mobike-4----Page:7
1 2 3 4 5 6 7 8
|
Limitations Works only across a NAPT device (or multiple of them as Jari Arkko pointed out). Does not work across a NAT device as there is no easy way to learn the bindings using the mechanism defined in the draft. Only the address binding is sent and the port number is not sent. It means the attacker can bomb a different host behind the NAT though not easy. Security of the solution depends on learning the public address securely. |