Endre søk
RefereraExporteraLink to record
Permanent link

Direct link
Referera
Referensformat
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annet format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annet språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf
IPsec Intrusion Detection Analysis: Using data from an Ericsson Ethernet Interface Board
KTH, Skolan för informations- och kommunikationsteknik (ICT), Kommunikationssystem, CoS. (CCSlab)
KTH, Skolan för informations- och kommunikationsteknik (ICT), Kommunikationssystem, CoS. (CCSlab)
2008 (engelsk)Independent thesis Advanced level (degree of Master (Two Years)), 20 poäng / 30 hpOppgave
Abstract [en]

IP security (IPsec) is commonly used for protection in Virtual Private Networks (VPN). It is also used for the protection of traffic between nodes in third generation (3G) mobile networks. The main duty of telecommunication operators is to assure the quality of service and availability of the network for their users. Therefore knowledge of threats that could affect these requirements is of relevance. Denial of Service (DoS) and other attacks could constitute serious threats in 3G networks and, if successful, they could lead to financial and reputation damage for the telecommunication operator. One of the goals of each telecommunications vendor is to produce equipment and software in such a way as to reduce the risk of successful attacks upon networks built using their equipment and software. This master’s thesis aims to identify the classes of attacks that could affect the regular operation of an IPsec-protected network. Therefore, the IPsec protocol and its possible weaknesses are explained. As practical demonstration of these ideas, an Intrusion Detection Analyzer prototype for an Ericsson Ethernet Interface board was developed to detect anomalous IPsec-protected traffic.

Abstract [sv]

IP security (IPsec) is commonly used for protection in Virtual Private Networks (VPN). It is also used for the protection of traffic between nodes in third generation (3G) mobile networks. The main duty of telecommunication operators is to assure the quality of service and availability of the network for their users. Therefore knowledge of threats that could affect these requirements is of relevance. Denial of Service (DoS) and other attacks could constitute serious threats in 3G networks and, if successful, they could lead to financial and reputation damage for the telecommunication operator. One of the goals of each telecommunications vendor is to produce equipment and software in such a way as to reduce the risk of successful attacks upon networks built using their equipment and software. This master’s thesis aims to identify the classes of attacks that could affect the regular operation of an IPsec-protected network. Therefore, the IPsec protocol and its possible weaknesses are explained. As practical demonstration of these ideas, an Intrusion Detection Analyzer prototype for an Ericsson Ethernet Interface board was developed to detect anomalous IPsec-protected traffic.

sted, utgiver, år, opplag, sider
2008. , 91 s.
Serie
Trita-ICT-COS, ISSN 1653-6347 ; COS/CCS 2008-05
Emneord [en]
IPsec, IDS, Intrusion, Attack, Detection, VPN, 3G, ET-MFX, Security
HSV kategori
Identifikatorer
URN: urn:nbn:se:kth:diva-91865OAI: oai:DiVA.org:kth-91865DiVA: diva2:511451
Fag / kurs
Computer Communication
Presentation
2008-03-19, Seminar room Grimeton, Isafjordsgatan 22, Kista, 13:00 (engelsk)
Uppsök
Technology
Veileder
Examiner
Tilgjengelig fra: 2012-03-23 Laget: 2012-03-21 Sist oppdatert: 2013-09-09bibliografisk kontrollert

Open Access i DiVA

fulltext(4741 kB)1255 nedlastinger
Filinformasjon
Fil FULLTEXT01.pdfFilstørrelse 4741 kBChecksum SHA-512
b8955131011c2380a55ae7dd6ed40f54bebb3b1af7454ccd47eeb0d2bcf991d105fef8a891ddcb8071186844bfaa7feaea908fd23d1cc24f14e95a22ad62ecad
Type fulltextMimetype application/pdf

Søk i DiVA

Av forfatter/redaktør
Amso, JulianFaienza, Achille
Av organisasjonen

Søk utenfor DiVA

GoogleGoogle Scholar
Totalt: 1255 nedlastinger
Antall nedlastinger er summen av alle nedlastinger av alle fulltekster. Det kan for eksempel være tidligere versjoner som er ikke lenger tilgjengelige

urn-nbn

Altmetric

urn-nbn
Totalt: 555 treff
RefereraExporteraLink to record
Permanent link

Direct link
Referera
Referensformat
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annet format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annet språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf