Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Lecture 13 IPsec Internet Protocol Security CIS 4362 - CIS 5357 Network Security.

Published byAileen Morrison Modified over 8 years ago

Similar presentations

Presentation on theme: "1 Lecture 13 IPsec Internet Protocol Security CIS 4362 - CIS 5357 Network Security."— Presentation transcript:

1 1 Lecture 13 IPsec Internet Protocol Security CIS 4362 - CIS 5357 Network Security

2 2 What is IPsec? Protocols and mechanisms to support security at the network layer (IP layer) –Two main security protocols called Authentication Header (AH, IP protocol type = 51) and Encapsulating Security Protocol (ESP, IP protocol type = 50) Implemented on end hosts and gateways Separate security associations (SA) are used to determine processing at each of the two directions (outbound or inbound) An SA is uniquely defined by –SPI –Destination IP address –IPSec Protocol (ESP or AH)

3 3 Logical Format of an IP Packet Version IHL Service Type Total length 4 bits 4 bits 8 bits 16 bits Identification Flags Fragment offset 16 bits 3 bits 13 bits Time to Live Protocol Header Checksum 8 bits 8 bits 16 bits Source IP Address 32 bits Destination IP Address 32 bits IP Options if used plus padding to 4 bytes Variable length multiples of 4 bytes Encapsulated Data Variable length, integral number of bytes

4 4 IPSec Services: Services That Hosts and Gateways Provide Access Control Data content confidentiality Connectionless integrity Data origin authentication Replay protection Privacy Traffic flow masking

5 5 IPsec Architecture (RFC 2401) Security Policies that define which traffic is treated Security Associations between network components Security Protocols –Authentication Header (AH) –Encapsulating Security Payload (ESP) Key Management –Internet Key Exchange (IKE) Algorithms for authentication and encryption

6 6 IPsec Operations Transport Mode –Above the IP level –Below the transport level Tunnel –IP within IP –Sandwiched between two IP sessions

7 7 IPsec OSI Layer Tunnel Mode TCP IP Data Link Physical Transport Mode TCP IPSec IP Data Link Physical IPSec

8 8 IPsec Packet Encapsulation IP HeaderRest of Packet Tunnel Mode Transport Mode IP HeaderIPsec HeaderIP HeaderRest of Packet IP HeaderRest of Packet IP HeaderIPsec HeaderRest of Packet Original Packet

9 9 Adding IPSec to IPv4 version: 4bits header length: 4bits (unit = 4-octet) type of service: 1 octet packet length: 2 octets packet identification: 2 octets flags: 3 bits fragment offset: 13 bits hops remaining (TTL): 1 octet protocol: 1 octet header checksum: 2 octets source address: 4 octets destination address: 4 octets options: variable Regular IP protocol values: TCP=6; UDP=17; IP= 4 IPsec protocol values: ESP=50 and AH=51 The communication protocols are specified in the IPsec header

10 10 Adding IPsec to IPv6 version| type of service | flow label: 4 octets payload length: 2 octets next header: 1 octet (specifies protocol) TTL: 1 octet source address: 16 octets destination address: 16 octets

11 11 Transport mode IPheaderpayload IPheaderIPsec headerpayload Transport mode was designed to save bandwidth in end-to-end associations. The payload is typically encrypted and authenticated. The IPheader is in the clear, and may or may not be authenticated.

12 12 Transporting AliceBob IP packet p 1 Sender=Alice Recipient=Bob IP packet p 2 (IPsec transport) Sender=Alice Recipient=Bob IP packet p 1

13 13 Tunnel Mode IPheaderpayload new IP hdrIPsec hdrIPheaderpayload Tunnel mode protects both the payload and IP header of the original packet. If encryption is used between gateways in tunnel mode, then it reduces information for traffic analysis.

14 14 Tunneling IP packet p 1 Sender=Alice Recipient=Bob Alice Gateway G 1 Gateway G 2 IP packet p 2 (IPsec tunnel) Sender=G 1 Recipient=G 2 IP packet p 1 Bob

15 15 Security Associations An IPsec protected connection is called a security association The SPI used in identifying the SA is normally chosen by the receiving system Basic Processing –for outbound packets, a packet’s selector is used to determine the processing to be applied to the packet –More complex than for inbound where the received SPI, destination address and protocol type uniquely point to an SA

16 16 SAD and SPD The IPsec protocol maintains two databases: –Security association database. Indexed by SPI’s, contains the information needed to encapsulate packets for one association: cryptographic algorithms, keys, sequence numbers, etc. –Security policy database: Allows for implementation of packet filtering policies. Defines whether or not to accept non-protected packets, what to require, etc.

17 17 Security Association Database Sequence number Sequence number overflow Anti-Replay Window AH Information –Algorithms, initialization values, keys, etc. ESP Information –Algorithms, initialization values, keys, etc. SA Lifetime IPsec Protocol Mode Path MTU (max packet size)

18 18 Security Policy Database Defines: –Traffic to be protected –How to protect it Must be consulted for each packet entering or leaving the IP stack Three possible actions –Discard –Bypass IPSEC –Apply IPSEC

19 19 Some Security Association Selectors Destination IP Address Source IP Address UserID Data Sensitivity Level Transport Layer Protocol number IPSec Protocol (AH/ESP)

20 20 Combinations of SAs that must be supported Case 1: Host to host –End to end service Case 2: Gateway to Gateway –Virtual private network Case 3: Host to gateway, gateway to gateway, gateway to host Case 4. Host to gateway, gateway to host –Dial-in users

21 21 HostRouterHost Local Intrane t Router Local Intrane t The Internet Transport or Tunnel CASE 1

22 22 HostGatewayHost Local Intrane t Gateway Local Intrane t The Internet Transport or Tunnel CASE 2 Tunnel

23 23 HostGatewayHost Local Intrane t Gateway Local Intrane t The Internet CASE 3 Tunnel

24 24 HostGatewayHost Local Intrane t The Internet Transport or Tunnel CASE 4 Tunnel

25 25 Security Protocols (RFC 2402/6) Authentication Header (AH) (RFC 2402) –Access Control –Connectionless integrity –Data origin authentication –Replay mask Encapsulating Security Payload (ESP) (RFC 2406) –Access Control –Connectionless integrity –Data origin authentication –Replay mask –Confidentiality –Traffic flow mask

26 26 IPSEC Roadmap ESP Encryption AlgorithmAuthentication Algorithm AH * DOI Key ManagementPolicy *Domain of Interpretation

27 27 Authentication Header (AH) (RFC 2402) The IP AH is used to provide –Connectionless integrity –Data origin authentication –Protection against replays. AH provides authentication for as much of the IP header as possible, but cannot all be protected by AH. Data privacy is not provided by AH

28 28 Authentication Header (AH) next hdr: 1 octet (communication protocol) payload length: (AH header length): 1 octet unused: 2 octets SPI (Security Parameter Index): 4 octets sequence number: 4 octets authentication data: variable The Authentication Header authenticates data -- the protocol field is unencrypted, so it is available for firewall rule-based decisions. AH authenticates not only the IP payload but all “immutable” IP header components, such as source and destination addresses. This creates incompatibilities with NAT boxes in end-to-end associations.

29 29 Authentication Header Structure 0 1 2 3 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Next Header | Payload Len | RESERVED | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Security Parameters Index (SPI) | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Sequence Number Field | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+--+-+-+-+ | Authentication Data (variable) | | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+

30 30 IP Packets With AH Original IP Packet: | IP header | TCP | Data | AH Tunnel Mode | new IP header | AH | original IP header | TCP | Data | AH Transport Mode: | IP header | AH | TCP | Data |

31 31 AH Elements Authentication Data –Variable-length field –Contains the Integrity Check Value (ICV) for this packet Sequence Number –Unsigned 32-bit field –Monotonically increasing counter (sequence number) –It is mandatory and is always present –Processing of the Sequence Number field is at the discretion of the receiver

32 32 Other AH Elements Payload Length: Length of AH in 32-bit words - 2 Reserved: 16-bit field. MUST be set to "zero." Security Parameters Index (SPI): 32-bit value that, in combination with the destination IP address and security protocol, uniquely identifies the Security Association for this datagram

33 33 ESP (Encapsulating Security Payload) ESP allows for encryption, as well as authentication. –Both are optional, defined by the SPI and policies. ESP does not protect the IP header, only the payload –But, in tunnel mode everything is encapsulated If ESP encryption is enabled, then everything after the ESP header is encrypted –Communication protocol, ports (NATs and firewalls need this information).

34 34 Encapsulating Security Payload (ESP) Services provided include: –Confidentiality –Data origin authentication –Connectionless integrity –Anti-replay service –Limited traffic flow confidentiality Security services can be provided between –A pair of communicating hosts –A pair of security gateways –A security gateway and a host

35 35 ESP encapsulation SPI (Security parameter Index): 4 octets sequence number: 4 octets IV (initialization vector): variable data: variable padding: variable padding length: 1 octet (unit length: octets) next header/protocol type authentication data

36 36 ESP Header Elements Security Parameters Index (SPI) Sequence Number Payload Data Padding –Sometimes need for encryption –Sometimes masks encryption –Sometimes used to mask traffic flow Pad length Next Header Authentication Data

37 37 0 1 2 3 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ ---- | Security Parameters Index (SPI) | ^Auth. +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Coverage | Sequence Number | | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | ---- | Payload Data* (variable) | | ^ ~ ~ | | | | | Conf. + +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Coverage* | | Padding (0-255 bytes) | | | +-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+| | | | | Pad Length | Next Header | v v +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ ------ | Authentication Data (variable) | ~ | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ ESP Header (RFC 2406)

38 38 Encapsulating Security Header (ESP) The ESP header is inserted: –After the IP header –Before the upper layer protocol header (transport mode) –Before an encapsulated IP header (tunnel mode)

39 39 Transport Mode SATunnel Mode SA AH Authenticates IP payload and selected portions of IP header Authenticates entire inner IP packet (header and payload), plus selected portions of the outer IP header. ESP Encrypts IP PayloadEncrypts inner IP Packet ESP With Authentication Encrypts IP payload and authenticates IP payload, but not IP header Encrypts inner IP packet, and authenticates inner IP packet.

Download ppt "1 Lecture 13 IPsec Internet Protocol Security CIS 4362 - CIS 5357 Network Security."

Similar presentations

IP Security have considered some application specific security mechanisms –eg. S/MIME, PGP, Kerberos, SSL/HTTPS however there are security concerns that.

IP Security have considered some application specific security mechanisms –eg. S/MIME, PGP, Kerberos, SSL/HTTPS however there are security concerns that.
Computer Science CSC 474Dr. Peng Ning1 CSC 474 Information Systems Security Topic 4.2: IPsec.

Computer Science CSC 474Dr. Peng Ning1 CSC 474 Information Systems Security Topic 4.2: IPsec.
IPSec.

IPSec.
Cryptography and Network Security

Cryptography and Network Security
CS470, A.SelcukIPsec – AH & ESP1 CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

CS470, A.SelcukIPsec – AH & ESP1 CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.
Internet Security CSCE 813 IPsec

Internet Security CSCE 813 IPsec
IPSec: Authentication Header, Encapsulating Security Payload Protocols CSCI 5931 Web Security Edward Murphy.

IPSec: Authentication Header, Encapsulating Security Payload Protocols CSCI 5931 Web Security Edward Murphy.
IP Security. n Have a range of application specific security mechanisms u eg. S/MIME, PGP, Kerberos, SSL/HTTPS n However there are security concerns that.

IP Security. n Have a range of application specific security mechanisms u eg. S/MIME, PGP, Kerberos, SSL/HTTPS n However there are security concerns that.
Information System Security AABFS-Jordan Summer 2006 IP Security Supervisor :Dr. Lo'ai Ali Tawalbeh Done by: Wa’el Musa Hadi.

Information System Security AABFS-Jordan Summer 2006 IP Security Supervisor :Dr. Lo'ai Ali Tawalbeh Done by: Wa’el Musa Hadi.
Network Layer Security: IPSec

Network Layer Security: IPSec
IP SECURITY – Chapter 16 IP SECURITY – Chapter 16 Security Mechanisms: email – S/MIME, PGP client/server - Kerberos web access - Secure Sockets Layer network.

IP SECURITY – Chapter 16 IP SECURITY – Chapter 16 Security Mechanisms: – S/MIME, PGP client/server - Kerberos web access - Secure Sockets Layer network.
ECE 454/CS 594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall.

ECE 454/CS 594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall.
1 Lecture 15: IPsec AH and ESP IPsec introduction: uses and modes IPsec concepts –security association –security policy database IPsec headers –authentication.

1 Lecture 15: IPsec AH and ESP IPsec introduction: uses and modes IPsec concepts –security association –security policy database IPsec headers –authentication.
Henric Johnson1 Chapter 6 IP Security. Henric Johnson2 Outline Internetworking and Internet Protocols IP Security Overview IP Security Architecture Authentication.

Henric Johnson1 Chapter 6 IP Security. Henric Johnson2 Outline Internetworking and Internet Protocols IP Security Overview IP Security Architecture Authentication.
IP Security IPSec 2 * Essential Network Security Book Slides. IT352 | Network Security |Najwa AlGhamdi 1.

IP Security IPSec 2 * Essential Network Security Book Slides. IT352 | Network Security |Najwa AlGhamdi 1.
IP Security. Overview In 1994, Internet Architecture Board (IAB) issued a report titled “Security in the Internet Architecture”. This report identified.

IP Security. Overview In 1994, Internet Architecture Board (IAB) issued a report titled “Security in the Internet Architecture”. This report identified.
CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.

CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.
IP Security. n Have a range of application specific security mechanisms u eg. S/MIME, PGP, Kerberos, SSL/HTTPS n However there are security concerns that.

IP Security. n Have a range of application specific security mechanisms u eg. S/MIME, PGP, Kerberos, SSL/HTTPS n However there are security concerns that.
Encapsulation Security Payload Protocol Lan Vu. OUTLINE 1.Introduction and terms 2.ESP Overview 3.ESP Packet Format 4.ESP Fields 5.ESP Modes 6.ESP packet.

Encapsulation Security Payload Protocol Lan Vu. OUTLINE 1.Introduction and terms 2.ESP Overview 3.ESP Packet Format 4.ESP Fields 5.ESP Modes 6.ESP packet.
THE USE OF IP ESP TO PROVIDE A MIX OF SECURITY SERVICES IN IP DATAGRAM SREEJITH SREEDHARAN CS843 PROJECT PRESENTATION 04/28/03.

THE USE OF IP ESP TO PROVIDE A MIX OF SECURITY SERVICES IN IP DATAGRAM SREEJITH SREEDHARAN CS843 PROJECT PRESENTATION 04/28/03.

Similar presentations

Ads by Google