IKE/ISAKMP considered harmful

• Autores: William Simpson
• Localización: ;login:: the magazine of USENIX & SAGE, ISSN 1044-6397, Vol. 24, Nº. 6, 1999, págs. 48-58
• Idioma: inglés
• Texto completo no disponible (Saber más ...)
• Resumen

  • After enduring seven years of political and marketing maneuvering, the Internet Engineering Task Force (IETF) has adopted a Proposed Standard for generating dynamic security session-keys between users. Unfortunately, the IKE/ISAKMP combination is fraught with egregious fundamental design flaws. This document details a few of the more easily expoitable problems.