Shulou(Shulou.com)06/02 Report--

This article is about what kinds of cyber attacks there are. The editor thinks it is very practical, so share it with you as a reference and follow the editor to have a look.

The types of network attacks are as follows: 1. Active attacks will lead to the tampering of some data streams and the generation of false data streams; this kind of attacks can be divided into tampering, falsifying message data and terminals (denial of service). 2. Passive attacks usually include eavesdropping, traffic analysis, cracking weakly encrypted data streams and so on.

Network attack (Cyber Attacks, also known as cyber attack) refers to any type of attack against computer information systems, infrastructure, computer networks or personal computer devices. For computers and computer networks, destroying, exposing, modifying, disabling software or services, stealing or accessing data from any computer without authorization, will be regarded as an attack in the computer and computer network.

Types of network attacks

1. Active attack

Active attacks can lead to tampering of some data streams and the generation of false data streams. This kind of attack can be divided into tampering, falsifying message data and terminal (denial of service).

(1) tampering with messages

Tampering with a message means that some parts of a legitimate message are changed or deleted, and the message is delayed or changed in order, usually used to produce an unauthorized effect. If you modify the data in the transmission message, change "allow A to perform operations" to "allow B to perform operations".

(2) forgery

Forgery means that an entity (person or system) sends out data information containing the identity information of other entities, pretending to be other entities, so as to deceive and obtain the rights and privileges of some legitimate users.

(3) denial of service

Denial of service is often referred to as DoS (Deny of Service), which will cause the normal use or management of communication equipment to be interrupted unconditionally. It usually destroys the whole network to achieve the purpose of reducing performance and terminal services. Such an attack may also have a specific target, such as blocking all packets to a particular destination, such as the security audit service.

2. Passive attack

In a passive attack, the attacker does not make any changes to the data information. Interception / eavesdropping means that the attacker obtains the information or related data without the consent and approval of the user. It usually includes eavesdropping, traffic analysis, cracking weakly encrypted data streams and other attacks.

(1) Traffic analysis

Traffic analysis attacks are suitable for some special occasions, such as sensitive information is confidential. Although the attacker cannot get the true content of the message from the intercepted message, the attacker can also observe the patterns of these datagrams, analyze and determine the location of both sides of the communication, the number of communications and the length of the message, and get the relevant sensitive information. this attack is called traffic analysis.

(2) eavesdropping

Eavesdropping is the most commonly used means. Data transmission on the most widely used local area network is based on broadcast, which makes it possible for a host to receive all the information transmitted on the subnet. When the computer's network card works in miscellaneous collection mode, it can transmit all the information transmitted on the network to the upper layer for further analysis. If encryption measures are not taken, all the contents of the communication can be fully mastered through protocol analysis, and the eavesdropping can also obtain information by means of infinite interception. The electromagnetic wave radiated by the network station or the electromagnetic wave radiated by the network connecting equipment is received by a highly sensitive receiving device, and the original data signal is recovered through the analysis of the electromagnetic signal so as to obtain the network information. Although sometimes the data information can not be fully recovered by electromagnetic signals, valuable information may be obtained.

Because passive attacks do not make any changes to the attacked information, leaving traces are good, or do not leave traces at all, so it is very difficult to detect, so the focus of combating such attacks is to prevent, including virtual private network VPN, the use of encryption technology to protect information and the use of switched network equipment. Passive attacks are not easy to detect, so they are often the prelude to active attacks.

Although passive attacks are difficult to detect, measures can be taken to prevent them effectively, but it is very difficult to prevent attacks effectively, and the cost is too high. the main technical means to combat active attacks are detection and timely recovery from the damage caused by attacks. At the same time, detection also has a certain deterrent effect, which can also prevent attacks to a certain extent. Specific measures include automatic audit, intrusion detection and integrity recovery.

The main methods of attack are:

Password intrusion

Trojan Horse

WWW deception

E-mail

Node attack

Network monitoring

Hacker software

Security loophole

Port scan

Thank you for reading! This is the end of this article on "what kinds of network attacks". I hope the above content can be of some help to you, so that you can learn more knowledge. if you think the article is good, you can share it for more people to see!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.