Analysis of the HIP Base Exchange Protocol
نویسندگان
چکیده
The Host Identity Protocol (HIP) is an Internet security and multiaddressing mechanism specified by the IETF. HIP introduces a new layer between the transport and network layers of the TCP/IP stack that maps host identifiers to network locations, thus separating the two conflicting roles that IP addresses have in the current Internet. This paper analyzes the security and functionality of the HIP base exchange, which is a classic key exchange protocol with some novel features for authentication and DoS protection. The base exchange is the most stable part of the HIP specification with multiple existing implementations. We point out several security issues in the current protocol and propose changes that are compatible with the goals of HIP.
منابع مشابه
Security and Trust of Public Key Cryptography for HIP and HIP Multicast
Host Identity Protocol (HIP) gives cryptographically verifiable identities to hosts. These identities are based on public key cryptography and consist of public and private keys. Public keys can be stored, together with corresponding IP addresses, in DNS servers. When entities are negotiating on a HIP connection, messages are signed with private keys and verified with public keys. Even if this ...
متن کاملProbabilistic model checking for the quantification of DoS security threats
Secure authentication features of communication and electronic commerce protocols involve computationally expensive and memory intensive cryptographic operations that have the potential to be turned into denial-of-service (DoS) exploits. Recent proposals attempt to improve DoS resistance by implementing a trade-off between the resources required for the potential victim(s) with the resources us...
متن کاملA traceable optimistic fair exchange protocol in the standard model
An Optimistic Fair Exchange (OFE) protocol is a good way for two parties to exchange their digital items in a fair way such that at the end of the protocol execution, both of them receive their items or none of them receive anything. In an OFE protocol there is a semi-trusted third party, named arbitrator, which involves in the protocol if it is necessary. But there is a security problem when a...
متن کاملDesign, Implementation, and Applicability Evaluation of Hip and Knee Arthroplasty Registry
Introduction: Arthroplasty is a major orthopedic operation with an increasing rate. The success of this operation can significantly reduce patients’ pain and disabilities. This study aimed to design a registry system for hip and knee arthroplasties. Method: A comprehensive search was conducted to retrieve minimum data set from articles, guidelines, forms and reports published by orthopedic soci...
متن کاملDesign, Implementation, and Applicability Evaluation of Hip and Knee Arthroplasty Registry
Introduction: Arthroplasty is a major orthopedic operation with an increasing rate. The success of this operation can significantly reduce patients’ pain and disabilities. This study aimed to design a registry system for hip and knee arthroplasties. Method: A comprehensive search was conducted to retrieve minimum data set from articles, guidelines, forms and reports published by orthopedic soci...
متن کامل