| RE: CAPWAP Problem Statement (secure download?) | <– Date –> <– Thread –> |
From: Bob O'Hara (bob airespace.com)
|
|
| Date: 18 Aug 2003 18:10:13 -0000 | |
Protecting the air from DoS attacks is entirely different than enabling NEW DoS attacks. -Bob -----Original Message----- From: Martin Lefkowitz [mailto:lefko [at] trapezenetworks.com] Sent: Monday, August 18, 2003 11:05 AM To: James Kempf; lwapp [at] frascone.com Subject: Re: [Lwapp] CAPWAP Problem Statement (secure download?) Yes, but you could just as easily put a $100 2.4g spread spectrum phone in the physical area and do pretty much the same thing. In 802.11 it has always been assumed that you really can't protect the air from a DOS attack. The only exception would be if a very few packets from easily obtainable equipment could shut down the whole network. So far the only example of this is TKIP countermeasures. Marty At 10:48 AM 8/18/2003 -0700, James Kempf wrote: >How about rogue code that causes the AP to increase its power to the maximum >and start broadcasting white noise across all channels? > > jak > >----- Original Message ----- >From: "Martin Lefkowitz" <lefko [at] trapezenetworks.com> >To: <lwapp [at] frascone.com> >Sent: Monday, August 18, 2003 10:45 AM >Subject: Re: [Lwapp] CAPWAP Problem Statement (secure download?) > > > > I also am wondering why we need a secure download? > > > > Given TGi's basic linchpin of mutual authentication I wonder what good it > > would do to have rogue code in an AP that can not authenticate itself to > > the AR in it's operational state, or authenticate itself of the STA in >it's > > operational state. However, I do see significant danger in putting > > something like a certificate in a physically insecure device (like in a > > hotspot) where it could be broken into and have the certificate >compromised. > > > > Seems to me that the CAPWAP doc should concentrate of getting the image > > downloaded reliably, not securely. The security part come in play in the > > operational state. > > > > Marty > > > > _______________________________________________ > > Lwapp mailing list > > Lwapp [at] frascone.com > > http://mail.frascone.com/mailman/listinfo/lwapp > > _______________________________________________ Lwapp mailing list Lwapp [at] frascone.com http://mail.frascone.com/mailman/listinfo/lwapp
-
RE: CAPWAP Problem Statement (secure download?) Pat R. Calhoun, August 18 2003
- RE: CAPWAP Problem Statement (secure download?) Marcus Brunner, August 18 2003
- RE: CAPWAP Problem Statement (secure download?) Bob O'Hara, August 18 2003
- RE: CAPWAP Problem Statement (secure download?) Bob O'Hara, August 18 2003
-
RE: CAPWAP Problem Statement (secure download?) Martin Lefkowitz, August 18 2003
- Re: CAPWAP Problem Statement (secure download?) James Kempf, August 18 2003
-
Re: CAPWAP Problem Statement (secure download?) William Arbaugh, August 18 2003
- Re: CAPWAP Problem Statement (secure download?) Marcus Brunner, August 18 2003
Results generated by Tiger Technologies using MHonArc.