CONFERENCE PROCEEDINGS
Advanced Search
Home > Proceedings > Volume 12245 > Article
Paper
5 May 2022 Analysis and implementation of man-in-the-middle attack on Microsoft's PPTP
Ruohan Qin
Author Affiliations +
Proceedings Volume 12245, International Conference on Cryptography, Network Security, and Communication Technology (CNSCT 2022); 1224507 (2022) https://doi.org/10.1117/12.2635847
Event: International Conference on Cryptography, Network Security, and Communication Technology (CNSCT 2022), 2022, Sanya, China
Abstract
Point-to-Point Tunneling Protocol (PPTP) is a mature way to implement Virtual Private Network (VPN), which has been widely used by many companies and enterprises. The security of VPN mainly depends on the security of the protocol, so the analysis of the protocol has always been the top priority of network security. This paper conducts an analysis of PPTP implemented by Microsoft. In this paper, I first give an introduction to the structure of Microsoft's PPTP, followed by an in-depth analysis of the Microsoft version of the Challenge-Handshake Authentication Protocol (MS-CHAP) and Microsoft Point-to-Point Encryption (MPPE) subprotocols. And in the second half of this paper, I analyze and implement a man-in-the-middle attack on Microsoft's PPTP that does not require the challenge packet.
© (2022) COPYRIGHT Society of Photo-Optical Instrumentation Engineers (SPIE). Downloading of the abstract is permitted for personal use only.
Citation Download Citation
Ruohan Qin "Analysis and implementation of man-in-the-middle attack on Microsoft's PPTP", Proc. SPIE 12245, International Conference on Cryptography, Network Security, and Communication Technology (CNSCT 2022), 1224507 (5 May 2022); https://doi.org/10.1117/12.2635847
ACCESS THE FULL ARTICLE
ORGANIZATIONAL
Sign in with credentials provided by your organization.
INSTITUTIONAL
Select your institution to access the SPIE Digital Library.
SELECT YOUR INSTITUTION
PERSONAL
Sign in with your SPIE account to access your personal subscriptions or to use specific features such as save to my library, sign up for alerts, save searches, etc.
PERSONAL SIGN IN
No SPIE Account? Create one
PURCHASE THIS CONTENT
SUBSCRIBE TO DIGITAL LIBRARY
50 downloads per 1-year subscription
Members: $195
Non-members: $335 ADD TO CART
25 downloads per 1 - year subscription
Members: $145
Non-members: $250 ADD TO CART
PURCHASE SINGLE ARTICLE
Includes PDF, HTML & Video, when available
Members: $17.00
Non-members: $21.00 ADD TO CART
PROCEEDINGS
 7 PAGES
DOWNLOAD PAPER SAVE TO MY LIBRARY
GET CITATION
Advertisement
Advertisement
RIGHTS & PERMISSIONS
Get copyright permission  Get copyright permission on Copyright Marketplace
KEYWORDS
Network security
Networks
Data communications
Information security
Computer security
Analytical research
Internet
RELATED CONTENT
Subscribe to Digital Library
Receive Erratum Email Alert
Back to Top