mip6-3----Page:9
1 2 3 4 5 6 7 8 9 10 11
|
DoS Attack on the Home Agent Address Address is in public DNS, anybody could snatch it! IKEv2 contains measures to slow down an attacker if they should get it But... DoS is a problem with any solution (including manual configuration) that exposes the Home Agent address to users on the Internet User goes rogue Someone steals the address from a legitimate user Distributed worm probing attack discovers the Home Agent Bottom line: “Hiding” the address from unauthorized users only makes launching a DoS attack a little harder |