cs 356 systems security spring 2014 http www cs colostate edu cs356 n.
Download
Skip this Video
Loading SlideShow in 5 Seconds..
CS 356 Systems Security Spring 2014 http://www.cs.colostate.edu/~cs356 PowerPoint Presentation
Download Presentation
CS 356 Systems Security Spring 2014 http://www.cs.colostate.edu/~cs356

Loading in 2 Seconds...

  share
play fullscreen
1 / 23
ranee

CS 356 Systems Security Spring 2014 http://www.cs.colostate.edu/~cs356 - PowerPoint PPT Presentation

161 Views
Download Presentation
CS 356 Systems Security Spring 2014 http://www.cs.colostate.edu/~cs356
An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.

- - - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - - -
Presentation Transcript

  1. CS 356 Systems SecuritySpring 2014http://www.cs.colostate.edu/~cs356 Dr. Indrajit Ray http://www.cs.colostate.edu/~indrajit Original slides by Lawrie Brown. Adapted for CS 356 by Indrajit Ray

  2. A Very Brief Introduction toNetworking

  3. Internetworking • Internetwork = Collection of networks connected via routers

  4. Internet = Virtual Network

  5. Sending a packet from Argon to Neon

  6. DNS: What is the IP address of “neon.tcpip-lab.edu”? DNS: The IP address of “neon.tcpip-lab.edu” is 128.143.71.21 ARP: What is the MAC address of 128.143.137.1? ARP: What is the MAC address of 128.143.71.21? ARP: The MAC address of 128.143.137.1 is 00:20:af:03:98:28 ARP: The MAC address of 128.143.137.1 is 00:e0:f9:23:a8:20 128.143.71.21 is not on my local network. Therefore, I need to send the packet to my default gateway with address 128.143.137.1 Sending a packet from Argon to Neon 128.143.71.21 is on my local network. Therefore, I can send the packet directly. frame frame

  7. Communications Architecture • The complexity of the communication task is reduced by using multiple protocol layers: • Each protocol is implemented independently • Each protocol is responsible for a specific subtask • Protocols are grouped in a hierarchy • A structured set of protocols is called a communicationsarchitectureorprotocol suite

  8. TCP/IP Protocol Suite • The TCP/IP protocol suite is the protocol architecture of the Internet • The TCP/IP suite has four layers: Application, Transport, Network, and Data Link Layer • End systems (hosts) implement all four layers. Gateways (Routers) only have the bottom two layers.

  9. OSI Model TCP/IP Hierarchy Protocols 7th Application Layer 6th Presentation Layer Application Layer 5th Session Layer 4th Transport Layer Transport Layer Network Layer 3rd Network Layer 2nd Link Layer Link Layer 1st Physical Layer OSI and TCP/IP Protocol Stack Dr. Indrajit Ray, Computer Science Department CT 320 – Network and Systems Administration, Fall 2011

  10. Functions of the Layers • Data Link Layer: • Service: Reliable transfer of frames over a link Media Access Control on a LAN • Functions: Framing, media access control, error checking • Network Layer: • Service: Move packets from source host to destination host • Functions: Routing, addressing • Transport Layer: • Service: Delivery of data between hosts • Functions: Connection establishment/termination, error control, flow control • Application Layer: • Service: Application specific (delivery of email, retrieval of HTML documents, reliable transfer of file) • Functions: Application specific

  11. Assignment of Protocols to Layers

  12. Layered Communications • An entity of a particular layer can only communicate with: 1. a peer layer entityusing a common protocol (Peer Protocol) 2. adjacent layersto provide services and to receive services

  13. Exchange of Data • The unit of data sent between peer entities is called a Protocol Data Unit (PDU) • For now, let us think of a PDU as a single packet • Scenario: Layer-N at A sends a layer-N PDU to layer-N at B • What actually happens: • A’s layer-N passes the PDU to the SAPs at layer-N-1 • Layer-N-1 entity at A constructs its own (layer-N-1) PDU which it sends to the layer-N-1 entity at B • PDU at layer-N-1 = layer-N-1 Header + layer –N PDU A B

  14. Layers in the Example

  15. Send IP data-gram to 128.143.71.21 Frame is an IP datagram Frame is an IP datagram IP datagram is a TCP segment for port 80 Send HTTP Request to neon Establish a connection to 128.143.71.21 at port 80 Open TCP connection to 128.143.71.21 port 80 Send IP datagram to 128.143.71.21 Send a datagram (which contains a connection request) to 128.143.71.21 Send the datagram to 128.143.137.1 Send the datagram to 128.143.7.21 Send Ethernet frame to 00:e0:f9:23:a8:20 Send Ethernet frame to 00:20:af:03:98:28 Layers in the Example

  16. Encapsulation • As data is moving down the protocol stack, each protocol is adding layer-specific control information

  17. Ethernet • Computer <-> Computer communication on same network • Each device has unique MAC address (48-bit) example: 00-C0-4F-48-47-93 Ethernet Packet: Dest. address Source address Type Preamble Data CRC 8bytes 6bytes 6bytes 2bytes 64 - 1500bytes 4bytes MAC: Media Access Control

  18. IP: Internet Protocol • Unreliable … connectionless datagram delivery service • Responsible for routing of data through intermediate networks and computers 0123 4567 1111 2345 1111 6789 2222 0123 2222 4567 2233 8901 11 8901 IP header: 1 :ICMP 6 :TCP 17 :UDP

  19. ICMP : Internet Control Message Protocol • Used to report problems with delivery of IP Datagrams within an IP network • Used by Ping, Traceroutecommands Types and Codes • Echo Request (type=8, code=0) • Echo Reply(type=0, code=0) • Destination Unreachable(type=3, code=0) • Time Exceeded(type=11, code=0) : Time-to-Live =0 ICMP Message 20bytes 4bytes IP Header ICMP Header ICMP Data Type Code Checksum 1byte 1byte 2bytes

  20. 0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 Source Port Destination Port Sequence Number Acknowledgement Number DataOffset - - - - Window Checksum Urgent Pointer Options (0 to 10 Words of 32 Bits) TCP Payload TCP : Transmission Control Protocol • Connection-Oriented, Reliable, Byte Stream Service Protocol • Set up connection • Transfer data • Close connection TCP Header Format

  21. ARP : Address Resolution Protocol • ARP provides mapping 32bit IP address <-> 48bit MAC address 128.97.89.153 <-> 00-C0-4F-48-47-93 • ARP cache maintains the recent mappings from IP addresses to MAC addresses Protocol • ARP request broadcast on Ethernet • Destination host ARP layer responds

  22. DNS: Domain Name System • DNS provides mapping • www.cs.colostate.edu <-> 129.82.45.114 • and many other mappings • mail servers, IPv6, reverse mapping • Data is organized as a tree

  23. DNS Protocol what is www.colostate.edu .Root DNS Server .edu is …. what is www.colostate.edu what is www.colostate.edu .colostate.edu is … 129.82.103.106 what is www.colostate.edu caching DNS server .edu DNS Server www.colostate.edu is … .colostate.edu DNS Server