Damien,
I am not sure that Threat Level 1 is appropriate in Section 6.1 (Attacks With
Map-Request Messages). Again, this attack may be harder to mitigate than we
realize.
Consider the attack that you describe in Paragraph 5 of Section 6.1. Assume
that the attacker runs that attack, not with the goal of overrunning the ITR
with Map-Reply messages, but with the goal of hitting the victim ITRs rate
limit for Map-Reply messages on the ETR. When SA causes that rate limit to be
hit, he makes it difficult for the ITR to obtain mappings outside of
192.0.2.0/24 from ETR that is involved.
Ron
> 2. do you agree with the level of severity given for each threat
> (yes/no/why)?
>
_______________________________________________
lisp mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/lisp
