8. Network Layer Contents
|
|
- Doreen White
- 5 years ago
- Views:
Transcription
1 Contents 1 / 43 * Earlier Work * IETF IP sec Working Group * IP Security Protocol * Security Associations * Authentication Header * Encapsulation Security Payload * Internet Key Management Protocol * Modular Key Management Protocol * Internet Security Association Key Management Protocol * Discussion Earlier Work 2 / 43 Security Protocol 3 (SP3) * Network layer security protocol developed by NSA. * Uses cryptographic techniques to provide security services for connectionless version of the OSI network layer protocol. * Transport layer messages are processed by SP3 before being passed to lower network sublayers. 1
2 3 / 43 Network Layer Security Protocol (NLSP) * Developed by ISO. * To secure the connectionless network layer protocol (CLNP). * It is an incompatible descendent of SP3. Integrated NLSP (I-NLSP) * To provide security services for IPv4 and CLNP. * Security functions roughly similar to those of SP3. * I_NLSP provides additional functionality, e.g. security label processing. 4 / 43 * The protocols listed above are similar. * They all use encapsulation. * Outgoing plaintext packets are authenticated and/or encrypted and encapsulated in outer network layer headers. * Incoming packets are decapsulated, outer network layer headers are stripped off and the inner packets are authenticated and/or decrypted, and forwarded to the destination. * IP encapsulation requires no changes to existing Internet routing infrastructure. * Authenticated and/or encrypted IP packets have unencrypted, normal-looking outer IP header, can processed as usual. Outer IP header of 'swipe' Authenticated and/or encrypted inner IP packet (complete packet, including header) Authentication data+padding IP encapsulation 2
3 IETF IP sec Working Group 5 / 43 * IP would like to have sufficiently strong cryptographic security mechanisms. * The security mechanisms should be algorithm-independent, so that the cryptographic algorithm can be altered without effecting other parts of the implementation. * Wide variety of security policies should be supported. * The design should avoid adverse impacts on Internet user who do not want security functions. --> The result of this effort was the specification of a security architecture for IPv6 that comprises authentication and encryption mechanisms. * In 1992 the IETF IPsec WG standardized the IP Security Protocol (IPSP) and the Internet Key Management Protocol (IKMP). * The same security architecture that had been designed for IPv6 could be adapted for IPv4 as well. * The security mechanisms specified have to be retrofitted into IPv4 implementations and must be present in IPv6. IP Security Protocol (IPSP) 6 / 43 * IPv6 security architecture comprises data authentication and encryption mechanism, these mechanisms constitute the IPSP. The two security mechanisms of IPSP: * Authentication Header (AH): provides data origin authentication and connectionless data integrity services. It allows the recipient of an IP packet to verify that the originator is authentic and that the packet has not been altered during transmission. * Encapsulation Security Payload (ESP): provides connectionless data confidentiality services. It ensures that only the legitimate recipients of IP packet are able to read it. * Both mechanism are based on the concept of a security association (SA) and may be used together or separately. * Full protection against traffic analysis is not provided. 3
4 Security Associations (SA) 7 / 43 * An SA is an agreement between two or more parties on the security services that they want to use and how they are going to provide it. * This agreement is established through a common set of security related parameters like - authentication algorithm, mode and keys for the AH mechanism, - encryption algorithm, mode, and keys for the ESP mechanism, - the size and presence or absence of the encryption algorithm synchronisation or initialisation vector (IV), - the lifetime of the keys and the SA as a whole, - the source address, including network and subnet address, - the security level of the secured data, such as confidential, secret or unclassified. This is required if multilevel security (MLS) is provided 8 / 43 * When an IP packet is received, it can only be authenticated and/or decrypted if the receiver can link it with an appropriate SA. Hence the IP packet must convey a reference that points to the SA on the receiver's side. * In IPsec this reference is called a security parameter index (SPI). * Each SA is uniquely identified by an SPI value and a destination address. The SPI is a 32 bit value that is negotiated during a key management protocol execution. 4
5 * Depending on the granularity, three keying approaches for setting up SA, distinguished. a) host-oriented keying: all users on a host share the same session key, b) user-oriented keying: each user on a host has a unique sessions for another host, c) session-unique keying: a single session key assigned to a given IP (address, upper-layer protocol, and port number) e.g an FTP session uses another key than the same user's Telnet session. Host A Host B Host A Host B Host A K1 Host B K1 9 / 43 K K2 K2 K3 a) b) c) 10 / 43 * User-oriented and session-unique keying are superior to host-oriented keying. A single computer system will have more than one user, which do not necessarily trust each other. * When host-oriented keying is used and different users exist, it is possible for a user to determine the key via well-know methods, such as a plaintext attack. * The use and handling of SAs and SPI values are different for an individual receiver and for a group of receivers. * When packets are sent to a individual receiver the SPI is usually chosen by the receiver. It typically is the index of a local table of security contexts maintained by the receiver. * If packets are sent to a group of receivers the SPI must be common to all members of the group. Each member should be able to correlate the combination of group address and SPI with the parameters used for secure group communications. 5
6 Authentication Header (AH) 11 / 43 * The IPSP AH mechanism provides data origin authentication and connectionless data integrity services for IP packets. * The AH mechanism has also been extended to support reply protection. * The IPSP AH mechanism provides security by adding authentication data to IP packets. * The authentication data is computed by using a cryptographic authentication algorithm and a corresponding key. * The sender computes the authentication data prior to sending the packets. * The receiver verifies the data upon receipt. * Problem: some fields of the IP packet header may change in transit. * e.g., in the IPv6 header, the Hop Count field value is decremented at each hop, the IPv6 Destination and next address are swapped at every relay of the source route. * e.g., in the IPv4 header, the TTL field value may changed in transit as well. 12 / 43 That means: the sender must prepare a temporary version of the IP packet before computing the authentication data. * This temporary version must be independent of any modifications in transit. * For example the sender must perform for an IPv6 packet the following steps: - 'Hop Count' field set to zero. - If routing header is used, the IP Destination field must be set to the final destination. - Options whose C-bit is set must not be taken in account when computing the authentication data. 6
7 13 / 43 * The authentication data must be computed using a cryptographic algorithm. * Conventional checksum algorithm, such as the 16-bit checksum used by IP, or the 16- or 32-bit polynomial checksum used by Ethernet, should not be used, because they are too simple to break. * The idea of using a keyed one-way hash function for message authentication is to concatenated the message with a secret key and to use the one-way hash function to compute a corresponding message authentication code (MAC) from the concatenate message. * The one-way hash function should be collision-resistant, a feature of MD5, SHA-1, RIPEM. * Keyed MD5, as proposed for IPSP, operates by combining the message with a secret authentication key and then computing an MD5 hash value from the result. 14 / 43 * The key is prepended and appended to the message to prevent certain types of attacks. * The sequence of operations : - temporary version of the message is prepared, - MD5 operates on blocks of 16 bytes, the message padded with zero bytes. - the authentication data is computed as an MD5 hash value of a message obtained by concatenating the key, the message and the key again. * The result of this general procedure is a hash value. With MD5 or RIPEM the result is 128-bit hash value. * In general, the authentication algorithm is negotiated as part of the SA. * Keyed MD5 is the default algorithm in RFC
8 * It is also possible to use public key cryptography for AH computation and verification. * In this case the sender would digitally sign a message and the receiver would verify the digital signature accordingly. * The use of public key cryptography not only requires more computation power on both side, but also larger authentication data fields. * A typical size of a digital signature is bits, which is eight times the length of a keyed MD5 value. * The advantage is to provide non-repudiation of origin services. 15 / / 43 * The format of the IPSP authentication header: Next Length Reserved Header Security Parameter Index (SPI) Authentication Data (n*32 bit) 32 bit IPSP format * 8-bit Next Header field: type of the next payload header (of the IP Protocol) after the AH. * 8-bit length field: the length of the authentication data in 32 bit words. *16-bit Reserved field: for future use; currently set to zero. 32-bit SPI field: identifies the SA for the IP packet on the receiver side. 8
9 17 / 43 * The fixed 64-bit header is followed by the actual authentication data, encoded as a variable number n of 32-bit words. * Typical values for n are 4 in the case of MD4/5;if public keys are used n could be 32. * Protocol number 51 is assigned for the IPSP AH. * Note: presence or absence of an AH does not change IP's behaviour. * TCP/IP protocol implementations may be instructed to reject unauthenticated IP packets. 18 / 43 * To prevent most of the IP address against spoofing and session hijacking attacks, a revised format of the IPSP AH has been proposed. Next Length Reserved Header Security Parameter Index (SPI) Replay Prevention Authentication Data (n*32 bit) 32 bit IPSP format 1) An optional 32-bit Replay Prevention is introduced to provide protection against replay attacks and to assign every packet an unique identifier. 2) The proposal to truncate keyed one-way hash values to 96 bits has been adopted. 9
10 19 / 43 summary advantage: - Provides stronger securityfor the Internet. - AH mechanism does not effect the exportability, nor significantly increase implementation costs. disadvantage: - AH increases IP processing costs and communication latency in participating systems. - Increased latency is primarily due to the calculation of the authentication data by the sender and the receiver of an IP packet. Encapsulating Security Payload 20 / 43 * IPSP AH does not transform the payload data of an IP packet. * another security mechanism must be deployed for data confidentiality services. * This security mechanism is called the encapsulating security payload (ESP). * ESP provides data confidentiality services by encrypting and encapsulating either the payload of an IP packet (transport mode) or the entire packet (tunnel mode). 10
11 IPSP ESP format Security Parameter Index (SPI) * 32-bit SPI: security parameter index on the Initialization Vector (IV) receiver's side. Payload Data * Initialisation Vector (IV): variable number of 32-bit words, where the precise number is defined Padding as a parameter of the SA. * Payload Length: variable-length that includes the 32 bit data that is encrypted with the algorithm specified in the current SA (depends on whether the ESP mechanism is used in transport or tunnel mode). * Padding field: variable length, preferably filled with random bits, resulting length of the Payload data and Padding field is 6 modulo 8. * Pad Length: 8-bit, indicates the total length of the Padding field. * Payload Type: 8-bit, the protocol number for the payload data. Pad Length Paload Type IPSP ESP format 21 / 43 * Only SPI and IV, if present, are not encrypted. * Padding, Pad Length and Payload Type are encrypted together with the Payload Data. * The default algorithm is DES in CBC (cipher block chaining) mode. * ESP protocol number 50 is assigned for the IPSP. 22 / 43 11
12 23 / 43 Transport Mode: * ESP mechanism in transport mode is used to encrypt and encapsulate the upper-layer protocol data, such as ICMP,UDP or TCP. * No additional bandwidth required (no additional encrypted IP headers). * The sending host identifies the senders upper layer protocol and encapsulates the packet in ESP format. * Using the SA user identification and destination IP address applies the cryptographic transformation. * Resulting ESP forms the payload of the IP packet. * IP header is set to 50. * The receiving host processes the IP header and plaintext part of the ESP to obtain the SPI value. * This value is then used as an index for a local SPI table to find the negotiated SA parameters and cryptographic keys. * The encrypted part of the ESP is decrypted using the specified SA 24 / 43 Tunnel Mode: * Entire network layer protocol data units, such as IP or IPX packets, can be encrypted and encapsulated in new IP packets. * Tunnel mode ESP is primarily used by security gateways for packets that are not originating from that gateway but must be securely transmitted. * It can also be used to provide partial traffic flow confidentiality. * Also, a secure tunnel tunnel between security gateways can be created. 12
13 * Sending host obtains the SA using the user identification and destination IP address, and applies the corresponding cryptographic transformation to encrypt the entire IP packet. * That packet is encapsulated in an ESP, which is included as payload in a new IP packet. * IP protocol is set to 50 and the ESP type field is set to 4. * The receiving host processes the unencrypted IP header and plaintext part of the ESP to obtain the SPI value. * This value is used as an index for a local SPI table to find the negotiated SA parameters and cryptographic keys. * The encrypted part of the ESP is decrypted using the encryption algorithm and the key specified in the SA. * The receiver is able to extract the IP packet, that has been tunnelled in ESP through the Internet. 25 / / 43 advantages: * ESP provides stronger security within the Internet. * It will not affect or significantly increase the implementation costs. disadvantages: * Hosts that implement the ESP mechanism experience some performance impact. * Additional processing required for handling the ESP protocol at sending and receiving hosts. * Sender and receiver also need extra expend processor time (proportional to the size of of the packets) to perform actual encryption and decryption. Increased total processing time and latency. 13
14 27 / 43 * AH and ESP mechanism have been designed independently and can be applied separately or together. * If data confidentiality is not required only AH may be used. * Otherwise ESP can be used as well. Internet key management protocol (IKMP) 28 / 43 * Establishment of SA requires shared keys that are only know to the legitimate members of a group. * These keys can be manually configured or distributed and a small number of group is affected. * Efficient key management protocols are required for larger numbers of groups. 14
15 Modular Key Managment Protocol (MKMP) 29 / 43 * Prior to the standardization of IPSP and MKMP a security architecture for the internet was designed. The heart of this architecture are an IP secure tunnel protocol (IPST) and a corresponding modular key management protocol (MKMP) on top of UDP. * IPST is an encapsulation protocol. The packets may be authenticated and/or encrypted similar to IPSP. * MKMP refers to a set of protocols that has been designed for the management of cryptographic keys. Derivation and periodic refreshing of session keys are available. * IPST and MKMP have been prototyped on AIX3.2.5 for IBM's NetSp Secure Network Gateway firewall products. 30 / 43 * A typical key management scheme consist of two modules. -a master key module - a master key may be exchanged or agreed upon between the communicating parties, - a session key module - master key may be used for the derivation, agreement, and/or refreshing of session keys. Manual Key Center-based Certificate-based Movement Key Management Key Management Master Key Module Session Key Module MKMP approach 15
16 * An important design goal of MKMP was to minimize the numbers of exchanged messages and the computational overhead, and to guarantee a basic security principle for session keys (if a session key is derive future session keys and the master key are not compromised). 31 / 43 * Assume A and B already share a master key K from the master key module, and a nonce N b from a previous MKMP session. The following handshake can be used to generate a new session key SK. step1: A-->B: N a, <N a, N b >K step2: B-->A:N b ', <N b ', N a >K A provides B with a nonce N a and a MAC for the concatenation of N a and N b, computed using master key K. B verifies the authenticity of the MAC and returns another N b ' and a MAC (in case of a positive verification). A and B generate session key SK=f k (N b ',N a ), with f K as a pseudo-random function keyed with K. The session key is never transmitted between A and B, there is no need to authenticate and/or encrypt the key. 32 / 43 *note: MKMP is of limited practical use, because it does not provide a solution for the distribution of master key. 16
17 Internet Security Association Key Management Protocol (ISAKMP) * Was designed by NSA. * It can be implemented over any Internet or transport layer protocol. * UDP port 500 is reserved for ISAKMP. * Not bound to any fix mechanism or algorithm, but rather describes a general concept. * ISAKMP can be used to establish an SA between negotiating parties: - During first phase, a basic set of security attributes may be agreed. This basic set provides protection for ISAKMP exchange. It indicates the authentication and key exchange methods. The result is an ISAKMP SA. - In the second phase, the ISAKMP SA is used to negotiate the security services that will be contained in the SA for the other security protocol or application 33 / 43 * The two-phase negotiation causes some overhead, but it also provides additional benefits. * Once negotiated, the ISAKMP SA can be used to negotiate SAs for other entities. The ISAKMP SA can provide additional security during the second negotiation. * ISAKMP supports the creation of five exchanges for the establishment of SAs and related keying material. 1) Base Exchange: allows authentication and key exchange information to be transmitted together. Reduces the number of round trips at the expense of not providing identity protection, because identities are exchanged before a shared secret has been established. 2) Identity Protection Exchange: designed to separate authentication and key exchange information. Provides protection of the entities at the expense of additional messages. The key information is exchanged first, then the encrypted authentication information is sent. 34 / 43 17
18 3) Authentication-Only Exchange: Only allows authentication information to be transmitted. Only performs authentication, without computing keys and shared secrets 4) Aggressive Exchange: Establishes all security relevant information in a single exchange and reduces the overall round trip. This exchange is the most one, but it does not protect the secrecy of the identities. 5) Informational Exchange is designed as a one way transmittal of information that can be used for SA management. 35 / 43 conclusion: * ISAKMP provides a flexible and extensible framework for establishing and managing SAs and cryptographic keys. * The framework consists of header and payload definitions, exchange types for guiding message and payload exchange and some general processing guidelines. * ISAKMP does not define the mechanism that will be used to establishe and manage SAs and cryptographic keys in an authenticated and confidential way. 36 / 43 18
19 OAKLEY 37 / 43 * Can also be used to establish a shared secret with an assigned identifier and associated authenticated identities for the involved parties. * The key determination protocol is based on an authenticated Diffie-Hellman key exchange to achieve PFS for the shared secrets. * The two parties are allowed to select mutually agreeable supporting algorithms for encryption, key exchange, and authentication. * For example the protocol explicitly defines how the two parties can select mathematical structures for performing the Diffie-Hellman key exchange; they can use standard groups or define their own. * Three distinct group representations can be used: 1) Modular exponentiation groups (MODP). 2) Elliptic curve groups over the field GF(2 n ) (EC2N). 3) Elliptic curve groups over GF(p) (ECP). 38 / 43 * The OAKLEY key determination protocol was designed to be a compatible component of ISAKMP for managing SAs. Both run over UDP using a well-known port. * The goal of the OAKLEY protocol is the secure establishment of a common keying information state for the two parties involved. * These are a key name, secret keying material, the identification of the two parties, and three algorithms for use during authentication. * Three algorithms are used for encryption, hashing and authentication. * The OAKLAY main mode exchange has 5 optional features: 1) Stateless cookie exchange 2) PFS for the keying material 3) Secrecy for the identities 4) PFS for identity secrecy 5) Use of signatures (for non-repudiation) 19
20 * The parties can use all or none of these features. * They exchange messages until their requirements are fully met. * The three components of the OAKLEY key determination protocol are 1) Cookie exchange 2) Diffie-Hellman key exchange 3) Authentication 39 / 43 * Cookie exchange can optionally be stateless. * Diffie-Hellman key exchange is optional, but essential for PFS. * Authentication can be performed with privacy for identifiers, privacy for identifiers with PFS, as well as non-repudiation * Most key management protocols are based on UDP. * Since UDP is unreliable, but a key management protocol must be reliable, the reliability must be built into the key management protocols. * Another issue of UDP-based key management protocols is the effect of firewalls, which filter out UDP datagrams. 40 / 43 20
21 DISCUSSION * IPSP and IKMP are both mandatory for IPv6 implementations. * Most current implementation are based on various flavours of UNIX. * If Internet layer security protocols are to be widely deployed, they must be available for MS-DOS and Windows. * Problem: the most widely deployed TCP/IP implementation is not public. * To overcome this problem, a socket-based key management application programming interface (API) was proposed. * The idea is to come up with an environment that allows IPSP and IKMP to exist outside the operation system kernel, to enable implementation, debugging, and updating in a safe environment. 41 / 43 PF_KEY API. * User-level key management programs and the operating system kernel communicate through a socket using the protocol family PF_KEY. * It provides a set of messages that the kernel can use to indicate the need for a new or updated SA. Manual Key Key Management Network applications Maintenance Protocol Maintenance 42 / 43 PF_KEY User Space Network Sockets Interface Kernel Space Socket Interface Kernel Security Associations Table and Engine Network Security Policy Network Protocol Implementation Addition for the IP Security architecture to be implemented Traditional networking implementation Socket based key management API 21
22 * IPSP could be used to established a secure tunnel between two distant firewalls.the IP packet exchanges between two units would be encapsulate into IPSP packets transmitted from one firewall to the other through the Internet. Using AH if authentication is required or ESP if confidentially is needed. 43 / 43 *Use of IPSP and IKMP enables a company to set up a (secure) virtual private network (VPN). A VPN consists of a collection of hosts which could communicate over the public Internet. *An interesting open issue is compression in IPSP.there are two main reasons for putting compression in IPSP: -Properly encrypted data is no longer compressible.if compression and encryption are required, compression must always be performed first. -Internet layer compression can reduce AH and ESP processing costs, as well as the likelihood of IP packet fragmentation 22
Cryptography and Network Security Chapter 16. Fourth Edition by William Stallings
Cryptography and Network Security Chapter 16 Fourth Edition by William Stallings Chapter 16 IP Security If a secret piece of news is divulged by a spy before the time is ripe, he must be put to death,
More informationCSCE 715: Network Systems Security
CSCE 715: Network Systems Security Chin-Tser Huang huangct@cse.sc.edu University of South Carolina Security in Network Layer Implementing security in application layer provides flexibility in security
More informationIPSec. Overview. Overview. Levente Buttyán
IPSec - brief overview - security associations (SAs) - Authentication Header (AH) protocol - Encapsulated Security Payload () protocol - combining SAs (examples) Overview Overview IPSec is an Internet
More informationProtocols, Technologies and Standards Secure network protocols for the OSI stack P2.1 WLAN Security WPA, WPA2, IEEE i, IEEE 802.1X P2.
P2 Protocols, Technologies and Standards Secure network protocols for the OSI stack P2.1 WLAN Security WPA, WPA2, IEEE 802.11i, IEEE 802.1X P2.2 IP Security IPsec transport mode (host-to-host), ESP and
More informationIPSec. Slides by Vitaly Shmatikov UT Austin. slide 1
IPSec Slides by Vitaly Shmatikov UT Austin slide 1 TCP/IP Example slide 2 IP Security Issues Eavesdropping Modification of packets in transit Identity spoofing (forged source IP addresses) Denial of service
More informationThe Internet community has developed application-specific security mechanisms in a number of application areas, including electronic mail (S/MIME,
1 The Internet community has developed application-specific security mechanisms in a number of application areas, including electronic mail (S/MIME, PGP), client/server (Kerberos), Web access (Secure Sockets
More informationNetwork Security - ISA 656 IPsec IPsec Key Management (IKE)
Network Security - ISA 656 IPsec IPsec (IKE) Angelos Stavrou September 28, 2008 What is IPsec, and Why? What is IPsec, and Why? History IPsec Structure Packet Layout Header (AH) AH Layout Encapsulating
More informationINFS 766 Internet Security Protocols. Lectures 7 and 8 IPSEC. Prof. Ravi Sandhu IPSEC ROADMAP
INFS 766 Internet Security Protocols Lectures 7 and 8 IPSEC Prof. Ravi Sandhu IPSEC ROADMAP Security Association IP AH (Authentication Header) Protocol IP ESP (Encapsulating Security Protocol) Authentication
More informationChapter 6. IP Security. Dr. BHARGAVI H. GOSWAMI Department of Computer Science Christ University
Chapter 6 IP Security Dr. BHARGAVI H. GOSWAMI Department of Computer Science Christ University +91 9426669020 bhargavigoswami@gmail.com Topic List 1. IP Security Overview 2. IP Security Architecture 3.
More informationIP Security IK2218/EP2120
IP Security IK2218/EP2120 Markus Hidell, mahidell@kth.se KTH School of ICT Based partly on material by Vitaly Shmatikov, Univ. of Texas Acknowledgements The presentation builds upon material from - Previous
More informationCryptography and Network Security. Sixth Edition by William Stallings
Cryptography and Network Security Sixth Edition by William Stallings Chapter 20 IP Security If a secret piece of news is divulged by a spy before the time is ripe, he must be put to death, together with
More informationIP Security. Have a range of application specific security mechanisms
IP Security IP Security Have a range of application specific security mechanisms eg. S/MIME, PGP, Kerberos, SSL/HTTPS However there are security concerns that cut across protocol layers Would like security
More informationVirtual Private Networks
EN-2000 Reference Manual Document 8 Virtual Private Networks O ne of the principal features of routers is their support of virtual private networks (VPNs). This document discusses transmission security,
More informationChapter 6/8. IP Security
Chapter 6/8 IP Security Prof. Bhargavi H Goswami Department of MCA, Sunshine Group of Institutes, Rajkot, Gujarat, India. Mob: +918140099018. Email: bhargavigoswami@gmail.com Topic List 1. IP Security
More informationChapter 11 The IPSec Security Architecture for the Internet Protocol
Chapter 11 The IPSec Security Architecture for the Internet Protocol IPSec Architecture Security Associations AH / ESP IKE [NetSec], WS 2008/2009 11.1 The TCP/IP Protocol Suite Application Protocol Internet
More informationCSC 6575: Internet Security Fall 2017
CSC 6575: Internet Security Fall 2017 Network Security Devices IP Security Mohammad Ashiqur Rahman Department of Computer Science College of Engineering Tennessee Tech University 2 IPSec Agenda Architecture
More informationInternet security and privacy
Internet security and privacy IPsec 1 Layer 3 App. TCP/UDP IP L2 L1 2 Operating system layers App. TCP/UDP IP L2 L1 User process Kernel process Interface specific Socket API Device driver 3 IPsec Create
More informationVirtual Private Network
VPN and IPsec Virtual Private Network Creates a secure tunnel over a public network Client to firewall Router to router Firewall to firewall Uses the Internet as the public backbone to access a secure
More informationVPN Overview. VPN Types
VPN Types A virtual private network (VPN) connection establishes a secure tunnel between endpoints over a public network such as the Internet. This chapter applies to Site-to-site VPNs on Firepower Threat
More informationLecture 33. Firewalls. Firewall Locations in the Network. Castle and Moat Analogy. Firewall Types. Firewall: Illustration. Security April 15, 2005
Firewalls Lecture 33 Security April 15, 2005 Idea: separate local network from the Internet Trusted hosts and networks Intranet Firewall DMZ Router Demilitarized Zone: publicly accessible servers and networks
More informationThe IPsec protocols. Overview
The IPsec protocols -- components and services -- modes of operation -- Security Associations -- Authenticated Header (AH) -- Encapsulated Security Payload () (c) Levente Buttyán (buttyan@crysys.hu) Overview
More informationIPsec (AH, ESP), IKE. Guevara Noubir CSG254: Network Security
IPsec (AH, ESP), IKE Guevara Noubir noubir@ccs.neu.edu Securing Networks Control/Management (configuration) Applications Layer telnet/ftp: ssh, http: https, mail: PGP (SSL/TLS) Transport Layer (TCP) (IPSec,
More informationLecture 13 Page 1. Lecture 13 Page 3
IPsec Network Security: IPsec CS 239 Computer Software March 2, 2005 Until recently, the IP protocol had no standards for how to apply security Encryption and authentication layered on top Or provided
More informationThe IPSec Security Architecture for the Internet Protocol
Chapter 11 The IPSec Security Architecture for the Internet Protocol [NetSec], WS 2005/2006 11.1 Overview Brief introduction to the Internet Protocol (IP) suite Security problems of IP and objectives of
More informationJunos Security. Chapter 8: IPsec VPNs Juniper Networks, Inc. All rights reserved. Worldwide Education Services
Junos Security Chapter 8: IPsec VPNs 2012 Juniper Networks, Inc. All rights reserved. www.juniper.net Worldwide Education Services Chapter Objectives After successfully completing this chapter, you will
More informationThe World Wide Web is widely used by businesses, government agencies, and many individuals. But the Internet and the Web are extremely vulnerable to
1 The World Wide Web is widely used by businesses, government agencies, and many individuals. But the Internet and the Web are extremely vulnerable to compromises of various sorts, with a range of threats
More informationLecture 12 Page 1. Lecture 12 Page 3
IPsec Network Security: IPsec CS 239 Computer Software February 26, 2003 Until recently, the IP protocol had no standards for how to apply security Encryption and authentication layered on top Or provided
More informationConfiguring Security for VPNs with IPsec
This module describes how to configure basic IPsec VPNs. IPsec is a framework of open standards developed by the IETF. It provides security for the transmission of sensitive information over unprotected
More informationCONTENTS. vii. Chapter 1 TCP/IP Overview 1. Chapter 2 Symmetric-Key Cryptography 33. Acknowledgements
CONTENTS Preface Acknowledgements xiii xvii Chapter 1 TCP/IP Overview 1 1.1 Some History 2 1.2 TCP/IP Protocol Architecture 4 1.2.1 Data-link Layer 4 1.2.2 Network Layer 5 1.2.2.1 Internet Protocol 5 IPv4
More informationConfiguring Internet Key Exchange Security Protocol
Configuring Internet Key Exchange Security Protocol This chapter describes how to configure the Internet Key Exchange (IKE) protocol. IKE is a key management protocol standard that is used in conjunction
More informationIBM i Version 7.2. Security Virtual Private Networking IBM
IBM i Version 7.2 Security Virtual Private Networking IBM IBM i Version 7.2 Security Virtual Private Networking IBM Note Before using this information and the product it supports, read the information
More informationSample excerpt. Virtual Private Networks. Contents
Contents Overview...................................................... 7-3.................................................... 7-5 Overview of...................................... 7-5 IPsec Headers...........................................
More informationCryptography and Network Security
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown Chapter 15 Electronic Mail Security Despite the refusal of VADM Poindexter and LtCol North to appear,
More informationLehrstuhl für Netzarchitekturen und Netzdienste Fakultät für Informatik Technische Universität München. ilab. Lab 8 SSL/TLS and IPSec
Lehrstuhl für Netzarchitekturen und Netzdienste Fakultät für Informatik Technische Universität München ilab Lab 8 SSL/TLS and IPSec Outlook: On Layer 4: Goal: Provide security for one specific port SSL
More informationCIS 6930/4930 Computer and Network Security. Topic 8.1 IPsec
CIS 6930/4930 Computer and Network Security Topic 8.1 IPsec 1 IPsec Objectives Why do we need IPsec? IP V4 has no authentication IP spoofing Payload could be changed without detection. IP V4 has no confidentiality
More informationInternet Security. - IPSec, SSL/TLS, SRTP - 29th. Oct Lee, Choongho
Internet Security - IPSec, SSL/TLS, SRTP - 29th. Oct. 2007 Lee, Choongho chlee@mmlab.snu.ac.kr Contents Introduction IPSec SSL / TLS SRTP Conclusion 2/27 Introduction (1/2) Security Goals Confidentiality
More informationThe EN-4000 in Virtual Private Networks
EN-4000 Reference Manual Document 8 The EN-4000 in Virtual Private Networks O ne of the principal features of routers is their support of virtual private networks (VPNs). This document discusses transmission
More informationIP Security Part 1 04/02/06. Hofstra University Network Security Course, CSC290A
Network Security IP Security Part 1 1 IP Security Overview 1994 RFC1636, Security in the Internet Architecture Identified key needs: Secure network infrastructure from unauthorized monitoring Control network
More informationCSE509: (Intro to) Systems Security
CSE509: (Intro to) Systems Security Fall 2012 Invited Lecture by Vyas Sekar IPSec 2005-12 parts by Matt Bishop, used with permission Security in Real Life: Motivation Site SF Company X $$$ Site NY Site
More informationTransport Level Security
2 Transport Level Security : Security and Cryptography Sirindhorn International Institute of Technology Thammasat University Prepared by Steven Gordon on 28 October 2013 css322y13s2l12, Steve/Courses/2013/s2/css322/lectures/transport.tex,
More informationIP Security. Cunsheng Ding HKUST, Kong Kong, China
IP Security Cunsheng Ding HKUST, Kong Kong, China Agenda Some attacks against the IP Brief introduction to IPSec Building Block: Security Association Building Block: Security Association Database Building
More informationCSC/ECE 574 Computer and Network Security. Outline. Key Management. Key Management. Internet Key Management. Why do we need Internet key management
Computer Science CSC/ECE 574 Computer and Network Security Topic 8.2 Internet Key Management CSC/ECE 574 Dr. Peng Ning 1 Outline Key Management Security Principles Internet Key Management Manual Exchange
More informationOutline. CSC/ECE 574 Computer and Network Security. Key Management. Security Principles. Security Principles (Cont d) Internet Key Management
Outline Computer Science CSC/ECE 574 Computer and Network Security Topic 8.2 Internet Key Management Key Management Security Principles Internet Key Management Manual Exchange SKIP Oakley ISAKMP IKE CSC/ECE
More informationOutline. Key Management. Security Principles. Security Principles (Cont d) Escrow Foilage Protection
Outline CSCI 454/554 Computer and Network Security Topic 8.2 Internet Key Management Key Management Security Principles Internet Key Management Manual Exchange SKIP Oakley ISAKMP IKE 2 Key Management Why
More informationOutline. Key Management. CSCI 454/554 Computer and Network Security. Key Management
CSCI 454/554 Computer and Network Security Topic 8.2 Internet Key Management Key Management Outline Security Principles Internet Key Management Manual Exchange SKIP Oakley ISAKMP IKE 2 Key Management Why
More informationCSCI 454/554 Computer and Network Security. Topic 8.2 Internet Key Management
CSCI 454/554 Computer and Network Security Topic 8.2 Internet Key Management Outline Key Management Security Principles Internet Key Management Manual Exchange SKIP Oakley ISAKMP IKE 2 Key Management Why
More informationCSC 4900 Computer Networks: Security Protocols (2)
CSC 4900 Computer Networks: Security Protocols (2) Professor Henry Carter Fall 2017 Chapter 8 roadmap 8.1 What is network security? 8.2 Principles of cryptography 8.3 Message Integrity 8.4 End point Authentication
More informationChapter 32 Security in the Internet: IPSec, SSL/TLS, PGP,
Chapter 32 Security in the Internet: IPSec, SSL/TLS, PGP, VPN, and Firewalls 32.1 Copyright The McGraw-Hill Companies, Inc. Permission required for reproduction or display. 32.2 Figure 32.1 Common structure
More informationVPN and IPsec. Network Administration Using Linux. Virtual Private Network and IPSec 04/2009
VPN and IPsec Network Administration Using Linux Virtual Private Network and IPSec 04/2009 What is VPN? VPN is an emulation of a private Wide Area Network (WAN) using shared or public IP facilities. A
More informationProtocol Architecture (2) Suguru Yamaguchi Nara Institute of Science and Technology Department of Information Science
Protocol Architecture (2) Suguru Yamaguchi Nara Institute of Science and Technology Department of Information Science History of computer network protocol development in 20 th century. Development of hierarchical
More informationCOSC4377. Chapter 8 roadmap
Lecture 28 Chapter 8 roadmap 8.1 What is network security? 8.2 Principles of cryptography 8.3 Message integrity 8.4 Securing e mail 8.5 Securing TCP connections: SSL 8.6 Network layer security: IPsec 8.7
More informationCryptography and secure channel. May 17, Networks and Security. Thibault Debatty. Outline. Cryptography. Public-key encryption
and secure channel May 17, 2018 1 / 45 1 2 3 4 5 2 / 45 Introduction Simplified model for and decryption key decryption key plain text X KE algorithm KD Y = E(KE, X ) decryption ciphertext algorithm X
More informationCIS 6930/4930 Computer and Network Security. Topic 8.2 Internet Key Management
CIS 6930/4930 Computer and Network Security Topic 8.2 Internet Key Management 1 Key Management Why do we need Internet key management AH and ESP require encryption and authentication keys Process to negotiate
More informationIP Security Discussion Raise with IPv6. Security Architecture for IP (IPsec) Which Layer for Security? Agenda. L97 - IPsec.
IP Security Discussion Raise with IPv6 Security Architecture for IP (IPsec) Security Association (SA), AH-Protocol, -Protocol Operation-Modes, Internet Key Exchange Protocol (IKE) End-to-end security will
More informationSecurity for VPNs with IPsec Configuration Guide, Cisco IOS XE Release 3S
Security for VPNs with IPsec Configuration Guide, Cisco IOS XE Release 3S Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000
More informationComputer Security 3e. Dieter Gollmann. Security.di.unimi.it/sicurezza1415/ Chapter 16: 1
Computer Security 3e Dieter Gollmann Security.di.unimi.it/sicurezza1415/ Chapter 16: 1 Chapter 16: Communications Security Chapter 16: 2 Agenda Threat model Secure tunnels Protocol design principles IPsec
More informationVPN Ports and LAN-to-LAN Tunnels
CHAPTER 6 A VPN port is a virtual port which handles tunneled traffic. Tunnels are virtual point-to-point connections through a public network such as the Internet. All packets sent through a VPN tunnel
More informationCRYPTOGRAPHY AND NETWROK SECURITY-QUESTION BANK
CRYPTOGRAPHY AND NETWROK SECURITY-QUESTION BANK UNIT-1 1. Answer the following: a. What is Non-repudiation b. Distinguish between stream and block ciphers c. List out the problems of one time pad d. Define
More informationIPSec VPN Setup with IKE Preshared Key and Manual Key on WRVS4400N Router
IPSec VPN Setup with IKE Preshared Key and Manual Key on WRVS4400N Router Objective Internet Protocol Security (IPSec) is used to protect communications through the encryption of IP packets during a communication
More informationTable of Contents 1 IKE 1-1
Table of Contents 1 IKE 1-1 IKE Overview 1-1 Security Mechanism of IKE 1-1 Operation of IKE 1-1 Functions of IKE in IPsec 1-2 Relationship Between IKE and IPsec 1-3 Protocols 1-3 Configuring IKE 1-3 Configuration
More informationInt ernet w orking. Internet Security. Literature: Forouzan: TCP/IP Protocol Suite : Ch 28
Int ernet w orking Internet Security Literature: Forouzan: TCP/IP Protocol Suite : Ch 28 Internet Security Internet security is difficult Internet protocols were not originally designed for security The
More informationVPNs and VPN Technologies
C H A P T E R 1 VPNs and VPN Technologies This chapter defines virtual private networks (VPNs) and explores fundamental Internet Protocol Security (IPSec) technologies. This chapter covers the following
More informationConfiguration of an IPSec VPN Server on RV130 and RV130W
Configuration of an IPSec VPN Server on RV130 and RV130W Objective IPSec VPN (Virtual Private Network) enables you to securely obtain remote access to corporate resources by establishing an encrypted tunnel
More information(2½ hours) Total Marks: 75
(2½ hours) Total Marks: 75 N. B.: (1) All questions are compulsory. (2) Makesuitable assumptions wherever necessary and state the assumptions made. (3) Answers to the same question must be written together.
More informationINTERNET PROTOCOL SECURITY (IPSEC) GUIDE.
INTERNET PROTOCOL SECURITY (IPSEC) GUIDE www.insidesecure.com INTRODUCING IPSEC NETWORK LAYER PACKET SECURITY With the explosive growth of the Internet, more and more enterprises are looking towards building
More informationFirewalls, Tunnels, and Network Intrusion Detection
Firewalls, Tunnels, and Network Intrusion Detection 1 Firewalls A firewall is an integrated collection of security measures designed to prevent unauthorized electronic access to a networked computer system.
More informationNetwork Security: IPsec. Tuomas Aura
Network Security: IPsec Tuomas Aura 3 IPsec architecture and protocols Internet protocol security (IPsec) Network-layer security protocol Protects IP packets between two hosts or gateways Transparent to
More informationComputer Security 3e. Dieter Gollmann. Security.di.unimi.it/sicurezza1516/ Chapter 16: 1
Computer Security 3e Dieter Gollmann Security.di.unimi.it/sicurezza1516/ Chapter 16: 1 Chapter 16: Communications Security Chapter 16: 2 Agenda Threat model Secure tunnels Protocol design principles IPsec
More informationINF3510 Information Security University of Oslo Spring Lecture 9 Communication Security. Audun Jøsang
INF3510 Information Security University of Oslo Spring 2011 Lecture 9 Communication Security Audun Jøsang Outline Network security concepts Communication security Perimeter security Protocol architecture
More informationBCA III Network security and Cryptography Examination-2016 Model Paper 1
Time: 3hrs BCA III Network security and Cryptography Examination-2016 Model Paper 1 M.M:50 The question paper contains 40 multiple choice questions with four choices and student will have to pick the correct
More informationNetwork Security and Cryptography. December Sample Exam Marking Scheme
Network Security and Cryptography December 2015 Sample Exam Marking Scheme This marking scheme has been prepared as a guide only to markers. This is not a set of model answers, or the exclusive answers
More informationSecure channel, VPN and IPsec. stole some slides from Merike Kaeo
Secure channel, VPN and IPsec stole some slides from Merike Kaeo 1 HTTP and Secure Channel HTTP HTTP TLS TCP TCP IP IP 2 SSL and TLS SSL/TLS SSL v3.0 specified
More informationSet Up a Remote Access Tunnel (Client to Gateway) for VPN Clients on RV016, RV042, RV042G and RV082 VPN Routers
Set Up a Remote Access Tunnel (Client to Gateway) for VPN Clients on RV016, RV042, RV042G and RV082 VPN Routers Objective A Virtual Private Network (VPN) is a private network that is used to virtually
More informationIPSec Site-to-Site VPN (SVTI)
13 CHAPTER Resource Summary for IPSec VPN IKE Crypto Key Ring Resource IKE Keyring Collection Resource IKE Policy Resource IKE Policy Collection Resource IPSec Policy Resource IPSec Policy Collection Resource
More information14. Internet Security (J. Kurose)
14. Internet Security (J. Kurose) 1 Network security Foundations: what is security? cryptography authentication message integrity key distribution and certification Security in practice: application layer:
More informationComputer Networking. What is network security? Chapter 7: Network security. Symmetric key cryptography. The language of cryptography
Chapter 7: Network security 15-441 Computer Networking Network Security: Cryptography, Authentication, Integrity Foundations: what is security? cryptography authentication message integrity key distribution
More informationIPSec Guide. ISAKMP & IKE Formats
http://www.tech-invite.com IPSec Guide This document illustrates message formats. These formats result from ISAKMP framework definition (RFC 2408) refined by IPSec DOI (domain of interpretation, defined
More informationIKE and Load Balancing
Configure IKE, page 1 Configure IPsec, page 9 Load Balancing, page 22 Configure IKE IKE, also called ISAKMP, is the negotiation protocol that lets two hosts agree on how to build an IPsec security association.
More informationNetworking interview questions
Networking interview questions What is LAN? LAN is a computer network that spans a relatively small area. Most LANs are confined to a single building or group of buildings. However, one LAN can be connected
More informationChapter 8 Network Security
Chapter 8 Network Security A note on the use of these ppt slides: We re making these slides freely available to all (faculty, students, readers). They re in PowerPoint form so you can add, modify, and
More informationSecure Transmission for Interactive Three-Dimensional Visualization System
Secure Transmission for Interactive Three-Dimensional Visualization System 저자저널명발행기관 NDSL URL Yun, H.Y. ; Yoo, Sun Kook Journal of International Society for Simulation Surgery International Society for
More informationDr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2010
Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2010 1 Photuris and SKIP PHASE 1 IKE PHASE 2 IKE How is SA established? How do parties negotiate
More informationNetwork Encryption 3 4/20/17
The Network Layer Network Encryption 3 CSC362, Information Security most of the security mechanisms we have surveyed were developed for application- specific needs electronic mail: PGP, S/MIME client/server
More informationAIT 682: Network and Systems Security
AIT 682: Network and Systems Security Final Exam Review Instructor: Dr. Kun Sun Topics covered by Final Topic before Midterm 10% Topic after Midterm 90% Date: 12/13/2017 7:30am 10:15am Place: the same
More informationiii PPTP... 7 L2TP/IPsec... 7 Pre-shared keys (L2TP/IPsec)... 8 X.509 certificates (L2TP/IPsec)... 8 IPsec Architecture... 11
iii PPTP................................................................................ 7 L2TP/IPsec........................................................................... 7 Pre-shared keys (L2TP/IPsec)............................................................
More informationService Managed Gateway TM. Configuring IPSec VPN
Service Managed Gateway TM Configuring IPSec VPN Issue 1.2 Date 12 November 2010 1: Introduction 1 Introduction... 3 1.1 What is a VPN?... 3 1.2 The benefits of an Internet-based VPN... 3 1.3 Tunnelling
More informationIPSec. Dr.Talal Alkharobi. IPsec (IP security)
IPSec IPsec (IP security) 2 A suite of protocols for securing Internet Protocol (IP) communications by authenticating and/or encrypting each IP packet in a data stream. IPsec also includes protocols for
More informationL13. Reviews. Rocky K. C. Chang, April 10, 2015
L13. Reviews Rocky K. C. Chang, April 10, 2015 1 Foci of this course Understand the 3 fundamental cryptographic functions and how they are used in network security. Understand the main elements in securing
More informationSonicWALL Addendum. A Supplement to the SonicWALL Internet Security Appliance User's Guide
SonicWALL 6.2.0.0 Addendum A Supplement to the SonicWALL Internet Security Appliance User's Guide Contents SonicWALL Addendum 6.2.0.0... 3 New Network Features... 3 NAT with L2TP Client... 3 New Tools
More informationCS 393 Network Security. Nasir Memon Polytechnic University Module 12 SSL
CS 393 Network Security Nasir Memon Polytechnic University Module 12 SSL Course Logistics HW 4 due today. HW 5 will be posted later today. Due in a week. Group homework. DoD Scholarships? NSF Scholarships?
More informationSecurity for VPNs with IPsec Configuration Guide Cisco IOS Release 12.4T
Security for VPNs with IPsec Configuration Guide Cisco IOS Release 12.4T Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000
More informationIP Security II. Overview
IP Security II Dr. Arjan Durresi Louisiana State University Baton Rouge, LA 70810 Durresi@csc.lsu.Edu These slides are available at: http://www.csc.lsu.edu/~durresi/csc4601-04/ Louisiana State University
More informationApplication Note. Providing Secure Remote Access to Industrial Control Systems Using McAfee Firewall Enterprise (Sidewinder )
Application Note Providing Secure Remote Access to Industrial Control Systems Using McAfee Firewall Enterprise (Sidewinder ) This document describes how to configure McAfee Firewall Enterprise to provide
More informationVPN World. MENOG 16 Istanbul-Turkey. By Ziad Zubidah Network Security Specialist
VPN World MENOG 16 Istanbul-Turkey By Ziad Zubidah Network Security Specialist What is this Van used for?! Armed Van It used in secure transporting for valuable goods from one place to another. It is bullet
More informationIPSec Transform Set Configuration Mode Commands
IPSec Transform Set Configuration Mode Commands The IPSec Transform Set Configuration Mode is used to configure IPSec security parameters. There are two core protocols, the Authentication Header (AH) and
More informationVPN, IPsec and TLS. stole slides from Merike Kaeo apricot2017 1
VPN, IPsec and TLS stole slides from Merike Kaeo apricot2017 1 Virtual Private Network Overlay Network a VPN is built on top of a public network (Internet)
More informationNetwork Security IN2101
Chair for Network Architectures and Services Department of Informatics TU München Prof. Carle Network Security IN2101 Prof. Dr.-Ing. Georg Carle Dipl.-Inform. Ali Fessi Institut für Informatik Technische
More informationIPsec NAT Transparency
The feature introduces support for IP Security (IPsec) traffic to travel through Network Address Translation (NAT) or Port Address Translation (PAT) points in the network by addressing many known incompatibilities
More informationBCRAN. Section 9. Cable and DSL Technologies
BCRAN Section 9 Cable and DSL Technologies Cable and DSL technologies have changed the remote access world dramatically. Without them, remote and Internet access would be limited to the 56 kbps typical
More informationWAP Security. Helsinki University of Technology S Security of Communication Protocols
WAP Security Helsinki University of Technology S-38.153 Security of Communication Protocols Mikko.Kerava@iki.fi 15.4.2003 Contents 1. Introduction to WAP 2. Wireless Transport Layer Security 3. Other WAP
More information