[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: CRACK

To: Dan Harkins <dharkins@network-alchemy.com>
Subject: Re: CRACK
From: Yael Dayan <yael@radguard.com>
Date: Fri, 22 Oct 1999 17:47:16 +0200
Cc: ipsec@lists.tislabs.com, ietf-ipsra@vpnc.org
Organization: Radguard
References: <199910211619.JAA15266@potassium.network-alchemy.com>
Sender: owner-ipsec@lists.tislabs.com

Dan,
I think there is some wording missing in the security considerations
section.
I am referring to vulnerabilities to denial of service attacks.
The gateway is required to answer with KE and SIG prior to any knowledge
of who the initiator is.  (The SIG cannot be prepared ahead of time.).
An attacker only needs to know the gateway's address  to launch an attack
that requires very little effort on his behalf.

Yael

Follow-Ups:

Re: CRACK

From: Kanta Matsuura <kanta@hideki.iis.u-tokyo.ac.jp>

Re: CRACK

From: Ari Huttunen <Ari.Huttunen@datafellows.com>

References:

CRACK

From: Dan Harkins <dharkins@network-alchemy.com>

Prev by Date: Re: CRACK
Next by Date: Re: CRACK
Prev by thread: Re: CRACK
Next by thread: Re: CRACK
Index(es):
- Main
- Thread