[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

new I-D

To: ipsec@lists.tislabs.com
Subject: new I-D
From: Francis Dupont <Francis.Dupont@enst-bretagne.fr>
Date: Sun, 23 Jun 2002 19:29:58 +0200
Sender: owner-ipsec@lists.tislabs.com

I've just submitted a new I-D about the "transient pseudo-NAT" attack
which was discovered for mobility signaling but applies to IKE with
a "NAT traversal" facility. My plan is to revise my IPsec vs. Mobile IPv6
I-D and to add a section about IKEv2 with:
 - an optional protection for transport headers (i.e., real source
   and destination addresses)
 - a discussion about to use or not addresses in identities
   (cf. the "addresses and IKEv2" thread)
 - a generalized cookie request mechanism (return routability check)
 - etc.

Francis.Dupont@enst-bretagne.fr

Prev by Date: Re: SOI QUESTIONS: 2.3 Perfect forward secrecy (PFS)
Next by Date: RE: SOI QUESTIONS: 2.6 Formal proofs of security
Prev by thread: RE: SOI QUESTION: 3.3 Size of messages
Next by thread: Call for Participation - IEEE International Conference on Networks 2002
Index(es):
- Date
- Thread