[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: additional attack for multi6 threat draft?

To: "Masataka Ohta" <mohta@necom830.hpcl.titech.ac.jp>
Subject: RE: additional attack for multi6 threat draft?
From: "marcelo bagnulo" <mbagnulo@ing.uc3m.es>
Date: Mon, 8 Dec 2003 14:48:51 +0100
Cc: <multi6@ops.ietf.org>
In-reply-to: <3FD46882.3030104@necom830.hpcl.titech.ac.jp>
Reply-to: <mbagnulo@ing.uc3m.es>

> > Why?
>
> Why?
>
> Can you name some protocol that does not do this?

Take mip and remove the rr check.
You are supposedly talking to the HoA but you are sending packets to the
CoA, so you don't have a RR check of the address that you are supposed to be
talking to i.e. the HoA

Again, RR is fine to verify locators but it is not so great to verify
identifiers.

In multi6 where we may need redirection, you cannot assume that RR will be
available to verify identities

Regards, marcelo

>
> If you can't, guess "why?".
>
> 						Masataka Ohta
>
>

Follow-Ups:
- Re: additional attack for multi6 threat draft?
  - From: Brian E Carpenter <brc@zurich.ibm.com>
- Re: additional attack for multi6 threat draft?
  - From: Masataka Ohta <mohta@necom830.hpcl.titech.ac.jp>

References:
- Re: additional attack for multi6 threat draft?
  - From: Masataka Ohta <mohta@necom830.hpcl.titech.ac.jp>

Prev by Date: RE: Terminology [Re: Some Comments on ID/Loc Separation Proposals]
Next by Date: RE: additional attack for multi6 threat draft?
Previous by thread: RE: additional attack for multi6 threat draft?
Next by thread: Re: additional attack for multi6 threat draft?
Index(es):
- Date
- Thread