RE: DH-CHAP

To: "Bill Studenmund" <wrstuden@wasabisystems.com>
Subject: RE: DH-CHAP
From: "Yongge Wang" <ywang@karthika.com>
Date: Sun, 14 Apr 2002 12:33:40 -0400
Cc: <ips@ece.cmu.edu>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain;charset="US-ASCII"
Importance: Normal
In-Reply-To: <Pine.NEB.4.33.0204132143560.364-100000@candlekeep.home-net.internetconnect.net>
Sender: owner-ips@ece.cmu.edu

>There is one difference. The attack will get noticed.

Yes, you are correct. If the initiator logs all failure login, then 
there is a failure log record.. but there may be many kinds of
failure log reports and the log due to this kind of attacks is 
almost indistinguishable (for most concise log files)
from other failures. Thus we are not sure this failure is due to
a attack.

>Yongge's attack (as I understand it) is essentially a MITM attack, except
>that MITM usually tries to continue the conversation while in this case
>the rogue just leaves after it gets the response it needs.

You can say this is MITM if you define MITM in this way.
However, in the literature, the man-in-the-middle attack is defined
in the way David (Jablon) has pointed out: The attack controls the entire
communication links between the two real entities. This is a subtle 
difference.

The attacker on DH-CHAP does not need to control the links.
A simple example is as follows:

The initiator and the attacker sit on one local Ethernet-I(e.g., 
connected by a hub), the target sits on another Ethernet-II though
still in the same organization.  The Ethernet-I and Ethernet-II
are connected by a switch or a router. Now the attacker could easily
(almost trivially) launch the attack though neither the attacker controls
the links between the initiator and the target nor the attacker 
sits between the initiator and the target.

>This attack involves the rogue agent sending a response to the initiator
>giving it a g^x mod n to use. That g^x mod n will not be the one the
>target chose, so this attack will result in a login failure; a failure
>with the same signature as a MitM attack.
>
>So that is one difference between DH-CHAP and CHAP - you have to go to an
>active attack to get at the password.

Agreed. The fact pointed out by David (Jablon) is: Is this attack
essentially harder than the pure passive attack? In many situations,
it is not.... In the scenario I descreibed above this attack is as easy
as the pure passive attacks. (Note that a real Man-In-the-middle attack
is generally hard to mount than a pure passive attack).

I am just poiting out a vulverable situation for DH-CHAP. 
Whether DH-CHAP will be included in the iSCSI standard,
it makes no difference to me.

Thanks for your discussion in this matter.

Best regards,
Yongge

Follow-Ups:
- Re: DH-CHAP
  - From: "Perry E. Metzger" <perry@wasabisystems.com>

References:
- Re: DH-CHAP
  - From: Bill Studenmund <wrstuden@wasabisystems.com>

Prev by Date: RE: iSCSI: DH-CHAP
Next by Date: RE: DH-CHAP
Prev by thread: Re: DH-CHAP
Next by thread: Re: DH-CHAP
Index(es):
- Date
- Thread

Home

Last updated: Mon Apr 15 14:18:26 2002
9674 messages in chronological order