English
Related papers

Related papers: Off-Path TCP Exploits of the Mixed IPID Assignment

200 papers

Intermediate-level attacks that attempt to perturb feature representations following an adversarial direction drastically have shown favorable performance in crafting transferable adversarial examples. Existing methods in this category are…

Machine Learning · Computer Science 2023-11-03 Qizhang Li , Yiwen Guo , Wangmeng Zuo , Hao Chen

The Transmission Control Protocol (TCP) is one of the most important protocols in today's Internet. Its specification and implementations have been refined for almost forty years. The Linux TCP stack is one of the most widely used TCP…

Networking and Internet Architecture · Computer Science 2019-05-23 Viet-Hoang Tran , Olivier Bonaventure

Operational Technology (OT) networks of industrial control systems (ICS) are increasingly connected to the public Internet, which has prompted ICSes to implement strong security measures (e.g., authentication and encryption) to protect…

Cryptography and Security · Computer Science 2023-12-12 Gargi Mitra , Pritam Dash , Yingao Elaine Yao , Aastha Mehta , Karthik Pattabiraman

The detection of BGP prefix hijacking attacks has been the focus of research for more than a decade. However, state-of-the-art techniques fall short of detecting more elaborate types of attack. To study such attacks, we devise a novel…

Networking and Internet Architecture · Computer Science 2016-07-04 Johann Schlamp , Ralph Holz , Quentin Jacquemart , Georg Carle , Ernst W. Biersack

The Internet is a critical resource in the day-to-day life of billions of users. To support the growing number of users and their increasing demands, operators have to continuously scale their network footprint -- e.g., by joining Internet…

Networking and Internet Architecture · Computer Science 2023-03-13 Lars Prehn , Pawel Foremski , Oliver Gasser

Harmful Internet hijacking incidents put in evidence how fragile the Border Gateway Protocol (BGP) is, which is used to exchange routing information between Autonomous Systems (ASes). As proved by recent research contributions, even S-BGP,…

Networking and Internet Architecture · Computer Science 2012-05-22 Marco Chiesa , Giuseppe Di Battista , Thomas Erlebach , Maurizio Patrignani

-Multipath communications at the Internet scale have been a myth for a long time, with no actual protocol being deployed so that multiple paths could be taken by a same connection on the way towards an Internet destination. Recently, the…

Networking and Internet Architecture · Computer Science 2017-04-25 Ho-Dac-Duy Nguyen , Chi-Dung Phung , Stefano Secci , Benevid Felix , Michele Nogueira

In this paper we present three attacks on private internal networks behind a NAT and a corresponding new protection mechanism, Internal Network Policy, to mitigate a wide range of attacks that penetrate internal networks behind a NAT. In…

Cryptography and Security · Computer Science 2019-10-04 Yehuda Afek , Anat Bremler-Barr , Alon Noy

As the deployment of comprehensive Border Gateway Protocol (BGP) security measures is still in progress, BGP monitoring continues to play a critical role in protecting the Internet from routing attacks. Fundamentally, monitoring involves…

Cryptography and Security · Computer Science 2024-08-20 Henry Birge-Lee , Maria Apostolaki , Jennifer Rexford

Denial-of-Service attacks continue to be a serious problem for the Internet community despite the fact that a large number of defense approaches has been proposed by the research community. In this paper we introduce IP Fast Hopping, easily…

Networking and Internet Architecture · Computer Science 2014-03-31 Vladimir Krylov , Kirill Kravtsov

We analyzed the generation of protocol header fields in the implementations of multiple TCP/IP network stacks and found new ways to leak information about global protocol states. We then demonstrated new covert channels by remotely…

Cryptography and Security · Computer Science 2022-09-02 Amit Klein

Bitcoin recently introduced a new protocol for the encryption of peer-to-peer (P2P) communication. The protocol, known as V2 P2P transport, represents a big step towards securing the overlay network against various previously-known attack…

Cryptography and Security · Computer Science 2026-05-20 Charmaine Ndolo , Florian Tschorsch

Local Differential Privacy (LDP) protocols enable an untrusted server to perform privacy-preserving, federated data analytics. Various LDP protocols have been developed for different types of data such as categorical data, numerical data,…

Cryptography and Security · Computer Science 2021-11-25 Yongji Wu , Xiaoyu Cao , Jinyuan Jia , Neil Zhenqiang Gong

We introduce an attack against encrypted web traffic that makes use only of packet timing information on the uplink. This attack is therefore impervious to existing packet padding defences. In addition, unlike existing approaches this…

Networking and Internet Architecture · Computer Science 2016-07-12 Saman Feghhi , Douglas J. Leith

Advanced Persistent Threat (APT) attack usually refers to the form of long-term, covert and sustained attack on specific targets, with an adversary using advanced attack techniques to destroy the key facilities of an organization. APT…

Cryptography and Security · Computer Science 2021-12-20 Tiantian Zhu , Jinkai Yu , Tieming Chen , Jiayu Wang , Jie Ying , Ye Tian , Mingqi Lv , Yan Chen , Yuan Fan , Ting Wang

Since the origins of the Internet, various vulnerabilities exploiting the IP fragmentation process have plagued IPv4 protocol, many leading to a wide range of attacks. IPv6 modified the handling of fragmentations and introduced a specific…

Cryptography and Security · Computer Science 2023-09-27 Edoardo Di Paolo , Enrico Bassetti , Angelo Spognardi

We propose BlockJack, a system based on a distributed and tamper-proof consortium Blockchain that aims at blocking IP prefix hijacking in the Border Gateway Protocol (BGP). In essence, BlockJack provides synchronization among BlockChain and…

Cryptography and Security · Computer Science 2021-07-16 I Wayan Budi Sentana , Muhammad Ikram , Mohamed Ali Kaafar

The Border Gateway Protocol (BGP) is globally used by Autonomous Systems (ASes) to establish route paths for IP prefixes in the Internet. Due to the lack of authentication in BGP, an AS can hijack IP prefixes owned by other ASes (i.e.,…

Networking and Internet Architecture · Computer Science 2016-11-09 Pavlos Sermpezis , Gavriil Chaviaras , Petros Gigis , Xenofontas Dimitropoulos

The ever-evolving capabilities of cyber attackers force security administrators to focus on the early identification of emerging threats. Targeted cyber attacks usually consist of several phases, from initial reconnaissance of the network…

Cryptography and Security · Computer Science 2022-06-22 Lukáš Sadlek , Pavel Čeleda , Daniel Tovarňák

We demonstrate the first practical off-path time shifting attacks against NTP as well as against Man-in-the-Middle (MitM) secure Chronos-enhanced NTP. Our attacks exploit the insecurity of DNS allowing us to redirect the NTP clients to…

Cryptography and Security · Computer Science 2020-10-20 Philipp Jeitner , Haya Shulman , Michael Waidner