Week14 Network Defence

NT101-Network Security
Week 14: Network Defence
Ngoc-Tu Nguyen, PhD

tunn@uit.edu.vn
12-2022 NT101-Network security Week 14: 1

Outline
 Network secure protocols
 Fundamental goals
• Authentication: network nodes (hosts), application API (apps);
• Key agreemen;
• Cryptographic algorithm negotiation (ciphers, MAC)
 Some secure protocols: SSH, SSL/TLS, IPSec,VPN;
 Network traffic mornitor and analysis

 Firewall;
 IDS/NIDS;
 AMS
 Honeynet;
TCP/IP Network Model
Ha M Ha
application M
application
message
M1 M2 … Mn M2 M1 … Mn
transport transport
segment Ht Mi … Ht
Mi
network datagram Hn Ht Mi Hn Ht Mi
network
link frame Hl Hn Ht Mi
link
Hl Hn Ht Mi
physical physical
source destination

Basic Security Model Public intermediate devices
 Cryptosystem
layer
 Authentication
 Key agreement
 Cryptographic algorithm negotiation (ciphers, MAC)
Enterprise network
 Network Traffic
Monitoring and Analysis
 IDS/NIDS, AMS
 Firewall
 Honeynet
Network secure protocols
 Authentication
 Public key (digital certificate) approach
 Prior secret-shared approach
 Key agreement
 Diffie-hellman key exchange
 Cryptographic algorithm negotiation (ciphers, MAC)

 Some secure protocols
 Chosent layer to implement (application to link layer)
 SSH, SSL/TLS, IPSec,VPN;

 Mutual authentication? (A) (A)
(3) (B)
o Identification information? (B)
o Exchange authentication factors?
o Verification?
 Key agreement machanism? User (A)/ (B) User
 Solutions?
(A) Certificates (PKI) Iot/Edge/fog/cloud
(B) Pre-shared secrets network
(1) Local system (4)
(B) (A) /(B)

(B)
Remote (5) AI/ML
User (2) server (A) / (B) /
(B) Attestation services
(A) / (B)
Authenticate server/resources
o Users authenticate server/ resources
? User
? space
?
?
?

 Network authentication API
Client applications
 Static strings
 Dynamic tokens
 User-delegated token
 Attribute-Based Access Control
https://en.wikipedia.org/wiki/Web_API_security
E1
E2
Internal Process
https://learn.microsoft.com/en-us/azure/architecture/microservices/design/gateway
Authentication
RFC 4949 (Internet Security Glossary, Version 2):
 Authentication= “The process of verifying a claim that a system
entity or system resource has a certain attribute value”
o Identification information
 Authentication process =
o Verification
A B
• A authenticate B
 Mutual authentication:
• B authenticate A
Authentication
o Authentication factors
 Knowledge (something the user/node knows)
ID, Password, PIN, answers to prearranged questions
 Possession (something the user/node has)

Smartcard, electronic keycard, physical key, user’s devices, digital certificates, …
 Inherence (some physical characteristic of the user/devices)

Fingerprint, retina, face, voice pattern, handwriting, typing rhythm, PUFs,…

o Users authenticate server/ resources
Remote
• Client-server
server ?
• end-to-end
• hop-to-hop ?

 Degital certificate-based CERTIFICATE
authentication
Digital certificate
User Servers
 Verify signature
• User authenticate sever

• Know server’s puclic key
Certificates-based authentication
Remote server
Certificate
Public key/ Secret key
o Exchange authentication/
o key agreement data
Combine:
o Public key
o Server Identity (IP, name,…)
o Signature
Trusted CA PKI

CA CA CA CA Directory CA
Services
RA CA CA CA
RA RA Internet RA
Required
• Server certificate RA RA Internet
• Root CA certificate (CA Public key)
LRA LRA
openssl s_client -connect facebook.com:443 -showcerts
https://www.openssl.org/docs/man1.0.2/man1/openssl-s_client.html

Example: Check facebook.com certificate using
 Degital certificate-based
openssl library
authentication  Show all cert chains
openssl s_client -connect facebook.com:443 -showcerts
 view server cert
echo | openssl s_client -servername www.facebook.com -
Digital certificate connect www.facebook.com:443 2>1 | openssl x509 -out
facebook.cer -text
User  download server cert

Servers
Facebook.com echo | openssl s_client -servername www.facebook.com -

connect www.facebook.com:443 2>1 | openssl x509 -out
facebook.cer
 dump server cert
openssl x509 -in facebook.cer -inform pem -text -noout

 Limitation Certificates-based authentication
• Need PKI
• Revocation?
• Network Payload?
• Trusted CA?
 Semi-Trusted
 Zero-Trusted

Authenticate user/end-devices
o Authentication factors
 Knowledge (something the user/node knows)
ID, Password, PIN, answers to prearranged questions
 Possession (something the user/node has)

Smartcard, electronic keycard, physical key, user’s devices, digital certificates, …
 Inherence (some physical characteristic of the user/devices)

Fingerprint, retina, face, voice pattern, handwriting, typing rhythm, PUFs,…

Request connection
? 𝑆 𝐾𝑆
User/devices ? Remote server
• How the server authenticate the user/devices?

• Password
• OTP Using pre-shared secrets
• Token
• Biometric, device fingerprint
• Smart card
ex. ex.
• ….
(1) Password-based Authentication
 Login
• Provide to server?
• Locate the row using name
?
• Check
authenticate the user
• Password-based Vulnerabilities
Human-memorable password
Small space of possible passwords
(1) Dictionary attacks (2) Verification table 

attacks
Offline Dictionary attacks

https://hashkiller.io/listmanager
(2) Multiple factor Authentication Pre-shared secrets
• One factor • Passwords • Biometric (variation)

o Verification?
o Secure storage?
• Password, OTP • Smartcard

• Biometric o Secure storage
(user/device) o Do some verification
• Multiple algorithms
• Smartcard
factor • Hardware-assisted
• Hardware-assisted (TPM, TEE, ...)
• One-to-One? o Secure storage
• One-to-many? o Do some secure algorithms
Scale-up ability?
(2) Multiple factor Authentication: OTP. Biometric, ….
Example: OTP
𝑠𝑒𝑐𝑟𝑒𝑡 𝐾 𝑠𝑒𝑐𝑟𝑒𝑡 𝐾
 T T 
CT  floor  0
 , be current Unix eporch time
 TX 
https://www.epochconverter.com/
𝑑
𝑇𝑂𝑇𝑃 𝑣𝑎𝑙𝑢𝑒 ( 𝐾 ) =𝐻 ( 𝐾 , 𝐶 𝑇 ) 𝑚𝑜𝑑 10 d digits integer

 Authentication
 Public key (digital certificate) approach
 Prior secret-shared approach
 Key agreement
 Diffie-hellman key exchange + extra..
 Cryptographic algorithm negotiation (ciphers, MAC)

 Some secure protocols
 Chosent layer to implement (application to link layer)
 SSH, SSL/TLS, IPSec,VPN;

Diffie-Hellman key exchange
 Public info: p and g
 p is a large prime number, g is a generator of Z p*
• Z *={1, 2 … p-1}; aZ * i such that a=g mod p
p p
i
Pick secret, random x gx mod p • Man-in-the-

gy mod p
middle
Pick secret, random y
attack
Compute k=(gy)x=gxy mod p Compute k=(gx)y=gxy mod p

Diffie-Hellman key exchange
p = 1606938044258990275541962092341162602522202993782792835301301
𝑔 = 123456789
𝑔𝑎 mod p =
78467374529422653579754596319852702575499692980085777948593
𝑔𝑏 mod p=
560048104293218128667441021342483133802626271394299410128798
𝑎=
685408003627063 𝑏=
761059275919665 362059131912941
781694368639459 987637880257325
527871881531452 269696682836735
524942246807440
( 𝑔𝑏 ) 𝑎=¿ 𝑔𝑎𝑏 mod p 𝒃
=437452857085801785219961443000845969831329749878767465041215¿ ( 𝑔𝑎 )
ECC Diffie-Hellman (ECDH)
 Public: Elliptic curve and a point =(x,y) on curve
 Secret: Alice’s a and Bob’s b
𝑄 𝐴 (¿ 𝑎 . 𝐺)
)
𝐾 𝐴 =𝑎. 𝑄 𝐵 =𝑎𝑏 . 𝐺 𝐾 𝐵 =𝑏 . 𝑄 𝐴=𝑏𝑎 . 𝐺
⏟
𝐾 𝐴 = 𝐾 𝐵 =𝑎𝑏 𝐺= 𝐺 + 𝐺 +…+ 𝐺
𝑎𝑏=𝑏𝑎 𝑡𝑖𝑚𝑒𝑠

Session Key agreement mechanism
Remote server
Authenticate 𝑆 𝐾𝑆
𝑃𝑎𝑠𝑠𝑤𝑜𝑟𝑑 , 𝑂𝑇𝑃 , 𝐵𝑖𝑜𝑚𝑒𝑡𝑟𝑖𝑐 , . . Server Certificate
How to negotiate a session key?
Exchange data
• Encryption?
• Data integrity checking? Key?
Session Key agreement mechanism
Remote server
? Server Certificate 𝑆 𝐾𝑆
𝑣𝑒𝑟𝑖𝑓𝑦 (𝑐𝑒𝑟𝑡𝑖𝑓𝑖𝑐𝑎𝑡𝑒 , 𝑃 𝐾 𝑟𝑜𝑜𝑡 ) ⇒ 𝑃 𝐾 𝑆
How authenticate each other if the server does not have certificate?
wifi access point

User
Using pre-shared secret

Password Password
WEB, WPA2, WPA3 protocols

Deployment network secure protocols
 Building Blocks for Network Security

 Encryption and authentication algorithms are building blocks of secure
network protocols
 Deploying cryptographic algorithms at different layers have different

security effects
 Where should we put the security protocol in the network architecture?

How to establish secure protocol?

1. Authentication?
2. Key agreement
3. Chosen cipher, MAC for exchage data
AES-128-CBC, SHA256,
AES-256-GCM, SHA3-512, …

Where should we deploy the secure protocol?

Logical (Software) Physical (Hardware)
 Application  Data Link Layer

 Web, Email  Ethernet, 802.11
 Transport Layer  Physical Layer

 TCP, UDP
 Network Layer
 IP

PGP and S/MIME Email Security Protocols
SSL/TLS, SSH protocol
Ipsec, VPN protocols
WEB, WPA, WPA2, WPA 3 …

What Are the Pros and Cons?
 Application Layer
 Provides end-to-end security protection
 Intermediate nodes need not to decrypt data or check for
MAC, signature;
 Attackers may analyse traffic and modify headers
 Transport Layer
 Provides security protections for TCP packets
 No need to modify any application programs
 Attackers may analyse/attacks via IP, link headers

What Are the Pros and Cons?
 Network Layer
 Provides node-to-node security protection
• Transport mode: Encrypt payload only
• Tunnel mode: Encrypt both header & payload; need a gateway
 Data-link Layer
 Provides security protections for frames
 Traffic analysis would not yield much info

SSH protocol
SSH Connection  SSH Connection:

 Sets up multiple channels
SSH User Authentication Application for different applications in
Layer
a single SSH connection
SSH Transport  SSH User Authentication:
 Authenticate user to server
TCP
 Using password or PKC
IP  SSH Transport
 Handles initial setup:
Data Link server authentication, and
key exchange
Physical  Set up encryption and
compression algorithms
SSH architecture

SSH protocol

SSL/TLS
 Secure Socket Layer Protocol (SSL)
 Designed by Netscape in 1994
https://en.wikipedia.org/wiki/Transport_Layer_Security
TLS Record Protocol Diagram
SSL record protocol

TSL Structure

TSL protocol v 1.2
• Authentication: digital
certificate;
• Key agreement(ex. ECDH)
• Cryptographic algorithm
negotiation (ciphers, MAC)

TSL protocol v 1.3
Client Server
https://datatracker.ietf.org/doc/html/rfc8446
IPsec: Network-Layer Protocol
 IPsec encrypts and/or authenticates IP packets
 It consists of three protocols:
 Authentication header (AH)
• To authenticate the origin of the IP packet and ensure its integrity
• To detect message replays using sliding window
 Encapsulating security payload (ESP)
• Encrypt and/or authenticate IP packets
 Internet key exchange (IKE)
• Establish secret keys for the sender and the receiver
 Runs in one of two modes:
 Transport Mode
 Tunnel Mode (requires gateway)

IPsec Packet Layout
Ht Mi
segment

IPsec Transport Mode
 Host-to-host (end-to-end) security:
 IPsec processing performed at endpoints of secure channel.
 Endpoint hosts must be IPsec-aware.
Header Payload Header Payload

IP datagram IP datagram
network
network

IPsec Tunnel Mode
Header Payload Header Payload

Inner IP Inner IP
Security Security
datagram datagram
Gatewa Gateway
y
networ
networ
Outer Outer
Header
Header Payload kk Header
Header Payload

Remote Host to Internal Server
 Remote host has Internet access to gateway, then gains access to
server behind gateway.
 Traffic to server protected in inner tunnel.
 Outer tunnel protects inner traffic over Internet.
Outer Tunnel Inner tunnel
Local
Internet network
Security
remote Gateway
host server

IPsec Security Associations
Alice Bob
SA
 If Alice wants to establish an IPsec connection with Bob, the two parties
must first negotiate a set of keys and algorithms
 The concept of security association (SA) is a mechanism for this purpose
 An SA is formed between an initiator and a responder, and lasts for one
session
 An SA is for encryption or authentication, but not both.
 If a connection needs both, it must create two SAs, one for encryption and
one for authentication

SA Components
 Three parameters:
 Security parameters index (SPI)
 IP destination address
 Security protocol identifier
 Security Association Database (SAD)
 Stores active SAs used by the local machine
 Security Policy Database (SPD)

 A set of rules to select packets for encryption / authentication
 SA Selectors (SAS)
 A set of rules specifying which SA(s) to use for which packets

IPsec Header
IPsec Header
Authentication Encapsulated Security

Header (AH) Payload (ESP)
Authentication and Encryption use separate SAs
• Data confidentiality
• Data origin authentication,
data integrity checking, and
replay protection (optional)

Authentication Header

Resist Message Replay Attack
Sequence number is used with a sliding window

to thwart message replay attacks
A B C
Given an incoming packet with sequence # s, either

s in A – It's too old, and can be discarded
s in B – It's in the window. Check if it's been
seen before
s in C – Shift the window and act like case B

Encapsulated Security Payload

ESP Protocol – Transport & Tunnel
ESP in transport mode:
Original ESP hdr Payload ESP ESP

IP header SPI, seqno (eg TCP, UDP, ICMP) trlr auth
MAC scope
Encryption scope
ESP in tunnel mode:
Outer ESP hdr Inner Payload ESP ESP

IP header SPI, seqno IP header (eg TCP, UDP, ICMP) trlr auth
MAC scope
Encryption scope

Key Determination and Distribution
 Oakley key determination protocol (KDP)

 Diffie-Hellman Key Exchange
+ authentication & cookies
 Authentication helps resist man-in-the-middle attacks
 Cookies help resist clogging attacks
 Nonce helps resist message replay attacks

Clogging Attacks
 A form of denial of service attacks
 Attacker sends a large number of public key Yi in crafted IP
packets, forcing the victim’s computer to compute secret keys Ki
= YiX mod p over and over again
 Diffie-Hellman is computationally intensive because of modular
exponentiations
 Cookies help
 Before doing computation, recipient sends a cookie (a random number)
back to source and waits for a confirmation including that cookie
 This prevents attackers from making DH requests using crafted packets
with crafted source addresses

ISAKMP
 ISAKMP: Internet Security Association and Key
Management Protocol
 Specifies key exchange formats
 Each type of payload has the same form of a payload header
ISAKMP header
ISAKMP Payload Types
 SA: for establishing a security association
 Proposal: for negotiating an SA
 Transform: for specifying encryption and authentication algorithms
 Key-exchange: for specifying a key-exchange algorithm
 Identification: for carrying info and identifying peers
 Certificate-request: for requesting a public-key certificate
 Certificate: contain a public-key certificate
 Hash: contain the hash value of a hash function
 Signature: contain the output of a digital signature function
 Nonce: contain a nonce 8-bit 8-bit 16-bit
Next payload Reserved Payload length
 Notification: notify the status of the other types of payloads
 Delete: notify the receiver that the sender has deleted an SA or SAs

Today end,
Congrats!

Week14 Network Defence

Uploaded by

Copyright:

Available Formats

You might also like

Week14 Network Defence

Uploaded by

Document Information

Original Description:

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Week14 Network Defence

Uploaded by

Copyright:

Available Formats

NT101-Network Security

Week 14: Network Defence

Ngoc-Tu Nguyen, PhD

12-2022 NT101-Network security Week 14: 1

 Network traffic mornitor and analysis

12-2022 NT101-Network security Week 14: 3

 Cryptographic algorithm negotiation (ciphers, MAC)

12-2022 NT101-Network security Week 14: 5

(1) Local system (4)

(B) (A) /(B)

12-2022 NT101-Network security Week 14: 7

 Attribute-Based Access Control

 Possession (something the user/node has)

 Inherence (some physical characteristic of the user/devices)

12-2022 NT101-Network security Week 14: 11

12-2022 NT101-Network security Week 14: 12

• User authenticate sever

12-2022 NT101-Network security Week 14: 14

12-2022 NT101-Network security Week 14: 15

User  download server cert

Facebook.com echo | openssl s_client -servername www.facebook.com -

12-2022 NT101-Network security Week 14: 16

12-2022 NT101-Network security Week 14: 17

 Possession (something the user/node has)

 Inherence (some physical characteristic of the user/devices)

12-2022 NT101-Network security Week 14: 18

User/devices ? Remote server

• How the server authenticate the user/devices?

Small space of possible passwords

(1) Dictionary attacks (2) Verification table 

Offline Dictionary attacks

• One factor • Passwords • Biometric (variation)

• Password, OTP • Smartcard

12-2022 NT101-Network security Week 14: 23

 Cryptographic algorithm negotiation (ciphers, MAC)

12-2022 NT101-Network security Week 14: 24

Pick secret, random x gx mod p • Man-in-the-

Compute k=(gy)x=gxy mod p Compute k=(gx)y=gxy mod p

12-2022 NT101-Network security Week 14: 25

𝐾 𝐴 =𝑎. 𝑄 𝐵 =𝑎𝑏 . 𝐺 𝐾 𝐵 =𝑏 . 𝑄 𝐴=𝑏𝑎 . 𝐺

12-2022 NT101-Network security Week 14: 27

𝑃𝑎𝑠𝑠𝑤𝑜𝑟𝑑 , 𝑂𝑇𝑃 , 𝐵𝑖𝑜𝑚𝑒𝑡𝑟𝑖𝑐 , . . Server Certificate

How to negotiate a session key?

𝑣𝑒𝑟𝑖𝑓𝑦 (𝑐𝑒𝑟𝑡𝑖𝑓𝑖𝑐𝑎𝑡𝑒 , 𝑃 𝐾 𝑟𝑜𝑜𝑡 ) ⇒ 𝑃 𝐾 𝑆

wifi access point

Using pre-shared secret

12-2022 NT101-Network security Week 14: 29

 Building Blocks for Network Security

 Deploying cryptographic algorithms at different layers have different

 Where should we put the security protocol in the network architecture?

12-2022 NT101-Network security Week 14: 30

How to establish secure protocol?

12-2022 NT101-Network security Week 14: 31

12-2022 NT101-Network security Week 14: 32

 Application  Data Link Layer

 Transport Layer  Physical Layer

12-2022 NT101-Network security Week 14: 33

Ipsec, VPN protocols