• DocumentCode
    2756268
  • Title

    Attacking the IPsec Standards in Encryption-only Configurations

  • Author

    Degabriele, Jean Paul ; Paterson, Kenneth G.

  • Author_Institution
    Hewlett-Packard Labs., Bristol
  • fYear
    2007
  • fDate
    20-23 May 2007
  • Firstpage
    335
  • Lastpage
    349
  • Abstract
    We describe new attacks which break any RFC- compliant implementation of IPsec making use of encryption-only ESP in tunnel mode. The new attacks are both efficient and realistic: they are ciphertext-only and need only the capability to eavesdrop on ESP-encrypted traffic and to inject traffic into the network. We report on our experiences in applying the attacks to a variety of implementations of IPsec.
  • Keywords
    IP networks; cryptography; telecommunication traffic; IPsec standard attacks; RFC-compliant implementation; ciphertext-only attacks; encryption-only configurations; traffic injection; tunnel mode; Authentication; Cryptography; Electrostatic precipitators; Information security; Laboratories; Linux; Open source software; Performance gain; Telecommunication traffic; Virtual private networks;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Security and Privacy, 2007. SP '07. IEEE Symposium on
  • Conference_Location
    Berkeley, CA
  • ISSN
    1081-6011
  • Print_ISBN
    0-7695-2848-1
  • Type

    conf

  • DOI
    10.1109/SP.2007.8
  • Filename
    4223237
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2756268