I-D ACTION:draft-etienne-ripv2-auth-flaws-00.txt
Internet-Drafts@ietf.org Wed, 02 May 2001 12:34 UTC
Received: from loki.ietf.org (loki [10.27.2.29]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id IAA07952; Wed, 2 May 2001 08:34:26 -0400 (EDT)
Received: (from adm@localhost) by loki.ietf.org (8.9.1b+Sun/8.9.1) id IAA25978 for ietf-123-outbound.10@ietf.org; Wed, 2 May 2001 08:25:01 -0400 (EDT)
Received: from ietf.org (odin.ietf.org [10.27.2.28]) by loki.ietf.org (8.9.1b+Sun/8.9.1) with ESMTP id HAA25646 for <all-ietf@loki.ietf.org>; Wed, 2 May 2001 07:36:55 -0400 (EDT)
Received: from CNRI.Reston.VA.US (localhost [127.0.0.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id HAA06088 for <all-ietf@ietf.org>; Wed, 2 May 2001 07:36:56 -0400 (EDT)
Message-Id: <200105021136.HAA06088@ietf.org>
Mime-Version: 1.0
Content-Type: Multipart/Mixed; Boundary="NextPart"
To: IETF-Announce:;
From: Internet-Drafts@ietf.org
Reply-to: Internet-Drafts@ietf.org
Subject: I-D ACTION:draft-etienne-ripv2-auth-flaws-00.txt
Date: Wed, 02 May 2001 07:36:56 -0400
Sender: nsyracus@cnri.reston.va.us
A New Internet-Draft is available from the on-line Internet-Drafts directories. Title : Flaws in RIPv2 packet's authentication Author(s) : J. Etienne Filename : draft-etienne-ripv2-auth-flaws-00.txt Pages : 13 Date : 01-May-01 The current strongest authentication method for RIPv2 (RFC2453[6]) is the MD5 authentication (RFC2082[5]) which uses shared secret key to authenticate the packets. This memo explains the different security flaws we found in the anti-replay and the MACs calculation. The second part presents practical exploitations of these weaknesses: an attacker directly connected to a link, can (i) break neighborhood, (ii) flap routes and (iii) inject obsolete routes. A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-etienne-ripv2-auth-flaws-00.txt Internet-Drafts are also available by anonymous FTP. Login with the username "anonymous" and a password of your e-mail address. After logging in, type "cd internet-drafts" and then "get draft-etienne-ripv2-auth-flaws-00.txt". A list of Internet-Drafts directories can be found in http://www.ietf.org/shadow.html or ftp://ftp.ietf.org/ietf/1shadow-sites.txt Internet-Drafts can also be obtained by e-mail. Send a message to: mailserv@ietf.org. In the body type: "FILE /internet-drafts/draft-etienne-ripv2-auth-flaws-00.txt". NOTE: The mail server at ietf.org can return the document in MIME-encoded form by using the "mpack" utility. To use this feature, insert the command "ENCODING mime" before the "FILE" command. To decode the response(s), you will need "munpack" or a MIME-compliant mail reader. Different MIME-compliant mail readers exhibit different behavior, especially when dealing with "multipart" MIME messages (i.e. documents which have been split up into multiple messages), so check your local documentation on how to manipulate these messages. Below is the data which will enable a MIME compliant mail reader implementation to automatically retrieve the ASCII version of the Internet-Draft.
- I-D ACTION:draft-etienne-ripv2-auth-flaws-00.txt Internet-Drafts