[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sip] draft-state-sip-relay-attack-00

To: "'Raphael Coeffic'" <rco at iptel.org>, <sip at ietf.org>
Subject: Re: [Sip] draft-state-sip-relay-attack-00
From: "Dan Wing" <dwing at cisco.com>
Date: Wed, 4 Mar 2009 13:20:29 -0800
Authentication-results: sj-dkim-1; header.From=dwing at cisco.com; dkim=pass ( sig from cisco.com/sjdkim1004 verified; );
Delivered-to: sip at core3.amsl.com
Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; l=2409; t=1236201629; x=1237065629; c=relaxed/simple; s=sjdkim1004; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=dwing at cisco.com; z=From:=20=22Dan=20Wing=22=20<dwing at cisco.com> |Subject:=20RE=3A=20[Sip]=20draft-state-sip-relay-attack-00 |Sender:=20; bh=+wKnRDI/xw/7SJ8dyLdcatoICFNA83s6Q4GVluJ1s3c=; b=RMQ2dDPgNdXAHvyVermD/wW09p8OfOAt7KZXHNtWReOZIsUfPYtXpLhlZz Ko6X8K8w0Gt/VE7pPsd2p6dNlx9KvxqDP7+fU43hGK+HiDAz4MONbdfbJISJ KWRPzjusRuFVcPLSmOL1yJXIVTLinQh14XdGKPPy8yfR5iaK52bYM=;
In-reply-to: <49AE593F.6080807 at iptel.org>
List-archive: <http://www.ietf.org/mail-archive/web/sip>
List-help: <mailto:sip-request@ietf.org?subject=help>
List-id: Session Initiation Protocol <sip.ietf.org>
List-post: <mailto:sip@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=unsubscribe>
References: <49AE593F.6080807 at iptel.org>
Thread-index: AcmctR8BnOtCTkBUSD2RENZm/vZwvAAWb6Zg

Thanks for publishing that attack.  It has similarities with the attack
described by Hadriel in
http://tools.ietf.org/html/draft-kaplan-sip-baiting-attack.

-d


> -----Original Message-----
> From: sip-bounces at ietf.org [mailto:sip-bounces at ietf.org] On 
> Behalf Of Raphael Coeffic
> Sent: Wednesday, March 04, 2009 2:35 AM
> To: sip at ietf.org
> Subject: [Sip] draft-state-sip-relay-attack-00
> 
> Hello,
> 
> a new internet draft has been published concerning the relay 
> attack on 
> digest authentication and SIP. The attack itself has been first 
> disclosed 2 years ago by the maydnes team from the french 
> INRIA. Until 
> now, no document has been pushlished that documents the attack and 
> provides guidance to SIP operators or handset manufacturers.
> 
> http://tools.ietf.org/html/draft-state-sip-relay-attack-00
> 
> The appropriate mitigations of problem resolutions are still not 100% 
> clear. We hope that this draft can help start a discussion on how to 
> best resolve this problem.
> 
> 
> Regards,
> 
> Raphael Coeffic.
> (on behalf of all the authors of this draft)
> 
> --------------------------------------------------------------
> -------------------------------------
> 
> Filename:	   draft-state-sip-relay-attack
> Version:	   00
> Staging URL:	   
> http://www3.ietf.org/proceedings/staging/draft-state-sip-relay
> -attack-00.txt
> Title:		   SIP digest authentication relay attack
> Creation_date:	   2009-03-02
> WG ID:		   Indvidual Submission
> Number_of_pages: 18
> Abstract:
> The Session Initiation Protocol (SIP [RFC3261]) provides a mechanism
> for creating, modifying, and terminating sessions with one or more
> participants.  This document describes a vulnerability of SIP
> combined with HTTP Digest Access Authentication [RFC2617] through
> which an attacker can leverage the victim's credentials to send
> authenticated requests on his behalf.  This attack is different from
> the man-in-the-middle (MITM) attack and does not require any
> eavesdropping, DNS or IP spoofing.
> 
> 
> 
> _______________________________________________
> Sip mailing list  https://www.ietf.org/mailman/listinfo/sip
> This list is for NEW development of the core SIP Protocol
> Use sip-implementors at cs.columbia.edu for questions on current sip
> Use sipping at ietf.org for new developments on the application of sip
>

Follow-Ups:
- Re: [Sip] draft-state-sip-relay-attack-00
  - From: Raphael Coeffic

References:
- [Sip] draft-state-sip-relay-attack-00
  - From: Raphael Coeffic

Prev by Date: Re: [Sip] Question regarding conflicting grammar for IPV6 SIP URI andRFC 3986
Next by Date: Re: [Sip] Question regarding conflicting grammar for IPV6 SIP URI andRFC 3986
Previous by thread: [Sip] draft-state-sip-relay-attack-00
Next by thread: Re: [Sip] draft-state-sip-relay-attack-00
Index(es):
- Date
- Thread