TCP: Handling undetected transmission errors

Email
Comment *
File	Select/drop/paste files here
Password	(Randomized for file and post deletion; you may also set your own.)
* = required field	[▶ Show post options & limits] Confused? See the FAQ.

Flag
Oekaki	Show oekaki applet (replaces files and can be used instead)
Options	Do not bump (you can also write sage in the email field) Spoiler images (this replaces the thumbnails of your images with question marks)
Allowed file types:jpg, jpeg, gif, png, webm, mp4, pdf Max filesize is 16 MB. Max image dimensions are 15000 x 15000. You may upload 3 per post.

[–]

▶TCP: Handling undetected transmission errors Anonymous 02/21/19 (Thu) 21:53:34 No.1033787>>1033790 >>1033794 >>1033831 >>1033976 [Watch Thread][Show All Posts]

So TCP is using a 16-bit checksum which only detects honest transmission error caused by noise in the transmission. However, one can easily swap two 16-bit words in a message, which has a 100% probability of being undetected. For stronger integrity checks, such as whether a man in the middle attacker actively changed the message, it is recommended to perform those checks at the application level.

But to the application, the TCP connection looks just like a stream of bytes, and at some point, the application may (or may not) detect that modified values were received (the modified message might still seem valid). How would a programmer handle this optimally?

I have the suspicion that this is not even possible without implementing your own packets on top of TCP, and then request the other party to re-send those higher-level packets. But if we go that far, why not directly use UDP and implement those higher-level packets with resend-requests in UDP? The only thing you'd still have to do in UDP would be the manual ordering of packets, but that seems comparatively easy. Also, UDP is faster than TCP, and you could directly use authenticated encryption on the protocol level, so instead of a 16-bit checksum, you'd have strong cryptographic guarantees about the integrity of the channel.

TL;DR: TCP makes it fucking hard to handle undetected transmission errors

Questioning validity of TCP

P.S.: Sorry if this is a double post, 8ch seems to have some problems right now.

▶Anonymous 02/21/19 (Thu) 22:04:46 No.1033790>>1033794 >>1033795

>>1033787 (OP)

Any recommendations for network monitoring tools (Windows)?

▶Anonymous 02/21/19 (Thu) 22:12:28 No.1033794>>1033802

>>1033787 (OP)

You are correct but the checksum doesn't really matter because anyone who can intercept and retransmit packets can do the whole TCP connection and either side will be none the wiser, Real validity checks occur in the protocol usually. How new do you think tcp is?

>>1033790

Wireshark

▶Anonymous 02/21/19 (Thu) 22:12:31 No.1033795

I just looked into DTLS (https://en.wikipedia.org/wiki/Datagram_Transport_Layer_Security), but it seems that even this is not entirely secure, as you can recover the plaintext when using the CBC mode of operation. But it seems like a good step in the right direction. But UDP does not have the nice features of TCP where it automatically detects network congestion, and adapts to it (AIMD). So I'd litterally have to build a TCP clone with authenticated encryption on top of UDP…

>>1033790

Sorry, I don't use Windows. You'll have to look that up yourself.

▶Anonymous 02/21/19 (Thu) 22:19:32 No.1033802>>1033803

>>1033794

The only assumption that leads to a scenario where I can do anything here is that the key exchange was not compromised.

So to write a secure networked application, you'd have to use authenticated encryption, and manually buffer recently sent cipherexts, and wait for requests that ask me to re-send them? Why is this not part of the OS's socket library?

▶Anonymous 02/21/19 (Thu) 22:20:45 No.1033803

>>1033802

>mixing you and me

I should go to bed

▶Anonymous 02/21/19 (Thu) 22:31:37 No.1033812>>1033814

>>1133803 Can I join in your rape party? The threesome sounds very interesting!

▶Anonymous 02/21/19 (Thu) 22:35:33 No.1033814>>1033817

>>1033812

I am a virgin, and I plan to stay virgin until I can have kids with artificial wombs. So: no, thank you.

▶Anonymous 02/21/19 (Thu) 22:39:59 No.1033817>>1033819

>>1033814 Rapes always occur against your WILL!

▶Anonymous 02/21/19 (Thu) 22:42:23 No.1033819

>>1033817

Why ask, then?

▶Anonymous 02/21/19 (Thu) 23:25:44 No.1033831

>>1033787 (OP)

>retard doesn't grok the difference between a checksum and a MAC

>what is tls

great thread

▶Anonymous 02/22/19 (Fri) 00:23:12 No.1033853

ITT: morons who don't understand the OSI model.

▶Anonymous 02/22/19 (Fri) 10:16:31 No.1033971

OP here, I am retard.

▶Anonymous 02/22/19 (Fri) 10:50:32 No.1033976

>>1033787 (OP)

>TCP makes it fucking hard to handle undetected transmission errors

>handle undetected errors

Literally how is that supposed to be possible?

You can't handle something you do not know about.

TCP serves its purpose well, UDP is a viable alternative for many use cases (even when it means rolling your own pseudo-TCP protocol), and OP is a faggot.

/tech/ - Technology★

General

WebM

Theme

User JS

Do not paste code here unless you absolutely trust the source or have read it yourself!

Favorites

Customize Formatting

Filters