|
|
Week 10
Reading
If you are interested in IDS you should take a look at snort snort homepage snort introduction
Exercise problems for November 9th
- IP Security : Transport mode AH and ESP can be combined to obtain
encryption and full authentication, which ordering should be used
(should AH go first or last?) and why?
- IP Security: When should AH be prefered over ESP?
- SSL/TLS (hard): chance_cipher_spec (ccs) is not contained in the
finish message (the hash). This opens the protocol to a
man-in-the-middle attack where the ccs messages are catched and
dropped. Consider what would happen in the following situations:
- encryption is null, but a MAC is used
- encryption is used and also a MAC
What attack is possible and how could such an attack be avoided?
- SSL/TLS is the most used protocol to secure internet commerce
(browser based shopping), would it give any meaning to use IPSec
insted? What would the benefits be? What problems would be introduced.
We will also discuss different firewall scenarios.
|
|
|
|
 |
