SlideShare a Scribd company logo

Layers Attacks

Download as PPT, PDF
C
chauhankapil

This document discusses attacks on different layers of the TCP/IP protocol stack. It outlines vulnerabilities in the IP, ICMP, routing, TCP and application layers that can enable attacks like IP fragmentation, ICMP redirects, routing hijacks, TCP session hijacking, and application layer attacks. It also discusses how intrusion detection systems can help monitor network traffic and detect attacks targeting legitimate network services and hosts that bypass firewalls.

Engineering
1 of 10
Download to read offline
1
2
Most read
3
4
Most read
5
6
Most read
7
8
9
10
Layers Attack Prof. Neeraj Bhargava Kapil Chauhan Department of Computer Science School of Engineering & Systems Sciences MDS University, Ajmer
Security Attacks on Different Layers IP Attacks ICMP Attacks Routing Attacks TCP Attacks Application Layer Attacks
TCP/IP was designed for connectivity Assumed to have lots of trust Host implementation vulnerabilities Software “had/have/will have” bugs Some elements in the specification were left to the implementers
Security Flaws in IP IP fragmentation attack End hosts need to keep the fragments till all the fragments arrive Traffic amplification attack IP allows broadcast destination Problems?
ICMP Attacks No authentication ICMP redirect message Can cause the host to switch gateways Benefit of doing this?  Man in the middle attack, sniffing ICMP destination unreachable Can cause the host to drop connection
Routing Attacks Distance Vector Routing Announce 0 distance to all other nodes  Blackhole traffic  Eavesdrop Link State Routing Can drop links randomly Can claim direct link to any other routers A bit harder to attack than DV BGP ASes can announce arbitrary prefix ASes can alter path
TCP Layer Attacks TCP Session Hijack When is a TCP packet valid?  Address/Port/Sequence Number in window How to get sequence number?  Sniff traffic  Guess it  Many earlier systems had predictable ISN Inject arbitrary data to the connection
Application Layer Attacks Applications don’t authenticate properly Authentication information in clear FTP, Telnet, POP DNS insecurity DNS poisoning DNS zone transfer
Intrusion Detection Systems Firewalls allow traffic only to legitimate hosts and services Traffic to the legitimate hosts/services can have attacks CodeReds on IIS Solution? Intrusion Detection Systems Monitor data and behavior Report when identify attacks
Intrusion Detection Systems Firewalls allow traffic only to legitimate hosts and services Traffic to the legitimate hosts/services can have attacks CodeReds on IIS Solution? Intrusion Detection Systems Monitor data and behavior Report when identify attacks

More Related Content

PPT
Protocol for Secure Communication
chauhankapil
 
PPT
Lecture 5 ip security
rajakhurram
 
PPTX
Vpn virtual private network
Habibullah Adel
 
PDF
Privacy Enhanced Mail (PEM)
Palash Mehar
 
PPT
Ch06 Wireless Network Security
Information Technology
 
PPTX
Email Security Presentation
Yosef Gamble
 
ODP
Wifi Security, or Descending into Depression and Drink
SecurityTube.Net
 
PDF
Cns unit4
PRADEEPJ30
 
Protocol for Secure Communication
chauhankapil
 
Lecture 5 ip security
rajakhurram
 
Vpn virtual private network
Habibullah Adel
 
Privacy Enhanced Mail (PEM)
Palash Mehar
 
Ch06 Wireless Network Security
Information Technology
 
Email Security Presentation
Yosef Gamble
 
Wifi Security, or Descending into Depression and Drink
SecurityTube.Net
 
Cns unit4
PRADEEPJ30
 

What's hot (20)

PDF
E-Mail Security Protocol - 1 Privacy Enhanced Mail (PEM) Protocol
Vishal Kumar
 
PDF
Network Security Applications
Hatem Mahmoud
 
PPTX
Network security
SVijaylakshmi
 
PDF
Email security & threads
Inocentshuja Ahmad
 
DOCX
RESUME _ PRATHAMESH PISE
Prathamesh Pise
 
PPT
E-mail Security in Network Security NS5
koolkampus
 
PPTX
Wlan security
Upasona Roy
 
PDF
message passing interface
ZTech Proje
 
PDF
Attack Robustness and Security Enhancement with Improved Wired Equivalent Pro...
IDES Editor
 
PPT
T C P I P Weaknesses And Solutions
eroglu
 
PPTX
Wireless Security
siDz
 
PPTX
Network Security Projects
Phdtopiccom
 
PPTX
IP Security and its Components
Mohibullah Saail
 
PDF
Rushabhraj resume
Rushabh Singhavi
 
PPT
Email Security : PGP & SMIME
Rohit Soni
 
PPSX
Security & Privacy in WLAN - A Primer and Case Study
Mohammad Mahmud Kabir
 
PPT
Wireless Device and Network level security
Chetan Kumar S
 
PPTX
WLAN SECURITY BY SAIKIRAN PANJALA
Saikiran Panjala
 
PDF
Electronic mail security
Dr.Florence Dayana
 
PPTX
Wireless network security
Shahid Beheshti University
 
E-Mail Security Protocol - 1 Privacy Enhanced Mail (PEM) Protocol
Vishal Kumar
 
Network Security Applications
Hatem Mahmoud
 
Network security
SVijaylakshmi
 
Email security & threads
Inocentshuja Ahmad
 
RESUME _ PRATHAMESH PISE
Prathamesh Pise
 
E-mail Security in Network Security NS5
koolkampus
 
Wlan security
Upasona Roy
 
message passing interface
ZTech Proje
 
Attack Robustness and Security Enhancement with Improved Wired Equivalent Pro...
IDES Editor
 
T C P I P Weaknesses And Solutions
eroglu
 
Wireless Security
siDz
 
Network Security Projects
Phdtopiccom
 
IP Security and its Components
Mohibullah Saail
 
Rushabhraj resume
Rushabh Singhavi
 
Email Security : PGP & SMIME
Rohit Soni
 
Security & Privacy in WLAN - A Primer and Case Study
Mohammad Mahmud Kabir
 
Wireless Device and Network level security
Chetan Kumar S
 
WLAN SECURITY BY SAIKIRAN PANJALA
Saikiran Panjala
 
Electronic mail security
Dr.Florence Dayana
 
Wireless network security
Shahid Beheshti University
 
Ad

Similar to Layers Attacks (20)

PPTX
security problems in the tcp/ip protocol suite
Yash Kotak
 
PPT
Web Application Security
Abdul Wahid
 
PPT
12 tcp-dns
Culverton Blessy
 
PPT
3.Network
phanleson
 
PPTX
Oss web application and network security
Rishabh Mehan
 
PPTX
Presentation1
Rahul Polara
 
PDF
Deep Knowledge on Network Hacking Philosopy
Don Anto
 
PDF
08 tcp-dns
pantu_1961
 
PPT
6.Routing
phanleson
 
PPTX
IP Spoofiaaaaaaaaaaaaaaaaaaaang ppt.pptx
aayushparalikar
 
PPT
Lec21 22
namish_maheshwari
 
PPT
Network Security Chapter 7
AfiqEfendy Zaen
 
PPTX
Socket programing
Pankil Agrawal
 
PPT
Hacking Cisco
guestd05b31
 
PPTX
Root via sms. 4G security assessment
Sergey Gordeychik
 
PPTX
Security in network
DaNang University of Technology
 
PPT
Switch and Router Security Testing
Conferencias FIST
 
PPT
Day4
Jai4uk
 
PPTX
gkk_2021123rg5hSecurity essentials domain 2
Anne Starr
 
PPTX
gkk20211e4djwew4dSecurity essentials domain 2
Anne Starr
 
security problems in the tcp/ip protocol suite
Yash Kotak
 
Web Application Security
Abdul Wahid
 
12 tcp-dns
Culverton Blessy
 
3.Network
phanleson
 
Oss web application and network security
Rishabh Mehan
 
Presentation1
Rahul Polara
 
Deep Knowledge on Network Hacking Philosopy
Don Anto
 
08 tcp-dns
pantu_1961
 
6.Routing
phanleson
 
IP Spoofiaaaaaaaaaaaaaaaaaaaang ppt.pptx
aayushparalikar
 
Lec21 22
namish_maheshwari
 
Network Security Chapter 7
AfiqEfendy Zaen
 
Socket programing
Pankil Agrawal
 
Hacking Cisco
guestd05b31
 
Root via sms. 4G security assessment
Sergey Gordeychik
 
Security in network
DaNang University of Technology
 
Switch and Router Security Testing
Conferencias FIST
 
Day4
Jai4uk
 
gkk_2021123rg5hSecurity essentials domain 2
Anne Starr
 
gkk20211e4djwew4dSecurity essentials domain 2
Anne Starr
 
Ad

More from chauhankapil (20)

PPTX
Gray level transformation
chauhankapil
 
PPTX
Elements of visual perception
chauhankapil
 
PPTX
JSP Client Request
chauhankapil
 
PPTX
Jsp server response
chauhankapil
 
PPTX
Markov decision process
chauhankapil
 
PPTX
RNN basics in deep learning
chauhankapil
 
PPTX
Introduction to generative adversarial networks (GANs)
chauhankapil
 
PPTX
Bayesian probabilistic interference
chauhankapil
 
PPTX
Jsp
chauhankapil
 
PPTX
Exception handling in java
chauhankapil
 
PPTX
Knowledge acquistion
chauhankapil
 
PPTX
Knowledge based system
chauhankapil
 
PPTX
Introduction of predicate logics
chauhankapil
 
PPTX
Types of inheritance in java
chauhankapil
 
PPTX
Representation of syntax, semantics and Predicate logics
chauhankapil
 
PPTX
Inheritance in java
chauhankapil
 
PPTX
Propositional logic
chauhankapil
 
PPTX
Constructors in java
chauhankapil
 
PPTX
Methods in java
chauhankapil
 
PPT
Circular linked list
chauhankapil
 
Gray level transformation
chauhankapil
 
Elements of visual perception
chauhankapil
 
JSP Client Request
chauhankapil
 
Jsp server response
chauhankapil
 
Markov decision process
chauhankapil
 
RNN basics in deep learning
chauhankapil
 
Introduction to generative adversarial networks (GANs)
chauhankapil
 
Bayesian probabilistic interference
chauhankapil
 
Jsp
chauhankapil
 
Exception handling in java
chauhankapil
 
Knowledge acquistion
chauhankapil
 
Knowledge based system
chauhankapil
 
Introduction of predicate logics
chauhankapil
 
Types of inheritance in java
chauhankapil
 
Representation of syntax, semantics and Predicate logics
chauhankapil
 
Inheritance in java
chauhankapil
 
Propositional logic
chauhankapil
 
Constructors in java
chauhankapil
 
Methods in java
chauhankapil
 
Circular linked list
chauhankapil
 

Recently uploaded (20)

PPTX
CURRICULAM DESIGN engineering FOR CSE 2025.pptx
Amuda3
 
PPT
Occupational Health and Safety Management System
Akshay Kant Mishra
 
PDF
COURSE DESCRIPTOR OF SURVEYING R24 SYLLABUS
MNANDITHACIVILSTAFF
 
PDF
Mitigating Risks through Effective Management for Enhancing Organizational Pe...
IJAEMSJORNAL
 
PPTX
Fundamentals of Mechanical Engineering.pptx
MdMowdudAhmed
 
PDF
Level 2 – IBM Data and AI Fundamentals (1)_v1.1.PDF
KSRIHARISASANKA
 
PDF
Soil Improvement Techniques Note - Rabbi
rahmatideal000
 
PDF
PPT on Performance Review to get promotions
prashant593122
 
PPT
introduction to datamining and warehousing
ssuser4ab3a2
 
PDF
null (2) bgfbg bfgb bfgb fbfg bfbgf b.pdf
Ramez Hosny
 
PPTX
Information Storage and Retrieval Techniques Unit III
jeyamohan2519
 
PDF
SMART SIGNAL TIMING FOR URBAN INTERSECTIONS USING REAL-TIME VEHICLE DETECTI...
Niraj Aarya
 
PDF
keyrequirementskkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkk
mojeeburahmanwardak
 
PDF
Enhancing Cyber Defense Against Zero-Day Attacks using Ensemble Neural Networks
IJCNCJournal
 
PPT
Total quality management ppt for engineering students
juleeyadav818
 
PDF
A SYSTEMATIC REVIEW OF APPLICATIONS IN FRAUD DETECTION
IJNSA Journal
 
PDF
Integrating Fractal Dimension and Time Series Analysis for Optimized Hyperspe...
acijjournal
 
PDF
BIO-INSPIRED HORMONAL MODULATION AND ADAPTIVE ORCHESTRATION IN S-AI-GPT
ijaia
 
PPT
Introduction, IoT Design Methodology, Case Study on IoT System for Weather Mo...
MariaRufina4
 
PPTX
introduction to high performance computing
JuanDavid747466
 
CURRICULAM DESIGN engineering FOR CSE 2025.pptx
Amuda3
 
Occupational Health and Safety Management System
Akshay Kant Mishra
 
COURSE DESCRIPTOR OF SURVEYING R24 SYLLABUS
MNANDITHACIVILSTAFF
 
Mitigating Risks through Effective Management for Enhancing Organizational Pe...
IJAEMSJORNAL
 
Fundamentals of Mechanical Engineering.pptx
MdMowdudAhmed
 
Level 2 – IBM Data and AI Fundamentals (1)_v1.1.PDF
KSRIHARISASANKA
 
Soil Improvement Techniques Note - Rabbi
rahmatideal000
 
PPT on Performance Review to get promotions
prashant593122
 
introduction to datamining and warehousing
ssuser4ab3a2
 
null (2) bgfbg bfgb bfgb fbfg bfbgf b.pdf
Ramez Hosny
 
Information Storage and Retrieval Techniques Unit III
jeyamohan2519
 
SMART SIGNAL TIMING FOR URBAN INTERSECTIONS USING REAL-TIME VEHICLE DETECTI...
Niraj Aarya
 
keyrequirementskkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkk
mojeeburahmanwardak
 
Enhancing Cyber Defense Against Zero-Day Attacks using Ensemble Neural Networks
IJCNCJournal
 
Total quality management ppt for engineering students
juleeyadav818
 
A SYSTEMATIC REVIEW OF APPLICATIONS IN FRAUD DETECTION
IJNSA Journal
 
Integrating Fractal Dimension and Time Series Analysis for Optimized Hyperspe...
acijjournal
 
BIO-INSPIRED HORMONAL MODULATION AND ADAPTIVE ORCHESTRATION IN S-AI-GPT
ijaia
 
Introduction, IoT Design Methodology, Case Study on IoT System for Weather Mo...
MariaRufina4
 
introduction to high performance computing
JuanDavid747466
 

Layers Attacks

  • 1. Layers Attack Prof. Neeraj Bhargava Kapil Chauhan Department of Computer Science School of Engineering & Systems Sciences MDS University, Ajmer
  • 2. Security Attacks on Different Layers IP Attacks ICMP Attacks Routing Attacks TCP Attacks Application Layer Attacks
  • 3. TCP/IP was designed for connectivity Assumed to have lots of trust Host implementation vulnerabilities Software “had/have/will have” bugs Some elements in the specification were left to the implementers
  • 4. Security Flaws in IP IP fragmentation attack End hosts need to keep the fragments till all the fragments arrive Traffic amplification attack IP allows broadcast destination Problems?
  • 5. ICMP Attacks No authentication ICMP redirect message Can cause the host to switch gateways Benefit of doing this?  Man in the middle attack, sniffing ICMP destination unreachable Can cause the host to drop connection
  • 6. Routing Attacks Distance Vector Routing Announce 0 distance to all other nodes  Blackhole traffic  Eavesdrop Link State Routing Can drop links randomly Can claim direct link to any other routers A bit harder to attack than DV BGP ASes can announce arbitrary prefix ASes can alter path
  • 7. TCP Layer Attacks TCP Session Hijack When is a TCP packet valid?  Address/Port/Sequence Number in window How to get sequence number?  Sniff traffic  Guess it  Many earlier systems had predictable ISN Inject arbitrary data to the connection
  • 8. Application Layer Attacks Applications don’t authenticate properly Authentication information in clear FTP, Telnet, POP DNS insecurity DNS poisoning DNS zone transfer
  • 9. Intrusion Detection Systems Firewalls allow traffic only to legitimate hosts and services Traffic to the legitimate hosts/services can have attacks CodeReds on IIS Solution? Intrusion Detection Systems Monitor data and behavior Report when identify attacks
  • 10. Intrusion Detection Systems Firewalls allow traffic only to legitimate hosts and services Traffic to the legitimate hosts/services can have attacks CodeReds on IIS Solution? Intrusion Detection Systems Monitor data and behavior Report when identify attacks