Author(s):
Tuomas Aura, Pekka Nikander and Gonzalo Camarillo

Berkeley/Oakland, California, May 9-12, 2004

Download document:
Effects of Mobility and Multihoming on Transport-Protocol Security (pdf)

Abstract:
The Stream Control Transmission Protocol (SCTP) is a reliable message-based transport protocol developed by the IETF that could replace TCP in some applications.
SCTP allows endpoints to have multiple IP addresses for the purposes of fault tolerance. There is on-going work to extend the SCTP multihoming functions to support dynamic addressing and endpoint mobility. This paper explains how the multihoming and mobility features can be exploited for denial-of-service attacks, connection hijacking, and packet flooding. We propose implementation guidelines for SCTP and changes to the mobility extensions that prevent most of the attacks. The same lessons apply to multihomed TCP variants and other transport-layer protocols that incorporate some flavor of dynamic addressing.

Notice:
Copyright 2004 IEEE. Reprinted from Berkeley/Oakland, California, May 9-12. This material is posted here with permission of the IEEE. Such permission of the IEEE does not in any way imply IEEE endorsement of any of Ericsson's products or services. Internal or personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution must be obtained from the IEEE by writing to pubs-permissions@ieee.org. By choosing to view this document, you agree to all provisions of the copyright laws protecting it.

In order to read PDF files, you need to have Adobe® Acrobat® Reader® installed in your computer. You can download the latest Acrobat® Reader® for free  from Adobe's website.