Bezpečnost osobního počítače v ordinaci lékaře zejména z hlediska sítových útoků

Abstract

Informacn technologie zasahuj do vsech oblast lidske spolecnosti. Jednou z techto oblast je i zdravotnictv. Prave zdravotnicka data mohou byt vlivem rozvoje IT znacne ohrozena. Aby bylo mozne tato data zabezpecit, je nutne porozumet tomu, jak vlastne muze k jednotlivym utokum dochazet. Z techto duvodu vznikla ma bakalarska prace, jejm clem je vytvorit specializovane pracoviste a nekolik cvicnych uloh zabyvajcch se touto problematikou. V bakalarske praci jsou popsany stove utoky, ktere mohou nastat na nespravne nakongurovane lokaln sti. Konkretne pak SYN ood, podvrzen webove stranky za pomoci ARP spoongu a DNS spoongu, odposlech dat na mstn poctacove sti a utok na Wi-Fi pomoc slovnkoveho utoku. Dale jsou popsany tri lokaln utoky zamerene prmo na osobn poctac s operacnm systemem Windows. Mezi tyto utoky patr obnova dat z pevneho disku, vytvoren zadnch vratek a instalace zaznamoveho programu. Ve druhe casti bakalarske prace je strucne popsan navrh a kongurace pripravovane laboratore, ktera bude slouzit studentum k demonstraci techto a dalsch utoku v ramci laboratornch cvicen, tykajcch se poctacove bezpecnosti. V zaveru bakalarske prace jsou rozepsany presne postupy na realizaci vyse zmnenych utoku.

The security of the personal computer in the doctor's oce especially in terms of network attacksInformation technologies have a big in uence on aspects of human society. One of those is health care. Our medical data can be in danger thanks to the ongoing evolution of IT. To create an eective security, we must rst understand the dierent types of possible cyber-attacks. That is the focus of my bachelor's thesis, to create suitable environment for research and introduce few mock exercises into the problematic. This bachelor thesis shows dierent types of attacks, possible thanks to inappro- priately congured local area network. More specically SYN ood attacks, web page decoys allowed by ARP spoong and DNS spoong, LAN trac interception and brea- king WPA encryption on Wi-Fi with dictionary attacks. Another segment shows three local area attacks on personal computer running under Windows OS. Some of which are, data recovery from hard drive disk, creating back doors and installation of recording software. The second part of my thesis presents a simple blueprint and congurations of the aforementioned laboratory, this will help students to demonstrate cyber-attacks under the pretense of practical exercises in computer security. In the conclusion of my bachelor's thesis I present exact procedures for recreating the hazards I mentioned earlier.