network 3 tcp ip
play

Network #3: TCP/IP 1 Spot the Zero Day: TPLink Miniature - PowerPoint PPT Presentation

Mar 02, 2023 •131 likes •566 views

Computer Science 161 Fall 2016 Popa and Weaver Network #3: TCP/IP 1 Spot the Zero Day: TPLink Miniature Wireless Router Computer Science 161 Fall 2016 Popa and Weaver 2 Spot the Zero Day: TPLink Miniature Wireless Router

  1. Computer Science 161 Fall 2016 Popa and Weaver Network #3: 
 TCP/IP 1

  2. Spot the Zero Day: 
 TPLink Miniature Wireless Router Computer Science 161 Fall 2016 Popa and Weaver 2

  3. Spot the Zero Day: 
 TPLink Miniature Wireless Router Computer Science 161 Fall 2016 Popa and Weaver 3

  4. Nick's Apology... Computer Science 161 Fall 2016 Popa and Weaver • I'm really going to try to slow down • I'm also really going to try to reduce the "story factor" and check my ego • Many thanks for the feedback! • And a beg: Don't wait for us to request feedback to give it! • When I'm going too fast or otherwise being a bad professor, 
 PLEASE TELL ME • You're all smart, if you want anonymity in feedback you can • But be smarter: I want students to feel comfortable in telling me my screwups! 4

  5. Review: VERY key topics Computer Science 161 Fall 2016 Popa and Weaver • Network is layered • Wired/Wireless Network: addressed by Ethernet MAC • Broadcast or switched networks • WiFi encryption handshake • ARP/DHCP configuration • Packet injection attacks • When the attacker sees a request... • DNS • Distributed database, hierarchical trust • Attacks: Old-school cache poisoning, blind injection poisoning, race condition attacks (race once vs race-until-win) 5

  6. Today: 
 The Internet Computer Science 161 Fall 2016 Popa and Weaver • How the Internet routes IP packets • Distributed trust through Autonomous Systems • How TCP works • Denial of Service Attacks • (If time) the Firewall #1 6

  7. IP Packet Structure Computer Science 161 Fall 2016 Popa and Weaver 4-bit 8-bit 4-bit 16-bit Total Length (Bytes) Header Type of Service Version Length (TOS) 3-bit 16-bit Identification 13-bit Fragment Offset Flags 8-bit Time to 8-bit Protocol 16-bit Header Checksum Live (TTL) 32-bit Source IP Address 32-bit Destination IP Address Options (if any) Payload 7

  8. IP Packet Structure Computer Science 161 Fall 2016 Popa and Weaver 4-bit 8-bit 4-bit 16-bit Total Length (Bytes) Header Type of Service Version Length (TOS) 3-bit 16-bit Identification 13-bit Fragment Offset Flags Specifies the length of the entire IP 8-bit Time to packet: bytes in this header plus 8-bit Protocol 16-bit Header Checksum Live (TTL) bytes in the Payload 32-bit Source IP Address 32-bit Destination IP Address Options (if any) Payload 8

  9. IP Packet Structure Computer Science 161 Fall 2016 Popa and Weaver 4-bit 8-bit 4-bit 16-bit Total Length (Bytes) Header Type of Service Version Length (TOS) 3-bit 16-bit Identification 13-bit Fragment Offset Flags Specifies how to interpret the start of the Payload, which is the 8-bit Time to 8-bit Protocol 16-bit Header Checksum header of a Transport Protocol Live (TTL) such as TCP or UDP 32-bit Source IP Address 32-bit Destination IP Address Options (if any) Payload 9

  10. IP Packet Structure Computer Science 161 Fall 2016 Popa and Weaver 4-bit 8-bit 4-bit 16-bit Total Length (Bytes) Header Type of Service Version Length (TOS) 3-bit 16-bit Identification 13-bit Fragment Offset Flags 8-bit Time to 8-bit Protocol 16-bit Header Checksum Live (TTL) 32-bit Source IP Address 32-bit Destination IP Address Options (if any) Payload 10

  11. IP Packet Structure Computer Science 161 Fall 2016 Popa and Weaver 4-bit 8-bit 4-bit 16-bit Total Length (Bytes) Header Type of Service Version Length (TOS) 3-bit 16-bit Identification 13-bit Fragment Offset Flags 8-bit Time to 8-bit Protocol 16-bit Header Checksum Live (TTL) 32-bit Source IP Address 32-bit Destination IP Address Options (if any) Payload 11

  12. IP Packet Structure Computer Science 161 Fall 2016 Popa and Weaver 4-bit 8-bit 4-bit 16-bit Total Length (Bytes) Header Type of Service Version Length (TOS) 3-bit 16-bit Identification 13-bit Fragment Offset Flags 8-bit Time to 8-bit Protocol 16-bit Header Checksum Live (TTL) 32-bit Source IP Address 32-bit Destination IP Address Options (if any) Payload 12

  13. IP Packet Header (Continued) Computer Science 161 Fall 2016 Popa and Weaver • Two IP addresses • Source IP address (32 bits) • Destination IP address (32 bits) • Destination address • Unique identifier/locator for the receiving host • Allows each node to make forwarding decisions • Source address • Unique identifier/locator for the sending host • Recipient can decide whether to accept packet • Enables recipient to send a reply back to source 13

  14. IP: “Best E ff ort ” Packet Delivery Computer Science 161 Fall 2016 Popa and Weaver • Routers inspect destination address, locate “next hop” in forwarding table • Address = ~unique identifier/locator for the receiving host • Only provides a “ I’ll give it a try ” delivery service: • Packets may be lost • Packets may be corrupted • Packets may be delivered out of order source destination IP network 14

  15. IP Routing: 
 Autonomous Systems Computer Science 161 Fall 2016 Popa and Weaver • Your system sends IP packets to the gateway... • But what happens after that? • Within a given network its routed internally • But the key is the Internet is a network-of-networks • Each "autonomous system" (AS) handles its own internal routing • The AS knows the next AS to forward a packet to • Primary protocol for communicating in between ASs is BGP 15

  16. Packet Routing on the Internet Computer Science 161 Fall 2016 Popa and Weaver AS Recipient AS 5 AS 1 3 AS 4 AS 2 Sender AS 4 16

  17. Remarks Computer Science 161 Fall 2016 Popa and Weaver • This is a network of networks • Its designed with failures in mind: 
 Links can go down and the system will recover • But it also generally trust-based • A system can lie about what networks it can route to! • Each hop decrements the TTL • Prevents a "routing loop" from happening • Routing can be asymmetric • Since in practice networks may (slightly) override BGP , and 17

  18. IP Spoofing 
 And Autonomous Systems Computer Science 161 Fall 2016 Popa and Weaver • The edge-AS where a user connects should restrict packet spoofing • Sending a packet with a di ff erent sender IP address • But about 25% of them don't... • So a system can simply lie and say it comes from someplace else • This enables blind-spoofing attacks • Such as the Kaminski attack on DNS • It also enables "reflected DOS attacks" 18

  19. On-path Injection vs O ff -path Spoofing Computer Science 161 Fall 2016 Popa and Weaver Host A communicates with Host D Host C Host D Host A Router 1 Router 2 Router 3 On-path Router 5 Host B Host E Router 7 Router 6 Router 4 Off-path Off-path 19

  20. Lying in BGP Computer Science 161 Fall 2016 Popa and Weaver AS Recipient AS 5 AS 1 3 AS 4 AS 2 Sender AS 4 20

  21. Lying in BGP Computer Science 161 Fall 2016 Popa and Weaver AS Recipient AS 5 AS 1 3 AS 4 AS 2 Sender AS 4 21

  22. TCP Computer Science 161 Fall 2016 Popa and Weaver 7 Application 4 Transport 3 (Inter)Network Source port Destination port 2 Link Sequence number Acknowledgment 1 Physical HdrLen Advertised window Flags 0 Checksum Urgent pointer Options (variable) Data 22

  23. TCP Computer Science 161 Fall 2016 Popa and Weaver These plus IP addresses define a given connection Source port Destination port Sequence number Acknowledgment HdrLen Advertised window Flags 0 Checksum Urgent pointer Options (variable) Data 23

  24. TCP Computer Science 161 Fall 2016 Popa and Weaver Used to order data in the connection: client program receives data in order Source port Destination port Sequence number Acknowledgment HdrLen Advertised window Flags 0 Checksum Urgent pointer Options (variable) Data 24

  25. TCP Computer Science 161 Fall 2016 Popa and Weaver Used to say how much data has been received Source port Destination port Sequence number Acknowledgment HdrLen Advertised window Flags 0 Checksum Urgent pointer Options (variable) Data 25

  26. 
 TCP Computer Science 161 Fall 2016 Popa and Weaver Flags have different meaning: 
 SYN: Synchronize, 
 Source port Destination port used to initiate a connection Sequence number ACK: Acknowledge, used to indicate Acknowledgment acknowledgement of data HdrLen Advertised window Flags 0 FIN: Finish, Checksum Urgent pointer used to indicate no more data will be sent (but can still receive Options (variable) and acknowledge data) RST: Reset, Data used to terminate the connection completely 26

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

1 Network Layer Network Layer Recall: Circuit Switching vs. Packet Interplay between routing

1 Network Layer Network Layer Recall: Circuit Switching vs. Packet Interplay between routing

Network Layer Network Layer Chapter 4: Network Layer Mobile network Chapter goals: Global ISP understand principles behind network layer Network Layer services: Home network network layer service models Regional ISP forwarding

550 views • 3 slides
5 Network Layer Network Layer Network Layer Network Layer Example: Choosing among multiple ASes

5 Network Layer Network Layer Network Layer Network Layer Example: Choosing among multiple ASes

Network Layer Network Layer Network Layer Network Layer Network Layer Comparison of LS and DV algorithms Message complexity Robustness: what happens 1 Introduction 5 Routing algorithms if router malfunctions? LS: with n nodes, E

325 views • 4 slides
7 Network Layer Network Layer Network Layer Network Layer Subnets Classful Address

7 Network Layer Network Layer Network Layer Network Layer Subnets Classful Address

Network Layer Network Layer Network Layer Network Layer IP Fragmentation & Reassembly IP Fragmentation and Reassembly network links have MTU length ID fragflag offset (max.transfer size) - largest possible link-level frame.

948 views • 5 slides
Network Coding Network Coding Jie Gao Existing network Existing network Independent data

Network Coding Network Coding Jie Gao Existing network Existing network Independent data

Network Coding Network Coding Jie Gao Existing network Existing network Independent data stream sharing the same network resources Packets over the Internet Signals in a phone network An analog: cars sharing a highway.

1.01k views • 46 slides
What is network security? Friends and enemies: Alice, Bob, Trudy What is network security?

What is network security? Friends and enemies: Alice, Bob, Trudy What is network security?

Network security Network security Foundations: what is security? cryptography Network Security Network Security authentication message integrity key distribution and certification Security in practice: Srinidhi Varadarajan

332 views • 6 slides
1 Creating a network app application transport network data link write programs that

1 Creating a network app application transport network data link write programs that

Last time Mobile network Internet overview Global ISP whats a protocol? network edge, core, access network Home network Regional ISP Regional ISP packet-switching versus k t it hi circuit-switching Internet/ISP

524 views • 20 slides
Network Virtualization What is Network Virtualization? Abstraction of the physical network

Network Virtualization What is Network Virtualization? Abstraction of the physical network

Network Virtualization What is Network Virtualization? Abstraction of the physical network Support for multiple logical networks running on a common shared physical substrate A container of network services Aspects of the

589 views • 21 slides
4 Network Layer Network Layer Network Layer Network Layer Switching Via Memory Three types of

4 Network Layer Network Layer Network Layer Network Layer Switching Via Memory Three types of

Network Layer Network Layer Network Layer Network Layer Routing Table Aggregation - > 4 billion Forwarding table Longest prefix matching possible entries Prefix Match Link Interface Destination Address Range Link Interface 11001000

288 views • 3 slides
Network Layer Where we are in the Course Moving on up to the Network Layer! Application

Network Layer Where we are in the Course Moving on up to the Network Layer! Application

Network Layer Where we are in the Course Moving on up to the Network Layer! Application Transport Network Link Physical CSE 461 University of Washington 2 Topics Network service models Datagrams (packets), virtual circuits

840 views • 42 slides
Network Layer (Routing) Where we are in the Course Moving on up to the Network Layer!

Network Layer (Routing) Where we are in the Course Moving on up to the Network Layer!

Network Layer (Routing) Where we are in the Course Moving on up to the Network Layer! Application Transport Network Link Physical CSE 461 University of Washington 2 Topics Network service models Datagrams (packets), virtual

757 views • 40 slides
Network Layer Where we are in the Course Moving on up to the Network Layer! Application

Network Layer Where we are in the Course Moving on up to the Network Layer! Application

Network Layer Where we are in the Course Moving on up to the Network Layer! Application Transport Network Link Physical CSE 461 University of Washington 2 Topics Network service models Datagrams (packets), virtual circuits

524 views • 28 slides
Network Security Network Security Srinidhi Varadarajan Network security Network security

Network Security Network Security Srinidhi Varadarajan Network security Network security

Network Security Network Security Srinidhi Varadarajan Network security Network security Foundations: what is security? cryptography authentication message integrity key distribution and certification Security in practice:

634 views • 36 slides
Data Link Layer MAC address Protocol Network Layer address must identify the network

Data Link Layer MAC address Protocol Network Layer address must identify the network

Overview What is a computer network? CSCE 515: What is the Internet? Computer Network What are the popular network reference Programming model? -- Midterm Review OSI, TCP/IP Wenyuan Xu What is the main responsibilities and

339 views • 12 slides
Data Link Layer MAC address Protocol Network Layer address must identify the network

Data Link Layer MAC address Protocol Network Layer address must identify the network

Overview What is a computer network? CSCE 515: What is the Internet? Computer Network What are the popular network reference Programming model? -- Review (partial) OSI, TCP/IP Wenyuan Xu What is the main responsibilities

299 views • 13 slides
1 Connection-oriented service Connectionless service Goal: data transfer between end systems

1 Connection-oriented service Connectionless service Goal: data transfer between end systems

A closer look at network structure: network edge: applications and hosts network core: Network Overview routers network of networks access networks, physical media: communication links Introduction Introduction 1-1 1-2

543 views • 8 slides
Network Data Plane Network Data Plane Network Data Plane (S. S. Lam) 3/23/2017 1 Network layer

Network Data Plane Network Data Plane Network Data Plane (S. S. Lam) 3/23/2017 1 Network layer

Network Data Plane Network Data Plane Network Data Plane (S. S. Lam) 3/23/2017 1 Network layer d li delivers segments from s s ts f sending to receiving host application transport network sender encapsulates segments p g

912 views • 44 slides
Driverless Cars, Smart Machines, and Automated Equipment October 4, 2018 Randall Haimovici

Driverless Cars, Smart Machines, and Automated Equipment October 4, 2018 Randall Haimovici

TECHNOLOGY AND IP FORUM: Driverless Cars, Smart Machines, and Automated Equipment October 4, 2018 Randall Haimovici Robert Keller Patty Robbins Mike Zito Uber Cisco Systems Uber Shook, Hardy & Bacon Director, Litigation Senior

773 views • 22 slides
ECG782: Multidimensional Digital Signal Processing Lecture 01 Introduction

ECG782: Multidimensional Digital Signal Processing Lecture 01 Introduction

Professor Brendan Morris, SEB 3216, brendan.morris@unlv.edu ECG782: Multidimensional Digital Signal Processing Lecture 01 Introduction http://www.ee.unlv.edu/~b1morris/ecg782/ 2 Outline Computer Vision Overview 3 What is Computer

438 views • 17 slides
Operated by Los Alamos National Security, LLC for the U.S. Department of Energy's NNSA Los Alamos

Operated by Los Alamos National Security, LLC for the U.S. Department of Energy's NNSA Los Alamos

Operated by Los Alamos National Security, LLC for the U.S. Department of Energy's NNSA Los Alamos National Laboratory LA-UR-16-27092 Laser Incidents and Lessons Learned at DOE Labs since 2014 11 th Annual DOE Laser Safety Officer Workshop

382 views • 22 slides
CROSS-COUNCIL VEHICLE TECHNOLOGY ROUNDTABLE NEW TECHNOLOGIES. NEW OPPORTUNITIES. VEHICLE

CROSS-COUNCIL VEHICLE TECHNOLOGY ROUNDTABLE NEW TECHNOLOGIES. NEW OPPORTUNITIES. VEHICLE

CROSS-COUNCIL VEHICLE TECHNOLOGY ROUNDTABLE NEW TECHNOLOGIES. NEW OPPORTUNITIES. VEHICLE TECHNOLOGY BRIEFINGS LAS VEGAS, NEVADA USA 29 OCT-02 NOV 2018 JOHN WARANIAK SEMA VICE PRESIDENT VEHICLE TECHNOLOGY JOHNW@SEMA.ORG @johnwaraniak 1

479 views • 30 slides
Workplace Accidents How They Can Haemorrhage Money Ian Dunsford Team Leader and Health &

Workplace Accidents How They Can Haemorrhage Money Ian Dunsford Team Leader and Health &

Workplace Accidents How They Can Haemorrhage Money Ian Dunsford Team Leader and Health & Safety Consultant WHO WE ARE Established 2003, strong family values Backed by ex-enforcement officers, and industry specialists. 20+

731 views • 30 slides
Oracle Guided Synthesis of Machine Learning Models Sanjit A. Seshia Professor EECS, UC

Oracle Guided Synthesis of Machine Learning Models Sanjit A. Seshia Professor EECS, UC

Oracle Guided Synthesis of Machine Learning Models Sanjit A. Seshia Professor EECS, UC Berkeley Publication: Towards Verified Artificial Intelligence, S. A. Seshia, D. Sadigh, and S. S. Sastry, June 2016. Dagstuhl Seminar March 20, 2018

345 views • 12 slides
COMPUTATIONAL TIE STRENGTH: THEORY AND APPLICATIONS Eric Gilberts Prelim kevin casey lucas

COMPUTATIONAL TIE STRENGTH: THEORY AND APPLICATIONS Eric Gilberts Prelim kevin casey lucas

COMPUTATIONAL TIE STRENGTH: THEORY AND APPLICATIONS Eric Gilberts Prelim kevin casey lucas leslie TIE STRENGTH concept & impact The strength of a tie is a (probably linear) combination of the amount of TIME , the emotional INTENSITY ,

603 views • 37 slides
Selective Search for Object Recognition Uijlings et al. Schuyler Smith Overview

Selective Search for Object Recognition Uijlings et al. Schuyler Smith Overview

Selective Search for Object Recognition Uijlings et al. Schuyler Smith Overview Introduction Object Recognition Selective Search Similarity Metrics Results Object Recognition Kitten Goal: Problem: Where do we look in

725 views • 44 slides

More recommend