Scribd Logo
Upload

Welcome to Scribd!

  • Active Vs Passive Attack

    Uploaded by

    Siddharth Gupta
    351 views7 pages
    The document discusses active and passive attacks. Active attacks attempt to alter system resources or operations through modification of data, masquerading, message modification, repudiation, replay, and denial of service. Passive attacks attempt to learn or use information without affecting the system through release of message content or traffic analysis. The key difference is that active attacks can damage systems and modify resources while passive attacks only reveal information without direct harm.

    Original Description:

    Different types of Virtual Attacks

    Original Title

    Active vs Passive Attack

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    The document discusses active and passive attacks. Active attacks attempt to alter system resources or operations through modification of data, masquerading, message modification, repudiation, replay, and denial of service. Passive attacks attempt to learn or use information without affecting the system through release of message content or traffic analysis. The key difference is that active attacks can damage systems and modify resources while passive attacks only reveal information without direct harm.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as docx, pdf, or txt
    351 views7 pages

    Active Vs Passive Attack

    Uploaded by

    Siddharth Gupta
    The document discusses active and passive attacks. Active attacks attempt to alter system resources or operations through modification of data, masquerading, message modification, repudiation, replay, and denial of service. Passive attacks attempt to learn or use information without affecting the system through release of message content or traffic analysis. The key difference is that active attacks can damage systems and modify resources while passive attacks only reveal information without direct harm.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as docx, pdf, or txt
    of 7

    Siddharth Gupta

    Ajay Kumar
    Cryptography Fundamentals

    Notes on Active and Passive Attacks

    Active attacks: An Active attack attempts to alter system resources or effect their
    operations. Active attack involve some modification of the data stream or creation of
    false statement. Types of active attacks are as following:
    1. Masquerade –
    Masquerade attack takes place when one entity pretends to be different entity.
    A Masquerade attack involves one of the other form of active attacks.

    2. Modification of messages –
    It means that some portion of a message is altered or that message is delayed
    or reordered to produce an unauthorised effect. For example, a message
    meaning “Allow JOHN to read confidential file X” is modified as “Allow Smith to
    read confidential file X”.
    3. Repudiation –
    This attack is done by either sender or receiver. The sender or receiver can
    deny later that he/she has send or receive a message. For example, customer
    ask his Bank “To transfer an amount to someone” and later on the
    sender(customer) deny that he had made such a request. This is repudiation.
    4. Replay –
    It involves the passive capture of a message and its subsequent the
    transmission to produce an authorized effect.
    5. Denial of Service –
    It prevents normal use of communication facilities. This attack may have a
    specific target. For example, an entity may suppress all messages directed to a
    particular destination. Another form of service denial is the disruption of an
    entire network wither by disabling the network or by overloading it by messages
    so as to degrade performance.
    Passive attacks: A Passive attack attempts to learn or make use of information from
    the system but does not affect system resources. Passive Attacks are in the nature
    of eavesdropping on or monitoring of transmission. The goal of the opponent is to
    obtain information is being transmitted. Types of Passive attacks are as following:
    1. The release of message content –
    Telephonic conversation, an electronic mail message or a transferred file may
    contain sensitive or confidential information. We would like to prevent an
    opponent from learning the contents of these transmissions.

    2. Traffic analysis –
    Suppose that we had a way of masking (encryption) of information, so that the
    attacker even if captured the message could not extract any information from
    the message.
    The opponent could determine the location and identity of communicating host
    and could observe the frequency and length of messages being exchanged.
    This information might be useful in guessing the nature of the communication
    that was taking place.
    Active Attacks:
    Active attacks are the type of attacks in which, The attacker efforts to change or
    modify the content of messages. Active Attack is danger for Integrity as well as
    availability. Due to active attack system is always damaged and System resources
    can be changed. The most important thing is that, In active attack, Victim gets
    informed about the attack.
    Passive Attacks:
    Passive Attacks are the type of attacks in which, The attacker observes the content
    of messages or copy the content of messages. Passive Attack is danger for
    Confidentiality. Due to passive attack, there is no any harm to the system. The most
    important thing is that In passive attack, Victim does not get informed about the
    attack.

    Difference between Active Attack and Passive Attack:


    S.N

    O ACTIVE ATTACK PASSIVE ATTACK

    In active attack, Modification in While in passive attack, Modification in the

    1. information take place. information does not take place.

    Active Attack is danger

    2. for Integrity as well as availability. Passive Attack is danger for Confidentiality.

    In active attack attention is on While in passive attack attention is on

    3. detection. prevention.

    Due to active attack system is always While due to passive attack, there is no any

    4. damaged. harm to the system.


    In active attack, Victim gets informed While in passive attack, Victim does not get

    5. about the attack. informed about the attack.

    In active attack, System resources While in passive attack, System resources

    6. can be changed. are not change.

    While in passive attack, information and

    Active attack influence the services of messages in the system or network are

    7. the system. acquired.

    In active attack, information collected While passive attack are performed by

    through passive attacks are used collecting the information such as passwords,

    8. during executing. messages by itself.

    Active attack is tough to restrict from Passive Attack is easy to prohibited in

    9. entering systems or networks. comparison to active attack.

    You might also like