errata logo graphic

Found 1 record.

Status: Held for Document Update (1)

RFC6704, "Forcerenew Nonce Authentication", August 2012

Source of RFC: dhc (int)

Errata ID: 3353

Status: Held for Document Update
Type: Editorial

Reported By: Gaurav Halwasia
Date Reported: 2012-09-14
Held for Document Update by: Brian Haberman

Section 5.1 says:

   The mechanism described in this document is vulnerable to a denial-
   of-service (DoS) attack through flooding a client with bogus
   FORCERENEW messages.  The calculations involved in authenticating the
   bogus FORECERENEW messages may overwhelm the device on which the
   client is running.

It should say:

   The mechanism described in this document is vulnerable to a denial-
   of-service (DoS) attack through flooding a client with bogus
   FORCERENEW messages.  The calculations involved in authenticating the
   bogus FORCERENEW messages may overwhelm the device on which the
   client is running.

Notes:

Spelling of "FORECERENEW" is incorrect. It should be "FORCERENEW"


Report New Errata