TMT 39

d ng Network Security Platform

9/22/2010

B mn CNTT - TMT

40

Nguy n Th H i - B mn CNTT TMT

Bi gi ng Qu n tr CSDL v PMUD

kha

Ch k i n t (Digital signature) Ch ng th c i n t (Digital certification) An ton thanh ton (Security payment, Safegard payment) Thanh ton i n t (Electronic Payment, Digital payment) Giao d ch i n t (Digital transaction) B o m t Web (Web security)
9/22/2010 B mn CNTT - TMT 41

Cu h i
Hy trnh by cc v n v ch k i n t ? Hy trnh by cc v n v ch ng th c s ? Th no l an ton d li u thanh ton? V an ton d li u thanh ton i n t ? M hnh v cc c trng c a thanh ton i n t Nu cc bi n php nh m m b o an ton cho d li u thanh ton i n t ?

9/22/2010

B mn CNTT - TMT

42

Nguy n Th H i - B mn CNTT TMT

Bi gi ng Qu n tr CSDL v PMUD

Cu h i
B o m t Web l g? T i sao c n b o m t Web? Hy nu cc phng php s d ng b o m t Web? u v nh c i m c a m i phng php? Hy trnh by m t quy trnh giao d ch i n t m em bi t? (G i : Quy trnh thanh ton b ng sivi card, visa card, master card, ...)

9/22/2010

B mn CNTT - TMT

43

Nguy n Th H i - B mn CNTT TMT