Article 109 at 06/03/16 14:01:42 From: Hideshi.Enokihara@jp.yokogawa.com Subject: [dhcptest:00109] Fw: [dhcwg] [Question]Is this behavior of the Reconfigure Key Authentication Protocol correct?

Index: [Article Count Order] [Thread]
Date: Thu, 16 Mar 2006 13:58:54 +0900
From: Hideshi Enokihara <Hideshi.Enokihara@jp.yokogawa.com>
Subject: [dhcptest:00109] Fw: [dhcwg] [Question]Is this behavior of the Reconfigure Key Authentication Protocol correct?
To: dhcptest@tahi.org
Message-Id: <20060316135854.27cd6f15.Hideshi.Enokihara@jp.yokogawa.com>
X-Mail-Count: 00109

Hi all,

I'd like to hear your opinions regarding this.

Begin forwarded message:

Date: Fri, 10 Mar 2006 21:09:05 +0900
From: Hideshi Enokihara <Hideshi.Enokihara@jp.yokogawa.com>
To: dhcwg@ietf.org
Subject: [dhcwg] [Question]Is this behavior of the Reconfigure Key Authentication Protocol correct?


Hi all,

I have some questions regarding Reconfigure Key Authentication Protocol.

Is this behavior(like following) of the Reconfigure Key Authentication Protocol correct?
---------------------------------

       Server  Client
        |       | 
        |       | 
        | <---- | Solicit  
        | ----> | Advertise
        | <---- | Request with Reconfigure Accept Option  
        | ----> | Reply with Reconfigure Accept Option 
        |       |       and Authentication Option  (*1)
        |       | 
        |       | 
        | ----> | Reconfigure with comptuted Authentication (*2)
        | <---- | Renew or Information-Request (*3)
        |       |  (depend on Reconfigure message's(*2's) msg-type)  
        | ----> | Reply (*4)

(*1):The server transmits the 128 bits Reconfigure Key 
     in Authentication option to the clinet.
(*2):The server computes an HMAC-MD5 of the Reconfigure message
     using the Reconfigure Key and includes the HMAC-MD5 
     in the authentication information field in an Authentication option
     included in the Reconfigure message sent to the client.
(*3):To authenticate a Reconfigure message, the client computes 
     an HMAC-MD5 over the DHCP Reconfigure message, 
     using the Reconfigure Key received from the server, 
     and the client transmits the Renew or Information-Request message
     without Authentication option to the Server.
(*4):The server transmits the Reply message without Authentication option.
---------------------------------------
[Question1]
Is this behavior correct?


If this behavior is correct, I also have a question in step (*1).

[Question2]
If a malicious DHCP server intercepts the Reply message(*1),
the malicious DHCP server can get Reconfigure Key, I think.
Then, the malicious DHCP server can send the Reconfigure message with fallacious information.

If this situation happens, I think that the effectiveness of Reconfigure Key Authentication Protocol is lost.

What do you think?
What is the purpose of Reconfigure Key Authentication Protocol?

Best Regards,
-- 
*************************************
Hideshi Enokihara
IPv6 Business
Network & Software Development Dept.
Yokogawa Electric Corporation

_______________________________________________
dhcwg mailing list
dhcwg@ietf.org
https://www1.ietf.org/mailman/listinfo/dhcwg


-- 
*************************************
Hideshi Enokihara
IPv6 Business
Network & Software Development Dept.
Yokogawa Electric Corporation

_______________________________________________
dhcwg mailing list
dhcwg@ietf.org
https://www1.ietf.org/mailman/listinfo/dhcwg


-- 
*************************************
Hideshi Enokihara
IPv6 Business
Network & Software Development Dept.
Yokogawa Electric Corporation