Questions tagged [replay-detection]
The replay-detection tag has no summary.
39 questions
0votes
0answers
17views
For AES-GCM, why do protocols not use the nonce to prevent replay attacks? [migrated]
For protocols using AES-GCM, it appears to be common practice to store the sequence number in the additional authenticated data (AES_GCM and TLS sequence number). I have not found any instances of ...
9votes
3answers
3kviews
What techniques are there for preventing radio-signal replay attacks?
I am now researching RF security on IoT devices such as doors, cars, etc. I have a HackRF device for performing RF-signal manipulations such as replay attacks. It is very easy to record the signals ...
1vote
1answer
137views
Why does IPsec has a "partial" replay protection? If we drop all packets outside the moving window, then where is the threat?
IPsec is said to have "partial" replay protection because if a packet arrives outside the window, we can't track it, so we have to make a choice: do we risk and accept it, or do we drop it? ...
- 325
0votes
0answers
139views
Testing in case of TLS 1.3 with AES-GCM
At work, I'm used to sniffing and capturing on network interfaces by which client and server intercom on LAN in my domain so as to grab genuine business data, followed by my customized replaying to ...
- 101
1vote
1answer
203views
How to prevent replay attacks with JWE?
I am used to using JWTs so when I needed the same behavior but with no plaintext user data I looked at JWE. JWE is very similar to JWT; however, I did not see the exp, nbf or iat fields which limit ...
- 137
3votes
1answer
952views
Concatenating timestamp to data before encrypting it - is this a commonly used technique?
I have a web app that communicates with a backend server, and the users of the web app are organisations that each have a single login for the entire organisation. The app is meant to be used for ...
- 253
2votes
1answer
1kviews
How SSL Protects against Replay Attacks?
Reading: https://mulloverthing.com/how-does-ssl-protect-against-replay-attack/ it says: The SSL/TLS channel itself is protected against replay attacks using the MAC (Message Authentication Code), ...
- 19
1vote
1answer
138views
How are validation links getting triggered by a third party?
Question: It appears that somebody can intercept and read emails that I send from my server, although I have set up 2-Factor authentification for sudo-access I log all logins on my server (Did not ...
- 11
3votes
1answer
255views
Freshness Protection in BL and BLE
I recently found this document: https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-121r2.pdf , Guide to Bluetooth Security from NIST. Unfortunately, there is nothing described w.r.t....
- 31
2votes
1answer
2kviews
UEFI secure boot anti-rollback
I haven't seen any seen mechanism by which UEFI can detect the most recent update to a binary from being swapped out for an older binary that was signed with the same key as the up-to-date binary. ...
- 277
1vote
2answers
345views
Replay Safe Mutual Authentication (libsodium)
I am working on an end-to-end encrypted messaging application as an educational activity with some of my extra time. I have chosen to use libsodium for the underlying crypto. I have run into a hang-up ...
1vote
0answers
163views
Why server side hashing is required if the client side hashing is already in place?
I am looking for best practice for username/password login. People have different views for client side hashing on password. From Google's recommendation https://cloud.google.com/solutions/modern-...
- 111
1vote
0answers
113views
data report replay attacks?
Does anyone have pointers to a certain type of replay attack that I would call "data report" replay attacks, or past data injection attacks? In short, I am not talking about traditional network ...
- 11
4votes
3answers
3kviews
How do websites protect against 2fa replay attacks?
I'm imagining a scenario where an attacker can read traffic between a user and a server. The attacker grabs the user's password and the 2fa code they used. The attacker then logs in with that ...
- 261
-1votes
1answer
3kviews
How are replay attacks prevented? [closed]
I imagine it’s due to time stamps and sequence numbers. However, those can be replayed as well. The attacker can't create new sequence numbers or time stamps without being detected if the integrity ...
- 139
