[Mip4] RFC3012bis: Proposal for Issue2-Change4

To: "'mip4@ietf.org'" <mip4@ietf.org>
Subject: [Mip4] RFC3012bis: Proposal for Issue2-Change4
From: "Jayshree Bharatia" <jayshree@nortelnetworks.com>
Date: Wed, 27 Aug 2003 14:48:54 -0500
List-help: <mailto:mip4-request@ietf.org?subject=help>
List-id: Mobility for IPv4 <mip4.ietf.org>
List-post: <mailto:mip4@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/mip4>,<mailto:mip4-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/mip4>,<mailto:mip4-request@ietf.org?subject=unsubscribe>
Sender: mip4-admin@ietf.org

The following text was proposed to be added in section 12. This is a
modified version of the text proposed by Henrik on the mailing list earlier.

(section 12)
Note that an active attacker may try to prevent successful registrations by
sending a large number of Agent Solicitations or bogus Registration
Requests, each of which could cause the FA to respond with a fresh
challenge, invalidating the challenge that the MN is currently trying to
use.  To prevent such attacks, the FA SHOULD repeat the same challenge value
in successive unicast responses to Agent Solicitations or in Registration
Replies to Requests that did not contain valid MN-AAA or MN-FA
authentication extensions.  Note that each challenge returned to an MN MUST
be previously unused by that MN.


_______________________________________________
Mip4 mailing list
Mip4@ietf.org
https://www.ietf.org/mailman/listinfo/mip4

Prev by Date: Re: [Mip4] draft-kulkarni-mobileip-dynamic-assignment as WorkgroupItem?
Next by Date: [Mip4] RFC3012bis: Proposal for Issue2-Change3
Previous by thread: [Mip4] RFC3012bis: Proposal for Issue2-Change1
Next by thread: [Mip4] RFC3012bis: Proposal for Issue2-Change3
Index(es):
- Date
- Thread

[Mip4] RFC3012bis: Proposal for Issue2-Change4

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.