Check Point Certified Security Engineer
Bạn đang xem bản rút gọn của tài liệu. Xem và tải ngay bản đầy đủ của tài liệu tại đây (105.4 KB, 13 trang )
%UDLQ%X]]
&UDPVHVVLRQ
TM
Notice: While every precaution has been taken in the preparation of this material, neither the author nor BrainBuzz.com
assumes any liability in the event of loss or damage directly or indirectly caused by any inaccuracies or incompleteness of
the material contained in this document. The information in this document is provided and distributed “as-is”, without any
expressed or implied warranty. Your use of the information in this document is solely at your own risk, and Brainbuzz.com
cannot be held liable for any damages incurred through the use of this material. The use of product names in this work is
for information purposes only, and does not constitute an endorsement by, or affiliation with BrainBuzz.com. Product
names used in this work may be registered trademarks of their manufacturers. This document is protected under US and
international copyright laws and is intended for individual, personal use only. For more details, visit our legal page
.
© 2000 All Rights Reserved – BrainBuzz.com
/DVWXSGDWHG-XQH&OLFN
KHUH
IRUXSGDWHV
&OLFNKHUH
WRVHHDGGLWLRQDO
GRFXPHQWVUHODWHGWRWKLVVWXG\
JXLGH
&RQWHQWV
8r
SrrÃHhhtrrÃ6puvrpr !
AvrhyyÃHqyr!
HhhtrrÃ8yr!
BVDÃ8yvr "
Gvprvt "
TrÃÃhqÃpsvthv "
6qvvhÃytÃvÃpr#
SrvtÃSrrÃHhhtrr $
QyhprrÃsÃTQAÃAvyr$
SrÃTrpvÃHhhtrr$
@pvÃUrpuyt %
6rvpÃrpv%
TrvpÃrpvÃ9@TÃ"9@TÃ
AXa ÃS8!ÃS8# %
9vssrrÃUr)&
FrÃHhhtrrÃTpurr '
TrÃÃrÃÃWQI(
GhqÃ7hyhpvt
7hyhpvtÃ6ytvu)
GtÃChqyvtÃhqÃVrÃ6pvvvrÃ
Uhpxvt
TIHQ
DhÃ8hq !
&UDPVHVVLRQIRU
&KHFN3RLQW
&HUWLILHG6HFXULW\
(QJLQHHU;
$EVWUDFW
7KLV&UDPVHVVLRQZLOOKHOS\RXWR
SUHSDUHIRU&KHFN3RLQW([DP&&6([
&KHFN3RLQW&HUWLILHG6HFXULW\(QJLQHHU
;([DPWRSLFVLQFOXGH)LUH:DOO
&RQILJXUDWLRQ&30$'DQG6<1'HIHQGHU
&RQILJXUDWLRQ(QFU\SWLRQ7HFKQRORJ\
931$UFKLWHFWXUHDQG'HSOR\PHQW
$SSOLFDWLRQVDQG/RDG%DODQFLQJ0RGHV
%UDLQ%X]]&UDPVHVVLRQ&KHFN3RLQW&HUWLILHG6HFXULW\(QJLQHHU;
&KHFN3RLQW&HUWLILHG6HFXULW\(QJLQHHU
;
5HPRWH0DQDJHPHQW$UFKLWHFWXUH
•
$WLHUDUFKLWHFWXUHWKHUHFDQEHPDQ\GLIIHUHQWORFDWLRQVVHFXULW\
HQIRUFHPHQWSRLQWVFRQWUROOHGE\DFHQWUDO0DQDJHPHQW&RQVROH
$GPLQLVWUDWRUVFDQDGPLQLVWHUWKHVHFXULW\V\VWHPHLWKHUGLUHFWO\YLDWKH
FRQVROHRUE\UXQQLQJ*8,FOLHQWVFRQQHFWHGWRWKH0DQDJHPHQW&RQVROH
WKURXJKWKHQHWZRUNIURPDQRWKHUGHVNWRS
)LUHZDOO0RGXOHV
5HVSRQVLEOHIRU
•
(QIRUFLQJVHFXULW\SROLF\
•
5HSRUWLQJVWDWXVDQGORJGDWDWRLWVPDQDJHPHQWVHUYHU
5XQVRQ
•
6XQ+3
•
:LQGRZV17
•
,%056
•
%D\1HWZRUNV&LVFRDQG&RP5RXWHUV
•
;\ODQDQG,SVLORQ6ZLWFKHV
Inspection Engine uses Stateful Inspection Technology
•
8VHVFRQWH[WWRGHWHUPLQHLIDFRPPXQLFDWLRQUHTXHVWVKRXOGEHDOORZHG
•
8QGHUVWDQGVWKHLQWHQWRIDJLYHQFRPPXQLFDWLRQE\OHDUQLQJIURPSUHYLRXV
FRPPXQLFDWLRQVHVVLRQVDQGDOORZVLWWKURXJKIRUWKHGXUDWLRQRIWKHVHVVLRQ
•
%XLOGVXSDG\QDPLFVWDWHWDEOHWRVWRUHVWDWHLQIRUPDWLRQ
•
&ORVHVWKHQHHGHGSRUWZKHQWKHFOLHQWVHVVLRQFRQFOXGHV
0DQDJHPHQW&RQVROH
5HVSRQVLEOHIRU
•
0DQDJLQJREMHFW'%VUXOHEDVHVORJILOHV
•
&RQFXUUHQWDGPLQLVWUDWLYHDFFHVVZLWKYDU\LQJULJKWV
%UDLQ%X]]&UDPVHVVLRQ&KHFN3RLQW&HUWLILHG6HFXULW\(QJLQHHU;
5XQVRQ
•
6XQ26
•
6RODULV
•
6RODULV[
•
+38;
•
:LQGRZV17
•
$,;
*8,&OLHQWV
5HVSRQVLEOHIRU
•
%XLOGLQJREMHFWVUXOHV
•
9LHZVORJVDQG):VWDWXV
5XQVRQ
•
:LQGRZV17
•
;0RWLI6XQ+3$,;
•
*8,LVDYDLODEOHRQO\IRU:LQ17DQG0RWLI7KHH[DPIRFXVHVRQWKH
*8,QRWWKHFRPPDQGOLQH7KHGLIIHUHQW*8,VDUH6HFXULW\3ROLF\(GLWRU
IRUVHWWLQJXSWKHVHFXULW\VHWWLQJV/RJ9LHZHUIRUYLHZLQJWKHORJVDQG
6\VWHP6WDWXVWRROIRUYLHZLQJWKHFXUUHQWVWDWLVWLFVRIGLIIHUHQWILUHZDOO
FRPSRQHQWV1HWZRUN2EMHFW0DQDJHULVDIXQFWLRQZLWKLQWKH3ROLF\(GLWRU,W
LVXVHGWRFUHDWHREMHFWVVRWKDWZHFDQSODFHWKHREMHFWVLQWKHUXOHEDVHDQG
VHWXSFRUUHVSRQGLQJVHFXULW\UXOHV
/LFHQVLQJ
•
)RUWKH6LQJOH*DWHZD\3URGXFWWKHUHLVRQO\RQH)LUHZDOO0RGXOHFRQWUROOHG
E\RQH0DQDJHPHQW&RQVROHDQGWKH\KDYHWREHLQVWDOOHGRQWKHVDPH
PDFKLQHPHDQLQJWKHUHLVRQO\RQHVHFXULW\HQIRUFHPHQWSRLQW+RZHYHU\RX
FDQVWLOOUXQWKH*8,FOLHQWIRUPDQRWKHUGHVNWRS)RUPXOWLSOHJDWHZD\
SURGXFWVWKHUHFRXOGEHPXOWLSOHHQIRUFHPHQWSRLQWV)RUH[DPSOH)LUHZDOO
,QWHUQHW*DWHZD\PHDQV\RXFDQKDYHXSWR)LUHZDOOPRGXOHV
FRQWUROOHGE\RQH0DQDJHPHQW&RQVROH
6HWXSDQGFRQILJXUDWLRQ
•
7RVHWXSWKH0DQDJHPHQW&RQVROHILUVWUXQ&RQILJXUDWLRQ0DQDJHURQWKH
UHPRWH17PDQDJHPHQWVWDWLRQDQGFUHDWHWKHDGPLQLVWUDWRUDFFRXQWVYLD
WKH$GPLQLVWUDWRUVWDE7KHQDGGWKH,3DGGUHVVHVRIWKH*8,&OLHQWVWKDWFDQ
%UDLQ%X]]&UDPVHVVLRQ&KHFN3RLQW&HUWLILHG6HFXULW\(QJLQHHU;
ORJLQWRWKHORFDOJDWHZD\YLDWKH*8,&OLHQWVWDE)LQDOO\ORJLQWRWKH
0DQDJHPHQW&RQVROHYLDWKH*8,&OLHQWV6HFXULW\3ROLF\/RJLQZLQGRZ
•
2Q8QL[VHWXSLQYROYHVUXQQLQJWKHFRPPDQG³IZP±D´RQWKH0DQDJHPHQW
&RQVROHWRDGGWKHQHFHVVDU\)LUH:DOODGPLQLVWUDWRUDFFRXQWV(GLWWKH
HWFIZFRQIJXLFOLHQWVILOHRQWKH0DQDJHPHQW&RQVROHDQGDGGWKH,3
DGGUHVVHVRUKRVWQDPHVRIWKH*8,&OLHQWKRVWVWKDWDUHDOORZHGWRUHPRWHO\
ORJLQ
$GPLQLVWUDWRUORJLQSURFHVV
•
*8,FOLHQWWUDQVPLWVWKHDGPLQLVWUDWRUVXVHUQDPHDQGSDVVZRUGWRWKH
0DQDJHPHQW&RQVROH$IWHUYDOLGDWLQJWKH*8,FOLHQWV,3DGGUHVVWKH
0DQDJHPHQW&RQVROHV):0DXWKHQWLFDWHVWKHDGPLQLVWUDWRUVXVHUQDPH
SDVVZRUGDQGDVVLJQVWKH*8,FOLHQWLWVDFFHVVFRQWUROULJKWVDQGVHQGVDORQJ
WKHDSSURSULDWHGDWDEDVHLQIRUPDWLRQLQFOXGLQJVHFXULW\SROLF\REMHFW
GDWDEDVHVORJGDWDEDVHHWF
o $GPLQLVWUDWRUFDQKDYHGLIIHUHQWOHYHOVRIDFFHVVULJKWV
o 0RQLWRU2QO\DFFHVVRQO\WRWKHORJYLHZHUDQGV\VWHPVWDWXVWRROLQ
UHDGRQO\PDQQHU
o 5HDG2QO\LQDGGLWLRQWRWKHULJKWVHQMR\HGE\0RQLWRU2QO\
DGPLQLVWUDWRUFDQDFFHVVWKH6HFXULW\3ROLF\(GLWRULQUHDGRQO\PDQQHU
o 8VHU$FFHVVDGPLQLVWUDWRUFDQPRGLI\XVHULQIRUPDWLRQEXWQRWKLQJ
HOVH
o 5HDG:ULWH$FFHVVDGPLQLVWUDWRUFDQGRHYHU\WKLQJ2QO\RQH
DGPLQLVWUDWRUFDQORJLQXVLQJWKLVPRGHDWDWLPH
&RPPXQLFDWLRQEHWZHHQWKH0DQDJHPHQW&RQVROHDQGWKH
)LUHZDOO0RGXOHV
•
7KH)LUHZDOO0RGXOHREMHFWPXVWEHGHILQHGDVDQ,QWHUQDOREMHFWLQRUGHUIRU
UHPRWHPDQDJHPHQWWRZRUN
•
IZGRQWKH0DQDJHPHQW&RQVROHLQLWLDWHVDFRQQHFWLRQWRIZGRQWKHILUHZDOO
DQGVHQGVWKHHQFU\SWHGSXWNH\SDVVZRUGDVFRPSLODWLRQRIWKH6HFXULW\
3ROLF\LVILQLVKHG$IWHUYDOLGDWLQJWKH0DQDJHPHQW&RQVROHV,3DGGUHVVLQWKH
):',5FRQIPDVWHUVILOHIZGDXWKHQWLFDWHVWKHSXWNH\SDVVZRUGDQG
DFFHSWVWKHFRPSLOHGLQWHUQDOXVHUGDWDEDVHVDQGVHFXULW\SROLF\DQGLQVWDOOVLW
LQWKH,QVSHFWLRQ(QJLQH
•
$QDXWKHQWLFDWLRQNH\QHHGVWREHFUHDWHGRQWKH0DQDJHPHQW&RQVROHIRU
HDFK)LUHZDOO0RGXOHWKDWWKLV0DQDJHPHQW&RQVROHZLOOUHPRWHO\EHLQFKDUJH
RI
o 1RQ8QL[SXWNH\FRPPDQGV\QWD[IZSXWNH\SSDVVZRUGILUHZDOO
PRGXOHLSDGGUHVV
o 8QL[SXWNH\FRPPDQGV\QWD[IZSXWNH\SDEFQ
%UDLQ%X]]&UDPVHVVLRQ&KHFN3RLQW&HUWLILHG6HFXULW\(QJLQHHU;
5HPRYLQJ5HPRWH0DQDJHPHQW
•
%RXQFLQJWKH)LUHZDOOLVWKHSURFHVVRIVWRSSLQJDQGUHVWDUWLQJWKHILUHZDOO
GDHPRQIZG7KLVFDXVHVIZGWRUHUHDGWKHORFDOPDVWHUVILOHDQGDOORZWKH
0DQDJHPHQW&RQVROHWRUHPRWHO\LQVWDOOVHFXULW\SROLFLHV
•
7RUHPRYHUHPRWHPDQDJHPHQW\RXUHPRYHWKHPDVWHUVILOHLQWKH
):',5FRQIGLUHFWRU\IURPWKH)LUHZDOO0RGXOH%RXQFHWKHILUHZDOODQGWKHQ
ORJLQWRWKHVHFXULW\SROLF\&KDQJHWKHORFDWLRQRIWKH)LUHZDOO0RGXOHWR
H[WHUQDODQGLQVWDOOWKHSROLF\DJDLQ
3ODFHPHQWRI63))LOH
•
5XOHVWKDWPDNHXSD6HFXULW\3ROLF\)LOH63)IRUDVLQJOH)LUHZDOO0RGXOH
FDQEHNHSWLQDQLQGLYLGXDO63)RQWKH0DQDJHPHQW&RQVROHRUFRPELQHG
ZLWKUXOHVRIRWKHU)LUHZDOO0RGXOHVLQWRDFRPELQHG63)7RDYRLGFRQIXVLRQ
QDPHWKH63)WRLQGLFDWHLWLQFOXGHVWKHFRPELQHGUXOHVRIPXOWLSOH)LUHZDOO
0RGXOHV$OVRLQWKH,QVWDOO2QFROXPQRIHDFKUXOHVSHFLI\WKHSDUWLFXODU
WDUJHWVRIWKH)LUHZDOO0RGXOHVREMHFWVFOHDUO\
•
)RU'XDO0DQDJHPHQW&RQVROHFRQILJXUDWLRQ63)VVKRXOGEHPDLQWDLQHGRQ
WKH3ULPDU\0DQDJHPHQW&RQVROH30&:KHQDFKDQJHLVPDGHWRDQ63)
WKDW63)DQGFHUWDLQUHODWHGILUHZDOOGDWDEDVHVQHHGWREHFRSLHGWRWKH
6HFRQGDU\0DQDJHPHQW&RQVROH60&PDQXDOO\E\WKH):$GPLQLVWUDWRU
(DFK)LUHZDOO0RGXOHVKRXOGLQFOXGHWKH,3DGGUHVVRIERWKWKH30&DQG60&
LQWKHLUORFDOPDVWHU¶VILOH
•
)LUHZDOO0RGXOHZLOOVHQGHDFKORJHQWU\WRERWK0&V$OOORJVIURPDOOUHPRWH
)LUHZDOO0RGXOHVZLOOEHGLVSOD\HGRQERWK0&VLQWKHRUGHUWKH\ZHUH
UHFHLYHG7RGLVSOD\VSHFLILFHQWULHVXVHWKH6HOHFWLRQ&ULWHULD0DQDJHU
5RXWHU6HFXULW\0DQDJHPHQW
•
7KHUHDUHVHYHQPDLQVWHSVLQFRQILJXULQJURXWHUVHFXULW\IRUDVSHFLILFURXWHU
&RQILJXUHURXWHULQWHUIDFHVRQWKHURXWHUYLDWKHFRQVROHFDEOH
IROORZLQJWKHVWHSVVSHFLILHGE\WKHURXWHUPDQXIDFWXUHU
&RQILJXUH6103RQWKHURXWHU
)LUH:DOOFDQJHWDQGVHW6103LQIRUPDWLRQIURPWRWKHURXWHU
6103UHDGDQGZULWHFRPPXQLW\VWULQJVQHHGWREHFRQILJXUHGLQWRWKHURXWHU
PDQXDOO\VRWKDW6103LQIRUPDWLRQFDQEHUHDGIURPDQGZULWWHQWRWKH
URXWHUE\DOOZKRNQRZWKHUHDGZULWHFRPPXQLW\VWULQJ
&RQILJXUHWKHHQDEOHSDVVZRUGRQWKHURXWHU
2QD&LVFRURXWHUWKHUHDUHWZRSDVVZRUGVWKHORJLQSDVVZRUGDQGWKH
HQDEOHSDVVZRUG
*RLQWRWKHJOREDOFRQILJXUDWLRQPRGHDQGXVHWKHHQDSDVVZRUGFRPPDQG
![violent python [electronic resource] a cookbook for hackers, forensic analysts, penetration testers and security engineers](https://media.store123doc.com/images/document/14/y/lt/medium_ltw1401378089.jpg)
