Abstract image of a woman sitting on books and studying on a laptop

OSI Layer Security

Download as PPTX, PDF
Nurkholish Halim, profile picture
Nurkholish Halim

This document summarizes a seminar on computer network security given on November 22, 2012. It discusses the OSI model layers and security perspectives for each layer. The layers covered are the physical, data link, network, transport, session, presentation, and application layers. Common attacks are listed for each layer such as packet sniffing for the data link layer and SQL injection for the application layer. The document concludes with a reminder that social engineering is also an important security issue.

Technology
1 of 12
Downloaded 322 times
1
2
3
4
5
6
7
8
9
10
11
12
TECHNOTIK 2012, STMIK DIPANEGARA Seminar Keamanan Jaringan Komputer, 22 November 2012 OSI LAYER DAN PERSPEKTIF KEAMANANNYA Nurkholish Halim Email: nurkholish@IEEE.org
Introduction – computer security  Network Security Intrusion Prevention/Detection Systems Packet Filtering  Application Security Secure Coding Static Analysis  User Security Awareness Training Social Engineering
The OSI Layer Video Ref: http://www.youtube.com/watch?v=fiMswfo45DQ
Physical Layer  Keystroke Logging  Lockpicking  Cutting (Cable Disconnect)
Data Link Layer  Packet Sniffing  MAC Address Spoofing  ARP Cache Poisoning and Flooding (MITM)  WEP Cracking  VLAN Attack
Network Layer  Ping Flood (ICMP Flood)  Fingerprinting  Port Knocking  IPSec Attack
Transport layer  TCP Flooding  UDP Flooding
Session layer  Session Hijacking  NetBIOS user enumeration  Attacks on the Session Description Protocol (SDP)  and the Session Initiation Protocol (SIP)  DNS Poisoning  L2TP Attack
Presentation layer  SSL MITM  SSL DoS  SMB Attack  Kerberos Service Attack
Application layer  BufferOverflow  SQLi, RFI, LFI  HTTP DoS  APPS Auth BruteForce
Layer 8 ….???  Social Engineering!
Attack And Secure! Demo…

More Related Content

PPTX
Web application attacks
hruth
 
PPT
Introduction To OWASP
Marco Morana
 
PPTX
OWASP Top 10 2021 What's New
Michael Furman
 
PDF
Secure Code Review 101
Narudom Roongsiriwong, CISSP
 
PDF
Broken access control
Priyanshu Gandhi
 
PDF
Penetration testing & Ethical Hacking
S.E. CTS CERT-GOV-MD
 
PDF
Application Security | Application Security Tutorial | Cyber Security Certifi...
Edureka!
 
PPTX
Penetration Testing
RomSoft SRL
 
Web application attacks
hruth
 
Introduction To OWASP
Marco Morana
 
OWASP Top 10 2021 What's New
Michael Furman
 
Secure Code Review 101
Narudom Roongsiriwong, CISSP
 
Broken access control
Priyanshu Gandhi
 
Penetration testing & Ethical Hacking
S.E. CTS CERT-GOV-MD
 
Application Security | Application Security Tutorial | Cyber Security Certifi...
Edureka!
 
Penetration Testing
RomSoft SRL
 

What's hot (20)

PPTX
Burp suite
SOURABH DESHMUKH
 
PPTX
Malware- Types, Detection and Future
karanwayne
 
PPTX
Introduction to Metasploit
GTU
 
PDF
Web Application Security 101
Cybersecurity Education and Research Centre
 
PPTX
System hacking
CAS
 
PPTX
CSE-Ethical-Hacking-ppt.pptx
AnshumaanTiwari2
 
PDF
Cross site scripting attacks and defenses
Mohammed A. Imran
 
PDF
Threat Modelling
n|u - The Open Security Community
 
PDF
OWASP Top 10 Web Application Vulnerabilities
Software Guru
 
PPTX
Mobile security
priyanka pandey
 
PPTX
iOS Application Static Analysis - Deepika Kumari.pptx
deepikakumari643428
 
PPTX
VAPT PRESENTATION full.pptx
DARSHANBHAVSAR14
 
PPT
Web Application Security Testing
Marco Morana
 
PPT
Introduction to Web Application Penetration Testing
Anurag Srivastava
 
PPT
Operating system vulnerability and control
أحلام انصارى
 
PPTX
Denial of Service Attack
Dhrumil Panchal
 
PPT
Intro to Web Application Security
Rob Ragan
 
PPTX
Advanced persistent threat (apt)
mmubashirkhan
 
PPTX
Secure coding practices
Mohammed Danish Amber
 
PPTX
Brute force-attack presentation
Mahmoud Ibra
 
Burp suite
SOURABH DESHMUKH
 
Malware- Types, Detection and Future
karanwayne
 
Introduction to Metasploit
GTU
 
Web Application Security 101
Cybersecurity Education and Research Centre
 
System hacking
CAS
 
CSE-Ethical-Hacking-ppt.pptx
AnshumaanTiwari2
 
Cross site scripting attacks and defenses
Mohammed A. Imran
 
Threat Modelling
n|u - The Open Security Community
 
OWASP Top 10 Web Application Vulnerabilities
Software Guru
 
Mobile security
priyanka pandey
 
iOS Application Static Analysis - Deepika Kumari.pptx
deepikakumari643428
 
VAPT PRESENTATION full.pptx
DARSHANBHAVSAR14
 
Web Application Security Testing
Marco Morana
 
Introduction to Web Application Penetration Testing
Anurag Srivastava
 
Operating system vulnerability and control
أحلام انصارى
 
Denial of Service Attack
Dhrumil Panchal
 
Intro to Web Application Security
Rob Ragan
 
Advanced persistent threat (apt)
mmubashirkhan
 
Secure coding practices
Mohammed Danish Amber
 
Brute force-attack presentation
Mahmoud Ibra
 
Ad

Similar to OSI Layer Security (20)

PPTX
The Network Protocol Stack Revisited
inbroker
 
PPT
SYSTEM SECURITY - Chapter 1 introduction
Afna Crcs
 
PDF
ADVANCED PENETRATION TESTING.pdf
Cert Hippo
 
PDF
Cisel1 d
chandu_sai
 
PPTX
LogChaos: Challenges and Opportunities of Security Log Standardization
Anton Chuvakin
 
PDF
watch out Hackersprey cybersecurity syllabus
Hackersprey
 
DOCX
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
makdul
 
DOCX
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
daniahendric
 
DOCX
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
ronak56
 
DOCX
Ceh certified ethical hacker
bestip
 
PDF
10. sig free a signature free buffer overflow attack blocker
akila_mano
 
PDF
OpenSource IoT Middleware Frameworks
Siji Sunny
 
PDF
Dns Hardening Linux Os
ecarrow
 
PPTX
Understanding the Threat Landscape by SOPHOS
Netpluz Asia Pte Ltd
 
PDF
Deepthi ratnayake
LondonMet PGR Students
 
PPT
ECE 6570 Class01
Robert Daniel
 
PDF
Networking and communications security – network architecture design
EnterpriseGRC Solutions, Inc.
 
PPTX
Automotive security (cvta)
Alan Tatourian
 
PPTX
전력 계통망에 있어서 보안일반 및 이슈와 기술 그리고 정책 방향-소셜 네트워크 서비스 등 차세대 기술 환경 맥락으로-
JM code group
 
PPTX
OSI Model this seven features and works.pptx
removed_a1ec584850c8814c35602c4f4c5cc439
 
The Network Protocol Stack Revisited
inbroker
 
SYSTEM SECURITY - Chapter 1 introduction
Afna Crcs
 
ADVANCED PENETRATION TESTING.pdf
Cert Hippo
 
Cisel1 d
chandu_sai
 
LogChaos: Challenges and Opportunities of Security Log Standardization
Anton Chuvakin
 
watch out Hackersprey cybersecurity syllabus
Hackersprey
 
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
makdul
 
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
daniahendric
 
AbstractVoice over Internet Protocol (VoIP) is an advanced t.docx
ronak56
 
Ceh certified ethical hacker
bestip
 
10. sig free a signature free buffer overflow attack blocker
akila_mano
 
OpenSource IoT Middleware Frameworks
Siji Sunny
 
Dns Hardening Linux Os
ecarrow
 
Understanding the Threat Landscape by SOPHOS
Netpluz Asia Pte Ltd
 
Deepthi ratnayake
LondonMet PGR Students
 
ECE 6570 Class01
Robert Daniel
 
Networking and communications security – network architecture design
EnterpriseGRC Solutions, Inc.
 
Automotive security (cvta)
Alan Tatourian
 
전력 계통망에 있어서 보안일반 및 이슈와 기술 그리고 정책 방향-소셜 네트워크 서비스 등 차세대 기술 환경 맥락으로-
JM code group
 
OSI Model this seven features and works.pptx
removed_a1ec584850c8814c35602c4f4c5cc439
 
Ad

Recently uploaded (20)

PDF
EIS-Webinar-Regulated-Industries-2025-08.pdf
Earley Information Science
 
PDF
“The Future of Visual AI: Efficient Multimodal Intelligence,” a Keynote Prese...
Edge AI and Vision Alliance
 
PDF
Transform-Your-Supply-Chain-with-AI-Driven-Quality-Engineering.pdf
Kalilur Rahman
 
PDF
Accessing-Finance-in-Jordan-MENA 2024 2025.pdf
Mustafa Kuğu
 
PDF
Electrocardiogram sequences data analytics and classification using unsupervi...
IAESIJAI
 
PDF
LMS bot: enhanced learning management systems for improved student learning e...
IAESIJAI
 
PDF
SaaS reusability assessment using machine learning techniques
IAESIJAI
 
PDF
Aug23rd - Mulesoft Community Workshop - Hyd, India.pdf
Ravi Tamada
 
PDF
Build Real-Time ML Apps with Python, Feast & NoSQL
ScyllaDB
 
PPTX
SGT Report The Beast Plan and Cyberphysical Systems of Control
hopegirl587
 
PDF
MENA-ECEONOMIC-CONTEXT-VC MENA-ECEONOMIC
Mustafa Kuğu
 
PDF
Connector Corner: Transform Unstructured Documents with Agentic Automation
DianaGray10
 
PDF
The AI Revolution in Customer Service - 2025
Body of Knowledge
 
PDF
5-Ways-AI-is-Revolutionizing-Telecom-Quality-Engineering.pdf
Kalilur Rahman
 
PDF
giants, standing on the shoulders of - by Daniel Stenberg
Daniel Stenberg
 
PDF
Transform-Your-Streaming-Platform-with-AI-Driven-Quality-Engineering.pdf
Kalilur Rahman
 
PPTX
Microsoft User Copilot Training Slide Deck
zohoron1
 
PDF
Rapid Prototyping: A lecture on prototyping techniques for interface design
Mark Billinghurst
 
PDF
Transform-Quality-Engineering-with-AI-A-60-Day-Blueprint-for-Digital-Success.pdf
Kalilur Rahman
 
PDF
The-Future-of-Automotive-Quality-is-Here-AI-Driven-Engineering.pdf
Kalilur Rahman
 
EIS-Webinar-Regulated-Industries-2025-08.pdf
Earley Information Science
 
“The Future of Visual AI: Efficient Multimodal Intelligence,” a Keynote Prese...
Edge AI and Vision Alliance
 
Transform-Your-Supply-Chain-with-AI-Driven-Quality-Engineering.pdf
Kalilur Rahman
 
Accessing-Finance-in-Jordan-MENA 2024 2025.pdf
Mustafa Kuğu
 
Electrocardiogram sequences data analytics and classification using unsupervi...
IAESIJAI
 
LMS bot: enhanced learning management systems for improved student learning e...
IAESIJAI
 
SaaS reusability assessment using machine learning techniques
IAESIJAI
 
Aug23rd - Mulesoft Community Workshop - Hyd, India.pdf
Ravi Tamada
 
Build Real-Time ML Apps with Python, Feast & NoSQL
ScyllaDB
 
SGT Report The Beast Plan and Cyberphysical Systems of Control
hopegirl587
 
MENA-ECEONOMIC-CONTEXT-VC MENA-ECEONOMIC
Mustafa Kuğu
 
Connector Corner: Transform Unstructured Documents with Agentic Automation
DianaGray10
 
The AI Revolution in Customer Service - 2025
Body of Knowledge
 
5-Ways-AI-is-Revolutionizing-Telecom-Quality-Engineering.pdf
Kalilur Rahman
 
giants, standing on the shoulders of - by Daniel Stenberg
Daniel Stenberg
 
Transform-Your-Streaming-Platform-with-AI-Driven-Quality-Engineering.pdf
Kalilur Rahman
 
Microsoft User Copilot Training Slide Deck
zohoron1
 
Rapid Prototyping: A lecture on prototyping techniques for interface design
Mark Billinghurst
 
Transform-Quality-Engineering-with-AI-A-60-Day-Blueprint-for-Digital-Success.pdf
Kalilur Rahman
 
The-Future-of-Automotive-Quality-is-Here-AI-Driven-Engineering.pdf
Kalilur Rahman
 

OSI Layer Security

  • 1. TECHNOTIK 2012, STMIK DIPANEGARA Seminar Keamanan Jaringan Komputer, 22 November 2012 OSI LAYER DAN PERSPEKTIF KEAMANANNYA Nurkholish Halim Email: [email protected]
  • 2. Introduction – computer security  Network Security Intrusion Prevention/Detection Systems Packet Filtering  Application Security Secure Coding Static Analysis  User Security Awareness Training Social Engineering
  • 3. The OSI Layer Video Ref: http://www.youtube.com/watch?v=fiMswfo45DQ
  • 4. Physical Layer  Keystroke Logging  Lockpicking  Cutting (Cable Disconnect)
  • 5. Data Link Layer  Packet Sniffing  MAC Address Spoofing  ARP Cache Poisoning and Flooding (MITM)  WEP Cracking  VLAN Attack
  • 6. Network Layer  Ping Flood (ICMP Flood)  Fingerprinting  Port Knocking  IPSec Attack
  • 7. Transport layer  TCP Flooding  UDP Flooding
  • 8. Session layer  Session Hijacking  NetBIOS user enumeration  Attacks on the Session Description Protocol (SDP)  and the Session Initiation Protocol (SIP)  DNS Poisoning  L2TP Attack
  • 9. Presentation layer  SSL MITM  SSL DoS  SMB Attack  Kerberos Service Attack
  • 10. Application layer  BufferOverflow  SQLi, RFI, LFI  HTTP DoS  APPS Auth BruteForce
  • 11. Layer 8 ….???  Social Engineering!