We have learnt a few protocols in this module like HTTP, FTP, SMTP. Search for any other well-known protocols and answer the following:
- Full form
- Port number
- What it does / Functionality
- Any interesting news articles about them, like a security breach or vulnerabilities
- Full Form – Internet Group Management Protocol (IGMP)
- Port Number – 465 (UDP)
- Functionality – IGMP is a protocol that allows for communication and establishes multicast groups. Multicast allows for groups of users to receive requested data at the same time on an IP network. The protocol is connectionless, so it’s used for situations that require fast responses. IGMP focuses on maintaining communication and quick data responses in groups, as well as managing data going to where it needs to.
- Interesting News – This post by the CQR Company goes in depth with not only the vulnerabilities of IGMP but also mitigation strategies for improving the protocol. Some of the vulnerabilities are IGMP flooding, spoofing, the multiple versions of IGMP, and a lack of encryption. A few of the mitigation strategies for IGMP are enabling snooping, firewalls, multicast rate limiting, and using the newest version of IGMP which is version 3 or IGMPv3. The article by Cloudflare also provides useful general information on IGMP and multicast.
https://cqr.company/wiki/protocols/internet-group-management-protocol/
https://www.cloudflare.com/learning/network-layer/what-is-igmp/