Spoofing and SCTP ADD-IP (was Re: Solving the right problems ...)
Pekka Nikander <pekka.nikander@nomadiclab.com> Mon, 15 September 2003 17:46 UTC
Received: from optimus.ietf.org (ietf.org [132.151.1.19] (may be forged)) by ietf.org (8.9.1a/8.9.1a) with ESMTP id NAA14701 for <ipv6-archive@odin.ietf.org>; Mon, 15 Sep 2003 13:46:39 -0400 (EDT)
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 19yxQV-0002EP-Pe for ipv6-archive@odin.ietf.org; Mon, 15 Sep 2003 13:46:15 -0400
Received: (from exim@localhost) by www1.ietf.org (8.12.8/8.12.8/Submit) id h8FHkFtU008577 for ipv6-archive@odin.ietf.org; Mon, 15 Sep 2003 13:46:15 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 19yxQV-0002EG-EE for ipv6-web-archive@optimus.ietf.org; Mon, 15 Sep 2003 13:46:15 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id NAA14622 for <ipv6-web-archive@ietf.org>; Mon, 15 Sep 2003 13:46:08 -0400 (EDT)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 19yxQT-0002mQ-00 for ipv6-web-archive@ietf.org; Mon, 15 Sep 2003 13:46:13 -0400
Received: from ietf.org ([132.151.1.19] helo=optimus.ietf.org) by ietf-mx with esmtp (Exim 4.12) id 19yxQR-0002mN-00 for ipv6-web-archive@ietf.org; Mon, 15 Sep 2003 13:46:12 -0400
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 19yxQJ-00023X-F6; Mon, 15 Sep 2003 13:46:03 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 19yxPq-00022C-RA for ipv6@optimus.ietf.org; Mon, 15 Sep 2003 13:45:34 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id NAA14576; Mon, 15 Sep 2003 13:45:27 -0400 (EDT)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 19yxPo-0002lC-00; Mon, 15 Sep 2003 13:45:32 -0400
Received: from teldanex.hiit.fi ([212.68.5.99] helo=n97.nomadiclab.com) by ietf-mx with esmtp (Exim 4.12) id 19yxPn-0002ke-00; Mon, 15 Sep 2003 13:45:32 -0400
Received: from nomadiclab.com (polle.local.nikander.com [192.168.0.193]) by n97.nomadiclab.com (Postfix) with ESMTP id DB5591C; Mon, 15 Sep 2003 20:58:23 +0300 (EEST)
Message-ID: <3F65FA9E.2010801@nomadiclab.com>
Date: Mon, 15 Sep 2003 20:45:02 +0300
From: Pekka Nikander <pekka.nikander@nomadiclab.com>
User-Agent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X Mach-O; en-US; rv:1.5b) Gecko/20030827
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: "Randall R. Stewart (home)" <randall@stewart.chicago.il.us>
Cc: ietf@ietf.org, ipv6@ietf.org
Subject: Spoofing and SCTP ADD-IP (was Re: Solving the right problems ...)
References: <3F6239E0.8090001@stewart.chicago.il.us> <01df01c36a7b$840dbb80$63124104@eagleswings> <3F61EAC2.7020304@stewart.chicago.il.us> <20030912165739.50b3866b.moore@cs.utk.edu> <3F6239E0.8090001@stewart.chicago.il.us> <5.2.0.9.2.20030913095009.0301ea40@pop.mcilink.com> <3F6373FD.1020308@stewart.chicago.il.us>
In-Reply-To: <3F6373FD.1020308@stewart.chicago.il.us>
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Content-Transfer-Encoding: 7bit
Content-Transfer-Encoding: 7bit
Sender: ipv6-admin@ietf.org
Errors-To: ipv6-admin@ietf.org
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Id: IP Version 6 Working Group (ipv6) <ipv6.ietf.org>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
Content-Transfer-Encoding: 7bit
Content-Transfer-Encoding: 7bit
vinton g. cerf wrote: >> We would also want to look very carefully at the potential spoofing >> opportunity that rebinding would likely introduce. Randall R. Stewart (home) wrote: > This is one of the reasons the authors of ADD-IP have NOT pushed to get > it done.. some more > work needs to be done on this area... http://www.ietf.org/internet-drafts/draft-nikander-mobileip-v6-ro-sec-01.txt is a background document, produced by the MIPv6 route optimization security design team, that tries to explain the security desing in MIPv6 RO. I think that most of the threats and much of the solution model would most probably apply also to SCTP ADD-IP and, of course, also other multi-address multi-homing solutions. --Pekka Nikander -------------------------------------------------------------------- IETF IPv6 working group mailing list ipv6@ietf.org Administrative Requests: https://www1.ietf.org/mailman/listinfo/ipv6 --------------------------------------------------------------------
- Re: Solving the right problems ... Keith Moore
- Spoofing and SCTP ADD-IP (was Re: Solving the rig… Pekka Nikander
- Re: Spoofing and SCTP ADD-IP (was Re: Solving the… Randall R. Stewart (home)
- Re: Spoofing and SCTP ADD-IP (was Re: Solving the… Jari Arkko