Opened 10 years ago

Closed 9 years ago

#209 closed editorial (fixed)

Add potential attacks to security considerations

Reported by: cabo@… Owned by: draft-ietf-core-block@…
Priority: minor Milestone: post-WGLC-1
Component: block Version: block-08
Severity: In WG Last Call Keywords:
Cc:

Description

Bert Greevenbosch notes that a stateless server might be susceptible to an attack where the adversary sends a Block1 (e.g., PUT) block with a high block number. A naive implementation might exhaust its resources by creating a huge resource representation.

Change History (2)

comment:1 Changed 10 years ago by hartke@…

  • Version set to block-08

comment:2 Changed 9 years ago by cabo@…

  • Resolution set to fixed
  • Status changed from new to closed

Fixed in [1265]:

Fix #203
Fix #206
Fix #209
Fix #210
Fix #245

Note: See TracTickets for help on using tickets.