SlideShare a Scribd company logo

Application layer security protocol

K
Kirti Ahirrao

The document provides an overview of application layer security protocols, discussing their significance, types, and enhancements. It highlights common application layer attacks, such as DDoS and SQL injections, and describes security measures like secure shell (SSH) and authentication and key agreement (AKA) systems used in 3G networks. Additionally, it emphasizes the importance of layered security practices to mitigate threats to resources and data.

Education
Related topics:
Application-Layer
1 of 13
Download to read offline
1
2
3
4
Most read
5
Most read
6
Most read
7
8
9
10
11
12
13
Application Layer Security Protocol By Prof. Kirti Ahirrao
Index: • Introduction to Application Layer • Types of Application Layer Protocols • Security-Enhanced Application Layer Protocol • Authentication & Key Distribution System • AKA in CDMA & UMTS • Layering Security Protocol above the Application Layer Prof. Kirti Ahirrao 2
Application Layer • It is an abstraction layer. • It specifies the shared communications protocols. • It uses interface methods by hosts in a communications network. • The application layer abstraction used in both of the standard models : TCP/IP suite & OSI model. Prof. Kirti Ahirrao 3
Application Layer • It is the closest layer to the end user, • It provides hackers with the largest threat surface. • Poor app layer security can lead to performance and stability issues, data theft, and in some cases the network being taken down. • Application layer attacks include distributed denial-of-service attacks (DDoS) attacks, HTTP floods, SQL injections, cross-site scripting, parameter tampering. • Most organizations have application layer security protections, such as web application firewalls (WAFs), secure web gateway services, and others. Prof. Kirti Ahirrao 4
Types of Application Layer Protocol • Remote login to hosts: Telnet. • File transfer: File Transfer Protocol (FTP) & Trivial File Transfer Protocol (TFTP). • Electronic mail transport: Simple Mail Transfer Protocol (SMTP). • Networking support: Domain Name System (DNS). • Host initialization: BOOTP. • Remote host management: Simple Network Management Protocol (SNMP), Common Management Information Protocol over TCP (CMOT). Prof. Kirti Ahirrao 5
Security-Enhanced Application Layer Protocol • Secure Shell (SSH) is a widely used and deployed protocol that serves as a secure replacement for terminal access and file transfer. • DNS Security, or DNSSEC in short, refers to a set of security extensions and enhancements for DNS. • Furthermore, there are several cryptographic file systems that have been developed and proposed in the past, e.g: Cryptographic File System (CFS) and the Andrew File System (AFS). • The starting point was the specification of the Secure Hypertext Transfer Protocol (S-HTTP) that had been developed and was originally proposed by Eric Rescorla and Allan Schiffman on behalf of the CommerceNet consortium in the early 1990s. • S-HTTP version 1.0 was publicly released in June 1994 and distributed by the CommerceNet consortium. • Since 1995, the S-HTTP specification has been further refined under the auspices of the IETF WTS WG. Prof. Kirti Ahirrao 6
Authentication & Key Agreement System(AKA) • It is a security protocol used in 3G networks. • It is used for one-time password generation mechanism for digest access authentication. • AKA is a challenge-response based mechanism that uses symmetric cryptography. • AKA also called as 3G Authentication or Enhanced Subscriber Authorization (ESA). • AKA works in CDMA(Code Division Multiplex Access) & UMTS(Universal Mobile telecommunications System). Prof. Kirti Ahirrao 7
AKA in CDMA 1. It provides procedures for mutual authentication of the Mobile Station (MS) and serving system. 2. The successful execution of AKA results in the establishment of a security association (i.e., set of security data) between the MS and serving system that enables a set of security services to be provided. 3. Major advantages of AKA over CAVE-based authentication include: • Larger authentication keys (128-bit ) • Stronger hash function (SHA-1) • Support for mutual authentication • Support for signaling message data integrity • Support for signaling information encryption • Support for user data encryption Prof. Kirti Ahirrao 8
AKA in UMTS • This performs authentication and session key distribution in Universal Mobile Telecommunications System (UMTS) networks. • It is a challenge-response based mechanism that uses symmetric cryptography. • It is typically run in a UMTS IP Multimedia Services Identity Module (ISIM), which is an application on a UICC (Universal Integrated Circuit Card). • AKA is defined in RFC 3310 Prof. Kirti Ahirrao 9
Layered Security Protocol • Layered security, also known as layered defense. • It describes the practice of combining multiple mitigating security controls to protect resources and data. • Layered security can be used in any environment, from military operations, to individuals, and community residents (homeowners, neighborhood watch groups, etc). • In other words, "layered security is the practice of using many different security controls at different levels to protect assets. • This provides strength and depth to reduce the effects of a threat. • Your goal is to create redundancies (backups) in case security measures fail, are bypassed, or defeated. Placing assets in the innermost perimeter will provide layers of security measures at increasing distances from the protected asset. • The number of layers and the security measures you use, will depend on the threat and importance of the asset". Prof. Kirti Ahirrao 10
Layered security Prof. Kirti Ahirrao 11
References: • en.wikipedia.org/wiki/ • www.f5.com/services/ Prof. Kirti Ahirrao 12
Thank You Prof. Kirti Ahirrao 13

More Related Content

PPTX
MD5 ALGORITHM.pptx
Rajapriya82
 
PPT
Message authentication
CAS
 
PPT
Message Authentication Code & HMAC
Krishna Gehlot
 
PDF
Web Security
Dr.Florence Dayana
 
PDF
2. public key cryptography and RSA
Dr.Florence Dayana
 
PPTX
Security services and mechanisms
Rajapriya82
 
PPT
Message Authentication
chauhankapil
 
PPT
Symmetric & Asymmetric Cryptography
chauhankapil
 
MD5 ALGORITHM.pptx
Rajapriya82
 
Message authentication
CAS
 
Message Authentication Code & HMAC
Krishna Gehlot
 
Web Security
Dr.Florence Dayana
 
2. public key cryptography and RSA
Dr.Florence Dayana
 
Security services and mechanisms
Rajapriya82
 
Message Authentication
chauhankapil
 
Symmetric & Asymmetric Cryptography
chauhankapil
 

What's hot (20)

PPT
Pretty good privacy
Pushkar Dutt
 
PPTX
Trusted systems
ahmad abdelhafeez
 
PPT
Message authentication and hash function
omarShiekh1
 
PDF
Network security - OSI Security Architecture
BharathiKrishna6
 
PPTX
Modern symmetric cipher
Rupesh Mishra
 
PPTX
Confidentiality using symmetric encryption.pptx
AYUSHJAIN152065
 
PPTX
Public Key Cryptography
Gopal Sakarkar
 
PPT
Symmetric and Asymmetric Encryption.ppt
HassanAli980906
 
PPTX
Transposition cipher techniques
SHUBHA CHATURVEDI
 
PPT
Transport layer security.ppt
ImXaib
 
PPTX
Steganography
Mayank Saxena
 
PPT
Cryptography and Network Security William Stallings Lawrie Brown
Information Security Awareness Group
 
PPTX
Secure Socket Layer (SSL)
Samip jain
 
PDF
IP Security
Dr.Florence Dayana
 
PPTX
Intrusion detection
CAS
 
PPT
Block Cipher and its Design Principles
SHUBHA CHATURVEDI
 
PDF
Asymmetric Cryptography
UTD Computer Security Group
 
PPTX
Database security
MaryamAsghar9
 
PDF
Block Cipher Modes of Operation And Cmac For Authentication
Vittorio Giovara
 
PPT
Email Security : PGP & SMIME
Rohit Soni
 
Pretty good privacy
Pushkar Dutt
 
Trusted systems
ahmad abdelhafeez
 
Message authentication and hash function
omarShiekh1
 
Network security - OSI Security Architecture
BharathiKrishna6
 
Modern symmetric cipher
Rupesh Mishra
 
Confidentiality using symmetric encryption.pptx
AYUSHJAIN152065
 
Public Key Cryptography
Gopal Sakarkar
 
Symmetric and Asymmetric Encryption.ppt
HassanAli980906
 
Transposition cipher techniques
SHUBHA CHATURVEDI
 
Transport layer security.ppt
ImXaib
 
Steganography
Mayank Saxena
 
Cryptography and Network Security William Stallings Lawrie Brown
Information Security Awareness Group
 
Secure Socket Layer (SSL)
Samip jain
 
IP Security
Dr.Florence Dayana
 
Intrusion detection
CAS
 
Block Cipher and its Design Principles
SHUBHA CHATURVEDI
 
Asymmetric Cryptography
UTD Computer Security Group
 
Database security
MaryamAsghar9
 
Block Cipher Modes of Operation And Cmac For Authentication
Vittorio Giovara
 
Email Security : PGP & SMIME
Rohit Soni
 
Ad

Similar to Application layer security protocol (20)

PPT
saag-3.ppt
HazemElabed2
 
PPTX
Safe and secure autonomous systems
Alan Tatourian
 
DOCX
Types of Networks Week7 Part4-IS RevisionSu2013 .docx
willcoxjanay
 
PPT
Chapter 1.ppt
Tamer Nadeem
 
PPT
computer architecture.ppt
Pandiya Rajan
 
PPTX
asdas dwasdasf adasdasasdasd asdasdasdasdqwq
researchai1
 
PPT
security of the information and the technoogy
researchai1
 
PDF
Multilayer security mechanism in computer networks (2)
Alexander Decker
 
PPT
SecurityBasics.ppt a good thing by pakiza
pakpra733
 
PDF
Sfa community of practice a natural way of building
Chuck Speicher
 
PPT
security issue
JAINIK PATEL
 
PPTX
Chapter 2 Overview of Commercial Issues.pptx
mc0225225
 
PDF
Multilayer security mechanism in computer networks
Alexander Decker
 
PDF
11.multilayer security mechanism in computer networks
Alexander Decker
 
PPTX
CRYPTOGRAPHY & NETWORK SECURITY [Autosaved].pptx
asjadzaki2021
 
PPTX
cns unit 1.pptx
Saranya Natarajan
 
PPTX
Slide Deck – Session 6 – FRSecure CISSP Mentor Program 2017
FRSecure
 
DOC
Network security
Ravikumar Natarajan
 
PPTX
Lecture 07 networking
HNDE Labuduwa Galle
 
PDF
Implement a novel symmetric block
ijcisjournal
 
saag-3.ppt
HazemElabed2
 
Safe and secure autonomous systems
Alan Tatourian
 
Types of Networks Week7 Part4-IS RevisionSu2013 .docx
willcoxjanay
 
Chapter 1.ppt
Tamer Nadeem
 
computer architecture.ppt
Pandiya Rajan
 
asdas dwasdasf adasdasasdasd asdasdasdasdqwq
researchai1
 
security of the information and the technoogy
researchai1
 
Multilayer security mechanism in computer networks (2)
Alexander Decker
 
SecurityBasics.ppt a good thing by pakiza
pakpra733
 
Sfa community of practice a natural way of building
Chuck Speicher
 
security issue
JAINIK PATEL
 
Chapter 2 Overview of Commercial Issues.pptx
mc0225225
 
Multilayer security mechanism in computer networks
Alexander Decker
 
11.multilayer security mechanism in computer networks
Alexander Decker
 
CRYPTOGRAPHY & NETWORK SECURITY [Autosaved].pptx
asjadzaki2021
 
cns unit 1.pptx
Saranya Natarajan
 
Slide Deck – Session 6 – FRSecure CISSP Mentor Program 2017
FRSecure
 
Network security
Ravikumar Natarajan
 
Lecture 07 networking
HNDE Labuduwa Galle
 
Implement a novel symmetric block
ijcisjournal
 
Ad

More from Kirti Ahirrao (6)

PPTX
BusTopolgy.pptx
Kirti Ahirrao
 
PDF
Attack on Sony
Kirti Ahirrao
 
PDF
Firewall traversals
Kirti Ahirrao
 
PDF
Internet layer security protocol & IPsec
Kirti Ahirrao
 
PDF
Network access layer security protocol
Kirti Ahirrao
 
PDF
Chapter 1 introduction(web security)
Kirti Ahirrao
 
BusTopolgy.pptx
Kirti Ahirrao
 
Attack on Sony
Kirti Ahirrao
 
Firewall traversals
Kirti Ahirrao
 
Internet layer security protocol & IPsec
Kirti Ahirrao
 
Network access layer security protocol
Kirti Ahirrao
 
Chapter 1 introduction(web security)
Kirti Ahirrao
 

Recently uploaded (20)

PPTX
Renaissance Architecture: A Journey from Faith to Humanism
DrMonicaSharma
 
PDF
Business Ethics Teaching Materials for college
CynthiaCastillo40
 
PDF
Supply Chain Operations Speaking Notes -ICLT Program
labyankof
 
PDF
STATICS OF THE RIGID BODIES Hibbelers.pdf
pascualasturiaskaye4
 
PDF
Microbial disease of the cardiovascular and lymphatic systems
KeyaSharma
 
PDF
O5-L3 Freight Transport Ops (International) V1.pdf
labyankof
 
PDF
Insiders guide to clinical Medicine.pdf
AbhishekPatil315128
 
PPTX
PPT- ENG7_QUARTER1_LESSON1_WEEK1. IMAGERY -DESCRIPTIONS pptx.pptx
KMDee
 
PPTX
Microbial diseases, their pathogenesis and prophylaxis
DevlinaSengupta
 
PPTX
Institutional Correction lecture only . . .
limvtheghins
 
PDF
FourierSeries-QuestionsWithAnswers(Part-A).pdf
Raji Murugan
 
PDF
TR - Agricultural Crops Production NC III.pdf
avgilmegino3
 
PDF
01-Introduction-to-Information-Management.pdf
PrinceIbarra
 
PPTX
Pharmacology of Heart Failure /Pharmacotherapy of CHF
Rajshri Ghogare
 
PPTX
Week 4 Term 3 Study Techniques revisited.pptx
mansk2
 
PDF
Saundersa Comprehensive Review for the NCLEX-RN Examination.pdf
sreejithcareers
 
PDF
grade 11-chemistry_fetena_net_5883.pdf teacher guide for all student
banteamlakmebratu738
 
PDF
102 student loan defaulters named and shamed – Is someone you know on the list?
Kweku Zurek
 
PDF
ANTIBIOTICS.pptx.pdf………………… xxxxxxxxxxxxx
HakHe
 
PDF
Basic Mud Logging Guide for educational purpose
wdandworks
 
Renaissance Architecture: A Journey from Faith to Humanism
DrMonicaSharma
 
Business Ethics Teaching Materials for college
CynthiaCastillo40
 
Supply Chain Operations Speaking Notes -ICLT Program
labyankof
 
STATICS OF THE RIGID BODIES Hibbelers.pdf
pascualasturiaskaye4
 
Microbial disease of the cardiovascular and lymphatic systems
KeyaSharma
 
O5-L3 Freight Transport Ops (International) V1.pdf
labyankof
 
Insiders guide to clinical Medicine.pdf
AbhishekPatil315128
 
PPT- ENG7_QUARTER1_LESSON1_WEEK1. IMAGERY -DESCRIPTIONS pptx.pptx
KMDee
 
Microbial diseases, their pathogenesis and prophylaxis
DevlinaSengupta
 
Institutional Correction lecture only . . .
limvtheghins
 
FourierSeries-QuestionsWithAnswers(Part-A).pdf
Raji Murugan
 
TR - Agricultural Crops Production NC III.pdf
avgilmegino3
 
01-Introduction-to-Information-Management.pdf
PrinceIbarra
 
Pharmacology of Heart Failure /Pharmacotherapy of CHF
Rajshri Ghogare
 
Week 4 Term 3 Study Techniques revisited.pptx
mansk2
 
Saundersa Comprehensive Review for the NCLEX-RN Examination.pdf
sreejithcareers
 
grade 11-chemistry_fetena_net_5883.pdf teacher guide for all student
banteamlakmebratu738
 
102 student loan defaulters named and shamed – Is someone you know on the list?
Kweku Zurek
 
ANTIBIOTICS.pptx.pdf………………… xxxxxxxxxxxxx
HakHe
 
Basic Mud Logging Guide for educational purpose
wdandworks
 

Application layer security protocol

  • 2. Index: • Introduction to Application Layer • Types of Application Layer Protocols • Security-Enhanced Application Layer Protocol • Authentication & Key Distribution System • AKA in CDMA & UMTS • Layering Security Protocol above the Application Layer Prof. Kirti Ahirrao 2
  • 3. Application Layer • It is an abstraction layer. • It specifies the shared communications protocols. • It uses interface methods by hosts in a communications network. • The application layer abstraction used in both of the standard models : TCP/IP suite & OSI model. Prof. Kirti Ahirrao 3
  • 4. Application Layer • It is the closest layer to the end user, • It provides hackers with the largest threat surface. • Poor app layer security can lead to performance and stability issues, data theft, and in some cases the network being taken down. • Application layer attacks include distributed denial-of-service attacks (DDoS) attacks, HTTP floods, SQL injections, cross-site scripting, parameter tampering. • Most organizations have application layer security protections, such as web application firewalls (WAFs), secure web gateway services, and others. Prof. Kirti Ahirrao 4
  • 5. Types of Application Layer Protocol • Remote login to hosts: Telnet. • File transfer: File Transfer Protocol (FTP) & Trivial File Transfer Protocol (TFTP). • Electronic mail transport: Simple Mail Transfer Protocol (SMTP). • Networking support: Domain Name System (DNS). • Host initialization: BOOTP. • Remote host management: Simple Network Management Protocol (SNMP), Common Management Information Protocol over TCP (CMOT). Prof. Kirti Ahirrao 5
  • 6. Security-Enhanced Application Layer Protocol • Secure Shell (SSH) is a widely used and deployed protocol that serves as a secure replacement for terminal access and file transfer. • DNS Security, or DNSSEC in short, refers to a set of security extensions and enhancements for DNS. • Furthermore, there are several cryptographic file systems that have been developed and proposed in the past, e.g: Cryptographic File System (CFS) and the Andrew File System (AFS). • The starting point was the specification of the Secure Hypertext Transfer Protocol (S-HTTP) that had been developed and was originally proposed by Eric Rescorla and Allan Schiffman on behalf of the CommerceNet consortium in the early 1990s. • S-HTTP version 1.0 was publicly released in June 1994 and distributed by the CommerceNet consortium. • Since 1995, the S-HTTP specification has been further refined under the auspices of the IETF WTS WG. Prof. Kirti Ahirrao 6
  • 7. Authentication & Key Agreement System(AKA) • It is a security protocol used in 3G networks. • It is used for one-time password generation mechanism for digest access authentication. • AKA is a challenge-response based mechanism that uses symmetric cryptography. • AKA also called as 3G Authentication or Enhanced Subscriber Authorization (ESA). • AKA works in CDMA(Code Division Multiplex Access) & UMTS(Universal Mobile telecommunications System). Prof. Kirti Ahirrao 7
  • 8. AKA in CDMA 1. It provides procedures for mutual authentication of the Mobile Station (MS) and serving system. 2. The successful execution of AKA results in the establishment of a security association (i.e., set of security data) between the MS and serving system that enables a set of security services to be provided. 3. Major advantages of AKA over CAVE-based authentication include: • Larger authentication keys (128-bit ) • Stronger hash function (SHA-1) • Support for mutual authentication • Support for signaling message data integrity • Support for signaling information encryption • Support for user data encryption Prof. Kirti Ahirrao 8
  • 9. AKA in UMTS • This performs authentication and session key distribution in Universal Mobile Telecommunications System (UMTS) networks. • It is a challenge-response based mechanism that uses symmetric cryptography. • It is typically run in a UMTS IP Multimedia Services Identity Module (ISIM), which is an application on a UICC (Universal Integrated Circuit Card). • AKA is defined in RFC 3310 Prof. Kirti Ahirrao 9
  • 10. Layered Security Protocol • Layered security, also known as layered defense. • It describes the practice of combining multiple mitigating security controls to protect resources and data. • Layered security can be used in any environment, from military operations, to individuals, and community residents (homeowners, neighborhood watch groups, etc). • In other words, "layered security is the practice of using many different security controls at different levels to protect assets. • This provides strength and depth to reduce the effects of a threat. • Your goal is to create redundancies (backups) in case security measures fail, are bypassed, or defeated. Placing assets in the innermost perimeter will provide layers of security measures at increasing distances from the protected asset. • The number of layers and the security measures you use, will depend on the threat and importance of the asset". Prof. Kirti Ahirrao 10
  • 13. Thank You Prof. Kirti Ahirrao 13