Is it redundant to add an extra checksum or CRC in TCP packets to make it possible for the receiver verify whether the data is same with the sent one?

networking tcpip tcp

The SHA checksum is used to verify integrity, i.e. that the data was not intentionally modified, while the CRC is meant to protect against bit errors.

The CRC can not be used for tamper resistance, because it can be trivially recomputed after modifying the data.

The TCP checksum is even simpler than a CRC, so its presence is more of a formality these days. Most link level protocols have their own checksums or error correcting codes, so bit errors have become unlikely, but they used to be common with RS-232 links.

The SHA checksum alone does not provide protection, because it also needs to be transmitted, but if you can establish a secure channel for the checksum, it is possible to use an insecure channel for the bulk data and then verify it against the SHA checksum, and be reasonably sure that the data has not been tampered with.

Related

Apache config: allow iFrames only for a specific directory
Where are Tomcat 9 sessions stored in Ubuntu 18?
GCP User added in IAM cannot see project
Windows Server 2019 2 node failover cluster offline after some reboot
High availability VM Windows server [closed]
SMTP postfix mail bounced host or domain name not found
Different drivers/support for 10GbE SFP+ copper versus fiber?
IPv6 network fails on Linux router
apache2.4 reverse proxy to nginx gitlab server [closed]
Remove index.php from URL Apache 2.4
Can I assign domain name to an ec2 instance? [closed]
Can I use both Thunderbolt ports to get higher resolution/framerate