RE: I-D ACTION:draft-ietf-smime-3851bis-04.txt

ietf-smime

RE: I-D ACTION:draft-ietf-smime-3851bis-04.txt

2008-08-07 18:15:02


At 1:42 PM -0400 8/7/08, Turner, Sean P. wrote:

 >Proposed wording:


Receiving agents that validate signatures need to be cautious
of CPU usage when validating signatures larger than those
mandated in this specification. An attacker can send very
large, bogus signatures in order to swamp the CPU of the
receiving party. Receiving parties that verify large
signatures are advised to have some sort of resource
management system to prevent such an attack.


Is this in addition to or to replace the para that starts "Larger keys are
not" in 3851bis Sec 5?


Replace.

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
RE: I-D ACTION:draft-ietf-smime-3851bis-04.txt, Paul Hoffman RE: I-D ACTION:draft-ietf-smime-3851bis-04.txt, Jim Schaad RE: I-D ACTION:draft-ietf-smime-3851bis-04.txt, Paul Hoffman RE: I-D ACTION:draft-ietf-smime-3851bis-04.txt, Tony Capel RE: I-D ACTION:draft-ietf-smime-3851bis-04.txt, Turner, Sean P. RE: I-D ACTION:draft-ietf-smime-3851bis-04.txt, Turner, Sean P. RE: I-D ACTION:draft-ietf-smime-3851bis-04.txt, Paul Hoffman <= RE: I-D ACTION:draft-ietf-smime-3851bis-04.txt, Turner, Sean P. RE: I-D ACTION:draft-ietf-smime-3851bis-04.txt, Tony Capel RE: I-D ACTION:draft-ietf-smime-3851bis-04.txt, Paul Hoffman Key size security considerations, Paul Hoffman RE: Key size security considerations, Hallam-Baker, Phillip

Previous by Date:	RE: I-D ACTION:draft-ietf-smime-3851bis-04.txt, Turner, Sean P.
Next by Date:	{Blocked Content} I-D ACTION:draft-ietf-smime-ibearch-07.txt, Internet-Drafts
Previous by Thread:	RE: I-D ACTION:draft-ietf-smime-3851bis-04.txt, Turner, Sean P.
Next by Thread:	RE: I-D ACTION:draft-ietf-smime-3851bis-04.txt, Turner, Sean P.
Indexes:	[Date] [Thread] [Top] [All Lists]