1
Instant Messaging Security and
Firewalls
Docsity.com
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
Guidelines and tips
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
Community
Ask the community
Ask the community for help and clear up your study doubts
University Rankings
Discover the best universities in your country according to Docsity users
Free resources
Our save-the-student-ebooks!
Download our free guides on studying techniques, anxiety management strategies, and thesis advice from Docsity tutors
IM Security & Firewalls: Types, Vulnerabilities & Solutions, Slides of Network security
An overview of instant messaging (im) security and firewalls. It covers the different types of im systems, their vulnerabilities, and the role of firewalls in securing im communications. Topics include im authentication, peer-to-peer vs. Peer-to-network models, im port usage, and various firewall types such as nat, packet filtering, proxy servers, and stateful packet inspection.
Typology: Slides
2012/2013
1 / 17
This page cannot be seen from the preview
Don't miss anything!
Related documents
Partial preview of the text
Download IM Security & Firewalls: Types, Vulnerabilities & Solutions and more Slides Network security in PDF only on Docsity!
1
Instant Messaging Security and
Firewalls
2
IM Security and Firewalls
- IM types
- IM vulnerabilities
- New IM products
- Firewalls
- NAT, PAT
- Packet filtering
- Proxy Server
- Stateful packet inspection
- Access control lists
4
Instant Messenger
- IM uses real-time communication
- IM can be used only with clients who are online at
that time
- IM operates in peer-to-peer or peer-to-network
models
- IM transports sensitive and confidential data
- IM sends plain text over public networks
- AIM is the most used IM system followed by ICQ
5
Instant Messenger
- IM uses username and password for
authentication
- IM requires immediate response, unlike
- IM can transfer files
7
IM Vulnerabilities
- IM uses both TCP and UDP ports that are
not usually monitored
- IM uses higher range ports that are usually
not monitored
- Different IMs use different set of ports
8
New IM products
- Encryption is available with IM products on
an optional basis
- A firewall can block all IM ports
- Enterprise AIM and Trillian are two
products that provide encryption
10
Firewalls
- Packet filtering firewalls are basically
routers with advanced filtering techniques.
Cisco calls packet filters as Access Control
Lists (ACLs)
- Sample Cisco IOS command for ACL: access-list 101 permit tcp any 1.2.3.4 0.0.0.0 eq 80 access-list 101 deny ip any 1.2.3.4 0.0.0.0 - r u
11
Firewalls
- Proxy servers are application gateways
- Proxies are partially aware of protocol states and
fully aware of application states
- Proxies are rarely transparent to users
- Proxies are resource intensive
- Considered to be first generation firewalls
- Proxies are not easily scalable
- SOCKS is an example of a proxy server
13
DMZ
- Demilitarized Zone is the area between the
outside world and the trusted internal
network where publicly accessed servers are
placed
- Bastion hosts are computers that reside in
the DMZ and are exposed to attacks
14
DMZ diagram
Internet
Firewall
PC
PC
Public Server
PC
PC
Private Server
DMZ
16
References
- www.ceruleanstudios.com has information
about Trillian IM
17