SORT BY:

LIST ORDER
THREAD
AUTHOR
SUBJECT


SEARCH

IPS HOME


    [Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

    ISCSI: Error in 10.3.3 of iscsi-08



    The last paragraph of section 10.3.3 is badly misleading.  
    
    10.3.3 says about pre-shared key: "the only practical usage under this
    configuration is a group pre-shared key".  That is clearly false.
    Standard practice for IPsec is that a pre-shared key is unique to a
    given pair of communicating entities.  The only exception is when
    dynamic addresses are used, as discussed accurately in the security
    draft, section 5.8.2).
    
    As a minimum, 10.3.3 needs to be reworded so it describes the real
    world.  The following text would do this:
    
            IKE main mode with pre-shared key authentication method SHOULD NOT 
            be used (while pre-shared keys in many cases offer good
            security, situations where dynamically assigned addresses are
            used force the use of a group pre-shared key which creates
            vulnerability to man-in-the-middle attack). 
    
    Preferably, the requirement should be changed so the reasoning for the
    restriction matches the restriction.  The following text achieves
    this:
    
            IKE main mode with pre-shared key authentication method SHOULD NOT 
            be used when either the initiator or the target uses
            dynamically assigned IP addresses (while pre-shared keys in
            many cases offer good security, situations where dynamically
            assigned addresses are used force the use of a group
            pre-shared key which creates vulnerability to
            man-in-the-middle attack).
    
    If this second solution is adopted, section 2.3 in the security spec
    also needs a corresponding change (first two sentences of page 10).
    
         paul
    


Home

Last updated: Tue Nov 06 00:17:45 2001
7573 messages in chronological order