Home > Ask the Security Experts > Questions & Answers > Security risks of TCP/IP
Ask The Security Expert: Questions & Answers
EMAIL THIS

Security risks of TCP/IP

Stephen Mencik EXPERT RESPONSE FROM: Stephen Mencik

Pose a Question
Other Security Categories
Meet all Security Experts
Become an Expert for this site
>
QUESTION POSED ON: 10 May 2001
What are the data security and information protection risks of using Transmission Control Protocol/Internet Protocol (TCP/IP)?

>
First, it is important to note that TCP and IP, while almost always used together, are really two separate protocols. IP is what is know as a connectionless protocol. It allows data to be broken up into parts, in this case known as "packets." These packets are then sent from origin to destination. The machines in-between use other routing protocols in order to determine where to send the packets. The packets may arrive out of sequence or not at all. That is where TCP comes into play. TCP is responsible at the origin for breaking the data into packets and numbering them for sequencing. At the receiving end, the packets are "reassembled" and passed up the communications stack to the applications.

Most of the vulnerabilities that you read about, such as the WU-FTP buffer overflow and others, are really problems with the applications that simply use TCP/IP for a transport mechanism. However, there are a few problems with the underlying protocols.

One that has been discussed at great length recently is the guessability of the sequence numbers that TCP supplies to the packets. If an attacker can guess the next sequence number, he can potentially "hijack" the TCP session. This means that if an attacker got in the middle of a transaction between your machine and another, he could pose as you.

As for the risks in using TCP/IP, I would ask, what else are you going to use if you desire Internet connectivity? For the most part, you should keep up to date with all application and system patches to ensure that your computer is as secure as it can be. Firewalls and intrusion-detection devices are also appropriate.

To help you sleep at night, everyone is using TCP/IP. When vulnerabilities are found, they are made widely known and patches are developed quickly. As long as you are keeping up to date, your risks are minimal.

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   



RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary



Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.
Browse our Expert Advice



Find Security Solutions for Your Business
TechTarget Security Media
Information Security View this month\\'s issue and subscribe today.
Information Security Decisions Apply online for free conference admission.
SearchSecurity.com
HomeNewsMagazineMultimediaWhite PapersLearningAdviceTopicsEventsAbout Us
SEARCH :     Site Index Powered by: Search Powered by Google

About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2003 - 2009, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts