[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Suggested modification to AES privacy draft

To: ipsec@lists.tislabs.com
Subject: Re: Suggested modification to AES privacy draft
From: daw@mozart.cs.berkeley.edu (David Wagner)
Date: 7 Jan 2002 19:51:11 GMT
Distribution: isaac
Newsgroups: isaac.lists.ipsec
Organization: University of California, Berkeley
References: <200201070124.ADF71964@mira-sjcm-3.cisco.com> <sjm1yh2z0ay.fsf@indiana.mit.edu>
Sender: owner-ipsec@lists.tislabs.com

Derek Atkins  wrote:
>Scott Fluhrer <sfluhrer@cisco.com> writes:
>> - Suppose the attacker (Eve) can send packets through the SA.  This
>>   attacker may be a legitimate user that is not authorized to read
>>   all the traffic that is routed through the SA. [...]
>
>If you make the first assumption, then Eve either:
>	a) lives on the same host as Alice, or
>	b) lives behind the same SG as Alice
>
>In the case of a, Eve clearly has root so can get any keying
>information they want.  [...]

Uhhh... how so?  Your last statement doesn't follow.  Consider a
multi-user system using host keying, as a simple example.  Then if Eve
has a (non-root) account on the system, she can easily get data sent
through the SA, and Fluhrer's attack looks like it will work.  Am
I missing something?

References:
- Suggested modification to AES privacy draft
  - From: Scott Fluhrer <sfluhrer@cisco.com>
- Re: Suggested modification to AES privacy draft
  - From: Derek Atkins <warlord@mit.edu>

Prev by Date: Re: Suggested modification to AES privacy draft
Next by Date: Re: Suggested modification to AES privacy draft
Prev by thread: Re: Suggested modification to AES privacy draft
Next by thread: Re: Suggested modification to AES privacy draft
Index(es):
- Date
- Thread