Understanding the OSI Model Application Layer
The Application Layer is the topmost layer of the OSI Model. It is the layer closest to the user and provides network services directly to end-user applications.
What the Application Layer Does
- Acts as the interface between user applications and the network.
- Enables software like browsers, email clients, and file transfer tools to communicate over a network.
- Provides services such as:
- File transfer
- Email communication
- Web browsing
- Remote login
Common Protocols at the Application Layer
- HTTP: Used for web browsing.
Essential Cybersecurity Threats and Defense Strategies
Characteristics and Functionalities of Rootkits
- Stealth and Persistence: Rootkits hide their presence from users and security software, remaining active even after system reboots.
- Privilege Escalation: They gain administrator or root-level access, allowing full control over system operations.
- Kernel-Level Access: Some rootkits operate at the kernel level, providing deep control over the operating system and making detection difficult.
- Backdoor Functionality: They create hidden entry points for attackers
Modern Network Security and Cloud Infrastructure
Types of Network Firewalls
- Packet Filtering Firewall: Filters packets using IP, port, and protocol rules at the network layer, providing fast but basic stateless security.
- Circuit-Level Gateway: Verifies session establishment, such as the TCP handshake at the session layer, without checking actual data content.
- Stateful Inspection Firewall: Tracks active connections and uses context-based decisions, offering better security than packet filtering.
- Application-Level Gateway: Works as a proxy and inspects
Understanding the TCP/IP Model and Cyber Attack Targets
Understanding the TCP/IP Model
The TCP/IP Model (Transmission Control Protocol / Internet Protocol) is a communication framework used for transmitting data over the internet. It defines how data should be sent, received, and processed.
The TCP/IP model consists of four distinct layers:
Layers of the TCP/IP Model
- Application Layer: Provides services to users such as email, web browsing, and file transfer.
- Transport Layer: Ensures reliable data transmission and manages the flow of data between devices.
Core Principles of Computer Security and Network Defense
Fundamentals of Computer Security
Computer security protects automated information system resources to preserve CIA (Confidentiality, Integrity, Availability), plus authenticity and non-repudiation, through effective risk management (Probability × Impact).
- Confidentiality: Prevents unauthorized disclosure; privacy ensures control over personal information.
- Integrity: Ensures authorized changes only; data and system integrity prevent tampering.
- Availability: Guarantees timely, reliable access for authorized
Bayesian Networks and Probabilistic Graphical Models
1. Bayesian Networks (Directed Models)
Joint Probability Factorization:
P(X₁, X₂, ..., Xₙ) = Π P(Xᵢ | parents(Xᵢ))
Variable Types:
Observed: User inputs and sensor measurements (Uₜ, Zₜ)
Latent/Hidden: States and landmarks (Xₜ, L)
Example Factorization:
P(uₜ, l, xₜ, xₜ₊₁, zₜ, zₜ₊₁) = P(uₜ)P(l)P(xₜ|uₜ)P(xₜ₊₁|xₜ)P(zₜ|xₜ,l)P(zₜ₊₁|l,xₜ₊₁)
2. Conditional Independence and D-Separation
Blocking Rules:
Chain (A → B → C): Blocked if