IPsec Vulnerability
UK’s National Infrastructure Security Co-ordination Centre (NISCC, pronounced “nicey”) has just published a vulerability advisory concerning IPsec, a set of protocols commonly used in the deployment of Virtual Private Networks (VPNs). IPsec, when used under certain configurations, are vulnerable to a number of attacks where an attacker can recover the plaintext corresponding to encrypted IP packets with only moderate effort.
The attacks have been implemented and demonstrated to work. Nice result for the researchers after months of hard work.
This entry was posted on Monday, May 9th, 2005 at 14.52 and is filed under Academic . You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.
You must be logged in to post a comment.
