[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: multi6-threats-00.txt vs. MIPv6 - different strength verifications?

To: Iljitsch van Beijnum <iljitsch@muada.com>
Subject: Re: multi6-threats-00.txt vs. MIPv6 - different strength verifications?
From: Erik Nordmark <Erik.Nordmark@sun.com>
Date: Wed, 5 Nov 2003 12:54:55 +0100 (CET)
Cc: Erik Nordmark <Erik.Nordmark@sun.com>, multi6@ops.ietf.org
In-reply-to: "Your message with ID" <640139A8-0F85-11D8-94BB-00039388672E@muada.com>
Reply-to: Erik Nordmark <Erik.Nordmark@sun.com>

> I think we have to assume that DNSSEC won't be used.

We (unfortunately) can't rely on it being deployed, but I think we need
to understand how both performance and security of a multihoming solution
changes when/where DNSsec gets deployed.

> Good point. Still, I don't think a clear text cookie isn't the best 
> tradeoff here. Doing one or two MD5 hashes over a few dozen bytes is 
> enough to get rid of attackers who can sniff, but not block traffic.

Agreed.

> My point is that trying to prevent man in the middle attacks doesn't 
> make any sense for what we're trying to do here, but making our stuff 
> such that someone with just sniffing and packet injection capability 
> but who can't block the real traffic, is helpful.

I agree. We should put some discussion about this in the threats draft.

  Erik

References:
- Re: multi6-threats-00.txt vs. MIPv6 - different strength verifications?
  - From: Iljitsch van Beijnum <iljitsch@muada.com>

Prev by Date: RE: survivability, rewriting
Next by Date: Re: survivability, rewriting
Previous by thread: Re: multi6-threats-00.txt vs. MIPv6 - different strength verifications?
Index(es):
- Date
- Thread