[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006

To: Francis Dupont <Francis.Dupont@point6.net>
Subject: Re: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006
From: Iljitsch van Beijnum <iljitsch@muada.com>
Date: Mon, 24 Jul 2006 11:26:43 +0200
Cc: shim6-wg <shim6@psg.com>
In-reply-to: <200607240802.k6O82hbS057364@givry.rennes.enst-bretagne.fr>
References: <200607240802.k6O82hbS057364@givry.rennes.enst-bretagne.fr>

On 24-jul-2006, at 10:02, Francis Dupont wrote:

   Too weak for what?

=> direct attack against the hash (the O(2^56)).

Hm, even if you build a machine that can test 1000 hashes in parallelevery microsecond, it will take you more than a year on average tofind a hash collision. And when you've found one, you get to redirecttraffic, which is only a denial of service attack. If you have enoughmoney to build such a hash breaking machine and enough patience towait for it to work, I'm sure other, more dangerous avenues of attackare also open to you...

An interesting issue is that after some 10 million hosts start usingHBA, there is a 50% chance of two hosts using the same hash, i.e.,sort of a distributed birthday attack.

Follow-Ups:
- Re: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006
  - From: Jari Arkko <jari.arkko@piuha.net>
- RE: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006
  - From: "Christian Huitema" <huitema@windows.microsoft.com>

Prev by Date: Re: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006
Next by Date: RE: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006
Previous by thread: Re: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006
Next by thread: RE: CGA Use with HBA in Shim6 IETF Meeting July 10, 2006
Index(es):
- Date
- Thread