At 11:01 AM 4/9/02 -0400, Joel M. Halpern wrote:
>Looking at the security section of the document, in the "no bad data"
portion, you list three "threats":
> o Directing legitimate traffic away from a target, causing
> a denial-of-service attack by preventing legitimate data
> from reaching its destination,
> o Directing additional traffic (going to other
> destinations which are 'innocent bystanders') to a
> target, causing the target to be overloaded, or
> o Directing traffic addressed to the target to a place
> where the attacker can copy, snoop, alter, or otherwise
> affect the traffic.
>
>I understand the first two. I think I am missing the point of the third.
There seem to be two kinds of problems it might be addressing. One problem
is where the snooper could be dropping all the packets, so must be prevented
according to the first bullet. The other problem would be someone who is
forwarding the traffic towards the destination, but snooping in passing. I
do not understand how the routing system could worry about that. From a
routing perspective it looks (I think) indistinguishable from a legitimate
transit provider. The two ways I know of to approach the problem are policy
(a separate element) and end-to-end information hiding (again a separate
element).
>Can someone give me an example of what might be meant by the third bullet
that is not covered by the first two bullets.
>(Note: I am not trying to question whether the first two are achievable.
That is a separate question.)
Joel
Your understanding of the third item is correct.
Whether it is solvable is, of course, another issue.
But at least this gets people thinking...
Frank Kastenholz
==================================================
My preferrred signature is:
This information is for the sole use of
whoever receives it and may contain confusing,
enlightening, enraging, entertaining,
irritating, or just plain stupid information,
including without limitation, double-secret-
probation information belonging to [CENSORED
BY THE NSA/FBI/MOUSE]. Any unauthorized review,
use, disclosure, or distribution outside of an
establishment serving alchohol is prohibited on
days that do not end in Y.
But our ******'d lawyers would rather have:
=======================================
This email message is for the sole use of the intended recipient (s) and may
contain confidential and privileged information, including without
limitation, Confidential and/or Proprietary Information belonging to
Unisphere Networks, Inc. Any unauthorized review, use, disclosure or
distribution is prohibited. If you are not the intended recipient, please
contact the sender by reply email and destroy all copies of the original
message.
This archive was generated by hypermail 2b29 : Mon Aug 04 2003 - 04:10:04 EDT