DISCUSSION OF SECURITY

• Well-written security sections promote confidence.

• Must not worsen overall Internet security.

• The protocol will be subject to attack.

  • What attacks are possible.
  • Restrict the use of the protocol.

• Detail a defense against those attacks.

  • The risk the user is accepting by using the protocol.
  • Internal protocol or external mechanisms.
  • Reuse of existing security mechanisms.
  • Permit substitution of cryptographic algorithms.
  • Discuss implementation hints or guidelines.

Previous slide

Next slide

Back to first slide

View graphic version