Skip to Main content Skip to Navigation
Conference papers

The Deviation Attack: A Novel Denial-of-Service Attack Against IKEv2

Tristan Ninet 1, 2 Axel Legay 1 Romaric Maillard 2 Louis-Marie Traonouez 1 Olivier Zendra 1
1 TAMIS - Threat Analysis and Mitigation for Information Security
Inria Rennes – Bretagne Atlantique , IRISA-D4 - LANGAGE ET GÉNIE LOGICIEL
Abstract : In previous analyses IKEv2 has been shown to suffer from an authentication vulnerability that was considered not exploitable. By designing and implementing a novel slow Denial-of-Service attack, which we name the Deviation Attack, we show that the vulnerability is actually exploitable. We explain the attack’s requirements, propose possible counter-measures and propose two possible modifications of the protocol, which both overcome the vulnerability.
Complete list of metadata

Cited literature [12 references]  Display  Hide  Download
Contributor : Tristan Ninet Connect in order to contact the contributor
Submitted on : Tuesday, October 22, 2019 - 12:12:44 PM
Last modification on : Wednesday, November 3, 2021 - 8:14:27 AM


Files produced by the author(s)


  • HAL Id : hal-01980276, version 2


Tristan Ninet, Axel Legay, Romaric Maillard, Louis-Marie Traonouez, Olivier Zendra. The Deviation Attack: A Novel Denial-of-Service Attack Against IKEv2. TrustCom 2019 - 18th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, Aug 2019, Rotorua, New Zealand. pp.1-8. ⟨hal-01980276v2⟩



Record views


Files downloads