[Olsr-dev] olsrd web of trust plug-in
Henning Rogge
(spam-protected)
Mon Dec 22 19:30:37 CET 2008
On Montag 22 Dezember 2008 17:59:00 Bernd Petrovitsch wrote:
> > Yes... because IPSec mostly deals with unicast traffic. Multicast
> > (broadcast is a special case) is MUCH MORE difficult.
>
> Yes, because you have to have different (symmetric) keys for each
> multicast group and change the key if one joins or leaves the group. And
> there are probably more similar problems.
> Let alone to *guarantee* that no one uses the old one ....
You are missing my point.
A group key does not allow for athentification within the group, so it's
useless for securing OLSR routing packages against attackers inside the
network (because they will have the group key).
Henning
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 197 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.olsr.org/pipermail/olsr-dev/attachments/20081222/958941c0/attachment.sig>
More information about the Olsr-dev
mailing list