[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IVs, summary of discussion

To: Stephen D Crocker <crocker@tis.com>
Subject: Re: IVs, summary of discussion
From: Steve Kent <kent@BBN.COM>
Date: Tue, 30 Aug 94 10:32:43 -0400
Cc: ipsec@ans.net
In-Reply-To: Your message of Tue, 30 Aug 94 06:31:12 -0400. <9408301031.AA26390@tis.com>

Steve,

	You're right that a TCP checksum error is not viewed as a
security violation per se.  However, detecting an integrity check
violation in IPSP only inducates the presence of an error, and doesn't
say whether it's malicious or benign.  The open question is whether
someone who is concerned about responding differently to (or auditing)
errors is willing to spend the extra overhead in space and the
computational overhead rerquired to incorporate a separate integrity check.

Steve

References:

Re: IVs, summary of discussion

From: Stephen D Crocker <crocker@tis.com>

Prev by Date: Re: IVs, summary of discussion
Next by Date: Re: IVs, summary of discussion
Prev by thread: Re: IVs, summary of discussion
Next by thread: Re: IVs, summary of discussion
Index(es):
- Main
- Thread