Skip to main content
SpringerLink
Log in

Attacking Predictable IPsec ESP Initialization Vectors

  • Conference paper
  • First Online:
Information and Communications Security (ICICS 2002)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 2513))

Included in the following conference series:

Abstract

Predictable initialization vectors in IPsec ESP encryption, allowed by the IPsec specifications and used by most implementations, compromise IPsec confidentiality. By using an adaptive chosen plaintext attack, an attacker can break low entropy plaintext blocks using brute force, and confirm guesses of the contents of arbitrary plaintext blocks. We analyze the preconditions and the seriousness of such attacks, and provide results of practical attack experiments.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Antti Nuopponen, Sami Vaarala: An Attack against IPsec Transport Mode HTTP Access, http://www.hut.fi/~svaarala/publications/espiv/webaccess.html, March 2002.

  2. Antti Nuopponen, Sami Vaarala: An Attack against Single Character TCP Segments Protected by IPsec Tunnel Mode, http://www.hut.fi/~svaarala/publications/espiv/login.html, March 2002.

  3. Jon Postel: Internet Protocol. Request For Comments 760, January 1980.

    Google Scholar 

  4. Jon Postel: User Datagram Protocol. Request For Comments 768, August 1980.

    Google Scholar 

  5. Jon Postel: Transmission Control Protocol. Request For Comments 793, September 1981.

    Google Scholar 

  6. Randall Atkinson, Stephen Kent: Security Architecture for IP. Request For Comments 2401, November 1998.

    Google Scholar 

  7. Randall Atkinson, Stephen Kent: IP Encapsulating Security Payload (ESP). Request For Comments 2406, November 1998.

    Google Scholar 

  8. Dave Carrel, Dan Harkins: The Internet Key Exchange (IKE). Request For Comments 2409, November 1998.

    Google Scholar 

  9. Naganand Doraswamy, Cheryl Madson: The ESP DES-CBC Cipher Algorithm. Request For Comments 2405, November 1998.

    Google Scholar 

  10. Rob Adams, Roy Pereira: ESP CBC-Mode Cipher Algorithms. Request For Comments 2451, November 1998.

    Google Scholar 

  11. Serge Vaudenay: CBC Padding: Security Flaws in SSL, IPSEC, WTLS,...

    Google Scholar 

  12. Phillip Rogaway: Problems with Proposed IP Cryptography. Internet-Draft (expired; see http://www.cs.ucdavis.edu/~rogaway/papers/comments.html), April 1995.

  13. Anon.: The IPsec mailing list (see http://www.ietf.org/for moreinformation; archive currently at ftp://ftp.tis.com/pub/lists/ipsec).

  14. Steven M. Bellovin: Problem Areas for the IP Security Protocols. Proceedings of the Sixth Usenix UNIX Security Symposium, July 1996.

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Netseal, Finland

    Sami Vaarala & Antti Nuopponen

  2. Helsinki University of Technology, Finland

    Teemupekka Virtanen

Authors
  1. Sami Vaarala
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Antti Nuopponen
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Teemupekka Virtanen
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Labs for Information Technology, 21 Heng Mui Keng Terrace, Singapore, 119613

    Robert Deng , Feng Bao  & Jianying Zhou ,  & 

  2. Engineering Research Center for Information Security Technology, Chinese Academy of Sciences, P.O. Box 8718, Beijing, 100080, China

    Sihan Qing

Rights and permissions

Reprints and permissions

Copyright information

© 2002 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Vaarala, S., Nuopponen, A., Virtanen, T. (2002). Attacking Predictable IPsec ESP Initialization Vectors. In: Deng, R., Bao, F., Zhou, J., Qing, S. (eds) Information and Communications Security. ICICS 2002. Lecture Notes in Computer Science, vol 2513. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-36159-6_14

Download citation

  • DOI: https://doi.org/10.1007/3-540-36159-6_14

  • Published:

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-00164-5

  • Online ISBN: 978-3-540-36159-6

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics

Search

Navigation