TCP/IP Sequence Number Analysis 229
johnwbyrd writes "Upon connection via TCP/IP to a host, the host generates an Initial Sequence Number (ISN). It's important to design ISN generation sequences so remote attackers can't predict an ISN (this is called a "blind spoofing" attack). Using phase space analysis you can check the quality of ISNs generated on various OSes. Windows 98's graph is quite pretty."
Here's the first bit (Score:1, Funny)
Table of Contents:
0. Abstract
1. Introduction
1.1 TCP Sequence generation and PRNGs
1.2 Spoofing Sets
2. Phase Space Analysis, Attractors and ISN Guessing
2.1 Introduction to Phase Space Analysis
2.2 Using Attractors for Spoofing Set Construction
2.3 Real-Life Attack Algorithms
3. Review of Operating Systems
3.1 Linux
3.2 Windows
3.3 Cisco IOS
3.4 AIX
3.5 FreeBSD and NetBSD
3.6 OpenBSD
3.7 HP/UX
3.8 Solaris
3.9 BSDI
3.10 IRIX
3.11 MacOS
3.12 Multiple Network Devices
3.13 Other PRNG issues
4. Risk Analysis
5. Conclusions
6. References
7. Credits
Appendix A: Phase Space Images of Known Generating Functions
Hopefully now only people who want to read it will click on the link!
This Article has Everything (Score:2, Funny)
"OMG Someone can guess the ISN number, We are all on our way to destruction"
2. Geekiness
"Wtf is an ISN number"
3. M$ Bashing (Note the $ $ign it means I dissaprove of Microsofts Money Grubbing Ways (TM) [OMG another funny!!])
That makes sense (Score:2, Funny)
They manage to build bio-humanoid robots, but they can't write a decent random function. Go figure...
Is that a borg cube? (Win98 Graph) (Score:3, Funny)
Re:Summary: Linux is the winner (Score:1, Funny)