DOCSLIB.ORG

Day 4 Cyber Analysis Course Slides

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Day 4 Cyber Analysis Course Slides Introduction to Cyber Analysis Course April 1‐4, 2019 DAY 4 – APRIL 4, 2019 DAY 3 RECAP . Writing Exercise . Tools and Activities –IQF – Virtualization – Kali Linux –NMAP CYBER ANALYSIS – Metasploit TRAINING COURSE –Nikto –SQLMap –Burp Suite –OWASP ZAP – CAIN and Abel – OpenVAS 2 DAY 4: AGENDA 4.1 Cyber Physical Systems - Industrial Control Systems - Shodan 4.1 CYBER PHYSICAL SYSTEMS - Internet of Things – Industrial Control Systems – Shodan – Internet of Things 4.2 Writing Exercise 4.3 Darknets, P2P, and Onion Routing 4.4 Wrap-Up 4 3 INDUSTRIAL CONTROL SYSTEMS (ICS) ICS - SCADA . An Industrial Control System (ICS) is a term that describes . SCADA systems are commonly used in the following critical several types of control systems used in industrial protection, infrastructure sectors: such as: – Public and private sector (buildings, airports, ships, space stations) – Supervisory Data and Acquisition Systems (SCADA) • Water treatment and distribution plants – Distributed Control Systems (DCS) • Wastewater treatment and collection plants – Programmable Logic Controllers (PLC) • Oil and gas pipelines • Electrical power (transmission and distribution) • Wind farms • Communication systems 5 Argonne National Laboratory 1 Introduction to Cyber Analysis Course April 1‐4, 2019 INDUSTRIAL CONTROL SYSTEMS (ICS) INDUSTRIAL CONTROL SYSTEMS (ICS) . ICS systems are commonly found in the CI sectors as well as ICS electrical, water, wastewater, oil, gas, and data industries. Human Machine Remote diagnostics/ Corporate . An ICS will receive data from remote stations, and (automated or Interface (HMI) maintenance Data operator-driven) supervisory commands can be pushed to Network remote station control devices (field devices). Data Controller . Field devices are responsible for controlling local operations, Historian such as: Actuator Sensors Internet – Opening and closing valves and breakers – Collecting data from sensory systems Actuators: composed of valves, switches, motors Industrial Sensors: detect status of variables associated with the – Monitoring for alarm conditions Process industrial process (temperature, pressure, flow rates) Controller: Manages the actuators based on sensor readings and operator input HMI: Allows operators to monitor the controlled process and influence it Data Historian: Logs all process control activity to allow reporting at multiple levels Remote Diagnostics: Maintenance that provide ICS staff/vendors to access, diagnose, and correct problems 7 8 ICS – SCADA ICS – PLC . Supervisory Control and Data Acquisition (SCADA) systems . Programmable Logic Controllers (PLC) are digital computers that operate with coded signals that provide control of remote automate industrial (electromechanical) processes, such as: equipment – Controlling machinery on assembly lines – Sequential relay control . Control systems can be combined with data acquisition by – Motion control adding coded signals to acquire status information of remote – Process control equipment for display/recording –Networking . SCADA systems refer to centralized systems that monitor and – Distributed Control Systems (DCS) control entire sites, or complexes of systems over large areas. • PLCs are frequently used by the following industries: . Most control actions are performed automatically by Remote – Power and mining industries Terminal Units (RTUs) or by PLCs – Military – Water and wastewater industries • PLCs will be present anywhere a logical sequence of processes must be followed by machines 9 10 ICS – PLC ICS – HMI . PLCs can have digital or analog I/Os, and can handle extreme . Human–machine interface (HMI) is the user interface that temperature ranges. handles the human to machine interaction. – Resistant to vibration, impact, and electrical noise. It is the I/O device through which the human operator controls . Some modern PLCs are equivalent to desktop computers in the the process. ability to handle data, storage, processing power, and . Types of user interfaces include: communication – Interactive aspects of an OS . Programs that control PLCs are usually stored in non-volatile – Hand tools memory, or with a battery backup. – Heavy machinery operator controls – Process controls . A Human-machine Interface (HMI) is employed to help with configuration, alarm reporting and every control interactions. 11 12 Argonne National Laboratory 2 Introduction to Cyber Analysis Course April 1‐4, 2019 ICS – SCADA SCADA DIAGRAM . SCADA systems can be found in a variety of industries, including but not limited to: – Manufacturing – Production – Power generation – Fabrication – Refining 13 ICS – SCADA: THREAT VECTORS ICS – SCADA: VENDORS . Unauthorized access to the control software, whether it be . Some examples of SCADA vendors: human access or changes induced intentionally or accidentally by virus infections and other software threats residing on the – Siemens. control host machine. – Honeywell. – Schneider Electric (Wonderware, Televent Citect) . Packet access to the network segments hosting SCADA devices. – Survalent Technology Company (STC) – Control protocols usually lack any form of cryptographic security, allowing an attacker to control a SCADA device remotely by sending – Rockwell Automation commands over a network. – Emerson Process Management – In many cases SCADA users have assumed that having a VPN offered sufficient protection, unaware that security can be trivially bypassed with physical access to SCADA-related network jacks and switches. Industrial control vendors suggest approaching SCADA security like Information Security with a defense in depth strategy that leverages common IT practices 15 16 SHODAN – DEVICE SEARCH ENGINE HOW DOES SHODAN WORK? . Shodan is a search engine that lets you find specific types of . How does this work devices(routers, servers, etc.) on the internet using a variety of 1. Crawl all IP addresses in the IPv4 space queries and filters. Some have also described it as a search 2. Try to initiate connections with known ports engine of service banners, which are meta-data the server sends 3. Record the responses/banners that are received back to the client 4. Append to any records that exist for that IP . In May 2013, CNN Money released an article detailing how . You can also create reports or find security exploits for specific SHODAN can be used to find dangerous systems on the ports/services Internet, including traffic light controls and other control systems, including ICS. In December 2013, the website SCADA Strangelove posted over 500 banner search terms to find connected SCADA devices via SHODAN and/or Google 17 18 Argonne National Laboratory 3 Introduction to Cyber Analysis Course April 1‐4, 2019 SHODAN – WHY IS THIS INTERESTING? SHODAN . Some banners can give information to the state of the device . We didn’t try to log into . What type of device (make/model) any of these devices, . Default passwords for obvious legal . Misconfigured systems reasons, but Shodan . Unchanged administrator passwords knows where a lot of . No authentication! them are: . Combined with domain knowledge (or Google) we can find useful things! 19 20 PEOPLE LIKE TVS. ALSO, PEOPLE LIKE THE INTERNET!! HOTELS LIKE THE INTERNET!!! Life IS good! UNIVERSITIES LIKE THE INTERNET!! NETWORK . If you can check your network health, I can check your network health Argonne National Laboratory 4 Introduction to Cyber Analysis Course April 1‐4, 2019 CONTROLLING ENTERTAINMENT NETWORKS COMPANIES LIKE THE INTERNET TOO!!! INTERNET BILLBOARDS ARE ON THE INTERNET! THIS WOULD NEVER, EVER BE A BAD IDEA LOCKS & LOCKERS Argonne National Laboratory 5 Introduction to Cyber Analysis Course April 1‐4, 2019 VARIOUS ELECTRICAL SUPPLIES MY TIMECARD IS OFF… MORE EXAMPLES 60,000 gallon tank (close enough) LET’S LOOK AT AN EXAMPLE OF A FILTER: DEMO OF SHODAN pdu country:"US" city:"Atlanta" net:216.247.251.0/24 1. Navigate to Shodan's website (http://www.shodan.io) 2. Search for the term "default password" . 15 total PDUs 3. Inspect the results and see what information you may be able . We can make an educated guess as to what/where this is to obtain 4. Select a result that contains a Cisco networking device 5. What kind of information is there regarding that device? 6. If there a privilege level specified what kind of access does that grant you? 7. What steps would you need to take to ensure this kind of tool cannot be used against a system you are creating? 36 Argonne National Laboratory 6 Introduction to Cyber Analysis Course April 1‐4, 2019 ICS & SCADA UNPROTECTED WHAT DOES IT ALL MEAN? . Industrial Control Systems (ICS) and Supervisory Control and . These systems were not built to be externally facing Data Acquisitions (SCADA) devices are also unprotected on the . Most are not secure for anything other than local access Internet . Security through obscurity would prevent people from accessing . Several sites are devoted to this these devices previously . So these shouldn’t be on the Internet, right? TO REITERATE… . I only accessed these sites through HTTP using a basic web browser (Chrome) . No login information was ever entered . I only followed links once I got to the page – AKA no directory traversal or spidering . All devices were found directly through Shodan . I did not test if default credentials worked (but some other researchers did, and they usually work) Argonne National Laboratory 7 Introduction to Cyber Analysis Course April 1‐4, 2019 SHODAN REPORTS . September 10, 2014 Shodan Developer John Metherly releases reporting functionality . Keep track of search results
Load more

Recommended publications
  • I2P, the Invisible Internet Projekt
    I2P, The Invisible Internet Projekt jem September 20, 2016 at Chaostreff Bern Content 1 Introduction About Me About I2P Technical Overview I2P Terminology Tunnels NetDB Addressbook Encryption Garlic Routing Network Stack Using I2P Services Using I2P with any Application Tips and Tricks (and Links) Conclusion jem | I2P, The Invisible Internet Projekt | September 20, 2016 at Chaostreff Bern Introduction About Me 2 I Just finished BSc Informatik at BFH I Bachelor Thesis: "Analysis of the I2P Network" I Focused on information gathering inside and evaluation of possible attacks against I2P I Presumes basic knowledge about I2P I Contact: [email protected] (XMPP) or [email protected] (GPG 0x28562678) jem | I2P, The Invisible Internet Projekt | September 20, 2016 at Chaostreff Bern Introduction About I2P: I2P = TOR? 3 Similar to TOR... I Goal: provide anonymous communication over the Internet I Traffic routed across multiple peers I Layered Encryption I Provides Proxies and APIs ...but also different I Designed as overlay network (strictly separated network on top of the Internet) I No central authority I Every peer participates in routing traffic I Provides integrated services: Webserver, E-Mail, IRC, BitTorrent I Much smaller and less researched jem | I2P, The Invisible Internet Projekt | September 20, 2016 at Chaostreff Bern Introduction About I2P: Basic Facts 4 I I2P build in Java (C++ implementation I2Pd available) I Available for all major OS (Linux, Windows, MacOS, Android) I Small project –> slow progress, chaotic documentation,
    [Show full text]
  • Unveiling the I2P Web Structure: a Connectivity Analysis
    Unveiling the I2P web structure: a connectivity analysis Roberto Magan-Carri´ on,´ Alberto Abellan-Galera,´ Gabriel Macia-Fern´ andez´ and Pedro Garc´ıa-Teodoro Network Engineering & Security Group Dpt. of Signal Theory, Telematics and Communications - CITIC University of Granada - Spain Email: [email protected], [email protected], [email protected], [email protected] Abstract—Web is a primary and essential service to share the literature have analyzed the content and services offered information among users and organizations at present all over through this kind of technologies [6], [7], [2], as well as the world. Despite the current significance of such a kind of other relevant aspects like site popularity [8], topology and traffic on the Internet, the so-called Surface Web traffic has been estimated in just about 5% of the total. The rest of the dimensions [9], or classifying network traffic and darknet volume of this type of traffic corresponds to the portion of applications [10], [11], [12], [13], [14]. Web known as Deep Web. These contents are not accessible Two of the most popular darknets at present are The Onion by search engines because they are authentication protected Router (TOR; https://www.torproject.org/) and The Invisible contents or pages that are only reachable through the well Internet Project (I2P;https://geti2p.net/en/). This paper is fo- known as darknets. To browse through darknets websites special authorization or specific software and configurations are needed. cused on exploring and investigating the contents and structure Despite TOR is the most used darknet nowadays, there are of the websites in I2P, the so-called eepsites.
    [Show full text]
  • Invisible Internet Project A.K.A. I2P
    Introduction More I2P Gimme something The end . Invisible Internet Project a.k.a. I2P Antonis Kouzoupis Athens CryptoParty #0 November 11, 2012 Antonis Kouzoupis I2P Introduction More I2P Gimme something The end . Outline Introduction More I2P Key Concepts Sending a Message Gimme something Applications Installation The end References Thank you! Antonis Kouzoupis I2P Introduction More I2P Gimme something The end . I2P is • an anonymous network (Captain Obvious) • a decentralized resilient network • scalable • end-to-end encrypted • in active development since Feb 2003 • mostly written in Java • currently in version 0.9.3 • open source • not Tor Antonis Kouzoupis I2P Introduction More I2P Gimme something The end . Key Concepts It's essential to clarify some key concepts: • Router • Destination • Tunnel • netDb • Garlic routing Antonis Kouzoupis I2P Introduction More I2P Gimme something The end . Router • The software that every I2P node should run • The \thing" that participates in the network • Traffic routing • Transportation • Encryption { Decryption Antonis Kouzoupis I2P Introduction More I2P Gimme something The end . Destination • Cryptographic identifiers • Anonymous Endpoints • Associated with applications • Destinations are connected to routers • Each user will have several local destinations on their router Antonis Kouzoupis I2P Introduction More I2P Gimme something The end . Tunnel • A unidirectional path through routers • Layered encryption is used { each of the routers can decrypt only one layer • Two types of tunnels: • Inbound Inbound tunnels bring messages to the tunnel creator. First router is the Inbound Endpoint and the last one is the Inbound Gateway • Outbound Outbound tunnels send messages away from the tunnel creator. First router is the Outbound Gateway and the last one is the Outbound Endpoint Antonis Kouzoupis I2P Introduction More I2P Gimme something The end .
    [Show full text]
  • Table of Contents
    OUR MISSION ITT Technical Institute is an institution of higher learning that is committed to offering quality undergraduate and continuing education locally, nationally and worldwide to students of diverse backgrounds, interests and abilities. The institution offers career-related educational programs that integrate lifelong learning with knowledge and skills to help students: • pursue their personal interests and objectives; • develop intellectual, analytical and critical thinking abilities; and • provide service to their communities. The programs employ traditional, applied and adult-learning pedagogies and are delivered through traditional, accelerated and distance methodologies in a learner-centered environment of mutual respect. ITT is a registered mark of and is used under license granted by ITT Manufacturing Enterprises, LLC. AUSTIN, TX TABLE OF CONTENTS 2016-2017 CATALOG CURRICULA 2 Volume 76 SCHOOL OF INFORMATION TECHNOLOGY 2 INFORMATION SYSTEMS AND CYBERSECURITY 2 SOFTWARE DEVELOPMENT (Bachelor’s Degree) 3 NETWORK SYSTEMS ADMINISTRATION 4 Cancellation 51 SOFTWARE DEVELOPMENT (Associate’s Degree) 5 Refund 52 SCHOOL OF ELECTRONICS TECHNOLOGY 6 Return of Federal Financial Aid 54 ELECTRICAL ENGINEERING AND Cancellation and Refund Requests 54 COMMUNICATIONS TECHNOLOGY 6 FINANCIAL ASSISTANCE 54 ELECTRICAL ENGINEERING TECHNOLOGY 7 Federal Financial Aid Administered by the SCHOOL OF DRAFTING AND DESIGN 8 U.S. Department of Education 55 DRAFTING AND DESIGN TECHNOLOGY 8 Federal Pell Grant Program 55 SCHOOL OF BUSINESS 9 Federal Supplemental
    [Show full text]
  • Dot-Bip Whitepaper
    DOT-BIP WHITEPAPER a/k/a Proposal for implementing Dot-Bip decentralized DNS to create distributed, difficult-to-censor DNS-type function over the BipCoin cryptocurrency blockchain while solving all the problems that kept Namecoin from becoming adopted as anything other than a speculative commodity SUMMARY: We are going to make something that is so difficult to censor, someone could use it to say horrible, untrue things about us and there's no way that even we could take it down. We believe this is the truest definition of actual free speech. Several systems have attempted to do this. The one that came closest was Namecoin. But Namecoin was never used by more than a couple dozen websites for censor-proof DNS. We plan to create something that will get wide scale adoption. That's the key to truly keeping speech free. Dot-Bit Whitepaper v1.2 1/8/2017 Indiegogo fundraiser: https://igg.me/at/dotbip This document and the software and processes it describes are covered by the BipCot NoGov License. This allows use and re-use with attribution by anyone except governments and government agents. http://bipcot.org/ Whitepaper written by MWD. First draft was published on Nov 25, 2016. [email protected] https://bipcoin.org/ 1 Abstract: Background: "DNS" is the method by which website names (like "google.com") are registered and can then be used by everyone to get to a particular website. This registration system is monopolized worldwide by a US Government-controlled organization. Thus domains can be censored and seized by simply rerouting them.
    [Show full text]
  • Construction Methods of Closed Users Group Using Multi-Party Protocol
    WSEAS TRANSACTIONS on COMMUNICATIONS Masao Tanabe, Keita Sugiyama, Masaki Aida Construction Methods of Closed Users Group using Multiparty Protocol MASAO TANABE1, KEITA SUGIYAMA2, MASAKI AIDA1 1The Graduate School of System Design Tokyo Metropolitan University 6-6 Asahigaoka, Hino-shi, Tokyo 191-0065 JAPAN [email protected], [email protected] 2Nomura Research Institute, Ltd. Marunouchi Kitaguchi Building, 1-6-5 Marunouchi, Chiyoda-ku, Tokyo 100-0005 JAPAN Abstract: In recent years, the Internet has become the most important infrastructure in the information society. Until now, a client-server system such as e-mail or WWW that is offered by a fixed service provider has played an important role. However, in such client-server systems, it is impossible to continue to provide services when the servers are halted by some failure. For this reason, a pure Peer-to-Peer (P2P) network, in which a user also acts as a provider, has lately attracted considerable attention as a new commercial infrastructure, because it enables its users to provide a service without a dedicated server. However, it is difficult to provide security on a pure P2P network because each terminal on the network has the same privilege. In this paper, we study a construction method of a Closed Users Group (CUG) without any administration methods which can control user access to certain applications on a pure P2P network. In our method, we assume that each member of a CUG has a certification which is issued by a certification authority on a public key infrastructure (PKI) that enables members to communicate safely. We realize this PKI on a P2P network using a multi-party protocol.
    [Show full text]
  • A Real-World Case Study Using I2P
    Technische Universit¨at Munchen¨ Fakult¨at fur¨ Informatik Lehrstuhl fur¨ Netzarchitekturen und Netzdienste Privacy-Implications of Performance-Based Peer Selection by Onion-Routers: A Real-World Case Study using I2P Masterarbeit in Informatik durchgefuhrt¨ am Lehrstuhl fur¨ Netzarchitekturen und Netzdienste Fakult¨at fur¨ Informatik Technische Universit¨at Munchen¨ von Michael Herrmann M¨arz 2011 Technische Universit¨at Munchen¨ Fakult¨at fur¨ Informatik Lehrstuhl fur¨ Netzarchitekturen und Netzdienste Auswirkung auf die Anonymit¨at von performanzbasierter Peer-Auswahl bei Onion-Routern: Eine Fallstudie mit I2P { Privacy-Implications of Performance-Based Peer Selection by Onion-Routers: A Real-World Case Study using I2P Masterarbeit in Informatik durchgefuhrt¨ am Lehrstuhl fur¨ Netzarchitekturen und Netzdienste Fakult¨at fur¨ Informatik Technische Universit¨at Munchen¨ von Michael Herrmann Aufgabensteller und Betreuer: Christian Grothoff, PhD (UCLA) Tag der Abgabe: 29. M¨arz 2011 Ich versichere, dass ich die vorliegende Arbeit selbst¨andig verfasst und nur die angegebenen Quellen und Hilfsmittel verwendet habe. I assure the single handed composition of this thesis only supported by declared resources. Garching, den 29 M¨arz 2011 Acknowledgment: This thesis is based on a paper with the same title from Michael Herrmann and Christian Grothoff, published at Privacy Enhancing Technologies Symposium (PETS) 2011. I thank my advisor Christian Grothoff for the possibility to work with him on this thesis and his great support. Not only was working with him very inspiring, he also pushed me to do the best I possibly can. Also I thank Katie Haus and Nathan Evans. Katie for her great work on the pictures in this thesis and her amazing patience to get them exactly as I wanted them to be.
    [Show full text]
  • Book Template
    ADMISSION AND REGISTRATION GENERAL INFORMATION ACADEMIC INFORMATION FINANCIAL INFORMATION COLLEGE RESOURCES PROGRAMS OF STUDY COURSE DESCRIPTIONS COLLEGE DIRECTORY CF.edu/Catalog College Cat2a015l-2o016g –an equal opportunity college– COLLEGE OF CENTRAL FLORIDA 2015-2016 Catalog Citrus Campus Ocala Campus Levy Center 3800 S. Lecanto Highway 3001 S.W. College Road 114 Rodgers Blvd. Lecanto, FL 34461-9026 Ocala, FL 34474-4415 Chiefland, FL 32626-1420 352-746-6721 352-873-5800 352-493-9533 Fax: 352-249-1218 Fax: 352-291-4450 Fax: 352-493-9994 Hampton Center Appleton Museum of Art, Jack Wilkinson Levy Campus 1501 W. Silver Springs Blvd. College of Central Florida 7631 N.W. 151st Lane Ocala, FL 34475-6456 4333 E. Silver Springs Blvd. Trenton, FL 32693-7369 352-873-5881 Ocala, FL 34470-5001 Fax: 352-873-5887 352-291-4455 Fax: 352-291-4460 www.CF.edu About College of Central Florida Table of Contents General Education Core Requirements ................................. 56 About College of Central Florida .................................................. 4 CF Institutional Learning Outcomes .................................... 57 Vision Statement ...................................................................... 4 Associate in Arts Degree Requirements ................................. 57 Mission Statement ................................................................... 4 General Education Course Requirement ............................... 58 Values ......................................................................................
    [Show full text]
  • Bugging Out: Darknets As Parasites of Large-Scale Media Objects NB: This Is an Pre-Proofed Version of an Essay Accepted for Publication in Media, Culture, and Society
    1 of 23 Bugging Out: Darknets as Parasites of Large-scale Media Objects NB: This is an pre-proofed version of an essay accepted for publication in Media, Culture, and Society Robert W. Gehl and Fenwick McKelvey Abstract Platforms and infrastructures have quickly become seminal concepts to understand large-scale computational systems. The difference between a platform and an infrastructure is subject to debate. In this paper, we use the concept of the darknet to describe how infrastructure tends toward being public with other things where platforms tend to private relations. The darknet reveals these relations negatively, as we discuss, by turning these media objects into that which they desire not to be. We analyze these negative relations through the concept of the parasite developed by Michel Serres. Through following how darknets parasite both platforms and infrastructure, we suggest a need to develop new concepts to understand the diversity of relations now possible in a network society. Introduction Parasites have always been part of computing. JCR Licklider, a key thinker and funder of early computing and networking, used the idea of symbiosis to describe a new paradigm of human-computer interaction (Waldrop, 2002). Humans and computer should be like The [fig] tree and the insect, [and] thus heavily interdependent: the tree cannot reproduce without the insect; the insect cannot eat without the tree (Licklider, 1960: 4) Through the metaphor, Licklider proposed a new, more personal relationship to computing, thus affecting how we view these machines. Licklider’s optimism about human-computer relations, however, required he neglect a few details about the insect’s relation to the fig.
    [Show full text]
  • Secure System in Privacy Networks 1D
    ISSN : 0976-8491 (Online) | ISSN : 2229-4333 (Print) IJCST VOL . 3, Iss UE 3, JULY - SEP T 2012 Secure System in Privacy Networks 1D. Prema Sagar, 2B. Sowjanya Rani 1,2Dept. of CSE, Aditya Engineering College, Aditya Nagar, Surampalem, AP, India Abstract a node that sends a message originated the message or is simply Anonymizing networks such as Tor allow users to access forwarding it on behalf of another node. Every node in an internet services privately by using a series of routers to hide anonymous P2P network acts as a universal sender and universal the client’s IP address from the server. The success of such receiver to maintain anonymity. If a node was only a receiver networks However has been limited by users employing this and did not send, then neighboring nodes would know that the anonymity for abusive purposes such as defacing popular web information it was requesting was for itself only, removing any sites. Web site administrators routinely rely on IP-address for reasonable deniability that it was the recipient (and consumer) of blocking or disabling access to misbehaving users, but blocking the information. Thus, in order to remain anonymous, nodes must IP addresses is not practical if the abuser routes through an ferry information for others on the network. anonymizing network. As a result, administrators block all known Anonymizing Networks — Presentation Transcript: Different exit nodes of anonymizing networks, denying anonymous access types of anonymous networks, how they work, the advantages misbehaving and behaving users alike. To address this problem, and weaknesses of each anonymous communication network.
    [Show full text]
  • Book Template
    COLLEGE OF CENTRAL FLORIDA 2013-2014 Catalog Citrus Campus Ocala Campus Levy Center 3800 S. Lecanto Highway 3001 S.W. College Road 114 Rodgers Blvd. Lecanto, FL 34461-9026 Ocala, FL 34474-4415 Chiefland, FL 32626-1420 352-746-6721 352-873-5800 352-493-9533 Fax: 352-249-1218 Fax: 352-291-4450 Fax: 352-493-9994 Hampton Center Appleton Museum of Art, Jack Wilkinson Levy Campus 1501 W. Silver Springs Blvd. College of Central Florida 7631 N.W. 151st Lane Ocala, FL 34475-6456 4333 E. Silver Springs Blvd. Chiefland, FL 32626-1420 352-873-5881 Ocala, FL 34470-5001 Fax: 352-873-5887 352-291-4455 Fax: 352-291-4460 Website: www.CF.edu Table of Contents CF Institutional Learning Outcomes .................................... 53 About College of Central Florida .................................................. 4 General Education Common Core ........................................ 53 Vision Statement ...................................................................... 4 Associate in Arts Degree Requirements ................................. 54 Mission Statement ................................................................... 4 General Education Course Requirement ............................... 55 Values ....................................................................................... 4 General Electives ................................................................... 57 Board of Trustees ...................................................................... 4 Developmental Education — Academic Foundations .......... 59 President's
    [Show full text]
  • Anonymous Communication
    Computer Security 15. Anonymous Connectivity & Tor Paul Krzyzanowski Rutgers University Fall 2019 December 10, 2019 CS 419 © 2019 Paul Krzyzanowski 1 Anonymous Connectivity December 10, 2019 CS 419 © 2019 Paul Krzyzanowski 2 Anonymous communication Communicate while preserving privacy Often considered bad: “only criminals need to hide” – Drugs – Hit men – Stolen identities – Counterfeit $ – Stolen credit cards – Guns, hacking – Bitcoin laundering – Fraud – Porn December 10, 2019 CS 419 © 2019 Paul Krzyzanowski 3 Anonymous communication Communicate while preserving privacy But there are legitimate uses – Avoid consequences (social, political, legal) • Accessing content in oppressive governments • Political dissidents, whistleblowers, crime reporting – Avoid geolocation-based services – Hide corporate activity (who's talking to whom) – Perform private investigations – Hide personal info • Searching for information about diseases you have, loans, credit problems December 10, 2019 CS 419 © 2019 Paul Krzyzanowski 4 Some services retain information about you • Accounts, configuration settings • Cloud storage – Files, email, photos, blogs, web sites – Encryption so the server has no access not always possible • Your interests, browsing history, messages – Important for data mining & targeted advertising – E.g., Facebook, Google December 10, 2019 CS 419 © 2019 Paul Krzyzanowski 5 Cookies on the web • Local name=value data stored at the browser & sent to a server – Avoids having to log in to a service repeatedly – Keeps track of session, shopping
    [Show full text]