[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Death to AH (was Re: SA identification)

To: daw@cs.berkeley.edu (David Wagner)
Subject: Re: Death to AH (was Re: SA identification)
From: Bill Sommerfeld <sommerfeld@East.Sun.COM>
Date: Fri, 23 Mar 2001 20:22:49 -0500
cc: ipsec@lists.tislabs.com
In-reply-to: Your message of "23 Mar 2001 23:21:48 GMT." <99glqc$4nd$1@abraham.cs.berkeley.edu>
Reply-to: sommerfeld@East.Sun.COM
Sender: owner-ipsec@lists.tislabs.com

> - Multicast where multiple sources share the same SA:
>     If so, the AH MAC doesn't help, because each of the sources 
>     can spoof each other.

I'm worried about someone who is not a member of the multicast group
(i.e., not in posession of the SA's key) substituting a different
source address and thus subverting a communication between members of
the group.

> In addition, all receivers who can verify the correctness of the AH
> MAC can forge valid MAC's, so I don't see how the MAC over the IP source
> address is buying you anything.  Where did I go wrong?

It protects against forgery/tampering by parties not in posession of
the SA's key.

					- Bill

References:

Re: Death to AH (was Re: SA identification)

From: daw@mozart.cs.berkeley.edu (David Wagner)

Prev by Date: Re: Death to AH (was Re: SA identification)
Next by Date: Re: Death to AH (was Re: SA identification)
Prev by thread: Re: Death to AH (was Re: SA identification)
Next by thread: Re: Death to AH (was Re: SA identification)
Index(es):
- Main
- Thread