Documente Academic
Documente Profesional
Documente Cultură
Protocol (SCTP)
Acknowledgements
Prof. Paul Amer
Randall Stewart ~ Philip Conrad ~ Janardhan Iyengar
Chunk Information
(Multiple of 4 bytes)
0x02 INIT-ACK
0x08 SHUTDOWN-ACK
SCTP Feature Summary
What TCP and SCTP both have:
reliability (retransmissions)
congestion control
connection oriented
t=0
1RTT
Security: TCP Flooding Attack
(victim) process
(attackers)
TCP-based SYN
Internet spoofed SYNs web server
TCB
221.3.5.10 SYN 190.13.4.1
flooded!!
SYN 190.13.4.1
TCB = Transport Control Block
The SCTP Way: 4-way handshake limits attack
(attackers) (victim)
SCTP-based process
spoofed INITs INIT
Internet web server
t=0
1RTT
2RTT
What does a Cookie contain?
shutdown_pending
stop
shutdown_sent accepting
data
shutdown_pending
stop accepting
data
shutdown_sent shutdown_received
shutdown_ack_sent
closed
(delete TCB)
closed
(delete TCB)
SCTP Feature Summary
What TCP and SCTP both have:
reliability (retransmissions)
congestion control
connection oriented
transport connection
A
Internet
B
client
Web server
points of failure
18
Traditional Multi homing (TCP)
transport connection
A1
Internet B1
A2 B2
client
Web server
points of failure
In TCP, host choose 1 of 4 possible combinations:
(A1,B1) or (A1,B2) or (A2,B1) or (A2, B2)
19
Innovative Multi homing in SCTP
transport association
A1
Internet B1
A2 B2
client
Web server
SCTP Multihoming
Hosts use one association ({A1,A2}, {B1,B2})
New data sent to one primary destination
- Let B1 be the web servers primary destination
- Let A1 be the clients primary destination
Path status and destination reachability constantly monitored.
20
Multi-homing Association
single-homed SCTP multi-homed SCTP endpoint
endpointHost A Host B
application application IP1=160.15.82.20
100 200 IP2=161.10.8.221
SCTP SCTP IP3=10.1.61.11
A1 B1 B2 B3
IP=128.33.6.12
endpoint=[128.33.6.12 : 100] endpoint=[160.15.82.20, 161.10.8.221, 10.1.61.11 : 200]
SCTP association
Host A
Host B
application application
100 200 IP1=160.15.82.20
SCTP SCTP IP2=161.10.8.221
IP3=10.1.61.11
A1
B1 B2 B3
IP=128.33.6.12
A1 6
4
3
2
5
1 3
2
4
5
6
1 B1
A2 B2
TCP data transfer with loss
data data
sent from application delivered to application
retransmission
A1 2
4
3
6
5
1 3
2
4
5
61
loss B1
A2 B2
TCP data transfer with single path failure
data data
sent by application delivered to application
A1 4
3
2
6
5
1 6
5
4
3
2
1 B1
A2 B2
SCTP data transfer without loss
data data
sent by application delivered to application
A1 6
4
3
2
5
1 3
2
4
5
6
1 B1
A2 B2
SCTP data transfer with loss
data data
sent from application delivered to application
A1 2
4
3
6
5
1 6
5
4
31
loss B1
A2 2 2 B2
retransmission
SCTP data transfer with single path
failure
data data
sent by application delivered to application
A1 5
2
6
3
4
1 5
4
3
2
6
1 B1
A2 65
4 64
5 B2
retransmission
Multihoming Example
1. Laptop connected via Ethernet and Wireless.
2. Both the interfaces are reachable by the peer.
3. Ethernet gets disconnected, transmission of data fails.
4. Failure detected, SCTP uses the wireless interface to transmit.
5. HEARTBEAT is received.
6. Ethernet link is restored.
Heartbeat received
B1
A1 Internet B2
A2
802.11
Client Host New Transmission Path
(SCTP) Server Host
(SCTP)
SCTP Failure Detection
Host A monitors reachability of primary dest address of Host B
Host A Host B
application application
100 primary 200 alternates
SCTP SCTP
A1 B1 B2 B3
DATA SACK
32
Reference Material
Textbooks
Stream Control Transmission Protocol (SCTP)
Randall Stewart, Qiaobing Xie, Addison Wesley, 2002
RFCs
RFC 2960 - Stream Control Transmission Protocol
RFC 3286 - An Introduction to SCTP
RFC 4460 - SCTP Specification Errata and Issues
33
Thank You!!!!