UNIT - 5 Notes
UNIT - 5 Notes
UNIT - 5 Notes
1
BBDITM-054 COMPUTER SYSTEM SECURITY UNIT - 5
1. Internet Infrastructure
Generally speaking, infrastructures are the frameworks or
architectures that systems are made of. For example, a nation's
transportation infrastructure consists of roadways, railroads,
airports, ocean ports, and rivers.
The Internet also has an infrastructure consisting of many
different elements, each of which plays a critical role in the
delivery of information/data from one point to another.
Internet infrastructure is the physical hardware, transmission
media, and software used to interconnect computers and users
on the Internet. Internet infrastructure is responsible for
hosting, storing, processing, and serving the information that
makes up websites, applications, and content.
Defining IP
The bottom layer, IP, is the location aspect of the pair allowing
the packets of information to be sent and received to the
correct location. If you think about IP in terms of a map, the
IP layer serves as the packet GPS to find the correct
destination. Much like a car driving on a highway, each packet
passes through a gateway computer (signs on the road), which
serve to forward the packets to the right destination.
“In summary, TCP is the data. IP is the Internet location
GPS.”
3
BBDITM-054 COMPUTER SYSTEM SECURITY UNIT - 5
BGP
Border Gateway Protocol (BGP) is the postal service of the
Internet. When someone drops a letter into a mailbox, the
postal service processes that piece of mail and chooses a fast,
efficient route to deliver that letter to its recipient. Similarly,
when someone submits data across the Internet, BGP is
responsible for looking at all of the available paths that data
could travel and picking the best route, which usually means
hopping between autonomous systems.
DNS (Domain Name System)
The Domain Name System (DNS) is the phonebook of the
Internet. Humans access information online through domain
names, like nytimes.com or espn.com. Web browsers interact
through Internet Protocol (IP) addresses. DNS translates
domain names to IP addresses so browsers can load Internet
resources.
4
BBDITM-054 COMPUTER SYSTEM SECURITY UNIT - 5
3. Routing Security
Routing is fundamental to how the Internet works. Routing
protocols direct the movement of packets between your
computer and any other computers it is communicating with.
The Internet’s routing protocol (Border Gateway Protocol or
BGP) is considered as very sensitive for attacking.
5
BBDITM-054 COMPUTER SYSTEM SECURITY UNIT - 5
6
BBDITM-054 COMPUTER SYSTEM SECURITY UNIT - 5
7
BBDITM-054 COMPUTER SYSTEM SECURITY UNIT - 5
8
BBDITM-054 COMPUTER SYSTEM SECURITY UNIT - 5
9
BBDITM-054 COMPUTER SYSTEM SECURITY UNIT - 5
10
BBDITM-054 COMPUTER SYSTEM SECURITY UNIT - 5
a) Broadcast channels
Common in local area networks (LANs), wireless LANs, etc.
Many hosts connected to the same communications channel
Medium access protocol is needed to coordinate
transmissions
b)Point-to-point communications link
Used between two routers or home dial-up modem and ISP
router
coordination is trivial
Still issues around framing, reliable transfer etc.
6.2 Link Layer Services
Framing: encapsulation of network datagram within a link-
layer frame
Link Access: a medium access (MAC) protocol specifies the
rules by which a frame is transmitted onto the link
Reliable Delivery: useful for links prone to high error rates;
avoids cost of end-to-end retransmission at transport or
application layer
Flow Control: frames can be lost if buffering capacity is
exceeded
11
BBDITM-054 COMPUTER SYSTEM SECURITY UNIT - 5
a) Application Layer
b) Transport Layer
c) Network Layer
d) Data Link Layer
e) Physical Layer
12
BBDITM-054 COMPUTER SYSTEM SECURITY UNIT - 5
14
BBDITM-054 COMPUTER SYSTEM SECURITY UNIT - 5
15
BBDITM-054 COMPUTER SYSTEM SECURITY UNIT - 5
16
BBDITM-054 COMPUTER SYSTEM SECURITY UNIT - 5
17
BBDITM-054 COMPUTER SYSTEM SECURITY UNIT - 5
18
BBDITM-054 COMPUTER SYSTEM SECURITY UNIT - 5
19
BBDITM-054 COMPUTER SYSTEM SECURITY UNIT - 5
20
BBDITM-054 COMPUTER SYSTEM SECURITY UNIT - 5
21
BBDITM-054 COMPUTER SYSTEM SECURITY UNIT - 5
22