[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Future ISAKMP Denial of Service Vulnerablity Needs Addressing

To: ipsec@lists.tislabs.com
Subject: Re: Future ISAKMP Denial of Service Vulnerablity Needs Addressing
From: Michael Richardson <mcr@solidum.com>
Date: Tue, 29 Feb 2000 14:27:04 -0500
In-Reply-To: Your message of "Tue, 29 Feb 2000 17:13:38 GMT." <1FD60AE4DB6CD2118C420008C74C27B81D051B@baltimore.com>
Sender: owner-ipsec@lists.tislabs.com


>>>>> "Chris" == Chris Trobridge <CTrobridge@baltimore.com> writes:
    Chris> It won't help if we all start using IPSEC in place of SSL to talk to web
    Chris> servers (is this ever likely?), but it would help with VPNs.

  But, please note that HTTPS currently has no protection against denial
of service attacks. Even ISAKMP as it is now, before TCP would provide a huge
increase in resistance against DOS.

   :!mcr!:            |  Solidum Systems Corporation, http://www.solidum.com
   Michael Richardson |For a better connected world,where data flows faster<tm>
 Personal: http://www.sandelman.ottawa.on.ca/People/Michael_Richardson/Bio.html
	mailto:mcr@sandelman.ottawa.on.ca	mailto:mcr@solidum.com

References:

RE: Future ISAKMP Denial of Service Vulnerablity Needs Addressing

From: Chris Trobridge <CTrobridge@baltimore.com>

Prev by Date: RE: Future ISAKMP Denial of Service Vulnerablity Needs Addressing
Next by Date: RE: Use of Encryption in Heartbeat Packets
Prev by thread: RE: Future ISAKMP Denial of Service Vulnerablity Needs Addressing
Next by thread: Re: Future ISAKMP Denial of Service Vulnerablity Needs Addressing
Index(es):
- Main
- Thread