must should don t care tcp conformance in the wild
play

MUST, SHOULD, DONT CARE: TCP Conformance in the Wild Mike Kosek, - PowerPoint PPT Presentation

Mar 16, 2023 •129 likes •400 views

MUST, SHOULD, DONT CARE: TCP Conformance in the Wild Mike Kosek, Leo Blcher, Jan Rth, Torsten Zimmermann [RWTH Aachen University] Oliver Hohlfeld [Brandenburg University of Technology] Yet another TCP study TCP in the Wild has been

  1. MUST, SHOULD, DON’T CARE: TCP Conformance in the Wild Mike Kosek, Leo Blöcher, Jan Rüth, Torsten Zimmermann [RWTH Aachen University] Oliver Hohlfeld [Brandenburg University of Technology]

  2. Yet another TCP study § TCP in the Wild has been widely analyzed in the past decades § Stack behavior § Tunings, e.g., IW Configuration § Extensions, e.g., SACK, ECN, TFO, MPTCP, Fast Retransmit § Middlebox Interference § TCPExposure § Tracebox § PATHspider § “TCP is not extendable” Conformance to minimum requirements?

  3. Why SHOULD we care? § Mayor efforts are put into QUIC § TCP will be the fallback for 10+ years § QUIC will not cover all use cases, e.g., BGP § Active Scanning § Controlled Testbed Environment § Large scale measurement campaign

  4. Methodology (1) § Specifications extend over a multitude of RFCs § RFC793bis § What is basic functionality? § Requirements for protocol interoperability § Target Conformance § Path Conformance

  5. Methodology (2) § Middlebox Interference § Tracebox approach § TTL encoded in multiple fields (e.g., TCP #ACK, Window Size, Urgent Pointer, NOOP Options) § Listen for ICMP time exceeded messages § Test case specific § Test cases § RFC 793bis-Draft14 features 69 MUSTs § Majority addresses internal state handling § Requirements must be observable § Critical to interoperability, security, performance, or extensibility

  6. Test Cases (1) § Checksum § Computationally expensive § Most Layer 2 protocols already protect against segment corruption § When sending a SYN or an ACK segment with an incorrect/zeroed checksum, a target must respond with a RST segment or ignore it. § Options § Up to 40 bytes of options for future extensibility § Most critical to extensibility are unassigned options § When sending a SYN segment with an unassigned option, a target must respond with a SYN/ACK segment.

  7. Test Cases (2) § MSS Missing § When sending a SYN segment without an MSS, a target must not send segments exceeding 536 byte (IPv4) or 1220 byte (IPv6). § MSS Support § When sending a SYN segment with an MSS of 515 byte, a target must not send segments exceeding 515 byte. § Reserved Flags § When sending a SYN segment with a reserved flag set, a target must respond with a SYN/ACK segment with zeroed reserved flags. § Subsequently, when sending an ACK segment with a reserved flag set, a target must not retransmit the SYN/ACK segment.

  8. Test Cases (3) § Urgent Pointer § Usage is discouraged for new applications § TCP implementations must still include support for arbitrary length § When sending a sequence of segments flagged as urgent, a target must acknowledge them with an ACK segment.

  9. Controlled Testbed Measurements (1) Linux Windows macOS uIP lwIP Seastar 5.2.10 1809 10.14.6 1.0 2.1.2 19.06 ChecksumIncorrect ChecksumZero OptionUnknown MSSMissing MSSSupport Reserved UrgentPointer

  10. Controlled Testbed Measurements (1) Linux Windows macOS uIP lwIP Seastar 5.2.10 1809 10.14.6 1.0 2.1.2 19.06 ChecksumIncorrect 3 3 ChecksumZero 3 3 OptionUnknown 3 3 MSSMissing 3 3 MSSSupport 3 3 Reserved 3 3 UrgentPointer 3 3 § Linux 5.2.10 and lwIP 2.1.2 achieve full conformance

  11. Controlled Testbed Measurements (2) Linux Windows macOS uIP lwIP Seastar 5.2.10 1809 10.14.6 1.0 2.1.2 19.06 ChecksumIncorrect 3 3 3 ChecksumZero 3 3 3 OptionUnknown 3 3 3 MSSMissing 3 3 3 MSSSupport 3 7 3 Reserved 3 3 3 UrgentPointer 3 3 3 § Windows 10 1809 applies the RFC MSS defaults as lower bound

  12. Controlled Testbed Measurements (3) Linux Windows macOS uIP lwIP Seastar 5.2.10 1809 10.14.6 1.0 2.1.2 19.06 ChecksumIncorrect 3 3 3 3 ChecksumZero 3 3 3 3 OptionUnknown 3 3 3 3 MSSMissing 3 3 7 3 MSSSupport 3 7 3 3 Reserved 3 3 3 3 UrgentPointer 3 3 3 3 § macOS 10.14.6 defaults to 1024 bytes MSS regardless of IP Version

  13. Controlled Testbed Measurements (4) Linux Windows macOS uIP lwIP Seastar 5.2.10 1809 10.14.6 1.0 2.1.2 19.06 ChecksumIncorrect 3 3 3 3 7 ChecksumZero 3 3 3 3 7 OptionUnknown 3 3 3 3 3 MSSMissing 3 3 7 3 3 MSSSupport 3 7 3 3 3 Reserved 3 3 3 3 3 UrgentPointer 3 3 3 3 3 § Seastar 19.06 bypasses Linux L4 network stack § Hardware offloading is enabled by default, software checksumming is supported § Host OS support of offloaded features is not verified Authors notified

  14. Controlled Testbed Measurements (5) Linux Windows macOS uIP lwIP Seastar 5.2.10 1809 10.14.6 1.0 2.1.2 19.06 ChecksumIncorrect 3 3 3 3 3 7 ChecksumZero 3 3 3 3 3 7 OptionUnknown 3 3 3 3 3 3 MSSMissing 3 3 7 3 3 3 MSSSupport 3 7 3 3 3 3 Reserved 3 3 3 3 3 3 UrgentPointer 3 3 3 7 3 3 § uIP 1.0 crashes when receiving urgent data pointing beyond the segment’s size § Contiki-OS and Contiki-NG are also vulnerable Pull request submitted

  15. TCP Conformance in the Wild – Target Hosts § HTTP Archive § CDN tagged URLs § Sampled to at most 10k per CDN § 27,795 target hosts § Alexa 1M § Resolved every domain w and w/o www. prefix § Randomly selected one target w and w/o www. prefix per domain § 466,685 target hosts § Censys § Internet-wide port scans § 3,237,086 target hosts

  16. TCP Conformance in the Wild – Results (1) CDN Alexa Censys n = 27,795 n = 466,685 n = 3,237,086 UNK F Target F Path UNK F Target F Path UNK F Target F Path ChecksumIncorrect ChecksumZero OptionUnknown MSSMissing MSSSupport Reserved Reserved-SYN UrgentPointer

  17. TCP Conformance in the Wild – Results (1) CDN Alexa Censys n = 27,795 n = 466,685 n = 3,237,086 UNK F Target F Path UNK F Target F Path UNK F Target F Path ChecksumIncorrect 0.234 0.374 - 0.441 3.224 0.002 3.743 3.594 0.003 ChecksumZero 0.253 0.377 - 0.455 3.210 0.001 3.873 3.592 0.003 OptionUnknown MSSMissing MSSSupport Reserved Reserved-SYN UrgentPointer § F Target Alexa and Censys § 1 st AS class: ~7% of hosts fail both tests (e.g., Amazon), hinting at purpose build high- performance VMs for, e.g., TCP-terminating proxies § 2 nd AS class: Nearly all hosts fail both tests (e.g., QRATOR AS), hinting at purpose build stack for DDoS protection

  18. TCP Conformance in the Wild – Results (2) CDN Alexa Censys n = 27,795 n = 466,685 n = 3,237,086 UNK F Target F Path UNK F Target F Path UNK F Target F Path ChecksumIncorrect 0.234 0.374 - 0.441 3.224 0.002 3.743 3.594 0.003 ChecksumZero 0.253 0.377 - 0.455 3.210 0.001 3.873 3.592 0.003 OptionUnknown - 0.026 0.011 - 0.585 0.053 - 1.477 0.019 MSSMissing 0.026 - 0.018 0.303 0.299 0.136 1.423 0.388 0.416 MSSSupport - 0.018 - - 0.728 0.002 - 0.412 0.004 Reserved Reserved-SYN UrgentPointer § Option Unknown § No single AS stands out, highest failure rates are within ISP networks § MSS Missing § Censys F Path are primarily located in ISP networks § MSS is inserted, likely due to PPPoE encapsulation by access routers

  19. TCP Conformance in the Wild – Results (3) CDN Alexa Censys n = 27,795 n = 466,685 n = 3,237,086 UNK F Target F Path UNK F Target F Path UNK F Target F Path ChecksumIncorrect 0.234 0.374 - 0.441 3.224 0.002 3.743 3.594 0.003 ChecksumZero 0.253 0.377 - 0.455 3.210 0.001 3.873 3.592 0.003 OptionUnknown - 0.026 0.011 - 0.585 0.053 - 1.477 0.019 MSSMissing 0.026 - 0.018 0.303 0.299 0.136 1.423 0.388 0.416 MSSSupport - 0.018 - - 0.728 0.002 - 0.412 0.004 Reserved - 2.194 0.011 - 6.689 0.293 - 2.791 0.048 Reserved-SYN UrgentPointer § High F Target across all datasets § No response to our probing packets § 10% of targeted Akamai hosts on CDN failed Flags on probing SYN were correctly ignored • Tests failed on probing ACK by retransmitting the SYN/ACK à TCP_DEFER_ACCEPT •

  20. TCP Conformance in the Wild – Results (4) CDN Alexa Censys n = 27,795 n = 466,685 n = 3,237,086 UNK F Target F Path UNK F Target F Path UNK F Target F Path ChecksumIncorrect 0.234 0.374 - 0.441 3.224 0.002 3.743 3.594 0.003 ChecksumZero 0.253 0.377 - 0.455 3.210 0.001 3.873 3.592 0.003 OptionUnknown - 0.026 0.011 - 0.585 0.053 - 1.477 0.019 MSSMissing 0.026 - 0.018 0.303 0.299 0.136 1.423 0.388 0.416 MSSSupport - 0.018 - - 0.728 0.002 - 0.412 0.004 Reserved - 2.194 0.011 - 6.689 0.293 - 2.791 0.048 Reserved-SYN - 0.138 0.011 - 1.297 0.309 - 1.849 0.049 UrgentPointer § Reserved-SYN Connectivity § Extendibility is limited IS impaired § Recap: No formal MUST requirement § Started a discussion within the IETF to add a formal MUST § Proposed a new MUST requirement to remove ambiguities regarding Reserved Flags

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

ETC5512: Wild Caught Data ETC5512: Wild Caught Data Week 12 Week 12 The proper care and feeding

ETC5512: Wild Caught Data ETC5512: Wild Caught Data Week 12 Week 12 The proper care and feeding

ETC5512: Wild Caught Data ETC5512: Wild Caught Data Week 12 Week 12 The proper care and feeding of wild data Lecturer: Dianne Cook Department of Econometrics and Business Statistics ETC5512.Clayton-x@monash.edu Image source:

486 views • 33 slides
LIBIS/Aware conformance checker Agenda Functional analysis Technical design Research

LIBIS/Aware conformance checker Agenda Functional analysis Technical design Research

LIBIS/Aware conformance checker Agenda Functional analysis Technical design Research TIFF LIBIS/AWare conformance checker - Preforma Conformance checker Checks conformance with TIFF Embedded metadata TIFF files Every

349 views • 15 slides
Literacy Activity Wild Animal Habitat What is your favourite wild animal? Where do wild animals

Literacy Activity Wild Animal Habitat What is your favourite wild animal? Where do wild animals

Literacy Activity Wild Animal Habitat What is your favourite wild animal? Where do wild animals live? Wild animals live in their natural habit, this is where they are born. They do not depend on humans. Giant Panda Bear Research

366 views • 9 slides
DNS Conformance Tester & Test Event Report dnsext WG@65th IETF 2006/03/21(Tues.) Yukiyo

DNS Conformance Tester & Test Event Report dnsext WG@65th IETF 2006/03/21(Tues.) Yukiyo

DNS Conformance Tester & Test Event Report dnsext WG@65th IETF 2006/03/21(Tues.) Yukiyo Akisada@Yokogawa Electric Corporation, TAHI Project TOC Status of DNS Conformance Tester Introduction of DNS Conformance Tester Test Event

459 views • 24 slides
Connect with, enjoy, and care for, the planets wild places. Main engagement initiative of the

Connect with, enjoy, and care for, the planets wild places. Main engagement initiative of the

Connect with, enjoy, and care for, the planets wild places. Main engagement initiative of the John Muir Trust Experiences of engaging young people: Enjoyable, active, new, engage the senses Not a set syllabus approach

112 views • 10 slides
Wild Horse and Burro Roundtable Wild Horse and Burro Roundtable Wild Horse and Burro Roundtable

Wild Horse and Burro Roundtable Wild Horse and Burro Roundtable Wild Horse and Burro Roundtable

Wild Horse and Burro Roundtable Wild Horse and Burro Roundtable Wild Horse and Burro Roundtable Wild Horse and Burro Roundtable Wild Horse and Burro Roundtable September 26, 2017 1 We must develop a broad coalition of interest groups and

355 views • 18 slides
Passwords in the Wild Passwords in the Wild Who am I...? My blog... SkullSecurity.org Random

Passwords in the Wild Passwords in the Wild Who am I...? My blog... SkullSecurity.org Random

Passwords in the Wild Passwords in the Wild Who am I...? My blog... SkullSecurity.org Random research, rants, etc. Nmap dev news Password database I post updates to Twitter https://twitter.com/iagox86 My job... Tenable Network Security

990 views • 88 slides
Wild Horse Tourism in NM Wild Horse Tourism in NM How the Jicarilla Ranger District of the Carson

Wild Horse Tourism in NM Wild Horse Tourism in NM How the Jicarilla Ranger District of the Carson

Wild Horse Tourism in NM Wild Horse Tourism in NM How the Jicarilla Ranger District of the Carson National Forest can utilize the Jicarilla Wild Horses Territory (JWHT) for Eco-Tourism, Rural Economic Development, Preservation of the Historical

419 views • 17 slides
Sushi Gone Wild: Skit & Music Details for the flight of The Wild Sushi Adrienne Chan

Sushi Gone Wild: Skit & Music Details for the flight of The Wild Sushi Adrienne Chan

Sushi Gone Wild: Skit & Music Details for the flight of The Wild Sushi Adrienne Chan Elizabeth Chan Jenny Chan Katherine Chan July 21, 2006 Leonard Chan Wild Thing Models that represent the team and aircraft (from left to right):

134 views • 10 slides
Protocol Conformance for Logic-based Agents Ulle Endriss 1 , Nicolas Maudet 2 , Fariba Sadri 1 and

Protocol Conformance for Logic-based Agents Ulle Endriss 1 , Nicolas Maudet 2 , Fariba Sadri 1 and

Protocol Conformance for Logic-based Agents IJCAI-2003 Protocol Conformance for Logic-based Agents Ulle Endriss 1 , Nicolas Maudet 2 , Fariba Sadri 1 and Francesca Toni 1 1 Department of Computing, Imperial College London Email: { ue,fs,ft }

365 views • 14 slides
Physics 2D Lecture Slides Oct 13 Vivek Sharma UCSD Physics Quiz 2 : Wild Wild West got a Bit

Physics 2D Lecture Slides Oct 13 Vivek Sharma UCSD Physics Quiz 2 : Wild Wild West got a Bit

Physics 2D Lecture Slides Oct 13 Vivek Sharma UCSD Physics Quiz 2 : Wild Wild West got a Bit too wild 50m/s MadBull x ScarFace In the old west, a sheriff riding on a train traveling 50m/s sees a shootout between two bandits standing on

280 views • 24 slides
Wild Atlantic Way Update 2016 Presented by Suzanne Trehy Client Services Manager The Wild

Wild Atlantic Way Update 2016 Presented by Suzanne Trehy Client Services Manager The Wild

Wild Atlantic Way Update 2016 Presented by Suzanne Trehy Client Services Manager The Wild Atlantic Way what and why? Where Land Meets Sea Wild Atlantic Way Vision To create a world class, sustainable and un-missable experience brand

500 views • 34 slides
Medicine As dreams are the healing songs from the wilderness of our unconscious-- So wild

Medicine As dreams are the healing songs from the wilderness of our unconscious-- So wild

Medicine As dreams are the healing songs from the wilderness of our unconscious-- So wild animals, wild plants, wild landscapes are the healing dreams from the deep singing mind of the earth. --Dale Pendell, Living with Barbarians Design

1.15k views • 36 slides
Wild, Wild West How to Corral All Your Developers into Creating Secure Code Jonathan Beck

Wild, Wild West How to Corral All Your Developers into Creating Secure Code Jonathan Beck

Wild, Wild West How to Corral All Your Developers into Creating Secure Code Jonathan Beck Original State Static and Dynamic programs are great at finding vulnerabilities. Penetration Test performed to deeply inspect applications.

615 views • 27 slides
Wild Ways Well By Ryan Bryce Introduction Wild Ways Well is a project which was introduced to us

Wild Ways Well By Ryan Bryce Introduction Wild Ways Well is a project which was introduced to us

Wild Ways Well By Ryan Bryce Introduction Wild Ways Well is a project which was introduced to us by Paul and Rebecca. The project focusses on helping us : Connect with the Environment, Be Active, Take Notice, Keep Learning and Give Back. One

307 views • 6 slides
Data Science in the Wild Lecture 6: Running Experiments Eran Toch Data Science in the Wild,

Data Science in the Wild Lecture 6: Running Experiments Eran Toch Data Science in the Wild,

Data Science in the Wild Lecture 6: Running Experiments Eran Toch Data Science in the Wild, Spring 2019 1 Agenda 1. About experiments 2. Statistical inference 3. Forming hypotheses 4. Designing an experiment Data Science in the Wild,

733 views • 52 slides
Network Virtualization What is Network Virtualization? Abstraction of the physical network

Network Virtualization What is Network Virtualization? Abstraction of the physical network

Network Virtualization What is Network Virtualization? Abstraction of the physical network Support for multiple logical networks running on a common shared physical substrate A container of network services Aspects of the

589 views • 21 slides
Don't Forget Today's Infrastructure! IAB Routing & Addressing Workshop and Do we need a new

Don't Forget Today's Infrastructure! IAB Routing & Addressing Workshop and Do we need a new

Don't Forget Today's Infrastructure! IAB Routing & Addressing Workshop and Do we need a new network model? Elwyn Davies Folly Consulting Terena European Future Networks Initiatives Workshop Schiphol, Netherlands 22 February 2007

794 views • 37 slides
INTERNET EVOLUTION AND THE ROLE OF SOFTWARE ENGINEERING Pamela Zave AT&T

INTERNET EVOLUTION AND THE ROLE OF SOFTWARE ENGINEERING Pamela Zave AT&T

INTERNET EVOLUTION AND THE ROLE OF SOFTWARE ENGINEERING Pamela Zave AT&T LaboratoriesResearch Florham Park, New Jersey, USA INTERNET EVOLUTION AND THE ROLE OF SOFTWARE ENGINEERING: OUTLINE WHAT IS THE STATE OF THE A INTERNET, AND WHY

571 views • 23 slides
Does Anybody Really Need Open Routers? Jon Turner www.arl.wustl.edu/~jst Good News and Bad News

Does Anybody Really Need Open Routers? Jon Turner www.arl.wustl.edu/~jst Good News and Bad News

Does Anybody Really Need Open Routers? Jon Turner www.arl.wustl.edu/~jst Good News and Bad News Good news good hardware is available ATCA has made world-class router hardware available n can buy all the parts needed for 120 Gb/ s

439 views • 8 slides
British Psychological British Society Psychological Society The British Psychological

British Psychological British Society Psychological Society The British Psychological

The British Psychological British Society Psychological Society The British Psychological Society Now and the Future? Peter Banister President 2012 - 2013 Outline of current situation Achievements Challenges

449 views • 24 slides
Hardware Checksumming David S. Miller Red Hat Inc. Proceedings of NetDev 1.1: The Technical

Hardware Checksumming David S. Miller Red Hat Inc. Proceedings of NetDev 1.1: The Technical

Proceedings of NetDev 1.1: The Technical Conference on Linux Networking (February 10th-12th 2016. Seville, Spain) Hardware Checksumming David S. Miller Red Hat Inc. Proceedings of NetDev 1.1: The Technical Conference on Linux Networking

401 views • 16 slides
Rethinking the Internet and the telecommunications market today Why the Internet just works

Rethinking the Internet and the telecommunications market today Why the Internet just works

Rethinking the Internet and the telecommunications market today Why the Internet just works Why the Internet just works Departure from the e2e M. Handley, BT Technology journal, 2006 Network neutrality Trilogy consortium

156 views • 13 slides
RAD-UNAM: Genesis and evolution of a repository administrators group Gunnar Wolf (IIEc-UNAM)

RAD-UNAM: Genesis and evolution of a repository administrators group Gunnar Wolf (IIEc-UNAM)

Overview UNAM RAD as a bottom-up answer The road ahead The end RAD-UNAM: Genesis and evolution of a repository administrators group Gunnar Wolf (IIEc-UNAM) Pablo Miranda (FFyL-UNAM) Instituto de Investigaciones Econmicas UNAM Red de

436 views • 26 slides

More recommend