On 2008-12-17, at 10:03, Carlo Wood wrote:
However, if each packet has to be seperately decryptable, then the redundacy will be enormous and it would be very easy (cost little cpu) to obtain the key from from a number of packets (which assumes an attacker can intercept them), even so much that it isn't worthwhile to change the key every once in a while.
One thing to keep in mind is that this is probably not attempting to counter a MITM attack, it's meant to counter a forged packet attack involving a situation where the attacker knows the IP address of the user and of the server they're using in SL.
An other approach would be to assume that packets cannot be intercepted, only inserted.
Indeed. _______________________________________________ Policies and (un)subscribe information available here: http://wiki.secondlife.com/wiki/SLDev Please read the policies before posting to keep unmoderated posting privileges
