[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Bellovin's and Ahar's attacks

To: linehan@watson.ibm.com
Subject: Re: Bellovin's and Ahar's attacks
From: Danny.Nessett@eng.sun.com (Dan Nessett)
Date: Thu, 13 Apr 1995 10:40:59 -0700
Cc: ipsec@ans.net

Mark,

I'm not sure I agree with your assertion that :

>  The destination "owns" the SPI and security association, so it certainly can
>  initiate a new key-management exchange to tell the source to start using a new
>  SPI and new key.

In most models I have seen, the source contacts the destination through a
key management protocol (either directly or using a support daemon on its
machine) to establish an SPI. Once that is completed, there may be no
way (short of something like the DELETE-SA in-band message that Russ Housley
mentioned, which is used in IEEE 802.10c) for the destination to tell the
source to start using a new SPI and key. Use of a DELETE-SA like message
(using ICMP?) hasn't been discussed until very recently. If that is what
you are proposing, then it needs to be discussed in some detail.

Dan

Prev by Date: Re: Bellovin's and Ashar's attacks
Next by Date: Re: Bellovin's and Ashar's attacks
Next by thread: Re: IPv6 Security Last Call Initial Questions
Index(es):
- Main
- Thread