Upload File

host and application security lesson 20: how the web does not work

  • Home
  • Documents
  • Host and Application Security Lesson 20: How the Web Does not Work
9
Host and Application Security Lesson 20: How the Web Does not Work

Upload: benedict-hall

Post on 20-Jan-2016

216 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: Host and Application Security Lesson 20: How the Web Does not Work

Host and Application SecurityLesson 20: How the Web Does not Work

Page 2: Host and Application Security Lesson 20: How the Web Does not Work

Remind me… Precisely how does the web work?

Page 3: Host and Application Security Lesson 20: How the Web Does not Work

Web Vulns This is host and application security, so we’re

focusing on the host issues

Page 4: Host and Application Security Lesson 20: How the Web Does not Work

Simple Simple buffer overruns/security vulns in the

browser or in its plugins Determining the list of plugins is harder than

it probably needs to be

Page 5: Host and Application Security Lesson 20: How the Web Does not Work

Javascript Pretty powerful language History of different classes of vulnerabilites…

perhaps most famous is cross site scripting

Page 6: Host and Application Security Lesson 20: How the Web Does not Work

Java Applets Tell me about Java Applets and their security

model Isn’t that good enough? Why? Why not?

Page 7: Host and Application Security Lesson 20: How the Web Does not Work

ActiveX “Safe for scripting”? ActiveX: Pros and Cons?

Page 8: Host and Application Security Lesson 20: How the Web Does not Work

Clickjacking A really neat exploit – get the user to click on

one thing when they think they are clicking on another

Example: a one click bank transfer Cross-frame issues make life very interesting

Page 9: Host and Application Security Lesson 20: How the Web Does not Work

To Do Find and read the ACM Queue paper

“Browser Security: Lessons from Google Chrome”

Write a demonstration of a cross site scripting attack. Do this in essay form, showing the code you would have on both ends and how it would work. What is the future for XSS attacks?


Host and Application Security Lesson 3: What is Information?

What Does Creativity Look Like? A lesson on creativity

Do and Does Aims of the lesson Do Does Don’t Doesn’t

Immunology- 2011. Lesson Outline 1. Infectious disease 2. Pathogenicity 3. How does host and pathogen interact? 4.Microbial Virulence Factors Antiphagocytic

Lesson 2 How does food move down the oesophagus?

Access Prior Knowledge Lesson 1: How Does Air Move? Lesson 2: What are Air Masses?

Lesson de Simple Present Con Does

Lesson Three How Does The Uk Fit

Chapter 5, Lesson 2 EQ: Why does conflict develop?

LESSON 6: WHERE DOES OUR FOOD COME FROM?

DOES HOST COUNTRY CULTURE AFFECT FOREIGN RETAILER PERFORMANCE? · DOES HOST COUNTRY CULTURE AFFECT FOREIGN RETAILER … 11 countries within as well as outside Europe. We thus believe

Lesson 1 Lesson Part Activity description/Teacher does ...ilove2learnilove2teach.weebly.com/.../7/37575229/perfect-lesson-pla… · Lesson 1 Lesson Part Activity description/Teacher

Lesson 3: Integration –what does it mean?

Lesson 1 Lesson Part Activity description/Teacher does ... · PDF fileLesson 1 Lesson Part Activity description/Teacher does Students do ... Vocabulary chart, copies of anchor charts

Lesson 3 1 Corinthians 7: What Does It Teach?

Host Site Facilitator Lesson Plan - For Your Information · Host Site Facilitator Lesson Plan ... This session will feature ideas and activities that help foster ... How can 4-H members

Lesson 01 What does a historian do?

MACROECONOMIC QUESTIONS LESSON ONE. WHY DOES OUTPUT FLUCTUATE?

Host and Application Security Lesson 4: The Win32 Boot Process

Foreign direct investment and host country economic growth: Does

Exploiter-Victim Relationships Host-Parasite: Host death need not occur, and often does not; birth rate of host reduced by parasite Host-Parasitoid: Host

Lesson 6: Dynamic Host Configuration Protocol DHCP (Part1)

G2 Lesson 7 -Baptism Does Many Things for Us

LESSON 2 How Does Government Secure Natural Rights?

Lesson 2: How Does Your Garden Grow?

Application Layer · PDF fileNetwork L/P L/P Transport Host Router Host. 4 ... does the IP address of the host on which the ... and sends message into its

Effects of Animal Viruses on Host Cells (What does the virus do to the host cell?)

Host Card Emulation in Android: What Does it Mean?

How Does FDI Affect Host Country Development? …...How Does FDI Affect Host Country Development? Using Industry Case Studies to Make Reliable Generalizations THEODORE H. MORAN 281

POSITIVE MENTAL ATTITUDES – LESSON 2 How does it feel?

Lesson 52. What does God teach us about pastors?

Lesson Two How Does England Fit Into

Foreign Firms and Host-Country Productivity: Does the Mode

Lesson 4: How Does the Environment Affect Sea Turtle Nests?...Sea Turtle 5th Grade Curriculum Lesson 4: ... Lesson 4: How Does the Environment Affect Sea Turtle Nests? Description:

FPGA Lesson 3 (Host Interface)