      3.2. Replay of Signaling Messages ..............................11
      3.3. Injecting or Modifying Messages ...........................11
      3.4. Insecure Parameter Exchange and Negotiation ...............12
   4. NSIS-Specific Threat Scenarios .................................12
      4.1. Threats during NSIS SA Usage ..............................13
      4.2. Flooding ..................................................13
      4.3. Eavesdropping and Traffic Analysis ........................15
      4.4. Identity Spoofing .........................................15
      4.5. Unprotected Authorization Information .....................17
      4.6. Missing Non-Repudiation ...................................18
      4.7. Malicious NSIS Entity .....................................19
      4.8. Denial of Service Attacks .................................20
      4.9. Disclosing the Network Topology ...........................21
      4.10. Unprotected Session or Reservation Ownership .............21
      4.11. Attacks against the NTLP .................................23
   5. Security Considerations ........................................23
   6. Contributors ...................................................24
   7. Acknowledgements ...............................................24
   8. References .....................................................25
      8.1. Normative References ......................................25
      8.2. Informative References ....................................25

1. Introduction

   Whenever a new protocol is developed or existing protocols are
   modified, threats to their security should be evaluated. To address
   security in the NSIS working group, a number of steps have been
   taken:

NSIS Analysis Activities (see [RSVP-SEC] and [SIG-ANAL])

Security Threats for NSIS

NSIS Requirements (see [RFC3726])

NSIS Framework (see [RFC4080])

NSIS Protocol Suite (see GIMPS [GIMPS], NAT/Firewall NSLP

上一页 [1] [2] [3] [4] [5] [6] [7] [8] [9] [10] [11] [12] [13] [14] [15] [16] [17] [18] [19] [20] [21] [22] [23] [24] [25] [26] [27] [28] [29] [30] [31] [32] [33] [34] [35] [36] [37] [38] 下一页

上一篇:RFC4085 - Embedding Globally-Routable Internet Addresses Considered Harmful

下一篇:RFC4103 - RTP Payload for Text Conversation

RFC4081 - Security Threats for Next Steps in Signaling (NSIS) 相关文章：

·Video Security让摄像头变监控器

·RFC4081 - Security Threats for Next Steps in Signaling (NSIS)

·《迷城的国度Next》官方完全攻略制作完毕

·RFC4094 - Analysis of Existing Quality-of-Service Signaling Protocols

·微软认证系统安全工程师 MCSE: Security

·PHP安全《PHP Security》

·CCIE SECURITY TRACK-Lab Exam Blueprint v2.0

·Norton Internet Security 2005全面保护系统安全

·XPSecurity,XP的安全大管家

·用Video Security让摄像头变监控器

RFC4081 - Security Threats for Next Steps in Signaling (NSIS) 相关软件：

·Kaspersky(卡巴斯基) Internet Security 安全套装 V6.0.2.621 中文版

·Symantec Client Security v3.0.2.2000中文客户端

·ETD Security Scannerv2.0

·Ixis Research Security Administrator v10.0 破解补丁

·Shadow Security Scanner 6.99.75 注册机

·Retina Network Security ScannerV4.9.115

·Kaspersky Internet Securityv7.0.1.325 简体中文版

·诺顿网络安全特警(Norton Internet Security) V2007

·CIW Security Professional 中文版培训用书

·1st Security Agent V4.8 + 注册机

特别声明：本站除部分特别声明禁止转载的专稿外的其他文章可以自由转载，但请务必注明出处和原始作者。文章版权归文章原始作者所有。对于被本站转载文章的个人和网站，我们表示深深的谢意。如果本站转载的文章有版权问题请联系编辑人员，我们尽快予以更正。
[打印本页] [关闭窗口] 转载请注明来源：http://www.vipcn.net

	\| 帮助(？) \| 版权声明 \| 友情连接 \| 关于我们 \| 信息发布
Copyright 2007 www.vipcn.net All Rights Reserved.	鄂ICP备05000083号Powered by:viphot