Slashdot Mirror

← Back to Stories (view on slashdot.org)

TCP/IP Sequence Number Analysis

Posted by michael on from the you-don't-have-to-be-a-kreskin-to-predict-this dept.

johnwbyrd writes "Upon connection via TCP/IP to a host, the host generates an Initial Sequence Number (ISN). It's important to design ISN generation sequences so remote attackers can't predict an ISN (this is called a "blind spoofing" attack). Using phase space analysis you can check the quality of ISNs generated on various OSes. Windows 98's graph is quite pretty."

3 of 215 comments (clear)

  1. Here's the first bit by 56ker · · Score: 1, Funny

    This is the first section:

    Table of Contents:


    0. Abstract
    1. Introduction
    1.1 TCP Sequence generation and PRNGs
    1.2 Spoofing Sets
    2. Phase Space Analysis, Attractors and ISN Guessing
    2.1 Introduction to Phase Space Analysis
    2.2 Using Attractors for Spoofing Set Construction
    2.3 Real-Life Attack Algorithms
    3. Review of Operating Systems
    3.1 Linux
    3.2 Windows
    3.3 Cisco IOS
    3.4 AIX
    3.5 FreeBSD and NetBSD
    3.6 OpenBSD
    3.7 HP/UX
    3.8 Solaris
    3.9 BSDI
    3.10 IRIX
    3.11 MacOS
    3.12 Multiple Network Devices
    3.13 Other PRNG issues
    4. Risk Analysis
    5. Conclusions
    6. References
    7. Credits


    Appendix A: Phase Space Images of Known Generating Functions

    Hopefully now only people who want to read it will click on the link!

    --


    Video Game cheats, hints a
  2. This Article has Everything by Anonymous Coward · · Score: 2, Funny

    1. Sensationalism
    "OMG Someone can guess the ISN number, We are all on our way to destruction"

    2. Geekiness
    "Wtf is an ISN number"

    3. M$ Bashing (Note the $ $ign it means I dissaprove of Microsofts Money Grubbing Ways (TM) [OMG another funny!!])

  3. Re:Summary: Linux is the winner by Anonymous Coward · · Score: 1, Funny

    Your mom must be very proud linus.