Transport Layer Security Renegotiation Vulnerability

Fabio Semperboni — Tue, 10 Nov 2009 14:21:48 +0000

Security researchers Marsh Ray and Steve Dispensa unveiled the TLS (Transport Layer Security) flaw on Wednesday, following the disclosure of separate, but similar, security findings. TLS and its predecessor, SSL (Secure Sockets Layer), are typically used by online retailers and banks to provide security for web transactions. Ray explained in a blog post on Thursday that he had initially discovered the flaw in August, and demonstrated a working exploit to Dispensa at the beginning of September.

This vulnerability could impact any Cisco product that uses any version of TLS and SSL.(...)
Read the rest of Transport Layer Security Renegotiation Vulnerability (143 words)

BGP MiTM attacks

Fabio Semperboni — Fri, 06 Mar 2009 20:59:20 +0000

Surfing the web, I have found a nice article about BGP weakness. This document, entitled “Defending Against BGP Man-In-The-Middle Attacks“, was presented by Earl Zmijewski during Black Hat DC 2009 (Hyatt Regency Crystal City – February 16-17 – Arlington, Virginia).

The slides focus on four points:

BGP Routing Basics – Enough to understand and identify the threat
1. BGP Update Messages
2. BGP Attributes
3. Some real examples
The Man-In-The-Middle Attack:
1. How BGP MiTM attack work
2. What are the techniques used by an attacker to “tune” the attack (Obscuring the MITM attack with TTL adjustment)
Detecting the Attack – Methods for observing the attack in the wild:
1. Traceroute
2. Latency
3. BGP Alarming Services (BGPmon, IAR, …)
Case Studies – Analyzing historical data for attack evidence(...)
Read the rest of BGP MiTM attacks (194 words)

© Fabio Semperboni for CiscoZine, 2009. | Permalink | No comment
Post tags: BGP, MiTM

CiscoZine » MiTM

Transport Layer Security Renegotiation Vulnerability

BGP MiTM attacks