Capítulo de livro Revisado por pares

A Topological Characterization of TCP/IP Security

2003; Springer Science+Business Media; Linguagem: Inglês

10.1007/978-3-540-45236-2_49

ISSN

1611-3349

Autores

Giovanni Vigna,

Tópico(s)

Network Packet Processing and Optimization

Resumo

The TCP/IP protocol suite has been designed to provide a simple, open communication infrastructure in an academic, collaborative environment. Therefore, the TCP/IP protocols are not able to provide the authentication, integrity, and privacy mechanisms to protect communication in a hostile environment. To solve these security problems, a number of application-level protocols have been designed and implemented on top of TCP/IP. In addition, ad hoc techniques have been developed to protect networks from TCP/IP-based attacks. Nonetheless, a formal approach to TCP/IP security is still lacking. This work presents a formal model of TCP/IP networks and describes some well-known attacks using the model. The topological characterization of TCP/IP-based attacks enables better understanding of the vulnerabilities and supports the design of tougher detection, protection, and testing tools.

Referência(s)