The base SHAKEN specification provides replay-detection mechanisms to identify cases where a malicious entity attempts to masquerade as another user by replaying parts of a legitimate INVITE request. However, these mechanisms don't cover cases where the INVITE is replayed within the short Date freshness window. This technical report describes how the mechanisms defined by [draft-ietf-stir-passport-divert] can be integrated within the SHAKEN framework to close this replay attack window.
Document identifier
ATIS 1000085
Title
Signature-Based Handling of Asserted Information Using Tokens (SHAKEN): SHAKEN Support of "div" PASSporT
ATIS Category
Packet Technologies and Systems Committee
Publication date
2019-02-01
International Relationship
| Price |
12 vnd |
.jpg){kind=logo}
---Logo.jpg){kind=logo}
.jpg){kind=logo}
-_-logo.png){kind=logo}
.jpg){kind=logo}
.png)
