Cryptography and Network Security: Fifth Edition by William Stallings
Cryptography and Network Security: Fifth Edition by William Stallings
Cryptography and Network Security: Fifth Edition by William Stallings
Chapter 19 IP Security
If a secret piece of news is divulged by a spy before the time is ripe, he must be put to death, together with the man to whom the secret was told. The Art of War, Sun Tzu
IP Security
have
however
there are security concerns that cut across protocol layers would like security implemented by the network for all applications
IP Security
general
applicable
to use over LANs, across public & private WANs, & for the Internet need identified in 1994 report
IP Security Uses
Benefits of IPSec
in
a firewall/router provides strong security to all traffic crossing the perimeter in a firewall/router is resistant to bypass is below transport layer, hence transparent to applications can be transparent to end users can provide security for individual users secures routing architecture
IP Security Architecture
specification
Architecture
RFC4301 Security Architecture for Internet Protocol
IPSec Services
Access
Confidentiality
Mode
to encrypt & optionally authenticate IP data can do traffic analysis but is efficient good for ESP host to host traffic
Tunnel
Mode
encrypts entire IP packet add new header for next hop no routers on way can examine inner IP header good for VPNs, gateway to gateway security
Security Associations
a
one-way relationship between sender & receiver that affords security for traffic flow defined by 3 parameters:
has
have
match subset of IP traffic to relevant SA use selectors to filter outgoing traffic to map based on: local & remote IP addresses, next layer protocol, name, local & remote ports
provides message content confidentiality, data origin authentication, connectionless integrity, an anti-replay service, limited traffic flow confidentiality services depend on options selected when establish Security Association (SA), net location can use a variety of encryption & authentication algorithms
can encrypt payload data, padding, pad length, and next header fields
if needed have IV at start of payload data
ESP
ESP
to expand plaintext to required length to align pad length and next header fields to provide partial traffic flow confidentiality
Anti-Replay Service
replay
is when attacker resends a copy of an authenticated packet use sequence number to thwart this attack sender initializes sequence number to 0 when a new SA is established
receiver
combining
ESP with authentication, bundled inner ESP & outer AH, bundled inner transport & outer ESP
sysadmin manually configures every system automated system for on demand creation of keys for SAs in large systems has Oakley & ISAKMP elements
automated
Oakley
a
key exchange protocol based on Diffie-Hellman key exchange adds features to address weaknesses
no info on parties, man-in-middle attack, cost so adds cookies, groups (global params), nonces, DH key exchange with authentication
can
ISAKMP
Internet
Security Association and Key Management Protocol provides framework for key management defines procedures and packet formats to establish, negotiate, modify, & delete SAs independent of key exchange protocol, encryption alg, & authentication method IKEv2 no longer uses Oakley & ISAKMP terms, but basic functionality is same
IKEV2 Exchanges
ISAKMP
Security Association, Key Exchange, Identification, Certificate, Certificate Request, Authentication, Nonce, Notify, Delete, Vendor ID, Traffic Selector, Encrypted, Configuration, Extensible Authentication Protocol
payload
has complex hierarchical structure may contain multiple proposals, with multiple protocols & multiple transforms
Cryptographic Suites
variety
Summary
have
considered:
IPSec security framework IPSec security policy ESP combining security associations internet key exchange cryptographic suites used