11 - Network Security

Question 1

Why do we need network security?

Answer 1

Attacks:

• Routing (BGP)
• Naming (DNS)

Question 2

Reasons Internet’s Design is Insecure

Answer 2

• Designed for simplicity
• “On by default”
• Hosts are insecure
• Attacks can look like “normal” traffic
• Federated design

Question 3

Packet-switched networks are vulnerable to

Answer 3

resource exhaustion attacks

Question 4

Components of Security

Answer 4

Availability: ability to use a resource
Confidentiality: concealing information
Authenticity: assures origin of information
Integrity: prevent unauthorized changes
Threat: potential violation
Attack: action that violates

Question 5

Denial of Service Attack ? (Component)

Answer 5

Availability

Question 6

Control plane authentication (Routing Security)

Answer 6

• Session: point-to-point b/w routers
• Path: protects AS path
• Origin: ensures that AS advertising prefix is the owner

Question 7

A route hijack is an attack on the following form of authentication:

Answer 7

Origin, because in a route hijack, the AS that is advertising the prefix is actually not the rightful owner of that prefix.

Question 8

How? (Attacks on Routing)

Answer 8

• Config error
• Routers compromised
• Unscrupulous ISPs

Question 9

Types of Attack

Answer 9

• Config/Management software
• Tamper w/software
• Tamper w/ routing data

Most common: “Hijack”

Question 10

DNS masquerading

Answer 10

Attack whereby an attacker can use the BGP infrastructure to hijack a DNS query and masquerade as a legitimate service

Question 11

AS-path poisoning

Answer 11

Make sure hijacked route is not accepted

Question 12

Session Authentication

Answer 12

Ensure BGP routing messages sent between routers between ASs are authentic.

Question 13

Guaranteeing Origin & Path Authentication

Answer 13

“Secure BGP” (BGPSEC)

Origin Attestation (Address Attestation): Certificate binding prefix to owner (signed by trusted party)

Path Attestation: Signatures along AS path

Question 14

Path Attestation prevents against:

Answer 14

Hijacks
Shortening
Modification

Question 15

Path Attestation cannot prevent against:

Answer 15

Suppression

Replay

Question 16

Why is DNS Vulnerable?

Answer 16

• Resolvers trust responses
• Responses can contain info unrelated to query
• NO AUTHENTICATION
  Connectionless (UDP)

Question 17

Which aspects of DNS make it vulnerable to attack?

Answer 17

Queries over UDP

No authentication for query responses

Question 18

Defense against DNS cache poisoning

Answer 18

1. Query ID + Randomization (Can be guessed)
2. Source port randomization (resource intensive and NAT can derandomize)
3. “0X20” encoding -> DNS is case insensitive
   (attacker would have to guess ID and also capitalization)

Question 19

Why does 0x20 make DNS more secure?

Answer 19

Additional entropy

Question 20

DNS Amplification Attack

Answer 20

• Exploits asymmetry in size b/w queries & responses

Question 21

DNSSEC Protocol

Answer 21

• Adds authentication to DNS responses simply by adding signatures to the responses that are returned for each DNS reply.