CGA Attack - SSAS - Local security deployments

"Hosnieh Rafiee" <ietf@rozanak.com> Sat, 08 February 2014 20:01 UTC

Return-Path: <ietf@rozanak.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D71941A060C; Sat, 8 Feb 2014 12:01:16 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.448
X-Spam-Level:
X-Spam-Status: No, score=-2.448 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.548] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LYiH8O_4ctmO; Sat, 8 Feb 2014 12:01:14 -0800 (PST)
Received: from mail.rozanak.com (mail.rozanak.com [IPv6:2a01:238:42ad:1500:aa19:4238:e48f:61cf]) by ietfa.amsl.com (Postfix) with ESMTP id 588711A0619; Sat, 8 Feb 2014 12:01:08 -0800 (PST)
Received: from localhost (unknown [127.0.0.1]) by mail.rozanak.com (Postfix) with ESMTP id 58B4723E2D5A; Sat, 8 Feb 2014 20:01:08 +0000 (UTC)
X-Virus-Scanned: amavisd-new at rozanak.com
Received: from mail.rozanak.com ([127.0.0.1]) by localhost (mail.iknowlaws.de [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OcLFNRkFDyx9; Sat, 8 Feb 2014 21:01:06 +0100 (CET)
Received: from kopoli (g229053098.adsl.alicedsl.de [92.229.53.98]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) by mail.rozanak.com (Postfix) with ESMTPSA id 7366E23E2D59; Sat, 8 Feb 2014 21:01:06 +0100 (CET)
From: Hosnieh Rafiee <ietf@rozanak.com>
To: ipv6@ietf.org, saag@ietf.org
Subject: CGA Attack - SSAS - Local security deployments
Date: Sat, 08 Feb 2014 21:01:00 +0100
Message-ID: <001a01cf2508$7e3e4550$7abacff0$@rozanak.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
X-Mailer: Microsoft Outlook 14.0
Thread-Index: Ac8lCHrgzGLjMFuFQgehqo0uG/cREA==
Content-Language: en-us
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 08 Feb 2014 20:01:17 -0000

I uploaded a new version of a possible attack on CGA. This is an informational document that complements SSAS document along with another document http://tools.ietf.org/html/draft-rafiee-6man-local-security that focuses on deployments.
I appreciate your comments on SSAS ( http://tools.ietf.org/html/draft-rafiee-6man-ssas) , local security and CGA attacks
You can expect new version of SSAS in a couple of days. I am looking forward to finding more people who are interested to work with me on this document and make it ready for a BoF discussion in the next IETF. This is because the result of 6man WG was not based on the supporters of SSAS document.

You can directly send me your comments or to the mailing list.

-----------smile----------
Hosnieh


> -----Original Message-----
> From: internet-drafts@ietf.org [mailto:internet-drafts@ietf.org]
> Sent: Saturday, February 08, 2014 8:34 PM
> To: Hosnieh Rafiee; Christoph Meinel; Christoph Meinel; Hosnieh
> Subject: New Version Notification for draft-rafiee-6man-cga-attack-01.txt
> 
> 
> A new version of I-D, draft-rafiee-6man-cga-attack-01.txt
> has been successfully submitted by Hosnieh Rafiee and posted to the IETF
> repository.
> 
> Name:		draft-rafiee-6man-cga-attack
> Revision:	01
> Title:		Possible Attack on Cryptographically Generated Addresses
> (CGA)
> Document date:	2014-02-08
> Group:		Individual Submission
> Pages:		7
> URL:            http://www.ietf.org/internet-drafts/draft-rafiee-6man-cga-attack-
> 01.txt
> Status:         https://datatracker.ietf.org/doc/draft-rafiee-6man-cga-attack/
> Htmlized:       http://tools.ietf.org/html/draft-rafiee-6man-cga-attack-01
> Diff:           http://www.ietf.org/rfcdiff?url2=draft-rafiee-6man-cga-attack-01
> 
> Abstract:
>    This document describes the new vulnerability with the use of
>    Cryptographically Generated Addresses.
> 
> 
> 
> 
> 
> 
> 
> 
> Please note that it may take a couple of minutes from the time of submission
> until the htmlized version and diff are available at tools.ietf.org.
> 
> The IETF Secretariat