[quicwg/base-drafts] Remove the STK in the Spoofed ACK Attack (#1035)

aditya dogra <notifications@github.com> Thu, 04 January 2018 10:17 UTC

Return-Path: <bounces+848413-a050-quic-issues=ietf.org@sgmail.github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 40980126C25 for <quic-issues@ietfa.amsl.com>; Thu, 4 Jan 2018 02:17:08 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.484
X-Spam-Level:
X-Spam-Status: No, score=-0.484 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_20=1.546, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7aHWpdvAKiyt for <quic-issues@ietfa.amsl.com>; Thu, 4 Jan 2018 02:17:07 -0800 (PST)
Received: from o9.sgmail.github.com (o9.sgmail.github.com [167.89.101.2]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B78191205F0 for <quic-issues@ietf.org>; Thu, 4 Jan 2018 02:17:06 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=github.com; h=from:reply-to:to:cc:subject:mime-version:content-type:content-transfer-encoding:list-id:list-archive:list-post:list-unsubscribe; s=s20150108; bh=PdOxeEtF/y0yA/2OxKPhiIBqaZU=; b=XO0xAA40WsbUJkkO eUQO6ym4CBTq23NMkBOewcxqG2GpBezJwsMa7eJJu+0doqd7HVu7vDZ1+hPm6TYt ONBWy6BpuO6n6/w6X/EB+wf407MS4GvUoane1L+eWOZBo9qtpf+NcqIu1GnKOP+o i0j4xMv1vy2Fb0jSFNpAvhJgnow=
Received: by filter0568p1las1.sendgrid.net with SMTP id filter0568p1las1-10865-5A4DFF21-F 2018-01-04 10:17:05.676789726 +0000 UTC
Received: from github-smtp2a-ext-cp1-prd.iad.github.net (github-smtp2a-ext-cp1-prd.iad.github.net [192.30.253.16]) by ismtpd0007p1iad2.sendgrid.net (SG) with ESMTP id V3qjf5pqRX6ybvGk9oX0Zg for <quic-issues@ietf.org>; Thu, 04 Jan 2018 10:17:05.390 +0000 (UTC)
Date: Thu, 04 Jan 2018 10:17:05 +0000
From: aditya dogra <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+0166e4abf8a59eb8261f791bf7175953bad58b82f65b9c3492cf000000011665c12192a169ce110b10b2@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/issues/1035@github.com>
Subject: [quicwg/base-drafts] Remove the STK in the Spoofed ACK Attack (#1035)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5a4dff2145f0c_7873f9cd0838f2c268418a"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: addogra
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
X-SG-EID: l64QuQ2uJCcEyUykJbxN122A6QRmEpucztpreh3Pak0uZ8iuXwupCkQwxnZ/Fyrp+cCPUksaeiM4oj ASp8Tl1UICWJwvSi/2bvtVXF1WUtmz7+Wsl3fd5uNkwK1FgSRYVfGwya9ITVsRerSOA/Ev8gu2SSxY HxINlLNDQgtNK2Z5eoSUtaFIVBHyNh3Q/ATAu4Fqm+LuQfi0hN+voiBPsl+CPp2p2NjoSpztcN3iaT k=
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/_b_xrKRXVVaEw78duKlhog81ZlY>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.22
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 04 Jan 2018 10:17:08 -0000

Source Address Token has been removed from the quic draft upcoming versions.  We should replace the STK with the Address Validation Token or we can define the STK for the spoofed ACK Attack section . 

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/quicwg/base-drafts/issues/1035