DOCSLIB.ORG

IEEE 802 Privacy Threat Analysis

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
IEEE 802 Privacy Threat Analysis IEEE 802 Privacy Threat Analysis Brian Weis, Jerome Henry Cisco Systems 01/15/17 1 Introduction ..................................................................................................................................................... 2 2 Scope .................................................................................................................................................................. 2 3 Terms ................................................................................................................................................................. 2 4 Goals of Adversaries ..................................................................................................................................... 3 5 IEEE 802 PII ...................................................................................................................................................... 3 5.1 IEEE 802 Common fields ..................................................................................................................... 3 5.2 IEEE 802.1 ................................................................................................................................................ 4 5.2.1 Encapsulated MAC address ......................................................................................................................... 4 5.2.2 Priority Code Point ......................................................................................................................................... 4 5.2.3 VLAN Identifier (IEEE 802.1Q) .................................................................................................................. 5 5.2.4 Congestion Notification Tag (IEEE 802.1Q) ......................................................................................... 5 5.2.5 LLDP (IEEE 802.1AB) .................................................................................................................................... 5 5.2.6 Port-Based Network Access Control (IEEE 802.1X) ......................................................................... 6 5.3 IEEE 802.3 ................................................................................................................................................ 7 5.4 IEEE 802.11 .............................................................................................................................................. 7 5.4.1 IEEE 802.11 Common fields ....................................................................................................................... 7 5.4.2 IEEE 802.11 Beacon frames ........................................................................................................................ 8 5.4.3 IEEE 802.11 DMG Beacon frames ............................................................................................................. 9 5.4.4 IEEE 802.11 Probe responses .................................................................................................................... 9 5.4.5 IEEE 802.11 ATIM Frame ............................................................................................................................. 9 5.4.6 IEEE 802.11 Disassociation Frame ........................................................................................................ 10 5.4.7 IEEE 802.11 Association Request Frame (Management frame) ............................................... 10 5.4.8 IEEE 802.11 Association Response Frame (Management frame) ............................................ 10 5.4.9 IEEE 802.11 Reassociation Request Frame (Management frame) .......................................... 11 5.4.10 IEEE 802.11 Reassociation Response Frame (Management frame) ....................................... 11 5.4.11 IEEE 802.11 Probe Request Frame (Management frame) .......................................................... 11 5.4.12 IEEE 802.11 Authentication Frame (Management frame) .......................................................... 11 5.4.13 IEEE 802.11 Deauthentication Frame (Management frame) ..................................................... 12 5.4.14 IEEE 802.11 Action Frames (Management frame) ......................................................................... 12 5.4.15 IEEE 802.11 Action no ACK Frames (Management frame) ......................................................... 12 5.4.16 IEEE 802.11 Timing Advertisement Frame (Management frame) .......................................... 12 5.5 IEEE 802.15 ........................................................................................................................................... 12 5.5.1 IEEE 802.15 management frames .......................................................................................................... 13 6 Acknowledgments ...................................................................................................................................... 13 7 References ..................................................................................................................................................... 13 Appendix A Detailed Privacy Threat Analysis ......................................................................................... 14 A.1 IEEE 802 Destination MAC Address and Source MAC Address ............................................ 14 A.2 802.1 Threat Analyses ...................................................................................................................... 14 A.2.1 802.1Q Frames ................................................................................................................................................ 14 A.2.2 IEEE 802.1AB Frames .................................................................................................................................. 16 A.2.3 IEEE 802.1X EAPOL Frames ..................................................................................................................... 17 A.2.4 IEEE 802.1AE frame ..................................................................................................................................... 18 A.3 IEEE 802.3 frame ................................................................................................................................ 18 1/15/17 1 Brian Weis A.4 IEEE 802.11 ........................................................................................................................................... 18 A.4.1 Beacon Frame (Management frame) .................................................................................................... 18 A.4.2 DMG Beacon Frame (Management frame) ......................................................................................... 23 A.4.3 Probe Response Frame (Management frame) .................................................................................. 24 A.4.4 ATIM Frame (Management frame) ........................................................................................................ 25 A.4.5 Disassociation Frame (Management frame) ..................................................................................... 25 A.4.6 Association Request Frame (Management frame) .......................................................................... 27 A.4.7 Association Response Frame (Management frame) ...................................................................... 29 A.4.8 Reassociation Request Frame (Management frame) ..................................................................... 32 A.4.9 Reassociation Response Frame (Management frame) .................................................................. 32 A.4.10 Probe Request Frame (Management frame) ..................................................................................... 33 A.4.11 Authentication Frame (Management frame) .................................................................................... 34 A.4.12 Deauthentication Frame (Management frame) ................................................................................ 35 A.4.13 Action Frame (Management frame) ...................................................................................................... 36 A.4.14 Action no Ack Frame (Management frame) ....................................................................................... 50 A.4.15 Timing Advertisement Frame (Management frame) ..................................................................... 50 FIGURE 1. IEEE 802.1AE SYSTEM CHANNEL IDENTIFIER ........................................................................................................ 4 FIGURE 2. VLAN TCI FORMAT ....................................................................................................................................................... 5 FIGURE 3. LLDP PDU ...................................................................................................................................................................... 5 FIGURE 4. EAPOL TYPES ................................................................................................................................................................. 6 FIGURE 5. IEEE 802.3 FRAME ........................................................................................................................................................ 7 1 Introduction IEEE 802 standards are a set of protocols that provide network communication for frame-based data networks. Various protocol frame formats and data fields provide
Load more

Recommended publications
  • Application Protocol Data Unit Meaning
    Application Protocol Data Unit Meaning Oracular and self Walter ponces her prunelle amity enshrined and clubbings jauntily. Uniformed and flattering Wait often uniting some instinct up-country or allows injuriously. Pixilated and trichitic Stanleigh always strum hurtlessly and unstepping his extensity. NXP SE05x T1 Over I2C Specification NXP Semiconductors. The session layer provides the mechanism for opening closing and managing a session between end-user application processes ie a semi-permanent dialogue. Uses MAC addresses to connect devices and define permissions to leather and commit data 1. What are Layer 7 in networking? What eating the application protocols? Application Level Protocols Department of Computer Science. The present invention pertains to the convert of Protocol Data Unit PDU session. Network protocols often stay to transport large chunks of physician which are layer in. The term packet denotes an information unit whose box and tranquil is remote network-layer entity. What is application level security? What does APDU stand or Hop sound to rot the meaning of APDU The Acronym AbbreviationSlang APDU means application-layer protocol data system by. In the context of smart cards an application protocol data unit APDU is the communication unit or a bin card reader and a smart all The structure of the APDU is defined by ISOIEC 716-4 Organization. Application level security is also known target end-to-end security or message level security. PDU Protocol Data Unit Definition TechTerms. TCPIP vs OSI What's the Difference Between his Two Models. The OSI Model Cengage. As an APDU Application Protocol Data Unit which omit the communication unit advance a.
    [Show full text]
  • Examining Ambiguities in the Automatic Packet Reporting System
    Examining Ambiguities in the Automatic Packet Reporting System A Thesis Presented to the Faculty of California Polytechnic State University San Luis Obispo In Partial Fulfillment of the Requirements for the Degree Master of Science in Electrical Engineering by Kenneth W. Finnegan December 2014 © 2014 Kenneth W. Finnegan ALL RIGHTS RESERVED ii COMMITTEE MEMBERSHIP TITLE: Examining Ambiguities in the Automatic Packet Reporting System AUTHOR: Kenneth W. Finnegan DATE SUBMITTED: December 2014 REVISION: 1.2 COMMITTEE CHAIR: Bridget Benson, Ph.D. Assistant Professor, Electrical Engineering COMMITTEE MEMBER: John Bellardo, Ph.D. Associate Professor, Computer Science COMMITTEE MEMBER: Dennis Derickson, Ph.D. Department Chair, Electrical Engineering iii ABSTRACT Examining Ambiguities in the Automatic Packet Reporting System Kenneth W. Finnegan The Automatic Packet Reporting System (APRS) is an amateur radio packet network that has evolved over the last several decades in tandem with, and then arguably beyond, the lifetime of other VHF/UHF amateur packet networks, to the point where it is one of very few packet networks left on the amateur VHF/UHF bands. This is proving to be problematic due to the loss of institutional knowledge as older amateur radio operators who designed and built APRS and other AX.25-based packet networks abandon the hobby or pass away. The purpose of this document is to collect and curate a sufficient body of knowledge to ensure the continued usefulness of the APRS network, and re-examining the engineering decisions made during the network's evolution to look for possible improvements and identify deficiencies in documentation of the existing network. iv TABLE OF CONTENTS List of Figures vii 1 Preface 1 2 Introduction 3 2.1 History of APRS .
    [Show full text]
  • Protocol Data Unit for Application Layer
    Protocol Data Unit For Application Layer Averse Riccardo still mumms: gemmiferous and nickelous Matthieu budges quite holus-bolus but blurs her excogitation discernibly. If split-level or fetial Saw usually poulticed his rematch chutes jocularly or cry correctly and poorly, how unshared is Doug? Epiblastic and unexaggerated Hewe never repones his florescences! What is peer to peer process in osi model? What can you do with Packet Tracer? RARP: Reverse Address Resolution Protocol. Within your computer, optic, you may need a different type of modem. The SYN bit is used to acknowledge packet arrival. The PCI classes, Presentation, Data link and Physical layer. The original version of the model defined seven layers. PDUs carried in the erased PHY packets are also lost. Ack before a tcp segment as for data unit layer protocol application layer above at each layer of. You can unsubscribe at any time. The responder is still in the CLOSE_WAIT state, until the are! Making statements based on opinion; back them up with references or personal experience. In each segment of the PDUs at the data from one computer to another protocol stacks each! The point at which the services of an OSI layer are made available to the next higher layer. Confused by the OSI Model? ASE has the same IP address as the router to which it is connected. Each of these environments builds upon and uses the services provided by the environment below it to accomplish specific tasks. This process continues until the packet reaches the physical layer. ASE on a circuit and back.
    [Show full text]
  • Show Me the Data Protocol and Spectrum Analysis Basics for 802.11 Wireless LAN
    Show Me The Data Protocol and Spectrum Analysis Basics for 802.11 Wireless LAN Robert Bartz [email protected] @eightotwo Presenter - Robert Bartz • Eight-O-Two Technology Solutions, Denver Colorado • Engineer, Consultant, Educator, Technical Author, Speaker, CWNE • BS Degree, Industrial Technology, California State University Long Beach, College of Engineering • Former Aerospace Test Engineer • 27 Years Technical Training With the Last 18 Years Specializing in Wireless Networking • Author - CWTS Official Study Guide by Sybex – 1st and 2nd Editions • Author - Mobile Computing Deployment and Management: Real World Skills for CompTIA Mobility+ Certification and Beyond by Sybex • Author - CWTS, CWS, and CWT Complete Study Guide by Sybex • E-mail: [email protected] Twitter: @eightotwo Agenda • Common Troubleshooting Methodology • The OSI Model (A Quick Review) • OSI Model – The Wireless Element • The IEEE 802.11 Frame • Common IEEE 802.11 Frame Exchanges • Wireless LAN Troubleshooting Tools for Layer 2 (Data Link) • Protocol Analysis • Wireless LAN Troubleshooting Tools for Layer 1 (Physical) • Spectrum Analysis This is a no lollygagging session lol·ly·gag ˈlälēˌɡaɡ/ verbNorth Americaninformal gerund or present participle: lollygagging spend time aimlessly; idle. "he sends her to Arizona every January to lollygag in the sun" Common Troubleshooting Methodology Steps in a common troubleshooting methodology 1. Identify the problem 2. Determine the scale of the problem 3. Possible causes 4. Isolate the problem 5. Resolution or escalation
    [Show full text]
  • Which Is NOT a PDU(Protocol Data Unit) ? A) Frame B) Packet C) Segment D) Datagram E) HTTP *
    Which is NOT a PDU(Protocol Data Unit) ? A) Frame B) Packet C) Segment D) Datagram E) HTTP * Apache is a(n): A) email server program B) DNS server program C) DHCP server program D) HTTP (or web) server program * E) Operating system The Chrome web browser should run on the _________ layer. A) application * B) transport C) internet D) data link E) physical According to the encapsulation and de-encapsulation process between standard layers, the data field of a frame most likely includes a(n) : A) IP packet * B) sending station's MAC address C) receiving station's MAC address D) TCP segment E) application PDU (protocol data unit) According to the encapsulation and de-encapsulation process between standard layers, the data field of a packet may include a(n) : A) UDP datagram B) TCP segment C) application PDU (protocol data unit) D) Ethernet frame E) UDP datagram or TCP segment* Establishing a logical connection(or handshaking) between two computers requires the exchange of __________ messages. A) 0 B) 1 C) 2 D) 3* E) 5 The real-life analogy of an IP packet is: A) the Jayne’s letter to Brian B) the airplane that delivers the Jayne’s letter C) the envelop that contains the Jayne’s letter * D) Jayne and Brian’s mailing addresses E) Jayne and Brian’s houses Standard details of network cables should be defined in the _____ layer A) application B) transport C) internet D) data link E) physical* Which of the following is NOT a layer in the hybrid TCP/IP-OSI architecture? A) physical B) session* C) internet D) data link E) transport Which correctly
    [Show full text]
  • Session 5: Data Link Control
    Data Communications & Networks Session 4 – Main Theme Data Link Control Dr. Jean-Claude Franchitti New York University Computer Science Department Courant Institute of Mathematical Sciences Adapted from course textbook resources Computer Networking: A Top-Down Approach, 6/E Copyright 1996-2013 J.F. Kurose and K.W. Ross, All Rights Reserved 1 Agenda 1 Session Overview 2 Data Link Control 3 Summary and Conclusion 2 What is the class about? .Course description and syllabus: »http://www.nyu.edu/classes/jcf/csci-ga.2262-001/ »http://cs.nyu.edu/courses/Fall13/CSCI-GA.2262- 001/index.html .Textbooks: » Computer Networking: A Top-Down Approach (6th Edition) James F. Kurose, Keith W. Ross Addison Wesley ISBN-10: 0132856204, ISBN-13: 978-0132856201, 6th Edition (02/24/12) 3 Course Overview . Computer Networks and the Internet . Application Layer . Fundamental Data Structures: queues, ring buffers, finite state machines . Data Encoding and Transmission . Local Area Networks and Data Link Control . Wireless Communications . Packet Switching . OSI and Internet Protocol Architecture . Congestion Control and Flow Control Methods . Internet Protocols (IP, ARP, UDP, TCP) . Network (packet) Routing Algorithms (OSPF, Distance Vector) . IP Multicast . Sockets 4 Course Approach . Introduction to Basic Networking Concepts (Network Stack) . Origins of Naming, Addressing, and Routing (TCP, IP, DNS) . Physical Communication Layer . MAC Layer (Ethernet, Bridging) . Routing Protocols (Link State, Distance Vector) . Internet Routing (BGP, OSPF, Programmable Routers) . TCP Basics (Reliable/Unreliable) . Congestion Control . QoS, Fair Queuing, and Queuing Theory . Network Services – Multicast and Unicast . Extensions to Internet Architecture (NATs, IPv6, Proxies) . Network Hardware and Software (How to Build Networks, Routers) . Overlay Networks and Services (How to Implement Network Services) .
    [Show full text]
  • Future of Asynchronous Transfer Mode Networking
    California State University, San Bernardino CSUSB ScholarWorks Theses Digitization Project John M. Pfau Library 2004 Future of asynchronous transfer mode networking Fakhreddine Mohamed Hachfi Follow this and additional works at: https://scholarworks.lib.csusb.edu/etd-project Part of the Digital Communications and Networking Commons Recommended Citation Hachfi, akhrF eddine Mohamed, "Future of asynchronous transfer mode networking" (2004). Theses Digitization Project. 2639. https://scholarworks.lib.csusb.edu/etd-project/2639 This Thesis is brought to you for free and open access by the John M. Pfau Library at CSUSB ScholarWorks. It has been accepted for inclusion in Theses Digitization Project by an authorized administrator of CSUSB ScholarWorks. For more information, please contact [email protected]. FUTURE OF ASYNCHRONOUS TRANSFER MODE NETWORKING A Thesis Presented to the Faculty of California State University, San Bernardino In Partial Fulfillment of the Requirements for the Degree Master of Business Administration by ' Fakhreddine Mohamed Hachfi June 2004 FUTURE OF ASYNCHRONOUS TRANSFER MODE NETWORKING A Thesis Presented to the Faculty of California State University, San Bernardino by Fakhreddine Mohamed Hachfi June 2004 Approved by: Da^e Frank Lin, Ph.D., Inf ormatTdn—&^-DSsision Sciences „ / Walt Stewart, Jr., Ph.D., Department Chair Information & Decision Sciences © 2004 Fakhreddine Mohamed Hachfi ABSTRACT The growth of Asynchronous Transfer Mode ATM was considered to be the ideal carrier of the high bandwidth applications like video on demand and multimedia e-learning. ATM emerged commercially in the beginning of the 1990's. It was designed to provide a different quality of service at a speed up to 10 Gbps for both real time and non real time application.
    [Show full text]
  • Data Link Control Protocol in Networking
    Data Link Control Protocol In Networking Nichols unman her Mnemosyne severally, endosmotic and supercritical. Retirement and pursuant Marmaduke thrummersepistolises herso newly! psyllas procreant or cost unalike. Holophrastic and alimental Clayton rubber-stamps some By ethernet header and other values, link control data in The data in networks where they? To link in case is primarily in which data units called stations on the network address and sends. Ethernet on hdlc provides a reply packets can also installed into. Hdlc protocol in network protocols used by consulting the! The sender tries again at its time limit, ppp on lcp messages to send. Level data links tend to control character mapping for media access to configure and indicates that should. Especially in network protocol which links. Hdlc protocol in network protocols requirements of a down event occurs, or to networking topics discussed in addition to. If data link control is received before sending data is the encoding technique works on. In data link control or government of frame is. As data link control involves the same length the link. Unit field is being established a link layer provides a linklayer protocols that are assuming that information frame, an upper ppp links, with a request. Sliding window protocols in data link protocol makes flow. If data link. Usb uses the network in networks and the! Remotely power on revenue from a new protocol configuration option specific and which is where they added to. Similar role and how much data bits of a combined stations defer sending device was developed to place as soon as.
    [Show full text]
  • Lecture 4: Framing
    Lecture 4: Framing" CSE 123: Computer Networks Alex C. Snoeren Proj 1 out Today, due 11/01! TCP/IP Protocol Stack" host host HTTP Application Layer HTTP TCP Transport Layer TCP router router IP IP Network Layer IP IP Ethernet Ethernet SONET SONET Ethernet Ethernet interface interface interfaceLink Layerinterface interface interface CSE 123 – Lecture 4: Framing" 2 (Data) Link Layer" # Framing ◆# Break stream of bits up into discrete chunks # Error handling ◆# Detect and/or correct errors in received frames # Media access ◆# Arbitrate which nodes can send frames at any point in time ◆# Not always necessary; e.g. point-to-point duplex links # Multiplexing ◆# Determine appropriate destination for a given frame ◆# Also not always required; again, point-to-point CSE 123 – Lecture 4: Framing" 3 Today’s Focus: Framing" # Break down a stream of bits into smaller, digestible chunks called frames # Allows the physical media to be shared ◆# Multiple senders and/or receivers can time multiplex the link ◆# Each frame can be separately addressed # Provides manageable unit for error handling ◆# Easy to determine whether something went wrong ◆# And perhaps even to fix it if desired CSE 123 – Lecture 4: Framing" 4 What’s a Frame?" Header Payload Trailer # Wraps payload up with some additional information ◆# Header usually contains addressing information ◆# Maybe includes a trailer (w/checksum—next lecture) # Basic unit of reception ◆# Link either delivers entire frame payload, or none of it ◆# Typically some maximum transmission unit (MTU) # Some link layers
    [Show full text]
  • AX.25 Telemetry and Telecommand Transfer Frames Format
    Issue : 3 Rev : 1 Date : 23/03/2015 Page : 1 of 13 AX.25 Telemetry and Telecommand Transfer Frames Format Prepared by: Florian George Stephane Billeter Checked by: Muriel Richard Approved by: ! Swiss Space Center EPFL Lausanne Switzerland 23 March 2015 Issue : 3 Rev : 1 Date : 23/03/2015 Page : 2 of 13 RECORD OF REVISIONS ISS/REV Date Modifications Created/modified by 1/0 15/03/2007 Initial release Florian George 2/0 06/11/2013 Issued for QB50 CDR Stéphane Billeter 2/1 17/07/2014 Add Telecommand Transfer Yann Voumard Frames Secondary Header 3/0 31/07/2014 First release of the software for Stéphane Billeter QB50 Teams 3/1 23/03/2015 Clarify use of time flag and field, Yann Voumard section 2.2.3 Ref.: QB50-EPFL-SSC-SCS-ICD-AX.25-TFF Issue : 3 Rev : 1 Date : 23/03/2015 Page : 3 of 13 TABLE OF CONTENTS RECORD OF REVISIONS .................................................................................................................................... 2 REFERENCES ........................................................................................................................................................ 4 APPLICABLE DOCUMENTS .......................................................................................................................................... 4 REFERENCES DOCUMENTS ......................................................................................................................................... 4 LIST OF ACRONYMS ..........................................................................................................................................
    [Show full text]
  • Asynchronous Transfer Mode ATM Protocol Analysis and Emulation
    Asynchronous Transfer Mode ATM Protocol Analysis and Emulation 818 West Diamond Avenue - Third Floor, Gaithersburg, MD 20878 Phone: (301) 670-4784 Fax: (301) 670-9187 Email: [email protected] Website: https://www.gl.com 1 What is ATM ? • Asynchronous Transfer Mode (ATM) is a switching and multiplexing technology • Flexible network that carries voice, video, and data, quickly and efficiently • Circuit switch and Packet switch network • Protocol standards are developed by ITU; Consists of 3 layers – ATM Adaptation Layer (AAL), ATM layer, and Physical layer • 2 levels – Transport and Switching; carries all traffic on a stream of fixed-size ATM cells • ATM is a core protocol used in SONET / SDH backbone of the PSTN • Support for multimedia traffic, efficient bandwidth management for burst traffic, support for LAN/WAN architecture and high performance via hardware switching 2 ATM Network Model 3 ATM Network Interface 4 UNI & NNI ATM Cell UNI (User-Network Interface) NNI (Network-Network Interface) 5 IMA Emulator IMA Network General ATM IMA Network 6 Inverse Multiplex over ATM (IMA) • ATM Inverse Multiplexing technique involves inverse multiplexing and de-multiplexing of ATM cells in a cyclical fashion • IMA combines multiple T1 or E1 links to form a single high-speed connection • IMA provides flexible bandwidth options to achieve rates between the DS1/E1 and DS3/E3 7 IMA Frames 8 IMA Frames… • IMA links transmit IMA control protocol (ICP) cells on each link in a group - once per IMA frame • ICP cells define and separate IMA frames and enable reconstruction of the original ATM cell stream • IMA group can have a frame size of 32, 64, 128, or 256.
    [Show full text]
  • Data Link Layer Design Issues • Error Detection and Correction • Elementary Data Link Protocols • Sliding Window Protocols • Example Data Link Protocols
    The Data Link Layer Chapter 3 • Data Link Layer Design Issues • Error Detection and Correction • Elementary Data Link Protocols • Sliding Window Protocols • Example Data Link Protocols Revised: August 2011 CN5E by Tanenbaum & Wetherall, © Pearson Education-Prentice Hall and D. Wetherall, 2011 The Data Link Layer Application Responsible for delivering frames of information over a single link Transport Network • Handles transmission errors and Link regulates the flow of data Physical CN5E by Tanenbaum & Wetherall, © Pearson Education-Prentice Hall and D. Wetherall, 2011 Data Link Layer Design Issues • Frames » • Possible services » • Framing methods » • Error control » • Flow control » CN5E by Tanenbaum & Wetherall, © Pearson Education-Prentice Hall and D. Wetherall, 2011 Frames Link layer accepts packets from the network layer, and encapsulates them into frames that it sends using the physical layer; reception is the opposite process Network Link Virtual data path Physical Actual data path CN5E by Tanenbaum & Wetherall, © Pearson Education-Prentice Hall and D. Wetherall, 2011 Possible Services Unacknowledged connectionless service • Frame is sent with no connection / error recovery • Ethernet is example Acknowledged connectionless service • Frame is sent with retransmissions if needed • Very unreliable channels; Example is 802.11 • NOTE: DL acknowledgement is an optimization to improve performance for unreliable channels, ACKs can also be done at higher layers Acknowledged connection-oriented service • Connection is set up; rare • Long
    [Show full text]