Replay attack

Replay attack

A replay attack is a form of network attack in which a valid data transmission is maliciously or fraudulently repeated or delayed. This is carried out either by the originator or by an adversary who intercepts the data and retransmits it, possibly as part of a masquerade attack by IP packet substitution (such as stream cipher attack).

Example

Suppose Alice wants to prove her identity to Bob. Bob requests her password as proof of identity, which Alice dutifully provides (possibly after some transformation like a hash function); meanwhile, Eve is eavesdropping the conversation and keeps the password. After the interchange is over, Eve connects to Bob posing as Alice; when asked for a proof of identity, Eve sends Alice's password read from the last session, which Bob accepts.

Countermeasures

A way to avoid replay attacks is using session tokens: Bob sends a one-time token to Alice, which Alice uses to transform the password and send the result to Bob (e.g. computing a hash function of the session token appended to the password). On his side Bob performs the same computation; if and only if both values match, the login is successful. Now suppose Mallory has captured this value and tries to use it on another session; Bob sends a different session token, and when Mallory replies with the captured value it will be different from Bob's computation.

Session tokens should be chosen by a (pseudo-) random process. Otherwise Mallory may be able to guess some future token and convince Alice to use that token in her transformation. Mallory can then replay her reply at a later time, which Bob will accept.

Bob can also send nonces but should then include a Message authentication code (MAC), which Alice should check.

Timestamping is another way of preventing a replay attack. Synchronization should be achieved using a secure protocol. For example Bob periodically broadcasts the time on his clock together with a MAC. When Alice wants to send Bob a message, she includes her best estimate of the time on his clock in her message, which is also authenticated. Bob only accepts messages for which the timestamp is within a reasonable tolerance. The advantage of this scheme is that Bob does not need to generate (pseudo-) random numbers.

See also

* Denial of service
* Active wiretapping
* Passive wiretapping
* Digest access authentication


Wikimedia Foundation. 2010.

Игры ⚽ Нужно решить контрольную?

Look at other dictionaries:

  • replay attack — noun An attempt to subvert security by recording legitimate communications and repeating them to try to impersonate a valid user …   Wiktionary

  • Replay — can refer to:*Replay (sports), a replayed match in between two sport teams to decide in case of tie or conflict resulting from scoring, officiating, fouling or other factors *Instant replay, in motion pictures and television, a showing again of… …   Wikipedia

  • Replay value — or replayability is a term usually found in combination with video games, but it may be also used to describe other kinds of games, movies, music, or theater plays. Video and computer game players use the term replay value to describe the… …   Wikipedia

  • Replay (novel) — infobox Book | name = Replay title orig = translator = author = Ken Grimwood cover artist = country = United States language = English series = genre = Science fiction, Novel publisher = Arbor House release date = January 1987 media type = Print… …   Wikipedia

  • replay — {{Roman}}I.{{/Roman}} noun 1 playing again of a short section of video, etc. ADJECTIVE ▪ action (BrE), instant (AmE) ▪ Instant replays can occasionally prove the referee wrong. ▪ slow motion ▪ endles …   Collocations dictionary

  • Reflection attack — otheruses4|the attack on authentication systems|the denial of service attack|Distributed Reflection Denial of ServiceA reflection attack is a method of attacking a challenge response authentication system that uses the same protocol in both… …   Wikipedia

  • Copy attack — Not to be confused with Replay attack. The copy attack is an attack on certain digital watermarking systems proposed by M. Kutter, S. Voloshynovskiy, and A. Herrige in a paper presented in January, 2000 at the Photonics West SPIE convention.[1]… …   Wikipedia

  • Dragon Ball Z: Attack of the Saiyans — Developer(s) Monolith Soft Publisher(s) …   Wikipedia

  • Time attack — A time attack is another term for time trial. The term is commonly used in Japan for individual time trial events for motor vehicles that involves a vehicle running around the circuit in lieu of a qualifying lap and the term is widely adopted… …   Wikipedia

  • Crocodile attack — Crocodile attacks on people are common in places where large crocodiles are native and human populations live. Only six of the 23 crocodilian species are considered dangerous to adult humans, and only individuals 2 metres (6.6 ft) in length… …   Wikipedia

Share the article and excerpts

Direct link
Do a right-click on the link above
and select “Copy Link”