1.Consider the following threats to Web security, and describe how each is count
ID: 3908439 • Letter: 1
Question
1.Consider the following threats to Web security, and describe how each is countered by a particular feature of SSL.
a.Brute-Force Cryptanalytic Attack: An exhaustive search of the key space for a conventional encryption algorithm.
b.Known Plaintext Dictionary Attack: Many messages will contain predictable plaintext, such as the HTTP GET command. An attacker constructs a dictionary containing every possible encryption of the known plaintext message. When an encrypted message is intercepted, the attacker takes the portion containing the encrypted known plaintext, and looks up the ciphertext in the dictionary. The ciphertext should match against an entry that was encrypted with the same secret key. If there are several matches, each of these can be tried against the full ciphertext to determine the right one. This attack is especially effective against small key sizes (e.g., 40-bit keys).
c.Replay Attack: Earlier SSL handshake messages are replayed.
d.Man-in-the-Middle Attack: An attacker interposes during key exchange, acting as the client to the server, and as the server to the client.
e.Password Sniffing: Passwords in HTTP or other application traffic are eavesdropped.
f.IP Spoofing: Uses forged IP addresses to fool a host into accepting bogus data.
g.IP Hijacking: An active, authenticated connection between two hosts is disrupted, and the attacker takes the place of one of the hosts.
h.SYN Flooding: An attacker sends TCP SYN messages to request a connection but does not respond to the final message to establish the connection fully. The attacked TCP module typically leaves the "half-open connection" around for a few minutes. Repeated SYN messages can clog the TCP module.
Explanation / Answer
a.SSL against Brute-Force Cryptanalytic Attack :-
SSL has the potential to negotiate with strong ciphers as well it will use a symmetric one time key that was utilized during the session, which will break Brute-Force Cryptanalytic Attack.
b. SSL againts Known Plaintext Dictionary Attack:
To deal with this kind of attack, ssl uses "user per random number", to generate the keys during session. It will helpful for us to randomize the cipher text.
c.Replay Attack:
With respect to time, an 4 byte random number was generated dureing each session, so the at the random number will be different for each session.
d.Man-in-the-Middle Attack:
To fight against this attack, we use mutual authentication with certificates.
e.Password Sniffing:
To fight against passsword sniffing attack, ssl will make sure the passwords are encrypted.
f. IP spoofing:
Since SSl doesn't make use Ip address to authenticate the client and server, IP spoofing can't be successful.
g.IP Hijacking:
In case if the attacker hacks the connection , the attackers has no way to know the encryption key.So once when the user tries to move data as a legitimate user, the protocol will automatically will close the connection. so without the password, even if the user able to hack the hand shaking, the user can't pass the authentication phase.
Related Questions
Navigate
Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.