|
Home > Archive > Security+ > June 2004 > Replay vs Man-in-Middle
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Replay vs Man-in-Middle
|
|
| Keene 2004-06-21, 10:53 am |
| Hello All,
This is my first post. This seems like a very informative and supportive group and I hope I can contribute.
I have quick question that I hope somebody has an answer for: What is the difference between a Replay attack and a Man-in-the-Middle attack? I'm kind of confused!!
Thanks
Keene | |
| Supertech 2004-06-21, 11:15 am |
| The MIM attack takes place when an attacker intercepts traffic and then tricks the parties at both ends into believing that they are communicating with each other. The attacker can choose to alter the data or merely eavesdrop and pass it along. The MIM must sniff both sides of the connection simultaneously. This attack is common in Telnet and wireless technologies. It is generally difficult to implement due to physical routing issues, TCP sequence numbers, and speed.
In a Replay attack, packets are captured using a sniffer. After the pertinent info is extracted, the packets are placed back on the network. This type of attack can be used to replay bank transactions or other similar types of data transfer in the hopes of replicating or changing activities, such as deposits or transfers.  | |
|
| Good explaination Supertech  |
|
|
|
|