Network Security and Management

1

Rotor machine

In cryptography, a rotor machine is an electro-mechanical device used for encrypting and

decrypting secret messages. Rotor machines were the cryptographic state-of-the-art for a brief

but prominent period of history; they were in widespread use in the 1930s–1950s. The most

famous example is the Enigma machine.

The primary component is a set of rotors, also termed wheels or drums, which are rotating

disks with an array of electrical contacts on either side. The wiring between the contacts

implements a fixed substitution of letters, replacing them in some complex fashion. On its own,

this would offer little security; however, after encrypting each letter, the rotors advance

positions, changing the substitution. By this means, a rotor machine produces a complex

polyalphabetic substitution cipher.

The machine consists of a set of independently rotating cylinders through which electrical

pulses can flow. Each cylinder has 26 input pins and 26 output pins, with internal wiring that

connects each input pin to a unique output pin. For simplicity, only three of the internal

connections in each cylinder are shown.

Network Security and Management

2

Consider a machine with a single cylinder. After each input key is depressed, the cylinder

rotates one position, so that the internal connections are shifted accordingly. Thus, a different

monoalphabetic substitution cipher is defined. After 26 letters of plaintext, the cylinder would

be back to the initial position. Thus, we have a polyalphabetic substitution algorithm with a

period of 26.

A single-cylinder system is trivial and does not present a formidable cryptanalytic task. The

power of the rotor machine is in the use of multiple cylinders, in which the output pins of one

cylinder are connected to the input pins of the next. Figure above shows a three-cylinder

system. The left half of the figure shows a position in which the input from the operator to the

first pin (plaintext letter a) is routed through the three cylinders to appear at the output of the

second pin (ciphertext letter B).

With multiple cylinders, the one closest to the operator input rotates one pin position with each

keystroke. The right half of Figure shows the system's configuration after a single keystroke. For

every complete rotation of the inner cylinder, the middle cylinder rotates one pin position.

Finally, for every complete rotation of the middle cylinder, the outer cylinder rotates one pin

position. The result is that there are 26 x 26 x 26 = 17,576 different substitution alphabets used

before the system repeats.

Steganography

Steganography is the art and science of writing hidden messages in such a way that no one,

apart from the sender and intended recipient, suspects the existence of the message, a form of

security through obscurity. The word steganography is of Greek origin and means "concealed

writing" from the Greek words steganos meaning "covered or protected", and graphein meaning

"to write".

The advantage of steganography, over cryptography alone, is that messages do not attract

attention to themselves. Plainly visible encrypted messages—no matter how unbreakable—will

arouse suspicion, and may in themselves be incriminating in countries where encryption is

illegal. Therefore, whereas cryptography protects the contents of a message, steganography can

be said to protect both messages and communicating parties.

Steganography includes the concealment of information within computer files. In digital

steganography, electronic communications may include steganographic coding inside of a

transport layer, such as a document file, image file, program or protocol. Media files are ideal for

steganographic transmission because of their large size. As a simple example, a sender might

start with an innocuous image file and adjust the color of every 100th pixel to correspond to a

letter in the alphabet, a change so subtle that someone not specifically looking for it is unlikely

to notice it.

Network Security and Management

3

Data Encryption Standard

The Data Encryption Standard (DES) is a block cipher (a form of shared secret encryption) that

was selected by the National Bureau of Standards as an official Federal Information Processing

Standard (FIPS) for the United States in 1976 and which has subsequently enjoyed widespread

use internationally. It is based on a symmetric-key algorithm that uses a 56-bit key. The

algorithm was initially controversial with classified design elements, a relatively short key

length, and suspicions about a National Security Agency (NSA) backdoor. DES consequently

came under intense academic scrutiny which motivated the modern understanding of block

ciphers and their cryptanalysis.

The algorithm is designed to encipher and decipher blocks of data consisting of 64 bits under

control of a 64-bit key.

A DES key consists of 64 binary digits ("0"s or "1"s) of which 56 bits are randomly generated

and used directly by the algorithm. The other 8 bits, which are not used by the algorithm, may

be used for error detection. The 8 error detecting bits are set to make the parity of each 8-bit

byte of the key odd, i.e., there is an odd number of "1"s in each 8-bit byte1. A TDEA key consists

of three DES keys, which is also referred to as a key bundle. Authorized users of encrypted

computer data must have the key that was used to encipher the data in order to decrypt it.

A block to be enciphered is subjected to an initial permutation IP, then to a complex key-

dependent computation and finally to a permutation which is the inverse of the initial

permutation IP-1. The key-dependent computation can be simply defined in terms of a function

f, called the cipher function, and a function KS, called the key schedule.

Network Security and Management

4

Network Security and Management

5

Enciphering:

The computation which uses the permuted input block as its input to produce the preoutput

block consists, but for a final interchange of blocks, of 16 iterations of a calculation that is

described below in terms of the cipher function f which operates on two blocks, one of 32 bits

and one of 48 bits, and produces a block of 32 bits.

Let the 64 bits of the input block to an iteration consist of a 32 bit block L followed by a 32 bit

block R. Using the notation defined in the introduction, the input block is then LR.

Let K be a block of 48 bits chosen from the 64-bit key. Then the output L'R' of an iteration with

input LR is defined by:

L' = R

R' = L ⊕ f(R,K)

Deciphering:

The permutation IP-1 applied to the preoutput block is the inverse of the initial permutation IP

applied to the input.

R = L'

L = R' ⊕ f(L',K)

Consequently, to decipher it is only necessary to apply the very same algorithm to an

enciphered message block, taking care that at each iteration of the computation the same block

of key bits K is used during decipherment as was used during the encipherment of the block.

The Cipher Function f

A sketch of the calculation of f(R,K) is given in Figure

Network Security and Management

6

Let E denote a function which takes a block of 32 bits as input and yields a block of 48 bits as

output. Let E be such that the 48 bits of its output, written as 8 blocks of 6 bits each.

Each of the unique selection functions S1,S2,...,S8, takes a 6-bit block as input and yields a 4-bit

block as output.

The permutation function P yields a 32-bit output from a 32-bit input by permuting the bits of

the input block.

Network Security and Management

7

Network Security and Management

8

Figure: General Depiction of DES

The Avalanche Effect

A desirable property of any encryption algorithm is that a small change in either the plaintext or

the key should produce a significant change in the ciphertext. In particular, a change in one bit

of the plaintext or one bit of the key should produce a change in many bits of the ciphertext. If

the change were small, this might provide a way to reduce the size of the plaintext or key space

to be searched.

Network Security and Management

9

Table: Avalanche Effect in DES

(a) Change in Plaintext (b) Change in Key

Round

Number of bits that

differ Round

Number of bits that

differ

0 1 0 0

1 6 1 2

2 21 2 14

3 35 3 28

4 39 4 32

5 34 5 30

6 32 6 32

7 31 7 35

8 29 8 34

9 42 9 40

10 44 10 38

11 32 11 31

12 30 12 33

13 30 13 28

14 26 14 26

15 29 15 34

Network Security and Management

10

Table: Avalanche Effect in DES

(a) Change in Plaintext (b) Change in Key

Round

Number of bits that

differ Round

Number of bits that

differ

16 34 16 35

The Table shows that after just three rounds, 21 bits differ between the two blocks. On

completion, the two ciphertexts differ in 34 bit positions.

Triple DES

In cryptography, Triple DES (3DES) is the common name for the Triple Data Encryption

Algorithm (TDEA) block cipher, which applies the Data Encryption Standard (DES) cipher

algorithm three times to each data block. Because the key size of the original DES cipher was

becoming problematically short, Triple DES was designed to provide a relatively simple method

of increasing the key size of DES to protect against brute force attacks, without designing a

completely new block cipher algorithm.

Keying options

The standards define three keying options:

Keying option 1: All three keys are independent.

Keying option 2: K1 and K2 are independent, and K3 = K1.

Keying option 3: All three keys are identical, i.e. K1 = K2 = K3.

Keying option 1 is the strongest, with 3 x 56 = 168 independent key bits.

Keying option 2 provides less security, with 2 x 56 = 112 key bits. This option is stronger than

simply DES encrypting twice, e.g. with K1 and K2, because it protects against meet-in-the-middle

attacks.

Keying option 3 is no better than DES, with only 56 key bits. This option provides backward

compatibility with DES, because the first and second DES operations simply cancel out. It is no

longer recommended by the National Institute of Standards and Technology (NIST) and not

supported by ISO/IEC 18033-3.

Network Security and Management

11

Block Cipher Design Principles

Although much progress has been made in designing block ciphers that are cryptographically

strong, the basic principles have not changed all that much since the work of Feistel and the DES

design team in the early 1970s. There are three critical aspects of block cipher design: the

number of rounds, design of the function F, and key scheduling.

Number of Rounds

The greater the number of rounds, the more difficult it is to perform cryptanalysis, even for a

relatively weak F. In general, the criterion should be that the number of rounds is chosen so that

known cryptanalytic efforts require greater effort than a simple brute-force key search attack.

This criterion was certainly used in the design of DES. Schneier [SCHN96] observes that for 16-

round DES, a differential cryptanalysis attack is slightly less efficient than brute force: the

differential cryptanalysis attack requires 255.1 operations, whereas brute force requires 255. If

DES had 15 or fewer rounds, differential cryptanalysis would require less effort than brute-

force key search.

This criterion is attractive because it makes it easy to judge the strength of an algorithm and to

compare different algorithms. In the absence of a cryptanalytic breakthrough, the strength of

any algorithm that satisfies the criterion can be judged solely on key length.

Design of Function F

The heart of a Feistel block cipher is the function F. As we have seen, in DES, this function relies

on the use of S-boxes.

Design Criteria for F

The function F provides the element of confusion in a Feistel cipher. Thus, it must be difficult to

"unscramble" the substitution performed by F. One obvious criterion is that F be nonlinear, as

we discussed previously. The more nonlinear F, the more difficult any type of cryptanalysis will

be. In rough terms, the more difficult it is to approximate F by a set of linear equations, the more

nonlinear F is.

S-Box Design

One obvious characteristic of the S-box is its size. An n x m S-box has n input bits and m output

bits. DES has 6 x 4 S-boxes. Blowfish, has 8 x 32 S-boxes. Larger S-boxes, by and large, are more

resistant to differential and linear cryptanalysis.

Network Security and Management

12

Key Schedule Algorithm

A final area of block cipher design, and one that has received less attention than S-box design, is

the key schedule algorithm. With any Feistel block cipher, the key is used to generate one

subkey for each round. In general, we would like to select subkeys to maximize the difficulty of

deducing individual subkeys and the difficulty of working back to the main key. No general

principles for this have yet been promulgated.

Public key certificate

In cryptography, a public key certificate (also known as a digital certificate or identity

certificate) is an electronic document which uses a digital signature to bind together a public

key with an identity — information such as the name of a person or an organization, their

address, and so forth. The certificate can be used to verify that a public key belongs to an

individual.

In a typical public key infrastructure (PKI) scheme, the signature will be of a certificate

authority (CA). In a web of trust scheme, the signature is of either the user (a self-signed

certificate) or other users ("endorsements"). In either case, the signatures on a certificate are

attestations by the certificate signer that the identity information and the public key belong

together.

Key Distribution

For symmetric encryption to work, the two parties to an exchange must share the same key, and

that key must be protected from access by others. Furthermore, frequent key changes are

usually desirable to limit the amount of data compromised if an attacker learns the key.

Therefore, the strength of any cryptographic system rests with the key distribution technique, a

term that refers to the means of delivering a key to two parties who wish to exchange data,

without allowing others to see the key. For two parties A and B, key distribution can be achieved

in a number of ways, as follows:

A can select a key and physically deliver it to B.

A third party can select the key and physically deliver it to A and B.

If A and B have previously and recently used a key, one party can transmit the new key to

the other, encrypted using the old key.

If A and B each has an encrypted connection to a third party C, C can deliver a key on the

encrypted links to A and B.

Network Security and Management

13

Options 1 and 2 call for manual delivery of a key. For link encryption, this is a reasonable

requirement, because each link encryption device is going to be exchanging data only with its

partner on the other end of the link. However, for end-to-end encryption, manual delivery is

awkward. In a distributed system, any given host or terminal may need to engage in exchanges

with many other hosts and terminals over time. Thus, each device needs a number of keys

supplied dynamically. The problem is especially difficult in a wide area distributed system.

Diffie–Hellman key exchange

Diffie–Hellman key exchange (D–H) is a cryptographic protocol that allows two parties that

have no prior knowledge of each other to jointly establish a shared secret key over an insecure

communications channel. This key can then be used to encrypt subsequent communications

using a symmetric key cipher.

Although Diffie–Hellman key agreement itself is an anonymous (non-authenticated) key-

agreement protocol, it provides the basis for a variety of authenticated protocols, and is used to

provide perfect forward secrecy in Transport Layer Security's ephemeral modes.

The simplest, and original, implementation of the protocol uses the multiplicative group of

integers modulo p, where p is prime and g is primitive root mod p.

Alice and Bob agree to use a prime number p=23 and base g=5.

Alice chooses a secret integer a=6, then sends Bob A = ga mod p

A = 56 mod 23 = 8.

Bob chooses a secret integer b=15, then sends Alice B = gb mod p

B = 515 mod 23 = 19.

Alice computes s = B a mod p

196 mod 23 = 2.

Bob computes s = A b mod p

815 mod 23 = 2.

Network Security and Management

14

Both Alice and Bob have arrived at the same value, because gab and gba are equal mod p. Note

that only a, b and gab = gba mod p are kept secret. All the other values – p, g, ga mod p, and gb mod

p – are sent in the clear. Once Alice and Bob compute the shared secret they can use it as an

encryption key, known only to them, for sending messages across the same open

communications channel. Of course, much larger values of a, b, and p would be needed to make

this example secure, since it is easy to try all the possible values of gab mod 23 (there will be, at

most, 22 such values, even if a and b are large). If p were a prime of at least 300 digits, and a and

b were at least 100 digits long, then even the best algorithms known today could not find a

given only g, p, gb mod p and ga mod p, even using all of mankind's computing power.

Here's a more general description of the protocol:

Alice and Bob agree on a finite cyclic group G and a generating element g in G. (This is

usually done long before the rest of the protocol; g is assumed to be known by all

attackers.) We will write the group G multiplicatively.

Alice picks a random natural number a and sends ga to Bob.

Bob picks a random natural number b and sends gb to Alice.

Alice computes (gb)a.

Bob computes (ga)b.

Network Security and Management

15

Figure: General Description of Diffie-Hellman

Network Security and Management

16

RSA

In cryptography, RSA (which stands for Rivest, Shamir and Adleman who first publicly

described it) is an algorithm for public-key cryptography[1]. It is the first algorithm known to be

suitable for signing as well as encryption, and was one of the first great advances in public key

cryptography. RSA is widely used in electronic commerce protocols, and is believed to be secure

given sufficiently long keys and the use of up-to-date implementations.

The RSA algorithm involves three steps: key generation, encryption and decryption.

Key generation

RSA involves a public key and a private key. The public key can be known to everyone and is

used for encrypting messages. Messages encrypted with the public key can only be decrypted

using the private key. The keys for the RSA algorithm are generated the following way:

1. Choose two distinct prime numbers p and q.

For security purposes, the integers p and q should be chosen uniformly at random and should

be of similar bit-length. Prime integers can be efficiently found using a primality test.

2. Compute n = pq.

n is used as the modulus for both the public and private keys

3. Compute φ(pq) = (p − 1)(q − 1). (φ is Euler's totient function).

4. Choose an integer e such that 1 < e < φ(pq), and e and φ(pq) share no divisors other

than 1 (i.e., e and φ(pq) are coprime).

e is released as the public key exponent.

e having a short bit-length and small Hamming weight results in more efficient

encryption. However, small values of e (such as e = 3) have been shown to be less

secure in some settings.

5. Determine d (using modular arithmetic), 1<d<φ(pq) which satisfies the congruence

relation .

Stated differently, ed − 1 can be evenly divided by the totient (p − 1)(q − 1).

This is often computed using the extended Euclidean algorithm.

d is kept as the private key exponent.

The public key consists of the modulus n and the public (or encryption) exponent e. The private

key consists of the private (or decryption) exponent d which must be kept secret.

Network Security and Management

17

Public key (n,e)

Private key (d)

Encryption

Alice transmits her public key (n,e) to Bob and keeps the private key secret. Bob then wishes to

send message M to Alice.

He first turns M into an integer 0 < m < n by using an agreed-upon reversible protocol known as

a padding scheme. He then computes the ciphertext c corresponding to:

This can be done quickly using the method of exponentiation by squaring. Bob then transmits c

to Alice.

Decryption

Alice can recover m from c by using her private key exponent d by the following computation:

Given m, she can recover the original message M by reversing the padding scheme.

A worked example

Here is an example of RSA encryption and decryption. The parameters used here are artificially

small, but one can also use OpenSSL to generate and examine a real keypair.

1. Choose two prime numbers

p = 61 and q = 53

2. Compute n = pq

3. Compute the totients of product. For primes the totient is maximal and equals x − 1.

Therefore

4. Choose any number e > 1 that is coprime to 3120. Choosing a prime number for e leaves

you with a single check: that e is not a divisor of 3120.

e = 17

Network Security and Management

18

5. Compute d such that e.g., by computing the modular

multiplicative inverse of e modulo :

d = 2753

since 17 · 2753 = 46801 and 46801 mod 3120 = 1, this is the correct answer.

(iterating finds (15 times 3120)+1 divided by 17 is 2753, an integer, whereas other

values in place of 15 do not produce an integer. The extended euclidean algorithm finds

the solution to Bézout's identity of 3120x2 + 17x-367=1, and -367 mod 3120 is 2753)

The public key is (n = 3233, e = 17). For a padded message m the encryption function is

or abstractly:

The private key is (n = 3233, d = 2753). The decryption function is or in

its general form:

For instance, in order to encrypt m = 123, we calculate

To decrypt c = 855, we tap

.

Security and practical considerations

Key generation

Finding the large primes p and q is usually done by testing random numbers of the right size

with probabilistic primality tests which quickly eliminate virtually all non-primes.

Numbers p and q should not be 'too close', lest the Fermat factorization for n be successful, if

p − q, for instance is less than 2n1/4 (which for even small 1024-bit values of n is 3×1077) solving

for p and q is trivial. Furthermore, if either p − 1 or q − 1 has only small prime factors, n can be

factored quickly by Pollard's p − 1 algorithm, and these values of p or q should therefore be

discarded as well.

Network Security and Management

19

Speed

RSA is much slower than DES and other symmetric cryptosystems. In practice, Bob typically

encrypts a secret message with a symmetric algorithm, encrypts the (comparatively short)

symmetric key with RSA, and transmits both the RSA-encrypted symmetric key and the

symmetrically-encrypted message to Alice.

This procedure raises additional security issues. For instance, it is of utmost importance to use a

strong random number generator for the symmetric key, because otherwise Eve (an

eavesdropper wanting to see what was sent) could bypass RSA by guessing the symmetric key.

Key distribution

As with all ciphers, how RSA public keys are distributed is important to security. Key

distribution must be secured against a man-in-the-middle attack. Suppose Eve has some way to

give Bob arbitrary keys and make him believe they belong to Alice. Suppose further that Eve can

intercept transmissions between Alice and Bob. Eve sends Bob her own public key, which Bob

believes to be Alice's. Eve can then intercept any ciphertext sent by Bob, decrypt it with her own

private key, keep a copy of the message, encrypt the message with Alice's public key, and send

the new ciphertext to Alice. In principle, neither Alice nor Bob would be able to detect Eve's

presence. Defenses against such attacks are often based on digital certificates or other

components of a public key infrastructure.

Timing attacks

If the attacker Eve knows Alice's hardware in sufficient detail and is able to measure the

decryption times for several known ciphertexts, she can deduce the decryption key d quickly.

This attack can also be applied against the RSA signature scheme. In 2003, Boneh and Brumley

demonstrated a more practical attack capable of recovering RSA factorizations over a network

connection (e.g., from a Secure Socket Layer (SSL)-enabled webserver). This attack takes

advantage of information leaked by the Chinese remainder theorem optimization used by many

RSA implementations.

One way to thwart these attacks is to ensure that the decryption operation takes a constant

amount of time for every ciphertext. However, this approach can significantly reduce

performance.

Network Security and Management

20

Digital signature

A digital signature or digital signature scheme is a mathematical scheme for demonstrating the

authenticity of a digital message or document. A valid digital signature gives a recipient reason

to believe that the message was created by a known sender, and that it was not altered in

transit. Digital signatures are commonly used for software distribution, financial transactions,

and in other cases where it is important to detect forgery and tampering.

Digital signatures employ a type of asymmetric cryptography. For messages sent through an

insecure channel, a properly implemented digital signature gives the receiver reason to believe

the message was sent by the claimed sender. Digital signatures are equivalent to traditional

handwritten signatures in many respects; properly implemented digital signatures are more

difficult to forge than the handwritten type. Digital signature schemes in the sense used here are

cryptographically based, and must be implemented properly to be effective. Digital signatures

can also provide non-repudiation, meaning that the signer cannot successfully claim they did

not sign a message, while also claiming their private key remains secret; further, some non-

repudiation schemes offer a time stamp for the digital signature, so that even if the private key

is exposed, the signature is valid nonetheless. Digitally signed messages may be anything

representable as a bitstring: examples include electronic mail, contracts, or a message sent via

some other cryptographic protocol.

A digital signature scheme typically consists of three algorithms:

A key generation algorithm that selects a private key uniformly at random from a

set of possible private keys. The algorithm outputs the private key and a

corresponding public key.

A signing algorithm which, given a message and a private key, produces a

signature.

A signature verifying algorithm which given a message, public key and a

signature, either accepts or rejects the message's claim to authenticity.

Two main properties are required. First, a signature generated from a fixed message

and fixed private key should verify the authenticity of that message by using the

corresponding public key. Secondly, it should be computationally infeasible to generate

a valid signature for a party who does not possess the private key.

Network Security and Management

21

Digital Signature Standard

The DSS makes use of the Secure Hash Algorithm (SHA) described in Chapter 12 and presents a

new digital signature technique, the Digital Signature Algorithm (DSA).

The DSS Approach

The DSS uses an algorithm that is designed to provide only the digital signature function. Unlike

RSA, it cannot be used for encryption or key exchange. Nevertheless, it is a public-key technique.

Figure contrasts the DSS approach for generating digital signatures to that used with RSA. In the

RSA approach, the message to be signed is input to a hash function that produces a secure hash

code of fixed length. This hash code is then encrypted using the sender's private key to form the

signature. Both the message and the signature are then transmitted. The recipient takes the

message and produces a hash code. The recipient also decrypts the signature using the sender's

public key. If the calculated hash code matches the decrypted signature, the signature is

accepted as valid. Because only the sender knows the private key, only the sender could have

produced a valid signature.

The DSS approach also makes use of a hash function. The hash code is provided as input to a

signature function along with a random number k generated for this particular signature. The

signature function also depends on the sender's private key (PRa)and a set of parameters known

to a group of communicating principals. We can consider this set to constitute a global public

key (PUG). The result is a signature consisting of two components, labeled s and r.

Network Security and Management

22

MD5

In cryptography, MD5 (Message-Digest algorithm 5) is a widely used cryptographic hash

function with a 128-bit hash value. MD5 has been employed in a wide variety of security

applications, and is also commonly used to check the integrity of files. However, it has been

shown that MD5 is not collision resistant; as such, MD5 is not suitable for applications like SSL

certificates or digital signatures that rely on this property. An MD5 hash is typically expressed

as a 32-digit hexadecimal number.

MD5 processes a variable-length message into a fixed-length output of 128 bits. The input

message is broken up into chunks of 512-bit blocks (sixteen 32-bit little endian integers); the

message is padded so that its length is divisible by 512. The padding works as follows: first a

single bit, 1, is appended to the end of the message. This is followed by as many zeros as are

required to bring the length of the message up to 64 bits fewer than a multiple of 512. The

remaining bits are filled up with a 64-bit integer representing the length of the original message,

in bits.

The main MD5 algorithm operates on a 128-bit state, divided into four 32-bit words, denoted A,

B, C and D. These are initialized to certain fixed constants. The main algorithm then operates on

each 512-bit message block in turn, each block modifying the state. The processing of a message

block consists of four similar stages, termed rounds; each round is composed of 16 similar

operations.

The 128-bit (16-byte) MD5 hashes (also termed message digests) are typically represented as a

sequence of 32 hexadecimal digits. The following demonstrates a 43-byte ASCII input and the

corresponding MD5 hash:

MD5("The quick brown fox jumps over the lazy dog")

= 9e107d9d372bb6826bd81d3542a419d6

Even a small change in the message will (with overwhelming probability) result in a mostly

different hash, due to the avalanche effect. For example, adding a period to the end of the

sentence:

MD5("The quick brown fox jumps over the lazy dog.")

= e4d909c290d0fb1ca068ffaddf22cbd0

Network Security and Management

23

SHA-1

In cryptography, SHA-1 is a cryptographic hash function designed by the National Security

Agency (NSA) and published by the NIST as a U.S. Federal Information Processing Standard. SHA

stands for Secure Hash Algorithm. The three SHA algorithms are structured differently and are

distinguished as SHA-0, SHA-1, and SHA-2. SHA-1 is very similar to SHA-0, but corrects an error

in the original SHA hash specification that led to significant weaknesses. The SHA-0 algorithm

was not adopted by many applications. SHA-2 on the other hand significantly differs from the

SHA-1 hash function.

SHA-1 is the most widely used of the existing SHA hash functions, and is employed in several

widely-used security applications and protocols. In 2005, security flaws were identified in SHA-

1, namely that a mathematical weakness might exist, indicating that a stronger hash function

would be desirable.

SHA-1 produces a 160-bit digest from a message with a maximum length of (264 − 1) bits. SHA-1

is based on principles similar to those used by Ronald L. Rivest of MIT in the design of the MD4

and MD5 message digest algorithms, but has a more conservative design.

RIPEMD

RIPEMD-160 (RACE Integrity Primitives Evaluation Message Digest) is a 160-bit message digest

algorithm (and cryptographic hash function). It is an improved version of RIPEMD, which in

turn was based upon the design principles used in MD4, and is similar in performance to the

more popular SHA-1.

There also exist 128, 256 and 320-bit versions of this algorithm, called RIPEMD-128, RIPEMD-

256, and RIPEMD-320, respectively. The 128-bit version was intended only as a drop-in

replacement for the original RIPEMD, which was also 128-bit, and which had been found to have

questionable security. The 256 and 320-bit versions diminish only the chance of accidental

collision, and don't have higher levels of security as compared to, respectively, RIPEMD-128 and

RIPEMD-160.

RIPEMD-160 was designed in the open academic community, in contrast to the NSA-designed

SHA-1 and SHA-2 algorithms. On the other hand, RIPEMD-160 appears to be used somewhat

less frequently than SHA-1, which may have caused it to be less scrutinized than SHA.

Network Security and Management

24

The 160-bit RIPEMD-160 hashes (also termed RIPE message digests) are typically represented

as 40-digit hexadecimal numbers. The following demonstrates a 43-byte ASCII input and the

corresponding RIPEMD-160 hash:

RIPEMD-160("The quick brown fox jumps over the lazy dog") =

37f332f68db77bd9d7edd4969571ad671cf9dd3b

Even a small change in the message will (with overwhelming probability) result in a completely

different hash, e.g. changing d to c:

RIPEMD-160("The quick brown fox jumps over the lazy cog") =

132072df690933835eb8b6ad0b77e7b6f14acad7

Pretty Good Privacy

Pretty Good Privacy (PGP) is a computer program that provides cryptographic privacy and

authentication. PGP is often used for signing, encrypting and decrypting e-mails to increase the

security of e-mail communications. It was created by Philip Zimmermann in 1991.

PGP encryption uses a serial combination of hashing, data compression, symmetric-key

cryptography, and, finally, public-key cryptography; each step uses one of several supported

algorithms. Each public key is bound to a user name and/or an e-mail address.

Network Security and Management

25

PGP Services

General Format of PGP Message(from A to from B)

Network Security and Management

26

Data compression

In computer science and information theory, data compression or source coding is the process

of encoding information using fewer bits (or other information-bearing units) than an

unencoded representation would use, through use of specific encoding schemes.

As with any communication, compressed data communication only works when both the sender

and receiver of the information understand the encoding scheme. For example, this text makes

sense only if the receiver understands that it is intended to be interpreted as characters

representing the English language. Similarly, compressed data can only be understood if the

decoding method is known by the receiver.

Compression is useful because it helps reduce the consumption of expensive resources, such as

hard disk space or transmission bandwidth. On the downside, compressed data must be

decompressed to be used, and this extra processing may be detrimental to some applications.

For instance, a compression scheme for video may require expensive hardware for the video to

be decompressed fast enough to be viewed as it is being decompressed (the option of

decompressing the video in full before watching it may be inconvenient, and requires storage

space for the decompressed video). The design of data compression schemes therefore involves

trade-offs among various factors, including the degree of compression, the amount of distortion

introduced (if using a lossy compression scheme), and the computational resources required to

compress and uncompress the data.

Lossless versus lossy compression

Lossless compression algorithms usually exploit statistical redundancy in such a way as to

represent the sender's data more concisely without error. Lossless compression is possible

because most real-world data has statistical redundancy. For example, in English text, the letter

'e' is much more common than the letter 'z', and the probability that the letter 'q' will be

followed by the letter 'z' is very small. Another kind of compression, called lossy data

compression or perceptual coding, is possible if some loss of fidelity is acceptable. Generally, a

lossy data compression will be guided by research on how people perceive the data in question.

For example, the human eye is more sensitive to subtle variations in luminance than it is to

variations in color. JPEG image compression works in part by "rounding off" some of this less-

important information. Lossy data compression provides a way to obtain the best fidelity for a

given amount of compression. In some cases, transparent (unnoticeable) compression is

desired; in other cases, fidelity is sacrificed to reduce the amount of data as much as possible.

Lossless compression schemes are reversible so that the original data can be reconstructed,

while lossy schemes accept some loss of data in order to achieve higher compression.

However, lossless data compression algorithms will always fail to compress some files; indeed,

any compression algorithm will necessarily fail to compress any data containing no discernible

patterns. Attempts to compress data that has been compressed already will therefore usually

result in an expansion, as will attempts to compress all but the most trivially encrypted data.

Network Security and Management

27

In practice, lossy data compression will also come to a point where compressing again does not

work, although an extremely lossy algorithm, like for example always removing the last byte of a

file, will always compress a file up to the point where it is empty.

An example of lossless vs. lossy compression is the following string:

25.888888888

This string can be compressed as:

25.[9]8

Interpreted as, "twenty five point 9 eights", the original string is perfectly recreated, just written

in a smaller form. In a lossy system, using

26

instead, the exact original data is lost, at the benefit of a smaller file.

Lossy

Lossy image compression is used in digital cameras, to increase storage capacities with minimal

degradation of picture quality. Similarly, DVDs use the lossy MPEG-2 Video codec for video

compression.

In lossy audio compression, methods of psychoacoustics are used to remove non-audible (or

less audible) components of the signal. Compression of human speech is often performed with

even more specialized techniques, so that "speech compression" or "voice coding" is sometimes

distinguished as a separate discipline from "audio compression". Different audio and speech

compression standards are listed under audio codecs. Voice compression is used in Internet

telephony for example, while audio compression is used for CD ripping and is decoded by audio

players.

Lossless

The Lempel-Ziv (LZ) compression methods are among the most popular algorithms for lossless

storage. DEFLATE is a variation on LZ which is optimized for decompression speed and

compression ratio, therefore compression can be slow. DEFLATE is used in PKZIP, gzip and PNG.

LZW (Lempel-Ziv-Welch) is used in GIF images. Also noteworthy are the LZR (LZ-Renau)

methods, which serve as the basis of the Zip method. LZ methods utilize a table-based

compression model where table entries are substituted for repeated strings of data. For most LZ

methods, this table is generated dynamically from earlier data in the input. The table itself is

often Huffman encoded (e.g. SHRI, LZX). A current LZ-based coding scheme that performs well is

LZX, used in Microsoft's CAB format.

Network Security and Management

28

MIME

Multipurpose Internet Mail Extensions (MIME) is an Internet standard that extends the format

of e-mail to support:

Text in character sets other than ASCII

Non-text attachments

Message bodies with multiple parts

Header information in non-ASCII character sets

MIME's use, however, has grown beyond describing the content of e-mail to describing content

type in general, including for the web.

Virtually all human-written Internet e-mail and a fairly large proportion of automated e-mail is

transmitted via SMTP in MIME format. Internet e-mail is so closely associated with the SMTP

and MIME standards that it is sometimes called SMTP/MIME e-mail.

The content types defined by MIME standards are also of importance outside of e-mail, such as

in communication protocols like HTTP for the World Wide Web. HTTP requires that data be

transmitted in the context of e-mail-like messages, although the data most often is not actually

e-mail.

MIME headers

MIME Version

The presence of this header indicates the message is MIME-formatted. The value is typically

"1.0" so this header appears as

MIME-Version: 1.0

It should be noted that implementers have attempted to change the version number in the past

and the change had unforeseen results. It was decided at an IETF meeting to leave the version

number as is even though there have been many updates and versions of MIME.

Content-ID

The Content-ID header is primarily of use in multi-part messages (as discussed below); a

Content-ID is a unique identifier for a message part, allowing it to be referred to (e.g., in IMG

tags of an HTML message allowing the inline display of attached images). The content ID is

contained within angle brackets in the Content-ID header. Here is an example:

Content-ID: <5.31.32252.1057009685@server01.example.net>

Network Security and Management

29

The standards don't really have a lot to say about exactly what is in a Content-ID; they're only

supposed to be globally and permanently unique (meaning that no two are the same, even when

generated by different people in different times and places). To achieve this, some conventions

have been adopted; one of them is to include an at sign (@), with the hostname of the computer

which created the content ID to the right of it.

Content-Type

This header indicates the Internet media type of the message content, consisting of a type and

subtype, for example

Content-Type: text/plain

Content-Disposition

A MIME part can have:

an inline content-disposition, which means that it should be automatically

displayed when the message is displayed, or

an attachment content-disposition, in which case it is not displayed

automatically and requires some form of action from the user to open it.

Content-Transfer-Encoding

The content-transfer-encoding: MIME header has 2-sided significance:

1. It indicates whether or not a binary-to-text encoding scheme has been used on top of the

original encoding as specified within the Content-Type header, and

2. If such a binary-to-text encoding method has been used it states which one.

Suitable for use with normal SMTP:

o 7bit – up to 998 octets per line of the code range 1..127 with CR and LF (codes 13

and 10 respectively) only allowed to appear as part of a CRLF line ending. This is the

default value.

o quoted-printable – used to encode arbitrary octet sequences into a form that

satisfies the rules of 7bit. Designed to be efficient and mostly human readable when

used for text data consisting primarily of US-ASCII characters but also containing a

small proportion of bytes with values outside that range.

o base64 – used to encode arbitrary octet sequences into a form that satisfies the

rules of 7bit. Designed to be efficient for non-text 8 bit data. Sometimes used for text

data that frequently uses non-US-ASCII characters.

Network Security and Management

30

Suitable for use with SMTP servers that support the 8BITMIME SMTP extension:

o 8bit – up to 998 octets per line with CR and LF (codes 13 and 10 respectively) only

allowed to appear as part of a CRLF line ending.

Suitable only for use with SMTP servers that support the BINARYMIME SMTP extension

(RFC 3030):

o binary – any sequence of octets.

S/MIME

S/MIME (Secure/Multipurpose Internet Mail Extensions) is a standard for public key encryption

and signing of MIME data.

S/MIME is on an IETF standards track and defined in a number of documents, most importantly

RFCs. S/MIME was originally developed by RSA Data Security Inc. The original specification

used the recently developed IETF MIME specification with the de facto industry standard

PKCS#7 secure message format.

S/MIME provides the following cryptographic security services for electronic messaging

applications: authentication, message integrity and non-repudiation of origin (using digital

signatures) and privacy and data security (using encryption). S/MIME specifies the

application/pkcs7-mime (smime-type "enveloped-data") type for data enveloping (encrypting):

the whole (prepared) MIME entity to be enveloped is encrypted and packed into an object

which subsequently is inserted into an application/pkcs7-mime MIME entity.

S/MIME functionality is built into the majority of modern e-mail software and interoperates

between them.

Functions

S/MIME provides the following functions:

Enveloped data: This consists of encrypted content of any type and encrypted-content

encryption keys for one or more recipients.

Signed data: A digital signature is formed by taking the message digest of the content to

be signed and then encrypting that with the private key of the signer. The content plus

signature are then encoded using base64 encoding. A signed data message can only be

viewed by a recipient with S/MIME capability.

Clear-signed data: As with signed data, a digital signature of the content is formed.

However, in this case, only the digital signature is encoded using base64. As a result,

recipients without S/MIME capability can view the message content, although they

cannot verify the signature.

Network Security and Management

31

Signed and enveloped data: Signed-only and encrypted-only entities may be nested, so

that encrypted data may be signed and signed data or clear-signed data may be

encrypted.

Kerberos

Kerberos is a computer network authentication protocol, which allows nodes communicating

over a non-secure network to prove their identity to one another in a secure manner. It is also a

suite of free software published by Massachusetts Institute of Technology (MIT) that

implements this protocol. Its designers aimed primarily at a client–server model, and it

provides mutual authentication — both the user and the server verify each other's identity.

Kerberos protocol messages are protected against eavesdropping and replay attacks.

Kerberos builds on symmetric key cryptography and requires a trusted third party. Extensions

to Kerberos can provide for the use of public-key cryptography during certain phases of

authentication.

Description

Kerberos uses as its basis the symmetric Needham-Schroeder protocol. It makes use of a trusted

third party, termed a key distribution center (KDC), which consists of two logically separate

parts: an Authentication Server (AS) and a Ticket Granting Server (TGS). Kerberos works on the

basis of "tickets" which serve to prove the identity of users.

The KDC maintains a database of secret keys; each entity on the network — whether a client or

a server — shares a secret key known only to itself and to the KDC. Knowledge of this key serves

to prove an entity's identity. For communication between two entities, the KDC generates a

session key which they can use to secure their interactions. The security of the protocol relies

heavily on participants maintaining loosely synchronized time and on short-lived assertions of

authenticity called Kerberos tickets.

A simplified and more detailed description of the protocol follows. The following abbreviations

are used:

AS = Authentication Server

SS = Service Server

TGS = Ticket-Granting Server

TGT = Ticket-Granting Ticket

The client authenticates to the AS once using a long-term shared secret (e.g. a password) and

receives a TGT from the AS. Later, when the client wants to contact some SS, it can (re)use this

ticket to get additional tickets from TGS, for SS, without resorting to using the shared secret.

These tickets can be used to prove authentication to SS.

Network Security and Management

32

IPSec

Internet Protocol Security (IPSec) is a protocol suite for securing Internet Protocol (IP)

communications by authenticating and encrypting each IP packet of a data stream. IPsec also

includes protocols for establishing mutual authentication between agents at the beginning of

the session and negotiation of cryptographic keys to be used during the session. IPsec can be

used to protect data flows between a pair of hosts (e.g. computer users or servers), between a

pair of security gateways (e.g. routers or firewalls), or between a security gateway and a host.

IPsec is a dual mode, end-to-end, security scheme operating at the Internet Layer of the Internet

Protocol Suite or OSI model Layer 3. Some other Internet security systems in widespread use,

such as Secure Sockets Layer (SSL), Transport Layer Security (TLS) and Secure Shell (SSH),

operate in the upper layers of these models. Hence, IPsec can be used for protecting any

application traffic across the Internet. Applications don't need to be specifically designed to use

IPsec. The use of TLS/SSL, on the other hand, must typically be incorporated into the design of

applications.

Security Architecture

The IPsec suite is a framework of open standards. IPsec uses the following protocols to perform

various functions:

A security association (SA) is set up by Internet Key Exchange (IKE and IKEv2) or

Kerberized Internet Negotiation of Keys (KINK) by handling negotiation of protocols

and algorithms and to generate the encryption and authentication keys to be used by

IPsec.

Authentication Header (AH) to provide connectionless integrity and data origin

authentication for IP datagrams and to provide protection against replay attacks.

Encapsulating Security Payload (ESP) to provide confidentiality, data origin

authentication, connectionless integrity, an anti-replay service (a form of partial

sequence integrity), and limited traffic flow confidentiality.

Modes of operation

Transport mode

In transport mode, only the payload (the data you transfer) of the IP packet is encrypted and/or

authenticated. The routing is intact, since the IP header is neither modified nor encrypted;

however, when the authentication header is used, the IP addresses cannot be translated, as this

will invalidate the hash value. The transport and application layers are always secured by hash,

so they cannot be modified in any way (for example by translating the port numbers). Transport

mode is used for host-to-host communications.

A means to encapsulate IPsec messages for NAT traversal has been defined by RFC documents

describing the NAT-T mechanism.

Network Security and Management

33

Tunnel mode

In tunnel mode, the entire packet (which need not be IP) is encrypted and/or authenticated. It is

then encapsulated into a new IP packet with a new IP header. Tunnel mode is used to create

Virtual Private Networks for network-to-network communications (e.g. between routers to link

sites), host-to-network communications (e.g. remote user access), and host-to-host

communications (e.g. private chat).

SSL

Transport Layer Security (TLS) and its predecessor, Secure Socket Layer (SSL), are

cryptographic protocols that provide security for communications over networks such as the

Internet. TLS and SSL encrypt the segments of network connections at the Transport Layer end-

to-end.

Several versions of the protocols are in widespread use in applications like web browsing,

electronic mail, Internet faxing, instant messaging and voice-over-IP (VoIP).

The TLS protocol allows client/server applications to communicate across a network in a way

designed to prevent eavesdropping and tampering. TLS provides endpoint authentication and

communications confidentiality over the Internet using cryptography. TLS provides RSA

security with 1024 and 2048 bit strengths.

In typical end-user/browser usage, TLS authentication is unilateral: only the server is

authenticated (the client knows the server's identity), but not vice versa (the client remains

unauthenticated or anonymous).

Working

A TLS client and server negotiate a stateful connection by using a handshaking procedure.

During this handshake, the client and server agree on various parameters used to establish the

connection's security.

The handshake begins when a client connects to a TLS-enabled server requesting a

secure connection, and presents a list of supported CipherSuites (ciphers and hash

functions).

From this list, the server picks the strongest cipher and hash function that it also

supports and notifies the client of the decision.

The server sends back its identification in the form of a digital certificate. The certificate

usually contains the server name, the trusted certificate authority (CA), and the server's

public encryption key.

Network Security and Management

34

The client may contact the server that issued the certificate (the trusted CA as above)

and confirm that the certificate is authentic before proceeding.

In order to generate the session keys used for the secure connection, the client encrypts

a random number (RN) with the server's public key (PbK), and sends the result to the

server. Only the server should be able to decrypt it (with its private key (PvK)): this is

the one fact that makes the keys hidden from third parties, since only the server and the

client have access to this data. The client knows PbK and RN, and the server knows PvK

and (after decryption of the client's message) RN. A third party may only know RN if PvK

has been compromised.

From the random number, both parties generate key material for encryption and

decryption.

This concludes the handshake and begins the secured connection, which is encrypted and

decrypted with the key material until the connection closes.

Difference between SSL Session and SSL Connection

Difference between connection and session is that connection is a live communication channel, and session is a set of negotiated cryptography parameters.

You can close connection, but keep session, even store it to disk, and subsequently resume it

using another connection, may be in completely different process, or even after system reboot (of course, stored session should be kept both on the client and on the server).

On other hand, you can renegotiate TLS parameters and create entirely new session without interrupting connection.

SSL_SESSION object is used for storing sessions to resume them later.

It helps to avoid some resource consuming crypthography operations.

Network Security and Management

35

Firewall

Firewall is a part of a computer system or network that is designed to block unauthorized

access while permitting authorized communications. It is a device or set of devices which is

configured to permit or deny computer applications based upon a set of rules and other criteria.

Firewalls can be implemented in either hardware or software, or a combination of both.

Firewalls are frequently used to prevent unauthorized Internet users from accessing private

networks connected to the Internet, especially intranets. All messages entering or leaving the

intranet pass through the firewall, which examines each message and blocks those that do not

meet the specified security criteria.

Design Principles

1. All traffic from inside to outside, and vice versa, must pass through the firewall. This is

achieved by physically blocking all access to the local network except via the firewall.

Various configurations are possible, as explained later in this section.

2. Only authorized traffic, as defined by the local security policy, will be allowed to pass.

Various types of firewalls are used, which implement various types of security policies,

as explained later in this section.

3. The firewall itself is immune to penetration. This implies that use of a trusted system

with a secure operating system.

There are several types of firewall techniques:

Packet filter: Packet filtering inspects each packet passing through the network and

accepts or rejects it based on user-defined rules. Although difficult to configure, it is

fairly effective and mostly transparent to its users. It is susceptible to IP spoofing.

Application gateway: Applies security mechanisms to specific applications, such as

FTP and Telnet servers. This is very effective, but can impose a performance

degradation.

Circuit-level gateway: Applies security mechanisms when a TCP or UDP connection is

established. Once the connection has been made, packets can flow between the hosts

without further checking.

Proxy server: Intercepts all messages entering and leaving the network. The proxy

server effectively hides the true network addresses.

Network Security and Management

36

Packet Filter

Network layer firewalls, also called packet filters, operate at a relatively low level of the TCP/IP

protocol stack, not allowing packets to pass through the firewall unless they match the

established rule set. The firewall administrator may define the rules; or default rules may apply.

The term "packet filter" originated in the context of BSD operating systems.

Network layer firewalls generally fall into two sub-categories, stateful and stateless. Stateful

firewalls maintain context about active sessions, and use that "state information" to speed

packet processing. Any existing network connection can be described by several properties,

including source and destination IP address, UDP or TCP ports, and the current stage of the

connection's lifetime (including session initiation, handshaking, data transfer, or completion

connection). If a packet does not match an existing connection, it will be evaluated according to

the ruleset for new connections. If a packet matches an existing connection based on

comparison with the firewall's state table, it will be allowed to pass without further processing.

Stateless firewalls require less memory, and can be faster for simple filters that require less

time to filter than to look up a session. They may also be necessary for filtering stateless

network protocols that have no concept of a session. However, they cannot make more complex

decisions based on what stage communications between hosts have reached.

Modern firewalls can filter traffic based on many packet attributes like source IP address,

source port, destination IP address or port, destination service like WWW or FTP. They can

filter based on protocols, TTL values, netblock of originator, of the source, and many other

attributes.

Application Gateway

Application-layer or level firewalls work on the application level of the TCP/IP stack (i.e., all

browser traffic, or all telnet or ftp traffic), and may intercept all packets traveling to or from an

application. They block other packets (usually dropping them without acknowledgment to the

sender). In principle, application firewalls can prevent all unwanted outside traffic from

reaching protected machines.

On inspecting all packets for improper content, firewalls can restrict or prevent outright the

spread of networked computer worms and trojans. The additional inspection criteria can add

extra latency to the forwarding of packets to their destination.

Circuit-Level Gateway

Circuit level gateways work at the session layer of the OSI model, or as a "shim-layer" between

the application layer and the transport layer of the TCP/IP stack. They monitor TCP

handshaking between packets to determine whether a requested session is legitimate.

Information passed to a remote computer through a circuit level gateway appears to have

originated from the gateway. This is useful for hiding information about protected networks.

Circuit level gateways are relatively inexpensive and have the advantage of hiding information

about the private network they protect. On the other hand, they do not filter individual packets.

Network Security and Management

37

Proxy Server

A proxy device (running either on dedicated hardware or as software on a general-purpose

machine) may act as a firewall by responding to input packets (connection requests, for

example) in the manner of an application, whilst blocking other packets.

Proxies make tampering with an internal system from the external network more difficult and

misuse of one internal system would not necessarily cause a security breach exploitable from

outside the firewall (as long as the application proxy remains intact and properly configured).

Conversely, intruders may hijack a publicly-reachable system and use it as a proxy for their own

purposes; the proxy then masquerades as that system to other internal machines. While use of

internal address spaces enhances security, crackers may still employ methods such as IP

spoofing to attempt to pass packets to a target network.

Virus

A computer virus is a computer program that can copy itself[1] and infect a computer. The term

"virus" is also commonly but erroneously used to refer to other types of malware, including but

not limited to adware and spyware programs that do not have the reproductive ability. A true

virus can spread from one computer to another (in some form of executable code) when its host

is taken to the target computer; for instance because a user sent it over a network or the

Internet, or carried it on a removable medium such as a floppy disk, CD, DVD, or USB drive.

Viruses can increase their chances of spreading to other computers by infecting files on a

network file system or a file system that is accessed by another computer.

Life Cycle of a Virus

Creation

Until a few years ago, creating a virus required knowledge of a computer programming

language. Today anyone with even a little programming knowledge can create a virus. Usually,

though, viruses are created by misguided individuals who wish to cause widespread, random

damage to computers.

Replication

Viruses replicate by nature. A well-designed virus will replicate for a long time before it

activates, which allows it plenty of time to spread.

Activation

Viruses that have damage routines will activate when certain conditions are met, for example,

on a certain date or when a particular action is taken by the user. Viruses without damage

routines don't activate, instead causing damage by stealing storage space.

Network Security and Management

38

Discovery

This phase doesn't always come after activation, but it usually does. When a virus is detected

and isolated, it is sent to the International Computer Security Association in Washington, D.C., to

be documented and distributed to antivirus developers. Discovery normally takes place at least

a year before the virus might have become a threat to the computing community.

Assimilation

At this point, antivirus developers modify their software so that it can detect the new virus. This

can take anywhere from one day to six months, depending on the developer and the virus type.

Eradication

If enough users install up-to-date virus protection software, any virus can be wiped out. So far

no viruses have disappeared completely, but some have long ceased to be a major threat.

Types of a virus

Direct Action Viruses

The main purpose of this virus is to replicate and take action when it is executed. When a

specific condition is met, the virus will go into action and infect files in the directory or folder

that it is in and in directories that are specified in the AUTOEXEC.BAT file PATH. This batch file

is always located in the root directory of the hard disk and carries out certain operations when

the computer is booted.

Overwrite Viruses

Virus of this kind is characterized by the fact that it deletes the information contained in the files

that it infects, rendering them partially or totally useless once they have been infected.

The only way to clean a file infected by an overwrite virus is to delete the file completely, thus

losing the original content.

Examples of this virus include: Way, Trj.Reboot, Trivial.88.D.

Boot Virus

This type of virus affects the boot sector of a floppy or hard disk. This is a crucial part of a disk,

in which information on the disk itself is stored together with a program that makes it possible

to boot (start) the computer from the disk.

The best way of avoiding boot viruses is to ensure that floppy disks are write-protected and

never start your computer with an unknown floppy disk in the disk drive.

Examples of boot viruses include: Polyboot.B, AntiEXE.

Network Security and Management

39

Macro Virus

Macro viruses infect files that are created using certain applications or programs that contain

macros. These mini-programs make it possible to automate series of operations so that they are

performed as a single action, thereby saving the user from having to carry them out one by one.

Examples of macro viruses: Relax, Melissa.A, Bablas, O97M/Y2K.

Directory Virus

Directory viruses change the paths that indicate the location of a file. By executing a program

(file with the extension .EXE or .COM) which has been infected by a virus, you are unknowingly

running the virus program, while the original file and program have been previously moved by

the virus.

Once infected it becomes impossible to locate the original files.

Polymorphic Virus

Polymorphic viruses encrypt or encode themselves in a different way (using different

algorithms and encryption keys) every time they infect a system.

This makes it impossible for anti-viruses to find them using string or signature searches

(because they are different in each encryption) and also enables them to create a large number

of copies of themselves.

Examples include: Elkern, Marburg, Satan Bug, and Tuareg.

File Infectors

This type of virus infects programs or executable files (files with an .EXE or .COM extension).

When one of these programs is run, directly or indirectly, the virus is activated, producing the

damaging effects it is programmed to carry out. The majority of existing viruses belong to this

category, and can be classified depending on the actions that they carry out.

Companion Viruses

Companion viruses can be considered file infector viruses like resident or direct action types.

They are known as companion viruses because once they get into the system they "accompany"

the other files that already exist. In other words, in order to carry out their infection routines,

companion viruses can wait in memory until a program is run (resident viruses) or act

immediately by making copies of themselves (direct action viruses).

Some examples include: Stator, Asimov.1539, and Terrax.1069

FAT Virus

The file allocation table or FAT is the part of a disk used to connect information and is a vital

part of the normal functioning of the computer.

This type of virus attack can be especially dangerous, by preventing access to certain sections of

the disk where important files are stored. Damage caused can result in information losses from

Network Security and Management

40

individual files or even entire directories.

Worms

A worm is a program very similar to a virus; it has the ability to self-replicate, and can lead to

negative effects on your system and most importantly they are detected and eliminated by

antiviruses.

Examples of worms include: PSWBugbear.B, Lovgate.F, Trile.C, Sobig.D, Mapson.

Trojans or Trojan Horses

Another unsavory breed of malicious code are Trojans or Trojan horses, which unlike viruses do

not reproduce by infecting other files, nor do they self-replicate like worms.

Logic Bombs

They are not considered viruses because they do not replicate. They are not even programs in

their own right but rather camouflaged segments of other programs.

Their objective is to destroy data on the computer once certain conditions have been met. Logic

bombs go undetected until launched, and the results can be destructive.