Security loopholes in TCP/IP

What are the security loopholes in TCP/IP?

Step 2 of 2:

You forgot to provide an Email Address.

This email address doesn’t appear to be valid.

This email address is already registered. Please login.

You have exceeded the maximum character limit.

Please provide a Corporate E-mail Address.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

First, let's discuss just what TCP and IP are.

IP is the Internet Protocol. It is a protocol used to send packets of data, or datagrams, from one point to another with no sequencing of packets and no guarantee of delivery.

TCP is the Transport Control Protocol. It provides for sequencing of IP packets, requests retransmission of dropped packets, etc.

While those are rather simplistic descriptions, that is the real gist of what they do. Note that there is nothing about security in those descriptions.

So, there isn't any real security at all in TCP/IP, and there never was any intended. If you want confidentiality, you need to encrypt the data. If you want to know for sure who the sender or receiver of the data really is, you need to add an authentication service.

Steve Bellovin of Bell Labs wrote a paper detailing security problems with TCP/IP many years ago, and it is still a good reference paper for the subject.

CERT has also issued many advisories about problems with TCP/IP.

For more information on this topic, visit these other searchSecurity resources:
Ask the Expert: Security risks of TCP/IP
Security Policies Tip: Seven problem areas to monitor for AS/400-TCP/IP
Best Web Links: Infrastructure & Network Security

This was last published in February 2002

Dig Deeper on Penetration testing, ethical hacking and vulnerability assessments

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

Meet all of our Information Security experts

View all Information Security questions and answers

SearchCloudSecurity

7 TCP/IP vulnerabilities and how to prevent them

UDP (User Datagram Protocol)

How hackers use idle scans in port scan attacks

Citrix HDX uses both UDP and TCP

Please create a username to comment.

Lyft's open source asset tracking tool simplifies security

Understanding the CSA Cloud Controls Matrix and CSA CAIQ

5 steps to a secure cloud control plane

SD-WAN explained: The ultimate guide to SD-WAN architecture

VMware acquisition of Nyansa combines LAN, WAN analytics

The 5 steps to a successful MPLS-to-SD-WAN migration

Preparing for the new forms of cybersecurity threats in 2020

What is the state of CIO tenure today?

The evolution of RPA, from macros to process transformation

Managing Windows Defender Device Guard in Windows desktops

New Ivanti CEO plans to stay close to the customer

With support for Windows 7 ending, a look back at the OS

Reduce cloud latency for remote employees and offices

AWS multi-account management best practices with Control Tower

Beat vendor lock-in with a cloud exit strategy

CISOs fear becoming the next Travelex

How AWS is helping boost rugby fans’ engagement in the Guinness Six Nations championship

Gartner: Over two-thirds of management tasks will be automated

Dig Deeper on Penetration testing, ethical hacking and vulnerability assessments

7 TCP/IP vulnerabilities and how to prevent them

UDP (User Datagram Protocol)

How hackers use idle scans in port scan attacks

Citrix HDX uses both UDP and TCP

Have a question for an expert?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.