[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: ISAKMP cookies

To: ho@earth.hpc.org (Hilarie Orman)
Subject: Re: ISAKMP cookies
From: "Angelos D. Keromytis" <angelos@dsl.cis.upenn.edu>
Date: Mon, 19 May 1997 13:13:42 +0100
cc: wdm@tycho.ncsc.mil, mss@tycho.ncsc.mil, sjt@epoch.ncsc.mil, mjs@terisa.com, ipsec@tis.com
In-reply-to: Your message of "Mon, 19 May 1997 10:57:14 EDT." <199705191457.KAA21933@earth.hpc.org>
Sender: owner-ipsec@ex.tis.com

In message <199705191457.KAA21933@earth.hpc.org>, Hilarie Orman writes:
>There have always been two possible aspects to anti-clogging (or
>denial of service prevention).  One is to defer allocation of space,
>the other is to defer computation.  I'm happy to have the term refer
>to either one, insofar as the protocol assists either or both.

I'm simply puzzled why we moved away from the Photuris model of
cookies; as you remember, cookies there prevented both problems. And
if you can't do any protocol negotiation (or even worse, if your
machine crawls to a halt), it doesn't matter if the reason is memory
exhaustion or too much computation. Especially since it will be
trivial for anyone, anywhere, to make any ISAKMP daemon run out of
memory as it stands now.
Cheers,
-Angelos

PS. Most of the over-the-network attacks i've seen in the last two
years cause the target system to run out of memory (usually run out of
memory dedicated for some service). Let's not replicate those protocol
failures here.

References:

Re: ISAKMP cookies

From: ho@earth.hpc.org (Hilarie Orman)

Prev by Date: Re: Clarification
Next by Date: Re: ISAKMP cookies
Prev by thread: Re: ISAKMP cookies
Next by thread: Re: Clarification
Index(es):
- Main
- Thread