You are here: silicon.com > Resources > White Papers > Networking and Communications > Network Technologies > TCP - IP

TCP - IP White Papers

Prevention of IP Spoofing in TCP/IP Connection: Vulnerability Ability and Probable Solutions - A Reverse Engineering Approach

Tags:
tcp - ip

Overview In network environment the computer facilities are interconnected by using the Transmission Control Protocol - Internet Protocol suite. The TCP specification consists of several vulnerabilities and an equal number of weaknesses in its implementation. These drawbacks may allow an intruder to break into the network, and enable him to take over a connection, thus denying service to legitimate user. This paper tries to analyse the TCP code a "REVERSE ENGINEERING" technique and identifies several of these vulnerabilities especially those which are related to TCP state transition diagram. It also discusses many flaws in the TCP implementation that has occurred in various OS based systems. This paper also discusses TCP attack "IP SPOOFING" and recommends steps to improve the security state of a TCP based system.

Further White Paper Details
Publisher	Sri Venkateswara College of Engineering	File Format	PDF
Date Published	November 2003	Downloads	3
Format	White Papers
Topics	TCP - IP

Did you find this white paper useful? 3 out of 6 users found this white paper useful

Anthony & Sylvan Pools Takes the Plunge with VoIP

Publisher:
Shoretel

Sprint IPVoice Connect Fact Sheet

Publisher:
Sprint

Integrated Trade Systems, Inc. Is Able to Track and Ensure Timely Purchase Order Delivery by Using Biscom Delivery Server to Send Files Securely

Publisher:
Biscom

Stewart Title Guaranty Company Reduces Courier and FTP Costs Using Biscom Delivery Server for Timely, Accurate, and Trackable Distribution of Software to Their Customers

Publisher:
Biscom

Tags:
tcp - ip

Real plugs Player's holes

Four vulnerabilities in RealPlayer have been discovered, the most serious of which could allow an intruder to gain control of a computer, RealNetworks said in a security advisory posted on Thursday. Three of the four flaws could be exploited using...

Cisco warns of VPN flaw

The advisory said: "These flaws may expose denial of service conditions, format string vulnerabilities, and buffer overflows. It did not mention the possibility of the device being taken over by an intruder.

Apple struggles to fix critical glitch

In a pair of security alerts released on Thursday, Apple outlined 31 flaws that affect various versions of the operating system and a dozen vulnerabilities in its QuickTime media player software. Serious flaws in Mac OS X and QuickTime software...

Wi-fi hijack risk for Macs

Arbitrary code execution" means the intruder can commandeer the system. A trio of security flaws in Apple software that runs wireless-networking hardware could allow Macs to be hijacked over wi-fi, Apple said on Thursday.

iPhone 'data-stealing' hack claimed

The researchers wrote in a whitepaper: "These weaknesses allow for the easy development of stable exploit code once a vulnerability is discovered. In response to news of the hack, Apple said: "Apple takes security very seriously and has a great...

Channel:
PDAs
Tags:
exploit,
hack,
apple,
iphone

Android shows hack attack vulnerabilities

Core Security published an alert on its website stating it had found eight vulnerabilities related to some open source image processing libraries in Google's Android SDK, which the group claims are outdated.

Virtualisation: Architectual Considerations and other Evaluation Criteria

In the past several years, server virtualisation technology has moved quickly and firmly into the IT mainstream. Of the many approaches to system virtualisation available in the market today, VMware's hypervisor architecture has gained the greatest market acceptance. This paper examines the architectural issues, solution support, and enterprise readiness required when deploying such a virtualisation solution.

Publisher:
EMC

Getting Started with Master Data Management

Master data management forms part of an overall enterprise governance program that aims to establish trusted data throughout the enterprise. This white paper from Mike Ferguson of Intelligent Business Strategies defines master data, examines why it is needed, and explores methodologies for implementing master data management.

Publisher:
DataFlux

Optimising Storage with Global File Virtualisation

This white paper will provide an overview on how Rainfinity Global File Virtualisation virtualises unstructured data environments and moves data -including active, open files-without disruption to users or applications. Rainfinity is the only enterprise-class file virtualisation solution, and delivers complete NAS optimisation across geterogeneous environments, such as NAS, CAS, and file servers.

Publisher:
EMC

Also on silicon.com

Site Navigation:

TCP - IP White Papers

Prevention of IP Spoofing in TCP/IP Connection: Vulnerability Ability and Probable Solutions - A Reverse Engineering Approach

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific