This essay TCP/IP Security has a total of 11348 words and 58 pages.
The TCP/IP protocols, the basis for today\'s Internet, lack even the most basic mechanisms for security, such as authentication or encryption. As usage of the Internet and TCP/IP protocols increases, their lack of built-in security has become more and more problematic. This paper describes a variety of basic flaws in TCP/IP protocols and their implementations, and discusses solutions and work-arounds to these problems. Also covered is the new IPv6, the next-generation Internet protocol that, among other goals, seeks to fix many of the current flaws in the current Internet IPv4 protocol. Security in protocols and applications not essential to TCP/IP (such as HTTP, FTP, and SMTP) are not discussed in this paper.
In the early 1980\'s, specifications were finished for the TCP and IP protocols. These two protocols could be considered the most important in the world today - they are the basis of the Internet. Over the past decade, the Internet has grown from a small network connecting a small community of researchers to its present state - a gigantic global network connecting people of all types. The huge success of the Internet has, for the most part, been quite beneficial. The Internet has evolved from a specialized project to a general-purpose tool. However, the growth of the Internet has created problems with security. The TCP and IP protocols were designed when the Internet was small, and users generally trusted each other. The protocols lack many features that are desirable or needed on an insecure network. In this paper, we present a number of problems that arise with using TCP/IP on today\'s network, solutions or work-arounds for these problems, and how the protocols for tomorrow\'s Internet, such as IPv6, will help eliminate these problems.
1. Introduction to TCP/IP
TCP/IP is the backbone of the internet today. Comprised of two protocols, TCP and IP, the TCP/IP protocol suite is one of the most widely used. We present a brief introduction to the two protocols. For a detailed discussion of the two protocols we refer the reader to the RFC\'s for IP [RFC 791], and TCP [RFC 793].
1.1. Internet Protocol
The Internet Protocol (or IP as it generally known), is the network layer of the Internet. IP provides a connection-less service. The job of IP is to route and send a packet to the packet\'s destination. IP provides no guarantee whatsoever, for the packets it tries to deliver. The IP packets are usually termed datagrams. The datagrams go through a series of routers before they reach the destination. At each node that the datagram passes through, the node determines the next hop for the datagram and routes it to the next hop. Since the network is dynamic, it is possible that two datagrams from the same source take different paths to make it to the destination. Since the network has variable delays, it is not guaranteed that the datagrams will be received in sequence. IP only tries for a best-effort delivery. It does not take care of lost packets; this is left to the higher layer protocols. There is no state maintained between two datagrams; in other words, IP is connection-less. Version IHL Type of Service Total Length
Identification Flags Fragmentation Offset
Time to Live Protocol Header Checksum
Figure 1. IP Header
The IP Header is shown in Figure 1. The Version is currently set to 4. In order to distinguish it from the new version IPv6, IP is also referred to as IPv4. The source address and the destination address are 4-byte Internet addresses. The Options field contains various options such as source based routing, and record route. The source based routing allows the sender to specify the path the datagram should take to reach the destination. Record route allows the sender to record the route the datagram is taking. None of the IP fields are encrypted and there no authentication. It would be extremely easy to set an arbitrary destination address (or the source address), and IP would send the datagram. The destination has no way of ascertaining the fact that the datagram actually originated from an IP address other than the one in the source address field. It is easy to see why any authentication scheme based on IP-addresses would fail.
1.2. Transmission Control Protocol
Transmission Control Protocol (TCP) runs on top of IP, and provides a
Topics Related to TCP/IP Security
Computer network security, Cyberwarfare, Denial-of-service attacks, Internet protocols, Transmission Control Protocol, Data security, Internet protocol suite, SYN flood, Denial-of-service attack, IP address spoofing, Network address translation, Internet Control Message Protocol
Essays Related to TCP/IP Security
Internet Security Many people today are familiar wInternet Security Many people today are familiar with the Internet and its use. A large number of its users however, are not aware of the security problems they face when using the Internet. Most users feel they are anonymous when on-line, yet in actuality they are not. There are some very easy ways to protect the user from future problems. The Internet has brought many advantages to its users but has also created some major problems. Most people believe that they are anonymous when they are usi
Networking and Telecommunication ManagementNetworking and Telecommunication Management The AT&T long-distance networks crashes and millions of calls go unanswered. A computer hacker reprograms a switching station and calls to a Florida probation office are shunted to a New York phone-sex hotline. An illegal computer bulletin board publishes a pilfered BellSouth document on the 911 emergency system, which made it available to anyone who dials up. The above incidents are described in Bruce Sterling’s book The Hacker Crackdown, Law and D
TCP/IP SecurityTCP/IP Security The TCP/IP protocols, the basis for today\'s Internet, lack even the most basic mechanisms for security, such as authentication or encryption. As usage of the Internet and TCP/IP protocols increases, their lack of built-in security has become more and more problematic. This paper describes a variety of basic flaws in TCP/IP protocols and their implementations, and discusses solutions and work-arounds to these problems. Also covered is the new IPv6, the next-generation Internet pr
I. STATEMENT & BACKGROUNDI. STATEMENT & BACKGROUND The college of Business (COB) server is now being used to support deliver to the Computer Information System (CIS) department. The CIS professors would be using the server for various operations. Assignments, e-mail, and other types of information would be easier for the students to access. Network users are able to share files, printers and other resources; send electronic messages and run programs on other computers. However, certain important issues need to be addres
E-commerce an IntroductionE-commerce an Introduction In the broadest sense, electronic commerce (e-commerce), is the buying and selling of products and services over the Internet. It has included the handling of purchase transactions and funds transfers over computer networks. According to the Forrester Research Study Sizing Intercompany Commerce, total U.S business-to-business Internet trade in 1998 is $7.7 billion, compared to a total global e-commerce of $21.8 billion, dramatically increasing from $2.5 billion in 1997
Sun Microsystems, Inc.Sun Microsystems, Inc. Introduction By 1998 Sun had become a global Fortune 500 leader in enterprise network computing with operations in 150 countries and generating $8 billion in revenues. Sun’s competitors in the technical markets were primarily Intel, Hewlett-Packard (HP), International Business Machine (IBM), Compaq Computer Corporation (CPQ) and Silicon Graphics, Inc. (SGI). The information technology industry, the market for Sun’s services and products, was extremely competitive in 1998.
Telecommuting: The Evolution of a New Work EnvironTelecommuting: The Evolution of a New Work Environment David Hess The days of reporting to the office at 8:00 am, taking lunch at noon, and driving home at 5:00, have eroded over the past few decades. People today are faced with different situations that make this type of routine unfeasible if they want to have a career. Women are no longer the stay-at-home moms that they use to be. Many families are force into having a dual career household to make ends meet or single parenting has not left tha
Ok, I know you are wondering what is a systems anaOk, I know you are wondering what is a systems analysts and what do they do. Well in this paper not only am I going to tell what they do but I will also tell other important information. Just sit back, chill and read this computer science careers report. Systems analysts oversee the development process for new software and hardware. In the case of software engineers, the project could involve designing a new application program or other software. Systems analysts, on the other hand, may design e
Censor the Internet?Censor the Internet? The freedom of speech that was possible on the Internet could now be subjected to governmental approvals. For example, China is attempting to res5trict political expression, in the name of security and social stability. It requires users of the Internet and e-mail to register, so that they can monitor their activities (Gates). In the United Kingdom, state secrets and personal attacks are off limits on the Internet. Laws are strict and the government is extremely interested i