[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Bellovin's and Ahar's attacks

To: pau@watson.ibm.com (Pau-Chen Cheng)
Subject: Re: Bellovin's and Ahar's attacks
From: Derek Atkins <warlord@MIT.EDU>
Date: Wed, 12 Apr 1995 18:54:57 EDT
Cc: ipsec@ans.net
In-Reply-To: Your message of "Wed, 12 Apr 1995 18:20:47 CDT." <199504122223.AA11372@interlock.ans.net>

>  4. When receiving a UDP message, examine the time stamp, discard any message
>     that is too old (e.g., more than twice the network latency).

How can you make an arbitrary decision like this?  What happens if
there is a network burp on the nice fiber I use, and my packet gets
routed across a satellite link instead?  Are you proposing that my
packet be ignored because it took an alternate route?

I thought that alternate routing was one of the features of TCP/IP,
and you're proposing we throw that away?  I would hope not.

Perhaps instead of using network latency, you use some other measure
to time out a packet.  You could use some arbitrary time measurement
like 5 minutes, or you could use some other method.  But just using
the network latency, which can be very dynamic over congested or
long-distance paths, is probably a sub-optimal solution.

-derek

         Derek Atkins, SB '93 MIT EE, G MIT Media Laboratory
       Member, MIT Student Information Processing Board (SIPB)
    Home page: http://www.mit.edu:8001/people/warlord/home_page.html
       warlord@MIT.EDU    PP-ASEL     N1NWH    PGP key available

Follow-Ups:

Re: Bellovin's and Ahar's attacks

From: uri@watson.ibm.com

References:

Re: Bellovin's and Ahar's attacks

From: pau@watson.ibm.com (Pau-Chen Cheng)

Prev by Date: Re: Bellovin's and Ashar's attacks
Next by Date: Re: Bellovin's and Ahar's attacks
Next by thread: Re: IPv6 Security Last Call Initial Questions
Index(es):
- Main
- Thread