> I see, however the project has already been accepted so i will have to
> do it anyway :(
Good.
Perhaps you can tell us more about the project, so we can work together at
tweaking its parameters to make sure it is useful to the wider Babel
community? Preferably on the list, since there's a
Rodrigo Garcia writes:
> I see, however the project has already been accepted so i will have to
> do it anyway :(
>
> Maybe i can think not to use random numbers but something to make it
> more difficult that a false ciphertext be accepted by other nodes.
Well, the way you
I see, however the project has already been accepted so i will have to
do it anyway :(
Maybe i can think not to use random numbers but something to make it
more difficult that a false ciphertext be accepted by other nodes.
Thanks, i will use the references to point out the vulnerabilities.
El
>Right, I see. Are you familiar with the HMAC extension to babel
>(RFC7298)? That does something different (it prevents nodes that don't
>know the shared secret from participating in the network at all, but
>does not restrict which prefixes each node can export). However, it may
>be useful to read
Rodrigo Garcia writes:
>> But if everyone knows how to decrypt all the tokens they are not really
>> secret; so it basically becomes the same as a signature, no? Except if
>> it's *not* signed you may be able to spoof other values by changing the
>> ciphertext of a valid token
El 08/09/17 a las 07:37, Toke Høiland-Jørgensen escribió:
>> Hi, i wanted to reduce the risk of ip spoofing as an academic excercise.
>
> I'm all for academic exercises, I'm just suggesting that it'll be
> helpful to define (on the protocol level) what you are trying to protect
> against. I.e.,
Rodrigo Garcia writes:
> El 08/09/17 a las 05:28, Toke Høiland-Jørgensen escribió:
>> Rodrigo Garcia writes:
>>
>>> Hello, i've been working on an extension to the babel protocol to
>>> authenticate updates using RSA. It's mostly an academic excercise and
El 08/09/17 a las 05:28, Toke Høiland-Jørgensen escribió:
> Rodrigo Garcia writes:
>
>> Hello, i've been working on an extension to the babel protocol to
>> authenticate updates using RSA. It's mostly an academic excercise and i
>> have planned the first functional versions in
Rodrigo Garcia writes:
> Hello, i've been working on an extension to the babel protocol to
> authenticate updates using RSA. It's mostly an academic excercise and i
> have planned the first functional versions in a month or so.
What are you trying to achieve? What is your
9 matches
Mail list logo