[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006

To: Francis Dupont <Francis.Dupont@point6.net>
Subject: Re: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006
From: Iljitsch van Beijnum <iljitsch@muada.com>
Date: Sun, 23 Jul 2006 17:39:31 +0200
Cc: shim6-wg <shim6@psg.com>
In-reply-to: <200607231520.k6NFKgKL054874@givry.rennes.enst-bretagne.fr>
References: <200607231520.k6NFKgKL054874@givry.rennes.enst-bretagne.fr>

On 23-jul-2006, at 17:20, Francis Dupont wrote:

=> HBAs are weaker than CGAs (which provide ownership using thesignature),
and than standard strong authentication (using some kind of PKI).
Without the hash extension IMHO they would be too weak,


Too weak for what?

I would be interested to learn what kind of attacks that could becarried out on the internet as we know it today you feel HBA could bevulnerable to.

Follow-Ups:
- Notes from the IETF 66 WG Meeting
  - From: Geoff Huston <gih@apnic.net>

Prev by Date: Re: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006
Next by Date: Notes from the IETF 66 WG Meeting
Previous by thread: Re: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006
Next by thread: Notes from the IETF 66 WG Meeting
Index(es):
- Date
- Thread