[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: ISAKMP DELETE payload

To: mamros@ftp.com
Subject: Re: ISAKMP DELETE payload
From: Daniel Harkins <dharkins@cisco.com>
Date: Wed, 04 Dec 1996 09:06:01 -0800
Cc: pau@watson.ibm.com, wdm@epoch.ncsc.mil, ipsec@tis.com
In-Reply-To: Your message of "Wed, 04 Dec 1996 11:38:58 EST." <199612041638.LAA23901@MAILSERV-2HIGH.FTP.COM>
Sender: owner-ipsec@ex.tis.com

  Shawn,

(responding to Pau-Chen)
> >  I think this is an ISAKMP job. IMHO, Oakley is a Key Exchange Protocol
> >  but deleting an SA is part of SA management, not key exchange. From an
> >  operational point of view, the SPI's in the msg header will identify the
> >  ISAKMP SA, which leads to the right hash algorithm and key. So no
> >  KEP-specific details are needed here. After all, the DELETE and HASH
> >  payloads are defined by ISAKMP, not OAKLEY.
> 
> On the one hand, I understand your viewpoint.  On the other, though,
> one cannot establish an ISAKMP SA from the details of the ISAKMP draft
> alone.  One needs a DOI definition, and specific transforms need to
> be proposed by the initiator for the ISAKMP SA; those transforms are in
> turn defined by the DOI.

And ISAKMP does not specify the key exchange. There must be something
used to protect this message; ISAKMP does not specify how to generate
this thing but ISAKMP/Oakley does. The technique used to protect Quick
Mode can easily be used to protect Informational exchanges.

> It also isn't clear that one would always want to use a HASH payload
> to protect the DELETE.  A DOI definition could just as well mandate
> that the Informational exchange must be encrypted, rather than hashed.

It *is* encrypted. Informational exchanges must be sent under the protection 
of an existing ISAKMP SA. The issue is authenticating the message as well.
Steve Bellovin (in a paper whose title I cannot remember and I don't have 
on hand right now since I'm at home) noted some attacks that can be made
on messages that are encrypted but not authenticated. We must protect 
ourselves against this sort of attack.

> Also, keep in mind that one may be using the Informational exchange to
> delete not the ISAKMP SA, but rather some underlying protocol SA, such
> as an IPSEC SA.  By definition, the details of those protocol SAs are
> defined by the DOI, and not in the base ISAKMP document.

A good point.

  regards,

  Dan.

References:

Re: ISAKMP DELETE payload

From: mamros@ftp.com (Shawn Mamros)

Prev by Date: Re[2]: AH (without ESP) on a secure gateway
Next by Date: Re: AH (without ESP) on a secure gateway
Prev by thread: Re: ISAKMP DELETE payload
Next by thread: Re: ISAKMP DELETE payload
Index(es):
- Main
- Thread