Re: CISCO PIX Vulnerability

From: Rick Smith (rick_smithat_private)
Date: Wed Jun 10 1998 - 11:02:11 PDT

Next message: avarice: "Re: Full Armor"

Previous message: Tom Perrine: "Solaris 2.5.1 patch not effective?"
Maybe in reply to: Damir Rajnovic: "CISCO PIX Vulnerability"
Next in thread: Jamie Thain: "Re: CISCO PIX Vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

>Another thing is that PIX is using DES in ECB mode. CISCO admits that
>"....ECB is not generally considered to be the best mode in which to
>employ DES,...." but you'll have to live with it. CISCO will not fix
>that so you'll have to buy future IPSEC/IKE products.

IMHO, the really, really nasty problem with ECB mode is that the data
stream is vulnerable to trivial substitution attacks. If the encrypted
traffic consists of administrative commands, it won't be that hard to
collect a modest but interesting dictionary of plaintext/ciphertext pairs.
Then the attacker can forge command strings without ever having to brute
force the key itself.

Rick.
smithat_private
"Internet Cryptography" at bookstores or http:/www.visi.com/crypto/

Next message: avarice: "Re: Full Armor"
Previous message: Tom Perrine: "Solaris 2.5.1 patch not effective?"
Maybe in reply to: Damir Rajnovic: "CISCO PIX Vulnerability"
Next in thread: Jamie Thain: "Re: CISCO PIX Vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 13:57:13 PDT