• DocumentCode
    120009
  • Title

    Attacking the IPsec standards when applied to IPv6 in confidentiality-only ESP tunnel mode

  • Author

    Dongxiang Fang ; Peifeng Zeng ; Weiqin Yang

  • Author_Institution
    Coll. of Comput. Sci. & Technol., Donghua Univ., Shanghai, China
  • fYear
    2014
  • fDate
    16-19 Feb. 2014
  • Firstpage
    401
  • Lastpage
    405
  • Abstract
    Attacks which can break RFC-compliant IPsec implementation built on IPv6 in confidentiality-only ESP tunnel mode are proposed. The attacks combine the thought of IV attack, oracle attack and spoof attack to decrypt a encrypted IPv6 datagram. The attacks here are more efficient than the attacks presented by Paterson and Degabriele because no checksum issue has to be handled. The paper shows that using IPsec with confidentiality-only ESP configuration is insecure to convince users to select it carefully.
  • Keywords
    IP networks; cryptography; protocols; telecommunication security; Degabriele; IPsec standards; IV attack; Paterson; RFC compliant IPsec implementation; confidentiality only ESP tunnel mode; decrypt; encapsulating security payload; encrypted IPv6 datagram; initialization vector; oracle attack; spoof attack; Educational institutions; Encryption; IP networks; Payloads; Protocols; ESP; IPsec; IPv6; Security; confidentiality-only;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Advanced Communication Technology (ICACT), 2014 16th International Conference on
  • Conference_Location
    Pyeongchang
  • Print_ISBN
    978-89-968650-2-5
  • Type

    conf

  • DOI
    10.1109/ICACT.2014.6778990
  • Filename
    6778990
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=120009