Re: [quicwg/base-drafts] Be more conservative about migration? (#2143)

MikkelFJ <notifications@github.com> Thu, 13 December 2018 14:10 UTC

Date: Thu, 13 Dec 2018 06:10:35 -0800
From: MikkelFJ <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+0166e4ab71fdd9fac2083c5c6c311b955cf02efa72e0629192cf00000001182a2a5b92a169ce17495be9@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/issues/2143/446981296@github.com>
In-Reply-To: <quicwg/base-drafts/issues/2143@github.com>
References: <quicwg/base-drafts/issues/2143@github.com>
Subject: Re: [quicwg/base-drafts] Be more conservative about migration? (#2143)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5c12685b7192_50c53ff949ed45b831535"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/ews2az3wxdQ35uNOxWZSM9exqyo>

When you say on-path, do you mean observer? I.e. with the ability to race a packet, or to drop or replace a packet.

I suppose a race will not be successful in this attack.

So the effectiveness on the attack builds on it being cheaper to confuse the connection rather than to actively drop packets. I'm not sure that is a strong case for additional complexity. However, a related attack might be used for amplification attacks by changing the IP to that of the indented victim.

Attacks that can be instigated by observers are much more severe because they are far easier to achieve, especially undetected.

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/quicwg/base-drafts/issues/2143#issuecomment-446981296

[quicwg/base-drafts] Be more conservative about m… ekr
Re: [quicwg/base-drafts] Be more conservative abo… MikkelFJ
Re: [quicwg/base-drafts] Be more conservative abo… ekr
Re: [quicwg/base-drafts] Be more conservative abo… MikkelFJ
Re: [quicwg/base-drafts] Be more conservative abo… MikkelFJ
Re: [quicwg/base-drafts] Be more conservative abo… Martin Thomson
Re: [quicwg/base-drafts] Be more conservative abo… ekr
Re: [quicwg/base-drafts] Be more conservative abo… Martin Thomson
Re: [quicwg/base-drafts] Be more conservative abo… MikkelFJ
Re: [quicwg/base-drafts] Be more conservative abo… ekr
Re: [quicwg/base-drafts] Be more conservative abo… Martin Thomson
Re: [quicwg/base-drafts] Be more conservative abo… Martin Thomson
Re: [quicwg/base-drafts] Be more conservative abo… martinduke
Re: [quicwg/base-drafts] Be more conservative abo… Martin Thomson
Re: [quicwg/base-drafts] Be more conservative abo… ianswett
Re: [quicwg/base-drafts] Be more conservative abo… Jana Iyengar
Re: [quicwg/base-drafts] Be more conservative abo… ianswett
Re: [quicwg/base-drafts] Be more conservative abo… Eric Kinnear
Re: [quicwg/base-drafts] Be more conservative abo… Lars Eggert
Re: [quicwg/base-drafts] Be more conservative abo… Mark Nottingham
Re: [quicwg/base-drafts] Be more conservative abo… Eric Kinnear
Re: [quicwg/base-drafts] Be more conservative abo… Eric Kinnear
Re: [quicwg/base-drafts] Be more conservative abo… Eric Kinnear
Re: [quicwg/base-drafts] Be more conservative abo… Eric Kinnear
Re: [quicwg/base-drafts] Be more conservative abo… MikkelFJ
Re: [quicwg/base-drafts] Be more conservative abo… Gorry Fairhurst
Re: [quicwg/base-drafts] Be more conservative abo… Eric Kinnear
Re: [quicwg/base-drafts] Be more conservative abo… Eric Kinnear
Re: [quicwg/base-drafts] Be more conservative abo… MikkelFJ
Re: [quicwg/base-drafts] Be more conservative abo… Lars Eggert
Re: [quicwg/base-drafts] Be more conservative abo… Eric Kinnear
Re: [quicwg/base-drafts] Be more conservative abo… MikkelFJ
Re: [quicwg/base-drafts] Be more conservative abo… Jana Iyengar
Re: [quicwg/base-drafts] Be more conservative abo… Martin Thomson