SMT 2-4 Plaintext Communication Vulnerability

00:00

hello traines in this class I would like

00:03

to introduce various cyber threats that

00:05

can occur on the network one thing to

00:07

keep in mind is that it's good to follow

00:09

the practice during a class but never

00:11

breach any of the network environments

00:13

without approval if you want to practice

00:16

you have to build and test in your own

00:20

environment first let's look at the

00:22

vulnerability of plain Tex communication

00:25

if you think about how we normally talk

00:27

we don't talk in encrypted language but

00:29

why should we avoid plain text

00:31

Communication in networks first of all

00:34

the data sent and received on the

00:35

network has become more important than

00:37

in the past in the past networks were

00:40

used to Simply exchange information but

00:42

the number of users increased as

00:44

multiple networks were connected to form

00:46

an internet Network as the internet

00:48

became active we started to provide

00:51

services based on Authority which

00:53

required a login process currently not

00:56

only our login information but also much

00:58

personal information such as our name

01:00

address phone number and payment

01:03

information are transmitted and received

01:05

using the network that's why we want to

01:07

ensure the safety of the

01:09

data in the network data is transferred

01:13

toward the desired destination within

01:15

its own rules still should we protect

01:17

our data the answer is yes packets in

01:21

the network are transmitted from the

01:22

sender to the receiver but during the

01:24

transmission process the packets are

01:27

still visible to other people too there

01:30

are many reasons why attackers want to

01:31

access the packets such as to obtain

01:34

personal information in the data or to

01:36

use malware to produce the desired

01:38

result also they may just simply want to

01:41

prevent the target user from accessing

01:43

the normal internet condition therefore

01:46

you need to protect your data from these

01:49

attacks there is a concept called the C

01:52

A Triad that often appears when

01:54

explaining information protection the

01:56

CIA stands for confidentiality integrity

02:00

and availability the CIA Triad can be

02:03

applied to the field of security to

02:06

interpret and solve problems if these

02:08

three characteristics are well met the

02:10

network will be evaluated as highly

02:14

secure let's start with

02:16

confidentiality confidentiality refers

02:18

to the protection of data from exposure

02:20

to unauthorized third parties for

02:23

example if you write down all your

02:25

personal information to sign up for a

02:27

web service and some unreliable person

02:29

manages to read this data in the middle

02:32

of transmission to the web service it's

02:34

an attack that compromises

02:36

confidentiality from a network

02:37

perspective confidentiality breaches can

02:40

occur in the form of someone

02:41

eavesdropping on transmitting and

02:43

receiving data so how do we protect

02:47

confidentiality the key to

02:48

confidentiality is to prevent access to

02:51

key information by people who do not

02:53

have the right Authority hence only

02:56

people who have authority over the

02:58

information should have access to it

03:01

from a network perspective only the

03:03

sender and the receiver will have the

03:05

right to that data in the communication

03:07

process by allowing only two people to

03:10

view this data you can keep it

03:12

confidential so how do we make sure that

03:14

only these two people are able to see

03:17

the data in the process of transmitting

03:19

and receiving data this data goes

03:22

through a lot of networks and a lot of

03:23

equipment it is extremely dangerous to

03:26

trust all those Network equipment

03:28

because it means that there are a lot of

03:30

vectors that can access your data

03:32

anytime anywhere so we have to do

03:34

something about the data itself such as

03:38

encryption integrity means that when the

03:40

data arrives at the destination the data

03:43

initially sent by the sender arrives

03:45

intact without modification Integrity is

03:48

maintained when the data is accurate and

03:50

reliable for example during the war any

03:54

reports that are sent to the commanders

03:56

should not be modified or tampered with

03:57

under any situation inaccurate

04:00

information could affect their tactics

04:02

and in the worst case it could lead to

04:04

their loss in the war from a CEOs point

04:06

of view let's say you order 10 products

04:09

but the content is altered and you end

04:11

up ordering a th000 products then the

04:14

system used for the order will be

04:16

unreliable in other cases if some

04:18

hackers are targeting a certain company

04:20

for the purpose of damaging their

04:21

reputation they would exploit the

04:23

company's system vulnerabilities and

04:25

hack their system they could steal their

04:27

data for blackmail or to to give it to

04:30

the company's

04:32

competitors to give another example I

04:35

would like to initiate a wire transfer

04:37

to send money to my parents but if the

04:39

bank information is changed to a

04:40

hacker's account my parents will not be

04:42

able to receive it in fact Integrity

04:45

breaches can occur in a variety of ways

04:48

you can attack the service to modify the

04:49

contents of the database or you can

04:52

sneak between the two devices that are

04:53

communicating on the network and alter

04:55

the data however malicious cases are not

04:59

the only ones that cause the Integrity

05:00

breach in some cases data may also be

05:04

lost or altered unintentionally due to

05:06

network conditions therefore we have to

05:09

make sure that we transfer the data to a

05:11

Flawless Network various methods can be

05:14

used to maintain Integrity you can use

05:16

the hash algorithm to verify whether the

05:18

Integrity has been compromised

05:20

encryption can also often be a way to

05:22

maintain

05:25

Integrity next is availability even if

05:28

the confidentiality and integrity of the

05:30

data are maintained it will be useless

05:32

if communication is not made

05:34

availability means that the right person

05:37

must be able to access the service at

05:38

the right time of need for example if

05:41

there is a rubber in your house you

05:43

should call the police station but what

05:46

happens if the police station doesn't

05:47

answer the phone call because they are

05:49

having a day off the police will never

05:51

come to help you right from a web

05:53

service perspective users should be able

05:56

to access the web pages any time

05:58

anywhere in in addition if the service

06:01

is too slow to use or becomes

06:03

unavailable availability will not be

06:05

guaranteed

06:07

too from an attacker's point of view you

06:10

can understand availability in two ways

06:13

firstly maliciously exploiting a service

06:15

that would result in an attack that

06:17

compromises its availability think of a

06:20

situation where you sneak into the

06:21

network and Eaves drop or alter the data

06:24

secondly to prevent users from knowing

06:26

that they are being attacked they need

06:28

to maintain avail a ability by

06:30

forwarding packets that are received in

06:32

the middle interestingly they need to

06:34

maintain availability for successful

06:36

attacks while also avoiding

06:39

detection one way to maintain

06:41

confidentiality and integrity is

06:43

encryption so is encryption safe this is

06:47

case one Alice and Bob are going to

06:50

exchange letters Eve who delivers the

06:52

letter in the middle is a malicious

06:54

person who reads the letter in the

06:56

process of delivering it Alice just sent

06:58

Bob a letter but Eve can also read the

07:01

letter very easily you can think of the

07:04

above communication as the normal plain

07:06

text communication process if a

07:08

malicious user comes in the middle he

07:10

can see the data we need to protect the

07:13

data from being read in the

07:14

middle this is case two this time Alice

07:18

applied encryption to the letter so that

07:20

no one can read it because it is an

07:22

encrypted letter Eve can no longer check

07:25

the message Alice has successfully

07:27

protected the confidentiality and

07:30

integrity of the letter is this correct

07:33

however the Letter's availability is not

07:36

protected Alice and Bob are the senders

07:38

and receivers of the letter so they are

07:40

the ones who should have access to see

07:42

and read the

07:45

letter however Bob will not be able to

07:47

view the letter because the key used for

07:49

encryption is not shared with Bob as a

07:52

result Alice's communication objectives

07:55

have not been achieved so both Alice's

07:57

and Bob's availability have not been

07:59

protected for this we need to create a

08:02

safe data method that only Bob and Alice

08:04

can

08:06

see how can Alice and Bob send and

08:09

receive messages safely think about it

08:12

Alice wants to send Bob a very precious

08:14

box as expected Eve is in the middle of

08:17

the process pretending to be a delivery

08:19

man but in fact he's going to open this

08:22

precious box this box is designed to be

08:24

locked with a padlock how can Alice and

08:27

Bob safely receive the contents of this

08:29

precious box without showing it to Eve

08:31

there can be more than one correct

08:33

answer if Alice and Bob can successfully

08:36

open the box safely so that Eve can't

08:38

see it then it's all correct I will tell

08:40

you the answer after 10 seconds pause

08:43

the recording and take a moment to think

08:45

about

08:51

it so how can Alice and Bob send and

08:55

receive messages safely if they both use

08:57

the logs they can safely exchange

09:00

messages without exchanging the keys

09:02

first Alice locks the padlock and sends

09:04

it to Bob the box is logged with Alice's

09:07

key and Bob can't check the contents

09:09

inside this time Bob also locks the

09:12

padlock and sends it again to Alice now

09:15

that Alice's padlock and Bob's padlock

09:17

are both hung Alice can't check the

09:20

contents either Alice unlocks her

09:22

padlock and sends it back to Bob then

09:25

Bob receives the box with only his own

09:27

padlock when he unlocks the padlock he

09:30

is now able to see what's inside the

09:34

box also in the process Eve is always

09:37

watching the box with the padlog but she

09:39

can never open it just applying

09:41

encryption like this doesn't mean it's

09:44

safe and it is important that you know

09:46

how it works in fact the Diffy Helman

09:49

key exchange method is the basis for

09:50

exchanging the required keys in

09:53

communication this part is about

09:55

cryptography not the network so if

09:57

you're interested in this it would be to

09:59

find out more in the related

10:02

chapter now you all know that plain text

10:04

communication is dangerous this time I

10:07

tried to EES drop on my computer so that

10:10

I could show you what the data looks

10:11

like when actually communicating as you

10:14

can see in the image here I'm trying to

10:16

access a remote computer the program I

10:18

use to connect with is a program called

10:20

telnet which helps me communicate using

10:23

the Tet protocol so what does it look

10:25

like if i e drop on the login process in

10:28

fact the image below is the result of a

10:31

wi tapping attempt as I will mention

10:33

later this program is called wies Shock

10:36

the image here captures the moment you

10:38

log into the server using a protocol

10:40

called tet on the network for your

10:42

information blue colored letters are the

10:44

incoming data and red colored ones are

10:47

the outgoing

10:49

data I received the text colly login in

10:51

the image here and the user entered the

10:53

ID collie in the packet below you can

10:56

see the Blu string collie login and you

10:58

can see that there is a string that

11:00

looks like collie overlapping in Reds

11:02

and blues can you guess why the string

11:04

collie seems to overlap the reason why

11:07

col is overlapped is that every time the

11:09

user Types on the keyboard letters are

11:11

printed on the screen so the input data

11:13

is received as it is after the input if

11:17

you look at the image again you can see

11:18

that the password string was printed and

11:21

it was entered by the user but it was

11:23

not printed on the screen for security

11:25

reasons however if you look at the

11:27

packet below you can see the data that

11:29

you actually entered because all of this

11:32

was plain text communication you can see

11:34

the data very easily therefore it is

11:37

recommended that you log into the server

11:39

using a cryptographic communication

11:41

based protocol such as SSH rather than a

11:44

plain text communication

11:47

teling I also Bugg the SSH communication

11:51

process the left side is the attempt to

11:53

log into SSH and the right side is the

11:56

Captured Moment of the action with wire

11:58

shock the image on the left gives a

12:00

rough idea of what data was exchanged in

12:03

sssh

12:04

communication however as shown on the

12:06

right SSH cannot find the sent anded

12:09

string because the packet is encrypted

12:12

in this case the attacker cannot view or

12:14

modify the data so it appears to

12:16

communicate

12:19

securely now let's try one of the most

12:22

popular protocols the HTTP protocol on

12:25

the left is a web server with HTTP

12:28

communication

12:29

the user will enter the password in the

12:31

input box you may think it's safe

12:34

because the password is covered however

12:37

if you look at the captured image of the

12:38

packet attempting to log in you can see

12:41

the password that you entered financial

12:43

services are often handled on the web as

12:46

the number of Internet users is

12:47

constantly increasing for the last few

12:50

years if my personal information is

12:52

easily accessible by a third party like

12:55

this my data is not protected and will

12:57

be easily breached you need to encrypt

12:59

your data to protect it when using the

13:02

https protocol it encrypts any

13:05

Communications involved when using the

13:06

web

13:08

service the image here captures the

13:10

moment you log into the web service

13:12

using the https protocol on the network

13:15

I don't see any readable data as if I

13:18

bugged SSH packets compared to

13:20

traditional HTTP Communications it is

13:23

not possible to determine what data is

13:25

sent and received when viewed by a third

13:28

party in this way web services can also

13:31

improve confidentiality and integrity

13:34

because strong encryption makes it

13:36

difficult to expose personal information

13:38

and alter key data when you communicate

13:40

with https the lock icon is activated in

13:44

the address window of the browser as

13:45

shown in the bottom right corner so if

13:48

you want to make sure that your current

13:50

homepage status is secured and encrypted

13:53

remember this icon