IT Baseline Protection Manual - The Information Warfare Site

Threats Catalogue Deliberate Acts Remarks
____________________________________________________________________ .........................................
T 5.25 Masquerading
Masquerading is used by an aggressor to assume a false identity. Thus he can
obtain a false identity by spying out the user ID and password (cf. T 5.9 -
Unauthorised use of IT systems) or by manipulating the originator field of a
message or the I/O address within the network. Other ways of obtaining a
false identity are to manipulate the calling number display (Calling Line
Identification Presentation) on an ISDN line or the originator identifier of a
fax originator (CSID - Call Subscriber ID)
A user who believes he is communicating with a different person can be easily
induced to disclose sensitive information.
An aggressor can also use masquerading to try to connect to an existing
connection without having to authenticate himself, as this step has already
been taken by the original participants in the communication.
____________________________________________________________________ .........................................
IT-Baseline Protection Manual: Oktober 2000
Manipulation of the
originator field or I/O
address
Intruding on an existing
connection