Presentation is loading. Please wait.

Presentation is loading. Please wait.

Department of Information Engineering1 About your assignment 5 -layers Model Application Layer(HTTP, DNS,...) TCP Layer(add sequence number to packets)

Published byDuane Ryan Modified over 9 years ago

Similar presentations

Presentation on theme: "Department of Information Engineering1 About your assignment 5 -layers Model Application Layer(HTTP, DNS,...) TCP Layer(add sequence number to packets)"— Presentation transcript:

1 Department of Information Engineering1 About your assignment 5 -layers Model Application Layer(HTTP, DNS,...) TCP Layer(add sequence number to packets) IP Layer(for addressing) Data Link Layer(Ethernet, PPP) Physical Layer(wire, wireless, optical fibre,... )

2 Department of Information Engineering2 Hacking Common security problems –virus malicious computer program that makes copies of itself and attaches those copies to other programs –Trojan horse a program that appears to have one ubiquitous function, but actually has a hidden malicious function

3 Department of Information Engineering3 Hacking Dictionary attack –try all possible words in a dictionary and compare with the encrypted password in the server –need to get the password file first mary One-way encrypting function password xo12u50zag dictionary Password file

4 Department of Information Engineering4 Denial of Service Attack Sends fake IP packets to the web server –server sends an reply to the client, waiting for the HTTP message to arrive –but the source address is faked, so the server has to wait forever a server can only support a limited number of concurrent requests, if all these requests are faked, then the server cannot do any useful work

5 Department of Information Engineering5 Denial of Service Attack How to prevent it? –charge the packets ! –check the IP address at the source

6 Department of Information Engineering6 Denial of Service Attack Details of the attack –client > initial packet with a sequence no to server –server> return its own sequence no to client –client> OK, I got your sequence number –client> the request –server> return the requested file –client> disconnect –server> disconnect

7 Department of Information Engineering7 Christmas 1994 25th December, 1994, 14:09:32... –Security expert Tsutomu Shimomura was on a skiing trip –meanwhile his computer in was break-in by a hacker 15th February, 1995 –By tracing the traffic log, Kevin Mitnick, the most wanted computer outlaw, was caught Paperbacks and movie about the story –Takedown by Shimomura and John Markoff –The Fugitive Game by Jonathan Littman –Takedown (movie) by Miramax

8 Department of Information Engineering8 IP spoofing Security hole in remote login (rlogin) –authentication based on IP address –password is not required IP spoofing attack –host A: attacker host B: the machine to be attacked host C: the machine impersonated by the attacker, C is trusted by B –A sends the 1st packet to host B using the false IP source address (host C) –B checks the IP, verifies it, find nothing wrong, so let the hacker login without checking the password

9 Department of Information Engineering9 3-way handshakes Problem: 3-way handshakes –1st segment: A --------------> B –2nd segment: A <-- ------------ B –3rd segment: A --- ACK ---> B –BUT B sends the 2nd segment to C, so that A cannot return the ACK to B without knowing the sequence number used by B A (hacker) B (machine under attacked) C (friend of B) 1st2nd

10 Department of Information Engineering10 Sequence number prediction BUT the ISN of B can be guessed!! First, the hacker makes a real connection to B –because the connection is real, the 2nd segment sent by B will be received by the hacker –the 2nd TCP segment contains the number of B –after getting the number of B, the hacker launches the attack –return the 3rd packet using the guessed ISN –how to guess the number? –the number is incremented by 128000 for every new connection

11 Department of Information Engineering11 Sequence number prediction so that for two consecutive connection requests, the ISN will be differed by 128,000 if there is no other connection request to the server during that time, the ISN can be guessed accurately and easily the best time to attack is when there is little connection requests to the server –Christmas so after sending the 1st packet to B, A sends the the 3rd packet to B with the guessed number

12 Department of Information Engineering12 SYN flooding but the story does not end here, note that when B sends the 2nd packet to C, C will return a packet (reset) and spoils the attack To prevent C from returning the packet, A sends a large number of SYN packets (the first packet) to C using dead site as source address C receives a lot of connection requests and opens up many half-open connections (waiting the the 3rd packet to return) but since the source is a non-existing host, the 3rd handshake never come back prevent C from receiving anything from B

Download ppt "Department of Information Engineering1 About your assignment 5 -layers Model Application Layer(HTTP, DNS,...) TCP Layer(add sequence number to packets)"

Similar presentations

Module X Session Hijacking

Module X Session Hijacking
ARP Cache Poisoning How the outdated Address Resolution Protocol can be easily abused to carry out a Man In The Middle attack across an entire network.

ARP Cache Poisoning How the outdated Address Resolution Protocol can be easily abused to carry out a Man In The Middle attack across an entire network.
1 Topic 2 – Lesson 4 Packet Filtering Part I. 2 Basic Questions What is packet filtering? What is packet filtering? What elements are inside an IP header?

1 Topic 2 – Lesson 4 Packet Filtering Part I. 2 Basic Questions What is packet filtering? What is packet filtering? What elements are inside an IP header?
Computer Security and Penetration Testing

Computer Security and Penetration Testing
Are you secured in the network ?: a quick look at the TCP/IP protocols Based on: A look back at “Security Problems in the TCP/IP Protocol Suite” by Steven.

Are you secured in the network ?: a quick look at the TCP/IP protocols Based on: A look back at “Security Problems in the TCP/IP Protocol Suite” by Steven.
Data Communications and Computer Networks Chapter 1 CS 3830 Lecture 5 Omar Meqdadi Department of Computer Science and Software Engineering University of.

Data Communications and Computer Networks Chapter 1 CS 3830 Lecture 5 Omar Meqdadi Department of Computer Science and Software Engineering University of.
1 Reading Log Files. 2 Segment Format

1 Reading Log Files. 2 Segment Format
ICT & Crime Data theft, phishing & pharming. Data loss/theft Data is often the most valuable commodity any business has. The cost of creating data again.

ICT & Crime Data theft, phishing & pharming. Data loss/theft Data is often the most valuable commodity any business has. The cost of creating data again.
Sniffing, Spoofing, Hijacking This presentation is an amalgam of presentations by Mark Michael, Randy Marchany and Ed Skoudis. I have edited and added.

Sniffing, Spoofing, Hijacking This presentation is an amalgam of presentations by Mark Michael, Randy Marchany and Ed Skoudis. I have edited and added.
1 Topic 1 – Lesson 3 Network Attacks Summary. 2 Questions ► Compare passive attacks and active attacks ► How do packet sniffers work? How to mitigate?

1 Topic 1 – Lesson 3 Network Attacks Summary. 2 Questions ► Compare passive attacks and active attacks ► How do packet sniffers work? How to mitigate?
Suneeta Chawla Web Security Presentation Topic : IP Spoofing Date : 03/24/04.

Suneeta Chawla Web Security Presentation Topic : IP Spoofing Date : 03/24/04.
Phishing (pronounced “fishing”) is the process of sending e-mail messages to lure Internet users into revealing personal information such as credit card.

Phishing (pronounced “fishing”) is the process of sending messages to lure Internet users into revealing personal information such as credit card.
Hacker, Cracker?! Are they the same? No!!! Hacker programmers intensely interested in the arcane and recondite workings of any computer operating system.

Hacker, Cracker?! Are they the same? No!!! Hacker programmers intensely interested in the arcane and recondite workings of any computer operating system.
Security (Continued) V.T. Raja, Ph.D., Oregon State University.

Security (Continued) V.T. Raja, Ph.D., Oregon State University.
Hacking Presented By :KUMAR ANAND SINGH 04-243,ETC/2008.

Hacking Presented By :KUMAR ANAND SINGH ,ETC/2008.
Network Attacks Mark Shtern.

Network Attacks Mark Shtern.
James Tam Computer Security Concepts covered Malicious computer programs Malicious computer use Security measures.

James Tam Computer Security Concepts covered Malicious computer programs Malicious computer use Security measures.
Information Security 1 Information Security: Demo of Some Security Tools Jeffy Mwakalinga.

Information Security 1 Information Security: Demo of Some Security Tools Jeffy Mwakalinga.
CMSC 414 Computer (and Network) Security Lecture 16 Jonathan Katz.

CMSC 414 Computer (and Network) Security Lecture 16 Jonathan Katz.
Slide 1 Attacks on TCP/IP. slide 2 Security Issues in TCP/IP uNetwork packets pass by untrusted hosts Eavesdropping (packet sniffing) uIP addresses are.

Slide 1 Attacks on TCP/IP. slide 2 Security Issues in TCP/IP uNetwork packets pass by untrusted hosts Eavesdropping (packet sniffing) uIP addresses are.

Similar presentations

Ads by Google