Re: header and data digest issue

To: Black_David@emc.com
Subject: Re: header and data digest issue
From: Jonathan Stone <jonathan@dsg.stanford.edu>
Date: Wed, 27 Feb 2002 16:45:32 -0800
cc: bmastors@aciesnetworks.com, ips@ece.cmu.edu
In-reply-to: Your message of "Wed, 27 Feb 2002 18:07:47 EST." <277DD60FB639D511AC0400B0D068B71E0293750C@CORPMX14>
Sender: owner-ips@ece.cmu.edu


[...]


>The whole point of separate CRCs on header and data was to allow
>an iSCSI middlebox to modify the header without having to touch
>the data CRC.  As I said, a CRC will not prevent this middlebox problem
>- for example, if iSCSI had a CRC that covered both headers and data,
>one would almost certainly see middleboxes that stripped that CRC
>on input and regenerated it on output, producing a vulnerability to
>the problem of concern.  Something like IPsec ESP cryptographic
>integrity that a middlebox cannot regenerate is necessary to solve
>this problem.  This is a long version of a fairly simple principle
>- those who don't trust middleboxes shouldn't allow their use.

[...]

>For the middlebox problem, ESP cryptographic integrity is the right
>solution,

Technically, ESP isn't necessary.  AH between the iSCSI endpoints is
adequate if the only requirement is to detect and defeat middle boxes.

References:
- RE: header and data digest issue
  - From: Black_David@emc.com

Prev by Date: RE: iscsi: version number in draft 11
Next by Date: RE: header and data digest issue
Prev by thread: RE: header and data digest issue
Next by thread: RE: header and data digest issue
Index(es):
- Date
- Thread

Home

Last updated: Wed Feb 27 20:18:10 2002
8918 messages in chronological order