Introduction to Computer Networks. CS 166: Introduction to Computer Systems Security

Similar documents
Computer Networks Security: intro. CS Computer Systems Security

CIT 380: Securing Computer Systems. Network Security Concepts

Lab Using Wireshark to Examine Ethernet Frames

Lab Using Wireshark to Examine Ethernet Frames

Internet Layers. Physical Layer. Application. Application. Transport. Transport. Network. Network. Network. Network. Link. Link. Link.

ICS 351: Networking Protocols

Defining Networks with the OSI Model. Module 2

ICS 451: Today's plan

TCP/IP THE TCP/IP ARCHITECTURE

Layer 4: UDP, TCP, and others. based on Chapter 9 of CompTIA Network+ Exam Guide, 4th ed., Mike Meyers

IP Protocols. ALTTC/Oct

Networking Fundamentals

Chapter 2 - Part 1. The TCP/IP Protocol: The Language of the Internet

Lecture 8. Basic Internetworking (IP) Outline. Basic Internetworking (IP) Basic Internetworking (IP) Service Model

Lab 1: Packet Sniffing and Wireshark

Lecture 8. Reminder: Homework 3, Programming Project 2 due on Thursday. Questions? Tuesday, September 20 CS 475 Networks - Lecture 8 1

Protocol Layers & Wireshark TDTS11:COMPUTER NETWORKS AND INTERNET PROTOCOLS

Network Layer (4): ICMP

9. Wireshark I: Protocol Stack and Ethernet

The OSI Model. Open Systems Interconnection (OSI). Developed by the International Organization for Standardization (ISO).

TCP /IP Fundamentals Mr. Cantu

ECE 650 Systems Programming & Engineering. Spring 2018

TCP/IP and the OSI Model

Interconnecting Networks with TCP/IP. 2000, Cisco Systems, Inc. 8-1

IT220 Network Standards & Protocols. Unit 8: Chapter 8 The Internet Protocol (IP)

Chapter 7. Local Area Network Communications Protocols

Packet Header Formats

IP - The Internet Protocol. Based on the slides of Dr. Jorg Liebeherr, University of Virginia

CS-435 spring semester Network Technology & Programming Laboratory. Stefanos Papadakis & Manolis Spanakis

Use of the TCP/IP Protocols and the OSI Model in Packet Tracer

Internet Protocols (chapter 18)

Networking for Data Acquisition Systems. Fabrice Le Goff - 14/02/ ISOTDAQ

On Distributed Communications, Rand Report RM-3420-PR, Paul Baran, August 1964

The Internet. 9.1 Introduction. The Internet is a global network that supports a variety of interpersonal and interactive multimedia applications.

Fundamentals of Computer Networking AE6382

Cisco Interconnecting Cisco Networking Devices Part 1.

Outline. SC/CSE 3213 Winter Sebastian Magierowski York University. ICMP ARP DHCP NAT (not a control protocol) L9: Control Protocols

CS475 Networks Lecture 8 Chapter 3 Internetworking. Ethernet or Wi-Fi).

Scribe Notes -- October 31st, 2017

CS 348 Computer Networks. IP and Routing. Indian Institute of Technology, Bombay

Computer Forensics: Investigating Network Intrusions and Cybercrime, 2nd Edition. Chapter 2 Investigating Network Traffic

SC/CSE 3213 Winter Sebastian Magierowski York University CSE 3213, W13 L8: TCP/IP. Outline. Forwarding over network and data link layers

Introduction to Internetworking

IP: Addressing, ARP, Routing

To make a difference between logical address (IP address), which is used at the network layer, and physical address (MAC address),which is used at

CS 457 Lecture 11 More IP Networking. Fall 2011

Lecture 17 Overview. Last Lecture. Wide Area Networking (2) This Lecture. Internet Protocol (1) Source: chapters 2.2, 2.3,18.4, 19.1, 9.

CS 356: Computer Network Architectures. Lecture 10: IP Fragmentation, ARP, and ICMP. Xiaowei Yang

Copyleft 2005, Binnur Kurt. Objectives

The Internetworking Problem. Internetworking. A Translation-based Solution

(ICMP), RFC

Course Contents. The TCP/IP protocol Stack

Interconnecting Networks with TCP/IP

Concept Questions Demonstrate your knowledge of these concepts by answering the following questions in the space that is provided.

Data and Computer Communications. Chapter 2 Protocol Architecture, TCP/IP, and Internet-Based Applications

COMS Introduction to Computers. Networking

ET4254 Communications and Networking 1

Network Security. Thierry Sans

Communication Systems DHCP

n Describe sniffing concepts, including active and passive sniffing n Describe sniffing countermeasures n Describe signature analysis within Snort

Lab Assignment for Chapter 1

OSI Network Layer. Network Fundamentals Chapter 5. Version Cisco Systems, Inc. All rights reserved. Cisco Public 1

EXAM - HP0-Y52. Applying HP FlexNetwork Fundamentals. Buy Full Product.

Network Security Fundamentals. Network Security Fundamentals. Roadmap. Security Training Course. Module 2 Network Fundamentals

IP Basics Unix/IP Preparation Course June 29, 2010 Pago Pago, American Samoa

Introduction to TCP/IP networking

Networking Background

Position of IP and other network-layer protocols in TCP/IP protocol suite

Computer Networks with Internet Technology William Stallings. Chapter 2 Protocols and the TCP/IP Protocol Suite

Review of Important Networking Concepts

ICMP (Internet Control Message Protocol)

Agenda L2 versus L3 Switching IP Protocol, IP Addressing IP Forwarding ARP and ICMP IP Routing First Hop Redundancy

TCP/IP Protocol Suite and IP Addressing

This tutorial will help you in understanding IPv4 and its associated terminologies along with appropriate references and examples.

CSC 6575: Internet Security Fall Attacks on Different OSI Layer Protocols OSI Layer Basic Attacks at Lower Layers

Computer Networks. More on Standards & Protocols Quality of Service. Week 10. College of Information Science and Engineering Ritsumeikan University

Cisco EXAM CCNA Cisco Certified Network Associate. Buy Full Product.

CSCI 4250/6250 Fall 2015 Computer and Networks Security

Firewall Stateful Inspection of ICMP

NETWORK PACKET ANALYSIS PROGRAM

CSc 466/566. Computer Security. 18 : Network Security Introduction

Question 7: What are Asynchronous links?

Shortest Path First Example

Internet Control Message Protocol (ICMP), RFC 792. Prof. Lin Weiguo Copyleft 2009~2017, School of Computing, CUC

KillTest ᦝ䬺 䬽䭶䭱䮱䮍䭪䎃䎃䎃ᦝ䬺 䬽䭼䯃䮚䮀 㗴 㓸 NZZV ]]] QORRZKYZ PV ٶ瀂䐘މ悹伥濴瀦濮瀃瀆ݕ 濴瀦

Hands-On Network Security: Practical Tools & Methods

TCP/IP Network Essentials

CPSC 826 Internetworking. The Network Layer: Routing & Addressing Outline. The Network Layer

CS 421: COMPUTER NETWORKS SPRING FINAL May 24, minutes. Name: Student No: TOT

Lab Exercise Protocol Layers

Internetworking/Internetteknik, Examination 2G1305 Date: August 18 th 2004 at 9:00 13:00 SOLUTIONS

Need For Protocol Architecture

CSE/EE 461 The Network Layer. Application Presentation Session Transport Network Data Link Physical

Need For Protocol Architecture


Network layer: Overview. Network layer functions IP Routing and forwarding NAT ARP IPv6 Routing

Lab Two Using Wireshark to Discover IP NAME:

CS 421: COMPUTER NETWORKS SPRING FINAL May 16, minutes

Guide to Networking Essentials, 6 th Edition. Chapter 5: Network Protocols

Part VI. Appendixes. Appendix A OSI Model and Internet Protocols Appendix B About the CD

Transcription:

Introduction to Computer Networks CS 166: Introduction to Computer Systems Security

Network Communication Communication in modern networks is characterized by the following fundamental principles Packet switching Stack of layers Encapsulation 3/22/18 Introduction to Computer Networks 2

Data split into packets Each packet is Packet Switching Transported independentlythrough network Handled on a best efforts basis by each device Packets may Follow different routes between the same endpoints Be dropped by an intermediate device and never delivered 3/22/18 Introduction to Computer Networks 3

Packet Switching B F 3 2 1 A D C E 3/22/18 Introduction to Computer Networks 4

Packet Switching 3 2 A B D F 1 C E 3/22/18 Introduction to Computer Networks 5

Packet Switching 3 A B D F 1 2 C E 3/22/18 Introduction to Computer Networks 6

Packet Switching A B D F 1 2 C E 3 3/22/18 Introduction to Computer Networks 7

Stack of Layers Network communication models use a stack of layers Higher layers use services of lower layers Physical channel at the bottommost layer A network device implements several layers A communication channel between two devices is established for each layer Actual channel at the bottom layer Virtual channel at higher layers 3/22/18 Introduction to Computer Networks 8

Internet Stack (simplified) Browser OpenSSL OS OS IP Firmware HTTP TLS TCP IP OS IP Server OpenSSL OS OS Application Security Reliability Internet Routing OS ARP ARP ARP Firmware Firmware OS LAN Routing Physical 3/22/18 Introduction to Computer Networks 9

Encapsulation A packet typically consists of Control information: header and footer Data: payload A protocol P uses the services of another protocol Q through encapsulation A packet p of P is encapsulated into a packet q of Q The payload of q is p The control information of q is derived from that of p Header Header Payload Footer Payload Footer 3/22/18 Introduction to Computer Networks 10

Internet Packet Encapsulation Application Packet Application Layer TCP Header TCP Data Transport Layer IP Header IP Data Network Layer Frame Header Frame Data Frame Footer Link Layer 3/22/18 Introduction to Computer Networks 11

Internet Packet Encapsulation Data link frame IP packet TCP or UDP packet Application packet Data link header IP header TCP or UDP header Application packet Data link footer 3/22/18 Introduction to Computer Networks 12

The OSI (Open System Interconnect) Reference Model is a network model consisting of seven layers Created in 1983, OSI is promoted by the International Standard Organization (ISO) The OSI Model 3/22/18 Introduction to Computer Networks 13

TCP/IP Model Mapped onto OSI 3/22/18 Introduction to Computer Networks 14

Network Attacks Source Destination Source Destination Standard Flow Block (DoS) Source Destination Source Destination Wiretapping (sniffing) Wiretapping (passive) Source Destination Source Destination Tampering (active) Creation (spoofing) 3/22/18 Introduction to Computer Networks 15

Network Interfaces Network interface: device connecting a computer to a network Ethernet card WiFi adapter A computer may have multiple network interfaces Packets transmitted between network interfaces Most local area networks, (including Ethernet and WiFi) broadcast frames 3/22/18 Introduction to Computer Networks 16

MAC Addresses Most network interfaces come with a predefined MAC address A MAC address is a 48-bit number usually represented in hex E.g., 00-1A-92-D4-BF-86 The first three octets of any MAC address are IEEE-assigned Organizationally Unique Identifiers E.g., Cisco 00-1A-A1, D-Link 00-1B-11, ASUSTek 00-1A-92, 00-0a-95?????? The next three can be assigned by organizations as they please, with uniqueness being the only constraint 3/22/18 Introduction to Computer Networks 17

Switch A switch performs routing in a local area network Operates at the link layer Has multiple interfaces, each connected to a computer Operation of a switch Learn the MAC address of each computer connected to it Forward frames only to the destination computer 3/22/18 Introduction to Computer Networks 18

Combining Switches Switches can be arranged into a tree Each port the MAC addresses of the machines in the segment (subtree) connected to it Frames to unknown MAC addresses are broadcast Frames to MAC addresses in the same segment as the sender are ignored 3/22/18 Introduction to Computer Networks 19

Internet Protocol Functions Addressing: In order to deliver data, IP needs to be aware of where to deliver data to, and hence includes addressing systems Fragmentation and Reassembly: IP packets are carried across networks which may have different maximum packet length. Data Encapsulation and Packaging are used to encapsulate TCP or UDP packets into a specific form before transmission over IP Routing: IP might be required to communicate across networks, and communicate with networks not directly connected to the current network Data link frame IP packet TCP or UDP packet 3/22/18 Introduction to Computer Networks 20

IP Addresses and Packets IP addresses IPv4: 32-bit addresses IPv6: 128-bit addresses Address subdivided into network, subnet, and host E.g., 128.148.32.110 Broadcast addresses E.g., 128.148.32.255 Private networks not routed outside of a LAN 10.0.0.0/8 172.16.0.0/12 192.168.0.0/16 IP header includes Source address Destination address Packet length (up to 64KB) Time to live (up to 255) IP protocol version Fragmentation information Transport layer protocol information (e.g., TCP) fragmentation info prot. source destination 3/22/18 Introduction to Computer Networks 21 v TTL length

IP Routing A router bridges two or more networks Operates at the network layer Maintains tables to forward packets to the appropriate network Forwarding decisions based solely on the destination address Routing table Maps ranges of addresses to LANs or other gateway routers 3/22/18 Introduction to Computer Networks 22

Routing Examples client LAN A gateway router router server A router router router server B router router gateway LAN B 3/22/18 Introduction to Computer Networks 23

Internet Routes Internet Control Message Protocol (ICMP) Used for network testing and debugging Simple messages encapsulated in single IP packets Considered a network layer protocol Tools based on ICMP Ping: sends series of echo request messages and provides statistics on roundtrip times and packet loss Traceroute: sends series ICMP packets with increasing TTL value to discover routes 3/22/18 Introduction to Computer Networks 24

Traceroute echo request, TTL = 1 time exceeded echo request, TTL = 2 echo request, TTL = 3 echo request, TTL = 4 time exceeded time exceeded echo response 3/22/18 Introduction to Computer Networks 25

Wireshark Packet sniffer and protocol analyzer Captures and displays network packets for analysis Supports plugins Usually requires administrator privileges because of security risks associated with the program When run in promiscuous mode, captures traffic across the network Freely available on www.wireshark.org 3/22/18 Introduction to Computer Networks 26

ç menu ç main toolbar ç filter toolbar ç packet list pane ç packet details pane ç packet bytes pane 3/22/18 Introduction to Computer Networks ç status bar 27

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback