信息网络安全 ›› 2015, Vol. 15 ›› Issue (9): 37-40.doi: 10.3969/j.issn.1671-1122.2015.09.009

• 入选论文 • 上一篇    下一篇

基于BGP 协议的TCP MD5加密认证的破解技术分析

孙泽民1(), 芦天亮2, 周阳1   

  1. 1.北京邮电大学信息安全中心,北京 100876
    2.中国人民公安大学网络安全保卫学院,北京 100038
  • 收稿日期:2015-07-15 出版日期:2015-09-01 发布日期:2015-11-13
  • 作者简介:

    作者简介: 孙泽民(1989-),男,山西,硕士研究生,主要研究方向:网络与信息安全;芦天亮(1985-),男,河北,讲师,博士,主要研究方向:网络攻击与防御;周阳(1989-),女,吉林,博士研究生,主要研究方向:网络与信息安全。

Analysis of the Technique of Breaking TCP MD5 Encryption and Authentication for BGP

Ze-min SUN1(), Tian-liang LU2, Yang ZHOU1   

  1. 1. Information Security Center of Beijing University of Posts and Telecommunications, Beijing 100876, China
    2. School of Network Security Safeguard, People’s Public Security University of China, Beijing 100038, China
  • Received:2015-07-15 Online:2015-09-01 Published:2015-11-13

摘要:

BGP是一种重要的域间路由选择协议,路由器通过BGP协议的信息交换,可以实现域间选路。BGP协议存在的一些脆弱性,源于其最初的设计对安全性的考虑较少。现有的一种安全策略是对BGP邻居进行TCP MD5加密认证,但是这种简单的加密认证机制并不能确保安全。通过对TCP MD5认证过程进行分析研究,文章提出了利用密钥字典以及MD5碰撞原理破解TCP MD5加密认证的方法,并搭建真实路由器环境进行验证性测试,最终实现了对TCP MD5弱密钥加密认证的破解。

关键词: BGP协议, TCP MD5, 密钥字典, MD5碰撞, 弱密钥

Abstract:

BGP is an important inter domain routing selection protocol, through which routers can exchange information and select inter domain routing. There are vulnerabilities in BGP protocol, coming from the little consideration for safety in its initial design. One existing security policy is to make the TCP MD5 encryption and authentication between BGP neighbors. However, this simple encryption and authentication mechanism can not ensure safety. After analysis and research on the TCP MD5 certification process,a method is proposed to break the TCP MD5 encryption and authentication in this paper, which takes use of the key dictionary, as well as the principle of MD5 collision. By establishing a real route environment, a breaking verification for TCP MD5 encryption and authentication with a weak key is realized at last.

Key words: BGP protocol, TCP MD5, key dictionary, MD5 collision, weak key

中图分类号: