On the (in)security of IPsec in MAC-then-encrypt configurations

13 years 11 months ago

Download www.isg.rhul.ac.uk

IPsec allows a huge amount of flexibility in the ways in which its component cryptographic mechanisms can be combined to build a secure communications service. This may be good for supporting different security requirements but is potentially bad for security. We demonstrate the reality of this by describing efficient, plaintext-recovering attacks against all configurations of IPsec in which integrity protection is applied prior to encryption

Jean Paul Degabriele, Kenneth G. Paterson

Real-time Traffic

CCS 2010 | IPSec | Real-world Ipsec Deployments | Security Privacy | Specific Ipsec Implementation |

claim paper

Post Info
More Details (n/a)

Added	06 Dec 2010
Updated	06 Dec 2010
Type	Conference
Year	2010
Where	CCS
Authors	Jean Paul Degabriele, Kenneth G. Paterson

Comments (0)

Sciweavers

On the (in)security of IPsec in MAC-then-encrypt configurations

CCS 2010 | IPSec | Real-world Ipsec Deployments | Security Privacy | Specific Ipsec Implementation |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers