[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Bellovin's and Ahar's attacks

To: pau@watson.ibm.com (Pau-Chen Cheng)
Subject: Re: Bellovin's and Ahar's attacks
From: "Perry E. Metzger" <perry@imsi.com>
Date: Wed, 12 Apr 1995 17:06:44 -0400
Cc: ipsec@ans.net
In-Reply-To: Your message of "Wed, 12 Apr 1995 16:20:55 CDT." <199504122023.AA37091@interlock.ans.net>
Reply-To: perry@imsi.com


Pau-Chen Cheng says:
> What I don't understand is how to do the same thing for UDP, or any
> state-less protocol. How does a receiver knows which key to use when
> sending a response to a received message if the receiver is talking to
> multiple parties through the same port ?

I know several ways to do it, but I'm not sure yet what the "right
thing" is. I've been punting on it until I get a chance to play with
them. My notion at the moment is to possibly extend the sendmsg and
rcvmsg calls somehow -- I already have userland dealing with SAs a
small bit -- but I find this very ugly although it will work. I'm
holding off, as I said, until I get more of a chance to explore this
in detail. I'm not a believer in defining APIs in the absense of
experience with them.

Perry

References:

Re: Bellovin's and Ahar's attacks

From: pau@watson.ibm.com (Pau-Chen Cheng)

Prev by Date: I-D ACTION:draft-karn-photuris-01.txt
Next by Date: Re: Bellovin's and Ahar's attacks
Next by thread: Re: IPv6 Security Last Call Initial Questions
Index(es):
- Main
- Thread