Answered step by step
Verified Expert Solution
Link Copied!

Question

1 Approved Answer

Consider the following threats to Web security and describe how each is countered by a particular feature of SSL. a. Brute-Force Cryptanalytic Attack: An exhaustive

Consider the following threats to Web security and describe how each is countered by a particular feature of SSL.
a. Brute-Force Cryptanalytic Attack: An exhaustive search of the key space for a conventional encryption algorithm..
b. Known Plaintext Dictionary Attack: Many messages will contain predictable plaintext, such as the HTTP GET command. An attacker constructs a dictionary containing every possible encryption of the known-plaintext message. When an encrypted message is intercepted, the attacker takes the portion containing the encrypted known plaintext and looks up the cipher text in the dictionary. The cipher text should match against an entry that was encrypted with the same secret key. If there are several matches, each of these can be tried against the full cipher text to determine the right one. This attack is especially effective against small key sizes (e.g., 40-bit keys)..
c. Replay Attack: Earlier SSL handshake messages are replayed..
d. Man-in-the-Middle Attack: An attacker interposes during key exchange, acting as the client to the server and as the server to the client..
e. Password Sniffing: Passwords in HTTP or other application traffic are eavesdropped..
f. IP Spoofing: Uses forged IP addresses to fool a host into accepting bogus data..
g. IP Hijacking: An active, authenticated connection between two hosts is disrupted and the attacker takes the place of one of the hosts..
h. SYN Flooding: An attacker sends TCP SYN messages to request a connection but does not respond to the final message to establish the connection fully. The attacked TCP module typically leaves the “half-open connection” around for a few minutes. Repeated SYN messages can clog the TCP module.

Step by Step Solution

3.41 Rating (160 Votes )

There are 3 Steps involved in it

Step: 1

a Bruteforce cryptanalytic attack SSL implementations support a variety of public and secret key crypto algorithms The secret key algorithms use key l... blur-text-image

Get Instant Access to Expert-Tailored Solutions

See step-by-step solutions with expert insights and AI powered tools for academic success

Step: 2

blur-text-image

Step: 3

blur-text-image

Ace Your Homework with AI

Get the answers you need in no time with our AI-driven, step-by-step assistance

Get Started

Recommended Textbook for

Chemical Principles

Authors: Steven S. Zumdahl, Donald J. DeCoste

7th edition

9781133109235, 1111580650, 978-1111580650

More Books

Students also viewed these Databases questions

Question

In Exercises find the indefinite integral. sech(2x1) dx

Answered: 1 week ago