[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: flooding attacks and threats doc (was Re: Comments on draft-bagnulo-multi6dt-hba-00.txt

To: jari.arkko@piuha.net
Subject: Re: flooding attacks and threats doc (was Re: Comments on draft-bagnulo-multi6dt-hba-00.txt
From: Erik Nordmark <erik.nordmark@sun.com>
Date: Fri, 19 Nov 2004 11:10:44 -0800
Cc: Brian E Carpenter <brc@zurich.ibm.com>, multi6@ops.ietf.org
In-reply-to: <419C7B67.8090703@piuha.net>
References: <003801c4cc04$a74ddd50$861167c0@adithya> <003f01c4cc07$ce2587e0$861167c0@adithya> <419A5475.2000901@piuha.net> <009701c4cc21$ff7ce9e0$861167c0@adithya> <42A84E2B-38B3-11D9-AEEC-000D93ACD0FE@it> <419B91A1.5010505@sun.com> <419C7A40.90400@zurich.ibm.com> <419C7B67.8090703@piuha.net>
User-agent: Mozilla Thunderbird 0.8 (X11/20040916)

Since nobody suggested text, I've added the second paragraph below in section 4.3: <existing paragraph> An attacker can use the ability to perform redirection to cause overload on an unrelated third party. For instance, if A and B are communicating then the attacker X might be able to convince A to send the packets intended for B to some third node C. While this might seem harmless at first, since X could just flood C with packets directly, there are a few aspects of these attacks that cause concern.

<added paragraph>
Such an attack might be against the resources of a particular host i.e., C
in the example above, or it might be against the network infrastructure
towards a particular IP address prefix, by overloading the routers or links
even though there is no host at the address being targeted.

  Erik

Follow-Ups:
- Re: flooding attacks and threats doc (was Re: Comments on draft-bagnulo-multi6dt-hba-00.txt
  - From: Jari Arkko <jari.arkko@piuha.net>
- Re: flooding attacks and threats doc (was Re: Comments on draft-bagnulo-multi6dt-hba-00.txt
  - From: marcelo bagnulo braun <marcelo@it.uc3m.es>

References:
- Re: Comments on draft-bagnulo-multi6dt-hba-00.txt
  - From: "Mohan Parthasarathy" <mohanp@sbcglobal.net>
- Re: Comments on draft-bagnulo-multi6dt-hba-00.txt
  - From: Jari Arkko <jari.arkko@piuha.net>
- Re: Comments on draft-bagnulo-multi6dt-hba-00.txt
  - From: "Mohan Parthasarathy" <mohanp@sbcglobal.net>
- flooding attacks and threats doc (was Re: Comments on draft-bagnulo-multi6dt-hba-00.txt
  - From: marcelo bagnulo braun <marcelo@it.uc3m.es>
- Re: flooding attacks and threats doc (was Re: Comments on draft-bagnulo-multi6dt-hba-00.txt
  - From: Erik Nordmark <erik.nordmark@sun.com>
- Re: flooding attacks and threats doc (was Re: Comments on draft-bagnulo-multi6dt-hba-00.txt
  - From: Brian E Carpenter <brc@zurich.ibm.com>
- Re: flooding attacks and threats doc (was Re: Comments on draft-bagnulo-multi6dt-hba-00.txt
  - From: Jari Arkko <jari.arkko@piuha.net>

Prev by Date: Re: Comments on multi6dt documents
Next by Date: Re: Comments on multi6dt documents
Previous by thread: Re: flooding attacks and threats doc (was Re: Comments on draft-bagnulo-multi6dt-hba-00.txt
Next by thread: Re: flooding attacks and threats doc (was Re: Comments on draft-bagnulo-multi6dt-hba-00.txt
Index(es):
- Date
- Thread