http://wiki.cas.mcmaster.ca/index.php?feed=atom&target=SJakubowski&title=Special%3AContributionsComputing and Software Wiki - User contributions [en]2026-04-12T15:17:27ZFrom Computing and Software WikiMediaWiki 1.15.1http://wiki.cas.mcmaster.ca/index.php/Bots_%26_BotnetsBots & Botnets2009-04-11T00:53:46Z<p>SJakubowski: /* Bot? What is it?? How it works??? */</p>
<hr />
<div>Each phase our world, had it's wealthiness such it has been with gold, commerce, industry and others on the last centuries. On this XXI century, the main wealthiness has been around information, and the spread of it. This information has been the key structure of our world's society, economy, health, development and others. And this vast information sea has been spread though the internet network, which evolved into a magnificent tool of knowledge power on the latest years. Unfortunately, malicious intentioned people have been using this consistent tool for the spread of threats such as viruses, worms, Trojan horses and others, again, to obtain confidential and powerful information such as bank accounts user names & passwords, confidential & military information or even CPU power to the increase of the spread of these threats. One powerful way of this spread, has been though Bots that integrate Botnets, which are the main focus on this research. This security breach has been one of the newest and most powerful threats relating to computer security within the last 5 years.<br />
<br><br />
<br />
== Bot? What is it?? How it works???== <br />
<br />
Thanks for asking if you could modify my page, or use my info. -SJakubowski.<br />
<br />
A Bot is a type of malicious software that after successfully invading a machine (called Zombie computers), usually installed via worms, Trojan horses, or through Back doors, under a common command-and-control infrastructure. These new installed malicious software (Most likely to exist in machines that run on Windows OS (most used OS in the world), which don't have a file-user safe executing system like computers that run on Linux or Mac OS) behaves like a “worm” process, capable of spreading though the infected machine and having the power to connect to a communication channel (IRC, Web Server or P2P Server), allowing the attacker(Bot Herder) full control of this machine though a remote communication channel.<br />
<br><br />
At this point, these infected machines can work only as tool used by the Bot Herders as they may please. Some of this malicious intentioned people use this Bot commanded machines to obtain certain valuable information from users, or also, to integrate these Bot Clients to a much greater threat and risk, such as a Botnet.<br />
<br><br />
<br />
== Botnet? What is it?? How it works??? ==<br />
A Botnet consists of a Bot server connected to one or more Bot clients. This set of Bots integrate the zombie machines into a really powerful and sophisticated invasion technique of a mass control of a a network.<br />
<br><br />
This invasion technique has evolved not only to an illegal way of profit, but also to a way of violating people's information privilege. What have been Botnets being used for? Is the concept of Botnet Evil? What measurements are being taken to control this terrible plague?. On the following sections, this article will discuss ways to detain this astonishing threat which has been vastly used as one effective malicious way of breaking into data integrity, availability and confidentiality of computers of a network.<br />
<br><br />
<br />
== Hard to exterminate...why? ==<br />
A Botnet is adaptive; it can be designed to to download different modules to exploit specific things that it finds on a victim. New exploits can be added as they are discovered. This makes the job of the anti-viruses systems way more complex. Finding one component of a Botnet does not imply the nature of any other of the others components because the first component can choose to download from any number of modules to perform the functionality of each phase in the life cycle of a Botnet.<br />
It also casts doubt on the capability of anti virus software to claim that a system is clean when it encounters and cleans one component of a multi-component bot. Because each component is downloaded when it is needed after the initial infection, the potential for a system to get a zero day exploit is higher. We also have to put in consideration that one of the bot client modules is usually set to to make the anti-virus tool ineffective and prevent the user from contacting the anti-virus vendor’s Web site for updates or removal tools. Botnets are powerful because they not only try to enable a perfect attack, but also a perfect own defense system.<br />
<br><br />
<br />
== History of Botnets ==<br />
Like many things on the Internet today, bots began as a useful tool without malicious purposes. They were originally developed to keep a channel open and prevent malicious users from taking over the channel when the operator was busy doing other things. In order to assist these IRC operators, bots needed to be able to operate as the channel operator. This lead the bots to evolve from being code that helped a single user to a code that manages and runs IRC channels as well. Around this time, some IRC servers and bots began offering the capability to make OS shell accounts available to users. The shell account permitted users to run commands on the IRC host. At this point, the bots intentions were twisted to a malicious way of commanding a machine remotely. <br />
<br><br />
The table bellow shows the evolution and how an human-machine assist application went from being a simple code to <br />
<br />
<br><br />
<br />
<table border="1"><br />
<br />
<tr><br />
<th>Timeline</th><br />
<th>Bot technology</th><br />
</tr><br />
<br />
<tr><br />
<td>1988</td><br />
<td>Invention of IRC by Jarkko “WiZ” Oikarinen of the University of Oulu, Finland</td><br />
</tr><br />
<br />
<tr><br />
<td>1989</td><br />
<td>Greg Lindahl invents GM the first Bot, where GM plays "Hunt the Wumpus" with IRC users</td><br />
</tr><br />
<br />
<tr><br />
<td>1999</td><br />
<td>Pretty Park discovered. First worm to use an IRC server as a means of remote control</td><br />
</tr><br />
<br />
<tr><br />
<td>1999</td><br />
<td>SubSeven Trojan/bot. A remote control Trojan added control via IRC</td><br />
</tr><br />
<br />
<tr><br />
<td>2000</td><br />
<td>GT Bot, mIRC based. Runs scripts in response to IRC server events Supports raw TCP and UDP Socket connections</td><br />
</tr><br />
<br />
<tr><br />
<td>2002</td><br />
<td>SDBot. Written in C++ where its source code is available to hacker community though a small single binary</td><br />
</tr><br />
<br />
<tr><br />
<td>2002</td><br />
<td>AgoBot, Gaobot. They introduced modular design. The 1st module break-sin downloads, the 2nd module turns off anti virus and hides from detection before downloading the 3rd module. Module 3 has attack engines/payload</td><br />
</tr><br />
<br />
<tr><br />
<td>2003</td><br />
<td>SpyBot. Spyware capabilities (key logging, data mining for email addresses lists of URLs, etc.)</td><br />
</tr><br />
<br />
<tr><br />
<td>2003</td><br />
<td>RBot. Most Prevalent Bot today. It spreads through weak passwords, easily modifiable, Uses packaging software</td><br />
</tr><br />
<br />
<tr><br />
<td>2004</td><br />
<td>PolyBot. A derivative of AgoBot with Polymorphic abilty. Changes the look of its code on every infection</td><br />
</tr><br />
<br />
<tr><br />
<td>2005</td><br />
<td>MYTOB. My Doom mass emailing worm with Bot IRC C&C</td><br />
</tr><br />
<br />
</table> <br />
<br><br />
<br />
== How Big is the problem? ==<br />
On September of 2006 Symantec released a internet threat report which stated that during the six-month period from January to June 2006 Symantec observed 57,717 active bot network computers per day. Symantec also stated that it observed more than 4.5 million distinct, active bot network computers. They also discovered that many bots were not<br />
usually detected until the Bot Herder had abandoned the computer which makes us conclude that the actual number is much larger than what Symantec can report.<br />
<br><br />
In March of 2006, McAfee was called to reclaim an unnamed Central American country’s telecommunications infrastructure from a massive Botnet. In the first week of the<br />
engagement McAfee documented 6.9 million attacks of which 95 percent were Internet Relay Chat (IRC) bot related. The national telecommunication company reported the<br />
following resulting problems:<br />
* Numerous network outages of up to six hours<br />
* Customer threats of lawsuits<br />
* Customer business disruptions<br />
* Lengthy outages of bank ATM service<br />
Since January 2005, Microsoft has been delivering the Windows Malicious Software Removal Tool to its customers. After 15 months, Microsoft announced that it had removed 16 million instances of malicious software from almost six million unique computers. Use of the tool is voluntary; that is to say, the vast majority of Microsoft users are not running it. <br />
<br><br />
Consider the distributed denial-of-service (DDoS) attack power in one Botnet; A small Botnet of 10,000 bot clients with, conservatively, 128Kbps broadband upload speed can produce approximately 1.3 giga-bits of data per second. With this kind of power, two or three large (one million plus) Botnets could, according to McAfee, “threaten the national infrastructure of most countries.”<br />
<br><br />
<br />
== How it turned in to an illegal way of profit? ==<br />
<br />
== Life cycle of a Botnet ==<br />
*Initial setup of configuration settings of the bot<br />
*Register a Dynamic DNS<br />
*Infect a PC with a bot<br />
**Bot propagates according to the configuration settings<br />
**Scans for vulnerabilities<br />
**Idle<br />
**Performs actions as received by other bots above it in the chain of command<br />
**Bot dies:<br />
***Bot may be taken over by another botnet<br />
***The bot's owner's PC realizes the PC is a zombie, kills the bot.<br />
***The chain of command may be compromised above the level.<br />
<br />
== Types of attacks ==<br />
<br />
===DDoS===<br />
A Distributed denial of Service attack. The bots flood a web server with ICMP requests causing the server to crash. This can be used as a method of extortion from various websites. The herder demonstrates the power of his botnet by taking down the website, then he/she contacts the site in question and extorts them for money. <br />
<br />
===Spamming===<br />
A Herder can sell his botnet as a service to a spammer. This is beneficial to the spammer as he can have anonymous distribution of his messages.<br />
<br><br />
Due to the size of some botnets, a spammer will also be able to send much more messages via the bots then he normally could. This is another example of the exponential power of a botnet.<br />
<br />
===Phishing===<br />
Works the same way as the spamming method. However, instead of trying to sell a service such as "P3N15 3NLARGEMENT PILLS" the phisher is trying to con you out of your paypal or bank account.<br />
<br />
===Scrumping===<br />
A bot stealing CPU cycles from the host computer. This can be used as a positive means if the botnet is configured to not automatically propagate into systems that do not want it. This is not commonly the case. This could be done on a school's network.<br />
<br />
== How it works ==<br />
A Botnet basically uses a command and control schema, the same as a military. Each bot has a chain of command that is part of. It distributes orders down the line that it receives from up top. This is beneficial in the fact that it can grow exponentially. This is the opposite of the cell schema that some malware uses, which is to split apart and never communicate once they become big enough. <br><br />
<br />
A bot installs itself onto a PC. It has various vectors to enter that PC that the Herder can set. It does this autonomously. It receives orders from a server that tell it what to do. An individual bot by itself is not that powerful. However an exponential number of bots performing the same action has a much more profound effect. <br><br />
<br />
The bot once installed camouflages itself from the system view. It installs a hidden IRC client. It tries to mask itself by maintaining a low profile by using as little system resources as possible until it receives orders. <br><br />
<br />
Due to the inherent weakness of a command and control scheme, once the higher level bots are compromised the effectiveness of the botnet can be severally reduced. If the main server is taken down, the entire botnet fails.<br />
<br />
== Bot Management ==<br />
Bots commonly have hidden removal commands, to completely clean the host computer. On the larger IRC networks such as EFnet channel activity is logged in order to learn the commands, and then automated systems are setup to prevent the owner of the botnet from accessing them and at the same time perform the removal command when a bot comes online to it's control channel.<br />
<br />
== How to Fight Botnets ==<br />
===Norton Anti-Bot===<br />
[[Image:Norton_AntiBot.jpg|thumb|140px|right|<br />
'''Norton Anti-Bot''']]<br />
Norton Anti-Bot is commercial software that scans your system to see if it has become a zombie. It is behavioral based, versus the usual signature based. What this means is unless the bot software actually does something, Norton will leave it alone. It has all the benefits of a commercial software, meaning it will be updated constantly as new bot definitions are found.<br />
===General Tips===<br />
Use common malware prevention techniques. On Windows XP this includes monitoring the process manager and registry for unknown applications. <br><br />
<br />
A better user could also monitor network traffic and see what ports are in use. A good indication is TCP port 6667 open when an IRC client is not running.<br />
== References ==<br />
[http://en.wikipedia.org/wiki/Botnet "Botnet"]<br><br />
== See Also ==<br />
[http://www.cas.mcmaster.ca/wiki/index.php/Alternative_Technologies_for_Ethernet "Alternative Technologies for Ethernet"]<br><br />
[http://www.cas.mcmaster.ca/wiki/index.php/Phishing "Phishing"]<br><br />
<br />
== External Links ==<br />
[http://www.symantec.com/norton/products/overview.jsp?pcid=is&pvid=nab1 "Norton AntiBot"] <br><br />
[http://www.techweb.com/wire/security/172303160 "Dutch Botnet Suspects Ran 1.5 Million Machines"] <br> <br><br />
--[[User:SJakubowski|SJakubowski]] 23:17, 13 April 2008 (EDT)</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Bots_%26_BotnetsBots & Botnets2008-04-14T03:18:22Z<p>SJakubowski: </p>
<hr />
<div>A Botnet is a collection of infected computers that can be used to attack organizations and distribute illegal information due to the sheer number of computers that is contained within them. Botnets are hard to prevent as the computers that become bots usually bear no resemblance in their locations in the physical world. <br><br />
<br />
They are a major threat to computing, due to the sheer amount of computers that can be controlled. In 2005 the Dutch police shut down a botnet that controlled 1.5 million computers. 1.5 million computers could shut down any website in the world if they all attempted to access its services at the same time. <br />
== Definitions == <br />
*Bot<br />
*Herder<br />
*Zombie<br />
*Scrumping<br />
<br />
===Bot===<br />
<br />
A Bot is short for robot. In the context of this wiki page a bot is a malicious program that installs itself unbeknownest to the owner of the pc, sets up an IRC or HTTP server and is ready to perform illegal activities.<br />
===Herder===<br />
A person who controls all the bots in the botnet.<br />
===Zombie===<br />
An infected computer.<br />
===Scrumping===<br />
A bot stealing CPU cycles from the host computer. This can be used as a positive means if the botnet is configured to not automatically propagate into systems that do not want it. This is not commonly the case. This could be done on a school's network.<br />
== How it works ==<br />
A Botnet basically uses a command and control schema, the same as a military. Each bot has a chain of command that is part of. It distributes orders down the line that it receives from up top. This is beneficial in the fact that it can grow exponentially. This is the opposite of the cell schema that some malware uses, which is to split apart and never communicate once they become big enough. <br><br />
<br />
A bot installs itself onto a PC. It has various vectors to enter that PC that the Herder can set. It does this autonomously. It receives orders from a server that tell it what to do. An individual bot by itself is not that powerful. However an exponential number of bots performing the same action has a much more profound effect. <br><br />
<br />
The bot once installed camouflages itself from the system view. It installs a hidden IRC client. It tries to mask itself by maintaining a low profile by using as little system resources as possible until it receives orders. <br><br />
<br />
Due to the inherent weakness of a command and control scheme, once the higher level bots are compromised the effectiveness of the botnet can be severally reduced. If the main server is taken down, the entire botnet fails.<br />
<br />
== Attacks ==<br />
*DDoS<br />
*Spamming<br />
*Phishing <br />
===DDoS===<br />
A Distributed denial of Service attack. The bots flood a web server with ICMP requests causing the server to crash. This can be used as a method of extortion from various websites. The herder demonstrates the power of his botnet by taking down the website, then he/she contacts the site in question and extorts them for money. <br />
===Spamming===<br />
A Herder can sell his botnet as a service to a spammer. This is beneficial to the spammer as he can have anonymous distribution of his messages. <br><br />
<br />
Due to the size of some botnets, a spammer will also be able to send much more messages via the bots then he normally could. This is another example of the exponential power of a botnet.<br />
<br />
===Phishing===<br />
Works the same way as the spamming method. However, instead of trying to sell a service such as "P3N15 3NLARGEMENT PILLS" the phisher is trying to con you out of your paypal or bank account.<br />
== Life Cycle == <br />
*Initial setup of configuration settings of the bot<br />
*Register a Dynamic DNS<br />
*Infect a PC with a bot<br />
**Bot propagates according to the configuration settings<br />
**Scans for vulnerabilities<br />
**Idle<br />
**Performs actions as received by other bots above it in the chain of command<br />
**Bot dies:<br />
***Bot may be taken over by another botnet<br />
***The bot's owner's PC realizes the PC is a zombie, kills the bot.<br />
***The chain of command may be compromised above the level.<br />
== Bot Management ==<br />
Bots commonly have hidden removal commands, to completely clean the host computer. On the larger IRC networks such as EFnet channel activity is logged in order to learn the commands, and then automated systems are setup to prevent the owner of the botnet from accessing them and at the same time perform the removal command when a bot comes online to it's control channel.<br />
<br />
== How to Fight Botnets ==<br />
===Norton Anti-Bot===<br />
[[Image:Norton_AntiBot.jpg|thumb|140px|right|<br />
'''Norton Anti-Bot''']]<br />
Norton Anti-Bot is commercial software that scans your system to see if it has become a zombie. It is behavioral based, versus the usual signature based. What this means is unless the bot software actually does something, Norton will leave it alone. It has all the benefits of a commercial software, meaning it will be updated constantly as new bot definitions are found.<br />
===General Tips===<br />
Use common malware prevention techniques. On Windows XP this includes monitoring the process manager and registry for unknown applications. <br><br />
<br />
A better user could also monitor network traffic and see what ports are in use. A good indication is TCP port 6667 open when an IRC client is not running.<br />
== References ==<br />
[http://en.wikipedia.org/wiki/Botnet "Botnet"]<br><br />
== See Also ==<br />
[http://www.cas.mcmaster.ca/wiki/index.php/Alternative_Technologies_for_Ethernet "Alternative Technologies for Ethernet"]<br><br />
[http://www.cas.mcmaster.ca/wiki/index.php/Phishing "Phishing"]<br><br />
<br />
== External Links ==<br />
[http://www.symantec.com/norton/products/overview.jsp?pcid=is&pvid=nab1 "Norton AntiBot"] <br><br />
[http://www.techweb.com/wire/security/172303160 "Dutch Botnet Suspects Ran 1.5 Million Machines"] <br> <br><br />
--[[User:SJakubowski|SJakubowski]] 23:17, 13 April 2008 (EDT)</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Bots_%26_BotnetsBots & Botnets2008-04-14T03:17:44Z<p>SJakubowski: </p>
<hr />
<div>A Botnet is a collection of infected computers that can be used to attack organizations and distribute illegal information due to the sheer number of computers that is contained within them. Botnets are hard to prevent as the computers that become bots usually bear no resemblance in their locations in the physical world. <br><br />
<br />
They are a major threat to computing, due to the sheer amount of computers that can be controlled. In 2005 the Dutch police shut down a botnet that controlled 1.5 million computers. 1.5 million computers could shut down any website in the world if they all attempted to access its services at the same time. <br />
== Definitions == <br />
*Bot<br />
*Herder<br />
*Zombie<br />
*Scrumping<br />
<br />
===Bot===<br />
<br />
A Bot is short for robot. In the context of this wiki page a bot is a malicious program that installs itself unbeknownest to the owner of the pc, sets up an IRC or HTTP server and is ready to perform illegal activities.<br />
===Herder===<br />
A person who controls all the bots in the botnet.<br />
===Zombie===<br />
An infected computer.<br />
===Scrumping===<br />
A bot stealing CPU cycles from the host computer. This can be used as a positive means if the botnet is configured to not automatically propagate into systems that do not want it. This is not commonly the case. This could be done on a school's network.<br />
== How it works ==<br />
A Botnet basically uses a command and control schema, the same as a military. Each bot has a chain of command that is part of. It distributes orders down the line that it receives from up top. This is beneficial in the fact that it can grow exponentially. This is the opposite of the cell schema that some malware uses, which is to split apart and never communicate once they become big enough. <br><br />
<br />
A bot installs itself onto a PC. It has various vectors to enter that PC that the Herder can set. It does this autonomously. It receives orders from a server that tell it what to do. An individual bot by itself is not that powerful. However an exponential number of bots performing the same action has a much more profound effect. <br><br />
<br />
The bot once installed camouflages itself from the system view. It installs a hidden IRC client. It tries to mask itself by maintaining a low profile by using as little system resources as possible until it receives orders. <br><br />
<br />
Due to the inherent weakness of a command and control scheme, once the higher level bots are compromised the effectiveness of the botnet can be severally reduced. If the main server is taken down, the entire botnet fails.<br />
<br />
== Attacks ==<br />
*DDoS<br />
*Spamming<br />
*Phishing <br />
===DDoS===<br />
A Distributed denial of Service attack. The bots flood a web server with ICMP requests causing the server to crash. This can be used as a method of extortion from various websites. The herder demonstrates the power of his botnet by taking down the website, then he/she contacts the site in question and extorts them for money. <br />
===Spamming===<br />
A Herder can sell his botnet as a service to a spammer. This is beneficial to the spammer as he can have anonymous distribution of his messages. <br><br />
<br />
Due to the size of some botnets, a spammer will also be able to send much more messages via the bots then he normally could. This is another example of the exponential power of a botnet.<br />
<br />
===Phishing===<br />
Works the same way as the spamming method. However, instead of trying to sell a service such as "P3N15 3NLARGEMENT PILLS" the phisher is trying to con you out of your paypal or bank account.<br />
== Life Cycle == <br />
*Initial setup of configuration settings of the bot<br />
*Register a Dynamic DNS<br />
*Infect a PC with a bot<br />
**Bot propagates according to the configuration settings<br />
**Scans for vulnerabilities<br />
**Idle<br />
**Performs actions as received by other bots above it in the chain of command<br />
**Bot dies:<br />
***Bot may be taken over by another botnet<br />
***The bot's owner's PC realizes the PC is a zombie, kills the bot.<br />
***The chain of command may be compromised above the level.<br />
== Bot Management ==<br />
Bots commonly have hidden removal commands, to completely clean the host computer. On the larger IRC networks such as EFnet channel activity is logged in order to learn the commands, and then automated systems are setup to prevent the owner of the botnet from accessing them and at the same time perform the removal command when a bot comes online to it's control channel.<br />
<br />
== How to Fight Botnets ==<br />
===Norton Anti-Bot===<br />
[[Image:Norton_AntiBot.jpg|thumb|140px|right|<br />
'''Norton Anti-Bot''']]<br />
Norton Anti-Bot is commercial software that scans your system to see if it has become a zombie. It is behavioral based, versus the usual signature based. What this means is unless the bot software actually does something, Norton will leave it alone. It has all the benefits of a commercial software, meaning it will be updated constantly as new bot definitions are found.<br />
===General Tips===<br />
Use common malware prevention techniques. On Windows XP this includes monitoring the process manager and registry for unknown applications. <br><br />
<br />
A better user could also monitor network traffic and see what ports are in use. A good indication is TCP port 6667 open when an IRC client is not running.<br />
== References ==<br />
[http://en.wikipedia.org/wiki/Botnet "Botnet"]<br><br />
== See Also ==<br />
[http://www.cas.mcmaster.ca/wiki/index.php/Alternative_Technologies_for_Ethernet "Alternative Technologies for Ethernet"]<br><br />
[http://www.cas.mcmaster.ca/wiki/index.php/Phishing "Phishing"]<br><br />
<br />
== External Links ==<br />
[http://www.symantec.com/norton/products/overview.jsp?pcid=is&pvid=nab1 "Norton AntiBot"] <br><br />
[http://www.techweb.com/wire/security/172303160 "Dutch Botnet Suspects Ran 1.5 Million Machines"] <br><br />
--[[User:SJakubowski|SJakubowski]] 23:17, 13 April 2008 (EDT)</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Bots_%26_BotnetsBots & Botnets2008-04-14T03:16:03Z<p>SJakubowski: /* How it works */</p>
<hr />
<div>A Botnet is a collection of infected computers that can be used to attack organizations and distribute illegal information due to the sheer number of computers that is contained within them. Botnets are hard to prevent as the computers that become bots usually bear no resemblance in their locations in the physical world. <br><br />
<br />
They are a major threat to computing, due to the sheer amount of computers that can be controlled. In 2005 the Dutch police shut down a botnet that controlled 1.5 million computers. 1.5 million computers could shut down any website in the world if they all attempted to access its services at the same time. <br />
== Definitions == <br />
*Bot<br />
*Herder<br />
*Zombie<br />
*Scrumping<br />
<br />
===Bot===<br />
<br />
A Bot is short for robot. In the context of this wiki page a bot is a malicious program that installs itself unbeknownest to the owner of the pc, sets up an IRC or HTTP server and is ready to perform illegal activities.<br />
===Herder===<br />
A person who controls all the bots in the botnet.<br />
===Zombie===<br />
An infected computer.<br />
===Scrumping===<br />
A bot stealing CPU cycles from the host computer. This can be used as a positive means if the botnet is configured to not automatically propagate into systems that do not want it. This is not commonly the case. This could be done on a school's network.<br />
== How it works ==<br />
A Botnet basically uses a command and control schema, the same as a military. Each bot has a chain of command that is part of. It distributes orders down the line that it receives from up top. This is beneficial in the fact that it can grow exponentially. This is the opposite of the cell schema that some malware uses, which is to split apart and never communicate once they become big enough. <br><br />
<br />
A bot installs itself onto a PC. It has various vectors to enter that PC that the Herder can set. It does this autonomously. It receives orders from a server that tell it what to do. An individual bot by itself is not that powerful. However an exponential number of bots performing the same action has a much more profound effect. <br><br />
<br />
The bot once installed camouflages itself from the system view. It installs a hidden IRC client. It tries to mask itself by maintaining a low profile by using as little system resources as possible until it receives orders. <br><br />
<br />
Due to the inherent weakness of a command and control scheme, once the higher level bots are compromised the effectiveness of the botnet can be severally reduced. If the main server is taken down, the entire botnet fails.<br />
<br />
== Attacks ==<br />
*DDoS<br />
*Spamming<br />
*Phishing <br />
===DDoS===<br />
A Distributed denial of Service attack. The bots flood a web server with ICMP requests causing the server to crash. This can be used as a method of extortion from various websites. The herder demonstrates the power of his botnet by taking down the website, then he/she contacts the site in question and extorts them for money. <br />
===Spamming===<br />
A Herder can sell his botnet as a service to a spammer. This is beneficial to the spammer as he can have anonymous distribution of his messages. <br><br />
<br />
Due to the size of some botnets, a spammer will also be able to send much more messages via the bots then he normally could. This is another example of the exponential power of a botnet.<br />
<br />
===Phishing===<br />
Works the same way as the spamming method. However, instead of trying to sell a service such as "P3N15 3NLARGEMENT PILLS" the phisher is trying to con you out of your paypal or bank account.<br />
== Life Cycle == <br />
*Initial setup of configuration settings of the bot<br />
*Register a Dynamic DNS<br />
*Infect a PC with a bot<br />
**Bot propagates according to the configuration settings<br />
**Scans for vulnerabilities<br />
**Idle<br />
**Performs actions as received by other bots above it in the chain of command<br />
**Bot dies:<br />
***Bot may be taken over by another botnet<br />
***The bot's owner's PC realizes the PC is a zombie, kills the bot.<br />
***The chain of command may be compromised above the level.<br />
== Bot Management ==<br />
Bots commonly have hidden removal commands, to completely clean the host computer. On the larger IRC networks such as EFnet channel activity is logged in order to learn the commands, and then automated systems are setup to prevent the owner of the botnet from accessing them and at the same time perform the removal command when a bot comes online to it's control channel.<br />
<br />
== How to Fight Botnets ==<br />
===Norton Anti-Bot===<br />
[[Image:Norton_AntiBot.jpg|thumb|140px|right|<br />
'''Norton Anti-Bot''']]<br />
Norton Anti-Bot is commercial software that scans your system to see if it has become a zombie. It is behavioral based, versus the usual signature based. What this means is unless the bot software actually does something, Norton will leave it alone. It has all the benefits of a commercial software, meaning it will be updated constantly as new bot definitions are found.<br />
===General Tips===<br />
Use common malware prevention techniques. On Windows XP this includes monitoring the process manager and registry for unknown applications. <br><br />
<br />
A better user could also monitor network traffic and see what ports are in use. A good indication is TCP port 6667 open when an IRC client is not running.<br />
== References ==<br />
[http://en.wikipedia.org/wiki/Botnet "Botnet"]<br><br />
== See Also ==<br />
[http://www.cas.mcmaster.ca/wiki/index.php/Alternative_Technologies_for_Ethernet "Alternative Technologies for Ethernet"]<br><br />
[http://www.cas.mcmaster.ca/wiki/index.php/Phishing "Phishing"]<br><br />
<br />
== External Links ==<br />
[http://www.symantec.com/norton/products/overview.jsp?pcid=is&pvid=nab1 "Norton AntiBot"] <br><br />
[http://www.techweb.com/wire/security/172303160 "Dutch Botnet Suspects Ran 1.5 Million Machines"] <br></div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Bots_%26_BotnetsBots & Botnets2008-04-14T03:13:04Z<p>SJakubowski: /* Spamming */</p>
<hr />
<div>A Botnet is a collection of infected computers that can be used to attack organizations and distribute illegal information due to the sheer number of computers that is contained within them. Botnets are hard to prevent as the computers that become bots usually bear no resemblance in their locations in the physical world. <br><br />
<br />
They are a major threat to computing, due to the sheer amount of computers that can be controlled. In 2005 the Dutch police shut down a botnet that controlled 1.5 million computers. 1.5 million computers could shut down any website in the world if they all attempted to access its services at the same time. <br />
== Definitions == <br />
*Bot<br />
*Herder<br />
*Zombie<br />
*Scrumping<br />
<br />
===Bot===<br />
<br />
A Bot is short for robot. In the context of this wiki page a bot is a malicious program that installs itself unbeknownest to the owner of the pc, sets up an IRC or HTTP server and is ready to perform illegal activities.<br />
===Herder===<br />
A person who controls all the bots in the botnet.<br />
===Zombie===<br />
An infected computer.<br />
===Scrumping===<br />
A bot stealing CPU cycles from the host computer. This can be used as a positive means if the botnet is configured to not automatically propagate into systems that do not want it. This is not commonly the case. This could be done on a school's network.<br />
== How it works ==<br />
A Botnet basically uses a command and control schema, the same as a military. Each bot has a chain of command that is part of. It distributes orders down the line that it receives from up top. This is beneficial in the fact that it can grow exponentially. This is the opposite of the cell schema that some malware uses, which is to split apart and never communicate once they become big enough. <br><br />
<br />
A bot installs itself onto a PC. It has various vectors to enter that PC that the Herder can set. It does this autonomously. It receives orders from a server that tell it what to do. An individual bot by itself is not that powerful. However an exponential number of bots performing the same action has a much more profound effect. <br><br />
<br />
The bot once installed camouflages itself from the system view. It installs a hidden IRC client. It tries to mask itself by maintaining a low profile by using as little system resources as possible until it receives orders.<br />
<br />
== Attacks ==<br />
*DDoS<br />
*Spamming<br />
*Phishing <br />
===DDoS===<br />
A Distributed denial of Service attack. The bots flood a web server with ICMP requests causing the server to crash. This can be used as a method of extortion from various websites. The herder demonstrates the power of his botnet by taking down the website, then he/she contacts the site in question and extorts them for money. <br />
===Spamming===<br />
A Herder can sell his botnet as a service to a spammer. This is beneficial to the spammer as he can have anonymous distribution of his messages. <br><br />
<br />
Due to the size of some botnets, a spammer will also be able to send much more messages via the bots then he normally could. This is another example of the exponential power of a botnet.<br />
<br />
===Phishing===<br />
Works the same way as the spamming method. However, instead of trying to sell a service such as "P3N15 3NLARGEMENT PILLS" the phisher is trying to con you out of your paypal or bank account.<br />
== Life Cycle == <br />
*Initial setup of configuration settings of the bot<br />
*Register a Dynamic DNS<br />
*Infect a PC with a bot<br />
**Bot propagates according to the configuration settings<br />
**Scans for vulnerabilities<br />
**Idle<br />
**Performs actions as received by other bots above it in the chain of command<br />
**Bot dies:<br />
***Bot may be taken over by another botnet<br />
***The bot's owner's PC realizes the PC is a zombie, kills the bot.<br />
***The chain of command may be compromised above the level.<br />
== Bot Management ==<br />
Bots commonly have hidden removal commands, to completely clean the host computer. On the larger IRC networks such as EFnet channel activity is logged in order to learn the commands, and then automated systems are setup to prevent the owner of the botnet from accessing them and at the same time perform the removal command when a bot comes online to it's control channel.<br />
<br />
== How to Fight Botnets ==<br />
===Norton Anti-Bot===<br />
[[Image:Norton_AntiBot.jpg|thumb|140px|right|<br />
'''Norton Anti-Bot''']]<br />
Norton Anti-Bot is commercial software that scans your system to see if it has become a zombie. It is behavioral based, versus the usual signature based. What this means is unless the bot software actually does something, Norton will leave it alone. It has all the benefits of a commercial software, meaning it will be updated constantly as new bot definitions are found.<br />
===General Tips===<br />
Use common malware prevention techniques. On Windows XP this includes monitoring the process manager and registry for unknown applications. <br><br />
<br />
A better user could also monitor network traffic and see what ports are in use. A good indication is TCP port 6667 open when an IRC client is not running.<br />
== References ==<br />
[http://en.wikipedia.org/wiki/Botnet "Botnet"]<br><br />
== See Also ==<br />
[http://www.cas.mcmaster.ca/wiki/index.php/Alternative_Technologies_for_Ethernet "Alternative Technologies for Ethernet"]<br><br />
[http://www.cas.mcmaster.ca/wiki/index.php/Phishing "Phishing"]<br><br />
<br />
== External Links ==<br />
[http://www.symantec.com/norton/products/overview.jsp?pcid=is&pvid=nab1 "Norton AntiBot"] <br><br />
[http://www.techweb.com/wire/security/172303160 "Dutch Botnet Suspects Ran 1.5 Million Machines"] <br></div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Bots_%26_BotnetsBots & Botnets2008-04-14T03:10:09Z<p>SJakubowski: /* See Also */</p>
<hr />
<div>A Botnet is a collection of infected computers that can be used to attack organizations and distribute illegal information due to the sheer number of computers that is contained within them. Botnets are hard to prevent as the computers that become bots usually bear no resemblance in their locations in the physical world. <br><br />
<br />
They are a major threat to computing, due to the sheer amount of computers that can be controlled. In 2005 the Dutch police shut down a botnet that controlled 1.5 million computers. 1.5 million computers could shut down any website in the world if they all attempted to access its services at the same time. <br />
== Definitions == <br />
*Bot<br />
*Herder<br />
*Zombie<br />
*Scrumping<br />
<br />
===Bot===<br />
<br />
A Bot is short for robot. In the context of this wiki page a bot is a malicious program that installs itself unbeknownest to the owner of the pc, sets up an IRC or HTTP server and is ready to perform illegal activities.<br />
===Herder===<br />
A person who controls all the bots in the botnet.<br />
===Zombie===<br />
An infected computer.<br />
===Scrumping===<br />
A bot stealing CPU cycles from the host computer. This can be used as a positive means if the botnet is configured to not automatically propagate into systems that do not want it. This is not commonly the case. This could be done on a school's network.<br />
== How it works ==<br />
A Botnet basically uses a command and control schema, the same as a military. Each bot has a chain of command that is part of. It distributes orders down the line that it receives from up top. This is beneficial in the fact that it can grow exponentially. This is the opposite of the cell schema that some malware uses, which is to split apart and never communicate once they become big enough. <br><br />
<br />
A bot installs itself onto a PC. It has various vectors to enter that PC that the Herder can set. It does this autonomously. It receives orders from a server that tell it what to do. An individual bot by itself is not that powerful. However an exponential number of bots performing the same action has a much more profound effect. <br><br />
<br />
The bot once installed camouflages itself from the system view. It installs a hidden IRC client. It tries to mask itself by maintaining a low profile by using as little system resources as possible until it receives orders.<br />
<br />
== Attacks ==<br />
*DDoS<br />
*Spamming<br />
*Phishing <br />
===DDoS===<br />
A Distributed denial of Service attack. The bots flood a web server with ICMP requests causing the server to crash. This can be used as a method of extortion from various websites. The herder demonstrates the power of his botnet by taking down the website, then he/she contacts the site in question and extorts them for money. <br />
===Spamming===<br />
A Herder can sell his botnet as a service to a spammer. This is beneficial to the spammer as he can have anonymous distribution of his messages.<br />
===Phishing===<br />
Works the same way as the spamming method. However, instead of trying to sell a service such as "P3N15 3NLARGEMENT PILLS" the phisher is trying to con you out of your paypal or bank account.<br />
== Life Cycle == <br />
*Initial setup of configuration settings of the bot<br />
*Register a Dynamic DNS<br />
*Infect a PC with a bot<br />
**Bot propagates according to the configuration settings<br />
**Scans for vulnerabilities<br />
**Idle<br />
**Performs actions as received by other bots above it in the chain of command<br />
**Bot dies:<br />
***Bot may be taken over by another botnet<br />
***The bot's owner's PC realizes the PC is a zombie, kills the bot.<br />
***The chain of command may be compromised above the level.<br />
== Bot Management ==<br />
Bots commonly have hidden removal commands, to completely clean the host computer. On the larger IRC networks such as EFnet channel activity is logged in order to learn the commands, and then automated systems are setup to prevent the owner of the botnet from accessing them and at the same time perform the removal command when a bot comes online to it's control channel.<br />
<br />
== How to Fight Botnets ==<br />
===Norton Anti-Bot===<br />
[[Image:Norton_AntiBot.jpg|thumb|140px|right|<br />
'''Norton Anti-Bot''']]<br />
Norton Anti-Bot is commercial software that scans your system to see if it has become a zombie. It is behavioral based, versus the usual signature based. What this means is unless the bot software actually does something, Norton will leave it alone. It has all the benefits of a commercial software, meaning it will be updated constantly as new bot definitions are found.<br />
===General Tips===<br />
Use common malware prevention techniques. On Windows XP this includes monitoring the process manager and registry for unknown applications. <br><br />
<br />
A better user could also monitor network traffic and see what ports are in use. A good indication is TCP port 6667 open when an IRC client is not running.<br />
== References ==<br />
[http://en.wikipedia.org/wiki/Botnet "Botnet"]<br><br />
== See Also ==<br />
[http://www.cas.mcmaster.ca/wiki/index.php/Alternative_Technologies_for_Ethernet "Alternative Technologies for Ethernet"]<br><br />
[http://www.cas.mcmaster.ca/wiki/index.php/Phishing "Phishing"]<br><br />
<br />
== External Links ==<br />
[http://www.symantec.com/norton/products/overview.jsp?pcid=is&pvid=nab1 "Norton AntiBot"] <br><br />
[http://www.techweb.com/wire/security/172303160 "Dutch Botnet Suspects Ran 1.5 Million Machines"] <br></div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Bots_%26_BotnetsBots & Botnets2008-04-14T03:08:37Z<p>SJakubowski: </p>
<hr />
<div>A Botnet is a collection of infected computers that can be used to attack organizations and distribute illegal information due to the sheer number of computers that is contained within them. Botnets are hard to prevent as the computers that become bots usually bear no resemblance in their locations in the physical world. <br><br />
<br />
They are a major threat to computing, due to the sheer amount of computers that can be controlled. In 2005 the Dutch police shut down a botnet that controlled 1.5 million computers. 1.5 million computers could shut down any website in the world if they all attempted to access its services at the same time. <br />
== Definitions == <br />
*Bot<br />
*Herder<br />
*Zombie<br />
*Scrumping<br />
<br />
===Bot===<br />
<br />
A Bot is short for robot. In the context of this wiki page a bot is a malicious program that installs itself unbeknownest to the owner of the pc, sets up an IRC or HTTP server and is ready to perform illegal activities.<br />
===Herder===<br />
A person who controls all the bots in the botnet.<br />
===Zombie===<br />
An infected computer.<br />
===Scrumping===<br />
A bot stealing CPU cycles from the host computer. This can be used as a positive means if the botnet is configured to not automatically propagate into systems that do not want it. This is not commonly the case. This could be done on a school's network.<br />
== How it works ==<br />
A Botnet basically uses a command and control schema, the same as a military. Each bot has a chain of command that is part of. It distributes orders down the line that it receives from up top. This is beneficial in the fact that it can grow exponentially. This is the opposite of the cell schema that some malware uses, which is to split apart and never communicate once they become big enough. <br><br />
<br />
A bot installs itself onto a PC. It has various vectors to enter that PC that the Herder can set. It does this autonomously. It receives orders from a server that tell it what to do. An individual bot by itself is not that powerful. However an exponential number of bots performing the same action has a much more profound effect. <br><br />
<br />
The bot once installed camouflages itself from the system view. It installs a hidden IRC client. It tries to mask itself by maintaining a low profile by using as little system resources as possible until it receives orders.<br />
<br />
== Attacks ==<br />
*DDoS<br />
*Spamming<br />
*Phishing <br />
===DDoS===<br />
A Distributed denial of Service attack. The bots flood a web server with ICMP requests causing the server to crash. This can be used as a method of extortion from various websites. The herder demonstrates the power of his botnet by taking down the website, then he/she contacts the site in question and extorts them for money. <br />
===Spamming===<br />
A Herder can sell his botnet as a service to a spammer. This is beneficial to the spammer as he can have anonymous distribution of his messages.<br />
===Phishing===<br />
Works the same way as the spamming method. However, instead of trying to sell a service such as "P3N15 3NLARGEMENT PILLS" the phisher is trying to con you out of your paypal or bank account.<br />
== Life Cycle == <br />
*Initial setup of configuration settings of the bot<br />
*Register a Dynamic DNS<br />
*Infect a PC with a bot<br />
**Bot propagates according to the configuration settings<br />
**Scans for vulnerabilities<br />
**Idle<br />
**Performs actions as received by other bots above it in the chain of command<br />
**Bot dies:<br />
***Bot may be taken over by another botnet<br />
***The bot's owner's PC realizes the PC is a zombie, kills the bot.<br />
***The chain of command may be compromised above the level.<br />
== Bot Management ==<br />
Bots commonly have hidden removal commands, to completely clean the host computer. On the larger IRC networks such as EFnet channel activity is logged in order to learn the commands, and then automated systems are setup to prevent the owner of the botnet from accessing them and at the same time perform the removal command when a bot comes online to it's control channel.<br />
<br />
== How to Fight Botnets ==<br />
===Norton Anti-Bot===<br />
[[Image:Norton_AntiBot.jpg|thumb|140px|right|<br />
'''Norton Anti-Bot''']]<br />
Norton Anti-Bot is commercial software that scans your system to see if it has become a zombie. It is behavioral based, versus the usual signature based. What this means is unless the bot software actually does something, Norton will leave it alone. It has all the benefits of a commercial software, meaning it will be updated constantly as new bot definitions are found.<br />
===General Tips===<br />
Use common malware prevention techniques. On Windows XP this includes monitoring the process manager and registry for unknown applications. <br><br />
<br />
A better user could also monitor network traffic and see what ports are in use. A good indication is TCP port 6667 open when an IRC client is not running.<br />
== References ==<br />
[http://en.wikipedia.org/wiki/Botnet "Botnet"]<br><br />
== See Also ==<br />
[http://www.cas.mcmaster.ca/wiki/index.php/Alternative_Technologies_for_Ethernet "Alternative Technologies for Ethernet"]<br><br />
== External Links ==<br />
[http://www.symantec.com/norton/products/overview.jsp?pcid=is&pvid=nab1 "Norton AntiBot"] <br><br />
[http://www.techweb.com/wire/security/172303160 "Dutch Botnet Suspects Ran 1.5 Million Machines"] <br></div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Bots_%26_BotnetsBots & Botnets2008-04-14T03:03:21Z<p>SJakubowski: </p>
<hr />
<div>A Botnet is a collection of infected computers that can be used to attack organizations and distribute illegal information due to the sheer number of computers that is contained within them. Botnets are hard to prevent as the computers that become bots usually bear no resemblance in their locations in the physical world. <br><br />
<br />
They are a major threat to computing, due to the sheer amount of computers that can be controlled. In 2005 the Dutch police shut down a botnet that controlled 1.5 million computers. 1.5 million computers could shut down any website in the world if they all attempted to access its services at the same time. <br />
== Definitions == <br />
*Bot<br />
*Herder<br />
*Zombie<br />
*Scrumping<br />
<br />
===Bot===<br />
<br />
A Bot is short for robot. In the context of this wiki page a bot is a malicious program that installs itself unbeknownest to the owner of the pc, sets up an IRC or HTTP server and is ready to perform illegal activities.<br />
===Herder===<br />
A person who controls all the bots in the botnet.<br />
===Zombie===<br />
An infected computer.<br />
===Scrumping===<br />
A bot stealing CPU cycles from the host computer. This can be used as a positive means if the botnet is configured to not automatically propagate into systems that do not want it. This is not commonly the case. This could be done on a school's network.<br />
== How it works ==<br />
A Botnet basically uses a command and control schema, the same as a military. Each bot has a chain of command that is part of. It distributes orders down the line that it receives from up top. This is beneficial in the fact that it can grow exponentially. This is the opposite of the cell schema that some malware uses, which is to split apart and never communicate once they become big enough. <br><br />
<br />
A bot installs itself onto a PC. It has various vectors to enter that PC that the Herder can set. It does this autonomously. It receives orders from a server that tell it what to do. An individual bot by itself is not that powerful. However an exponential number of bots performing the same action has a much more profound effect. <br><br />
<br />
The bot once installed camouflages itself from the system view. It installs a hidden IRC client. It tries to mask itself by maintaining a low profile by using as little system resources as possible until it receives orders.<br />
<br />
== Attacks ==<br />
*DDoS<br />
*Spamming<br />
*Phishing <br />
===DDoS===<br />
A Distributed denial of Service attack. The bots flood a web server with ICMP requests causing the server to crash. This can be used as a method of extortion from various websites. The herder demonstrates the power of his botnet by taking down the website, then he/she contacts the site in question and extorts them for money. <br />
===Spamming===<br />
A Herder can sell his botnet as a service to a spammer. This is beneficial to the spammer as he can have anonymous distribution of his messages.<br />
===Phishing===<br />
Works the same way as the spamming method.<br />
== Life Cycle == <br />
*Initial setup of configuration settings of the bot<br />
*Register a Dynamic DNS<br />
*Infect a PC with a bot<br />
**Bot propagates according to the configuration settings<br />
**Scans for vulnerabilities<br />
**Idle<br />
**Performs actions as received by other bots above it in the chain of command<br />
**Bot dies:<br />
***Bot may be taken over by another botnet<br />
***The bot's owner's PC realizes the PC is a zombie, kills the bot.<br />
***The chain of command may be compromised above the level.<br />
== Bot Management ==<br />
Bots commonly have hidden removal commands, to completely clean the host computer. On the larger IRC networks such as EFnet channel activity is logged in order to learn the commands, and then automated systems are setup to prevent the owner of the botnet from accessing them and at the same time perform the removal command when a bot comes online to it's control channel.<br />
<br />
== How to Fight Botnets ==<br />
===Norton Anti-Bot===<br />
[[Image:Norton_AntiBot.jpg|thumb|140px|right|<br />
'''Norton Anti-Bot''']]<br />
Norton Anti-Bot is commercial software that scans your system to see if it has become a zombie. It is behavioral based, versus the usual signature based. What this means is unless the bot software actually does something, Norton will leave it alone. It has all the benefits of a commercial software, meaning it will be updated constantly as new bot definitions are found.<br />
===General Tips===<br />
Use common malware prevention techniques. On Windows XP this includes monitoring the process manager and registry for unknown applications. <br><br />
<br />
A better user could also monitor network traffic and see what ports are in use. A good indication is TCP port 6667 open when an IRC client is not running.<br />
== References ==<br />
[http://en.wikipedia.org/wiki/Botnet "Botnet"]<br><br />
== See Also ==<br />
[http://www.cas.mcmaster.ca/wiki/index.php/Alternative_Technologies_for_Ethernet "Alternative Technologies for Ethernet"]<br><br />
== External Links ==<br />
[http://www.symantec.com/norton/products/overview.jsp?pcid=is&pvid=nab1 "Norton AntiBot"] <br><br />
[http://www.techweb.com/wire/security/172303160 "Dutch Botnet Suspects Ran 1.5 Million Machines"] <br></div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Bots_%26_BotnetsBots & Botnets2008-04-14T02:47:32Z<p>SJakubowski: </p>
<hr />
<div>A Botnet is a collection of infected computers that can be used to attack organizations and distribute illegal information due to the sheer number of computers that is contained within them. Botnets are hard to prevent as the computers usually bear no resemblance in their locations in the physical world. <br />
<br />
== Definitions == <br />
*Bot<br />
*Herder<br />
*Zombie<br />
*Scrumping<br />
<br />
===Bot===<br />
<br />
A Bot is short for robot. In the context of this wikipedia page a bot is a malicious program that installs itself unbeknowenst to the owner of the pc, sets up an IRC or HTTP server and is ready to perform illegal activities.<br />
===Herder===<br />
A person who controls all the bots in the botnet.<br />
===Zombie===<br />
An infected computer.<br />
===Scrumping===<br />
A bot stealing CPU cycles from the host computer.<br />
== How it works ==<br />
A Botnet basically uses a command and control schema, the same as a military. Each bot has a chain of command that is part of. It distributes orders down the line that it recieves from up top. This is benificial in the fact that it can grow exponentially. This is the opposite of the cell schema that some malware uses, which is to split apart and never communicate once they become big enough. <br><br />
<br />
A bot installs itself onto a pc. It has various vectors that the Herder can set. It does this autonomously. It recieves orders from a server that tell it what to do. An individual bot by itself is not that powerful. However an exponential number of bots performing the same action has a much more profound effect. <br />
== Attacks ==<br />
*DDoS<br />
*Spamming<br />
*Phishing <br />
===DDoS===<br />
A Distributed denial of Service attack. The bots flood a web server with ICMP requests causing the server to crash. This can be used as a method of extortion from various websites. The herder demonstrates the power of his botnet by taking down the website, then he/she contacts the site in question and extorts them for money. <br />
===Spamming===<br />
A Herder can sell his botnet as a service to a spammer. This is beneficial to the spammer as he can have anonymous distribution of his messages.<br />
===Phishing===<br />
Works the same way as the spamming method.<br />
== Life Cycle == <br />
*Intial setup of configuration settings of the bot<br />
*Register a Dynamic DNS<br />
*Infect a PC with a bot<br />
**Bot propagates according to the configuration settings<br />
**Scans for vunerabilities<br />
**Idle<br />
**Performs actions as recieved by other bots above it in the chain of command<br />
**Bot dies:<br />
***Bot may be taken over by another botnet<br />
***The bot's owner's pc realizes the pc is a zombie, kills the bot.<br />
***The chain of command may be compromised above the level.<br />
== Bot Management ==<br />
They commonly have hidden removal commands, to completely clean the host computer. On the larger IRC networks such as EFnet channel activity is logged in order to learn the commands, and then automated systems are setup to prevent the owner of the botnet from accessing them and at the same time perform the removal command when a bot comes online to it's control channel.<br />
<br />
== How to Fight Botnets ==<br />
===Norton Anti-Bot===<br />
[[Image:Norton_AntiBot.jpg|thumb|140px|right|<br />
'''Norton Anti-Bot''']]<br />
Norton Anti-Bot is commercial software that scans your system to see if it has become a zombie. It is behavioural based, versus the usual signature based. What this means is unless the bot software actually does something, Norton will leave it alone. It has all the benefits of a commercial software, meaning it will be updated constantly as new bot definitions are found.<br />
<br />
== References ==<br />
[http://en.wikipedia.org/wiki/Botnet "Botnet"]<br><br />
== See Also ==<br />
[http://www.cas.mcmaster.ca/wiki/index.php/Alternative_Technologies_for_Ethernet "Alternative Technologies for Ethernet"]<br><br />
== External Links ==<br />
http://www.symantec.com/norton/products/overview.jsp?pcid=is&pvid=nab1</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Bots_%26_BotnetsBots & Botnets2008-04-14T02:41:43Z<p>SJakubowski: /* Norton Anti-Bot */</p>
<hr />
<div>A Botnet is a collection of infected computers that can be used to attack organizations and distribute illegal information due to the sheer number of computers that is contained within them. Botnets are hard to prevent as the computers usually bear no resemblance in their locations in the physical world. <br />
<br />
== Definitions == <br />
*Bot<br />
*Herder<br />
*Zombie<br />
*Scrumping<br />
<br />
===Bot===<br />
<br />
A Bot is short for robot. In the context of this wikipedia page a bot is a malicious program that installs itself unbeknowenst to the owner of the pc, sets up an IRC or HTTP server and is ready to perform illegal activities.<br />
===Herder===<br />
A person who controls all the bots in the botnet.<br />
===Zombie===<br />
An infected computer.<br />
===Scrumping===<br />
A bot stealing CPU cycles from the host computer.<br />
== Attacks ==<br />
*DDoS<br />
*Spamming<br />
*Phishing <br />
===DDoS===<br />
A Distributed denial of Service attack. The bots flood a web server with ICMP requests causing the server to crash. This can be used as a method of extortion from various websites. The herder demonstrates the power of his botnet by taking down the website, then he/she contacts the site in question and extorts them for money. <br />
===Spamming===<br />
A Herder can sell his botnet as a service to a spammer. This is beneficial to the spammer as he can have anonymous distribution of his messages.<br />
===Phishing===<br />
Works the same way as the spamming method.<br />
== Life Cycle == <br />
*Intial setup of configuration settings of the bot<br />
*Register a Dynamic DNS<br />
*Infect a PC with a bot<br />
**Bot propagates according to the configuration settings<br />
**Scans for vunerabilities<br />
**Idle<br />
**Performs actions as recieved by other bots above it in the chain of command<br />
**Bot dies:<br />
***Bot may be taken over by another botnet<br />
***The bot's owner's pc realizes the pc is a zombie, kills the bot.<br />
***The chain of command may be compromised above the level.<br />
== Bot Management ==<br />
They commonly have hidden removal commands, to completely clean the host computer. On the larger IRC networks such as EFnet channel activity is logged in order to learn the commands, and then automated systems are setup to prevent the owner of the botnet from accessing them and at the same time perform the removal command when a bot comes online to it's control channel.<br />
<br />
== How to Fight Botnets ==<br />
===Norton Anti-Bot===<br />
[[Image:Norton_AntiBot.jpg|thumb|140px|right|<br />
'''Norton Anti-Bot''']]<br />
Norton Anti-Bot is commercial software that scans your system to see if it has become a zombie. It is behavioural based, versus the usual signature based. What this means is unless the bot software actually does something, Norton will leave it alone. It has all the benefits of a commercial software, meaning it will be updated constantly as new bot definitions are found.<br />
<br />
== References ==<br />
[http://en.wikipedia.org/wiki/Botnet "Botnet"]<br><br />
== See Also ==<br />
[http://www.cas.mcmaster.ca/wiki/index.php/Alternative_Technologies_for_Ethernet "Alternative Technologies for Ethernet"]<br><br />
== External Links ==<br />
http://www.symantec.com/norton/products/overview.jsp?pcid=is&pvid=nab1</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Bots_%26_BotnetsBots & Botnets2008-04-14T02:35:38Z<p>SJakubowski: /* Norton Anti-Bot */</p>
<hr />
<div>A Botnet is a collection of infected computers that can be used to attack organizations and distribute illegal information due to the sheer number of computers that is contained within them. Botnets are hard to prevent as the computers usually bear no resemblance in their locations in the physical world. <br />
<br />
== Definitions == <br />
*Bot<br />
*Herder<br />
*Zombie<br />
*Scrumping<br />
<br />
===Bot===<br />
<br />
A Bot is short for robot. In the context of this wikipedia page a bot is a malicious program that installs itself unbeknowenst to the owner of the pc, sets up an IRC or HTTP server and is ready to perform illegal activities.<br />
===Herder===<br />
A person who controls all the bots in the botnet.<br />
===Zombie===<br />
An infected computer.<br />
===Scrumping===<br />
A bot stealing CPU cycles from the host computer.<br />
== Attacks ==<br />
*DDoS<br />
*Spamming<br />
*Phishing <br />
===DDoS===<br />
A Distributed denial of Service attack. The bots flood a web server with ICMP requests causing the server to crash. This can be used as a method of extortion from various websites. The herder demonstrates the power of his botnet by taking down the website, then he/she contacts the site in question and extorts them for money. <br />
===Spamming===<br />
A Herder can sell his botnet as a service to a spammer. This is beneficial to the spammer as he can have anonymous distribution of his messages.<br />
===Phishing===<br />
Works the same way as the spamming method.<br />
== Life Cycle == <br />
*Intial setup of configuration settings of the bot<br />
*Register a Dynamic DNS<br />
*Infect a PC with a bot<br />
**Bot propagates according to the configuration settings<br />
**Scans for vunerabilities<br />
**Idle<br />
**Performs actions as recieved by other bots above it in the chain of command<br />
**Bot dies:<br />
***Bot may be taken over by another botnet<br />
***The bot's owner's pc realizes the pc is a zombie, kills the bot.<br />
***The chain of command may be compromised above the level.<br />
== Bot Management ==<br />
They commonly have hidden removal commands, to completely clean the host computer. On the larger IRC networks such as EFnet channel activity is logged in order to learn the commands, and then automated systems are setup to prevent the owner of the botnet from accessing them and at the same time perform the removal command when a bot comes online to it's control channel.<br />
<br />
== How to Fight Botnets ==<br />
===Norton Anti-Bot===<br />
[[Image:Norton_AntiBot.jpg|thumb|140px|right|<br />
'''Norton Anti-Bot''']]<br />
<br />
== References ==<br />
[http://en.wikipedia.org/wiki/Botnet "Botnet"]<br><br />
== See Also ==<br />
[http://www.cas.mcmaster.ca/wiki/index.php/Alternative_Technologies_for_Ethernet "Alternative Technologies for Ethernet"]<br><br />
== External Links ==<br />
http://www.symantec.com/norton/products/overview.jsp?pcid=is&pvid=nab1</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/File:Norton_AntiBot.jpgFile:Norton AntiBot.jpg2008-04-14T02:35:20Z<p>SJakubowski: </p>
<hr />
<div></div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Bots_%26_BotnetsBots & Botnets2008-04-13T14:07:43Z<p>SJakubowski: </p>
<hr />
<div>insert description here<br />
<br />
== Definitions == <br />
===Bot===<br />
===Herder===<br />
===Zombie===<br />
===Scrumping===<br />
== Attacks == <br />
===DDoS===<br />
===Spamming===<br />
===phishing===<br />
<br />
== Life Cycle == <br />
<br />
== Bot Management ==<br />
<br />
== How to Fight Botnets ==<br />
<br />
== References ==<br />
[http://en.wikipedia.org/wiki/Botnet "Botnet"]<br><br />
== See Also ==<br />
[http://www.cas.mcmaster.ca/wiki/index.php/Alternative_Technologies_for_Ethernet "Alternative Technologies for Ethernet"]<br><br />
== External Links ==</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Bots_%26_BotnetsBots & Botnets2008-04-13T14:06:36Z<p>SJakubowski: </p>
<hr />
<div>insert description here<br />
<br />
== Definitions == <br />
===Bot===<br />
===Herder===<br />
===Zombie===<br />
===Scrumping===<br />
== Attacks == <br />
===DDoS===<br />
===Spamming===<br />
===phishing===<br />
<br />
== Life Cycle == <br />
<br />
== Bot Management ==<br />
<br />
== How to Fight Botnets ==<br />
<br />
== References ==<br />
<br />
== See Also ==<br />
[http://en.wikipedia.org/wiki/Botnet "Botnet"]<br><br />
== External Links ==</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Bots_%26_BotnetsBots & Botnets2008-04-13T14:03:50Z<p>SJakubowski: </p>
<hr />
<div>insert description here<br />
<br />
== Definitions == <br />
===Bot===<br />
===Herder===<br />
===Zombie===<br />
===Scrumping===<br />
== Attacks == <br />
===DDoS===<br />
===Spamming===<br />
===phishing===<br />
<br />
== Life Cycle == <br />
<br />
== Bot Management ==<br />
<br />
== How to Fight Botnets ==</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Bots_%26_BotnetsBots & Botnets2008-04-13T13:52:10Z<p>SJakubowski: New page: a</p>
<hr />
<div>a</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Smart_Card_technology_to_prevent_fraudSmart Card technology to prevent fraud2007-12-03T04:59:05Z<p>SJakubowski: </p>
<hr />
<div>Smart Card technology to prevent fraud is a summary of various ways that fraud can be prevented using smart cards. This wiki page mainly deals with fraud in '''Credit Cards''' and '''Debit Cards'''.<br />
<br />
== Terms used in this article ==<br />
==== ATM ====<br />
Automated Teller Machine<br />
==== PIN ====<br />
Personal Identification Number<br />
== General Facts about debit/credit fraud in Canada==<br />
<br />
*44 Million dollars lost in 2003 due to debit card fraud.<br />
*100 Million in 2006<br />
*Numbers on the rise every year.<br />
*Takes less then a second and your Card is compromised.<br />
*Smart card technology can prevent this.<br />
<br><br />
Debit and Credit card fraud is a major issue here in Canada. What is basically involved is a group of individuals setting up magnetic strip readers to record magentic data from an unsuspecting person. The PIN must also be either witnessed by a team member or a camera. Then blank cards are filled with the data. Then the cashout phase begins which is when various ATM's are hit and balances are withdrawn sometimes to the point of depositing blank envelopes and withdrawing cash that does not even exist. <br><br />
<br />
A Group of Romainian gang members were busted last year for a total of 4 million dollars worth of fraudulent withdrawls from debit cards and ATMs. They custom made a device to fit overtop of an ATM terminal that would look like part of it, with the keypad and magnetic reader, they would leave it there unobserved for an hour or two, and then recover it before the deception was noted. The device kept track of the magnetic data and PIN numbers.<br />
<br />
== General Facts about Smart Cards ==<br />
[[Image:Smartcardchip.jpg|thumb|300px|right|<br />
'''What a Smart Card Chip looks like internally''']]<br />
====What is a Smart Card====<br />
*Smart cards use a microchip embedded onto the card.<br />
*The chip uses no power, the reader provides the power and reads the information from the chip<br />
*Smart card chips are encrypted<br />
**They use RSA and DSA encryption algorithms<br />
====Background====<br />
*Invented in 1968. German rocket scientist. Helmut Gröttrup<br />
*French debit cards in 1992.<br />
**Carte Bleue.<br />
*EMVco<br />
**Company that updates the card specifications. <br />
**Visa/Debit cards must meet their worldwide standards if the Card is to be successful.<br />
<br />
== Problems with Smart Cards ==<br />
*Chip is not flexible.<br />
*Big banks estimate it would cost 500 million to convert the system to use smart cards.<br />
*They have been cracked in the past.<br />
<br />
== Future of Smart Cards ==<br />
====RFID====<br />
<br />
<p><br />
<br />
RFID is a relatively recent technology. It stands for Radio-frequency identification. It is also non powered, so the card will require no battery. It allows smart cards to function without having to make physical contact with a chip reader, they will be able to work wirelessly.<br />
<br />
== General Tips to Prevent fraud ==<br />
*Hide your PIN<br />
*Watch for signs of tampered card readers<br />
*Don't lend out your Credit card or Debit Card<br />
<br />
== See Also ==<br />
[[HaveFunWithCasWiki]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:SJakubowski SJakubowski]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:Cavaliaj Cavaliaj]]<br><br />
[[Electronic Voting Systems]]<BR><br />
[[Social engineering]]<BR><br />
[[Piggybacking]]<BR><br />
[[Identity Theft]]<BR><br />
[[The Mitnick attack]]<BR><br />
[[Security and Storage Mediums]]<BR><br />
[[Operating Systems Security]]<BR><br />
[[Honeypot]]<BR><br />
[[Payment Card Industry Data Security Standard]]<br />
--[[User:SJakubowski|SJakubowski]] 23:59, 2 December 2007 (EST)</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Smart_Card_technology_to_prevent_fraudSmart Card technology to prevent fraud2007-12-03T04:56:01Z<p>SJakubowski: /* Future of Smart Cards */</p>
<hr />
<div>Smart Card technology to prevent fraud is a summary of various ways that fraud can be prevented using smart cards. This wiki page mainly deals with fraud in '''Credit Cards''' and '''Debit Cards'''.<br />
<br />
== Terms used in this article ==<br />
==== ATM ====<br />
Automated Teller Machine<br />
==== PIN ====<br />
Personal Identification Number<br />
== General Facts about debit/credit fraud in Canada==<br />
<br />
*44 Million dollars lost in 2003 due to debit card fraud.<br />
*100 Million in 2006<br />
*Numbers on the rise every year.<br />
*Takes less then a second and your Card is compromised.<br />
*Smart card technology can prevent this.<br />
<br><br />
Debit and Credit card fraud is a major issue here in Canada. What is basically involved is a group of individuals setting up magnetic strip readers to record magentic data from an unsuspecting person. The PIN must also be either witnessed by a team member or a camera. Then blank cards are filled with the data. Then the cashout phase begins which is when various ATM's are hit and balances are withdrawn sometimes to the point of depositing blank envelopes and withdrawing cash that does not even exist. <br><br />
<br />
A Group of Romainian gang members were busted last year for a total of 4 million dollars worth of fraudulent withdrawls from debit cards and ATMs. They custom made a device to fit overtop of an ATM terminal that would look like part of it, with the keypad and magnetic reader, they would leave it there unobserved for an hour or two, and then recover it before the deception was noted. The device kept track of the magnetic data and PIN numbers.<br />
<br />
== General Facts about Smart Cards ==<br />
[[Image:Smartcardchip.jpg|thumb|300px|right|<br />
'''What a Smart Card Chip looks like internally''']]<br />
====What is a Smart Card====<br />
*Smart cards use a microchip embedded onto the card.<br />
*The chip uses no power, the reader provides the power and reads the information from the chip<br />
*Smart card chips are encrypted<br />
**They use RSA and DSA encryption algorithms<br />
====Background====<br />
*Invented in 1968. German rocket scientist. Helmut Gröttrup<br />
*French debit cards in 1992.<br />
**Carte Bleue.<br />
*EMVco<br />
**Company that updates the card specifications. <br />
**Visa/Debit cards must meet their worldwide standards if the Card is to be successful.<br />
<br />
== Problems with Smart Cards ==<br />
*Chip is not flexible.<br />
*Big banks estimate it would cost 500 million to convert the system to use smart cards.<br />
*They have been cracked in the past.<br />
<br />
== Future of Smart Cards ==<br />
====RFID====<br />
<br />
<p><br />
<br />
RFID is a relatively recent technology. It stands for Radio-frequency identification. It is also non powered, so the card will require no battery. It allows smart cards to function without having to make physical contact with a chip reader, they will be able to work wirelessly.<br />
<br />
== General Tips to Prevent fraud ==<br />
*Hide your PIN<br />
*Watch for signs of tampered card readers<br />
*Don't lend out your Credit card or Debit Card<br />
<br />
== See Also ==<br />
[[HaveFunWithCasWiki]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:SJakubowski SJakubowski]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:Cavaliaj Cavaliaj]]<br><br />
[[Electronic Voting Systems]]<BR><br />
[[Social engineering]]<BR><br />
[[Piggybacking]]<BR><br />
[[Identity Theft]]<BR><br />
[[The Mitnick attack]]<BR><br />
[[Security and Storage Mediums]]<BR><br />
[[Operating Systems Security]]<BR><br />
[[Honeypot]]<BR><br />
[[Payment Card Industry Data Security Standard]]</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Smart_Card_technology_to_prevent_fraudSmart Card technology to prevent fraud2007-12-03T04:55:18Z<p>SJakubowski: /* Future of Smart Cards */</p>
<hr />
<div>Smart Card technology to prevent fraud is a summary of various ways that fraud can be prevented using smart cards. This wiki page mainly deals with fraud in '''Credit Cards''' and '''Debit Cards'''.<br />
<br />
== Terms used in this article ==<br />
==== ATM ====<br />
Automated Teller Machine<br />
==== PIN ====<br />
Personal Identification Number<br />
== General Facts about debit/credit fraud in Canada==<br />
<br />
*44 Million dollars lost in 2003 due to debit card fraud.<br />
*100 Million in 2006<br />
*Numbers on the rise every year.<br />
*Takes less then a second and your Card is compromised.<br />
*Smart card technology can prevent this.<br />
<br><br />
Debit and Credit card fraud is a major issue here in Canada. What is basically involved is a group of individuals setting up magnetic strip readers to record magentic data from an unsuspecting person. The PIN must also be either witnessed by a team member or a camera. Then blank cards are filled with the data. Then the cashout phase begins which is when various ATM's are hit and balances are withdrawn sometimes to the point of depositing blank envelopes and withdrawing cash that does not even exist. <br><br />
<br />
A Group of Romainian gang members were busted last year for a total of 4 million dollars worth of fraudulent withdrawls from debit cards and ATMs. They custom made a device to fit overtop of an ATM terminal that would look like part of it, with the keypad and magnetic reader, they would leave it there unobserved for an hour or two, and then recover it before the deception was noted. The device kept track of the magnetic data and PIN numbers.<br />
<br />
== General Facts about Smart Cards ==<br />
[[Image:Smartcardchip.jpg|thumb|300px|right|<br />
'''What a Smart Card Chip looks like internally''']]<br />
====What is a Smart Card====<br />
*Smart cards use a microchip embedded onto the card.<br />
*The chip uses no power, the reader provides the power and reads the information from the chip<br />
*Smart card chips are encrypted<br />
**They use RSA and DSA encryption algorithms<br />
====Background====<br />
*Invented in 1968. German rocket scientist. Helmut Gröttrup<br />
*French debit cards in 1992.<br />
**Carte Bleue.<br />
*EMVco<br />
**Company that updates the card specifications. <br />
**Visa/Debit cards must meet their worldwide standards if the Card is to be successful.<br />
<br />
== Problems with Smart Cards ==<br />
*Chip is not flexible.<br />
*Big banks estimate it would cost 500 million to convert the system to use smart cards.<br />
*They have been cracked in the past.<br />
<br />
== Future of Smart Cards ==<br />
*RFID<br />
<br />
<p><br />
<br />
RFID is a relatively recent technology. It stands for Radio-frequency identification. It is also non powered, so the card will require no battery. It allows smart cards to function without having to make physical contact with a chip reader, they will be able to work wirelessly.<br />
<br />
== General Tips to Prevent fraud ==<br />
*Hide your PIN<br />
*Watch for signs of tampered card readers<br />
*Don't lend out your Credit card or Debit Card<br />
<br />
== See Also ==<br />
[[HaveFunWithCasWiki]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:SJakubowski SJakubowski]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:Cavaliaj Cavaliaj]]<br><br />
[[Electronic Voting Systems]]<BR><br />
[[Social engineering]]<BR><br />
[[Piggybacking]]<BR><br />
[[Identity Theft]]<BR><br />
[[The Mitnick attack]]<BR><br />
[[Security and Storage Mediums]]<BR><br />
[[Operating Systems Security]]<BR><br />
[[Honeypot]]<BR><br />
[[Payment Card Industry Data Security Standard]]</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Smart_Card_technology_to_prevent_fraudSmart Card technology to prevent fraud2007-12-03T04:35:56Z<p>SJakubowski: </p>
<hr />
<div>Smart Card technology to prevent fraud is a summary of various ways that fraud can be prevented using smart cards. This wiki page mainly deals with fraud in '''Credit Cards''' and '''Debit Cards'''.<br />
<br />
== Terms used in this article ==<br />
==== ATM ====<br />
Automated Teller Machine<br />
==== PIN ====<br />
Personal Identification Number<br />
== General Facts about debit/credit fraud in Canada==<br />
<br />
*44 Million dollars lost in 2003 due to debit card fraud.<br />
*100 Million in 2006<br />
*Numbers on the rise every year.<br />
*Takes less then a second and your Card is compromised.<br />
*Smart card technology can prevent this.<br />
<br><br />
Debit and Credit card fraud is a major issue here in Canada. What is basically involved is a group of individuals setting up magnetic strip readers to record magentic data from an unsuspecting person. The PIN must also be either witnessed by a team member or a camera. Then blank cards are filled with the data. Then the cashout phase begins which is when various ATM's are hit and balances are withdrawn sometimes to the point of depositing blank envelopes and withdrawing cash that does not even exist. <br><br />
<br />
A Group of Romainian gang members were busted last year for a total of 4 million dollars worth of fraudulent withdrawls from debit cards and ATMs. They custom made a device to fit overtop of an ATM terminal that would look like part of it, with the keypad and magnetic reader, they would leave it there unobserved for an hour or two, and then recover it before the deception was noted. The device kept track of the magnetic data and PIN numbers.<br />
<br />
== General Facts about Smart Cards ==<br />
[[Image:Smartcardchip.jpg|thumb|300px|right|<br />
'''What a Smart Card Chip looks like internally''']]<br />
====What is a Smart Card====<br />
*Smart cards use a microchip embedded onto the card.<br />
*The chip uses no power, the reader provides the power and reads the information from the chip<br />
*Smart card chips are encrypted<br />
**They use RSA and DSA encryption algorithms<br />
====Background====<br />
*Invented in 1968. German rocket scientist. Helmut Gröttrup<br />
*French debit cards in 1992.<br />
**Carte Bleue.<br />
*EMVco<br />
**Company that updates the card specifications. <br />
**Visa/Debit cards must meet their worldwide standards if the Card is to be successful.<br />
<br />
== Problems with Smart Cards ==<br />
*Chip is not flexible.<br />
*Big banks estimate it would cost 500 million to convert the system to use smart cards.<br />
*They have been cracked in the past.<br />
<br />
== Future of Smart Cards ==<br />
RFID.<br />
<br />
== General Tips to Prevent fraud ==<br />
*Hide your PIN<br />
*Watch for signs of tampered card readers<br />
*Don't lend out your Credit card or Debit Card<br />
<br />
== See Also ==<br />
[[HaveFunWithCasWiki]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:SJakubowski SJakubowski]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:Cavaliaj Cavaliaj]]<br><br />
[[Electronic Voting Systems]]<BR><br />
[[Social engineering]]<BR><br />
[[Piggybacking]]<BR><br />
[[Identity Theft]]<BR><br />
[[The Mitnick attack]]<BR><br />
[[Security and Storage Mediums]]<BR><br />
[[Operating Systems Security]]<BR><br />
[[Honeypot]]<BR><br />
[[Payment Card Industry Data Security Standard]]</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Smart_Card_technology_to_prevent_fraudSmart Card technology to prevent fraud2007-12-03T04:34:21Z<p>SJakubowski: /* General Facts about debit/credit fraud in Canada */</p>
<hr />
<div>Smart Card technology to prevent fraud is a summary of various ways that fraud can be prevented using smart cards. This wiki page mainly deals with fraud in '''Credit Cards''' and '''Debit Cards'''.<br />
<br />
== General Facts about debit/credit fraud in Canada==<br />
<br />
*44 Million dollars lost in 2003 due to debit card fraud.<br />
*100 Million in 2006<br />
*Numbers on the rise every year.<br />
*Takes less then a second and your Card is compromised.<br />
*Smart card technology can prevent this.<br />
<br><br />
Debit and Credit card fraud is a major issue here in Canada. What is basically involved is a group of individuals setting up magnetic strip readers to record magentic data from an unsuspecting person. The PIN must also be either witnessed by a team member or a camera. Then blank cards are filled with the data. Then the cashout phase begins which is when various ATM's are hit and balances are withdrawn sometimes to the point of depositing blank envelopes and withdrawing cash that does not even exist. <br><br />
<br />
A Group of romainian gang members were busted last year for a total of 4 million dollars worth of fraudulent withdrawls from debit cards and ATMs. They custom made a device to fit overtop of an ATM terminal that would look like part of it, with the keypad and magnetic reader, they would leave it there unobserved for an hour or two, and then recover it before the deception was noted. The device kept track of the magnetic data and PIN numbers.<br />
<br />
== General Facts about Smart Cards ==<br />
[[Image:Smartcardchip.jpg|thumb|300px|right|<br />
'''What a Smart Card Chip looks like internally''']]<br />
====What is a Smart Card====<br />
*Smart cards use a microchip embedded onto the card.<br />
*The chip uses no power, the reader provides the power and reads the information from the chip<br />
*Smart card chips are encrypted<br />
**They use RSA and DSA encryption algorithms<br />
====Background====<br />
*Invented in 1968. German rocket scientist. Helmut Gröttrup<br />
*French debit cards in 1992.<br />
**Carte Bleue.<br />
*EMVco<br />
**Company that updates the card specifications. <br />
**Visa/Debit cards must meet their worldwide standards if the Card is to be successful.<br />
<br />
== Problems with Smart Cards ==<br />
*Chip is not flexible.<br />
*Big banks estimate it would cost 500 million to convert the system to use smart cards.<br />
*They have been cracked in the past.<br />
<br />
== Future of Smart Cards ==<br />
RFID.<br />
<br />
== General Tips to Prevent fraud ==<br />
*Hide your PIN<br />
*Watch for signs of tampered card readers<br />
*Don't lend out your Credit card or Debit Card<br />
<br />
== See Also ==<br />
[[HaveFunWithCasWiki]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:SJakubowski SJakubowski]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:Cavaliaj Cavaliaj]]<br><br />
[[Electronic Voting Systems]]<BR><br />
[[Social engineering]]<BR><br />
[[Piggybacking]]<BR><br />
[[Identity Theft]]<BR><br />
[[The Mitnick attack]]<BR><br />
[[Security and Storage Mediums]]<BR><br />
[[Operating Systems Security]]<BR><br />
[[Honeypot]]<BR><br />
[[Payment Card Industry Data Security Standard]]</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Smart_Card_technology_to_prevent_fraudSmart Card technology to prevent fraud2007-12-03T04:28:21Z<p>SJakubowski: /* General Facts about fraud */</p>
<hr />
<div>Smart Card technology to prevent fraud is a summary of various ways that fraud can be prevented using smart cards. This wiki page mainly deals with fraud in '''Credit Cards''' and '''Debit Cards'''.<br />
<br />
== General Facts about debit/credit fraud in Canada==<br />
<br />
*44 Million dollars lost in 2003 due to debit card fraud.<br />
*100 Million in 2006<br />
*Numbers on the rise every year.<br />
*Takes less then a second and your Card is compromised.<br />
*Smart card technology can prevent this.<br />
<br />
== General Facts about Smart Cards ==<br />
[[Image:Smartcardchip.jpg|thumb|300px|right|<br />
'''What a Smart Card Chip looks like internally''']]<br />
====What is a Smart Card====<br />
*Smart cards use a microchip embedded onto the card.<br />
*The chip uses no power, the reader provides the power and reads the information from the chip<br />
*Smart card chips are encrypted<br />
**They use RSA and DSA encryption algorithms<br />
====Background====<br />
*Invented in 1968. German rocket scientist. Helmut Gröttrup<br />
*French debit cards in 1992.<br />
**Carte Bleue.<br />
*EMVco<br />
**Company that updates the card specifications. <br />
**Visa/Debit cards must meet their worldwide standards if the Card is to be successful.<br />
<br />
== Problems with Smart Cards ==<br />
*Chip is not flexible.<br />
*Big banks estimate it would cost 500 million to convert the system to use smart cards.<br />
*They have been cracked in the past.<br />
<br />
== Future of Smart Cards ==<br />
RFID.<br />
<br />
== General Tips to Prevent fraud ==<br />
*Hide your PIN<br />
*Watch for signs of tampered card readers<br />
*Don't lend out your Credit card or Debit Card<br />
<br />
== See Also ==<br />
[[HaveFunWithCasWiki]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:SJakubowski SJakubowski]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:Cavaliaj Cavaliaj]]<br><br />
[[Electronic Voting Systems]]<BR><br />
[[Social engineering]]<BR><br />
[[Piggybacking]]<BR><br />
[[Identity Theft]]<BR><br />
[[The Mitnick attack]]<BR><br />
[[Security and Storage Mediums]]<BR><br />
[[Operating Systems Security]]<BR><br />
[[Honeypot]]<BR><br />
[[Payment Card Industry Data Security Standard]]</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Smart_Card_technology_to_prevent_fraudSmart Card technology to prevent fraud2007-12-03T04:27:57Z<p>SJakubowski: /* General Facts about Smart Cards */</p>
<hr />
<div>Smart Card technology to prevent fraud is a summary of various ways that fraud can be prevented using smart cards. This wiki page mainly deals with fraud in '''Credit Cards''' and '''Debit Cards'''.<br />
<br />
== General Facts about fraud ==<br />
<br />
*44 Million dollars lost in 2003 due to debit card fraud.<br />
*100 Million in 2006<br />
*Numbers on the rise every year.<br />
*Takes less then a second and your Card is compromised.<br />
*Smart card technology can prevent this.<br />
<br />
== General Facts about Smart Cards ==<br />
[[Image:Smartcardchip.jpg|thumb|300px|right|<br />
'''What a Smart Card Chip looks like internally''']]<br />
====What is a Smart Card====<br />
*Smart cards use a microchip embedded onto the card.<br />
*The chip uses no power, the reader provides the power and reads the information from the chip<br />
*Smart card chips are encrypted<br />
**They use RSA and DSA encryption algorithms<br />
====Background====<br />
*Invented in 1968. German rocket scientist. Helmut Gröttrup<br />
*French debit cards in 1992.<br />
**Carte Bleue.<br />
*EMVco<br />
**Company that updates the card specifications. <br />
**Visa/Debit cards must meet their worldwide standards if the Card is to be successful.<br />
<br />
== Problems with Smart Cards ==<br />
*Chip is not flexible.<br />
*Big banks estimate it would cost 500 million to convert the system to use smart cards.<br />
*They have been cracked in the past.<br />
<br />
== Future of Smart Cards ==<br />
RFID.<br />
<br />
== General Tips to Prevent fraud ==<br />
*Hide your PIN<br />
*Watch for signs of tampered card readers<br />
*Don't lend out your Credit card or Debit Card<br />
<br />
== See Also ==<br />
[[HaveFunWithCasWiki]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:SJakubowski SJakubowski]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:Cavaliaj Cavaliaj]]<br><br />
[[Electronic Voting Systems]]<BR><br />
[[Social engineering]]<BR><br />
[[Piggybacking]]<BR><br />
[[Identity Theft]]<BR><br />
[[The Mitnick attack]]<BR><br />
[[Security and Storage Mediums]]<BR><br />
[[Operating Systems Security]]<BR><br />
[[Honeypot]]<BR><br />
[[Payment Card Industry Data Security Standard]]</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Smart_Card_technology_to_prevent_fraudSmart Card technology to prevent fraud2007-12-03T04:17:02Z<p>SJakubowski: /* General Facts about Smart Cards */</p>
<hr />
<div>Smart Card technology to prevent fraud is a summary of various ways that fraud can be prevented using smart cards. This wiki page mainly deals with fraud in '''Credit Cards''' and '''Debit Cards'''.<br />
<br />
== General Facts about fraud ==<br />
<br />
*44 Million dollars lost in 2003 due to debit card fraud.<br />
*100 Million in 2006<br />
*Numbers on the rise every year.<br />
*Takes less then a second and your Card is compromised.<br />
*Smart card technology can prevent this.<br />
<br />
== General Facts about Smart Cards ==<br />
[[Image:Smartcardchip.jpg|thumb|300px|right|<br />
'''What a Smart Card Chip looks like internally''']]<br />
====What is a Smart Card====<br />
*Smart cards use a microchip embedded onto the card.<br />
*The chip uses no power, the reader provides the power and reads the information from the chip<br />
*Smart card chips are encrypted<br />
*They use RSA and DSA encryption algorithms<br />
====Background====<br />
*Invented in 1968. German rocket scientist.<br />
*Helmut Gröttrup<br />
*French debit cards in 1992.<br />
*Carte Bleue.<br />
*EMVco<br />
*Company that updates the card specifications. Visa/Debit cards must meet their worldwide standards if the Card is to be successful.<br />
<br />
== Problems with Smart Cards ==<br />
*Chip is not flexible.<br />
*Big banks estimate it would cost 500 million to convert the system to use smart cards.<br />
*They have been cracked in the past.<br />
<br />
== Future of Smart Cards ==<br />
RFID.<br />
<br />
== General Tips to Prevent fraud ==<br />
*Hide your PIN<br />
*Watch for signs of tampered card readers<br />
*Don't lend out your Credit card or Debit Card<br />
<br />
== See Also ==<br />
[[HaveFunWithCasWiki]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:SJakubowski SJakubowski]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:Cavaliaj Cavaliaj]]<br><br />
[[Electronic Voting Systems]]<BR><br />
[[Social engineering]]<BR><br />
[[Piggybacking]]<BR><br />
[[Identity Theft]]<BR><br />
[[The Mitnick attack]]<BR><br />
[[Security and Storage Mediums]]<BR><br />
[[Operating Systems Security]]<BR><br />
[[Honeypot]]<BR><br />
[[Payment Card Industry Data Security Standard]]</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Smart_Card_technology_to_prevent_fraudSmart Card technology to prevent fraud2007-12-03T04:16:52Z<p>SJakubowski: /* General Facts about Smart Cards */</p>
<hr />
<div>Smart Card technology to prevent fraud is a summary of various ways that fraud can be prevented using smart cards. This wiki page mainly deals with fraud in '''Credit Cards''' and '''Debit Cards'''.<br />
<br />
== General Facts about fraud ==<br />
<br />
*44 Million dollars lost in 2003 due to debit card fraud.<br />
*100 Million in 2006<br />
*Numbers on the rise every year.<br />
*Takes less then a second and your Card is compromised.<br />
*Smart card technology can prevent this.<br />
<br />
== General Facts about Smart Cards ==<br />
[[Image:Smartcardchip.jpg|thumb|300px|right|<br />
'''What a Smart Card Chip looks like internally''']]<br />
====What is a Smart Card=====<br />
*Smart cards use a microchip embedded onto the card.<br />
*The chip uses no power, the reader provides the power and reads the information from the chip<br />
*Smart card chips are encrypted<br />
*They use RSA and DSA encryption algorithms<br />
====Background====<br />
*Invented in 1968. German rocket scientist.<br />
*Helmut Gröttrup<br />
*French debit cards in 1992.<br />
*Carte Bleue.<br />
*EMVco<br />
*Company that updates the card specifications. Visa/Debit cards must meet their worldwide standards if the Card is to be successful.<br />
<br />
== Problems with Smart Cards ==<br />
*Chip is not flexible.<br />
*Big banks estimate it would cost 500 million to convert the system to use smart cards.<br />
*They have been cracked in the past.<br />
<br />
== Future of Smart Cards ==<br />
RFID.<br />
<br />
== General Tips to Prevent fraud ==<br />
*Hide your PIN<br />
*Watch for signs of tampered card readers<br />
*Don't lend out your Credit card or Debit Card<br />
<br />
== See Also ==<br />
[[HaveFunWithCasWiki]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:SJakubowski SJakubowski]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:Cavaliaj Cavaliaj]]<br><br />
[[Electronic Voting Systems]]<BR><br />
[[Social engineering]]<BR><br />
[[Piggybacking]]<BR><br />
[[Identity Theft]]<BR><br />
[[The Mitnick attack]]<BR><br />
[[Security and Storage Mediums]]<BR><br />
[[Operating Systems Security]]<BR><br />
[[Honeypot]]<BR><br />
[[Payment Card Industry Data Security Standard]]</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Smart_Card_technology_to_prevent_fraudSmart Card technology to prevent fraud2007-12-02T19:57:18Z<p>SJakubowski: /* General Facts about Smart Cards */</p>
<hr />
<div>Smart Card technology to prevent fraud is a summary of various ways that fraud can be prevented using smart cards. This wiki page mainly deals with fraud in '''Credit Cards''' and '''Debit Cards'''.<br />
<br />
== General Facts about fraud ==<br />
<br />
*44 Million dollars lost in 2003 due to debit card fraud.<br />
*100 Million in 2006<br />
*Numbers on the rise every year.<br />
*Takes less then a second and your Card is compromised.<br />
*Smart card technology can prevent this.<br />
<br />
== General Facts about Smart Cards ==<br />
[[Image:Smartcardchip.jpg|thumb|300px|right|<br />
'''What a Smart Card Chip looks like internally''']]<br />
*Smart cards use a microchip embedded onto the card.<br />
*The chip uses no power, the reader provides the power and reads the information from the chip<br />
*Smart card chips are encrypted<br />
*They use RSA and DSA encryption algorithms<br />
*Invented in 1968. German rocket scientist.<br />
*Helmut Gröttrup<br />
*French debit cards in 1992.<br />
*Carte Bleue.<br />
*EMVco<br />
*Company that updates the card specifications. Visa/Debit cards must meet their worldwide standards if the Card is to be successful.<br />
<br />
== Problems with Smart Cards ==<br />
*Chip is not flexible.<br />
*Big banks estimate it would cost 500 million to convert the system to use smart cards.<br />
*They have been cracked in the past.<br />
<br />
== Future of Smart Cards ==<br />
RFID.<br />
<br />
== General Tips to Prevent fraud ==<br />
*Hide your PIN<br />
*Watch for signs of tampered card readers<br />
*Don't lend out your Credit card or Debit Card<br />
<br />
== See Also ==<br />
[[HaveFunWithCasWiki]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:SJakubowski SJakubowski]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:Cavaliaj Cavaliaj]]<br><br />
[[Electronic Voting Systems]]<BR><br />
[[Social engineering]]<BR><br />
[[Piggybacking]]<BR><br />
[[Identity Theft]]<BR><br />
[[The Mitnick attack]]<BR><br />
[[Security and Storage Mediums]]<BR><br />
[[Operating Systems Security]]<BR><br />
[[Honeypot]]<BR><br />
[[Payment Card Industry Data Security Standard]]</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Smart_Card_technology_to_prevent_fraudSmart Card technology to prevent fraud2007-12-02T19:57:09Z<p>SJakubowski: /* General Facts about fraud */</p>
<hr />
<div>Smart Card technology to prevent fraud is a summary of various ways that fraud can be prevented using smart cards. This wiki page mainly deals with fraud in '''Credit Cards''' and '''Debit Cards'''.<br />
<br />
== General Facts about fraud ==<br />
<br />
*44 Million dollars lost in 2003 due to debit card fraud.<br />
*100 Million in 2006<br />
*Numbers on the rise every year.<br />
*Takes less then a second and your Card is compromised.<br />
*Smart card technology can prevent this.<br />
<br />
== General Facts about Smart Cards ==<br />
*Smart cards use a microchip embedded onto the card.<br />
*The chip uses no power, the reader provides the power and reads the information from the chip<br />
*Smart card chips are encrypted<br />
*They use RSA and DSA encryption algorithms<br />
*Invented in 1968. German rocket scientist.<br />
*Helmut Gröttrup<br />
*French debit cards in 1992.<br />
*Carte Bleue.<br />
*EMVco<br />
*Company that updates the card specifications. Visa/Debit cards must meet their worldwide standards if the Card is to be successful.<br />
<br />
== Problems with Smart Cards ==<br />
*Chip is not flexible.<br />
*Big banks estimate it would cost 500 million to convert the system to use smart cards.<br />
*They have been cracked in the past.<br />
<br />
== Future of Smart Cards ==<br />
RFID.<br />
<br />
== General Tips to Prevent fraud ==<br />
*Hide your PIN<br />
*Watch for signs of tampered card readers<br />
*Don't lend out your Credit card or Debit Card<br />
<br />
== See Also ==<br />
[[HaveFunWithCasWiki]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:SJakubowski SJakubowski]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:Cavaliaj Cavaliaj]]<br><br />
[[Electronic Voting Systems]]<BR><br />
[[Social engineering]]<BR><br />
[[Piggybacking]]<BR><br />
[[Identity Theft]]<BR><br />
[[The Mitnick attack]]<BR><br />
[[Security and Storage Mediums]]<BR><br />
[[Operating Systems Security]]<BR><br />
[[Honeypot]]<BR><br />
[[Payment Card Industry Data Security Standard]]</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Smart_Card_technology_to_prevent_fraudSmart Card technology to prevent fraud2007-12-02T19:56:47Z<p>SJakubowski: /* General Facts about fraud */</p>
<hr />
<div>Smart Card technology to prevent fraud is a summary of various ways that fraud can be prevented using smart cards. This wiki page mainly deals with fraud in '''Credit Cards''' and '''Debit Cards'''.<br />
<br />
== General Facts about fraud ==<br />
[[Image:Smartcardchip.jpg|thumb|300px|right|<br />
'''What a Smart Card Chip looks like internally''']]<br />
*44 Million dollars lost in 2003 due to debit card fraud.<br />
*100 Million in 2006<br />
*Numbers on the rise every year.<br />
*Takes less then a second and your Card is compromised.<br />
*Smart card technology can prevent this.<br />
<br />
== General Facts about Smart Cards ==<br />
*Smart cards use a microchip embedded onto the card.<br />
*The chip uses no power, the reader provides the power and reads the information from the chip<br />
*Smart card chips are encrypted<br />
*They use RSA and DSA encryption algorithms<br />
*Invented in 1968. German rocket scientist.<br />
*Helmut Gröttrup<br />
*French debit cards in 1992.<br />
*Carte Bleue.<br />
*EMVco<br />
*Company that updates the card specifications. Visa/Debit cards must meet their worldwide standards if the Card is to be successful.<br />
<br />
== Problems with Smart Cards ==<br />
*Chip is not flexible.<br />
*Big banks estimate it would cost 500 million to convert the system to use smart cards.<br />
*They have been cracked in the past.<br />
<br />
== Future of Smart Cards ==<br />
RFID.<br />
<br />
== General Tips to Prevent fraud ==<br />
*Hide your PIN<br />
*Watch for signs of tampered card readers<br />
*Don't lend out your Credit card or Debit Card<br />
<br />
== See Also ==<br />
[[HaveFunWithCasWiki]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:SJakubowski SJakubowski]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:Cavaliaj Cavaliaj]]<br><br />
[[Electronic Voting Systems]]<BR><br />
[[Social engineering]]<BR><br />
[[Piggybacking]]<BR><br />
[[Identity Theft]]<BR><br />
[[The Mitnick attack]]<BR><br />
[[Security and Storage Mediums]]<BR><br />
[[Operating Systems Security]]<BR><br />
[[Honeypot]]<BR><br />
[[Payment Card Industry Data Security Standard]]</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/File:Smartcardchip.jpgFile:Smartcardchip.jpg2007-12-02T19:55:57Z<p>SJakubowski: </p>
<hr />
<div></div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Smart_Card_technology_to_prevent_fraudSmart Card technology to prevent fraud2007-12-02T03:59:48Z<p>SJakubowski: /* Future of Smart Cards */</p>
<hr />
<div>Smart Card technology to prevent fraud is a summary of various ways that fraud can be prevented using smart cards. This wiki page mainly deals with fraud in '''Credit Cards''' and '''Debit Cards'''.<br />
<br />
== General Facts about fraud ==<br />
*44 Million dollars lost in 2003 due to debit card fraud.<br />
*100 Million in 2006<br />
*Numbers on the rise every year.<br />
*Takes less then a second and your Card is compromised.<br />
*Smart card technology can prevent this.<br />
<br />
== General Facts about Smart Cards ==<br />
*Smart cards use a microchip embedded onto the card.<br />
*The chip uses no power, the reader provides the power and reads the information from the chip<br />
*Smart card chips are encrypted<br />
*They use RSA and DSA encryption algorithms<br />
*Invented in 1968. German rocket scientist.<br />
*Helmut Gröttrup<br />
*French debit cards in 1992.<br />
*Carte Bleue.<br />
*EMVco<br />
*Company that updates the card specifications. Visa/Debit cards must meet their worldwide standards if the Card is to be successful.<br />
<br />
== Problems with Smart Cards ==<br />
*Chip is not flexible.<br />
*Big banks estimate it would cost 500 million to convert the system to use smart cards.<br />
*They have been cracked in the past.<br />
<br />
== Future of Smart Cards ==<br />
RFID.<br />
<br />
== General Tips to Prevent fraud ==<br />
*Hide your PIN<br />
*Watch for signs of tampered card readers<br />
*Don't lend out your Credit card or Debit Card<br />
<br />
== See Also ==<br />
[[HaveFunWithCasWiki]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:SJakubowski SJakubowski]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:Cavaliaj Cavaliaj]]<br><br />
[[Electronic Voting Systems]]<BR><br />
[[Social engineering]]<BR><br />
[[Piggybacking]]<BR><br />
[[Identity Theft]]<BR><br />
[[The Mitnick attack]]<BR><br />
[[Security and Storage Mediums]]<BR><br />
[[Operating Systems Security]]<BR><br />
[[Honeypot]]<BR><br />
[[Payment Card Industry Data Security Standard]]</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Smart_Card_technology_to_prevent_fraudSmart Card technology to prevent fraud2007-12-02T03:59:35Z<p>SJakubowski: /* Problems with Smart Cards */</p>
<hr />
<div>Smart Card technology to prevent fraud is a summary of various ways that fraud can be prevented using smart cards. This wiki page mainly deals with fraud in '''Credit Cards''' and '''Debit Cards'''.<br />
<br />
== General Facts about fraud ==<br />
*44 Million dollars lost in 2003 due to debit card fraud.<br />
*100 Million in 2006<br />
*Numbers on the rise every year.<br />
*Takes less then a second and your Card is compromised.<br />
*Smart card technology can prevent this.<br />
<br />
== General Facts about Smart Cards ==<br />
*Smart cards use a microchip embedded onto the card.<br />
*The chip uses no power, the reader provides the power and reads the information from the chip<br />
*Smart card chips are encrypted<br />
*They use RSA and DSA encryption algorithms<br />
*Invented in 1968. German rocket scientist.<br />
*Helmut Gröttrup<br />
*French debit cards in 1992.<br />
*Carte Bleue.<br />
*EMVco<br />
*Company that updates the card specifications. Visa/Debit cards must meet their worldwide standards if the Card is to be successful.<br />
<br />
== Problems with Smart Cards ==<br />
*Chip is not flexible.<br />
*Big banks estimate it would cost 500 million to convert the system to use smart cards.<br />
*They have been cracked in the past.<br />
<br />
== Future of Smart Cards ==<br />
fsdf<br />
<br />
== General Tips to Prevent fraud ==<br />
*Hide your PIN<br />
*Watch for signs of tampered card readers<br />
*Don't lend out your Credit card or Debit Card<br />
<br />
== See Also ==<br />
[[HaveFunWithCasWiki]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:SJakubowski SJakubowski]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:Cavaliaj Cavaliaj]]<br><br />
[[Electronic Voting Systems]]<BR><br />
[[Social engineering]]<BR><br />
[[Piggybacking]]<BR><br />
[[Identity Theft]]<BR><br />
[[The Mitnick attack]]<BR><br />
[[Security and Storage Mediums]]<BR><br />
[[Operating Systems Security]]<BR><br />
[[Honeypot]]<BR><br />
[[Payment Card Industry Data Security Standard]]</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Smart_Card_technology_to_prevent_fraudSmart Card technology to prevent fraud2007-12-02T03:59:12Z<p>SJakubowski: /* General Facts about Smart Cards */</p>
<hr />
<div>Smart Card technology to prevent fraud is a summary of various ways that fraud can be prevented using smart cards. This wiki page mainly deals with fraud in '''Credit Cards''' and '''Debit Cards'''.<br />
<br />
== General Facts about fraud ==<br />
*44 Million dollars lost in 2003 due to debit card fraud.<br />
*100 Million in 2006<br />
*Numbers on the rise every year.<br />
*Takes less then a second and your Card is compromised.<br />
*Smart card technology can prevent this.<br />
<br />
== General Facts about Smart Cards ==<br />
*Smart cards use a microchip embedded onto the card.<br />
*The chip uses no power, the reader provides the power and reads the information from the chip<br />
*Smart card chips are encrypted<br />
*They use RSA and DSA encryption algorithms<br />
*Invented in 1968. German rocket scientist.<br />
*Helmut Gröttrup<br />
*French debit cards in 1992.<br />
*Carte Bleue.<br />
*EMVco<br />
*Company that updates the card specifications. Visa/Debit cards must meet their worldwide standards if the Card is to be successful.<br />
<br />
== Problems with Smart Cards ==<br />
dsfds<br />
<br />
== Future of Smart Cards ==<br />
fsdf<br />
<br />
== General Tips to Prevent fraud ==<br />
*Hide your PIN<br />
*Watch for signs of tampered card readers<br />
*Don't lend out your Credit card or Debit Card<br />
<br />
== See Also ==<br />
[[HaveFunWithCasWiki]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:SJakubowski SJakubowski]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:Cavaliaj Cavaliaj]]<br><br />
[[Electronic Voting Systems]]<BR><br />
[[Social engineering]]<BR><br />
[[Piggybacking]]<BR><br />
[[Identity Theft]]<BR><br />
[[The Mitnick attack]]<BR><br />
[[Security and Storage Mediums]]<BR><br />
[[Operating Systems Security]]<BR><br />
[[Honeypot]]<BR><br />
[[Payment Card Industry Data Security Standard]]</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Smart_Card_technology_to_prevent_fraudSmart Card technology to prevent fraud2007-12-02T03:50:30Z<p>SJakubowski: /* General Facts about fraud */</p>
<hr />
<div>Smart Card technology to prevent fraud is a summary of various ways that fraud can be prevented using smart cards. This wiki page mainly deals with fraud in '''Credit Cards''' and '''Debit Cards'''.<br />
<br />
== General Facts about fraud ==<br />
*44 Million dollars lost in 2003 due to debit card fraud.<br />
*100 Million in 2006<br />
*Numbers on the rise every year.<br />
*Takes less then a second and your Card is compromised.<br />
*Smart card technology can prevent this.<br />
<br />
== General Facts about Smart Cards ==<br />
*Smart cards use a microchip embedded onto the card.<br />
*The chip uses no power, the reader provides the power and reads the information from the chip<br />
*Smart card chips are encrypted<br />
*They use RSA and DSA encryption algorithms<br />
<br />
== Problems with Smart Cards ==<br />
dsfds<br />
<br />
== Future of Smart Cards ==<br />
fsdf<br />
<br />
== General Tips to Prevent fraud ==<br />
*Hide your PIN<br />
*Watch for signs of tampered card readers<br />
*Don't lend out your Credit card or Debit Card<br />
<br />
== See Also ==<br />
[[HaveFunWithCasWiki]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:SJakubowski SJakubowski]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:Cavaliaj Cavaliaj]]<br><br />
[[Electronic Voting Systems]]<BR><br />
[[Social engineering]]<BR><br />
[[Piggybacking]]<BR><br />
[[Identity Theft]]<BR><br />
[[The Mitnick attack]]<BR><br />
[[Security and Storage Mediums]]<BR><br />
[[Operating Systems Security]]<BR><br />
[[Honeypot]]<BR><br />
[[Payment Card Industry Data Security Standard]]</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Smart_Card_technology_to_prevent_fraudSmart Card technology to prevent fraud2007-12-02T03:47:52Z<p>SJakubowski: </p>
<hr />
<div>Smart Card technology to prevent fraud is a summary of various ways that fraud can be prevented using smart cards. This wiki page mainly deals with fraud in '''Credit Cards''' and '''Debit Cards'''.<br />
<br />
== General Facts about fraud ==<br />
* Data Protection<br />
* Ease of Use<br />
* Easy to Transport Information<br />
* Relatively Cheap and Efficient<br />
<br />
<br />
== General Facts about Smart Cards ==<br />
*Smart cards use a microchip embedded onto the card.<br />
*The chip uses no power, the reader provides the power and reads the information from the chip<br />
*Smart card chips are encrypted<br />
*They use RSA and DSA encryption algorithms<br />
<br />
== Problems with Smart Cards ==<br />
dsfds<br />
<br />
== Future of Smart Cards ==<br />
fsdf<br />
<br />
== General Tips to Prevent fraud ==<br />
*Hide your PIN<br />
*Watch for signs of tampered card readers<br />
*Don't lend out your Credit card or Debit Card<br />
<br />
== See Also ==<br />
[[HaveFunWithCasWiki]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:SJakubowski SJakubowski]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:Cavaliaj Cavaliaj]]<br><br />
[[Electronic Voting Systems]]<BR><br />
[[Social engineering]]<BR><br />
[[Piggybacking]]<BR><br />
[[Identity Theft]]<BR><br />
[[The Mitnick attack]]<BR><br />
[[Security and Storage Mediums]]<BR><br />
[[Operating Systems Security]]<BR><br />
[[Honeypot]]<BR><br />
[[Payment Card Industry Data Security Standard]]</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Smart_Card_technology_to_prevent_fraudSmart Card technology to prevent fraud2007-12-02T03:46:33Z<p>SJakubowski: </p>
<hr />
<div>Smart Card technology to prevent fraud is a summary of various ways that fraud can be prevented using smart cards. This wiki page mainly deals with fraud in Visa and Debit cards.<br />
<br />
== General Facts about fraud ==<br />
* Data Protection<br />
* Ease of Use<br />
* Easy to Transport Information<br />
* Relatively Cheap and Efficient<br />
<br />
<br />
== General Facts about Smart Cards ==<br />
*Smart cards use a microchip embedded onto the card.<br />
*The chip uses no power, the reader provides the power and reads the information from the chip<br />
*Smart card chips are encrypted<br />
*They use RSA and DSA encryption algorithms<br />
<br />
== Problems with Smart Cards ==<br />
dsfds<br />
<br />
== Future of Smart Cards ==<br />
fsdf<br />
<br />
== General Tips to Prevent fraud ==<br />
*Hide your PIN<br />
*Watch for signs of tampered card readers<br />
*Don't lend out your Credit card or Debit Card<br />
<br />
== See Also ==<br />
[[HaveFunWithCasWiki]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:SJakubowski SJakubowski]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:Cavaliaj Cavaliaj]]<br><br />
[[Electronic Voting Systems]]<BR><br />
[[Social engineering]]<BR><br />
[[Piggybacking]]<BR><br />
[[Identity Theft]]<BR><br />
[[The Mitnick attack]]<BR><br />
[[Security and Storage Mediums]]<BR><br />
[[Operating Systems Security]]<BR><br />
[[Honeypot]]<BR><br />
[[Payment Card Industry Data Security Standard]]</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Smart_Card_technology_to_prevent_fraud.Smart Card technology to prevent fraud.2007-12-02T03:43:30Z<p>SJakubowski: Replacing page with 'See Smart_Card_technology_to_prevent_fraud'</p>
<hr />
<div>See [[Smart_Card_technology_to_prevent_fraud]]</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Smart_Card_technology_to_prevent_fraudSmart Card technology to prevent fraud2007-12-02T03:42:48Z<p>SJakubowski: New page: Smart Card technology to prevent fraud is a summary of various ways that fraud can be prevented using smart cards. This wiki page mainly deals with fraud in Visa and Debit cards. == Gener...</p>
<hr />
<div>Smart Card technology to prevent fraud is a summary of various ways that fraud can be prevented using smart cards. This wiki page mainly deals with fraud in Visa and Debit cards.<br />
<br />
== General Facts about fraud ==<br />
* Data Protection<br />
* Ease of Use<br />
* Easy to Transport Information<br />
* Relatively Cheap and Efficient<br />
<br />
<br />
== General Facts about Smart Cards ==<br />
*Smart cards use a microchip embedded onto the card.<br />
*The chip uses no power, the reader provides the power and reads the information from the chip<br />
*Smart card chips are encrypted<br />
*They use RSA and DSA encryption algorithms<br />
<br />
== Problems with Smart Cards ==<br />
dsfds<br />
<br />
== Future of Smart Cards ==<br />
fsdf<br />
<br />
== General Tips to Prevent fraud ==<br />
*Hide your PIN<br />
*Watch for signs of tampered card readers<br />
*Don't lend out your Credit card or Debit Card<br />
<br />
== See Also ==<br />
[[HaveFunWithCasWiki]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:SJakubowski SJakubowski]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:Cavaliaj Cavaliaj]]</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Smart_Card_technology_to_prevent_fraud.Smart Card technology to prevent fraud.2007-12-02T03:36:05Z<p>SJakubowski: /* General Facts about Smart Cards */</p>
<hr />
<div>Smart Card technology to prevent fraud is a summary of various ways that fraud can be prevented using smart cards. This wiki page mainly deals with fraud in Visa and Debit cards.<br />
<br />
== General Facts about fraud ==<br />
* Data Protection<br />
* Ease of Use<br />
* Easy to Transport Information<br />
* Relatively Cheap and Efficient<br />
<br />
<br />
== General Facts about Smart Cards ==<br />
*Smart cards use a microchip embedded onto the card.<br />
*The chip uses no power, the reader provides the power and reads the information from the chip<br />
*Smart card chips are encrypted<br />
*They use RSA and DSA encryption algorithms<br />
<br />
== Problems with Smart Cards ==<br />
dsfds<br />
<br />
== Future of Smart Cards ==<br />
fsdf<br />
<br />
== General Tips to Prevent fraud ==<br />
*Hide your PIN<br />
*Watch for signs of tampered card readers<br />
*Don't lend out your Credit card or Debit Card<br />
<br />
== See Also ==<br />
[[HaveFunWithCasWiki]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:SJakubowski SJakubowski]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:Cavaliaj Cavaliaj]]</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Smart_Card_technology_to_prevent_fraud.Smart Card technology to prevent fraud.2007-12-02T03:32:52Z<p>SJakubowski: </p>
<hr />
<div>Smart Card technology to prevent fraud is a summary of various ways that fraud can be prevented using smart cards. This wiki page mainly deals with fraud in Visa and Debit cards.<br />
<br />
== General Facts about fraud ==<br />
* Data Protection<br />
* Ease of Use<br />
* Easy to Transport Information<br />
* Relatively Cheap and Efficient<br />
<br />
<br />
== General Facts about Smart Cards ==<br />
\affas<br />
<br />
<br />
== Problems with Smart Cards ==<br />
dsfds<br />
<br />
== Future of Smart Cards ==<br />
fsdf<br />
<br />
== General Tips to Prevent fraud ==<br />
*Hide your PIN<br />
*Watch for signs of tampered card readers<br />
*Don't lend out your Credit card or Debit Card<br />
<br />
== See Also ==<br />
[[HaveFunWithCasWiki]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:SJakubowski SJakubowski]] <br><br />
[[http://www.cas.mcmaster.ca/wiki/index.php/User:Cavaliaj Cavaliaj]]</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Electronic_Voting_SystemsElectronic Voting Systems2007-12-02T03:26:22Z<p>SJakubowski: /* Security Implementations and Certification */</p>
<hr />
<div>An '''Electronic Voting System''' is an innovative new method of distributing, voting, collecting and tabulating ballots through the use of computer technology.<br />
<br><br> The software implementations which are input into this technology expand every day to improve <br>security and integrity of the results. <br />
<br />
<br />
__TOC__<br />
<br />
=Electronic Voting Systems=<br />
==DRE Machines==<br />
<br> '''DRE (Direct Recording Electronic)'''<br />
<br />
<br> A '''DRE''' machine is a recent implementation of a fully self-operated computer voting system.<br />
<br><br>DRE's are user-friendly and time-efficient which makes them an attractive alternative to traditional pen-and-paper voting. A DRE machine consists of a user screen <br />
<br>for information and ballot display, a keypad involving buttons or a touchscreen, and other assisting tools such as head-phones for the handicapped. <br />
<br />
[[Image:sequoia_dre.jpg]]<br />
<br />
<br> DRE's have been implemented worldwide but most frequently used in countries such as Brazil, India and United States.<br />
<br />
<br> To access a DRE machine, a voter must be provided with a Voter Authentication Card (SmartCard or another type of Memory Card) by an Election Official. The Voter card <br />
<br>becomes automatically deactivated by the DRE once a vote is fully cast.<br />
<br />
==Optical Scan==<br />
<br />
Optical Scanning machines were introduced shortly after the Punch Card system, incorporating paper ballots with computer technology. There are two common Optical Scanning Machines<br />
<br> used in todays elections, Marksense and the Digital Pen. <br />
<br><br> '''Marksense''' is a system developed ... Using a dark marker, a voter shades in a selection on the paper ballot, once completed the paper ballot is run through an optical scanning <br />
<br>machine which uses 'dark mark' logic to select the correct choice. <br />
<br><br> A '''Digital Pen''' is a similar version to Marksense except the pen communicates with the paper ballot and knows at all times its location on the ballot. <br />
<br />
[[Image:opticalScan.jpg | 200 px]]<br />
<br />
==Internet Voting==<br />
<br />
=Electoral Fraud=<br />
==Insider Attacks==<br />
==Man-In-The-Middle Attacks==<br />
=Reported Problems=<br />
=Security Implementations and Certification=<br />
<br />
* " :) " [[HaveFunWithCasWiki]]<br />
__NOTOC__</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Payment_Card_Industry_Data_Security_StandardPayment Card Industry Data Security Standard2007-12-02T03:24:43Z<p>SJakubowski: /* Summary */</p>
<hr />
<div>The Payment Card Industry Data Security Standard (PCI DSS) is a security document created by the Payment Card Industry Security Standards Council (PCI SSC). To make the explanation of the PCI DSS a bit more interesting, I will be presenting it as an Industry Wide security do<br />
<br />
== Terms Used In This Article ==<br />
* ''PCI'' '''P'''ayment '''C'''ard '''I'''ndustry: A Payment Card is any "card" form of payment. This can cover everything from credit cards to debit cards. The Payment Card Industry consists of all the companies which make up the many different brands of payment cards in use today. (ie Visa, Mastercard, ect..)<br />
* ''PCI DSS'' '''P'''ayment '''C'''ard '''I'''ndustry '''D'''ata '''S'''ecurity '''S'''tandard<br />
* ''PCI SSC'' '''P'''ayment '''C'''ard '''I'''ndustry '''S'''ecurity '''S'''tandards '''C'''ouncil: A council made up of Visa, Mastercard, American Express, Discover and JCB (Japan Credit Bureau) created in order to align their individual security goals into one document - the PCI DSS.<br />
* ''Card Holder'': Any customer of a Payment Card company.<br />
* ''Merchant'': Any company which accepts Payment Cards as a form of payment.<br />
== Security System Life Cycle ==<br />
[[Image:PCICouncil.JPG|frame|right|Formation of the PCI SSC]]<br />
=== Threats ===<br />
<P>The main threat to the Payment Card Industry as a whole is more of a threat to the card holders than the industry itself. The card holders are taking a chance whenever they use their credit cards to make a purchase. This threat is not only present when purchasing online, but also when purchasing in stores. The threat originates from a lack of industry wide standards on how card holder information should be stored, processed or transmitted.</P><br />
<br />
<P>This security threat directly affects the Payment Card Industry because if cardholders don't trust that their information is secure, then they will not use their credit cards and hence the Payment Card Vendors loose business. This is why the Payment Card Industry is moving forward with their industry wide standard for security, the Payment Card Industry Data Security Standard.</P><br />
<br />
=== Policy ===<br />
<P>Before December 14th 2004, the 5 major Payment Card companies (Visa, Mastercard, American Express, Discover and JCB (Japan Credit Bureau)) each had their own set of Information Security Standards. This meant that retailers had 5 different security policies to comply to. <br />
After December 14th 2004, these 5 brands of cards collaborated to create the Payment Card Industry Security Standards Council (PCI SSC). The purpose of this council is to align the goals of each of the Payment Card companies an industry wide security policy for merchants to follow.</P><br />
<br />
=== Security System Development ===<br />
<br />
----<br />
<br />
==== Requirements Specifications ====<br />
An overview of the list of requirements needed to maintain Payment Card Industry Data Security Standard (PCI DSS) compliance is available here [https://www.pcisecuritystandards.org/tech/index.htm About the PCI Data Security Standard (PCI DSS)]. The full list of requirements is available here: [https://www.pcisecuritystandards.org/tech/download_the_pci_dss.htm Download the PCI DSS]. Below is the summarized list and an explaination of what each item means. There are 12 major requirements which can be broken up into 6 categories.<br />
<BR><br />
<br />
''Build and Maintain a Secure Network''<BR><br />
1.)Install and maintain a firewall configuration to protect cardholders' data<BR><br />
2.)Do not use vendor-supplied defaults for system password and other security parameters<BR><br />
* This set of requrements is meant to keep any network of computers which contain Card Holder information in a secure state<BR><br />
<BR><br />
<br />
''Protect Cardholder Data''<BR><br />
3.)Protect stored cardholder data<BR><br />
* This requirement is meant to protect the card holder data while it is stored on merchant computers<BR><br />
4.)Encrypt transmission of cardholder data across open, public networks<BR><br />
* This requirement is meant to protect cardholder data when it might be necessary to transmit it accross a public network (ie when contacting the Payment Card server)<BR><br />
<BR><br />
<br />
''Maintain a Vulnerability Management Program''<BR><br />
5.)Use and regularly update anti-virus software<BR><br />
* This requirement is meant to ensure that all merchants do take advantage of some form of anti-virus software.<BR><br />
6.)Develop and maintain secure systems and applications<BR><br />
* This requirement is meant to put security as a top priority during the development of software. This is an important requirement because many times when software is being designed, security is tacked on as an afterthought. By at least making developers aware of security as being a requirement of their software, this ensures better quality of any security mechanisms built into the software.<BR><br />
<BR><br />
<br />
''Implement Strong Access Control Measures''<BR><br />
7.)Restrict access to cardholder data by business need-to-know<BR><br />
* This requirement is meant to ensure that only people who need to know about cardholder data have access to it. This is similar to the principle of least privilege. <BR><br />
8.)Assign a unique ID to each person with computer access<BR><br />
* This requirement is meant to add a level of accountability to all users on the system. If each user has their own unique ID on the merchant's system, then actions can be tracked on linked to the person who did them.<BR><br />
9.)Restrict physical access to cardholder data<BR><br />
* This requirement is meant to extend the coverage of the PCI DSS to any form of Card Holder data which may not be on a computer. Hence, the PCI DSS is extended to cover not only digital information but also physical coppies of the information. However, this does not prevent the threat of customer data being stolen entirely. There is nothing to prevent an employee from copying down information with a pencil and paper. Though this is a problem, it is partially alleviated by requirement 7: Restrisct access to cardholder data by business need-to-know. If only a small number of employees can access the Card Holder data, then it is much easier to track down who may have stolen Card Holder data if there is a security breech from the inside.<BR><br />
<BR><br />
<br />
''Regularly Monitor and Test Networks''<BR><br />
10.) Track and monitor all access to network resources and cardholder data<BR><br />
* This requirement is designed to catch any unauthorized accesses to cardholder data. If an anomoly is detected, then the system should be able to detect it and steps should be taken to fix the problem<BR><br />
11.) Regularly test security systems and processes<BR><br />
* This requirement is meant to ensure that merchants don't just set and forget their security systems. It reminds them that security is a fulltime job and must constantly be maintaned.<BR><br />
<BR><br />
''Maintain an Information Security Policy''<BR><br />
12.) Maintain a policy that addresses information security<BR><br />
* Though this may seem a bit redundant, this is an important requirement. It means that every merchant that deals with Cardholder Data must have their own security policy as well in order to protect cardholder data.<BR><br />
<br />
----<br />
<br />
==== Design/Implementation ====<br />
<br />
<P>There is no design or implementation specified in the PCI DSS. This is because the application of this security policy is so broad that it is impossible to have one design that will work for every company. For example Soney, which may handle millions of transactions a year, will need a different implementatino than a small "mom and pop" company, who may handle only a few hundred transactions a year. However, requirements must still be met to some degree depending on the volume of Payment Card transactions which occur per given merchant. This makes the PCI DSS sound rather weak. However, there is a way which the Payment Card Industry Security Standards Council can keep track of whether or not the requirements are being met. This is through the use of QSA's and ASV's.</P><br />
*[https://www.pcisecuritystandards.org/programs/qsa_program.htm Qualified Security Assessors (QSA's)] are companies who have been approved by the PCI Security Standrads Council to assess the compliance of merchants to the PCI DSS. The way the PCI Security Standards Council does this is through a certification program. This requires not only the company to be certified, but also all of it's employees to be certified on a yearly bases.<br />
*[https://www.pcisecuritystandards.org/programs/asv_program.htm Approved Scanning Vendors (ASV's)] are companies who are approved by the PCI Security Standards Council to assess merchants' networks for security vulnerabilities. They accomplish this by simulating both normal and abnormal processes on the merchants networks. Again, ASV's must also be certified by the PCI Security Standards Council on a yearly basis.<br />
<BR><br />
<br />
----<br />
<br />
==== Operation and Maintenance ====<br />
<br />
== Summary ==<br />
[[HaveFunWithCasWiki]] :D<br />
<br />
== References ==<br />
#{{note|PCS_SSC}}PCI SSC<br />
<br />
== See Also ==<br />
[[Electronic Voting Systems]]<BR><br />
[[Social engineering]]<BR><br />
[[Piggybacking]]<BR><br />
[[Identity Theft]]<BR><br />
[[The Mitnick attack]]<BR><br />
[[Security and Storage Mediums]]<BR><br />
[[Operating Systems Security]]<BR><br />
[[Honeypot]]<BR></div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/HaveFunWithCasWikiHaveFunWithCasWiki2007-12-02T03:22:14Z<p>SJakubowski: </p>
<hr />
<div>A group of individuals enjoying themselves.<br />
<br />
Tag yourself here:<br />
<br />
SJakubowski!</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/User:CavaliajUser:Cavaliaj2007-12-02T03:21:29Z<p>SJakubowski: </p>
<hr />
<div>Has been taken over by SJakubowski.<br />
<br />
Is rumored to have a horrible monitor that he will not upgrade from.<br />
<br />
Considers himself to be a "1337 g4m3r."<br />
<br />
Has interesting presentations.<br />
<br />
Is a member of the [[HaveFunWithCasWiki]] group. Member 2/2.</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/HaveFunWithCasWikiHaveFunWithCasWiki2007-12-02T03:20:57Z<p>SJakubowski: New page: A group of individuals enjoying themselves.</p>
<hr />
<div>A group of individuals enjoying themselves.</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/User:SJakubowskiUser:SJakubowski2007-12-02T03:17:12Z<p>SJakubowski: </p>
<hr />
<div>Needs to work on his own wikipage, get pzed.<br />
-Andrew!<br />
<br />
Drives a Miata. Enjoys posting amusing things on others wiki pages.<br />
<br />
[[Image:Turbo009.jpg]]</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/File:Turbo009.jpgFile:Turbo009.jpg2007-12-02T03:17:00Z<p>SJakubowski: SJakubowski's New Snail.</p>
<hr />
<div>SJakubowski's New Snail.</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/User:SJakubowskiUser:SJakubowski2007-12-02T03:15:21Z<p>SJakubowski: </p>
<hr />
<div>Needs to work on his own wikipage, get pzed.<br />
-Andrew!<br />
<br />
Drives a Miata. Enjoys posting amusing things on others wiki pages.<br />
<br />
[[Image:Turbo_009.jpg]]</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/File:Turbo_009.jpgFile:Turbo 009.jpg2007-12-02T03:14:34Z<p>SJakubowski: SJakubowski's New Snail.</p>
<hr />
<div>SJakubowski's New Snail.</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/Smart_Card_technology_to_prevent_fraud.Smart Card technology to prevent fraud.2007-12-02T03:12:56Z<p>SJakubowski: /* General Tips to Prevent fraud */</p>
<hr />
<div>Smart Card technology to prevent fraud is a summary of various ways that fraud can be prevented using smart cards. This wiki page mainly deals with fraud in Visa and Debit cards.<br />
<br />
== General Facts about fraud ==<br />
* Data Protection<br />
* Ease of Use<br />
* Easy to Transport Information<br />
* Relatively Cheap and Efficient<br />
<br />
<br />
== General Facts about Smart Cards ==<br />
\affas<br />
<br />
<br />
== Problems with Smart Cards ==<br />
dsfds<br />
<br />
== Future of Smart Cards ==<br />
fsdf<br />
<br />
== General Tips to Prevent fraud ==<br />
*Hide your PIN<br />
*Watch for signs of tampered card readers<br />
*Don't lend out your Credit card or Debit Card</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/User:CavaliajUser:Cavaliaj2007-12-02T03:10:29Z<p>SJakubowski: New page: Has been taken over by SJakubowski.</p>
<hr />
<div>Has been taken over by SJakubowski.</div>SJakubowskihttp://wiki.cas.mcmaster.ca/index.php/User:SJakubowskiUser:SJakubowski2007-12-02T03:09:44Z<p>SJakubowski: </p>
<hr />
<div>Needs to work on his own wikipage, get pzed.<br />
-Andrew!<br />
<br />
Drives a Miata. Enjoys posting amusing things on others wiki pages.</div>SJakubowski