[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Heartbeats Straw Poll

To: Scott Fanning <sfanning@cisco.com>
Subject: Re: Heartbeats Straw Poll
From: Bill Sommerfeld <sommerfeld@East.Sun.COM>
Date: Mon, 07 Aug 2000 19:09:50 -0400
cc: Derek Atkins <warlord@mit.edu>, sommerfeld@East.Sun.COM, "Scott G. Kelly" <skelly@redcreek.com>, Skip Booth <ebooth@cisco.com>, Paul Hoffman <paul.hoffman@vpnc.org>, ipsec@lists.tislabs.com
In-reply-to: Your message of "Mon, 07 Aug 2000 15:55:21 PDT." <398F3E59.2DBC13D2@cisco.com>
Reply-to: sommerfeld@East.Sun.COM
Sender: owner-ipsec@lists.tislabs.com

> Maybe we need a "death certificate" CA :-) 

Heh.  Actually, one of the ideas I'm kicking around:

If we have the system sign a "birth certificate" when it reboots
(including a reboot time or boot sequence number), we could include
that with a "bad spi" ICMP error and in the negotiation of the IKE SA.

This pushes the burden of reestablishing state to the end which
already thinks it has shared state and has traffic it wants to send.

The system which is receiving packets to unknown spi's merely has to
respond with a simple message which involves no real-time cryptography
(it should, of course, be rate limited).

The system receiving the error message can discard it if it doesn't
correspond to existing state or if it's "old news" (i.e., you get
replay protection); if it's not old news, you can rate-limit how often
you attempt to verify the signature.

I *think* this is relatively resistant to replay and DoS...

					- Bill

Follow-Ups:

Re: Heartbeats Straw Poll

From: "Theodore Y. Ts'o" <tytso@mit.edu>

Re: Heartbeats Straw Poll

From: Michael Richardson <mcr@solidum.com>

References:

Re: Heartbeats Straw Poll

From: Scott Fanning <sfanning@cisco.com>

Prev by Date: Re: Heartbeats Straw Poll
Next by Date: Re: Heartbeats Straw Poll
Prev by thread: Re: Heartbeats Straw Poll
Next by thread: Re: Heartbeats Straw Poll
Index(es):
- Main
- Thread