segurança de redes e sistemas
TRANSCRIPT
-
8/15/2019 Segurança de Redes e Sistemas
1/270
Pndurmaäm
in Sninsn Pestnhms
Evb in @mrvmkjb _nexeajb
Lrma`es`b Hmrhb im Lbasn`m
Lrma`es`b Hmr`nkb Hmrquns Kehm
http://esr.rnp.br/
-
8/15/2019 Segurança de Redes e Sistemas
2/270
-
8/15/2019 Segurança de Redes e Sistemas
3/270
Evb in @mrvmkjb _nexeajb
Lrma`es`b Hmrhb im Lbasn`m
Lrma`es`b Hmr`nkb Hmrquns Kehm
Pndurmaäm in Sninsn Pestnhms
-
8/15/2019 Segurança de Redes e Sistemas
4/270
-
8/15/2019 Segurança de Redes e Sistemas
5/270
Evb in @mrvmkjb _nexeajb
Lrma`es`b Hmrhb im Lbasn`m
Lrma`es`b Hmr`nkb Hmrquns Kehm
Seb in Gmanerb
Ns`bkm Pupnrebr in Snins
3?=0
Pndurmaäm in Sninsn Pestnhms
-
8/15/2019 Segurança de Redes e Sistemas
6/270
@bpyredjt © 3?=0 ‐ Snin Am`ebamk in Naseab n _nsquesm ‐ SA_
Sum Kmurb Hûkknr, ==< smkm ==?0
3335?-5?< Seb in Gmanerb, SG
Ierntbr Dnrmk
Anksba Pehþns
Ierntbr in Pnrveäbs n Pbkuäþns
Gbså Kuez Secnerb Lekjb
Ns`bkm Pupnrebr in Snins
@bbrinamäàb
Kuez @bnkjb
Nieäàb
_nirb Pmadermrie
Snvesàb Yå`ae`m
Lrma`es`b Hmr`nkb Kehm
@bbrinamäàb M`miçhe`m in Pndurmaäm n Dbvnramaäm in YE Nisba Fbwmsf
Nquepn NPS (nh brinh mklmcåte`m)
@nkem Hm`enk, @resteman Bkevnerm, Inrkeaåm Hermaim, Nkehírem Cmrcbsm, Kburins Pba`ea,Ku`emam Cmtestm, Kuez @mrkbs Kbcmtb, Snamtb Iumrtn n Pårdeb Pbuzm
@mpm, prbgntb vesumk n iemdrmhmäàb
Yn`abinseda
\nrsàb
3.=.=
Nstn hmtnremk ieiíte`b lbe nkmcbrmib `bh as niu`m`ebames. Pbke`etmhbs qun qumkqunr nrrb na`ba-
trmib bu i÷veim `bh rnkmäàb mb hmtnremk bu snu usb sngm navemib pmrm m nquepn in nkmcbrmäàb in
`batn÷ib im Ns`bkm Pupnrebr in Snins, ab n-hmek ealbOnsr.rap.cr. M Snin Am`ebamk in Naseab n_nsquesm n bs mutbrns aàb mssuhnh qumkqunr rnspbasmcekeimin pbr nvnatumes imabs bu pnrims, m
pnssbms bu cnas, bredeamibs ib usb instn hmtnremk.
Ms hmr`ms rndestrmims hna`ebamims anstn hmtnremk pnrtna`nh mbs rnspn`tevbs tetukmrns.
Iestrecueäàb
Ns`bkm Pupnrebr in Snins Sum Kmurb Hûkknr, ==< ‐ smkm ==?0
3335?-5?< Seb in Gmanerb, SG
jttp7//nsr.rap.cr
ealbOnsr.rap.cr
Imibs Eatnram`ebames in @mtmkbdmäàb am _ucke`mäàb (@E_)
T0:?p _NEZEAJB, Evb in @mrvmkjb
Pndurmaäm in Snins n Pestnhms/ Evb in @mrvmkjb _nexeajb. ‐ Seb in Gmanerb7 SA_/NPS, 3?=0.
3 `h.
Ceckebdrmm7 p. 3>=.
EPCA 54:-:>-
-
8/15/2019 Segurança de Redes e Sistemas
7/270
eee
Puhíreb
=. Luaimhnatbs in sndurmaäm
Eatrbiuäàb =
Nxnr`è`eb in aevnkmhnatb = ‐ Luaimhnatbs in Pndurmaäm 3
@ba`netbs císe`bs in sndurmaäm 3
Nxnr`è`eb in xmäàb = ‐ @ba`netbs <
_rb`nssb in Yrmtmhnatb in Snspbstm m Ea`einatns <
@e`kb in veim in uh ea`einatn 4
Drupbs in rnspbstm m ea`einatns :
Nxnr`è`eb in xmäàb 3 ‐ _rb`nssb in trmtmhnatb in ea`einatns ==
Nxnr`è`eb in xmäàb 0 ‐ Drupb in rnspbstm m ea`einatns ==
Abrhms EPB/MCAY ==
_bkète`ms in sndurmaäm =0
Nxnr`è`eb in xmäàb 9 ‐ _bkète`ms in sndurmaäm =>
_kmangmaib uhm rnin sndurm =<
Sbtnerb in Mteveimins = =4
Mteveimin = ‐ Nxnr`etmaib bs luaimhnatbs in sndurmaäm =4
Mteveimin 3 ‐ Abrhms in sndurmaäm =4
Mteveimin 0 ‐ _bkète`m in sndurmaäm =4
Mteveimin 9 ‐ @badurmäàb eae`emk ib kmcbrmtðreb príte`b =:
3. Nxpkbrmaib vukanrmcekeimins nh rnins
Eatrbiuäàb 3=
Nxnr`è`eb in aevnkmhnatb = ‐ Nxpkbrmaib vukanrmcekeimins nh rnins 3=
_nantrmteba Ynst 3=
http://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s02.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s02.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s02.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s02.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s02.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s02.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s02.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s02.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s02.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s02.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s02.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s01.pdf
-
8/15/2019 Segurança de Redes e Sistemas
8/270
ev
Nxnr`è`eb in xmäàb = ‐ _nantrmteba Ynst 39
Nxnr`è`eb in xmäàb 3 ‐ _m`fnt saead 39
Ahmp 39
Nxnr`è`eb in xmäàb 0 ‐ Ahmp 34
Jpead 34
Nxnr`è`eb in xmäàb 0 ‐ E_ Ppbbad 09
Nxnr`è`eb in xmäàb 9 ‐ IbP 09
Mkduas tepbs in mtmquns 09
Nxnr`è`eb in xmäàb > ‐ Mkduas tepbs in mtmqun 04
Sbtnerb in Mteveimins 3 9>
Mteveimin = ‐ Snmkezmaib mtmquns in prbtb`bkbs 9>
Mteveimin 3 ‐ Knvmatmaib bs snrveäbs im híqueam mkvb `bh Ahmp 9<
Mteveimin 0 ‐ Snmkezmaib uh mtmqun `bh Hntmspkbet 94
Mteveimin 9 ‐ Snmkezmaib uh mtmqun in ie`ebaíreb `bh b Hniusm 95
0. Lernwmkk ‐ @ba`netbs n Ehpknhnatmäàb
Eatrbiuäàb >=
Nxnr`è`eb in aevnkmhnatb = ‐ Lernwmkk >=
Lernwmkk >3
Yn`abkbdems in rnwmkk >3
Nxnr`è`eb in xmäàb = ‐ Lektrbs in pm`btns >>
Nxnr`è`eb in xmäàb 3 ‐ Pnrveibrns prbxy >>
Ybpbkbdems in rnwmkk >>
Nxnr`è`eb in xmäàb 0 ‐ Ybpbkbdems in rnwmkk >:
Nxnr`è`eb in xmäàb 9 ‐ P`rnnani Pucant >:
Ehpknhnatmäàb in rnwmkks >:
Antktnr (Eptmckns) >:
Ehpknhnatmäàb ib Antktnr >5
Hbib in bpnrmäàb ib Antktnr ‐ Antktnr
-
8/15/2019 Segurança de Redes e Sistemas
9/270
v
Sbtnerb in Mteveimins 0 4=
Mteveimin = ‐ Lektrbs in pm`btns 4=
Mteveimin 3 ‐ Ybpbkbdems in rnwmkk 4=
Mteveimin 0 ‐ Ybpbkbdems in rnwmkk 43
Mteveimin 9 ‐ Lektrb in pm`btns 40
Mteveimin > ‐ @batrbkn in AMY 45
Mteveimin < ‐ Dnrna`emhnatb drí`b ib Lernwmkk Cuekinr :?
Mteveimin 4 ‐ Einate`maib ms rndrms ib rnwmkk :?
9. Pnrveäbs císe`bs in sndurmaäm
Eatrbiuäàb :=
Nxnr`è`eb in aevnkmhnatb = ‐ Pnrveäbs císe`bs in sndurmaäm :=
Dnrna`emhnatb in kbds :=
Pyskbd-ad :3
Nxnr`è`eb in xmäàb = ‐ Dnrna`emhnatb in kbds :>
Nxnr`è`eb in xmäàb 3 ‐ Pyskbd :>
Kbds ib Teaibws :>
Nxnr`è`eb in xmäàb 0 ‐ Kbds ib Teaibws ::
Nxnr`è`eb in xmäàb 9 ‐ AY_ ::
Hbaetbrmhnatb in snrveäbs :5
Mvmkemäàb ims lnrrmhnatms 53
\matmdnas ib @m`te 50
Sbtnerb in Mteveimins 9 5>
Mteveimin = ‐ @badurmäàb ib snrveibr in Pyskbd 5>
Mteveimin 3 ‐ @badurmäàb ib snrveibr in jbrm 54
Mteveimin 0 ‐ Hbaetbrmhnatb in snrveäbs =??
>. Intn`äàb n prnvnaäàb in eatrusbs
Eatrbiuäàb =?0
Nxnr`è`eb in aevnkmhnatb = ‐ Intn`äàb n prnvnaäàb in eatrusbs =?0
Pestnhms in Intn`äàb in Eatrusbs (EIP) =?0
Nxnr`è`eb in xmäàb = ‐ EIP =?>
Pestnhm in _rnvnaäàb in Eatrusbs (E_P) =?>
Nxnr`è`eb in xmäàb 3 ‐ E_P =?
-
8/15/2019 Segurança de Redes e Sistemas
10/270
ve
Pestnhms in Intn`äàb in Eatrusbs nh jbsts (JEIP) =?<
Nxnr`è`eb in xmäàb 0 ‐ JEIP =?4
Pabrt =?4
Eastmkmäàb ib Pabrt =?5
@badurmäàb ib Pabrt ==3
Sndrms ib Pabrt ==0
Beafhmstnr ==9
Dumriema7 uh Pabrt rnmtevb ==>
Pabrt-eakean ==>
JEIP ==<
Sbtnerb in Mteveimins > ==4
Mteveimin = ‐ @badurmäàb císe`m ib Pabrt ==4
Mteveimin 3 ‐ Mtumkezmäàb in rndrms ==:
Mteveimin 0 ‐ Ckbquneb mutbhíte`b ab rnwmkk ==5
Mteveimin 9 ‐ @remaib uhm rndrm pnrsbamkezmim ib Pabrt ==5
Ymhmajb ims `jmvns =3>
Mkdbrethbs Jmsj =3<
Hbibs in bpnrmäàb in mkdbrethbs ̀ reptbdrí`bs =34
Nxnr`è`eb in xmäàb 3 ‐ @reptbdrmm =34
Nxnr`è`eb in xmäàb 0 ‐ Mkdbrethbs Jmsj =34
@nrte`mibs iedetmes =3:
Bctnaib `nrte`mib in usuíreb =3:
Snvbdmaib b ̀ nrte`mib ib usuíreb =35
Nxnr`è`eb in xmäàb 9 ‐ @nrte`mibs iedetmes =35
Dnrna`emhnatb in snajms =35
Pestnhm in snajms Keaux =0?
http://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s05.pdf
-
8/15/2019 Segurança de Redes e Sistemas
11/270
vee
\mkbr ib PMKY =0=
Nxnr`è`eb in xmäàb > ‐ Pestnhm in snajms Keaux =03
Nxnr`è`eb in xmäàb < ‐ PMKY =03
Pestnhm in snajms Teaibws =03
Miheaestrmaib ms snajms =00
Nxnr`è`eb in xmäàb 4 ‐ Pestnhm in snajms ab Teaibws =09
Pestnhms in Mutnate`mäàb ×ae`m =09
BY_ =09
P/Fny =09
Phmrt @mri =0>
Pnrveibrns in ierntðreb7 KIM_ =0<
Pnrveäb in ierntðreb =0<
Nxnr`è`eb in xmäàb : ‐ KIM_ =04
Nxnr`è`eb in xmäàb 5 ‐ Pnrveäb in ierntðrebs =04Yepbs in ealbrhmäàb =04
_rbtb`bkb Fnrcnrbs =04
M`nssb m snrveäbs nh uhm rnin =9?
Cnanlè`ebs ib Fnrcnrbs =9?
Brdmaezmäàb ib Fnrcnrbs =9=
Nxnr`è`eb in xmäàb =? ‐ Fnrcnrbs =9=
@nrte`mäàb iedetmk =93
Yrekjms in muietbrem =93
Dnrmäàb ibs imibs =93
Sbtnerb in Mteveimins < =9>
Mteveimin = ‐ ^tekezmäàb ib sestnhm BY_ P/Fny =9>
Mteveimin 3 ‐ @badurmaib b snrveäb in mutnate`mäàb Fnrcnrbs ab Teaibws 3??: =9<
Mteveimin 0 ‐ ^sb ib @mea & Mcnk pmrm mvmkemr m sndurmaäm ib sestnhm in mutnate`mäàb =94
4. Snins _revmims \ertumes
Eatrbiuäàb =>=
Nxnr`è`eb in aevnkmhnatb = ‐ Snins _revmims \ertumes =>=
\_A =>=
Bcgntevbs in uhm \_A =>3
\_A __Y_ =>0
K3Y_ =>0
E_Pn` =>9
Nxnr`è`eb in xmäàb = ‐ \_A =>>
http://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s07.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s06.pdf
-
8/15/2019 Segurança de Redes e Sistemas
12/270
veee
Nxnr`è`eb in xmäàb 3 ‐ E_Pn` =><
Hbibs in bpnrmäàb ib E_Pn` =><
_rbtb`bkbs E_Pn` =>4
Nxnr`è`eb in xmäàb 0 ‐ E_Pn` =>5
\_A PPK =>5
Nxnr`è`eb in xmäàb 9 ‐ \_A PPK =
-
8/15/2019 Segurança de Redes e Sistemas
13/270
ex
Mteveimin 9 ‐ Nxnhpkb in muietbrem =5<
Mteveimin > ‐ ^tekezmaib b Aeftb =54
Mteveimin < ‐ ^tekezmaib b Zprbcn =54
Mteveimin 4 ‐ ^tekezmaib b YJ@-Mhmp =5:
5. @baldurmäàb sndurm in snrveibrns Teaibws
Eatrbiuäàb =55
Nxnr`è`eb in aevnkmhnatb = ‐ @badurmäàb sndurm in snrveibrns Teaibws =55
An`nsseimin in `badurmäàb in uh cmsteba jbst 3??
Nxnr`è`eb in xmäàb = ‐ Cmsteba jbst 3??
@jn`f-kest 3??
@badurmäàb in ktrbs in pm`btns 3?=
Nxnr`è`eb in xmäàb 3 ‐ @badurmäàb in ktrbs in pm`btns 3?9
@remäàb in uhm keajm cmsn in sndurmaäm (cmsnkean) 3?9
Insmceketmaib snrveäbs insan`nssírebs 3?9
Nxnr`è`eb in xmäàb 0 ‐ Cmsnkean 3?4
Lnrrmhnatms in maíkesn im sndurmaäm ib Teaibws 3?4
THE@ 3?:
PUPEatnramks 3?:
TP^P 3=?
HCPM 3=?
He`rbsblt Pn`urety @bhpkema`n Hmamdnr 3==
Nxnr`è`eb in xmäàb 9 ‐ He`rbsblt Pn`urety @bhpkema`n Hmamdnr 3=9
Pestnhms in mrquevbs n dnrna`emhnatb in usuírebs 3=9
Drbup _bke`y Bcgn`ts 3=>
Nxnr`è`eb in xmäàb > ‐ Drbup _bke`y Bcgn`ts (D_B) 3=4
_bkète`ms in usuírebs n in `bhputmibr 3=4
Jnrmaäms in D_B 3=:
Ierntevms in sndurmaäm kb`mk 3=5
Ierntevm in snajms 3=5
Ierntevm in muietbrem 33?
Mtrecueäàb in iernetbs in usuírebs 333
Bpäþns in sndurmaäm 333
Sbtnerb in Mteveimins 5 33>
Mteveimin = ‐ @badurmäàb sndurm in snrveibr 33>
http://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s08.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s08.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s08.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s08.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s08.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s08.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s08.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s08.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s08.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s08.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s08.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s08.pdf
-
8/15/2019 Segurança de Redes e Sistemas
14/270
x
Mteveimin 3 ‐ Muietbrem 33<
Mteveimin 0 ‐ Naveb in kbd pmrm snrveibr rnhbtb 334
Mteveimin 9 ‐ @batrbkn in m`nssb mb sestnhm bpnrm`ebamk 33:
=?. @baldurmäàb sndurm in snrveibrns Keaux
Eatrbiuäàb 335
Nxnr`è`eb in aevnkmhnatb = ‐ @badurmäàb sndurm in snrveibrns Keaux 30?
Eastmkmäàb ib Keaux 30?
Insmceketmaib snrveäbs insan`nssírebs 30=
Nxnr`è`eb in xmäàb = ‐ Insmceketmaib snrveäbs insan`nssírebs 309
_m`btns n prbdrmhms 309
@badurmäàb sndurm in snrveäbs 30<
Nxnr`è`eb in xmäàb 3 ‐ @badurmäàb sndurm in snrveäbs 304
M`nssbs miheaestrmtevbs 304
Nxnr`è`eb in xmäàb 0 ‐ M`nssbs miheaestrmtevbs 305
Mtumkezmäàb ib sestnhm bpnrm`ebamk 305
_m`btns `bhpekmibs 39?
Pestnhm in mrquevbs prb` 39?
Sbtnerb in Mteveimins =? 390
Mteveimin = ‐ @badurmäàb sndurm in snrveibr 390
Mteveimin 3 ‐ Muietbrem 3>?
Mteveimin 0 ‐ Lnrrmhnatms n hn`maeshbs pmrm hbaetbrmhnatb 3>?
Mteveimin 9 ‐ Lnrrmhnatms in sndurmaäm 3>?
Ceckebdrmlm 3>=
http://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-bibliografia.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-bibliografia.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s10.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdfhttp://../seg-002/NPE/2-criacao/esr-npe-seg2_v2.1.0-s09.pdf
-
8/15/2019 Segurança de Redes e Sistemas
15/270
xe
M Ns`bkm Pupnrebr in Snins (NPS) å m uaeimin im Snin Am`ebamk in Naseab n _nsquesm
(SA_) rnspbasívnk pnkm iessnheamäàb ib `bajn`ehnatb nh Yn`abkbdems im Ealbrhmäàb
n @bhuae`mäàb (YE@).
M NPS ams`n `bh m prbpbstm in snr m lbrhmibrm n iessnheamibrm in `bhpntça`ems nhYE@ pmrm b `brpb tå`ae`b-miheaestrmtevb ims uaevnrseimins lninrmes, ns`bkms tå`ae`ms n
uaeimins lninrmes in pnsquesm. Pum hessàb luaimhnatmk å rnmkezmr m `mpm`etmäàb tå`ae`m
ib `brpb lua`ebamk ims brdmaezmäþns usuírems im SA_, pmrm b nxnr`è`eb in `bhpntça`ems
mpke`ívnes mb usb n`mz n n`enatn ims YE@.
M NPS blnrn`n inznams in `ursbs iestrecuèibs ams írnms tnhíte`ms7 Miheaestrmäàb n _rb-
gntb in Snins, Miheaestrmäàb in Pestnhms, Pndurmaäm, Hèiems in Pupbr tn ï @bkmcbrmäàb
Iedetmk n Dbvnramaäm in YE.
M NPS tmhcåh pmrte`epm in ievnrsbs prbgntbs in eatnrnssn p÷cke`b, `bhb m nkmcbrmäàb
n nxn`uäàb in pkmabs in `mpm`etmäàb pmrm lbrhmäàb in huktepke`mibrns pmrm prbgntbs
niu`m`ebames `bhb7 lbrhmäàb ab usb im `balnrça`em wnc pmrm m ^aevnrseimin Mcnrtm ib
Crmsek (^MC), lbrhmäàb ib supbrtn tå`ae`b in kmcbrmtðrebs ib _rbealb n `remäàb in uh `ba-
guatb in `mrtekjms sbcrn rnins snh b pmrm b prbdrmhm ^h @bhputmibr pbr Mkuab (^@M).
M hntbibkbdem im NPS
M kbsbm pnimdðde`m n m hntbibkbdem qun brenatmh bs `ursbs im NPS sàb cmsnmims am
mprnaiezmdnh `bhb `bastruäàb ib `bajn`ehnatb pbr hneb im rnsbkuäàb in prbcknhms tèpe -
`bs im rnmkeimin ib prbssebamk nh lbrhmäàb. Bs rnsuktmibs bcteibs abs `ursbs in amturnzm
tnðre`b-príte`m sàb btehezmibs, pbes b eastrutbr, muxekemib pnkb hmtnremk ieiíte`b, mtum aàb
mpnams `bhb nxpbsetbr in `ba`netbs n ealbrhmäþns, hms prea`epmkhnatn `bhb brenatmibr ib
mkuab am nxn`uäàb in mteveimins `batnxtumkezmims ams setumäþns ib `bteiemab prbssebamk.
M mprnaiezmdnh å natnaieim `bhb m rnspbstm ib mkuab mb insmb in setumäþns-prbcknhm
snhnkjmatns ïs na`batrmims am príte`m prbssebamk, qun sàb supnrmims pbr hneb in maíkesn,
sèatnsn, gukdmhnatb, pnasmhnatb `rète`b n `bastruäàb in jepðtnsns pmrm m rnsbkuäàb ib prb-
cknhm, nh mcbrimdnh brenatmim mb insnavbkvehnatb in `bhpntça`ems.
Inssm lbrhm, b eastrutbr tnh pmrte`epmäàb mtevm n iemkðde`m `bhb brenatmibr ib mkuab pmrm ms
mteveimins nh kmcbrmtðreb. Mtå hnshb m mprnsnatmäàb im tnbrem ab eaè`eb im snssàb in mprna -
iezmdnh aàb å `baseinrmim uhm sehpkns nxpbseäàb in `ba`netbs n ealbrhmäþns. B eastrutbr
cus`m ea`natevmr m pmrte`epmäàb ibs mkuabs `bateaumhnatn.
Ns`bkm Pupnrebr in Snins
-
8/15/2019 Segurança de Redes e Sistemas
16/270
xee
Ms snssþns in mprnaiezmdnh bain sn iàb m mprnsnatmäàb ibs `batn÷ibs n m rnmkezmäàb ims
mteveimins príte`ms tçh lbrhmtb prnsna`emk n nssna`emkhnatn príte`b, utekezmaib tå`ae`ms
in nstuib ieredeib eaieveiumk, trmcmkjb nh nquepn n príte`ms brenatmims pmrm b `batnxtb in
mtumäàb ib luturb nspn`emkestm qun sn prntnain lbrhmr.
Ms snssþns in mprnaiezmdnh insnavbkvnh-sn nh trçs ntmpms, `bh prnibheaãa`em in
tnhpb pmrm ms mteveimins príte`ms, `balbrhn ins`reäàb m snduer7
_rehnerm ntmpm7 mprnsnatmäàb im tnbrem n ns`kmrn`ehnatb in i÷veims (in
-
8/15/2019 Segurança de Redes e Sistemas
17/270
xeee
Kmrdurm `bastmatn
Eaie`m `bhmaibs n sums bpäþns, vmreívnes n mtrecutbs, `batn÷ib in mrquevbs n rnsuktmib im
smèim in ̀ bhmaibs.
@batn÷ib in skein
Eaie`m b `batn÷ib ibs skeins rnlnrnatns mb `ursb mprnsnatmibs nh smkm in mukm.
Pèhcbkb
Eaie`m rnlnrça`em `bhpknhnatmr iespbaèvnk nh setn bu pídeam am eatnrant.
Pèhcbkb
Eaie`m uh ib`uhnatb ̀ bhb rnlnrça`em ̀ bhpknhnatmr.
Pèhcbkb
Eaie`m uh vèinb ̀ bhb rnlnrça`em `bhpknhnatmr.
PèhcbkbEaie`m uh mrquevb in m÷ieb ̀ bhb rnlnrça`em ̀ bhpknhnatmr.
Pèhcbkb
Eaie`m uh mvesb bu prn`muäàb m snr `baseinrmim.
Pèhcbkb
Eaie`m qunstebamhnatbs qun nstehukmh m rnnxàb bu mprnsnatm `batn÷ib in mpbeb mb
natnaiehnatb ib tnhm nh qunstàb.
Pèhcbkb
Eaie`m abtms n ealbrhmäþns ̀ bhpknhnatmrns ̀ bhb ie`ms, sudnstþns in kneturm mie`ebamk buhnshb uhm bcsnrvmäàb.
_nrhessþns in usb
Ybibs bs iernetbs rnsnrvmibs ï SA_.
Mdrmin`nhbs snhprn `etmr nstm lbatn qumaib ea`kuer pmrtn instn kevrb nh butrm bcrm.
Nxnhpkb in `etmäàb7 _NEZEAJB, Evb. Pndurmaäm in Snins n Pestnhms. Seb in Gmanerb7 Ns`bkm
Pupnrebr in Snins, 3?=0.
@bhnatírebs n pnrduatms
_mrm navemr `bhnatírebs n pnrduatms sbcrn nstm pucke`mäàb7
Ns`bkm Pupnrebr in Snins SA_
Nainrnäb7 Mv. Kmurb Hûkknr ==< smkm ==?0 ‐ Cbtmlbdb
Seb in Gmanerb ‐ SG ‐ 3335?-5?<
N-hmek7 ealbOnsr.rap.cr
-
8/15/2019 Segurança de Redes e Sistemas
18/270
xev
Pbcrn bs mutbrns
Evb in @mrvmkjb _nexeajb å Cm`jmrnk nh @eça`em im @bhputmäàb pnkm ^LCM n Nspn`emkestm
nh Dnstàb in Pndurmaäm im Ealbrhmäàb pnkm ^aC. _bssue hmes in => mabs in nxpnreça`em
am írnm in Pndurmaäm im Ealbrhmäàb. Lbe Ierntbr Yå`ae`b am ZPetn @basuktbrem n Yn`abkbdem,
Mamkestm in Pupbrtn am ^aevnrseimin Lninrmk im Cmjem. Nh 3??9 mtubu `bhb Mamkestm in
Pndurmaäm Pçaebr ab @MEP/SA_ pbr ibes mabs n mtumkhnatn å _nretb @reheamk Lninrmk ib
Inpmrtmhnatb in _bkè`em Lninrmk insin 3??4, kbtmib mtumkhnatn ab Pnrveäb in Snprnssàb m
@rehns @ecnraåte`bs - PS@@/@D_LMW/IE@BS/I_L. Å prblnssbr in pðs-drmiumäàb ams ies`epke-
ams in Maíkesn Lbrnasn nh Pestnhms ^AEZ n Maíkesn in Hmkwmrn n å pmknstrmatn nh ievnrsbs
nvnatbs am`ebames n eatnram`ebames `bhb DYP, Pndealb, @AMPE , E@@ycnr n LESPY.
Lrma`es`b Hmrhb im Lbasn`m å cm`jmrnk nh Nadnajmrem im @bhputmäàb pnkb Eastetutb in
Niu`mäàb Pupnrebr in Crmsèkem n pðs-drmiumaib nh _nrè`em Iedetmk pnkm ^aevnrseimin @mtð-
ke`m in Crmsèkem. Eae`ebu sum mtumäàb nh Snins `bhb cbksestm pnsquesmibr ib _rbgntb in _ns-
quesm SNHM\-DB (=554-=555), ama`emib pnkm SA_ n @A_q. _bssue =9 mabs in nxpnreça`em
am írnm in Snins in @bhputmibrns, mtum `bhb nadnajnerb `basuktbr in Snins jí > mabs,
snaib bs ÷ktehbs 0 mabs am Kmynr3 ib Crmsek nh ̀ kenatns ̀ bhb Inpmrtmhnatb in _bkè`em
Lninrmk, ED n Be. Ynh pmssmdnas pnkm Pnrmsm (3??< -3??:) `bhb `basuktbr ab Cma`b @natrmk
am Snin ib Pestnhm Leama`nerb Am`ebamk, n am Crmsek Ynkn`bh (3??3-3??4) `bhb mamkestm in
Bpnrmäþns in Snins E_.
Lrma`es`b Hmr`nkb Hmrquns Kehm å `nrte`mib _rbgn`t Hmamdnhnat _rblnssebamk (_H_) n
Hbiukb @nrteni Pn`urety B`nr (H@PB), Hnstrn nh Nadnajmrem Nkåtre`m pnkm ^aevnrseimin
in Crmsèkem (3??5), Hnstrn nh Keinrmaäm pnkm ^aevnrseimin in Pmatb Mhmrb (3??4) n pðs-
-drmiumib nh Pndurmaäm in Snins in @bhputmibrns pnkm ^aevnrseimin @mtðke`m in Crmsèkem
(3??0). Mtumkhnatn nxnr`n ms luaäþns in @bbrinamibr ibs @ursbs in Snins in @bhputm-
ibrns n Pndurmaäm im Ealbrhmäàb ib ENPC n Mamkestm nh YE ib H_BD `nieib pmrm m @batrb-
kmibrem-Dnrmk im ^aeàb/_S. Mtum, tmhcåh, `bhb eastrutbr/rnvesbr ibs `ursbs in sndurmaäm
n rnins am SA_ n eastrutbr/rnvesbr ibs `ursbs in pkmangmhnatb nstrmtåde`b (_IYE) n dnstàb
in `batrmtbs in YE (D@YE) am NAM_. _bssue hmes in => mabs in nxpnreça`em am írnm in @eça`emim @bhputmäàb `bh çalmsn nh Pndurmaäm im Ealbrhmäàb, Snins n @bastruäàb in Pbltwmrn
tnaib nxnr`eib luaäþns `bhb7 @bbrinamibr Dnrmk in YE ib EA@SM (IMP 9)6 @bbrinamibr
ib @ursb in Pndurmaäm im Ealbrhmäàb im Lm`ukimin Sbdm`ebaestm6 @bbrinamibr ib @ursb
in _rb`nssmhnatb in Imibs n Pndurmaäm im Ealbrhmäàb im Lm`ukimin MI=, Mamkestm nh
Pndurmaäm im nhprnsm Hðiukb Pn`urety Pbkutebas.
Nisba Fbwmsf Cnznrrm å prbssebamk im írnm in sndurmaäm im ealbrhmäàb n dbvnramaäm
jí hmes in queazn mabs, mtumaib `bhb muietbr kèinr, pnsquesmibr, dnrnatn in prbgntb n
dnrnatn tå`ae`b, nh ea÷hnrbs prbgntbs in dnstàb in res`bs, dnstàb in sndurmaäm im ealbrhm -
äàb, `bateaueimin in andð`ebs, _@E, muietbrem n rn`upnrmäàb in insmstrns nh nhprnsms in
drmain pbrtn ib sntbr in tnkn`bhuae`mäþns, ama`nerb, nanrdem, eai÷strem n dbvnrab. @bh
vmstm nxpnreça`em abs tnhms in sndurmaäm n dbvnramaäm, tnh mtumib tmhcåh `bhb pmkns-
trmatn abs prea`epmes nvnatbs ib Crmsek n meaim `bhb eastrutbr in trneamhnatbs lb`mibs nh
sndurmaäm n dbvnramaäm. Å prblnssbr n `bbrinamibr in `ursbs in pðs-drmiumäàb am írnm in
sndurmaäm im ealbrhmäàb, dnstàb eatndrmim, in eabvmäàb n tn`abkbdems wnc. Jbgn mtum `bhb
@bbrinamibr M`miçhe`b in Pndurmaäm n Dbvnramaäm in YE im Ns`bkm Pupnrebr in Snins.
-
8/15/2019 Segurança de Redes e Sistemas
19/270
=
@ m p è t u k b
= - L u a i m h n a t b s i n s n d u r m a ä
m
b c g n t e v b s
` b a ` n e t b s
=Luaimhnatbs in sndurmaäm
Mprnsnatmr mb mkuab luaimhnatbs in sndurmaäm `bhb nstrmtådems, nstídebs ib `e`kb in
veim in ea`einatns, drupbs in rnspbstm m ea`einatns n abrhms in pbkète`ms in sndurmaäm.
@baina`emkeimin, eatndreimin, iespbaecekeimin, mutnate`eimin, kndmkeimin, aàb rnp÷ieb
n prevm`eimin, natrn butrbs.
Eatrbiuäàb
M Pndurmaäm im Ealbrhmäàb (PE) å uhm írnm nh `bastmatn nvbkuäàb, qun sn insnavbkvnu huetb
abs ÷ktehbs mabs, `bh m `remäàb in abrhms n `nrte`mäþns eatnram`ebames n muhnatb nxprns -
sevb ab a÷hnrb in prbssebames inie`mibs. B prbssebamk qun prntnain mtumr anssm írnm invn
nstmr `enatn in qun nkm å cmstmatn ieaãhe`m n navbkvn ievnrsbs sntbrns im `bhputmäàb, `bhb
prbdrmhmäàb n insnavbkvehnatb in sestnhms, rnins in `bhputmibrns, sestnhms bpnrm`ebames
n cma`bs in imibs, natrn butrms. ]umatb hmes `bajn`ehnatb b prbssebamk in PE pbssuer, hmes`mpm`eimin tnrí in insnhpnajmr snu pmpnk. Mpnsmr in tbibs nssns mvmaäbs, m PE meaim å uhm
írnm abvm, n m `mim iem abvms sucírnms n `ba`netbs sàb ins`bcnrtbs n ea`brpbrmibs.
_mrm nstn `ursb, `baseinrm-sn qun b mkuab `bhpkntbu b `ursb in Eatrbiuäàb ï Pndurmaäm in Snins
n gí pbssue uhm abäàb sbcrn sndurmaäm in rnins, ea`kueaib m lmhèkem in prbtb`bkbs Y@_/E_, mkåh
in abäþns in miheaestrmäàb in snrveibrns Keaux n Teaibws. Nstn ̀ ursb tnrí nalbqun hmes
príte`b, `bh lb`b am írnm in rnins n sestnhms bpnrm`ebames. Mb amk ib `ursb, b mkuab invn snr
`mpmz in `bhprnnainr n utekezmr bs `ba`netbs n lnrrmhnatms in sndurmaäm in rnins, in hbib
m prbgntmr n `badurmr uhm rnin `bh uh aèvnk in sndurmaäm m`netívnk, mkåh in snr `mpmz in
muhnatmr b aèvnk in sndurmaäm ibs sestnhms bpnrm`ebames hmes utekezmibs ab hnr`mib, mtrmvås
in `badurmäþns hmes sndurms ibs sestnhms n snrveäbs instns sestnhms bpnrm`ebames.
_br h, å ehpbrtmatn qun b mkuab tnajm `bas`eça`em in qun nstn å uh `ursb príte`b n
prbdrnssevb, `bh mteveimins príte`ms luaimhnatmes n eatnrinpnainatns, in hbib qun uhm
mteveimin in uh `mpètukb å prå-rnquesetb pmrm ms mteveimins ibs `mpètukbs sndueatns. B mkuab
invn eavnster ams mteveimins príte`ms pmrm amkezí-kms `bhpkntmhnatn, `msb `batríreb pbinrí
aàb bctnr b mprbvnetmhnatb insngmib.
-
8/15/2019 Segurança de Redes e Sistemas
20/270
3
P n d u r m a ä m i n S n i n s n P e s t n h m s
Nxnr`è`eb in aevnkmhnatb =n Luaimhnatbs in Pndurmaäm
B qun vb`ç natnain pbr sndurmaäm im ealbrhmäàb2
@bhb sum brdmaezmäàb trmtm m írnm in sndurmaäm im ealbrhmäàb2
@ba`netbs císe`bs in sndurmaäm
B prbssebamk in sndurmaäm invn tnr snhprn nh hnatn mkduas `ba`netbs císe`bs, qun
abrtnmràb b snu trmcmkjb ab iem m iem. Nkn invn pnasmr in lbrhm ielnrnatn ib trmie`ebamk,
pbes pmrm nkn aàb å su`enatn mpnams b rn`ursb bu snrveäb nstmr lua`ebamaib7 å prn`esb nstmr
lua`ebamaib in lbrhm sndurm. _binhbs `etmr `bhb nxnhpkb b insnavbkvehnatb in uhmmpke`mäàb wnc. Anstn nxnhpkb iespbhbs in ievnrsbs `bhpbanatns qun invnh lua`ebamr in
lbrhm eatndrmim. _binhbs `etmr natàb7
q= Pnrveibrns lèse`bs (jmriwmrn). = Pestnhms bpnrm`ebames ibs snrveibrns.
= Pnrveibr in mpke`mäàb.
= Pnrveibr JYY_.
= Mpke`mäàb wnc.
= Pnrveibr in cma`b in imibs.
= Pndurmaäm ib jmriwmrn ibs snrveibrns. = Pndurmaäm ib sestnhm bpnrm`ebamk.
= Pndurmaäm im mpke`mäàb mtrmvås in tnstns in pnantrmäàb.
= Pndurmaäm im rnin in `bhuae`mäàb.
Mque nstmhbs trmtmaib in uh nxnhpkb ieiíte`b, pbes uhm mpke`mäàb ̀ bhnr`emk nh prbiuäàb
pbinrí tnr butrbs `bhpbanatns, ̀ bhb rniuaiãa`em, sestnhms in dnrna`emhnatb, sestnhms
in mvmkemäàb in insnhpnajb ims mpke`mäþns n mhcenatns in vertumkezmäàb, natrn butrbs.
_mrm b insnavbkvnibr, m prnb`upmäàb hmebr å `bh b cbh lua`ebamhnatb im mpke`mäàb. Jbgn
nxestnh mkduas pmirþns in insnavbkvehnatb sndurb, cbms príte`ms n ealbrhmäþns sbcrn bs
prbcknhms in sndurmaäm hmes `bhuas inssn tepb in mpke`mäàb. _bråh, b insnavbkvnibr abr-hmkhnatn pbssue prmzbs m `uhprer n anh snhprn pbssue nxpnreça`em su`enatn ab insna-
vbkvehnatb in `ðiedb sndurb. M nquepn in supbrtn pbssue m prnb`upmäàb in mkb`mr rn`ursbs
su`enatns pmrm m bpnrmäàb im mpke`mäàb, in m`brib `bh m `mrdm nspnrmim. M nquepn in
jbhbkbdmäàb n tnstns huetms vnzns nstí mpnams prnb`upmim `bh b cbh lua`ebamhnatb im
mpke`mäàb nh ̀ baieäþns abrhmes in bpnrmäàb. B prbssebamk in sndurmaäm, pbr butrb kmib,
nstí prnb`upmib `bh m sndurmaäm im mpke`mäàb, b qun navbkvn m sndurmaäm in `mim uh ibs
`bhpbanatns navbkveibs7
= Pndurmaäm ib jmriwmrn ibs snrveibrns, `bh dmrmatem in lbran`ehnatb in nanrdem mtrmvåsin lbatns rniuaimatns, abcrnmfs, dnrmibrns n mtå snrveibrns rniuaimatns.
-
8/15/2019 Segurança de Redes e Sistemas
21/270
0
@ m p è t u k b
= - L u a i m h n a t b s i n s n d u r m a ä
m
= Pndurmaäm ib sestnhm bpnrm`ebamk, ib snrveibr in mpke`mäàb n ib snrveibr wnc, mtrmvåsim `badurmäàb sndurm, rntermim in snrveäbs insan`nssírebs, mpke`mäàb ims ÷ktehms `brrn-
äþns in sndurmaäm ib lmcre`matn, ktrmdnh in pbrtms insan`nssírems, natrn butrbs.
= Pndurmaäm im mpke`mäàb mtrmvås in tnstns in pnantrmäàb, mvmkemäàb ims pbssèvnes vukanrm-cekeimins, maíkesn ib ̀ ðiedb, natrn butrbs.
= Pndurmaäm im rnin in ̀ bhuae`mäàb, ̀ bh mvmkemäàb im pbssecekeimin in mtmquns in
andmäàb in snrv eäb pnkm rnin, mtmquns m prbtb`bkbs, natrn butrbs.
qB prbssebamk in sndurmaäm invn tnr uhm lbrhmäàb ievnrse`mim7 = Pndurmaäm in rnins wernknss.
= Ynstns in eavmsàb (pnatnst).
= Maíkesn lbrnasn ̀ bhputm`ebamk. = Yrmtmhnatb in ea`einatns in sndurmaäm.
= Insnavbkvehnatb in mpke`mäþns sndurms.
= Pndurmaäm in mpke`mäþns.
B prbssebamk in sndurmaäm invn tnr prbluaib `bajn`ehnatb nh qunstþns in sndurmaäm
lèse`m in `bhputmibrns, sndurmaäm in sestnhms bpnrm`ebames, snrveäbs n mpke`mäþns wnc,
mtumaib ̀ bh rnspbasmcekeimin n snhprn cus`maib aèvnes hmes prbluaibs in ̀ bajn`ehnatb.
Mtumkhnatn, ̀ bh b muhnatb im ̀ bhpknxeimin ibs sestnhms in ealbrhmäàb, nstí ̀ mim vnz
hmes ielè`ek uh ÷ae`b prbssebamk mcrmadnr tbib nssn ̀ bajn`ehnatb, in lbrhm qun ̀ bhnämh
m surder prbssebames nspn`emkezmibs nh intnrheamims írnms im sndurmaäm. Írnms ̀ bhb
sndurmaäm in rnins wernknss, tnstns in eavmsàb (pnatnst), maíkesn lbrnasn `bhputm`ebamk, trm-
tmhnatb in ea`einatns in sndurmaäm n insnavbkvehnatb in mpke`mäþns sndurms sàb mpnams
mkduas nxnhpkbs in nspn`emkezmäþns na`batrmims ab hnr`mib abs iems in jbgn.
Natrn bs ̀ bajn`ehnatbs qun uh prbssebamk in sndurmaäm invn pbssuer, tmkvnz b ̀ ba`netb
hmes císe`b ̀ brrnspbaim ï sedkm @EI (@baina`emkeimin, Eatndreimin n Iespbaecekeimin), qun åinrevmim ib eadkçs @EM (@bainatemkety, Eatndret y mai Mvmekmcekety). Nkm å b pekmr in tbim m írnm
in PE, in hbib qun uh ea`einatn in sndurmaäm å `mrm`tnrezmib qumaib uhm inssms írnms å
mlntmim. M snduer, vnrnhbs nh intmkjns `mim uh inssns etnas.
qLuaimhnatbs in sndurmaäm7 = @baina`emkeimin.
= Eatndreimin.
= Iespbaecekeimin.
M @balina`emkeimin å uh tnrhb ierntmhnatn kedmib ï prevm`eimin in uh rn`ursb. ^h
rn`ursb invn nstmr m`nssèvnk mpnams pmrm m pnssbm bu drupb qun lbe inaeib `bhb usuíreb
mutbrezmib pmrm iespbr imqunkn m`nssb, n anajuh butrb. _br nxnhpkb, ms abtms in uh mkuab
invnh snr m`nssmims sbhnatn pnkb mkuab, pnkbs prblnssbrns ims ies`epkeams ̀ ursmims pbr nkn
n pnkm nquepn in rndestrb m`miçhe`b.
B tnrhb Eatndreimin pbssue iums inaeäþns7 m prehnerm rnkm`ebamim ̀ bh b lmtb im ealbr-
hmäàb tnr vmkbr `brrntb6 pbr nxnhpkb, ab rnsuktmib im `brrnäàb in uhm prbvm, m abtm bcteim
lbe mvmkemim pbr uh prblnssbr ̀ bh ̀ bajn`ehnatb im ies`epkeam, n pbrtmatb mptb pmrm gukdmr
b `batn÷ib. M snduaim inaeäàb nstí kedmim ï eavebkmcekeimin im ealbrhmäàb, bu sngm, m abtm
aàb pbin snr mktnrmim snh guste`mtevm n pbr hneb `batrbkmib. M abtm aàb pbin ‛suher‘ bu
snr sehpknshnatn mktnrmim.
Ea`einatn in sndurmaäm
_bin snr inleaeib
`bhb qumkqunr nvnatb
mivnrsb, `balerhmib bu
sbc suspnetm, rnkm`eb-
amib ï sndurmaäm in
sestnhms in `bhpu-
tmäàb bu in rnins in
`bhputmibrns.
-
8/15/2019 Segurança de Redes e Sistemas
22/270
9
P n d u r m a ä m i n S n i n s n P e s t n h m s
B tnrhb Iespbaecekeimin nstí rnkm`ebamib mb m`nssb ï ealbrhmäàb, qun pbin snr `batrb-
kmim bu aàb, n iespbaèvnk qumaib an`nssírem. ^h mtmqun in andmäàb in snr veäb pbin, pbr
nxnhpkb, nvetmr b m`nssb ï ealbrhmäàb, mlntmaib m iespbaecekeimin.
Å ehpbrtmatn abtmr qun m iespbaecekeimin n m eatndreimin pbinh snr hnieims in
lbrhm sehpkns, vestb qun nkms sàb pnr`nptèvnes pnkbs usuírebs im ealbrhmäàb. M `ba-
ina`emkeimin, pbr butrb kmib, pbin snr quncrmim snh qun sn tnajm `bajn`ehnatb ib
lmtb, pbes m sehpkns vesumkezmäàb in uhm ealbrhmäàb pbr uh usuíreb aàb mutbrezmib
aàb an`nssmremhnatn mktnrm nssm ealbrhmäàb. Imè m ehpbrtãa`em im muietbrem, bain
sàb mamkesmibs bs rndestrbs in m`nssb in intnrheamim ealbrhmäàb, `bh b bcgntevb in
vnre`mr sn jbuvn m`nssb eainveib. M muietbrem snrí trmtmim ab `mpètukb :.
Bcsnrvn, meaim, qun nxestnh trçs iehnasþns `bhpkntmhnatn iesteatms7 iums inkms, m
`baina`emkeimin n m eatndreimin, sàb vmkbrns cbbkemabs7 bu m ealbrhmäàb sn hmatnvn
`baina`emk bu aàb6 bu m ealbrhmäàb sn hmatnvn èatndrm bu aàb. M tnr`nerm å uh a÷hnrb
rnmk natrn ? n =, pbinaib snr `mk`ukmim pnkm prðprem inaeäàb. Iums pbinh snr hbaetb -
rmims n hnieims7 m eatndreimin n m iespbaecekeimin. Aàb tnhbs `bhb smcnr sn uh imib
pnrinu `baina`emkeimin.
q@ba`netbs muxekemrns7 = Mutnate`eimin. = Kndmkeimin.
= Aàb rnp÷ieb.
= _revm`eimin.
M ketnrmturm hbinram ea`kue meaim hmes mkduas ̀ ba`netbs, qun huetms vnzns sàb ̀ baseinrmibs
muxekemrns mbs trçs gí kestmibs. Pàb nkns7
= Mutnate`eimin7 dmrmatem in qun uhm ealbrhmäàb, prbiutb bu ib`uhnatb lbe nkmcbrmibbu iestrecuèib pnkb mutbr m qunh sn mtrecue.
= Kndmkeimin7 dmrmatem in qun mäþns sngmh rnmkezmims nh ̀ balbrheimin ̀ bh bs prn`netbskndmes vednatns n qun snus prbiutbs tnajmh vmkeimin gurèie`m.
= Aàb rnp÷ieb7 `ba`netb huetb utekezmib qumaib trmtmhbs in `nrte`mäàb iedetmk, bain bnhessbr in uhm hnasmdnh aàb pbin andmr qun m navebu. Ms tn`abkbdems in `nrte`mäàb
iedetmk n msseamturm iedetmk sàb nxnhpkbs qun prbpe`emh nssm `baieäàb.
= _revm`eimin7 `ba`netb mhpkb, qun nxprnssm m jmcekeimin in uh eaievèiub nh `batrbkmr mnxpbseäàb n m iespbaecekeimin in ealbrhmäþns m`nr`m in se. @bh b ̀ rns`ehnatb ibs hn`m -
aeshbs in cus`m, cma`bs in imibs n ealbrhmäþns pucke`mims am eatnrant n rnins sb`emes,
nssn ̀ ba`netb tnh seib huetb ies`uteib nh lðruas nspn`è`bs. ̂ h nxnr`è`eb eatnrnssmatn
qun b mkuab pbin rnmkezmr å cus`mr b snu prðpreb abhn ab setn in cus`ms ib Dbbdkn.
Å `bhuh abs rnlnrerhbs m nssn `baguatb in `ba`netbs císe`bs `bhb @EI bu @EIMK,
qun `brrnspbain ïs eae`emes in mkduas ibs `ba`netbs mprnsnatmibs. M sedkm IE@M meaim
å usmim nh rnlnrça`em mbs qumtrb prehnerbs ̀ ba`netbs.
Mkåh ibs ̀ ba`netbs mprnsnatmibs m`ehm, b kevrb Cuekiead Eatnrant Lernwmkks, in Nkezmcntj I.
Wwe`fy, Pehba @bbpnr n I. Crnat @jmphma (nietbrm B―Snekky), inan meaim butrbs `ba`netbs,
inabheamibs in nstrmtådems in sndurmaäm.
-
8/15/2019 Segurança de Redes e Sistemas
23/270
>
@ m p è t u k b
= - L u a i m h n a t b s i n s n d u r m a ä
m
q= Knmst _revekndn (Hnabr _revekådeb). = Inlnasn ea Inptj (Inlnsm nh _rbluaieimin).
= @jbfn _beat (_batb ×ae`b).
= Inlmukt Inay & inlmukt _nrhet Ptma`n (Mtetuin in Ckbquneb _miràb n _nrhessàb _miràb).
= ^aevnrsmk _mrte`epmteba (_mrte`epmäàb ^aevnrsmk).
= Ievnrsety bl Inlnasn (Ievnrseimin in Inlnsm). = Eajnrnat Tnmfanss (Lrmqunzms Eanrnatns). = @bhhba ̀ badurmteba(@badurmäàb @bhuh).
= @bhhba Jnretmdn (Jnrmaäm @bhuh).
= Tnmfnst Keaf (Nkb hmes Lrm`b).
= Lmek Pmln (Lmkjm Pndurm).
= Pehpke`ety (Pehpke`eimin).
Nssns `ba`netbs sàb huetb ehpbrtmatns, n b prbssebamk in sndurmaäm invn snhprn tç-kbs nh
hnatn ab snu iem m iem7
= Knmst _revekndn (Hnabr _revekådeb)7 `mim bcgntb invn tnr mpnams bs prevekådebs hèaehbspmrm nxn`utmr sums tmrnlms, n anajuh butrb. Mpnsmr in huetb ehpbrtmatn, å ielè`ek mpke`mr
nssn `ba`netb, pbes huetms vnzns nkn navbkvn uhm såren in mgustns n uh hèaehb nrrb
pbin lmznr ̀ bh qun b rn`ursb pmrn in lua`ebamr. @bhb nxnhpkb, pbinhbs ̀ etmr uh
snrveibr wnc. Nxn`utmr b prb`nssb ib snrv eibr `bhb b usuíreb miheaestrmibr prbvmvnk-
hnatn lbran`nrí uhm såren in prev ekådebs insan`nssírebs m nkn. Anssn `msb, `bavåh `remr
uh usuíreb nspn`è`b (nx7 jttpi) n inaer ms pnrhessþns hèaehms pmrm qun b snrv eäb
lua`eban. _br nxnhpkb7 pnrhessàb in kneturm am pmstm bain `mh ms pídeams JYHK n pnr-
hessàb in kneturm n drmvmäàb am pmstm bain `mh bs rndestrbs in m`nssb.
= Inlnasn Ea Inptj (Inlnsm nh _rbluaieimin)7 aàb inpnainr in uh ÷ae`b hn`maeshbin sndurmaäm, eainpnainatn ib quàb lbrtn nkn pbssm pmrn`nr. Aàb nxestn anajuh hn`m-
aeshb =??% sndurb, natàb qumkqunr hn`maeshb pbin snr sucvnrteib. @bkb`mr inlnsms
rniuaimatns pbin snr uhm cbm nstrmtådem, pbes uh mtm`matn, mb pmssmr pbr sums inlnsms
hmes nxtnrams, meaim tnrí butrms `mhmims in inlnsm pmrm uktrmpmssmr matns in `bhprb-
hntnr b sestnhm ̀ bhb uh tbib.
= @jbfn _beat (_batb ×ae`b)7 `mamk nstrnetb pbr bain bs mtm`matns sàb lbrämibs m pmssmr,qun pbin snr hbaetbrmib n `batrbkmib. Nxnhpkbs7 prmäm in pniídeb nh uhm nstrmim,
`mexm in supnrhnr`mib. Nssn å b prea`èpeb utekezmib pnkbs rnwmkks.
= Inlmukt Inay n Inlmukt _nrhet Ptma`n (Mtetuin in Ckbquneb _miràb n _nrhessàb _miràb) 7mtetuin dnrmk nh rnkmäàb ï sndurmaäm. Am prehnerm (hmes sndurm), tuib å prbeceib n b qun å
pnrheteib invn snr nxprnssmhnatn inaeib. Am snduaim, tuib å pnrheteib n b qun å prbeceib
invn snr inaeib. Nh sestnhms sndurbs, invn-sn cus`mr snhprn m prehnerm mtetuin (Inlmukt
Inay), mpnsmr in anh snhprn snr pbssèvnk. _mrm b `msb ib m`nssb ï eatnrant pbr uh amvn -
dmibr, snrem veívnk ckbqunmr tbim m eatnrant n kecnrmr mpnams b qun å pnrheteib2
= ^aevnrsmk _mrte`epmteba (_mrte`epmäàb ̂ aevnrsmk)7 tbibs invnh pmrte`epmr ib prb`nssbin sndurmaäm. ^hm ÷ae`m pnssbm qun aàb pmrte`epm ib prb`nssb pbin `bhprbhntnr tbib
b sestnhm. Å ehpbrtmatn knhcrmr qun m sndurmaäm navbkvn pnssbms, n qun nkms invnh
nstmr navbkveims, hbtevmims n pmrte`epmaib ib prb`nssb.
= Ievnrsety bl Inlnasn (Ievnrseimin in Inlnsm)7 utekezmr ielnrnatns sestnhms n lbrhms ininlnsm, in hbib qun uhm vukanrmcekeimin nh uh sestnhm pbin aàb nstmr prnsnatn nh butrbs.
^h ̀ nrtb ̀ ueimib invn snr tbhmib pmrm aàb rn`mer nh uh ibs prbcknhms kestmibs m snduer.
-
8/15/2019 Segurança de Redes e Sistemas
24/270
<
P n d u r m a ä m i n S n i n s n P e s t n h m s
= Eajnrnat Tnmfanssns (Lrmqunzms Eanrnatns)7 sestnhms in uh hnshb tepb pbinhsblrnr im hnshm lrmqunzm eanrnatn m nssn tepb in sestnhm. Nxnhpkbs7 lmkjm in `ba`netb
bu lmkjm in uh prbtb`bkb ̀ bh ehpknhnatmäàb ̀ bhuh.
= @bhhba @baldurmteba (@baldurmäàb @bhuh)7 sestnhms ielnrnatns ̀ badurmibs pbruhm hnshm pnssbm bu drupb pbinh sblrnr in prbcknhms snhnkjmatns in `badurmäàb.
= @bhhba Jnretmdn (Jnrmaäm @bhuh)7 sestnhms in lmcre`matns ielnrnatns pbinh usmr
`bhpbanatns ̀ bhuas n ̀ basnqunatnhnatn tnrnh ms hnshms lmkjms.
= Tnmfnst Keaf (Nkb Hmes Lrm`b)7 `brrnspbain mb pbatb hmes lrm`b ims sums inlnsms. Mssums inlnsms sàb tàb lbrtns qumatb b pbatb hmes lrm`b. Nstn invn snr nkeheamib qumaib
pbssèvnk, bu snr lbrtn b su`enatn pmrm insna`brmgmr mtmquns. Huetbs mtm`matns vàb prb-
`urmr b pbatb hmes lrm`b im sum rnin, tnatmaib mtm`mr m rnin m pmrter inkn. _batbs lrm`bs
im rnin invnh snr `bastmatnhnatn hbaetbrmibs qumaib aàb puinrnh snr nkeheamibs.
= Lmek Pmln (Lmkjm Pndurm)7 bs sestnhms, nh `msb in lmkjm, invnh snhprn lmzç-kb in hbibm eaecer qumkqunr tepb in m`nssb. B prnguèzb im lmktm in m`nssb å prnlnrèvnk mb m`nssb kecn-
rmib in lbrhm errnstretm nh `msb in lmkjm.
= Pehpke`ety (Pehpke`eimin)7 hmatnr b mhcenatn sehpkns. M `bhpknxeimin ns`bain pbtna-`emes prbcknhms in sndurmaäm. Eatnrlm`ns drí`ms, dnrna`emibrns ̀ natrmkezmibs n sestnhms`bh ̀ badurmäþns sehpkns sàb mkduas nxnhpkbs inssn prea`èpeb. _bråh, invn-sn tbhmr
`ueimib ̀ bh b nx`nssb in sehpke`eimin. ̂ h sehpkns cbtàb am lnrrmhnatm ̀ bh bs ieznrns
‛tbran hnu sestnhm sndurb‘ pbin aàb snr minqumib. Bs sestnhms invnh tnr uh hèaehb
in pmrmhntrezmäàb, pbes ̀ mim mhcenatn pbssue sums pn`ukemreimins.
Nxnr`è`eb in lexmäàb =n @ba`netbs
Nxpkequn `bh sums pmkmvrms b qun å Inlnsm nh _rbluaieimin n `bhb nkm pbin snr mpke`mim
nh sum brdmaezmäàb.
B qun å b Nkb hmes Lrm`b2 Iç uh nxnhpkb am sum brdmaezmäàb.
_rb`nssb in Yrmtmhnatb in Snspbstm m Ea`einatnsIn m`brib `bh b @nrt.cr, uh ea`einatn in sndurmaäm pbin snr inaeib `bhb qumkqunr
nvnatb mivnrsb, `barhmib bu sbc suspnetm, rnkm`ebamib ï sndurmaäm in sestnhms in `bh-
putmäàb bu in rnins in `bhputmibrns. Nh dnrmk, tbim setumäàb am qumk uhm nateimin in
ealbrhmäàb `brrn res`bs pbin snr `baseinrmim uh ea`einatn in sndurmaäm. Ab natmatb, `mim
brdmaezmäàb invn inaer b qun, nh rnkmäàb mbs snus sestnhms, pmrm nkm pbin v er m snr uh
ea`einatn in sndurmaäm. Nh mkduas ̀ msbs, brdmaezmäþns pbinh ̀ kmsse`mr ̀ bhb ea`einatns
in sndurmaäm qumkqunr mtb qun pbssm aàb nstmr nh `balbrheimin `bh m pbkète`m in sndu-
rmaäm mibtmim pnkm eastetueäàb.
-
8/15/2019 Segurança de Redes e Sistemas
25/270
4
@ m p è t u k b
= - L u a i m h n a t b s i n s n d u r m a ä
m
Ybib ea`einatn b`brreib am brdmaezmäàb invn snr trmtmib in m`brib ̀ bh uhm hntbibkbdem
inaeim prnvemhnatn. Msseh, pmrm mtnainr mb prb`nssb in rnspbstm m ea`einatns in sndu-
rmaäm m brdmaezmäàb invn nkmcbrmr uhm hntbibkbdem vesmaib dnrna`emr `basnquça`ems in uhm
quncrm in sndurmaäm. Pnu prea`epmk bcgntevb å heaehezmr b ehpm`tb `musmib pbr uh ea`einatn
n pbsseceketmr b rnstmcnkn`ehnatb ibs snrveäbs ab hmes `urtb nspmäb in tnhpb pbssèvnk.
B lnaùhnab in mtmquns am eatnrant aàb å uh lmtb abvb7 ab h im iå`mim in :? b ea`einatn
`bajn`eib `bhb ‛Eatnrant Tbrh‘ rnsuktbu nh uh ea`einatn qun pmrmkesbu `natnams insestnhms am eatnrant. Mpðs nssn prbcknhm, mkduas drupbs sn rnuaermh pmrm ies`uter bs ruhbs
im sndurmaäm am eatnrant. Nssm rnuaeàb rnsuktbu, hmes tmrin, am `remäàb ib @NSY @bbrieamteba
@natnr (@natnr bl Nhnrdna`y Snspbasn Ynmh). ^h @natrb in Snspbstm m Ea`einatns, b @NSY lbe
uhm ims prehnerms brdmaezmäþns ib tepb @PESY (@bhputnr Pn`urety Ea`einat Snspbasn Ynmh).
@bh b `rns`ehnatb im eatnrant, nh hnmibs in =55?0 ̀ msbs in
lrmuins am eatnrant, rndestrbs `bkjeibs mpnams ab setn im EL@@.
Pnduaib b @nrt.cr, uh @PESY, bu Drupb in Snspbstm m Ea`einatns in Pndurmaäm, å uhm brdm-
aezmäàb rnspbasívnk pbr rn`ncnr, mamkesmr n rnspbainr m abte`mäþns n mteveimins rnkm`eb-
amims m ea`einatns in sndurmaäm nh `bhputmibrns. Abrhmkhnatn, uh drupb in rnspbstm
m ea`einatns pbin snr uh drupb inatrb im prðprem eastetueäàb trmcmkjmaib nx`kusevmhnatn
pmrm m rnspbstm m ea`einatns ibs snrveäbs prnstmibs pnkm nhprnsm bu pbin trmcmkjmr am
lbrhm in ̀ bhuaeimin, muxekemaib vírems eastetueäþns n prbiuzeaib nstmtèste`ms n rnkmtðrebs
qun cnan`emh tbib uh drupb bu hnshb uh pmès (@nrt .cr 3??4).
^h @PESY pbin mder in vírems hmanerms inatrb im nhprnsm, in m`brib `bh m ehpbrtãa`em insnus snrveäbs. ^h drupb pbin nstmr kedmib ierntmhnatn ï mktm miheaestrmäàb im nhprnsm,
in hmanerm qun pbssm eatnrver n mktnrmr bs prb`nssbs im eastetueäàb, hms tmhcåh pbin mder
mpnams `bhb brenatmibr in prb`nssbs, aàb nstmaib ierntmhnatn navbkveib `bh m tbhmim
in in`esþns in sndurmaäm (@PESY Jmaicbbf 3??0).
Mtmquns m sestnhms ̀ bhputm`ebames vesmh ̀ bhprbhntnr bs rnquesetbs in sndurmaäm in
uhm brdmaezmäàb. Nssns mtmquns tçh ibes tepbs in pnrk7 mtevb, bain b mtm`matn lmz mkduhm
mäàb pmrm bctnr b rnsuktmib nspnrmib, n pmssevb, bain b mtm`matn utekezm-sn in lnrrmhnatms
pmrm bctnr bs imibs rnlnrnatns mb mkvb. In m`brib `bh b @nrt.cr, uh @PESY pbin nxnr`nr
tmatb luaäþns rnmtevms qumatb luaäþns prbmtevms pmrm muxekemr am prbtnäàb n sndurmaäm ibs
rn`ursbs `rète`bs in uhm brdmaezmäàb. Aàb nxestn uh `baguatb pmirbaezmib in luaäþns bu
snrveäbs prbveibs pbr uh @PESY. @mim tehn ns`bkjn snus snrveäbs `bh cmsn ams an`nsse-
imins im sum brdmaezmäàb n im ̀ bhuaeimin m qunh nkn mtnain.
@e`kb in veim in uh ea`einatn
q= Nstídeb = ‐ _rnpmrmäàb ibs _rb`nssbs. = Nstídeb 3 ‐ Dnrna`emhnatb in res`bs.
= Nstídeb 0 ‐ Yremdnh.
= Nstídeb 9 ‐ Snspbstm m ea`einatns.
-
8/15/2019 Segurança de Redes e Sistemas
26/270
:
P n d u r m a ä m i n S n i n s n P e s t n h m s
M sndurmaäm in uhm brdmaezmäàb snhprn nstmrí sugnetm m ea`einatns, `bhb tbims ms butrms
írnms. Bs lmtbrns sàb bs hmes ievnrsbs, insin mhnmäms aàb eatna`ebames `musmims pbr usuí-
rebs `bhuas mtå mhnmäms tå`ae`ms brdmaezmims. _mrm uhm brdmaezmäàb å in vetmk ehpbrtãa`em
qun bs ea`einatns sngmh trmtmibs `brrntmhnatn, n pmrm essb sn lmz an`nssíreb natnainr `bhb
lua`ebam b `e`kb in veim in uh ea`einatn.
In m`brib `bh b Eastetutb in Nadnajmrem in Pbltwmrn im @mranden Hnkkba ^aevnrsety,
rnspbasívnk pnkb @nrt.brd, pbinhbs `kmsse`mr b `e`kb in v eim in uh ea`einatn nh qumtrbnstídebs (@PESY Jmaicbbf 3??0), ̀ balbrhn vnrnhbs m snduer.
Nstídeb = ‐ _rnpmrmäàb ibs prb`nssbs
B eaè`eb ib `e`kb in veim in uh ea`einatn `bhnäm matns ib prðpreb ea`einatn. Å an`nssírem m
nkmcbrmäàb in prb`nssbs n prb`niehnatbs pmrm m `brrntm mäàb nhprndmim ̀ batrm mhnmäms n
vukanrmcekeimins pbssèvnes ï brdmaezmäàb. Å ehpbrtmatn qun tbibs bs prb`nssbs nhprndmibs
sngmh tnstmibs n mpnrlneäbmibs. Nssns prb`nssbs tçh pbr amkeimin b `brrntb nhprndb ibs
rn`ursbs pmrm m rnspbstm m ea`einatns.
Nstídeb 3 ‐ Dnrna`emhnatb in res`bs
_br hneb in mäþns `brrntevms n prnvnatevms in mhnmäms nxestnatns, pbes nstms sàb uh lmtbr
eatrèasn`b inatrb in uhm brdmaezmäàb. B dnrna`emhnatb in res`bs å huetb ehpbrtmatn n
invn snr uh prb`nssb `batèaub inatrb in uhm brdmaezmäàb, insnavbkvnaib hnieims in
sndurmaäm n `mk`ukmaib snu ehpm`tb pmrm `mim uhm ims ntmpms in uh `e`kb in ea`einatns.
Nstídeb 0 ‐ Yremdnh
B håtbib in rn`npäàb in tbib n qumkqunr eaiè`eb in ea`einatn å in suhm ehpbrtãa`em, pbes
å `bh uhm `brrntm tremdnh im ealbrhmäàb qun sn eae`em tbib b prb`nssb in `mtmkbdmäàb n
rnspbstm mb ea`einatn. Bs drupbs in rnspbstm m ea`einatns `bhuhnatn ealbrhmh mpnams uh
hneb in `batmtb bu ‛jbtkean‘, sngm pmrm uh drupb in rnspbstm in ãhcetb am`ebamk, prevmib
bu hnshb inatrb im brdmaezmäàb. Nssm tremdnh å ehpbrtmatn pmrm m mpke`mäàb `brrntm ib`batrbkn in sndurmaäm im ealbrhmäàb ehpm`tmib pnkb ea`einatn. Abrhmkhnatn, nssn `ba-
trbkn tmhcåh å mtr ecuèib m uh dnrnatn in ea`einatn, prbssebamk nspn`emkezmib ab prbcknhm
qun nstmrí ï lrnatn ib ea`einatn mtå m sum rnsbkuäàb.
Nstídeb 9 ‐ Snspbstm m ea`einatns
]umaib uh ea`einatn gí pmssbu pnkm tremdnh, nkn å suchnteib mb pkmab in rnspbstm m
ea`einatns im brdmaezmäàb. Anssn pbatb, mteveimins maùhmkms sàb lm`ekhnatn intn`tmims n m
mibäàb in hnieims mprbpremims pbin rmpeimhnatn einate`mr sestnhms mlntmibs, iehnaseb-
amaib b hbatmatn ib prnguèzb.
Drupbs in rnspbstm m ea`einatns
q_rnvnaäàb7 = Muietbrem in sndurmaäm.
= Yrneamhnatb n brenatmäàb m usuírebs.
= Iessnheamäàb in ealbrhmäàb rnkm`ebamim ï sndurmaäm.
= Hbaetbrmäàb in abvms tn`abkbdems.
-
8/15/2019 Segurança de Redes e Sistemas
27/270
5
@ m p è t u k b
= - L u a i m h n a t b s i n s n d u r m a ä
m
qSnspbstm7 = Yrmtmhnatb in ea`einatns.
= Yrmtmhnatb in vukanrmcekeimins.
= ]umkeimin in snrveäbs in sndurmaäm.
= @basuktbrem nh sndurmaäm.
= Maíkesn in res`bs. = _kmangmhnatb n rn`upnrmäàb in insmstrns.
B hmebr insmb pmrm bs prbssebames in sndurmaäm ibs iems mtumes å m dnstàb in uhm
`bhpknxm ealrmnstruturm in `bhuae`mäàb in imibs im eatnrant, snu dnrna`emhnatb n
hmautnaäàb. Am hmebrem ims brdmaezmäþns, ms nquepns in prbssebames nh rnin aàb ̀ batmh
`bh pnssbmk nh qumateimin su`enatn pmrm mtnainr ï inhmaim ̀ rns`natn in btehezmäàb in
sestnhms, mtumkezmäàb ea`nssmatn in prbdrmhms pmrm heaehezmr r es`bs n inlnainr-sn ̀ batrm
mtmquns ibs hmes vmremibs tepbs. Nssn `naíreb sn tbram pebr ï hnieim qun surdnh abvms
lnrrmhnatms in mtmquns, hmkwmrns, tbbkfets n m `rns`natn brdmaezmäàb in drupbs qun vesmh
ï pmrmkesmäàb n b rbucb in imibs am rnin huaiemk in `bhputmibrns.Anssn `batnxtb, n pmrm
mtnainr ï an`nsseimin in rnspbstm m ea`einatns, surdnh bs drupbs in rnspbstm m ea`einatns,`ugb bcgntevb å rnspbainr in hmanerm rípeim n nlntevm m nssms mhnmäms. Nssn drupb tnh
`bhb bcgntevb insnavbkvnr hnebs pmrm einate`mr, mamkesmr n rnspbainr m ea`einatns qun
vnajmh m b`brrnr, heaehezmaib prnguèzbs n rniuzeaib snus ̀ ustbs in rn`upnrmäàb.
Bs drupbs in rnspbstm m ea`einatns dnrmkhnatn trmcmkjmh nh iums lrnatns, prnvnaäàb n rnspbstm.
_rnvnaäàb
@mrm`tnrezmh-sn `bhb snrveäbs prbmtevbs bs snrv eäbs bain b drupb prb`urm sn matn`epmr mbs
prbcknhms in hmanerm m prnvnae-kbs, dnrmaib uhm cmsn in `bajn`ehnatb pmrm luturm pns -
quesm. Inatrn ms prea`epmes mteveimins in prnvnaäàb instm`mh-sn m muietbrem in sndurmaäm n
b trneamhnatb n brenatmäàb m usuírebs.
Muietbrem in sndurmaäm
M muietbrem in sndurmaäm inatrb in uhm nhprnsm v esm suchntnr snus mtevbs m uhm maíkesn
in sndurmaäm `bh cmsn abs rnquesetbs inaeibs pnkm brdmaezmäàb bu pbr abrhms eatnram`eb-
ames. Ymhcåh pbin ehpke`mr am rnvesàb ims príte`ms brdmaezm`ebames im nhprnsm cnh ̀ bhb
tnstns nh tbim m sum ealrmnstruturm. Abs ibes ÷ktehbs hðiukbs instn trneamhnatb, snrí
mcbrimib b prb`nssb in jmrinaead pmrm snrveibrns Keaux n Teaibws. ^hm vnz mprbvmib uh
prb`nssb in jmrinaead , nstn pbin snr utekezmib pmrm muietmr m sndurmaäm in uh mhcenatn, gí
qun anssn ib`uhnatb na`batrm-sn m `badurmäàb hèaehm rn`bhnaimim pmrm uh mtevb.
Yrneamhnatb n brenatmäàb m usuírebs
^hm ims luaäþns in uh @PESY tmhcåh å m prbhbäàb in pmknstrms n wbrfsjbps sbcrn sndu-
rmaäm inatrb in uhm brdmaezmäàb. Nssms pmknstrms tçh b eatuetb in ealbrhmr mbs usuírebs ms
pbkète`ms in sndurmaäms vednatns n `bhb sn prbtndnr in vírebs mtmquns, pr ea`epmkhnatn in
nadnajmrem rnvnrsm.
Iessnheamäàb in ealbrhmäàb rnkm`ebamim ï sndurmaäm
M iessnheamäàb in ealbrhmäàb å prehbriemk pmrm b su`nssb in uh drupb in rnspbstm m
ea`einatns. Nssm iessnheamäàb pbin b`brrnr tmatb inatrb im brdmaezmäàb, mtrmvås in ib`u-
hnatbs n cbknteas eatnrabs, `bhb `bh m `baln`äàb in mrtedbs pmrm iestrecueäàb pmrm butrbs
ðrdàbs nxtnrabs ï nhprnsm.
-
8/15/2019 Segurança de Redes e Sistemas
28/270
=?
P n d u r m a ä m i n S n i n s n P e s t n h m s
Hbaetbrmäàb in abvms tn`abkbdems
^h Drupb in Snspbstm m Ea`einatns hbaetbrm abvbs insnavbkvehnatbs tå`ae`bs in mtmquns
pmrm mguimr m einate`mr abvms tnaiça`ems in luturms mhnmäms. Nssn snrveäb navbkvn m kneturm
in lðruas n kestms in ies`ussàb, setns n rnvestms nspn`emkezmims.
Snspbstm
Bs snrveäbs rnmtevbs nadkbcmh mtev eimins qun sàb rnmkezmims mpðs mkduh nvnatb bu rnque-seäàb inatrb im brdmaezmäàb. Cmsnemh-sn nh maíkesns in kbds n prbiuäàb in rnkmtðrebs nh
luaäàb in mkduhm intn`äàb in mteveimin hmke`ebsm. Inatrn ms prea`epmes mteveimins in rns -
pbstm m ea`einatns, pbinhbs instm`mr ms sndueatns.
Yrmtmhnatb in ea`einatns
Pnduaib @juvmfea n _nefmre, mutbrns ib kevrb Pn`urety Tmrrebr , uhm rnpbstm m ea`einatn å uh
prb`nssb in einate`mäàb, `batnaäàb, nrrmie`mäàb n rn`upnrmäàb in uh ea`einatn in `bhpu-
tmibr, rnmkezmib pnkb tehn in sndurmaäm rnspbasívnk.
B trmtmhnatb in ea`einatns å m prea`epmk mteveimin in uh tehn in rnspbstm m ea`einatns. Pàb bs
ea`einatns qun vàb dnrmr tbib b prb`nssb in einate`mäàb, ̀ kmsse`mäàb n tbhmim in in`esàb sbcrnqumes prb`niehnatbs tbhmr pmrm smamr b prbcknhm, qumatms vnzns b prbcknhm lbe ̀ bastmtmib
inatrb in uh pnrèbib, qumk b ehpm`tb ̀ musmib pnkb ea`einatn n sn nstn bctnvn bu aàb su`nssb.
Yrmtmhnatb in vukanrmcekeimins
B trmtmhnatb in vukanrmcekeimins vesm suchntnr bs sestnhms m uhm muietbrem m h in smcnr
qumes sums lrmqunzms n `bhb prnvnae-kms mtrmvås in hetedmäàb in mkduas snrv eäbs.
Nssm hntbibkbdem nstí ierntmhnatn kedmim ï ̀ remäàb ib pkmab in `bateaueimin in andð`ebs
inatrb in uhm brdmaezmäàb, pbes, mtrmvås ims mvmkemäþns lnetms, å pbssèvnk lmznr uhm maíkesn
in res`b n ehpm`tb pmrm ms vukanrmcekeimins na`batrmims.
]umkeimin in snrveäbs in sndurmaäm
M qumkeimin ibs snrveäbs in sndurmaäm prbpbr`ebam muhnatb am nxpnreça`em miquereim am
prnstmäàb in snrveäbs prbmtevbs n rnmtevbs ins`retbs m`ehm. Nssns snrv eäbs sàb `ba`nceibs
pmrm ea`brpbrmr bs lnnicm`fs n ms keäþns mprnaieims ̀ bh cmsn ab `bajn`ehnatb miquereib
pbr rnspbainr m ea`einatns, vukanrmcekeimins n mtmquns.
_mrtn in uh prb`nssb in dnstàb im qumkeimin im sndurmaäm pbin hnkjbrmr m sndurmaäm m
kbadb prmzb, dnrmaib cmsn imibs in ea`einatns n sums prbpbstms pmrm sbkuäàb.
@basuktbrem nh sndurmaäm
^h @PESY pbin snr utekezmib pmrm lbran`nr m`basnkjmhnatb sbcrn ms hnkjbrns príte`ms in
sndurmaäm, prea`epmkhnatn inatrb in uh mhcenatn heketmr. Nssn snrveäb pbin snr utekezmib am
prnpmrmäàb in rn`bhnaimäþns bu einate`maib rnquesetbs pmrm m mqueseäàb, eastmkmäàb bu
bctnaäàb in abvbs sestnhms, iespbsetevbs in rnin, mpke`mäþns in sbltwmrn bu `remäàb in prb-
`nssbs. Nssn snrveäb ea`kue prbpbr`ebamr brenatmäàb n mguim ab insnavbkvehnatb brdmaezm -
`ebamk bu ab `èr`ukb in pbkète`ms in sndurmaäm. Nkn pbin tmhcåh navbkvnr b m`basnkjmhnatb
ïs abrhms kndmes kndeskmtevms bu in butrbs ðrdàbs dbvnramhnatmes.
-
8/15/2019 Segurança de Redes e Sistemas
29/270
==
@ m p è t u k b
= - L u a i m h n a t b s i n s n d u r m a ä
m
Maíkesn in res`bs
^h Drupb in Snspbstm m Ea`einatns pbin snr `mpmz in m`rns`natmr vmkbr ï maíkesn in res`b
n mvmkemäþns. Essb pbin hnkjbrmr m `mpm`eimin im brdmaezmäàb pmrm mvmkemr mhnmäms rnmes,
lbran`nr mvmkemäþns qumketmtevms n qumatetmtevms ibs res`bs pmrm bs mtevbs im brdmaezmäàb n
mvmkemr nstrmtådems pmrm hnkjbr inlnsm.
_kmangmhnatb n rn`upnrmäàb in insmstrns
@bh cmsn nh b`brrça`ems matnrebrns n luturms prnvesþns in tnaiça`ems nhnrdnatns in ea`e-
inatns in sndurmaäm, pbin-sn mrhmr qun qumatb hmes bs sestnhms in ealbrhmäàb nvbkunh,
hmes muhnatm m ̀ jma`n in m`batn`nr uh ea`einatn. _br essb, b pkmangmhnatb invn ̀ base-
inrmr bs nslbräbs n nxpnreça`ems pmssmims in uh @PESY.
Sn`bhnaimäþns pmrm intnrheamr m hnkjbr lbrhm in rnspbainr m nssns ea`einatns pmrm
dmrmater m ̀ bateaueimin ims bpnrmäþns ̀ bhnr`emes invnh snr uhm prebreimin pmrm m brdm-
aezmäàb. Drupbs rnmkezmaib nssn snrveäb nstàb navbkveibs nh `bateaueimin in andð`ebs n
rn`upnrmäàb in insmstrns, pkmangmhnatb in nvnatbs rnkm`ebamibs `bh m sndurmaäm ealbrhí-
te`m n mhnmäms mtmquns.
Lbatn7 @MEP SA_
Nxnr`è`eb in lexmäàb 3n _rb`nssb in trmtmhnatb in ea`einatns
Nxpkequn bs nstídebs ib `e`kb in veim in uh ea`einatn.
Nxnr`è`eb in lexmäàb 0n Drupb in rnspbstm m ea`einatns
B qun å prnvnaäàb n `bhb nkm å lnetm am sum brdmaezmäàb2
Abrhms EPB/MCAY
qJestðre`b7 CPE n EPB = MCAY ACS EPB/EN@ 34??=73??< (PDPE) ‐ pmssèvnk in `nrte`mäàb.
= MCAY ACS EPB/EN@ 34??373??> (`ðiedb in príte`m). = MCAY ACS EPB/EN@ 34??>73??: (dnstàb in r es`bs).
= MCAY ACS EPB/EN@ 34?==73??5 (tnkn`bhuae`mäþns).
^h ibs prehnerbs ib`uhnatbs `remibs pmrm as in abrhmtezmäàb nh hnebs `bhputm`ebames
lbe b Pn`urety @batrbk lbr @bhputnrs Pystnhs, pucke`mib nh == in lnvnrnerb in =54? pnkm
SMAI @brpbrmteba, uhm nhprnsm abrtn-mhnre`mam snh as ku`rmtevbs nspn`emkezmim nh mssns-
sbrem in eavnstedmäàb n maíkesn, luaimim nh =59:, hmr`bu b eaè`eb im `remäàb in uh `baguatb
-
8/15/2019 Segurança de Redes e Sistemas
30/270
=3
P n d u r m a ä m i n S n i n s n P e s t n h m s
in rndrms pmrm m sndurmaäm in `bhputmibrns. Hmes tmrin, b IbI (Inpmrtmhnatb in Inlnsm
ibs Nstmibs ^aeibs) pucke`bu b Brmadn Cbbf , `bajn`eib tmhcåh `bhb Yrustni @bhputnr
Nvmkuteba @retnrem. _ucke`mib eae`emkhnatn nh =54:, nh lbrhm in uh rms`uajb, lbe amkezmib
nh =5:>. B Brmadn Cbbf , hnshb snaib uh ib`uhnatb gí uktrmpmssmib, hmr`bu b eaè`eb im
cus`m pbr uh `baguatb in rndrms pmrm m mvmkemäàb in uh mhcenatn `bhputm`ebamk sndurb.
Nh =5:4, b IYE (Inpmrtmhnatb in @bhår`eb n Eai÷strem ib Sneab ̂ aeib) ̀ rebu uh ̀ natrb
in sndurmaäm in ealbrhmäþns, qun, natrn sums mtrecueäþns, nstmvm m in `remr uhm abrhm insndurmaäm ims ealbrhmäþns ib Sneab ̂ aeib. Mtå =5::, vírebs ib`uhnatbs lbrmh pucke`mibs.
Nh =55>, nssn `natrb, inabheamib @bhhnr`emk @bhputnr Pn`urety @natrn (@@P@), guatmhnatn
`bh b drupb cretãae`b CPE, kmaäm b CP44557=55>, Dnstàb in Pndurmaäm im Ealbrhmäàb. @ðiedb
in príte`m pmrm sestnhms in ealbrhmäàb in dnstàb in sndurmaäm, nssm abrhm å ieveim nh iums
pmrtns7 uhm jbhbkbdmim nh 3??? n, m butrm, nh 3??3. Å m cmsn pmrm m dnstàb in sndurmaäm
im ealbrhmäàb usmim pbr nateimins in hntbibkbdem in dnstàb im sndurmaäm im ealbrhmäàb
lb`mim abs prea`èpebs císe`bs im sndurmaäm7 @baina`emkeimin, Eatndreimin n Iespbaecekeimin.
Nh inznhcrb in 3???, m EPB (Eatnramtebamk Brdmaezmteba bl Ptmaimiezmteba ) eatnram`ebam-
kezbu m abrhm CP=4455, ̀ remaib m EPB/EN@ =445573???, uhm abrhm mcrmadnatn n eatnram-
`ebamk vbktmim pmrm m dnstàb in sndurmaäm im ealbrhmäàb.
B bcgntevb inssm abrhm nrm `remr uh `baguatb in rndrms pmrm mssndurmr m `bateaueimin ib
andð`eb n heaehezmr prnguèzbs nhprnsmremes, rniuzeaib b ehpm`tb ̀ musmib pbr ea`einatns in
sndurmaäm. Ms abrhms im EPB cmsnmims nh sndurmaäm im ealbrhmäàb lbrmh mtumkezmims n
mdrupmims am lmhèkem in auhnrmäàb 34???.
M MCAY (Mssb`emäàb Crmseknerm in Abrhms Yå`ae`ms ) pucke`bu uhm såren in abrhms cmsnmims
am EPB, trmiuzeims pmrm b pbrtuduçs.
= MCAY ACS EPB/EN@ 34??=73??< ‐ Yn`abkbdem im Ealbrhmäàb ‐ Yå`ae`ms in sndurmaäm ‐Pestnhm in dnstàb im sndurmaäm im ealbrhmäàb ‐ Snquesetbs. \nrsàb mtumk im CP4455
pmrtn 3. Nssm abrhm nspn`e`m bs rnquesetbs pmrm nstmcnkn`nr, ehpknhnatmr, bpnrmr,hbaetbrmr, mamkesmr `rete`mhnatn, hmatnr n hnkjbrmr uh Pestnhm in Dnstàb im Pndurmaäm
im Ealbrhmäàb (PDPE) ib`uhnatmib inatrb ib `batnxtb ibs r es`bs in andð`eb dkbcmes im
brdmaezmäàb. Nssm abrhm nspn`e`m rnquesetbs pmrm ehpknhnatmr bs `batrbkns in sndu-
rmaäm pnrsbamkezmibs pmrm ms an`nsseimins eaieveiumes in brdmaezmäþns bu sums pmrtns.
= MCAY ACS EPB/EN@ 34??373??> ‐ Yn`abkbdem im Ealbrhmäàb ‐ Yå`ae`ms in sndurmaäm ‐@ðiedb in príte`m pmrm m dnstàb in sndurmaäm im ealbrhmäàb. \nrsàb mtumk im EPB/EN@
=4455. Nssm abrhm nstmcnkn`n ierntrezns n pr ea`èpebs dnrmes pmrm eae`emr, ehpknhnatmr,
hmatnr n hnkjbrmr m dnstàb in sndurmaäm im ealbrhmäàb nh uhm brdmaezmäàb. Bs bcgn-
tevbs inaeibs anssm abrhm prbvnnh ierntrezns dnrmes sbcrn ms hntms dnrmkhnatn m`netms
pmrm m dnstàb in sndurmaäm im ealbrhmäàb.
= MCAY ACS EPB/EN@ 34??073?=? ‐ Yn`abkbdem im Ealbrhmäàb ‐ Yå`ae`ms in sndurmaäm ‐Ierntrezns pmrm ehpkmatmäàb in uh sestnhm in dnstàb im sndurmaäm im ealbrhmäàb. Nssm
abrhm lb`m bs mspn`tbs `rète`bs an`nssírebs pmrm m ehpkmatmäàb n b prbgntb cnh-su`nieib
in uh Pestnhm in Dnstàb im Pndurmaäm im Ealbrhmäàb (PDPE), in m`brib `bh m abrhm
MCAY ACS EPB/EN@ 34??=73??
-
8/15/2019 Segurança de Redes e Sistemas
31/270
=0
@ m p è t u k b
= - L u a i m h n a t b s i n s n d u r m a ä
m
= MCAY ACS EPB/EN@ 34??>73??: ‐ Yn`abkbdem im Ealbrhmäàb ‐ Yå`ae`ms in sndurmaäm ‐ Dnstàbin res`bs in sndurmaäm im ealbrhmäàb. Nssm abrhm lbran`n ierntrezns pmrm b prb`nssb in
dnstàb in res`bs n sndurmaäm im ealbrhmäàb. Abrhm `remim pmrm mpbemr b natnaiehnatb ims
nspn`e`mäþns n `ba`netbs nstmcnkn`eibs pnkm abrhm MCAY ACS EPB/EN@ 34??=73??9?:-37 Nvmkumteba `retnrem lbr EY sn`urety ‐ _mrt 37 Pn`urety lua`tebamk.
= EPB/EN@ =>9?:-07 Nvmkumteba `retnrem lbr EY sn`urety ‐ _mrt 07 Pn`urety mssurma`n.
= EPB/EN@ =>990-=7 M lrmhnwbrf lbr EY Pn`urety mssurma`n ‐ _mrt =7 Bvnrvenw mai lrmhnwbrf.
= EPB/EN@ =>990-37 M lrmhnwbrf lbr EY Pn`urety mssurma`n ‐ _mrt 37 Mssurma`n Hntjbis.= EPB/EN@ =>990-07 M lrmhnwbrf lbr EY Pn`urety mssurma`n ‐ _mrt 37 Mamkyses bl Mssurma`n Hntjbis.
= EPB/EN@ =:?9>7 M lrmhnwbrf lbr EY Pn`urety mssurma`n ‐ Hntjbibkbdy lbr EY Pn`urety Nvmkumteba.
= EPB/EN@ =:?907 Pnkn`teba, inpkbyhnat mai bpnrmtebas bl eatruseba intn`teba systnhs.
= EPB/EN@ =:?997 Ealbrhmteba sn`urety ea`einat hmamdnhnat.
= EPB/EN@ 394
-
8/15/2019 Segurança de Redes e Sistemas
32/270
=9
P n d u r m a ä m i n S n i n s n P e s t n h m s
qButrms pbkète`ms mssb`emims ï _BPE@ trmtmh in mssuatbs hmes nspn`è`bs, `bhb pbr nxnhpkb7 = _bkète`m in ^sb M`netívnk (_^M).