[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

new draft of my paper

To: ipsec@TIS.COM
Subject: new draft of my paper
From: Steve Bellovin <smb@research.att.com>
Date: Mon, 25 Mar 1996 22:11:21 -0500
Sender: ipsec-request@neptune.tis.com

I normally wouldn't announce a new version of a draft paper this
soon; however, David Wagner has found a fascinating new attack
called the ``short block'' attack.  It's described in Section 3.8.
The attack can recover read most user-to-host traffic on a large
class of telnet sessions (though not all), using 2^8 known plaintext
blocks and a simple active attack.  This attack can be defeated if AH
is used outside of ESP, protecting the integrity of the encrypted
message (i.e., IP-AH-ESP-TCP is safe); using AH inside of ESP is not
safe.

The paper is in ftp://ftp.research.att.com/dist/smb/badesp.ps

Follow-Ups:

Re: new draft of my paper

From: David Wagner <daw@cs.berkeley.edu>

Prev by Date: Re: Request for Implementation Status
Next by Date: Re: new draft of my paper
Prev by thread: ADMIN: Straw Poll Results on Key Mgmt
Next by thread: Re: new draft of my paper
Index(es):
- Main
- Thread