Re: [Babel-users] About an authentication extension

> I see, however the project has already been accepted so i will have to > do it anyway :( Good. Perhaps you can tell us more about the project, so we can work together at tweaking its parameters to make sure it is useful to the wider Babel community? Preferably on the list, since there's a

Re: [Babel-users] About an authentication extension

Rodrigo Garcia writes: > I see, however the project has already been accepted so i will have to > do it anyway :( > > Maybe i can think not to use random numbers but something to make it > more difficult that a false ciphertext be accepted by other nodes. Well, the way you

Re: [Babel-users] About an authentication extension

I see, however the project has already been accepted so i will have to do it anyway :( Maybe i can think not to use random numbers but something to make it more difficult that a false ciphertext be accepted by other nodes. Thanks, i will use the references to point out the vulnerabilities. El

Re: [Babel-users] About an authentication extension

>Right, I see. Are you familiar with the HMAC extension to babel >(RFC7298)? That does something different (it prevents nodes that don't >know the shared secret from participating in the network at all, but >does not restrict which prefixes each node can export). However, it may >be useful to read

Re: [Babel-users] About an authentication extension

Rodrigo Garcia writes: >> But if everyone knows how to decrypt all the tokens they are not really >> secret; so it basically becomes the same as a signature, no? Except if >> it's *not* signed you may be able to spoof other values by changing the >> ciphertext of a valid token

Re: [Babel-users] About an authentication extension

El 08/09/17 a las 07:37, Toke Høiland-Jørgensen escribió: >> Hi, i wanted to reduce the risk of ip spoofing as an academic excercise. > > I'm all for academic exercises, I'm just suggesting that it'll be > helpful to define (on the protocol level) what you are trying to protect > against. I.e.,

Re: [Babel-users] About an authentication extension

Rodrigo Garcia writes: > El 08/09/17 a las 05:28, Toke Høiland-Jørgensen escribió: >> Rodrigo Garcia writes: >> >>> Hello, i've been working on an extension to the babel protocol to >>> authenticate updates using RSA. It's mostly an academic excercise and

Re: [Babel-users] About an authentication extension

El 08/09/17 a las 05:28, Toke Høiland-Jørgensen escribió: > Rodrigo Garcia writes: > >> Hello, i've been working on an extension to the babel protocol to >> authenticate updates using RSA. It's mostly an academic excercise and i >> have planned the first functional versions in

Re: [Babel-users] About an authentication extension

Rodrigo Garcia writes: > Hello, i've been working on an extension to the babel protocol to > authenticate updates using RSA. It's mostly an academic excercise and i > have planned the first functional versions in a month or so. What are you trying to achieve? What is your