[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: identity persistence and comparison issues

To: Erik Nordmark <Erik.Nordmark@sun.com>
Subject: Re: identity persistence and comparison issues
From: Kurt Erik Lindqvist <kurtis@kurtis.pp.se>
Date: Thu, 1 Jul 2004 10:10:58 +0200
Cc: Multi6 <multi6@ops.ietf.org>, Iljitsch van Beijnum <iljitsch@muada.com>
In-reply-to: <Roam.SIMC.2.0.6.1088426716.5609.nordmark@bebop.france>
References: <Roam.SIMC.2.0.6.1088426716.5609.nordmark@bebop.france>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


On 2004-06-28, at 14.45, Erik Nordmark wrote:

>> What if we just always show the application a long-lived identifier,
>> even though when it sets up a session we use ephemeral identifiers?
>
> That's part of what Jukka and I were pondering a bit.
> I think it is very interesting; just need to make sure that
> the additional local mapping on the host from the long-lived to
> the ephemeral doesn't introduce attacks that we don't know how to
> handle.

Without having thought this through very much I have a few questions on 
this,

As you would need to keep state that would be very much like a cache. 
Would you not open your self up for "cache-poisoning" very much like 
todays DNS?

- - kurtis -

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0.3

iQA/AwUBQOPHFaarNKXTPFCVEQLEqACfX3JL9KkJQkiflYwE8rosfUE8otQAoLuh
CIRhucKydadbJeOfgWlNAK/D
=fNTb
-----END PGP SIGNATURE-----

Follow-Ups:
- Re: identity persistence and comparison issues
  - From: Erik Nordmark <Erik.Nordmark@sun.com>

References:
- Re: identity persistence and comparison issues
  - From: Erik Nordmark <Erik.Nordmark@sun.com>

Prev by Date: Re: about Wedgelayer 3.5 / Fat IP approaches
Next by Date: Re: Court Says Customers May Take IPs Away From ISP - profound impact on RIR's as well?
Previous by thread: Re: Engaging apps folks
Next by thread: Re: identity persistence and comparison issues
Index(es):
- Date
- Thread