[e2e] Security implications blurring the name/address distinction

David P. Reed dpreed at reed.com
Wed Feb 16 06:43:57 PST 2005


Joe -

the classic security community definition of denial of service includes 
TCP RST and PMTU attacks.   Neither exposes the content of a message or 
corrupts the content of message - they merely interfere with reliability 
of delivery.

You may want to subdivide "denial of service" into subcategories.   But 
ultimately, those attacks deny service.   And that's my point.

There is nothing in the classification of security risks that says 
"denial of service" is protocol-independent.


More information about the end2end-interest mailing list