9
Telecommunications Networking II Lecture 41d Denial-of-Service Attacks

Telecommunications Networking II

Embed Size (px)

DESCRIPTION

Telecommunications Networking II. Lecture 41d Denial-of-Service Attacks. Network Denial-of-Service Attacks and Other Network-Application-Based Attacks. Network Denial-of-Service Attacks. Attacker’s objective To interrupt or reduce the quality of services…as experienced by legitimate users - PowerPoint PPT Presentation

Citation preview

Page 1: Telecommunications Networking II

Telecommunications Networking II

Lecture 41d

Denial-of-Service Attacks

Page 2: Telecommunications Networking II

Network Denial-of-Service Attacks

andOther Network-Application-

Based Attacks

Page 3: Telecommunications Networking II

Network Denial-of-Service Attacks

• Attacker’s objectiveTo interrupt or reduce the quality of services…as experienced by legitimate users

• Many attacks have innocent counterparts (e.g., someone sends me a very large E-mail attachment, and blocks my access to other messages)

Page 4: Telecommunications Networking II

Network Denial-of-Service Attacks

• The “SYN” Flooding attack:-In TCP, one establishes a connection by sending a synchronization (SYN) message to the host one wishes to communicate with-The attack: send a large number of SYN messages (with phony source addresses) to a host. This overloads the buffer in the host that keeps track of TCP connections (and half-connections) in progress

Page 5: Telecommunications Networking II

TCP SYN Flooding Attack

SYN(500)

SYN(1024), ACK(501)

No acknowledgement of prior SYN segment….

...More new SYN segments

More SYN acknowledgements ...

Page 6: Telecommunications Networking II

Network Denial-of-Service Attacks

• The “SYN” Flooding attack:-Some protection can be gained by configuring networks so that they will not accept IP packets from external (to the network) sources whose source addresses are internal to the network; and which will not allow internal sources to send IP packets to external destinations if the source addresses used are not internal addresses

Page 7: Telecommunications Networking II

Sequence Number Attacks

• Disable a host that is trusted by the target (intended victim) machine

• Initiate a TCP connection by impersonating the disabled host (I.e., use it’s IP address) and sending a SYN message.

• Guess the initial sequence number that the target system will use; and respond with an acknowledgement.

Page 8: Telecommunications Networking II

TCP Sequence Number Attack

SYN(500)

SYN(800), ACK(501)

ACK(801)

ACK(801), data

ACK(801), FIN(1012)

ACK(1013)

ACK(1013), FIN(800)

ACK(801)

ACK( )

Ref: “Firewalls and Internet Security”

Page 9: Telecommunications Networking II

Other Network-based Attacks

• See Cheswick and Bellovin Chapter 2

• Many network-based attacks are caused by the lack of strong authentication of sources (e.g., it is easy to impersonate another machine by using its IP address) and lack of encryption on IP network links


Networking And Telecommunications

Networking And Telecommunications

Technology
Telecommunications & Networks Lab Mesh Networking Angelakis Vangelis 20 / 1 / 2005

Telecommunications & Networks Lab Mesh Networking Angelakis Vangelis 20 / 1 / 2005

Documents
Telecommunications Networking II Lecture 41a Information Assurance

Telecommunications Networking II Lecture 41a Information Assurance

Documents
Telecommunications & Networking Networking Fundamentals Copyright © Texas Education Agency, 2013. All rights reserved.1

Telecommunications & Networking Networking Fundamentals Copyright © Texas Education Agency, 2013. All rights reserved.1

Documents
ISEM 3410 Telecommunications and Networking in Business

ISEM 3410 Telecommunications and Networking in Business

Documents
Telecommunications Essentials Chapter 7 Wide Area Networking

Telecommunications Essentials Chapter 7 Wide Area Networking

Documents
9. ENTERPRISE NETWORKING & THE INTERNET. ENTERPRISE NETWORK HARDWARE; SOFTWARE; TELECOMMUNICATIONS, DATA RESOURCESHARDWARE; SOFTWARE; TELECOMMUNICATIONS,

9. ENTERPRISE NETWORKING & THE INTERNET. ENTERPRISE NETWORK HARDWARE; SOFTWARE; TELECOMMUNICATIONS, DATA RESOURCESHARDWARE; SOFTWARE; TELECOMMUNICATIONS,

Documents
ISEM 3015 Telecommunications and networking in business

ISEM 3015 Telecommunications and networking in business

Documents
Chapter 6 Telecommunications and Networking Slide 1 Well, Sort-of

Chapter 6 Telecommunications and Networking Slide 1 Well, Sort-of

Documents
CS610 Cases on Telecommunications and Networking

CS610 Cases on Telecommunications and Networking

Documents
Data Communications Networking and Telecommunications topics for the Business Student

Data Communications Networking and Telecommunications topics for the Business Student

Documents
Telecommunications and Networking PolySwitch ... · 302 PolySwitch Telecommunications and Networking Resettable Devices Raychem Circuit Protection 4 Step 1. Review the Protection

Telecommunications and Networking PolySwitch ... · 302 PolySwitch Telecommunications and Networking Resettable Devices Raychem Circuit Protection 4 Step 1. Review the Protection

Documents
Telecommunications and Networking · Copyright 2008-13 Andrew Snow All Rights Reserved 1 Tutorial: “Protecting Critical Telecommunications and Networking Infrastructure” The Twelfth

Telecommunications and Networking · Copyright 2008-13 Andrew Snow All Rights Reserved 1 Tutorial: “Protecting Critical Telecommunications and Networking Infrastructure” The Twelfth

Documents
Telecommunications and Networking MIS 503 - Management Information Systems MBA Program

Telecommunications and Networking MIS 503 - Management Information Systems MBA Program

Documents
Navigating the Web MIS 5105 Dr. Garrett. The need for networking Key elements of telecommunications and networking The telecommunications industry Online

Navigating the Web MIS 5105 Dr. Garrett. The need for networking Key elements of telecommunications and networking The telecommunications industry Online

Documents
EXCHANGE SERVICE UPDATE DECEMBER 2, 2008 ISC Networking & Telecommunications

EXCHANGE SERVICE UPDATE DECEMBER 2, 2008 ISC Networking & Telecommunications

Documents
Protecting Critical Telecommunications and Networking Infrastructure

Protecting Critical Telecommunications and Networking Infrastructure

Documents
EMAIL-SIG SERVICE UPDATE JUNE 15, 2010 ISC Networking & Telecommunications

EMAIL-SIG SERVICE UPDATE JUNE 15, 2010 ISC Networking & Telecommunications

Documents
Telecommunications Networking II Lecture 41f Viruses and Worms

Telecommunications Networking II Lecture 41f Viruses and Worms

Documents
Tutorial: “Protecting Critical Telecommunications and Networking

Tutorial: “Protecting Critical Telecommunications and Networking

Documents
Telecommunications MSc - ReportLabtelecommunications engineers, consultants or systems architects in networking technologies. Employability The Telecommunications MSc programme provides

Telecommunications MSc - ReportLabtelecommunications engineers, consultants or systems architects in networking technologies. Employability The Telecommunications MSc programme provides

Documents
Chapter 4: Telecommunications and Networking

Chapter 4: Telecommunications and Networking

Documents
ZIMBRA SERVICE UPDATE DECEMBER 2, 2008 ISC Networking & Telecommunications

ZIMBRA SERVICE UPDATE DECEMBER 2, 2008 ISC Networking & Telecommunications

Documents
Overview to Networking and Telecommunications

Overview to Networking and Telecommunications

Documents
Telecommunications & Networking Networking Fundamentals ©UNT in partnership with TEA1

Telecommunications & Networking Networking Fundamentals ©UNT in partnership with TEA1

Documents
Telecommunications Networking II Lecture 41g Intrusion Detection

Telecommunications Networking II Lecture 41g Intrusion Detection

Documents
Telecommunications and Networking 1866

Telecommunications and Networking 1866

Documents
CSIS 4823 Data Communications Networking - Telecommunications

CSIS 4823 Data Communications Networking - Telecommunications

Documents
ISC NETWORKING AND TELECOMMUNICATION SERVICES SUPPORT ... · ISC NETWORKING AND TELECOMMUNICATION SERVICES SUPPORT PROVIDER RESOURCES DECEMBER 2011 ISC Networking and Telecommunications

ISC NETWORKING AND TELECOMMUNICATION SERVICES SUPPORT ... · ISC NETWORKING AND TELECOMMUNICATION SERVICES SUPPORT PROVIDER RESOURCES DECEMBER 2011 ISC Networking and Telecommunications

Documents
Data Communications Networking and Telecommunications topics for the Business Student

Data Communications Networking and Telecommunications topics for the Business Student

Documents