Encryption in SMB 3.0: A protocol perspective

Encryption is one of the new SMB 3.0 security enhancements in Windows Server 2012 RTM. It can be enabled on a per-share basis, or enforced for all shares on the server. SMB 3.0 uses AES-CCM [RFC5084] as encryption algorithm, and this also provides data integrity (signing). This blog takes a protocol walk on the topic through…


Hitchhiker’s Guide to Debugging RDP protocols: Part 2

Hitchhiker’s Guide to Debugging RDP protocols: Part 2 NOTE: Questions and comments are welcome.  However, please DO NOT post a comment using the comment tool at the end of this post.  Instead, post a new thread in the Open Specifications Forum: Windows Protocols at http://social.msdn.microsoft.com/Forums/en-US/os_windowsprotocols. — Introduction— Create your own certificate for RDP communications— Setting…

0

SMB3 Secure Dialect Negotiation

This blog talks about secure dialect negotiation, one of the new SMB3 security enhancements in Windows Server 2012. Secure dialect negotiation is introduced in SMB3 to protect against man-in-the-middle attempt to downgrade dialect negotiation. The idea is to prevent an eavesdropper from downgrading the initially negotiated dialect and capabilities between the client and the server….


MS-FSU: A look from the Windows interface

  It is not unusual for our group to receive a question regarding Constrained Delegation and Protocol Transition. Even though the document (MS-SFU) does a great job in detailing the specification, not all implementers are familiar with the way in which Windows needs to be configured in order to be able to fulfill the requirements…


Encryption in SMB3

SMB3 will debut in the upcoming version of Windows 8. This is a significant update from the last version (SMB2.1) and a host of new features are being introduced in this release. An important one among them is Encryption. If server and client negotiate SMB3 and the server is configured for encryption, all SMB packets…

0

Hitchhiker’s Guide to Debugging RDP protocols: Part 1 [MS-RDPEUSB]

Hitchhiker’s Guide to Debugging RDP protocols: Part 1 [MS-RDPEUSB]   NOTE: Questions and comments are welcome.  However, please DO NOT post a comment usingthe comment tool at the end of this post. Instead, post a new thread in the Open Specifications Forum: WindowsProtocols at http://social.msdn.microsoft.com/Forums/en-US/os_windowsprotocols.   — Introduction— Development Machine: Building the driver, creating certificates— Server…


MS-PST – How to decode data pages using Permutative Decoding.

The current version of the MS-PST open specification document can be found here: http://msdn.microsoft.com/en-us/library/ff385210(office.12).aspx Introduction The PST is a structured binary file format that contains messages, folders, and attachments. The file structure can be logically separated into 3 layers: the Node Database (NBD) layer, the Lists, Tables, and Properties (LTP) layer, and the Messaging layer….

0