|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Possibility of replay attacks in manually keyed IPsec?
Subject: Re: Possibility of replay attacks in manually keyed IPsec?
From: Rick Smith (rick_smith
securecomputing.com)
Date: Mon Dec 06 1999 - 10:38:49 CST
- Next message: Starkey, Kyle: "Puzzeling SSL Error...."
- Previous message: David LeBlanc: "RE: The Future of Security"
- In reply to: Mikael Olsson: "Possibility of replay attacks in manually keyed IPsec?"
- Next in thread: Mikael Olsson: "Re: Possibility of replay attacks in manually keyed IPsec?"
- Reply: Rick Smith: "Re: Possibility of replay attacks in manually keyed IPsec?"
- Reply: Mikael Olsson: "Re: Possibility of replay attacks in manually keyed IPsec?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
At 08:53 AM 12/03/1999 +0100, Mikael Olsson wrote:
>I'd imagine that if IPsec itself uses fixed encryption keys,
>it would be vulnerable to replay attacks, but this is not
>the case. Here, we only handle fixed keys to IKE, so the
>fixed keys only get used in the SA negotiation.
The original version of IPSEC was vulnerable to replay attacks, but the
revised IPSEC incorporates features to detect and reject replayed packets.
The use of nonces in IKE should prevent replay, assuming the nonces are
appropriately random. The use of anti replay features in the latest IPSEC
should likewize prevent successful replay attacks.
As noted in a followup, IPSEC's original replay weakness is hard to exploit
(but perhaps not impossible) if you're worried about TCP connections, since
the sequence numbers make it hard to splice in the replayed packet.
However, classic NFS doesn't have any replay protection, so you could
retransmit a "write" operation and have it accepted.
Rick.
smithsecurecomputing.com
"Internet Cryptography" at http://www.visi.com/crypto/
- Next message: Starkey, Kyle: "Puzzeling SSL Error...."
- Previous message: David LeBlanc: "RE: The Future of Security"
- In reply to: Mikael Olsson: "Possibility of replay attacks in manually keyed IPsec?"
- Next in thread: Mikael Olsson: "Re: Possibility of replay attacks in manually keyed IPsec?"
- Reply: Rick Smith: "Re: Possibility of replay attacks in manually keyed IPsec?"
- Reply: Mikael Olsson: "Re: Possibility of replay attacks in manually keyed IPsec?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
This archive was generated by hypermail 2b27 : Mon Dec 06 1999 - 18:48:50 CST