7/31/2019 An Ninh Mang 2198

1/142

HC VIN CNG NGH BU CHNH VIN THNG

AN NINH MNG

(Dng cho sinh vin h o to i hc t xa)

Lu hnh ni b

7/31/2019 An Ninh Mang 2198

2/142

HC VIN CNG NGH BU CHNH VIN THNG

AN NINH MNG

Bin son : HUNH THANH HA

7/31/2019 An Ninh Mang 2198

3/142

Tng quan v an ton bo mt. An ton h thng thng tin l g ?

Mc tiu bo v h thng thng tin. Cc yu cu an ton bo mt h thng

thng tin : c 4 yu cu chnh

7/31/2019 An Ninh Mang 2198

4/142

m bo tnh tin cy(Confidentiality

):Thng tin khng thb truy nhp triphp bi nhng ngi khng c thmquyn.

m bo tnh nguyn vn(Integrity

):

Thng tin khng thb sa i, b lmgi bi nhng ngi khng c thmquyn.

7/31/2019 An Ninh Mang 2198

5/142

m bo tnh sn sng(Availability

):Thng tin lun sn sng p ng sdng cho ngi c thm quyn

m bo tnh khng thtchi (Non-repudiation): Thng tin c camkt v mt php lut ca ngi cungcp.

7/31/2019 An Ninh Mang 2198

6/142

Cc nguyn tc c bn khi thit kccgii php bo v h thng thng tin.

Cc bc xy dng "chng trnh bov thng tin" : c 6 bc

7/31/2019 An Ninh Mang 2198

7/142

Xy dng chnh sch an ton thng tin(Policy).

Phn tch ri ro trong h thng thng tin(Risk Analysis). Xy dng cc bin php phng chng

(Prevention).

Xy dng cc bin php pht hin(Detection). Xy dng cc bin php p ng - phn

ng (Response). Xy dng "vn ho" cnh gic (Vigilance).

7/31/2019 An Ninh Mang 2198

8/142

Xy dng chnh sch an ton

thng tin B chnh sch ATTT nhm xc nh:

Confidentiality (Tnh bo mt), Integrity(Tnh ton vn), Availability (Tnh snsng).

7/31/2019 An Ninh Mang 2198

9/142

V d: mt chnh sch ATTT

7/31/2019 An Ninh Mang 2198

10/142

Phn tch - nh gi ri ro Cc mi e do (Threats).

Cc im yu (Vulnerabilites). Cc ri ro (Risk).

7/31/2019 An Ninh Mang 2198

11/142

Hin trng an ton bo mt. Nhn thc v u tcho Security.

7/31/2019 An Ninh Mang 2198

12/142

7/31/2019 An Ninh Mang 2198

13/142

Mc tiu v ngun gc ca tn

cng

7/31/2019 An Ninh Mang 2198

14/142

7/31/2019 An Ninh Mang 2198

15/142

Thit hi.

7/31/2019 An Ninh Mang 2198

16/142

Tnh trung bnh stin thit hi ca cc tchc, doanh nghip v cc dch v c

thng k trong bng di y:

7/31/2019 An Ninh Mang 2198

17/142

Tng stin thit hi hng nm ca cct chc doanh nghip c thng k

trong bng sau:

7/31/2019 An Ninh Mang 2198

18/142

Cc kiu tn cng v thit hi Denial of Service

Virus

Unauthorized insider access

7/31/2019 An Ninh Mang 2198

19/142

Cc cng ngh c la chn Bc tng la (Firewall) Phng chng virus Bo v vt l h thng pht hin xm nhp (IDS).

7/31/2019 An Ninh Mang 2198

20/142

* M Hnh Bo Mt

7/31/2019 An Ninh Mang 2198

21/142

7/31/2019 An Ninh Mang 2198

22/142

THANKS

7/31/2019 An Ninh Mang 2198

23/142

7/31/2019 An Ninh Mang 2198

24/142

ISO 17799 nhm thit lp h thng qunl bo mt thng tin, gm cc bc nh

sau: a) Xc nh phm vi v ranh gii ca h

thng ISMS ph hp vi c im ca

hot ng kinh doanh, vic t chc, v tra l, ti sn v cng ngh, v bao gmcc chi tit ca chng v cc minh chng

cho cc loi tr trong phm vi p dng.

7/31/2019 An Ninh Mang 2198

25/142

b) Xc nh mt chnh sch ca h thng bomt ph hp vi c im ca hot ng

kinh doanh, vic t chc, v tr a l, ti snv cng ngh m:

1) Bao gm c cu cho vic thit lp cc

mc tiu v xy dng thc chung trongnh hng v cc nguyn tc hnh ngvbo mt thng tin.

7/31/2019 An Ninh Mang 2198

26/142

2) Quan tm n cc hot ng kinh doanhv cc yu cu ca lut hoc php l, v cc

bn phn bo mt tha thun. 3) Sp xp thc hin vic thit lp v duy tr

h thng ISMS trong chin lc ca t chc

v vic qun l cc ri ro. 4) Thit lp tiu chun nh gi cc ri ro

5) c duyt bi lnh o

7/31/2019 An Ninh Mang 2198

27/142

c) Xc nh cch thc nh gi ri ro ca tchc

1) Xc nh phng php nh gi ri roph hp vi h thng mng, v nhng thngtin ca hot ng kinh doanh xc nh,

cc yu cu ca lut v php ch 2) Xy dng tiu chun chp nhn cc ri ro

v xc nh cc mc chp nhn

7/31/2019 An Ninh Mang 2198

28/142

d) Xc nh cc ri ro

1) Xc nh cc ti sn thuc phm vi ca h

thng mng v cc ch nhn ca nhng ti snny

2) Xc nh cc ri ro cho cc ti sn

3) Xc

nh cc yu i

m m c thb

khai thc

hoc li dng bi cc mi e da

4) Xc nh cc nh hng hoc tc ng lmmt tnh b mt, ton vn v sn c m c th c

cc ti sn ny

7/31/2019 An Ninh Mang 2198

29/142

e) Phn tch v nh gi cc ri ro

1) nh gi cc tc ng nh hng nhot ng ca t chc c th c do li bomt, Quan tm xem xt cc hu qu cavic mt tnh bo mt, ton vn hoc sn c

ca cc ti sn 2) nh gi kh nng thc t c th xy ra

cc li bo mt do khinh sut cc mi e

da v yu im phbin hoc thng gp,

7/31/2019 An Ninh Mang 2198

30/142

v do cc nh hng lin quan n ccti sn ny, v do vic p dng cc

bin php kim sot hin hnh. 3) c lng cc mc ri ro 4) nh r xem coi cc ri ro c th

chp nhn c hay cn thit phi c

x l bng cch s dng cc tiu chunchp nhn ri ro c lp trong mcc 2

7/31/2019 An Ninh Mang 2198

31/142

f) Xc nh v nh gi cc phng n x lcc ri ro

1) p dng cc bin php kim sot thchhp

2) Ch tm v mt cch khch quan chpnhn cc ri ro, vi iu kin chng thamn mt cch r rng cc chnh sch ca tchc v cc chun mc chp nhn ri ro.

7/31/2019 An Ninh Mang 2198

32/142

3) Trnh cc ri ro

4) Chuyn cc cng vic ri ro lin icho cc t chc/c nhn khc nh nhbo him, nh cung cp

7/31/2019 An Ninh Mang 2198

33/142

g) Chn cc mc tiu kim sot v cc binphp kim sot x l cc ri ro

h) Thng qua lnh o cc sut v cc riro cn li sau x l

i) c php ca lnh o p dng v vnhnh h thng qun l bo mt thng tin

7/31/2019 An Ninh Mang 2198

34/142

j) Chun bbn tuyn b p dng

1) Cc mc tiu kim sot v cc bin phpkim sot c v cc l do chn chng

2) Cc mc tiu kim sot v cc bin phpkim sot hin ang c p dng

3) Cc ngoi l ca bt k cc mc tiukim sot v cc bin php kim sot vminh chng cho chng.

7/31/2019 An Ninh Mang 2198

35/142

p dng v vn hnh h thng mng theoISO 17799 gm cc bc nh sau:

a) Trnh by mt k hoch x l ri ro rrng xc nh sph hp ca cc hnhng ca lnh o, cc ngun lc, trch

nhim v u tin ca vic qun l cc riro bo mt thng tin

7/31/2019 An Ninh Mang 2198

36/142

b) p dng k hoch x l ri ro mt c cc mc tiu kim sot xc

nh, trong bao gm vic xem xt chiph (funding) v sphn cng vai tr vtrch nhim

c) p dng cc bin php kim sot cla chn nhm t c cc mc tiukim sot

7/31/2019 An Ninh Mang 2198

37/142

d) Xc nh cch thc o lng hiu quca cc bin php kim sot chn hoc

nhm cc kim sot v xc nh cchthc s dng cc cch o ny kimsot nh gi mt cch hiu qu cho ra

cc kt qu c th so snh v ti thcnghim

7/31/2019 An Ninh Mang 2198

38/142

e) o to p dng v cc chng trnhnhn thc

f) Qun l hot ng ca h thng mng

g) Qun l ngun lc cho h thng mng

h) p dng cc th tc quy trnh v cc binphp kim sot c th khc kch hotvic pht hin kp thi cc s kin bo mtv i ph vi cc s cbo mt

7/31/2019 An Ninh Mang 2198

39/142

Gim st v ti xem xt h thng mng theoISO 17799, gm cc bc sau:

a) Thc hin gim st v xem xt cc th tcv cc bin php kim sot khc :

1) Pht hin kp thi sai li ngay trong cckt qu ca qu trnh x l

2) Nhn bit kp thi vic th nghim vt nhp thnh cng cc l hng v s c

bo mt

7/31/2019 An Ninh Mang 2198

40/142

3) cho lnh o xc nh c hot ngbo mt y thc cho ngi hay vn dng

cng ngh thng tin ang hot ng c tnh mong i khng

4) Gip cho vic pht hin s kin bo mt

v ngn nga s cbo mt bng vic sdng cc ch s

5) Xc nh cc hnh ng gii quyt l

hng bo mt c hiu qu khng

7/31/2019 An Ninh Mang 2198

41/142

b) Thc hin vic xem xt nh k hiu qu ca hthng ISMS (Bao gm vic t c chnh sch

bo mt v cc mc tiu, v xem xt cc bin phpkim sot bo mt) quan tm n cc kt qu cavic nh gi bo mt, cc s c, cc kt qu o

lng hiu qu, cc kin ngh v phn hi t ccbn quan tm.

c) o lng hiu qu ca cc bin php kim sot xc minh l cc yu cu bo mt c tha

mn.

7/31/2019 An Ninh Mang 2198

42/142

7/31/2019 An Ninh Mang 2198

43/142

4) Cc mi e da xc nh

5) Hiu qu ca vic p dng cc kimsot

6) Cc s kin bn ngoi, nh l lut haymi trng php l thay i, cc bn phntha thun thay i, v hon cnh x hithay i.

7/31/2019 An Ninh Mang 2198

44/142

e) Thc hin nh gi ni b h thngISMS theo chu k hoch nh

f) Thc hin vic xem xt lnh o choh thng mng mt cch nh k nhmm bo phm vi p dng vn cn y

v cc ci tin trong qu trnh ca hthng mng c nhn bit

7/31/2019 An Ninh Mang 2198

45/142

g) Cp nht cc k hoch bo mt nhmquan tm cc pht hin ca hot ng

gim st v xem xt h) H s ca cc hnh ng v s kin

m c th nh hng n hiu qu hoc

nng lc ca h thng mng

7/31/2019 An Ninh Mang 2198

46/142

7/31/2019 An Ninh Mang 2198

47/142

c) Trao i cc hnh ng v cc ci tincho tt c cc bn quan tm vi mc

chi tit ph hp vi hon cnh v, khithch hp, thng nht cch thc thchin.

d) m bo rng cc ci tin t cmc tiu mong mun cho chng

7/31/2019 An Ninh Mang 2198

48/142

7/31/2019 An Ninh Mang 2198

49/142

7/31/2019 An Ninh Mang 2198

50/142

7/31/2019 An Ninh Mang 2198

51/142

THANKS

7/31/2019 An Ninh Mang 2198

52/142

MNG RING O nh ngha

Phn loi mng ring o : Remote-Access VPN

Intranet-based VPN Extranet-based VPN

7/31/2019 An Ninh Mang 2198

53/142

7/31/2019 An Ninh Mang 2198

54/142

Li ch ca mng ring o

Mrng vng a l c th kt ni cTng cng bo mt cho h thng mng

Gim chi ph vn hnh so vi mngWAN truyn thng

Gim thi gian v chi ph truyn d liun ngi dng xa

7/31/2019 An Ninh Mang 2198

55/142

VPN (Client to Gateway)

7/31/2019 An Ninh Mang 2198

56/142

7/31/2019 An Ninh Mang 2198

57/142

My 2 :

Card Cross

a ch IP : 172.16.1.1

Subnet Mask : 255.255.0.0

Card Lan a ch IP : 192.168.1.1

Subnet Mask : 255.255.255.0

7/31/2019 An Ninh Mang 2198

58/142

My 3 : (card Lan)

a ch IP : 192.168.1.2 Subnet Mask : 255.255.255.0

7/31/2019 An Ninh Mang 2198

59/142

7/31/2019 An Ninh Mang 2198

60/142

7/31/2019 An Ninh Mang 2198

61/142

7/31/2019 An Ninh Mang 2198

62/142

ti ca s Managing Multiple RemoteAccess Servers, nh du chn No,use Routing and Remote Access to

authenticate connection requests Next Finish.

7/31/2019 An Ninh Mang 2198

63/142

B2 : ng cc ca s vo Start Administrative Tools ComputerManagement to user (user name :h1 ; password : hoa1) v b du chnti User must change password at

next log on click chut phi trnuser h1 Properities vo tab Dial-in, trong Remote Access Permission

7/31/2019 An Ninh Mang 2198

64/142

(Dial-in or VPN) , nh du chn AllowAccess OK

7/31/2019 An Ninh Mang 2198

65/142

My 3:

B1 : Click chut phi trn My NetworkPlaces Properties, chn Create a newconnection ti ca s Welcome to theNew Connection Wizzard, chn Next ti ca s Network Connection Type,nh du chn Connect to the networkat my workplace Next

7/31/2019 An Ninh Mang 2198

66/142

7/31/2019 An Ninh Mang 2198

67/142

7/31/2019 An Ninh Mang 2198

68/142

VPN (Gateway to Gateway)

7/31/2019 An Ninh Mang 2198

69/142

7/31/2019 An Ninh Mang 2198

70/142

7/31/2019 An Ninh Mang 2198

71/142

7/31/2019 An Ninh Mang 2198

72/142

My 4 : (card Cross)

a ch IP : 172.16.2.2 Subnet Mask : 255.255.0.0

Default Gateway : 172.16.2.1

7/31/2019 An Ninh Mang 2198

73/142

My 2 :

B1 : ng cc ca s vo Start Administrative Tools ComputerManagement to user (user name :hanoi ; password : hanoi) v b duchn ti User must change passwordat next log on click chut phi trnuser hanoi Properities vo tabDial-in, trong Remote Access

Permission

7/31/2019 An Ninh Mang 2198

74/142

7/31/2019 An Ninh Mang 2198

75/142

ti ca s Configuration , nh duchn Custom configuration Next

ti ca s Custom Configuration,nh du chn nhng sau : VPNaccess ; Demain-dial connections (user

for branch office routing) ; LANrouting Next Finish (chn Yeskhi h thng yu cu restart service)

7/31/2019 An Ninh Mang 2198

76/142

7/31/2019 An Ninh Mang 2198

77/142

Ti ca s Connection Type , nhdu chn Connect using virtual privatenetwork (VPN) Next ti ca sVPN Type Chn Point to PointTunneling Protocol (PPTP) Next

ti ca s Destination Address , g ach IP card Lan ca my 3(192.168.1.3) vo host name or IP

address ti ca s Protocol and

7/31/2019 An Ninh Mang 2198

78/142

7/31/2019 An Ninh Mang 2198

79/142

Destination : 172.16.2.0

Network Mask : 255.255.255.0

Metric : 1

OK Next ti ca s Dial outCredentials nhp vo nhng thngtin sau :

7/31/2019 An Ninh Mang 2198

80/142

User name : saigon

Domain :

Password : saigon

Confirm password : saigon

Next Finish.

7/31/2019 An Ninh Mang 2198

81/142

B3 : Ti ca s Routing and RemoteAccess , click chut phi ln my 2 ,chn Properities chn tab IP Chn Static address pool Add Ti ca s New Address Range , gvo dy s IP sau :

Start IP address : 172.16.1.200

End IP address : 172.16.1.220

7/31/2019 An Ninh Mang 2198

82/142

OK OK ti ca s Routing andRemote Access , click chut phi lnmy 2 All Task Restart

7/31/2019 An Ninh Mang 2198

83/142

My 3 :

B1 : ng cc ca s vo Start Administrative Tools ComputerManagement to user (user name :saigon ; password : saigon) v b du chn

ti User must change password at next logon click chut phi trn user hanoi Properities vo tab Dial-in, trong Remote

Access Permission

7/31/2019 An Ninh Mang 2198

84/142

7/31/2019 An Ninh Mang 2198

85/142

7/31/2019 An Ninh Mang 2198

86/142

Trong ca s Routing and RemoteAccess , click chut phi trn

Network Interfaces , chn NewDemand-dial Interface Ti ca sWelcome chn Next ti ca sInterface Name , g saigon vo Interface name Next

7/31/2019 An Ninh Mang 2198

87/142

Ti ca s Connection Type , nhdu chn Connect using virtual private

network (VPN) Next ti ca sVPN Type Chn Point to PointTunneling Protocol (PPTP) Next

ti ca s Destination Address , g ach IP card Lan ca my 2(192.168.1.2) vo host name or IP

address ti ca s Protocol and

7/31/2019 An Ninh Mang 2198

88/142

Security , nguyn la chn mcnh (Route IP Packets on thisinterface) Next ti ca sStatic Routes for Remote Networks

, chn Add ti ca s StaticRoute , cu hnh nh sau :

7/31/2019 An Ninh Mang 2198

89/142

Destination : 172.16.1.0

Network Mask : 255.255.255.0

Metric : 1

OK Next ti ca s Dial outCredentials nhp vo nhng thngtin sau :

7/31/2019 An Ninh Mang 2198

90/142

User name : hanoi

Domain :

Password : hanoi

Confirm password : hanoi

Next Finish

7/31/2019 An Ninh Mang 2198

91/142

B3 : Ti ca s Routing and RemoteAccess , click chut phi ln my 2 ,chn Properities chn tab IP Chn Static address pool Add Ti ca s New Address Range , gvo dy s IP sau :

Start IP address : 172.16.2.200

End IP address : 172.16.2.220

7/31/2019 An Ninh Mang 2198

92/142

OK OK ti ca s Routing andRemote Access , click chut phi ln

my 3 All Task Restart.

Sau kim tra bng lnh ping172.16.1.2 hoc ping 172.16.2.2 , gia2 my : my 1 v my 4.

7/31/2019 An Ninh Mang 2198

93/142

THANKS

7/31/2019 An Ninh Mang 2198

94/142

Tng la (Firewall) Tng la l g?

L mt hng ro giaha i mng mytnh - n bo v mng ny trnh khis xm nhp t mng khc

7/31/2019 An Ninh Mang 2198

95/142

Cc th h tng la Tng la lc gi tin : cng ngh tng

la th h u tin phn tch lu lngmng tng vn chuyn (transport protocollayer) .

Tng la mc giao vn (circuit level

firewall) : cng ngh tng la th h th 2cho php xc nh mt gi tin c th l mtyu cu kt ni, mt gi d liu thuc mtkt ni hoc l mt mch o (virtual circuit)

tng giao vn gia 2 my

7/31/2019 An Ninh Mang 2198

96/142

Tng la mc ng dng : cng nghtng la th h th 3, n kim tra tnh

ng n d liu thuc tng ng dngtrong cc gi tin trc khi cho php ktni. Ngoi ra, n cn kim tra tnh hp l

ca cc thng sbo mt khc ch c tng ng dng nh l mt khu ngidng v cc yu cu dch v.

7/31/2019 An Ninh Mang 2198

97/142

Tng la lc gi tin ng : cng nghtng la th h th t. N rt hu ch

i vi giao thc UDP.

7/31/2019 An Ninh Mang 2198

98/142

So snh gia tc v hiu qu bo mt :

Cc tng la lc gi tin ni chung c

tc nhanh nht sau l tng lamc giao vn, tng la lc gi tin ngv tng la mc ng dng

Mc kim tra bo mt ni chung litheo hng ngc li, gi tin cng quanhiu tng th n cng phi c kim tra

chi tit hn

7/31/2019 An Ninh Mang 2198

99/142

So snh tng la ca cc hng niting Check Point, NetScreen v Cisco

Kh nng ngn chn tn cng (Attack

7/31/2019 An Ninh Mang 2198

100/142

g g g (

Prevention Capabilities)

7/31/2019 An Ninh Mang 2198

101/142

Kh nng h trcc ng dng/giao thc

7/31/2019 An Ninh Mang 2198

102/142

M HA M ha : lm cho d liu khng th c

c khi b ly trm.

Cc phng php m ha: M ha i xng: dng cng mt keycho m ha v gii m

7/31/2019 An Ninh Mang 2198

103/142

M ha pulic key :

7/31/2019 An Ninh Mang 2198

104/142

Message Authentication Code :

7/31/2019 An Ninh Mang 2198

105/142

Chk in t(Digital signature) :

7/31/2019 An Ninh Mang 2198

106/142

VIRUS

Virus trn my tnh l mt chng trnh nhlm thay i hot ng ca my tnh ngoi

s kim sot ca ngi s dng . Cc loi Virus :

Virus trn files : Cc Virus loi file

thng ly vo cc tp chng trnh nhcc tp .com v .exe

7/31/2019 An Ninh Mang 2198

107/142

Virus trn Boot sector : Virus c th lynhim vo cc Boot sector ca a cng

hoc a mm ni cha cc chngtrnh khi ng.

Virus trn Master Boot Record : V c

bn dng virus ny cng nh Virus trnBoostector nhng ni ly nhim l masterboot record

7/31/2019 An Ninh Mang 2198

108/142

Macro virus : y l loi virus ly trncc tp d liu. Cc on m code ca

Virus trn cc m Visual Basic trong cctp Exel, MS word, MS Access, MSPoiwer point c th gy ly nhim

Virus ti cc tp d liu hoc tp chngtrnh khc. Do vic xy dng mt onchng trnh macro

7/31/2019 An Ninh Mang 2198

109/142

Virus hoax : L cc th in t (E-mail)c cha cc on chng trnh khi m

cc th ny cc virus s ly vo my tnhca ngi s dng v s thc hin ccchc nng khng kim sot c nh ly

trm a ch, gi cc th c cc filesthng tin trn my tnh ca ngi s dngthm ch xo cc cc thng tin trn aca my tnh,

7/31/2019 An Ninh Mang 2198

110/142

Virus Con nga thnh T-roa : yl loi virus kh nguy him lm thay is liu, ly cp cc thng tin trn my

tnh n thng c dng mt file cgi km theo e-mail.

Virus hn hp : loi virus c tt c cc

tnh nng ly nhim v ph hoi trn ccc tp, hay boot record. y l loi virustrn cc kh dit do hot ng ng thi

trn nhiu loi mi trng.

7/31/2019 An Ninh Mang 2198

111/142

Cc k thut sdng trong virus :

Thng tr

n thn (Stealth) Bin hnh (Polymorphic)

7/31/2019 An Ninh Mang 2198

112/142

Cc ng thm nhp virus vo h thngmy tnh :

Qua ngi s dng my tnh Qua h thng th in t (E-mail)

Qua cc dch v Internet

7/31/2019 An Ninh Mang 2198

113/142

ANTI-VIRUS

H thng phng chng Virus s tin hnhtheo m hnh hai lp: Chng Virus v

phng Virus Phng virus : ngn chn s thm nhp

ca Virus qua cc ng ly nhim

nu trn nh qua lin kt Internet,mail..

Chng virus : Cp nht v ci t cc

phn mm chng Virus mi nht

7/31/2019 An Ninh Mang 2198

114/142

Cc quy trnh bo v my tnh :

ng k : My tnh c ng k s c

nhm chng Virus my tnh a vo danhsch qun l

Ci t phn mm chng virus

Phng chng Virus my tnh nh k Dit Virus my tnh trong cc trung hpbt thng

7/31/2019 An Ninh Mang 2198

115/142

Chng Virus my tnh thm nhp quacng Internet : cho my ch dit Virus

my tnh ti cng Internet . Chng Virus my tnh thm nhp qua th

in t : cho my ch dit Virus my tnh

ti cc mail server

7/31/2019 An Ninh Mang 2198

116/142

THANKS

7/31/2019 An Ninh Mang 2198

117/142

BACKUP DATA B 1: Khi ng my vo log on Admin , vo th

mc C: to th mc (Dulieu) v cc file h1.txt ,h2.txt ; sau vo D: to th mc Backup

B2: Start Programs Accessories Systems Tools Backup ti ca sWelcome b du chn Always start in

wizard mode Click chn Advance Mode ti ca s Backup Utility chn tab Backup click vo du + ti C: v nh du chn vo Dulieu

7/31/2019 An Ninh Mang 2198

118/142

ti ca s Backup media or file name chntab Browse ch ng dn ti

D:\Backup v lu file backup vi tn(bk1.bkf). Sau chn Start Backup tica s Backup Job Information chn Start

Backup. Sau khi Backup Progress xong Vo D:\Backup kim tra xem c filebk1.bkf cha ?

7/31/2019 An Ninh Mang 2198

119/142

B3 : vo C:\Dulieu , click nt phi chuttrn h1.txt Properities tab General

chn Advance b du chn File isready for archiving

B4 : Mfile h1.txt nhp thm vo ni dung

v lu li click chut phi trn h1.txt Properities tab General chnAdvanced b du chn File is readyfor archiving

7/31/2019 An Ninh Mang 2198

120/142

B5 : Mchng trnh Backup, ti ca s BackupUtility chn tab Backup Click du + ti C:v nh du chn vo d liu ti mcBackup media or file name g

D:\Backup\dif.bkf chn Start Backup tica s Backup Job Information chn Advance

ti ca s Advanced Backup Options , ti mcBackup Type chn Differential OK StartBackup

7/31/2019 An Ninh Mang 2198

121/142

B6 : ti ca s Backup Utility chn tabRestore and Manage Media v click du +

ti mc dif.bkf Click du + ti C: vchn Dulieu (ch c h1.txt c backup).Sau ng cc ca s , k tip vo thmc C:\Dulieu Click chut phi trn

h1.txt Properities tab General Advanced (nh du chn mc File isready for archiving

7/31/2019 An Ninh Mang 2198

122/142

B7 : Mfile h2.txt nhp thm ni dung v saveli Click chut phi trn h2.txt Properities

tab General Advanced (nh du chnmc File is ready for archiving

B8: Mchng trnh Backup chn tab

Backup , sau click du + ti C: , nh duchn vo Dulieu, ti mc Backup media orfile name g D:\Backup\inc.bkf , sau chnStart Backup

7/31/2019 An Ninh Mang 2198

123/142

B9: ti ca s Backup Job Information chnAdvanced ti ca s Advanced Backup

Options , click vo mc Backup Type v chnIncremental OK Start Backup.

B10: ti ca s Backup Utility chn tab

Restore and Manage Media , click du + timc inc.bkf, k tip click du + ti mcC:\Dulieu

7/31/2019 An Ninh Mang 2198

124/142

n Control Panel

B1 : Vo Start Run MMC OK

B2 : S xut hin mn hnh Console1, chn File

Add/Remove Snap-in Add ti ca sAdd Standalone Snap-in Group PolicyObject Editor Add Finish.

B3 : Ti mn hnh Console1, chn File Saveas (ti ca s save in chn Destop v File name: Local Policy)

7/31/2019 An Ninh Mang 2198

125/142

B4 : Vo Local Policy Local ComputerPolicy User Configuration

Administrator Templates Control Panel B5 : Vo Prohibit access to the Control

Panel Properties (nh du chn Enable ,sau apply v OK)

B6 : Vo Start Run cmd gpupdate/force

GHI NHN QU TRNH

7/31/2019 An Ninh Mang 2198

126/142

QLOGON

B1 : Start Programs AdministrativeTools Local Security Policy Local

Policies Audit Policy Click chutphi ln Audit Account Logon Events Properties nh du chn Failure

Apply OK cp nht policy (gpupdate\force)

7/31/2019 An Ninh Mang 2198

127/142

B2 : Start Programs AdministrativeTools Event viewer click chut phi

ln Security chn Clear all events chn No.

7/31/2019 An Ninh Mang 2198

128/142

IP SECURITY ( IPSEC)

7/31/2019 An Ninh Mang 2198

129/142

Chn 2 my tnh : my tnh 1 c a ch IP :192.168.1.1 v my tnh 2 c a ch IP :

192.168.1.2. B1 : Start Run g MMC ti ca s

Consol chn Menu File Add/Remove

Snap-in ti ca s Add/Remove Snap-in, ti mc Snap-in add to : Consol Root, sau chn Add

7/31/2019 An Ninh Mang 2198

130/142

Ko thanh trt chn mc IP SecurityPolicy Management chn Add ti ca

s Select Computer or Domain , chn Local Computer Finish Close OK

B2 : Ti ca s Consol1 click chut phi

trn IP Security Policies on Local Computer chn Create IP Security Policy

7/31/2019 An Ninh Mang 2198

131/142

ti ca s Welcome chn Next ti ca sIP Security Policy Name g IPSec bang

Preshare Key vo name Next ti cas Request for Secure Communication, b duchn ti mc Activate the default Next

Finish ti ca s Test IP Sec Preshare KeyProperties chn Add

7/31/2019 An Ninh Mang 2198

132/142

ti ca s Welcome Next ti ca sTunnel Endpoint chn This rule does not

specify a tunnel Next ti ca sNetwork Type , chn Local area networkLAN Next ti ca s IP Filter List,

chn mc All IP Next ti ca s FilterAction , chn mc Require Security Next

7/31/2019 An Ninh Mang 2198

133/142

trong ca s Authentication Method, chnmc Use this string to protect the keyexchange, trong hp thoi g 123 Next

Finish. B3 : Ti ca s Consol1, click chut phi

ln IPSec bang Preshare Key Assign lu Consol1 ra mn hnh Desktop ngcc ca s ang c v cp nht Policy(gpupdate /force)

7/31/2019 An Ninh Mang 2198

134/142

B4 : Start Progarms AdministrativeTools Services click chut phi ln

IPSEC Service, chn Restart. B5: Mchng trnh Network Monitor

chn Capture Start B6 : Start Run cmd ta dng lnh

ping a ch IP gia 2 my tnh : ping192.168.1.1 v ping 192.168.1.2

7/31/2019 An Ninh Mang 2198

135/142

B7 : Quay li mn hnh Network Monitor

chn Capture chn Stop and

View double click trn dng cProtocol l ESP chn mc ESP.

CI T NETWORK

7/31/2019 An Ninh Mang 2198

136/142

MONITOR TOOL

7/31/2019 An Ninh Mang 2198

137/142

Chn 2 my tnh : my tnh 1 c a ch IP :192.168.1.1 v my tnh 2 c a ch IP :

192.168.1.2. B1: Start Settings Control Panel

Add/Remove Programs Add/Remove

Windows Component chn mcManagement and Monitoring Tools Details

7/31/2019 An Ninh Mang 2198

138/142

nh du chn vo Network MonitorTools OKNext.

B2 : Start Administrative Tools Network Monitor ti ca s MicrosoftNetwork Monitor, chn OK ti ca s

Select a network, click du + mc LocalComputer chn card LAN OK

7/31/2019 An Ninh Mang 2198

139/142

B3 : Ti ca sNetwork Monitor chnCapture Start. (Ch nguyn mn hnh

Network Monitor) B4 : Start Run g cmd ta dng lnh

ping a ch IP gia 2 my tnh : ping

192.168.1.1 v ping 192.168.1.2. B5 : Quay li mn hnh Network Monitor

chn Capture Stop and View double

click trn dng c protocol l ICMP

7/31/2019 An Ninh Mang 2198

140/142

RESTORE DATA B1 : Xa th mc Dulieu

B2: Mchng trnh Backup chn Menu Tools

Options tab Restore nh du chn vomc Replace the file on disk only if the file ondisk is older

B3: ti ca s Backup Utility vo tab Restoreand Manage Media click vao file bk1.bkfC: v nh du chn vo Dulieu Chn StartRestore ti ca s confirm restore chn OK.

7/31/2019 An Ninh Mang 2198

141/142

B4: Mchng trnh Backup vo tabRestore and Manage Media chn File

dif.bkf C: v nh du chn vo Dulieu Start Restore ti ca s ConfirmRestore click OK

7/31/2019 An Ninh Mang 2198

142/142

THANKS