[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Minor Security issues regarding Kb rekeying

To: Tamir Zegman <zegman@checkpoint.com>, ipsec@tis.com
Subject: RE: Minor Security issues regarding Kb rekeying
From: Tim Jenkins <tjenkins@TimeStep.com>
Date: Wed, 2 Dec 1998 12:40:17 -0500
Sender: owner-ipsec@ex.tis.com



---
Tim Jenkins                       TimeStep Corporation
tjenkins@timestep.com          http://www.timestep.com
(613) 599-3610 x4304               Fax: (613) 599-3617


> -----Original Message-----
> From: Tamir Zegman [mailto:zegman@checkpoint.com]
> Sent: Wednesday, December 02, 1998 12:07 PM
> To: ipsec@tis.com
> Subject: Minor Security issues regarding Kb rekeying
> 
> 

<snip>

> For IPSEC SAs:
> Suppose an IPSEC SA with a lifetime of 1000Kb was established between
> two peer.
> Alice encrypts 1000Kb of data using this SA but only 900Kb of 
> encrypted
> data reach Bob.
> Eve has now 1000Kb of encrypted data and can after cracking the SAs
> keys, transmit data to Bob who
> thinks this SA is still valid.
> 

Not if Alice sends a required and reliable delete indication to Bob.
Oh, wait, we don't have one!!

See my re-keying document for a proposal for a delete mode that can
help reduce problems like this.

Follow-Ups:

RE: Minor Security issues regarding Kb rekeying

From: "Hilarie K. Orman" <ho@earth.hpc.org>

Re: Minor Security issues regarding Kb rekeying

From: Tamir Zegman <zegman@checkpoint.com>

Prev by Date: RE: IKE signature payload
Next by Date: Re: Use IPSEC as SSH replacement
Prev by thread: Re: Minor Security issues regarding Kb rekeying
Next by thread: RE: Minor Security issues regarding Kb rekeying
Index(es):
- Main
- Thread