RE: Minor Security issues regarding Kb rekeying

["Hilarie K. Orman" <ho@earth.hpc.org>]

It's Bob's problem if he wants to keep accepting data from an old SA
(and if Eve has had time to break the key, the SA is surely old).

I've become concerned about a slightly different matter with rekeying.
Suppose Eve records and jams the Alice-Bob line for the duration of an
SA use on a TCP connection ... she doesn't like the key.  Bob and
Alice change to a new SA, according to their preferred schedule.  They
retransmit all the previous information in a new key.  Eve can keep
doing this until Alice and Bob change to a key she prefers.  This
defeats some of the objectives of anti-replay and of using rekeying
at all.

It's a leap of faith to say that Eve could be in position to prefer
some keys over others, so this is largely a gedanken concern, but
still ...

Hilarie

---

Follow-Ups:

• Re: Minor Security issues regarding Kb rekeying
• From: Bill Sommerfeld <sommerfeld@orchard.arlington.ma.us>

References:

• RE: Minor Security issues regarding Kb rekeying
• From: Tim Jenkins <tjenkins@TimeStep.com>

---

• Prev by Date: Re: SA bundles, multiple tunnels?
• Next by Date: IKE stuff, was Re: Agenda stuff
• Prev by thread: RE: Minor Security issues regarding Kb rekeying
• Next by thread: Re: Minor Security issues regarding Kb rekeying
• Index(es):
  • Main
  • Thread