Upload File

Download - Mitigating spoofing and replay attacks in MPLS-VPNs using label-hopping with TicToc

Transcript
Page 1: Mitigating spoofing and replay attacks in MPLS-VPNs using label-hopping with TicToc

Mitigating spoofing and replay attacks in MPLS-VPNs using label-hopping with TicToc

Shankar RamanBalaji VenkatGaurav Raina

Page 2: Mitigating spoofing and replay attacks in MPLS-VPNs using label-hopping with TicToc

Outline

Page 3: Mitigating spoofing and replay attacks in MPLS-VPNs using label-hopping with TicToc

MPLS VPN Security Issues

Page 4: Mitigating spoofing and replay attacks in MPLS-VPNs using label-hopping with TicToc

Secure Control Plane Exchange

Page 5: Mitigating spoofing and replay attacks in MPLS-VPNs using label-hopping with TicToc

Label hopping applied to data plane

Page 6: Mitigating spoofing and replay attacks in MPLS-VPNs using label-hopping with TicToc

Tic-Toc based Scheme

Page 7: Mitigating spoofing and replay attacks in MPLS-VPNs using label-hopping with TicToc

Control plane algorithms for PEne

Page 8: Mitigating spoofing and replay attacks in MPLS-VPNs using label-hopping with TicToc

Control plane algorithms for PEfa

Page 9: Mitigating spoofing and replay attacks in MPLS-VPNs using label-hopping with TicToc

Data Plane Algorithm for PEfa

Page 10: Mitigating spoofing and replay attacks in MPLS-VPNs using label-hopping with TicToc

Data Plane Algorithm for PEne

Page 11: Mitigating spoofing and replay attacks in MPLS-VPNs using label-hopping with TicToc

Avoiding replay attacks

• Exchange the seed• Use Pseudo Random Number Generation

algorithm• Use the Random Number generated to choose

the labels at various time slices

Page 12: Mitigating spoofing and replay attacks in MPLS-VPNs using label-hopping with TicToc

Simulation and Implementation

Page 13: Mitigating spoofing and replay attacks in MPLS-VPNs using label-hopping with TicToc

Conclusion

Page 14: Mitigating spoofing and replay attacks in MPLS-VPNs using label-hopping with TicToc

QUESTIONS?Thank you


Top Related

Rip Spoofing
Rip Spoofing
Spoofing Opinion
Spoofing Opinion
Email Spoofing
Email Spoofing
Spoofing Sem
Spoofing Sem
1588V2 Telecom Profile Framework TICTOC WG, IETF 71th Philadelphia, USA draft-ji-tictoc-1588-telecom-profile-framework-01.txt Kuiwen Ji (jikuiwen@huawei.com)
1588V2 Telecom Profile Framework TICTOC WG, IETF 71th Philadelphia, USA draft-ji-tictoc-1588-telecom-profile-framework-01.txt Kuiwen Ji ([email protected])
TTinterim Slide 1 TICTOC Paris Interim Meeting Report
TTinterim Slide 1 TICTOC Paris Interim Meeting Report
Web spoofing
Web spoofing
SSL Spoofing
SSL Spoofing