Question

125% v Collaborate Add Page Text Shape Comment Zoom Insert Table Chart Media View Project 2: Layer Attacks and Prevention List Each student chooses one attack; then do some research, describe: How the attack works What the prevention (or detection or mitigation) method is for this attack Font 1. Layer 2 attacks or lower layer attacks Aria VLAN hopping. Spanning-Tree Attack Jamming Attack Vulnerability on Neighbor Discovery Protocol (NDP) GARP Attacks/ARP poisoning Private VLAN Proxy Attack MAC flooding, MAC spoofing and ARP flood attacks Authentication/Association flood attack and de-authentication/ disassociation flood attack Regu E Charac Alignme I 2. Layer 3 (or Router) attacks DNS Rebinding attack Route Table Poisoning Spacis Cross-Site Request Forgery (CSRF) Max Sequence Number Attack via OSPF Bullets BGP Router Attacks RIP Attack Heap and Stack Overflow Attacks DHCP Starvation/ DHCP Consumption Attack/DHCP Exhaustion Attack Peer-to-Peer and Smurf attacks Routing Table Modification and Denial of Service Attacks 18 MacBook Pro 000 4 DO F3 FS F7 # 8 2 3 4 6 7 8 9 LO List i Font Arial 1. Words or PDF file Regu 2. Title of the project (including the name of the attack) B 3. Sections Charact For example: Introduction Alignmer I I. The way it w IlI. Prevention References (should be APA format) Lastname. first initial. (date, if no date, use n.d.). Article/paper title. Retrieved Spacing site. For example: BulletsA Li, X. (2017). Teach on-line class. Retrieved from www.citytech.cuny.edu/cst/-xli MacBook Pro 99 D F4 FS Fo F7 # S & 2 3 4 7 W R T Y CO LO 18

Answer 1

Cross Site Request Forgery

Introduction :

• This attack will force the user to execute some actions that are not needed to execute .
• It is mainly executed on the web area where the user is currently logged in (authenticated).
• It will force the user to submit unwanted request through web.
• This attack will cause a state change in the server of the site for which attack is made.
• State change refers to the change in information like user id , password , email etc.
• Here the attackers will trick the user to enter to specific link or page by using the user credentials.

The way it works :

• The attacker will create a link that contains the forgery request.
• This forgery request (link) is then send to the victims (users) through social media , emails , websites etc.
• Then when a user tries to login to the site and performs his/her action , the user will sometimes click on the link created by the attacker.
• Then forgery request will be send to the server for execution.
• Then the server will execute it as a normal request (Because every credentials needed for validation are stored there in browser in form cookies) .
• Thus the user is attacked by the attacker.

Prevention :

• Always use a hidden token for every request.
• The token value should be changed periodically.
• For each request validate the token , if the token is not valid don't proceed the request.
• Use high encryption techniques to encrypt the token.
• Also there is new method of prevention , that using a flag in cookies called Same-Site Flag.Here the cookie will be unique .
• This unique cookie is used to distinguish each users.
• Also make sure antivirus are up to date.
• After finishing our work always logout of the site.
• Don't save credentials like passwords in browser.