[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: src addr/SPI coupling
> Are (b) and (c) really a problem? The entropy provided by the SPIs is only
> needed to provide distinct keymat for multiple SAs in the same packet,
> right? A counter in the key derivation would serve the same purpose.
One reason for random SPI's is to make it harder for an off-path
attacker to flood you with with packets with valid spi's which must be
decrypted before they can be discarded.
- Bill
References: