Presentation is loading. Please wait.

Presentation is loading. Please wait.

SOCKS (SOCKet Secure) Presentation by: Group KangKong

Published byChristina Shields Modified over 9 years ago

Similar presentations

Presentation on theme: "SOCKS (SOCKet Secure) Presentation by: Group KangKong"— Presentation transcript:

1 SOCKS (SOCKet Secure) Presentation by: Group KangKong
CMPE209 Members: Eddy Kang Leo Kong

2 SOCKS Agenda What is SOCKS? Characteristic/Advantages of SOCKS
Applications Security Case Study Reference Q&A

3 What is SOCKS? SOCKS = Secured Over Credential-based Kerberos Services
Proxy definition: Server that relays request from a client to a server SOCKS is protocol that defines the communication from user to the proxy SOCKS relays a user’s TCP/UDP session over a firewall. Allow transparent access for the application users.

4 What is SOCKS? Similar to a HTTP Proxy

5 Characteristics and advantages of SOCKS
SOCKS is part of Session layer. Transparent support for any protocols above of Session layers.

6 Characteristics and advantages of SOCKS
Two versions of SOCKS SOCKSv4 SOCKSv5 How does it work: 3 steps Generation of connection requests Establishment of proxy circuits Relaying applicative data Authentication (only in version 5)

7 Characteristics and advantages of SOCKS
Any applications can use SOCKS Support UDP (version 5) Proxy bi-directional Use domain name (DNS) instead of IP address Authentication is available in version 5 to assure user identity and its privileges.

8 Applications SOCKS can be use by anyone, companies or individual
Sample Servers available online: SS5 Socks Server OpenSSH (support SOCKS) WinSocks - Socks Proxy Server Sample Clients available online: WideCap HTTP-Tunnel Client ProxyCap

9 Security about SOCKS ONLY a protocol that routes network packets between client and the SOCKS proxy server No built-in security feature besides Authentication in Version 5 Needs to pair with security protocol to secure communication: ex, SSH, HTTPS, etc. Security Goal Features Confidentiality None Integrity Authentication Available in V5

10 SOCKS Case Study: HTTP Proxy With Firewall

11 SOCKS Case Study: SOCKS Proxy with Firewall
SOCKS Proxy overview behind firewall

12 SOCKS Case Study: SOCKS Proxy
Data sent between User and SOCKS Proxy are not secured. No Confidentiality/Integrity is guaranteed Authentication is available in Version 5 only. Recommend to use SSH Tunnel between User and SOCKS Proxy. HTTP Request still in clear text leaving SOCKS Proxy => Use HTTPS.

13 SOCKS Case Study: Anonymity Software using SOCKS
TOR uses SOCKS proxy to provide anonymity to users.

14 Reference Wikipedia: RFC 1929 RFC1928 RFC 1961
RFC 1929 Username/Password Authentication for SOCKS ver 5 RFC1928 SOCKS Protocol ver 5 RFC 1961  GSS-API Authentication Method for SOCKS ver 5

15 ?

Download ppt "SOCKS (SOCKet Secure) Presentation by: Group KangKong"

Similar presentations

Hypertext Transfer PROTOCOL ----HTTP Sen Wang CSE5232 Network Programming.

Hypertext Transfer PROTOCOL ----HTTP Sen Wang CSE5232 Network Programming.
VOYAGER: Yet Another Secure Web Browser to Demonstrate Secure Socket Layer Working and Implementation By : Shrinivas G. Deshpande Advisor: Dr. Chung E.

VOYAGER: Yet Another Secure Web Browser to Demonstrate Secure Socket Layer Working and Implementation By : Shrinivas G. Deshpande Advisor: Dr. Chung E.
BASIC CRYPTOGRAPHY CONCEPT. Secure Socket Layer (SSL)  SSL was first used by Netscape.  To ensure security of data sent through HTTP, LDAP or POP3.

BASIC CRYPTOGRAPHY CONCEPT. Secure Socket Layer (SSL)  SSL was first used by Netscape.  To ensure security of data sent through HTTP, LDAP or POP3.
Module 5: Configuring Access to Internal Resources.

Module 5: Configuring Access to Internal Resources.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Network Services Networking for Home and Small Businesses – Chapter 6.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Network Services Networking for Home and Small Businesses – Chapter 6.
H. 323 and firewalls: Problem Statement and Solution Framework Author: Melinda Shore, Nokia Presenter: Shannon McCracken.

H. 323 and firewalls: Problem Statement and Solution Framework Author: Melinda Shore, Nokia Presenter: Shannon McCracken.
K. Salah 1 Chapter 31 Security in the Internet. K. Salah 2 Figure 31.5 Position of TLS Transport Layer Security (TLS) was designed to provide security.

K. Salah 1 Chapter 31 Security in the Internet. K. Salah 2 Figure 31.5 Position of TLS Transport Layer Security (TLS) was designed to provide security.
Chapter 7 Firewalls. Firewall Definition  A network device that enforces network access control based upon a defined security policy.

Chapter 7 Firewalls. Firewall Definition  A network device that enforces network access control based upon a defined security policy.
CS682 Session 6 Prof. Katz. Firewalls An intelligent router? Used as a traffic control mechanism Based on information in the Layer 3 and 4 headers Administrator.

CS682 Session 6 Prof. Katz. Firewalls An intelligent router? Used as a traffic control mechanism Based on information in the Layer 3 and 4 headers Administrator.
Circuit & Application Level Gateways CS-431 Dick Steflik.

Circuit & Application Level Gateways CS-431 Dick Steflik.
FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. 6 Packet Filtering By Whitman, Mattord, & Austin© 2008 Course Technology.

FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. 6 Packet Filtering By Whitman, Mattord, & Austin© 2008 Course Technology.
Proxy Servers CS-480b Dick Steflik Proxy Servers Part of an overall Firewall strategy Sits between the local network and the external network Originally.

Proxy Servers CS-480b Dick Steflik Proxy Servers Part of an overall Firewall strategy Sits between the local network and the external network Originally.
Firewall and Proxy Server Director: Dr. Mort Anvari Name: Anan Chen Date: Summer 2000.

Firewall and Proxy Server Director: Dr. Mort Anvari Name: Anan Chen Date: Summer 2000.
Tor (Anonymity Network) Scott Pardue. Tor Network  Nodes with routers within the network (entry, middle, exit)  Directory servers  Socket Secure (SOCKS)

Tor (Anonymity Network) Scott Pardue. Tor Network  Nodes with routers within the network (entry, middle, exit)  Directory servers  Socket Secure (SOCKS)
1 Advanced Application and Web Filtering. 2 Common security attacks Finding a way into the network Exploiting software bugs, buffer overflows Denial of.

1 Advanced Application and Web Filtering. 2 Common security attacks Finding a way into the network Exploiting software bugs, buffer overflows Denial of.
1 Chapter 6 Network Security Threats. 2 Objectives In this chapter, you will: Learn how to defend against packet sniffers Understand the TCP, UDP, and.

1 Chapter 6 Network Security Threats. 2 Objectives In this chapter, you will: Learn how to defend against packet sniffers Understand the TCP, UDP, and.
Module 1: Reviewing the Suite of TCP/IP Protocols.

Module 1: Reviewing the Suite of TCP/IP Protocols.
Port Knocking Software Project Presentation Paper Study – Part 1 Group member: Liew Jiun Hau (20086034) Lee Shirly (20095815) Ong Ivy (20095040)

Port Knocking Software Project Presentation Paper Study – Part 1 Group member: Liew Jiun Hau ( ) Lee Shirly ( ) Ong Ivy ( )
IT 210 The Internet & World Wide Web introduction.

IT 210 The Internet & World Wide Web introduction.
Packet Filtering. 2 Objectives Describe packets and packet filtering Explain the approaches to packet filtering Recommend specific filtering rules.

Packet Filtering. 2 Objectives Describe packets and packet filtering Explain the approaches to packet filtering Recommend specific filtering rules.

Similar presentations

Ads by Google