[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: security requirement for multi6
Masataka,
Whether a threat is new or old really doesn't matter.
Our objective is to have a complete threat analysis that we can use
to evaluate the security of proposed solutions.
As Kurt says, if you have additional threats that should be added
to Erik's threat analysis draft, please send text.
Brian
Masataka Ohta wrote:
>
> Kurt;
>
> > If you can't describe any new threats I think we can kill this thread.
>
> No, we can't.
>
> This thread is whether threats claimed to be new are really new
> or not.
>
> You miss the point.
>
> I showed that some are not new.
>
> Iljitsch showed a new case, which was expected to be a new
> threat.
>
> I modified the case using current TCP to show that the threat
> is not new.
>
> Note that our security requirement is not more security but
> not-less security.
>
> Masataka Ohta