• Complex
  • Title
  • Keyword
  • Abstract
  • Scholars
  • Journal
  • ISSN
  • Conference
搜索

Author:

Liu, Fanbao (Liu, Fanbao.) | Xie, Tao (Xie, Tao.) | Feng, Yumeng (Feng, Yumeng.) | Feng, Dengguo (Feng, Dengguo.)

Indexed by:

EI Scopus SCIE

Abstract:

Point-to-Point Protocol over Ethernet (PPPoE) is a network protocol for encapsulating PPP frames inside Ethernet frames. It is widely used by commercial Internet service providers to provide Internet surfing for customers who pay bills. In this paper, we analyze the security of PPPoE network. We find that we can easily collect information about both the peers and the PPPoE authentication servers. We can use such information to recover the peer's authentication password by silently impersonating the server, which is undetectable in the network. We impersonate the server in the peers' LAN and get their passwords by hijacking the peers' PPPoE connections and negotiating for using the Password Authentication Protocol (PAP). We further propose an efficient password recovery attack against the Challenge-Handshake Authentication Protocol (CHAP). We first recover the length of the used password through on-line queries, based on the weakness of MD5 input pre-processing. Then, we crack the known-length password off-line, using the probabilistic context-free grammars. We point out that PPPoE cannot be used anymore until all of the weak authentication protocols including PAP, CHAP, and Microsoft CHAP are abolished right now and replaced with more secure Extensible Authentication Protocols. Copyright (c) 2012 John Wiley & Sons, Ltd.

Keyword:

PPPoE PAP authentication protocol password recovery PPP CHAP

Author Community:

  • [ 1 ] [Liu, Fanbao]Natl Univ Def Technol, Sch Comp, Changsha 410073, Hunan, Peoples R China
  • [ 2 ] [Xie, Tao]Natl Univ Def Technol, Ctr Soft Comp & Cryptol, Changsha 410073, Hunan, Peoples R China
  • [ 3 ] [Feng, Yumeng]Beijing Univ Technol, Sch Comp, Beijing 100124, Peoples R China
  • [ 4 ] [Feng, Dengguo]Chinese Acad Sci, State Key Lab Informat Secur, Beijing 100124, Peoples R China

Reprint Author's Address:

  • [Liu, Fanbao]Natl Univ Def Technol, Sch Comp, Changsha 410073, Hunan, Peoples R China

Show more details

Related Keywords:

Related Article:

Source :

SECURITY AND COMMUNICATION NETWORKS

ISSN: 1939-0114

Year: 2012

Issue: 10

Volume: 5

Page: 1159-1168

ESI Discipline: COMPUTER SCIENCE;

JCR Journal Grade:4

CAS Journal Grade:4

Cited Count:

WoS CC Cited Count: 148

SCOPUS Cited Count: 8

ESI Highly Cited Papers on the List: 0 Unfold All

WanFang Cited Count:

Chinese Cited Count:

30 Days PV: 1

Affiliated Colleges:

Online/Total:606/5306944
Address:BJUT Library(100 Pingleyuan,Chaoyang District,Beijing 100124, China Post Code:100124) Contact Us:010-67392185
Copyright:BJUT Library Technical Support:Beijing Aegean Software Co., Ltd.