What is cryptographic
Security Attack?
A
cryptographic attack is a method for circumventing the security of
a cryptographic system by finding a weakness in a code, cipher, cryptographic protocol or key management scheme. This
process is also called "cryptanalysis".
Types of Security Attack in Cryptography
Figure: Classification of Security Attack in Cryptography |
Active Attack
Masquerade
Figure
shows masquerade attack.
Figure: Masquerade (Active Attack) |
A masquerade take place when an attacker pretends to be an authentic user. Authentication sequence can be captured & replayed after a valid authentication sequence has taken place. It generally done to gain access to a system, or steal information from system.
Replay Attack
Figure shows replay attack.
Figure: Replay Attack (Active Attack) |
Replay
involves the passive capture of data unit and its subsequent retransmission to
produce an unauthorized effect. A replay attack is also known as playback
attack where attacker repeatedly keeps on transmitting valid data again and
again to make the network jam or delayed the transmission of data.
For
example, A and C have bank account in Bank B. A send request to bank B for fund
transfer in C’s account. C capture the message produce unauthorized effect of
message and get benefits twice for fund transfer. One is from original message
and second is from unauthorized message.
Modification of Message
Figure shows modification of message attack. It is also one kind of replay attack.
Figure: Modification of Message (Active Attack) |
Some
portion message is altered, or that message is delayed or recorded to produce
unauthorized effect. When content of message modified after sender sends it but
before it reaches to concerned receiver, such type of attack is called
modification of message.
For
example, A message is “Virat will play and also captain in next match” is
modified to “Rohit will play and also captain in next match.”
Denial of Services
Figure shows the denial of services.
Figure: Denial of Services |
Denial of service attack means making the network unavailable for the user those who want to communicate securely. Flood the entire network or server with traffic until shutdown occurs because if overload.
This attack may have a specific target. Other form of this attack is disturbing an entire network, either by disabling the network or by overloading with messages so as to degrade performance.
To learn more about Passive Attack in cryptography, Click here
No comments:
Post a Comment