[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Secure legacy authentication for IKEv2

To: "Derrell Piper" <ddp@electric-loft.org>, "William Dixon" <wdixon@windows.microsoft.com>
Subject: RE: Secure legacy authentication for IKEv2
From: "Bernard Aboba" <bernarda@windows.microsoft.com>
Date: Fri, 20 Dec 2002 14:48:41 -0800
Cc: "Valery Smyslov" <svan@trustworks.com>, <ipsec@lists.tislabs.com>, "Paul Hoffman / VPNC" <paul.hoffman@vpnc.org>
Sender: owner-ipsec@lists.tislabs.com
Thread-Index: AcKodF6FC2H85FomSAu2EUfFjYGm3AABRjOw
Thread-Topic: Secure legacy authentication for IKEv2

Isn't the current version of SLA vulnerable to the same attack? I don't see anywhere in the spec where a "binding" is carried out. In fact, this would not be possible with the methods you're supporting, because none of them generate keys.

Follow-Ups:
- Re: Secure legacy authentication for IKEv2
  - From: Derrell Piper <ddp@electric-loft.org>

Prev by Date: I-D ACTION:draft-ietf-ipsec-udp-encaps-05.txt
Next by Date: Re: Secure legacy authentication for IKEv2
Prev by thread: RE: Secure legacy authentication for IKEv2
Next by thread: Re: Secure legacy authentication for IKEv2
Index(es):
- Date
- Thread