• No results found

CSCI 454/554 Computer and Network Security. Topic 8.1 IPsec

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "CSCI 454/554 Computer and Network Security. Topic 8.1 IPsec"

Copied!
34
0
0

Loading.... (view fulltext now)

Download now ( 34 Page )

Full text

(1)

CSCI 454/554 Computer and Network Security

(2)

Outline

■  IPsec Objectives

■  IPsec architecture & concepts ■  IPsec authentication header

(3)

IPsec Objectives

■  Why do we need IPsec?

■  IP V4 has no authentication

■  IP spoofing

■  Payload could be changed without

detection.

■  IP V4 has no confidentiality mechanism

■  Eavesdropping

■  Denial of service (DOS) attacks

■  Cannot hold the attacker accountable

(4)

IPsec Objectives (Cont’d)

■  IP layer security mechanism for IPv4 and

IPv6

■  Not all applications need to be security

aware

■  Can be transparent to users ■  Provide authentication and

(5)

IPsec Architecture

IPsec module 1 IPsec module 2

SPD IKE SAD IPsec SPD IKE SAD IPsec SA

SPD: Security Policy Database; IKE: Internet Key Exchange; SA: Security Association; SAD: Security Association Database.

(6)

IPsec Architecture (Cont’d)

■  Two Protocols (Mechanisms)

■  Authentication Header (AH)

■  Encapsulating Security Payload (ESP)

■  IKE Protocol

(7)

IPsec Architecture (Cont’d)

■  Can be implemented in

■  Host or gateway

■  Can work in two Modes

■  Tunnel mode

(8)

Hosts & Gateways

■  Hosts can implement IPsec to connect to:

■  Other hosts in transport or tunnel mode ■  Or Gateways in tunnel mode

■  Gateways to gateways

(9)

Tunnel Mode

A B Encrypted Tunnel Gateway Gateway New IP Header AH or ESP Header TCP Data Orig IP Header Encrypted Unencryp ted Unencryp ted

(10)

Tunnel Mode (Cont’d)

■  ESP applies only to the tunneled packet ■  AH can be applied to portions of the outer

header Outer IP header Inner IP header IPsec header Higher layer protocol ESP AH Real IP destination Destination IPsec entity

(11)

Transport Mode

A B New IP Header AH or ESP Header TCP Data Encrypted/Authenticated

(12)

Transport Mode (Cont’d)

■  ESP protects higher layer payload only

■  AH can protect IP headers as well as higher

layer payload IP header IP options IPsec header Higher layer protocol ESP AH Real IP destination

(13)

Security Association (SA)

■  An association between a sender and a

receiver

■  Consists of a set of security related

parameters

■  E.g., sequence number, encryption key

■  One way relationship

■  Determine IPsec processing for senders ■  Determine IPsec decoding for destination ■  SAs are not fixed! Generated and

(14)

Security Parameters Index (SPI)

■  A bit string assigned to an SA.

■  Carried in AH and ESP headers to enable

the receiving system to select the SA under which the packet will be processed.

■  32 bits

■  SPI + Dest IP address + IPsec Protocol

■  Uniquely identifies each SA in SA

(15)

SA Database (SAD)

■  Holds parameters for each SA

■  Sequence number counter ■  Lifetime of this SA

■  AH and ESP information ■  Tunnel or transport mode

■  Every host or gateway participating in

(16)

SA Bundle

■  More than 1 SA can apply to a packet

■  Example: ESP does not authenticate new

IP header. How to authenticate?

■  Use SA to apply ESP w/out

authentication to original packet

(17)

Security Policy Database (SPD)

■  Decide

■  What traffic to protect?

■  Has incoming traffic been properly secured?

■  Policy entries define which SA or SA Bundles to

use on IP traffic

■  Each host or gateway has their own SPD ■  Index into SPD by Selector fields

■  Selectors: IP and upper-layer protocol field

values.

■  Examples: Dest IP, Source IP, Transport

Protocol, IPSec Protocol, Source & Dest Ports, …

(18)

SPD Entry Actions

■  Discard

■  Do not let in or out

■  Bypass

■  Outbound: do not apply IPSec ■  Inbound: do not expect IPSec

■  Protect – will point to an SA or SA bundle

■  Outbound: apply security

■  Inbound: security must have been

(19)

SPD Protect Action

■  If the SA does not exist…

■  Outbound processing

■  Trigger key management protocols to

generate SA dynamically, or

■  Request manual specification, or ■  Other methods

■  Inbound processing

(20)

Outbound Processing

Is it for IPsec? If so, which policy entry to select? … SPD (Policy) … SA Database IP Packet

Outbound packet (on A)

A B

SPI & IPsec Packet

Send to B

Determine the SA and its SPI

(21)

Inbound Processing

Use SPI to index the SAD

SA Database

Original IP Packet SPI & Packet

Inbound packet (on B)

A B

From A

… SPD (Policy)

Was packet properly secured?

(22)

Authentication Header (AH)

■  Data integrity

■  Entire packet has not been tampered

with

■  Authentication

■  Can “trust” IP address source ■  Use MAC to authenticate

■  Anti-replay feature ■  Integrity check value

(23)

Integrity Check Value - ICV

■  Message authentication code (MAC)

calculated over

■  IP header fields that do not change or

are predictable

■  IP header fields that are unpredictable

are set to zero.

■  IPsec AH header with the ICV field set to

zero.

■  Upper-level data

(24)

IPsec Authentication Header

SAD SPI Sequence Number ICV Next Header (TCP/UDP) Payload Length 6-2=4 Reserved

(25)

Encapsulated Security Protocol (ESP)

■  Confidentiality for upper layer protocol ■  Partial traffic flow confidentiality (Tunnel

mode only)

■  Data origin authentication and

(26)

Outbound Packet Processing

■  Form ESP payload ■  Pad as necessary

■  Encrypt result [payload, padding, pad

length, next header]

(27)

Outbound Packet Processing...

■  Sequence number generation

■  Increment then use

■  With anti-replay enabled, check for rollover and send

only if no rollover

■  With anti-replay disabled, still needs to increment and

use but no rollover checking

■  ICV calculation

■  ICV includes whole ESP packet except for

authentication data field.

■  Implicit padding of ‘0’s between next header and

authentication data is used to satisfy block size requirement for ICV algorithm

(28)

ES

P

Tr

an

sp

or

t

Ex

am

pl

e

SPI Sequence Number Original IP Header

Integrity Check Value

A u th en ti ca ti o n c o ve ra g e En cr yp te

d Payload (TCP Header and Data)

Variable Length Pad Length Padding (0-255 bytes) Next Header

(29)

Inbound Packet Processing

■  Sequence number checking

■  Anti-replay is used only if authentication is

selected

■  Sequence number should be the first ESP

check on a packet upon looking up an SA

■  Duplicates are rejected!

0 Sliding Window size >= 32

(30)

Anti-replay Feature

■  Optional

■  Information to enforce held in SA entry ■  Sequence number counter - 32 bit for

outgoing IPsec packets

■  Anti-replay window

■  32-bit

(31)

Anti-replay Sliding Window

■  Window should not be advanced until the

packet has been authenticated

■  Without authentication, malicious packets

with large sequence numbers can advance window unnecessarily

(32)

Inbound Packet Processing...

■  Packet decryption

■  Decrypt quantity [ESP

payload,padding,pad length,next header] per SA specification

■  Processing (stripping) padding per

encryption algorithm; In case of default padding scheme, the padding field

SHOULD be inspected

■  Reconstruct the original IP datagram

(33)

ESP Processing - Header Location...

■  Transport mode IPv4 and IPv6

Orig IP hdr TCP Data ESP trailer ESP Auth ESP hdr TCP Data ESP trailer ESP Auth Orig IP hdr ESP hdr Orig ext hdr IPv4 IPv6

(34)

ESP Processing - Header Location...

■  Tunnel mode IPv4 and IPv6

New IP hdr Orig IP hdr TCP Data ESP trailer ESP Auth ESP hdr New ext hdr New IP hdr TCP Data ESP trailer ESP Auth Orig IP hdr ESP hdr Orig ext hdr IPv4 IPv6

References

Download now ( PDF - 34 Page - 482.48 KB )

Related documents

CSCI 454/554 Computer and Network Security. Topic 8.4 Firewalls and Intrusion Detection Systems (IDS)

■  Compare traffic to patterns, then process. traffic according to rules

STUDY OF VARIOUS WIRELESS NETWORK SECURITY ISSUES: A REVIEW

Wired Equivalent Privacy (WEP) Protocol is a basic security feature in the IEEE 802.11 standard, intended to provide confidentiality over a wireless network by

Assessing the Co-Benefits of Household Energy Technology Carbon Offset Projects

A majority of the current literature assessing sustainable development impacts of carbon offset projects has focused on the Clean Development Mechanism (CDM) and evaluating whether

Section 10A Audit Requirements Under the Securities Exchange Act of 1934: A Play In Five Acts. Act One: Angels and Ministers Of Grace Defend Us!

Section 10A (b)(2), “Response to Failure to Take Remedial Action,” requires that the independent auditor, as soon as practicable, shall directly report to the board of directors

The RCEP and Intellectual Property Normsetting in the Asia-Pacific

As shown by leaked documents, ASEAN, India, Japan and South Korea began submitting draft negotiating texts for the proposed intellectual property chapter only shortly before the

Turn On, Tune In, Drop Out? Exploring the Venture Emergence in Technology-based Firms

Moving beyond the generic resource-based view, and adopting a human capital perspective on entrepreneurship, the quantitative analysis has provided further information on

JEL codes: J22, J21, J16, J64

Therefore, in addition to studying the differences in women and men’s labour supply, the differentiated effects by gender of their partner’s employment condition and individual

How To Use The Fdic External Service For Mortgage Servicing Rights

The vendors providing MSR Financial Advisory Services assess the data provided and notify the FDIC Senior Capital Markets Specialist if additional data is needed for the valuation