[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: weak devices



> From: " " <amir@watson.ibm.com>
> Are you concerned about the single MD5 operation req' to
> check against clogging attack? (the many MD5 operations
> are req' for the initiator of the communication so are
> not subject to clogging attacks)
>
yes.

> My belief is that doing an MD5, or a few multiplications as in MKMP and Jim's
> proposals, is something you should
> be able to do even under clogging, since they are
> comparable work to the processing of packets.
>
No.  MD5 takes a lot more CPU than packet processing.


> Photuris cookies provide anti-clogging protection which does not expose
> anonymity. I think this is their plus.
> As usual, we have to consider the tradeoffs and decide.
> It is not black vs white.
>
We have considered the tradeoffs in rather a lot of messages.  IMHO,
Photuris cookies are the best proposal so far!

Bill.Simpson@um.cc.umich.edu