[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Crypto-agility requirement and draft-zorn-radius-encattr/draft-zorn-radius-keywrap

To: Stefan Winter <stefan.winter@restena.lu>
Subject: Re: Crypto-agility requirement and draft-zorn-radius-encattr/draft-zorn-radius-keywrap
From: Alan DeKok <aland@deployingradius.com>
Date: Fri, 03 Aug 2007 08:30:27 -0400
Cc: Bernard Aboba <bernard_aboba@hotmail.com>, radiusext@ops.ietf.org
In-reply-to: <200708020839.08754.stefan.winter@restena.lu>
References: <BAY117-F214EBCB44DC83ED923C50893E90@phx.gbl> <46B1661A.1090805@nitros9.org> <200708020839.08754.stefan.winter@restena.lu>
User-agent: Thunderbird 1.5.0.12 (X11/20070604)

Stefan Winter wrote:
>>   Yes.  The failure cases for DTLS negotiation are:
>>
>>   a) server doesn't support DTLS (and thinks it's a bad RADIUS packet)
>>   b) server is slow / down
>>   c) attacker is faking (a) or (b)
> 
> d) the network is unreliable and drops some negotiation datagrams?

  Which is indistinguishable from (b).

  Alan DeKok.

--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>

References:
- Re: Crypto-agility requirement and draft-zorn-radius-encattr/draft-zorn-radius-keywrap
  - From: "Bernard Aboba" <bernard_aboba@hotmail.com>
- Re: Crypto-agility requirement and draft-zorn-radius-encattr/draft-zorn-radius-keywrap
  - From: Alan DeKok <aland@nitros9.org>
- Re: Crypto-agility requirement and draft-zorn-radius-encattr/draft-zorn-radius-keywrap
  - From: Stefan Winter <stefan.winter@restena.lu>

Prev by Date: RE: Continued discussion of RADIUS Crypto-Agility
Next by Date: Request for Review: "Issues and Fixes" changes
Previous by thread: Re: Crypto-agility requirement and draft-zorn-radius-encattr/draft-zorn-radius-keywrap
Next by thread: Re: Crypto-agility requirement and draft-zorn-radius-encattr/draft-zorn-radius-keywrap
Index(es):
- Date
- Thread