[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Comments on draft-ietf-ipsec-ike-01.txt

To: ipsec@lists.tislabs.com
Subject: Re: Comments on draft-ietf-ipsec-ike-01.txt
From: Jianying Zhou <jyzhou@krdl.org.sg>
Date: Tue, 22 Jun 1999 17:27:25 +0800 (SGT)
cc: Jianying Zhou <jyzhou@krdl.org.sg>
In-Reply-To: <199906142336.QAA20130@potassium.network-alchemy.com>
Sender: owner-ipsec@lists.tislabs.com

There was a security flaw in RFC 2409. 

When SAi_b is used in HASH_I and HASH_R, an attack is possible so that 
at the end of Phase 1 negotiation, the SA being negotiated may not be
authenticated. (The problem also exists in the new draft.)

To avoid the attack, simply replace SAi_b with SAr_b. (The full paper
is available by request.)

Jianying
---------------------------------------------------------------------
Dr. Jianying Zhou        | Tel:   +65-8742585
Kent Ridge Digital Labs  | Fax:   +65-7744990
21 Heng Mui Keng Terrace | Email: jyzhou@krdl.org.sg
Singapore 119613         | WWW:   http://homex.s1.net.sg/user/jyzhou/
---------------------------------------------------------------------

Follow-Ups:

Re: Comments on draft-ietf-ipsec-ike-01.txt

From: Tero Kivinen <kivinen@ssh.fi>

Re: Comments on draft-ietf-ipsec-ike-01.txt

From: Dan Harkins <dharkins@network-alchemy.com>

References:

Re: Comments on draft-ietf-ipsec-ike-01.txt (long)

From: Dan Harkins <dharkins@network-alchemy.com>

Prev by Date: Re: draft-ietf-ipsec-notifymsg-00.txt
Next by Date: RE: Dangling SA Summary (final comments???)
Prev by thread: Re: Comments on draft-ietf-ipsec-ike-01.txt (long)
Next by thread: Re: Comments on draft-ietf-ipsec-ike-01.txt
Index(es):
- Main
- Thread