blank.gif (43 bytes)

Church Of The
Swimming Elephant

Search:
6.3.5. Message Timeliness Mechanism Connected: An Internet Encyclopedia
6.3.5. Message Timeliness Mechanism

Up: Connected: An Internet Encyclopedia
Up: Requests For Comments
Up: RFC 1446
Up: 6. Security Considerations
Up: 6.3. Protocol Correctness
Prev: 6.3.4. Restricted Administration Mechanism
Next: 6.3.6. Selective Clock Acceleration Mechanism

6.3.5. Message Timeliness Mechanism

6.3.5. Message Timeliness Mechanism

The definition of the SNMPv2 security protocols requires that, if the authentication timestamp value on a received message - augmented by an administratively chosen lifetime value - is less than the local notion of the clock for the originating SNMPv2 party, the message is not delivered.

        if (timestampOfReceivedMsg +
               party->administrativeLifetime <=
               party->localNotionOfClock) {
               msgIsValidated = FALSE;
        }

By virtue of this mechanism, the protocols realize goal 3. In cases in which the local notions of a particular SNMPv2 party clock are moderately well-synchronized, the timeliness mechanism effectively limits the age of validly delivered messages. Thus, if an attacker diverts all validated messages for replay much later, the delay introduced by this attack is limited to a period that is proportional to the skew among local notions of the party clock.


Next: 6.3.6. Selective Clock Acceleration Mechanism

Connected: An Internet Encyclopedia
6.3.5. Message Timeliness Mechanism

Cotse.Net

Protect yourself from cyberstalkers, identity thieves, and those who would snoop on you.
Stop spam from invading your inbox without losing the mail you want. We give you more control over your e-mail than any other service.
Block popups, ads, and malicious scripts while you surf the net through our anonymous proxies.
Participate in Usenet, host your web files, easily send anonymous messages, and more, much more.
All private, all encrypted, all secure, all in an easy to use service, and all for only $5.95 a month!

Service Details

 
.
www.cotse.com
Have you gone to church today?
.
All pages ©1999, 2000, 2001, 2002, 2003 Church of the Swimming Elephant unless otherwise stated
Church of the Swimming Elephant©1999, 2000, 2001, 2002, 2003 Cotse.com.
Cotse.com is a wholly owned subsidiary of Packetderm, LLC.

Packetderm, LLC
210 Park Ave #308
Worcester, MA 01609