Security Requirements of NVO3 draft-hartman-nvo3-security-requirements-01 S. Hartman M. Wasserman D. Zhang 1.

Slides:

Advertisements

Similar presentations

IP Security have considered some application specific security mechanisms –eg. S/MIME, PGP, Kerberos, SSL/HTTPS however there are security concerns that.

Advertisements

Network Virtualization Overlay Control Protocol Requirements draft-kreeger-nvo3-overlay-cp-00 Lawrence Kreeger, Dinesh Dutt, Thomas Narten, David Black,

Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.

SSL CS772 Fall Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.

Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, ICWCSC International.

BASIC CRYPTOGRAPHY CONCEPT. Secure Socket Layer (SSL)  SSL was first used by Netscape.  To ensure security of data sent through HTTP, LDAP or POP3.

IPSec: Authentication Header, Encapsulating Security Payload Protocols CSCI 5931 Web Security Edward Murphy.

1 Computer Security Instructor: Dr. Bo Sun. 2 Course Objectives Understand basic issues, concepts, principles, and mechanisms in computer network security.

NAT TRAVERSAL FOR IPSEC Research Seminar on Datacommunications Software HIIT

1 Network Architecture and Design Advanced Issues in Internet Protocol (IP) IPv4 Network Address Translation (NAT) IPV6 IP Security (IPsec) Mobile IP IP.

Lecture 1: Overview modified from slides of Lawrie Brown.

Security Threats and Security Requirements for the Access Node Control Protocol (ANCP) IETF 67 - ANCP WG November 5-10, 2006 draft-moustafa-ancp-security-threats-00.txt.

Network Security Topologies Chapter 11. Learning Objectives Explain network perimeter’s importance to an organization’s security policies Identify place.

1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.

1 Objectives Wireless Access IPSec Discuss Network Access Protection Install Network Access Protection.

CMSC 414 Computer and Network Security Lecture 16 Jonathan Katz.

Applied Cryptography for Network Security

Introduction (Pendahuluan)  Information Security.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Internet Protocol Security (IPSec)

K. Salah1 Security Protocols in the Internet IPSec.

Network Security. Contents Security Requirements and Attacks Confidentiality with Conventional Encryption Message Authentication and Hash Functions Public-Key.

1 © J. Liebeherr, All rights reserved Virtual Private Networks.

Alexander Potapov.  Authentication definition  Protocol architectures  Cryptographic properties  Freshness  Types of attack on protocols  Two-way.

What is in Presentation What is IPsec Why is IPsec Important IPsec Protocols IPsec Architecture How to Implement IPsec in linux.

G53SEC 1 Network Security Hijacking, flooding, spoofing and some honey.

SYSTEM ADMINISTRATION Chapter 13 Security Protocols.

Dr. Lo’ai Tawalbeh 2007 INCS 741: Cryptography Chapter 1:Introduction Dr. Lo’ai Tawalbeh New York Institute of Technology (NYIT) Jordan’s Campus

Cryptography and Network Security

Eng. Wafaa Kanakri Second Semester 1435 CRYPTOGRAPHY & NETWORK SECURITY Chapter 1:Introduction Eng. Wafaa Kanakri UMM AL-QURA UNIVERSITY

MOBILE AD-HOC NETWORK(MANET) SECURITY VAMSI KRISHNA KANURI NAGA SWETHA DASARI RESHMA ARAVAPALLI.

Lesson 20-Wireless Security. Overview Introduction to wireless networks. Understanding current wireless technology. Understanding wireless security issues.

OV Copyright © 2013 Logical Operations, Inc. All rights reserved. Network Security  Network Perimeter Security  Intrusion Detection and Prevention.

Cosc 4765 SSL/TLS and VPN. SSL and TLS We can apply this generally, but also from a prospective of web services. Multi-layered: –S-http (secure http),

OV Copyright © 2011 Element K Content LLC. All rights reserved. Network Security  Network Perimeter Security  Intrusion Detection and Prevention.

Firewall Technologies Prepared by: Dalia Al Dabbagh Manar Abd Al- Rhman University of Palestine

Network Security Lecture 20 Presented by: Dr. Munam Ali Shah.

Chapter 1 Overview The NIST Computer Security Handbook defines the term Computer Security as:

Network Security Introduction Light stuff – examples with Alice, Bob and Trudy Serious stuff - Security attacks, mechanisms and services.

Karlstad University IP security Ge Zhang

Network Security David Lazăr.

Welcome to Introduction to Computer Security. Why Computer Security The past decade has seen an explosion in the concern for the security of information.

. 1. Computer Security Concepts 2. The OSI Security Architecture 3. Security Attacks 4. Security Services 5. Security Mechanisms 6. A Model for Network.

11 SECURING NETWORK COMMUNICATION Chapter 9. Chapter 9: SECURING NETWORK COMMUNICATION2 OVERVIEW  List the major threats to network communications. 

IP Security. P R E S E N T E D B Y ::: Semester : 8 ::: Year : 2009 Naeem Riaz Maria Shakeel Aqsa Nizam.

1 Chapter 1 – Background Computer Security T/ Tyseer Alsamany - Computer Security.

Topic 1 – Introduction Huiqun Yu Information Security Principles & Applications.

Chapter 8 IP Security MSc. NGUYEN CAO DAT Dr. TRAN VAN HOAI.

IP security Ge Zhang Packet-switched network is not Secure! The protocols were designed in the late 70s to early 80s –Very small network.

IPSec and TLS Lesson Introduction ●IPSec and the Internet key exchange protocol ●Transport layer security protocol.

Securing Data Transmission and Authentication. Securing Traffic with IPSec IPSec allows us to protect our network from within IPSec secures the IP protocol.

Chapter 40 Network Security (Access Control, Encryption, Firewalls)

1 Objectives Wireless Access IPSec Discuss Network Access Protection Install Network Access Protection.

Security Threats and Security Requirements for the Access Node Control Protocol (ANCP) IETF 68 - ANCP WG March 18-23, 2007 draft-ietf-ancp-security-threats-00.txt.

INTRODUCTION TO COMPUTER & NETWORK SECURITY INSTRUCTOR: DANIA ALOMAR.

Cryptography and Network Security (CS435) Part Thirteen (IP Security)

Network Virtualization Overlay Control Protocol Requirements draft-kreeger-nvo3-overlay-cp Lawrence Kreeger, Dinesh Dutt, Thomas Narten, David Black, Murari.

1 Routing security against Threat models CSCI 5931 Wireless & Sensor Networks CSCI 5931 Wireless & Sensor Networks Darshan Chipade.

IPSec – IP Security Protocol By Archis Raje. What is IPSec IP Security – set of extensions developed by IETF to provide privacy and authentication to.

Lect 8 Tahani al jehain. Types of attack Remote code execution: occurs when an attacker exploits a software and runs a program that the user does not.

Security Review Q&A Session May 1. Outline  Class 1 Security Overview  Class 2 Security Introduction  Class 3 Advanced Security Constructions  Class.

K. Salah1 Security Protocols in the Internet IPSec.

XRBLOCK IETF 85 Atlanta Network Virtualization Architecture Design and Control Plane Requirements draft-fw-nvo3-server2vcenter-01 draft-wu-nvo3-nve2nve.

Security Data Transmission and Authentication Lesson 9.

 Attacks and threats  Security challenge & Solution  Communication Infrastructure  The CA hierarchy  Vehicular Public Key  Certificates.

1 Network Security Maaz bin ahmad.. 2 Outline Attacks, services and mechanisms Security attacks Security services Security Mechanisms A model for Internetwork.

© 2009 Cisco Systems, Inc. All rights reserved. Cisco Public Presentation_ID 1 Security Requirements of NVO3 draft-hartman-nvo3-security-requirements-00.

Firewalls and Tunneling Firewalls –Acts as a barrier against unwanted network traffic –Blocks many communication channels –Can change the design space.

Introduction to Network Security

Security in SDR & cognitive radio

Presentation transcript:

Security Requirements of NVO3 draft-hartman-nvo3-security-requirements-01 S. Hartman M. Wasserman D. Zhang 1

Updates since -00 Add the introduction of NVO3 Overlay Architecture Fill the Terminology Section Provide a new attacker category Add the discussion about the necessary of introducing automatic key management mechanisms Add an attacking analysis on the data plan of NVO3 overlay 2

Threat Model in this analysis work, attacks are classified into two categories: – inside attacks An attack is considered as an inside attack if the adversary performing the attack (inside attacker or insider) has got certain privileges in changing the configuration or software of a NVO3 device (or a network devices of the underlying network where the overlay is located upon) and initiates the attack within the overlay security perimeter. – Outside attacks. In contrast, an attack is referred to as an outside attack if the adversary performing the attack (outside attacker or outsider) has no such privilege and can only initiate the attacks from compromised TSes. 3

Outsider Capabilities The following capabilities of outside attackers MUST be considered in the design of a NOV3 security mechanism: – Eavesdropping on the packets, – Replaying the intercepted packets, and – Generating illegal packets and injecting them into the network. With a successful outside attack, an attacker may be able to: – Analyze the traffic pattern of a tenant or an end device, – Disrupt the network connectivity or degrade the network service quality, or – Access the contents of the data/control packets if they are not encrypted. 4

Insider Capabilities It is assumed that an inside attacker can perform any types of outside attacks from the inside or outside of the overlay perimeter. In addition, in an inside attack, an attacker may use already obtained privilege to, for instance, – Interfere with the normal operations of the overlay as a legal entity, by sending packets containing invalid information or with improper frequencies, – Perform spoofing attacks and impersonate another legal device to communicate with victims using the cryptographic information it obtained, and – Access the contents of the data/control packets if they are encrypted with the keys held by the attacker. 5

Security Properties (1) When encountering an attack, a virtual data center network MUST guarantee the following security properties: – Isolation of the VNs – Spoofing detection – Integrity protection and message origin authentication for the control plane – Availability of the control plane 6

Security Properties (2) When encountering an attack, The following properties SHOULD be optionally provided: – Confidentiality and integrity of the data traffic of TSes. – Confidentiality of the control plane 7

Basic Security Approach to Securing the Communications between NVEs and TSes If the NVE supports multiple VNs concurrently, the data/control traffics in different VNs MUST be isolated physically or by using VPN technologies. If the network connecting the NVE and the TSes is potentially accessible to attackers, the security properties of data traffic (e.g., integrity, confidentiality, and message origin authenticity) SHOULD be provided. Cryptographic keys need to be distributed to generate digests or signatures for the control packets (cryptographic keys need to be distributed to generate digests or signatures for the control packets. – The TSes belonging to different VNs MUST use different keys to secure the control packets exchanges with their NVE. – For a better damage confinement capability, different TSes SHOULD use different keys to secure their control packet exchanges with NVEs, even if they belong to the same VN. 8

Basic Security Approach to Securing Control Plane of NVO3 Overlay It is the responsibility of the NVO3 network to protect the control plane packets transported over the underlay network against the attacks from the underlying network. – The integrity and origin authentication of the messages MUST be guaranteed. The signaling packets SHOULD be encrypted when the signaling messages are confidential. – When the network devices exchange control plane packets, integrated security mechanisms or security protocols need to provided. – Keys need to be deployed manually in advance or dynamically generated by using certain automatic key management protocols – In order to enforce the security boundary of different VNs in the existence of inside adversaries, the signaling messages belonging to different VNs need to be secured by different keys. – It will be important to prevent a compromised NVE from impersonating the centralized servers to communicate with other NVEs. 9

Basic Security Approach to Securing Control Plane of NVO3 Overlay It is normally assume that the underlying network connecting NVEs are secure to outside attacks An inside attacker compromising a underlying network device may intercept an encapsulated data packet transported a tunnel, modify the contents in the encapsulating tunnel packet and, transfer it into another tunnel without being detected. – Signatures or digests need to be generated for both data packets and the encapsulating tunnel headers – NVEs SHOULD use different keys to secure the packets transported in different tunnels. 10

Questions? 11