Detection of Man-in-the-Middle Attacks by Using the TCP Retransmission Timeout : Key Compromise Impersonation Attack as Study Case

机译：通过使用TCP重传超时检测中间人攻击：以密钥折衷模拟攻击为研究案例

获取原文

页面导航

摘要
著录项
引文网络
相似文献
相关主题

摘要

A Retransmission Timeout or RTO plays an important role in TCP protocol, mainly to achieve reliable transmission. In TCP, if the sender sent a segment and no acknowledgement has been received and the RTO timer expired then the sender will assume that this segment has been lost. This paper proposed another use of the RTO concept in order to secure the TLS session. It calculates a Secure Session RTO or SSRTO which is based on RTO equation between the sender and receiver in a TLS protocol. It is assumed that the man in the middle is in need of the time factor in order to trigger a KCI attack. at the server side, by calculating the time needed to start a TLS Handshake Protocol, until TLS Record Protocol, and if it is found that it took an appreciable time we may assume that there is an attacker. The action in this case, is to cut off the session between the sender and the receiver.

机译：重传超时或RTO在TCP协议中起着重要作用，主要是为了实现可靠的传输。在TCP中，如果发送方发送了一个段，但未收到确认，并且RTO计时器已过期，则发送方将假定此段已丢失。本文提出了RTO概念的另一种用法，以保护TLS会话。它基于TLS协议中发送方和接收方之间的RTO公式，计算安全会话RTO或SSRTO。假定中间的人需要时间因素才能触发KCI攻击。在服务器端，通过计算启动TLS握手协议直到TLS记录协议所需的时间，如果发现花费了相当长的时间，我们可以假设存在攻击者。在这种情况下，操作是切断发送方和接收方之间的会话。

著录项

来源
《International Conference on Computer, Control, Electrical, and Electronics Engineering》|2018年|1-8|共8页
会议地点 Khartoum(SD)
作者
Ayman Mohammed Muzzamail Albashear; Hamid Abbas Ali; Abeer M. Ali;
展开▼
作者单位

Faculty of Engineering University of Khartoum Khartoum Sudan;

Electrical and Electronic Engineering Department University of Khartoum Sudan;

Faculty of Computer Science Sudan University of Science Technology Sudan;

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
Protocols; Servers; Mathematical model; Ciphers; Public key; Receivers; Graphical user interfaces;

机译：协议；服务器；数学模型;密码；公钥；接收器；图形用户界面;

相似文献

外文文献
中文文献
专利

1. Modeling Key Compromise Impersonation Attacks on Group Key Exchange Protocols [J] . M. CHOUDARY GORANTLA, COLIN BOYD, JUAN MANUEL GONZALEZ NIETO, ACM Transaction on Information and System Security . 2011,第4期

机译：对组密钥交换协议上的密钥泄露模拟攻击进行建模
2. Malboard: A novel user keystroke impersonation attack and trusted detection framework based on side-channel analysis [J] . Farhi Nitzan, Nissim Nir, Elovici Yuval Computers & Security . 2019,第AUGa期

机译：Malboard：基于旁信道分析的新型用户按键模拟攻击和可信检测框架
3. Malboard: A novel user keystroke impersonation attack and trusted detection framework based on side-channel analysis [J] . Farhi Nitzan, Nissim Nir, Elovici Yuval Computers & Security . 2019,第Auga期

机译：洛板：基于侧通道分析的新用户击键模拟攻击和可信检测框架
4. Detection of Man-in-the-Middle Attacks by Using the TCP Retransmission Timeout : Key Compromise Impersonation Attack as Study Case [C] . Ayman Mohammed Muzzamail Albashear, Hamid Abbas Ali, Abeer M. Ali International Conference on Computer, Control, Electrical, and Electronics Engineering . 2018

机译：使用TCP重传超时检测中间人攻击：关键危及模拟攻击作为研究案例
5. Detection and analysis of man-in-the-middle attacks in windows 8 and windows 8.1 [D] . Dueno Ortiz, Bruno G. 2014

机译：Windows 8和Windows 8.1中的中间人攻击的检测和分析
6. Man-In-The-Middle Attacks in Vehicular Ad-Hoc Networks: Evaluating the Impact of Attackers’ Strategies [O] . Farhan Ahmad, Asma Adnane, Virginia N. L. Franqueira, 2018

机译：车载Ad-Hoc网络中的中间人攻击：评估攻击者策略的影响
7. Two Types of Key-Compromise Impersonation Attacks against One-Pass Key Establishment Protocols [O] . K. Chalkias, F. Baldimtsi, D. Hristu-varsakelis, 2012

机译：针对一次通过密钥建立协议的两种类型的密钥泄露模拟攻击

Detection of Man-in-the-Middle Attacks by Using the TCP Retransmission Timeout : Key Compromise Impersonation Attack as Study Case

摘要

著录项

引文网络

相似文献

相关主题

期刊订阅