Question

In: Computer Science

P29 SYN cookies were discussed in Section 3.5.6. a. Why is it necessary for the server...

P29 SYN cookies were discussed in Section 3.5.6.

a. Why is it necessary for the server to use a special initial sequence number in SYNACK?

b. Suppose an attacker knows that a target host uses SYN cookies. Can the attacker create half-open or fully open connections by simply sending an ACK packet to the target? Why or why not?

c. Suppose an attacker collects large amount of initial sequence numbers sent by the server. Can the attacker cause the server to create many fully open connections by sending ACKs with those initial sequence numbers? Why?

Text book-----Jim Kurose and Keith Ross,”Computer Networking – A Top-Down Approach”, Addison-Wesley, Seventh Edition, 2017. ISBN-13: 978-0-13-359414-0

Solutions

Expert Solution

  1. Special initial sequence number is formed by hashing source and destination IP address and ports in order to defend against SYN flood attacks.
  2. No, the attacker cannot able to create half-open or fully open connection by sending an ACK packet to target.

Half connection are not possible because server using SYN cookies does not store/maintain any connection variables or buffers for any connection before full connections.

While in case of fully open connection, connection is possible if and only if an attacker have special initial sequence number corresponding to IP address of victim machine plus a secret key used by server. Since attacker cant able to get this secret key, Hence attacker cannot able to guess the initial sequence number and hence fully open connection is not possible.

c) No, initial sequence is formed by adding time stamp and time to live .So even if attacker have initial sequence number it has of no use as server will discard the expired initial sequence.


Related Solutions

In order to ensure efficient usage of a server, it is necessary to estimate the mean...
In order to ensure efficient usage of a server, it is necessary to estimate the mean number of concurrent users. According to records, the average number of concurrent users at 100 randomly selected times is 37.7. The population standard deviation is σ = 9.2. (a) Construct a 90% confidence interval for the expectation of the number of concurrent users. (b) Conduct a hypothesis test to test whether the true mean number of concurrent users is greater than 35. Based on...
In order to ensure efficient usage of a server, it is necessary to estimate the mean...
In order to ensure efficient usage of a server, it is necessary to estimate the mean number of concurrent users. According to 100 randomly selected times of day, the mean number of concurrent users is 37.7 and the standard deviation is 9.2. a. Find the 99% confidence interval for the mean number of concurrent users. b. Write a statement explaining your confidence interval.
Subject : professional ethics in computing 5. How could “cookies” created by a Web server affect...
Subject : professional ethics in computing 5. How could “cookies” created by a Web server affect a computer user’s privacy?
one of the financial institutions that was discussed were the mutual funds.outline why you would choose...
one of the financial institutions that was discussed were the mutual funds.outline why you would choose to invest in a mutual fund and which asset class you would select. As a fund manager and investor, provide possible ways that you can make abnormal profits.
Outline the necessary actions that Server Administrator's must verify for proper operation of servers in the...
Outline the necessary actions that Server Administrator's must verify for proper operation of servers in the event of a failover/redundancy plan.
Why would a host contact a DNS server? If a local DNS server does not know...
Why would a host contact a DNS server? If a local DNS server does not know the IP address for a host name, what will it do? What kind of organization must maintain one or more DNS servers? Why? How does your organization protect itself from DNS cache poisoning? Do you think this is sufficient? Why or why not?
What was the Progressive Movement? Discuss why the Progressive Movement was necessary. Who were the progressives?...
What was the Progressive Movement? Discuss why the Progressive Movement was necessary. Who were the progressives? What were their goals? Discuss the xenophobic practices of some progressives. Is religiosity important? If so, why? If not, why not? Was there a “real” progressive movement for black people? Explain your answer.
Fifteen students were registered in Section 1 and 15 students were registered in Section 2 of...
Fifteen students were registered in Section 1 and 15 students were registered in Section 2 of a research course. They took the same midterm exam, and their exam scores were distributed as follows: Section 1:          89, 56, 45, 78, 98, 45, 55, 77, 88, 99, 98, 97, 54, 34, 94 Section 2:           77, 88, 87, 67, 98, 87, 55, 77, 45, 44, 88, 99, 69, 67, 98 Calculate the mode, median, mean, range, variance, and standard deviation for both...
State the three measures of dispersion discussed in this section. Are any of these measures resistant?...
State the three measures of dispersion discussed in this section. Are any of these measures resistant? Explain.
Describe the ingredients necessary for a PCR reaction, and why they are necessary.
Describe the ingredients necessary for a PCR reaction, and why they are necessary.
ADVERTISEMENT
ADVERTISEMENT
ADVERTISEMENT