Task COMP 30022 (CW2) Advanced Networking Technologies (COMP 30022)-Fall-2017-CW

Question

Task COMP 30022 (CW2) Advanced Networking Technologies (COMP 30022)-Fall-2017-CW2 Assignmenti-ap All WAN traffic pass through WAN gateways such as modems and routers. However, these gateway's facing hugelevel of attacks and threats where the administrator need to apply pevention and detection techniques. As network administrator analyze the following: a. Analyze two WAN gutes threats und uttacks b. Suggest two ountermeasures to prevent or detect the define threats in u c. Suppot your analysis by one research paper which cover one the threats and proposed (40 marks (40 marks solution. (10 marks)

Explanation / Answer

Threats and Attacks faced by routers and modem:-

By default,modems and routers are vulnerable to attacks because of the way they are
configured.For example,having predefined credentials readily available over the internet
can allow cybercriminals to perform bruteforce attacks.

1. Man-in-the-Middle (MitM) attacks

Man-in-the-Middle attacks simply means that there is a man in between your system and
your gateway through which you connect to the internet.A MitM attack happens when a
communication between two systems is intercepted by an outside entity.Not only are
they trying to eavesdrop on your private conversations, they can also target all the
information inside your devices.Some common examples of MitM are Session Hijacking,
Wi-Fi Eavesdropping,Email Hijacking etc..

2. Packet Misrouting Attacks

For this kind of attacks to work attacker needs to have a backdoor access which can be
easily gained by techniques like brute force.Malicious misrouting of packets is a kind
of packet mistreatment attack. In such attack a malicious attacker misroute packets so
that triangle routing is formed. This kind of attacks is very difficult to detect, and
the problem is considered as an open problem Attacking Routers by Packet Misrouting.
Once the configurations of the router is changed by the attacker its very hard to detect
and solve them.

Countermeasures to prevent MitM attacks:-

Most of the effective defences against MITM can be found only on router or server-side.
You won’t be having any dedicated control over the security of your transaction.

->Secure/Multipurpose Internet Mail Extensions, or S/MIME: It encrypts your emails
    at rest or in transit, ensuring only intended recipients can read them and leaving no
    spaces for hackers to slip their way in and alter your messages.
->Authentication Certificates : You can use authentication to make your networks hard to
   penetrate using Certificate-Based Authentication.This means only endpoints with properly
   configured certificates can access your systems and networks

Countermeasures to prevent Packet Misrouting attacks:-

->To detect packet misrouting, the local monitoring mechanism has to incorporate
   additional functionality and information. The basic idea is to extend the knowledge at each
   node to include the identity of the next-hop of the packet being relayed in order to detect
   packet misrouting.

->To confirm the packets have arrived to the next hop ACK packets can be used.Using this method
    the ACK packet from the receiver/last node will confirm that the packets have reached successfully.

Related Questions

Navigate

• Browse (All)
• Browse T
• Subjects

---

---

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.