On Fri, 24 Mar 2017, Daniel Migault wrote:
I have a question regarding devices that are not able to randomly generate SPI, but instead store fix values. The question is how much fix values could be provisioned.
This is pretty dangerous. Half a year ago or so we saw the Transcript Collsion Attacks that could have succeeded if we hadn't used random SPI numbers to prevent pre-calculation in the attack. Using a set of 10 non-random SPI numbers would potentially make this device vulnerable to this attack. Paul _______________________________________________ Lwip mailing list Lwip@ietf.org https://www.ietf.org/mailman/listinfo/lwip