Network Security

 

required reading:

RFCs          

• RFC 1948 - Defending Against Sequence Number Attacks
• RFC 4301 - Security Architecture for the Internet Protocol - sections 1-3

 

Other Documents

• Security problems in the TCP/IP Protocol Suite
• Why Cryptography Is Harder Than It Looks
• How to Own the Internet in Your Spare Time 
• Insertion, Evasion, and Denial of Service: Eluding Network Intrusion Detection
• Designing an Authentication System: a Dialogue in Four Scenes

 

optional reading: 

RFCs

• RFC 2535 - Domain Name System Security Extensions
• RFC 4270 - Attacks on Cryptographic Hashes in Internet Protocols

 

Other Documents

• Your 802.11 Wireless Network has No Clothes
• The Spread of the Sapphire/Slammer Worm
• How PGP Works

·          A Chronology of Data Breaches (browse)

·          The Human Factor of Phishing

IPsec RFCs

• RFC 2246 - Transport Layer Security
• RFC 2402 - IPsec Authentication Header
• RFC 2403 - The Use of HMAC-MD5-96 within ESP and AH
• RFC 2404 - The Use of HMAC-SHA-1-96 within ESP and AH
• RFC 2405 - The ESP DES-CBC Cipher Algorithm With Explicit IV
• RFC 2406 - IP Encapsulating Security Payload (ESP)
• RFC 2407 - The Internet IP Security Domain of Interpretation for ISAKMP
• RFC 2408 - Internet Security Association and Key Management Protocol (ISAKMP)
• RFC 2409 - The Internet Key Exchange (IKE)
• RFC 2410 - The NULL Encryption Algorithm and Its Use With IPsec
• RFC 2411 - IP Security Document Roadmap
• RFC 2412 - The OAKLEY Key Determination Protocol