Firewalls: Re: Encrypted data across national boundaries

Firewalls
(August 1995)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Encrypted data across national boundaries
From:	mulligan @ future . incog . com
Date:	Sun, 13 Aug 1995 23:43:38 -0600
To:	paul @ hawksbill . sprintmrn . com (Paul Ferguson)
Cc:	adept @ minerva . cis . yale . edu (Ben), firewalls @ greatcircle . com
In-reply-to:	Your message of "Sun, 13 Aug 1995 20:21:28 CDT." <9508140121 . AA23220 @ hawksbill . sprintmrn . com>
Reply-to:	mulligan @ incog . com

> > >Encryption doesn't protect against TCP hijacking. Disconnection does.
> > 
> > Why wouldn't it?
> >
> 
> It can still be hijacked, nonetheless, the equivalent of a denial
> of service attack. Encryption simply protects the data in the stream.

Hijacked means that the person hijacking the connection takes over the
connection and is able to send their own data to the end system/process
and have it accepted as that coming from the original source.  This
can't on a strongly encrypted connection.

Denial of service is a different matter, but again encryption can remove
some types of denial of service attacks and open some new ones.

	geoff

References:

Re: Encrypted data across national boundaries
From: paul @ hawksbill . sprintmrn . com (Paul Ferguson)

Indexed By Date	Previous:	Re: Encrypted data across national boundaries From: mulligan @ future . incog . com
Indexed By Date	Next:	Re: Internet From: Tham Huei Hwan <Tham . Huei . Hwan @ bass . com . my>
Indexed By Thread	Previous:	Re: Encrypted data across national boundaries From: paul @ hawksbill . sprintmrn . com (Paul Ferguson)
Indexed By Thread	Next:	Re: Encrypted data across national boundaries From: Ben <samman @ cs . yale . edu>