re resilience of of dep deployed ed tc tcp to to bl blink
play

Re Resilience of of Dep Deployed ed TC TCP to to Bl Blink - PowerPoint PPT Presentation

Feb 27, 2023 •250 likes •367 views

Chair of Connected Mobility TUM Department of Informatics Re Resilience of of Dep Deployed ed TC TCP to to Bl Blink Attack At Paper written by Matthew Luckie Robert Beverly Tiange Wu Naval Postgraduate School University of Waikato

  1. Chair of Connected Mobility TUM Department of Informatics Re Resilience of of Dep Deployed ed TC TCP to to Bl Blink Attack At Paper written by Matthew Luckie Robert Beverly Tiange Wu Naval Postgraduate School University of Waikato CAIDA / UC San Diego mjl@wand.net.nz rbeverly@nps.edu tiangewu@caida.org Mark Allman Kc Claffy ICSI CAIDA / UC San Diego mallman@icir.org kc@caida.org Presented by: Victor Aguboshim 03679101 1

  2. Chair of Connected Mobility TUM Department of Informatics Co Conten ent v Motivation v Methodology v Active Measured Methods v Vantage Points v Conducted Tests v Result of Tests v Conclusions 2

  3. Chair of Connected Mobility TUM Department of Informatics Mo Moti tivati tion Ø To determine how a TCP connection will react to an attack from a unrevealed false IP address such that the attacker does not intend to receive traffic from the attack. Ø Does this attack cause a TCP connection reset? Ø Is it accepted, Challenged or just ignored? Ø Understand what TCP features enhance its resistance to Blind attacks 3

  4. Chair of Connected Mobility TUM Department of Informatics Me Metho thodo dology Ø Active Measured Methods Ø Blind Reset and SYN Test Ø Blind Data Test Ø Fingerprinting Test 4

  5. Chair of Connected Mobility TUM Department of Informatics Me Metho thodo dology Ø Vantage Points of Measurement: cld-us, hosted by CAIDA (San Diego, USA) Ø hlz-nz, hosted by the University of Waikato ( Waikato, New zealand) Ø Hosted by Massachusetts Institute of Technology (MIT), Cambridge. Ø 5

  6. Chair of Connected Mobility TUM Department of Informatics Conduct cted Tests and Results v Webserver Vulnerability Fig 2: Overview of the Results based on VPs Fig1: Overview of Results from the cld-us VP Fig 3: Overlap of results from the cld-us VP 6

  7. Chair of Connected Mobility TUM Department of Informatics Conduct cted Tests and Results v Infrastructure Vulnerability Fig 4: Overview of Response Laboratory testing of blind TCP attacks against BGP-speaking router and OpenFlow-speaking switches 7

  8. Chair of Connected Mobility TUM Department of Informatics Conduct cted Tests and Results v Ports Selection Predictability Fig 5: Overview of the predictability of the observed ports 8

  9. Chair of Connected Mobility TUM Department of Informatics Concl clusion Ø TCP is an important protocol with huge traffic and so the need for constant security and performance improvements. Ø 22% of connections are vulnerable to SYN and rest packets Ø 30% vulnerable to in-window data packets Ø 38.4% vulnerable to at least one of the three tested in-window attacks tested 9

  10. Chair of Connected Mobility TUM Department of Informatics Reference ces Alexa. Top 1,000,000 sites. • http://www.alexa.com/topsites. Cisco. TCP Vulnerabilities in Multiple IOS-Based Cisco • Products,2004.http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory /cisco-sa-20040420-tcp-ios. M. Zalewski. p0f v3 (version3.08b).http://lcamtuf.coredump.cx/p0f3/. • M. Luckie. Scamper: a scalable and extensible packet prober for active measurement • of the Internet. In IMC, pages 239–245, Nov. 2010. 10

  11. Chair of Connected Mobility TUM Department of Informatics Thank k you for your time Qu Ques estions? s? 11

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Resilience of Deployed TCP to Blind Attacks Matthew Luckie , Robert Beverly, Tiange Wu, Mark

Resilience of Deployed TCP to Blind Attacks Matthew Luckie , Robert Beverly, Tiange Wu, Mark

Resilience of Deployed TCP to Blind Attacks Matthew Luckie , Robert Beverly, Tiange Wu, Mark Allman, kc claffy IMC 2015, October 28th 2015 1 w w w . cai da. or What is a Blind Attack on TCP? A brute-force attempt by an off-path

335 views • 29 slides
Lessons from Contributng to WebKit and Blink Bruno de Oliveira Abinader WebKit, Chromium/Blink

Lessons from Contributng to WebKit and Blink Bruno de Oliveira Abinader WebKit, Chromium/Blink

Lessons from Contributng to WebKit and Blink Bruno de Oliveira Abinader WebKit, Chromium/Blink commiter abinader.com.br brunoabinader@gmail.com abinader @ irc.freenode.org 2 / 25 Contents Briefng on WebKit and Blink The WebKit

446 views • 25 slides
A Deployed Analyst A Deployed Analyst in in The Vietnam War The Vietnam War E. B. Vandiver

A Deployed Analyst A Deployed Analyst in in The Vietnam War The Vietnam War E. B. Vandiver

A Deployed Analyst A Deployed Analyst in in The Vietnam War The Vietnam War E. B. Vandiver III 24 August 2007 1 Purpose Relate the experiences of a deployed analyst during the Vietnam War in the late 1960s. Compare the experience

643 views • 42 slides
PROGRAMMING ADVANCED FEEDBACK WITH ARDUINO Part 02 - Led blink fastled FASTLED LIBRARY

PROGRAMMING ADVANCED FEEDBACK WITH ARDUINO Part 02 - Led blink fastled FASTLED LIBRARY

Part 02 - Led blink fastled PROGRAMMING ADVANCED FEEDBACK WITH ARDUINO Part 02 - Led blink fastled FASTLED LIBRARY Documentation here: https://github.com/FastLED/FastLED/ wiki/OverviewGrove-Chainable_RGB_LED/ Part 02 - Led blink fastled

677 views • 3 slides
Blink: 3D Display Multiplexing for Virtualized Applications Jacob Gorm Hansen, University of

Blink: 3D Display Multiplexing for Virtualized Applications Jacob Gorm Hansen, University of

Outline Introduction History: The Tahoma Project Blink Evaluation Demo Blink: 3D Display Multiplexing for Virtualized Applications Jacob Gorm Hansen, University of Copenhagen January 20, 2006 Jacob Gorm Hansen, University of Copenhagen

482 views • 22 slides
resilience Professor Kate Thomas c.p.thomas@bham.ac.uk What is resilience? Resilience is the

resilience Professor Kate Thomas c.p.thomas@bham.ac.uk What is resilience? Resilience is the

How to improve our resilience Professor Kate Thomas c.p.thomas@bham.ac.uk What is resilience? Resilience is the process of adapting well in the face of adversity, trauma, tragedy, threats or significant sources of stress Resilience is

287 views • 9 slides
Do Now: Resilience 1. Create a Circle Map for resilience. 2. Look at the pictures. What

Do Now: Resilience 1. Create a Circle Map for resilience. 2. Look at the pictures. What

Do Now: Resilience 1. Create a Circle Map for resilience. 2. Look at the pictures. What do you think resilience means? 3. Write your ideas in a Circle Map. Unit 3 Stories of Resilience 1. Write your definition of Resilience is...

455 views • 6 slides
Developing Resilience Parent Council Meeting What is resilience . Resilience is the ability to

Developing Resilience Parent Council Meeting What is resilience . Resilience is the ability to

Developing Resilience Parent Council Meeting What is resilience . Resilience is the ability to bounce back after something negative like a tough situation or difficult time and then get back to feeling just about as good as you felt

517 views • 12 slides
How do we assess resilience? Paul Ryan, Australian Resilience Centre Allyson Quinlan, Resilience

How do we assess resilience? Paul Ryan, Australian Resilience Centre Allyson Quinlan, Resilience

How do we assess resilience? Paul Ryan, Australian Resilience Centre Allyson Quinlan, Resilience Alliance Introduction q Presenters q Structure of this weeks session q Overview (Paul) Conceptual framing Overview of resilience assessment

644 views • 26 slides
Creating Emotion in the Blink of an Eye presented by Jeroen Snepvangers Q: How can we transform

Creating Emotion in the Blink of an Eye presented by Jeroen Snepvangers Q: How can we transform

TransFolio presents Creating Emotion in the Blink of an Eye presented by Jeroen Snepvangers Q: How can we transform VR into a mainstream must-have? A: Open your eyes to the power of Human Emotion Why Emotion Matters Wizard of Oz, a

373 views • 16 slides
SAME Resilience Webinar Dedicated to National Security Since 1920 JETC Resilience Program Wed, 23

SAME Resilience Webinar Dedicated to National Security Since 1920 JETC Resilience Program Wed, 23

SAME Resilience Webinar Dedicated to National Security Since 1920 JETC Resilience Program Wed, 23 May Government Panel on Priority Resilience Issues Cyber Resiliency of Mission Critical Automation Systems Thr, 24 May Resilience

564 views • 27 slides
Mission: Resilience Keeping going & not giving up! We are going to learn all about the

Mission: Resilience Keeping going & not giving up! We are going to learn all about the

Mission: Resilience Keeping going & not giving up! We are going to learn all about the importance of resilience and what it means. Video What is resilience and when do we need it? Who has heard of resilience? Resilience is being able to

295 views • 12 slides
RESILIENCE THROUGH MOBILITY DEPARTMENT OF OPERATIONS & EMERGENCIES RESILIENCE AND DRR

RESILIENCE THROUGH MOBILITY DEPARTMENT OF OPERATIONS & EMERGENCIES RESILIENCE AND DRR

RESILIENCE THROUGH MOBILITY DEPARTMENT OF OPERATIONS & EMERGENCIES RESILIENCE AND DRR Reduce the impacts of natural hazards Activities Enhance the peoples resilience Frameworks Analyze root causes of disasters Reduce

686 views • 10 slides
Recent Blink Improvements in Text & Layout #webengineshackfest Dominik Rttsches

Recent Blink Improvements in Text & Layout #webengineshackfest Dominik Rttsches

Recent Blink Improvements in Text & Layout #webengineshackfest Dominik Rttsches <drott@google.com> December 2015 Agenda Goals & Challenges What does the Font code do? Recent Improvements Future Plans

1.11k views • 56 slides
COM300 Book Review Presentation Book: Blink The Power of Thinking Without Thinking Author:

COM300 Book Review Presentation Book: Blink The Power of Thinking Without Thinking Author:

COM300 Book Review Presentation Book: Blink The Power of Thinking Without Thinking Author: Malcolm Gladwell Made by: Prachi Gupta Introduction Our brain uses two different strategies to make sense of any situation: 1. Conscious

346 views • 9 slides
ARM Assembly Language and Machine Code Goal: Blink an LED Summary You need to understand how

ARM Assembly Language and Machine Code Goal: Blink an LED Summary You need to understand how

ARM Assembly Language and Machine Code Goal: Blink an LED Summary You need to understand how processors represent and execute instructions Instruction set architecture often easier to understand by looking at the bits. Encoding instructions

636 views • 62 slides
Sliding right into disaster - Left-to-right sliding windows leak Daniel J. Bernstein, Joachim

Sliding right into disaster - Left-to-right sliding windows leak Daniel J. Bernstein, Joachim

Sliding right into disaster - Left-to-right sliding windows leak Daniel J. Bernstein, Joachim Breitner, Daniel Genkin, Leon Groot Bruinderink , Nadia Heninger, Tanja Lange, Christine van Vredendaal and Yuval Yarom September 28th, 2017 Sliding

581 views • 44 slides
Sliding window - Sender side Cumulative Acknowledgments Not sent Sent, no ACK ACK:ed Free

Sliding window - Sender side Cumulative Acknowledgments Not sent Sent, no ACK ACK:ed Free

Sliding window - Sender side Cumulative Acknowledgments Not sent Sent, no ACK ACK:ed Free Sending buffer at the sender: Sliding Window New data sent to transport layer by application, but not yet sent Free buffer space where application

564 views • 3 slides
Scalar Multiplication and Addition Chains Peter Birkner Department of Mathematics, Technical

Scalar Multiplication and Addition Chains Peter Birkner Department of Mathematics, Technical

Motivation Left-To-Right Binary Right-To-Left Binary Signed Digit Representations Windowing Methods Scalar Multiplication and Addition Chains Peter Birkner Department of Mathematics, Technical University of Denmark Summer School on Elliptic

773 views • 17 slides
IN SUPPORT OF WORKLOAD-AWARE STREAMING STATE MANAGEMENT Vasiliki Kalavri John Liagouris

IN SUPPORT OF WORKLOAD-AWARE STREAMING STATE MANAGEMENT Vasiliki Kalavri John Liagouris

IN SUPPORT OF WORKLOAD-AWARE STREAMING STATE MANAGEMENT Vasiliki Kalavri John Liagouris vkalavri@bu.edu liagos@bu.edu HotStorage 2020 14 July 2020 STREAMING DATAFLOWS Nexmark Q4: Rolling average of winning bids auctions source

349 views • 33 slides
Large Scale Simulation of Tor: Stream Mix Networks Low latency Networks Network Correlation

Large Scale Simulation of Tor: Stream Mix Networks Low latency Networks Network Correlation

Large Scale Simulation of Tor: Stream Correlation Attacks Gavin O Gorman Anonymous Networks Large Scale Simulation of Tor: Stream Mix Networks Low latency Networks Network Correlation Attacks Simulation Results Attacks Gavin O

328 views • 20 slides
Cyber Security in Smart Grids EE 772 : Smart Grids Prof. S. A. Khaparde Indian Institute of

Cyber Security in Smart Grids EE 772 : Smart Grids Prof. S. A. Khaparde Indian Institute of

Cyber Security in Smart Grids EE 772 : Smart Grids Prof. S. A. Khaparde Indian Institute of Technology Bombay Introduction to Cyber-Physical Systems - Communication between physical devices through a cyber layer - Sensors and Actuators

893 views • 53 slides
Hacking Excel Online How to exploit Calc Nicolas Joly - @n_joly MSRC Vulnerabilities and

Hacking Excel Online How to exploit Calc Nicolas Joly - @n_joly MSRC Vulnerabilities and

Hacking Excel Online How to exploit Calc Nicolas Joly - @n_joly MSRC Vulnerabilities and Mitigations Team SSTIC June 5 th , 2020 This presentation is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS

558 views • 23 slides
Advanced Scientific Computing with R 4. Plots Michael Hahsler Southern Methodist University

Advanced Scientific Computing with R 4. Plots Michael Hahsler Southern Methodist University

Advanced Scientific Computing with R 4. Plots Michael Hahsler Southern Methodist University February 16, 2014 These slides are largely based on An Introduction to R http://CRAN.R-Project.org/ Michael Hahsler (SMU) Adv. Sci. Comp. with

464 views • 23 slides

More recommend