Project

General

Profile

Actions

Bug #1990

closed

SignedInterest: rejected if Interest is reordered

Added by Junxiao Shi about 10 years ago. Updated almost 10 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
Security
Target version:
Start date:
09/20/2014
Due date:
% Done:

100%

Estimated time:

Description

Background:

  • SignedInterest spec recommends a recipient (producer) to treat a signed Interest as invalid if its timestamp is less than or equal to the latest timestamp state of the public key.
  • Network does not require in-order delivery.

Steps to reproduce:

  1. create two signed Interests siA and siB signed by same key
  2. cause siA take a longer path in the network, so that siB is delivered to recipient before siA

Expected: both siA and siB are executed, in any order

Actual: siA is rejected

Suggested fixes:

  • recommend consumer to stop-and-wait: do not send the next signed Interest until the previous one is responded or InterestLifetime expires, OR
  • redesign replay protection so that it doesn't require in-order delivery
Actions

Also available in: Atom PDF